[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[ 18.707958] random: sshd: uninitialized urandom read (32 bytes read) [?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 22.885569] random: sshd: uninitialized urandom read (32 bytes read) [ 23.103969] random: sshd: uninitialized urandom read (32 bytes read) [ 23.916995] random: sshd: uninitialized urandom read (32 bytes read) [ 53.499356] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.40' (ECDSA) to the list of known hosts. [ 59.135774] random: sshd: uninitialized urandom read (32 bytes read) executing program [ 59.242136] FAULT_INJECTION: forcing a failure. [ 59.242136] name failslab, interval 1, probability 0, space 0, times 1 [ 59.253513] CPU: 0 PID: 4522 Comm: syz-executor098 Not tainted 4.18.0-rc1+ #108 [ 59.261046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 59.270392] Call Trace: [ 59.272973] dump_stack+0x1c9/0x2b4 [ 59.276582] ? dump_stack_print_info.cold.2+0x52/0x52 [ 59.281773] ? debug_check_no_locks_freed+0x310/0x310 [ 59.286952] should_fail.cold.4+0xa/0x1a [ 59.291007] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 59.296109] ? scatterwalk_copychunks+0x424/0x500 [ 59.300943] ? graph_lock+0x170/0x170 [ 59.304771] ? scatterwalk_map_and_copy+0xe7/0x260 [ 59.309798] ? find_held_lock+0x36/0x1c0 [ 59.313860] ? __lock_is_held+0xb5/0x140 [ 59.318034] ? check_same_owner+0x340/0x340 [ 59.322351] ? rcu_note_context_switch+0x730/0x730 [ 59.327381] __should_failslab+0x124/0x180 [ 59.331608] should_failslab+0x9/0x14 [ 59.335399] kmem_cache_alloc_node+0x272/0x780 [ 59.339980] __alloc_skb+0x119/0x790 [ 59.343684] ? skb_scrub_packet+0x580/0x580 [ 59.348170] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 59.353718] ? tcp_established_options+0x374/0x5c0 [ 59.358639] ? tcp_select_initial_window+0x3a0/0x3a0 [ 59.363923] ? __alloc_pages_nodemask+0xb10/0xdb0 [ 59.368760] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 59.373765] ? tcp_current_mss+0x2ac/0x410 [ 59.377983] ? tcp_mtu_to_mss+0x4e0/0x4e0 [ 59.382123] sk_stream_alloc_skb+0x141/0x970 [ 59.386534] ? tcp_init_transfer+0x470/0x470 [ 59.390983] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 59.396017] do_tcp_sendpages+0xa26/0x1e80 [ 59.400251] ? trace_hardirqs_on+0xd/0x10 [ 59.404402] ? sk_stream_alloc_skb+0x970/0x970 [ 59.408988] ? generic_gcmaes_decrypt+0x190/0x190 [ 59.413820] ? tls_sw_sendpage+0x5ff/0xf60 [ 59.418056] ? inet_sendpage+0x1de/0x750 [ 59.422120] ? kernel_sendpage+0x93/0xf0 [ 59.426266] ? sock_sendpage+0x8c/0xc0 [ 59.430175] ? pipe_to_sendpage+0x2d0/0x400 [ 59.434511] ? splice_from_pipe+0x1ea/0x340 [ 59.438836] ? generic_splice_sendpage+0x3c/0x50 [ 59.443574] ? direct_splice_actor+0x128/0x190 [ 59.448142] ? do_sendfile+0x623/0xe20 [ 59.452021] ? __x64_sys_sendfile64+0x15d/0x250 [ 59.456683] ? do_syscall_64+0x1b9/0x820 [ 59.460739] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 59.466091] ? find_held_lock+0x36/0x1c0 [ 59.470312] ? print_usage_bug+0xc0/0xc0 [ 59.474447] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 59.480071] ? tcp_rate_check_app_limited+0x121/0x470 [ 59.485245] ? tcp_fastopen_reset_cipher.cold.14+0x47/0x47 [ 59.490877] tls_push_sg+0x263/0x880 [ 59.494589] ? wait_on_pending_writer+0x5a0/0x5a0 [ 59.499425] ? __kmalloc+0x5f9/0x760 [ 59.503152] ? sk_alloc_sg+0x798/0x9d0 [ 59.507054] tls_push_record+0xaec/0x1400 [ 59.511202] tls_sw_sendpage+0x5ff/0xf60 [ 59.515271] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 59.519760] ? iov_iter_npages+0xe80/0xe80 [ 59.523992] ? trace_hardirqs_on+0xd/0x10 [ 59.529039] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 59.533353] inet_sendpage+0x1de/0x750 [ 59.537242] ? inet_sendmsg+0x690/0x690 [ 59.541224] ? iter_file_splice_write+0x1010/0x1010 [ 59.546235] kernel_sendpage+0x93/0xf0 [ 59.550139] ? inet_sendmsg+0x690/0x690 [ 59.554322] sock_sendpage+0x8c/0xc0 [ 59.558049] ? kernel_sendpage+0xf0/0xf0 [ 59.562120] pipe_to_sendpage+0x2d0/0x400 [ 59.566273] ? generic_pipe_buf_nosteal+0x10/0x10 [ 59.571124] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 59.576680] ? splice_from_pipe_next.part.9+0x296/0x340 [ 59.582159] __splice_from_pipe+0x38e/0x7c0 [ 59.586494] ? generic_pipe_buf_nosteal+0x10/0x10 [ 59.591390] splice_from_pipe+0x1ea/0x340 [ 59.595537] ? generic_pipe_buf_nosteal+0x10/0x10 [ 59.600385] ? splice_shrink_spd+0xd0/0xd0 [ 59.604656] ? security_file_permission+0x1c6/0x240 [ 59.609695] generic_splice_sendpage+0x3c/0x50 [ 59.614280] ? splice_from_pipe+0x340/0x340 [ 59.618612] direct_splice_actor+0x128/0x190 [ 59.623033] splice_direct_to_actor+0x318/0x8f0 [ 59.627714] ? pipe_to_sendpage+0x400/0x400 [ 59.632070] ? do_splice_to+0x190/0x190 [ 59.636059] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 59.641628] ? rw_verify_area+0x118/0x360 [ 59.645788] do_splice_direct+0x2d4/0x420 [ 59.649980] ? splice_direct_to_actor+0x8f0/0x8f0 [ 59.654844] ? rw_verify_area+0x118/0x360 [ 59.659009] do_sendfile+0x623/0xe20 [ 59.662751] ? do_compat_pwritev64+0x1c0/0x1c0 [ 59.667350] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 59.672916] ? _copy_from_user+0xdf/0x150 [ 59.677088] __x64_sys_sendfile64+0x15d/0x250 [ 59.681587] ? __ia32_sys_sendfile+0x2a0/0x2a0 [ 59.686435] ? do_syscall_64+0x9a/0x820 [ 59.690416] do_syscall_64+0x1b9/0x820 [ 59.694315] ? syscall_return_slowpath+0x5e0/0x5e0 [ 59.699379] ? syscall_return_slowpath+0x31d/0x5e0 [ 59.704316] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 59.709703] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 59.714559] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 59.719752] RIP: 0033:0x440cc9 [ 59.722954] Code: e8 0c b6 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 9b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 59.742404] RSP: 002b:00007fff94c3a518 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 59.750116] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000440cc9 [ 59.757475] RDX: 00000000200000c0 RSI: 0000000000000005 RDI: 0000000000000004 [ 59.764746] RBP: 00007fff94c3a530 R08: 0000000000000001 R09: 0000000000000000 [ 59.772029] R10: 0000000000000005 R11: 0000000000000246 R12: ffffffffffffffff [ 59.779378] R13: 0000000000000006 R14: 0000000000000000 R15: 0000000000000000 executing program [ 59.941586] FAULT_INJECTION: forcing a failure. [ 59.941586] name failslab, interval 1, probability 0, space 0, times 0 [ 59.953010] CPU: 1 PID: 4527 Comm: syz-executor098 Not tainted 4.18.0-rc1+ #108 [ 59.960540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 59.969899] Call Trace: [ 59.972499] dump_stack+0x1c9/0x2b4 [ 59.976234] ? dump_stack_print_info.cold.2+0x52/0x52 [ 59.981457] ? debug_check_no_locks_freed+0x310/0x310 [ 59.986747] should_fail.cold.4+0xa/0x1a [ 59.990815] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 59.995922] ? scatterwalk_copychunks+0x424/0x500 [ 60.000764] ? graph_lock+0x170/0x170 [ 60.004577] ? scatterwalk_map_and_copy+0xe7/0x260 [ 60.009502] ? find_held_lock+0x36/0x1c0 [ 60.013663] ? __lock_is_held+0xb5/0x140 [ 60.017727] ? check_same_owner+0x340/0x340 [ 60.022041] ? rcu_note_context_switch+0x730/0x730 [ 60.027058] __should_failslab+0x124/0x180 [ 60.031389] should_failslab+0x9/0x14 [ 60.035205] kmem_cache_alloc_node+0x272/0x780 [ 60.040150] __alloc_skb+0x119/0x790 [ 60.044577] ? skb_scrub_packet+0x580/0x580 [ 60.048912] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 60.054470] ? tcp_established_options+0x374/0x5c0 [ 60.059574] ? tcp_select_initial_window+0x3a0/0x3a0 [ 60.064688] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 60.069709] ? tcp_current_mss+0x2ac/0x410 [ 60.073942] ? tcp_mtu_to_mss+0x4e0/0x4e0 [ 60.078099] sk_stream_alloc_skb+0x141/0x970 [ 60.082539] ? tcp_init_transfer+0x470/0x470 [ 60.086961] ? is_bpf_text_address+0xd7/0x170 [ 60.091491] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 60.096509] do_tcp_sendpages+0xa26/0x1e80 [ 60.100765] ? sk_stream_alloc_skb+0x970/0x970 [ 60.105351] ? generic_gcmaes_decrypt+0x190/0x190 [ 60.110202] ? tls_sw_sendpage+0x5ff/0xf60 [ 60.114527] ? inet_sendpage+0x1de/0x750 [ 60.118581] ? kernel_sendpage+0x93/0xf0 [ 60.122623] ? sock_sendpage+0x8c/0xc0 [ 60.126501] ? pipe_to_sendpage+0x2d0/0x400 [ 60.130820] ? splice_from_pipe+0x1ea/0x340 [ 60.135152] ? generic_splice_sendpage+0x3c/0x50 [ 60.139926] ? direct_splice_actor+0x128/0x190 [ 60.144505] ? do_sendfile+0x623/0xe20 [ 60.148375] ? __x64_sys_sendfile64+0x15d/0x250 [ 60.153040] ? do_syscall_64+0x1b9/0x820 [ 60.157206] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 60.162585] ? find_held_lock+0x36/0x1c0 [ 60.166679] ? print_usage_bug+0xc0/0xc0 [ 60.170744] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 60.176283] ? tcp_rate_check_app_limited+0x121/0x470 [ 60.181467] ? tcp_fastopen_reset_cipher.cold.14+0x47/0x47 [ 60.187124] tls_push_sg+0x263/0x880 [ 60.190952] ? wait_on_pending_writer+0x5a0/0x5a0 [ 60.195897] ? __kmalloc+0x5f9/0x760 [ 60.199724] ? sk_alloc_sg+0x798/0x9d0 [ 60.203709] tls_push_record+0xaec/0x1400 [ 60.207870] tls_sw_sendpage+0x5ff/0xf60 [ 60.211956] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 60.216285] ? iov_iter_npages+0xe80/0xe80 [ 60.220607] ? trace_hardirqs_on+0xd/0x10 [ 60.224754] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 60.229068] inet_sendpage+0x1de/0x750 [ 60.232950] ? inet_sendmsg+0x690/0x690 [ 60.236919] ? iter_file_splice_write+0x1010/0x1010 [ 60.241984] kernel_sendpage+0x93/0xf0 [ 60.245869] ? inet_sendmsg+0x690/0x690 [ 60.249837] sock_sendpage+0x8c/0xc0 [ 60.253541] ? kernel_sendpage+0xf0/0xf0 [ 60.257619] pipe_to_sendpage+0x2d0/0x400 [ 60.261757] ? generic_pipe_buf_nosteal+0x10/0x10 [ 60.266590] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 60.272125] ? splice_from_pipe_next.part.9+0x296/0x340 [ 60.277498] __splice_from_pipe+0x38e/0x7c0 [ 60.281831] ? generic_pipe_buf_nosteal+0x10/0x10 [ 60.286770] splice_from_pipe+0x1ea/0x340 [ 60.290922] ? generic_pipe_buf_nosteal+0x10/0x10 [ 60.295856] ? splice_shrink_spd+0xd0/0xd0 [ 60.300111] ? security_file_permission+0x1c6/0x240 [ 60.305130] generic_splice_sendpage+0x3c/0x50 [ 60.309711] ? splice_from_pipe+0x340/0x340 [ 60.314034] direct_splice_actor+0x128/0x190 [ 60.318742] splice_direct_to_actor+0x318/0x8f0 [ 60.323433] ? pipe_to_sendpage+0x400/0x400 [ 60.327774] ? do_splice_to+0x190/0x190 [ 60.331749] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 60.337301] ? rw_verify_area+0x118/0x360 [ 60.341541] do_splice_direct+0x2d4/0x420 [ 60.345712] ? splice_direct_to_actor+0x8f0/0x8f0 [ 60.350584] ? rw_verify_area+0x118/0x360 [ 60.354738] do_sendfile+0x623/0xe20 [ 60.358446] ? do_compat_pwritev64+0x1c0/0x1c0 [ 60.363028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 60.368732] ? _copy_from_user+0xdf/0x150 [ 60.372999] __x64_sys_sendfile64+0x15d/0x250 [ 60.378121] ? __ia32_sys_sendfile+0x2a0/0x2a0 [ 60.382704] ? do_syscall_64+0x9a/0x820 [ 60.386667] do_syscall_64+0x1b9/0x820 [ 60.390542] ? syscall_return_slowpath+0x5e0/0x5e0 [ 60.395454] ? syscall_return_slowpath+0x31d/0x5e0 [ 60.400376] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 60.405743] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 60.410584] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 60.415779] RIP: 0033:0x440cc9 [ 60.418962] Code: e8 0c b6 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 9b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 60.438341] RSP: 002b:00007fff94c3a518 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 60.446046] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000440cc9 [ 60.453412] RDX: 00000000200000c0 RSI: 0000000000000005 RDI: 0000000000000004 [ 60.460668] RBP: 00007fff94c3a530 R08: 0000000000000001 R09: 0000000000000000 [ 60.467921] R10: 0000000000000005 R11: 0000000000000246 R12: ffffffffffffffff [ 60.475184] R13: 0000000000000006 R14: 0000000000000000 R15: 0000000000000000 executing program [ 60.572698] FAULT_INJECTION: forcing a failure. [ 60.572698] name failslab, interval 1, probability 0, space 0, times 0 [ 60.584169] CPU: 0 PID: 4528 Comm: syz-executor098 Not tainted 4.18.0-rc1+ #108 [ 60.591625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.601054] Call Trace: [ 60.603701] dump_stack+0x1c9/0x2b4 [ 60.607348] ? dump_stack_print_info.cold.2+0x52/0x52 [ 60.612562] ? debug_check_no_locks_freed+0x310/0x310 [ 60.617778] should_fail.cold.4+0xa/0x1a [ 60.621866] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 60.627096] ? scatterwalk_copychunks+0x424/0x500 [ 60.631994] ? graph_lock+0x170/0x170 [ 60.635820] ? scatterwalk_map_and_copy+0xe7/0x260 [ 60.640889] ? find_held_lock+0x36/0x1c0 [ 60.644976] ? __lock_is_held+0xb5/0x140 [ 60.649148] ? check_same_owner+0x340/0x340 [ 60.653482] ? rcu_note_context_switch+0x730/0x730 [ 60.658430] __should_failslab+0x124/0x180 [ 60.662768] should_failslab+0x9/0x14 [ 60.666760] kmem_cache_alloc_node+0x272/0x780 [ 60.671478] __alloc_skb+0x119/0x790 [ 60.675207] ? skb_scrub_packet+0x580/0x580 [ 60.679541] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 60.685089] ? tcp_established_options+0x374/0x5c0 [ 60.690036] ? tcp_select_initial_window+0x3a0/0x3a0 [ 60.695251] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 60.700292] ? tcp_current_mss+0x2ac/0x410 [ 60.704756] ? tcp_mtu_to_mss+0x4e0/0x4e0 [ 60.708928] sk_stream_alloc_skb+0x141/0x970 [ 60.713362] ? tcp_init_transfer+0x470/0x470 [ 60.717796] ? is_bpf_text_address+0xd7/0x170 [ 60.723264] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 60.728404] do_tcp_sendpages+0xa26/0x1e80 [ 60.732635] ? sk_stream_alloc_skb+0x970/0x970 [ 60.737206] ? generic_gcmaes_decrypt+0x190/0x190 [ 60.742134] ? tls_sw_sendpage+0x5ff/0xf60 [ 60.746354] ? inet_sendpage+0x1de/0x750 [ 60.750640] ? kernel_sendpage+0x93/0xf0 [ 60.754706] ? sock_sendpage+0x8c/0xc0 [ 60.758593] ? pipe_to_sendpage+0x2d0/0x400 [ 60.762928] ? splice_from_pipe+0x1ea/0x340 [ 60.767256] ? generic_splice_sendpage+0x3c/0x50 [ 60.771998] ? direct_splice_actor+0x128/0x190 [ 60.776566] ? do_sendfile+0x623/0xe20 [ 60.780435] ? __x64_sys_sendfile64+0x15d/0x250 [ 60.785085] ? do_syscall_64+0x1b9/0x820 [ 60.789128] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 60.794475] ? find_held_lock+0x36/0x1c0 [ 60.798573] ? print_usage_bug+0xc0/0xc0 [ 60.802647] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 60.808193] ? tcp_rate_check_app_limited+0x121/0x470 [ 60.813402] ? tcp_fastopen_reset_cipher.cold.14+0x47/0x47 [ 60.819077] tls_push_sg+0x263/0x880 [ 60.822821] ? wait_on_pending_writer+0x5a0/0x5a0 [ 60.827760] ? __kmalloc+0x5f9/0x760 [ 60.831479] ? sk_alloc_sg+0x798/0x9d0 [ 60.835381] tls_push_record+0xaec/0x1400 [ 60.839536] tls_sw_sendpage+0x5ff/0xf60 [ 60.843593] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 60.848009] ? iov_iter_npages+0xe80/0xe80 [ 60.852241] ? trace_hardirqs_on+0xd/0x10 [ 60.856564] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 60.861304] inet_sendpage+0x1de/0x750 [ 60.865180] ? inet_sendmsg+0x690/0x690 [ 60.869146] ? iter_file_splice_write+0x1010/0x1010 [ 60.874246] kernel_sendpage+0x93/0xf0 [ 60.878228] ? inet_sendmsg+0x690/0x690 [ 60.882236] sock_sendpage+0x8c/0xc0 [ 60.885962] ? kernel_sendpage+0xf0/0xf0 [ 60.890195] pipe_to_sendpage+0x2d0/0x400 [ 60.894362] ? generic_pipe_buf_nosteal+0x10/0x10 [ 60.899308] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 60.904858] ? splice_from_pipe_next.part.9+0x296/0x340 [ 60.910215] __splice_from_pipe+0x38e/0x7c0 [ 60.914609] ? generic_pipe_buf_nosteal+0x10/0x10 [ 60.919440] splice_from_pipe+0x1ea/0x340 [ 60.923585] ? generic_pipe_buf_nosteal+0x10/0x10 [ 60.928416] ? splice_shrink_spd+0xd0/0xd0 [ 60.932654] ? security_file_permission+0x1c6/0x240 [ 60.937678] generic_splice_sendpage+0x3c/0x50 [ 60.942249] ? splice_from_pipe+0x340/0x340 [ 60.946557] direct_splice_actor+0x128/0x190 [ 60.951060] splice_direct_to_actor+0x318/0x8f0 [ 60.955717] ? pipe_to_sendpage+0x400/0x400 [ 60.960025] ? do_splice_to+0x190/0x190 [ 60.964001] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 60.969591] ? rw_verify_area+0x118/0x360 [ 60.974254] do_splice_direct+0x2d4/0x420 [ 60.978397] ? splice_direct_to_actor+0x8f0/0x8f0 [ 60.983234] ? rw_verify_area+0x118/0x360 [ 60.987372] do_sendfile+0x623/0xe20 [ 60.991080] ? do_compat_pwritev64+0x1c0/0x1c0 [ 60.995668] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 61.001200] ? _copy_from_user+0xdf/0x150 [ 61.005341] __x64_sys_sendfile64+0x15d/0x250 [ 61.009820] ? __ia32_sys_sendfile+0x2a0/0x2a0 [ 61.014392] ? do_syscall_64+0x9a/0x820 [ 61.018360] do_syscall_64+0x1b9/0x820 [ 61.022246] ? syscall_return_slowpath+0x5e0/0x5e0 [ 61.027324] ? syscall_return_slowpath+0x31d/0x5e0 [ 61.032254] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 61.038399] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 61.043270] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 61.048460] RIP: 0033:0x440cc9 [ 61.051646] Code: e8 0c b6 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 9b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00 executing program [ 61.071010] RSP: 002b:00007fff94c3a518 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 61.078816] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000440cc9 [ 61.086091] RDX: 00000000200000c0 RSI: 0000000000000005 RDI: 0000000000000004 [ 61.093443] RBP: 00007fff94c3a530 R08: 0000000000000001 R09: 0000000000000000 [ 61.100813] R10: 0000000000000005 R11: 0000000000000246 R12: ffffffffffffffff [ 61.108084] R13: 0000000000000006 R14: 0000000000000000 R15: 0000000000000000 [ 61.130641] FAULT_INJECTION: forcing a failure. [ 61.130641] name failslab, interval 1, probability 0, space 0, times 0 [ 61.141979] CPU: 1 PID: 4529 Comm: syz-executor098 Not tainted 4.18.0-rc1+ #108 [ 61.149459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 61.158898] Call Trace: [ 61.161501] dump_stack+0x1c9/0x2b4 [ 61.165142] ? dump_stack_print_info.cold.2+0x52/0x52 [ 61.170341] ? debug_check_no_locks_freed+0x310/0x310 [ 61.175543] should_fail.cold.4+0xa/0x1a [ 61.179614] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 61.184729] ? scatterwalk_copychunks+0x424/0x500 [ 61.189678] ? graph_lock+0x170/0x170 [ 61.193673] ? scatterwalk_map_and_copy+0xe7/0x260 [ 61.198612] ? find_held_lock+0x36/0x1c0 [ 61.202913] ? __lock_is_held+0xb5/0x140 [ 61.207169] ? check_same_owner+0x340/0x340 [ 61.211498] ? rcu_note_context_switch+0x730/0x730 [ 61.216466] __should_failslab+0x124/0x180 [ 61.220727] should_failslab+0x9/0x14 [ 61.224553] kmem_cache_alloc_node+0x272/0x780 [ 61.229311] __alloc_skb+0x119/0x790 [ 61.233160] ? skb_scrub_packet+0x580/0x580 [ 61.237574] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 61.243394] ? tcp_established_options+0x374/0x5c0 [ 61.248379] ? tcp_select_initial_window+0x3a0/0x3a0 [ 61.253615] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 61.258735] ? tcp_current_mss+0x2ac/0x410 [ 61.263090] ? tcp_mtu_to_mss+0x4e0/0x4e0 [ 61.267260] sk_stream_alloc_skb+0x141/0x970 [ 61.271718] ? tcp_init_transfer+0x470/0x470 [ 61.276145] ? is_bpf_text_address+0xd7/0x170 [ 61.280663] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 61.285703] do_tcp_sendpages+0xa26/0x1e80 [ 61.290053] ? sk_stream_alloc_skb+0x970/0x970 [ 61.294650] ? generic_gcmaes_decrypt+0x190/0x190 [ 61.299506] ? tls_sw_sendpage+0x5ff/0xf60 [ 61.303854] ? inet_sendpage+0x1de/0x750 [ 61.308103] ? kernel_sendpage+0x93/0xf0 [ 61.312377] ? sock_sendpage+0x8c/0xc0 [ 61.316280] ? pipe_to_sendpage+0x2d0/0x400 [ 61.320615] ? splice_from_pipe+0x1ea/0x340 [ 61.324952] ? generic_splice_sendpage+0x3c/0x50 [ 61.330085] ? direct_splice_actor+0x128/0x190 [ 61.334702] ? do_sendfile+0x623/0xe20 [ 61.338603] ? __x64_sys_sendfile64+0x15d/0x250 [ 61.343285] ? do_syscall_64+0x1b9/0x820 [ 61.347374] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 61.352762] ? find_held_lock+0x36/0x1c0 [ 61.356840] ? print_usage_bug+0xc0/0xc0 [ 61.360920] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 61.366482] ? tcp_rate_check_app_limited+0x121/0x470 [ 61.371694] ? tcp_fastopen_reset_cipher.cold.14+0x47/0x47 [ 61.377439] tls_push_sg+0x263/0x880 [ 61.381381] ? wait_on_pending_writer+0x5a0/0x5a0 [ 61.386239] ? __kmalloc+0x5f9/0x760 [ 61.390062] ? sk_alloc_sg+0x798/0x9d0 [ 61.393974] tls_push_record+0xaec/0x1400 [ 61.398157] tls_sw_sendpage+0x5ff/0xf60 [ 61.402335] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 61.406699] ? iov_iter_npages+0xe80/0xe80 [ 61.411077] ? trace_hardirqs_on+0xd/0x10 [ 61.415232] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 61.419577] inet_sendpage+0x1de/0x750 [ 61.423462] ? inet_sendmsg+0x690/0x690 [ 61.427436] ? iter_file_splice_write+0x1010/0x1010 [ 61.432445] kernel_sendpage+0x93/0xf0 [ 61.436325] ? inet_sendmsg+0x690/0x690 [ 61.440298] sock_sendpage+0x8c/0xc0 [ 61.443999] ? kernel_sendpage+0xf0/0xf0 [ 61.448232] pipe_to_sendpage+0x2d0/0x400 [ 61.452372] ? generic_pipe_buf_nosteal+0x10/0x10 [ 61.457209] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 61.462756] ? splice_from_pipe_next.part.9+0x296/0x340 [ 61.468209] __splice_from_pipe+0x38e/0x7c0 [ 61.472523] ? generic_pipe_buf_nosteal+0x10/0x10 [ 61.477630] splice_from_pipe+0x1ea/0x340 [ 61.481777] ? generic_pipe_buf_nosteal+0x10/0x10 [ 61.486699] ? splice_shrink_spd+0xd0/0xd0 [ 61.490940] ? security_file_permission+0x1c6/0x240 [ 61.496755] generic_splice_sendpage+0x3c/0x50 [ 61.501341] ? splice_from_pipe+0x340/0x340 [ 61.505667] direct_splice_actor+0x128/0x190 [ 61.510060] splice_direct_to_actor+0x318/0x8f0 [ 61.514830] ? pipe_to_sendpage+0x400/0x400 [ 61.519167] ? do_splice_to+0x190/0x190 [ 61.523258] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 61.529032] ? rw_verify_area+0x118/0x360 [ 61.533200] do_splice_direct+0x2d4/0x420 [ 61.537393] ? splice_direct_to_actor+0x8f0/0x8f0 [ 61.542363] ? rw_verify_area+0x118/0x360 [ 61.546769] do_sendfile+0x623/0xe20 [ 61.550594] ? do_compat_pwritev64+0x1c0/0x1c0 [ 61.555202] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 61.560924] ? _copy_from_user+0xdf/0x150 [ 61.565087] __x64_sys_sendfile64+0x15d/0x250 [ 61.569683] ? __ia32_sys_sendfile+0x2a0/0x2a0 [ 61.574277] ? do_syscall_64+0x9a/0x820 [ 61.578351] do_syscall_64+0x1b9/0x820 [ 61.582338] ? syscall_return_slowpath+0x5e0/0x5e0 [ 61.587286] ? syscall_return_slowpath+0x31d/0x5e0 [ 61.592231] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 61.597607] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 61.602472] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 61.607843] RIP: 0033:0x440cc9 [ 61.611028] Code: e8 0c b6 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 9b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 61.630534] RSP: 002b:00007fff94c3a518 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 61.638261] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000440cc9 [ 61.645646] RDX: 00000000200000c0 RSI: 0000000000000005 RDI: 0000000000000004 [ 61.652921] RBP: 00007fff94c3a530 R08: 0000000000000001 R09: 0000000000000000 [ 61.660284] R10: 0000000000000005 R11: 0000000000000246 R12: ffffffffffffffff [ 61.667573] R13: 0000000000000006 R14: 0000000000000000 R15: 0000000000000000 executing program [ 61.765720] FAULT_INJECTION: forcing a failure. [ 61.765720] name failslab, interval 1, probability 0, space 0, times 0 [ 61.777009] CPU: 1 PID: 4530 Comm: syz-executor098 Not tainted 4.18.0-rc1+ #108 [ 61.784460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 61.793825] Call Trace: [ 61.796432] dump_stack+0x1c9/0x2b4 [ 61.800078] ? dump_stack_print_info.cold.2+0x52/0x52 [ 61.805285] ? debug_check_no_locks_freed+0x310/0x310 [ 61.810495] should_fail.cold.4+0xa/0x1a [ 61.814585] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 61.819703] ? scatterwalk_copychunks+0x424/0x500 [ 61.824556] ? graph_lock+0x170/0x170 [ 61.828535] ? scatterwalk_map_and_copy+0xe7/0x260 [ 61.833619] ? find_held_lock+0x36/0x1c0 [ 61.837696] ? __lock_is_held+0xb5/0x140 [ 61.841861] ? check_same_owner+0x340/0x340 [ 61.846187] ? rcu_note_context_switch+0x730/0x730 [ 61.851135] __should_failslab+0x124/0x180 [ 61.855611] should_failslab+0x9/0x14 [ 61.859418] kmem_cache_alloc_node+0x272/0x780 [ 61.864018] __alloc_skb+0x119/0x790 [ 61.867789] ? skb_scrub_packet+0x580/0x580 [ 61.872126] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 61.877949] ? tcp_established_options+0x374/0x5c0 [ 61.882892] ? tcp_select_initial_window+0x3a0/0x3a0 [ 61.888279] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 61.893478] ? tcp_current_mss+0x2ac/0x410 [ 61.898783] ? tcp_mtu_to_mss+0x4e0/0x4e0 [ 61.902950] sk_stream_alloc_skb+0x141/0x970 [ 61.907369] ? tcp_init_transfer+0x470/0x470 [ 61.911797] ? is_bpf_text_address+0xd7/0x170 [ 61.916312] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 61.921349] do_tcp_sendpages+0xa26/0x1e80 [ 61.925623] ? sk_stream_alloc_skb+0x970/0x970 [ 61.930316] ? generic_gcmaes_decrypt+0x190/0x190 [ 61.936137] ? tls_sw_sendpage+0x5ff/0xf60 [ 61.940360] ? inet_sendpage+0x1de/0x750 [ 61.945469] ? kernel_sendpage+0x93/0xf0 [ 61.950234] ? sock_sendpage+0x8c/0xc0 [ 61.954136] ? pipe_to_sendpage+0x2d0/0x400 [ 61.958481] ? splice_from_pipe+0x1ea/0x340 [ 61.962806] ? generic_splice_sendpage+0x3c/0x50 [ 61.967567] ? direct_splice_actor+0x128/0x190 [ 61.972157] ? do_sendfile+0x623/0xe20 [ 61.976045] ? __x64_sys_sendfile64+0x15d/0x250 [ 61.980726] ? do_syscall_64+0x1b9/0x820 [ 61.984796] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 61.990168] ? find_held_lock+0x36/0x1c0 [ 61.994243] ? print_usage_bug+0xc0/0xc0 [ 61.998332] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 62.003877] ? tcp_rate_check_app_limited+0x121/0x470 [ 62.009095] ? tcp_fastopen_reset_cipher.cold.14+0x47/0x47 [ 62.014737] tls_push_sg+0x263/0x880 [ 62.018467] ? wait_on_pending_writer+0x5a0/0x5a0 [ 62.023315] ? __kmalloc+0x5f9/0x760 [ 62.027054] ? sk_alloc_sg+0x798/0x9d0 [ 62.031964] tls_push_record+0xaec/0x1400 [ 62.036126] tls_sw_sendpage+0x5ff/0xf60 [ 62.040191] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 62.044523] ? iov_iter_npages+0xe80/0xe80 [ 62.048928] ? trace_hardirqs_on+0xd/0x10 [ 62.053063] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 62.057367] inet_sendpage+0x1de/0x750 [ 62.061244] ? inet_sendmsg+0x690/0x690 [ 62.065202] ? iter_file_splice_write+0x1010/0x1010 [ 62.070213] kernel_sendpage+0x93/0xf0 [ 62.074088] ? inet_sendmsg+0x690/0x690 [ 62.078048] sock_sendpage+0x8c/0xc0 [ 62.081745] ? kernel_sendpage+0xf0/0xf0 [ 62.085795] pipe_to_sendpage+0x2d0/0x400 [ 62.089944] ? generic_pipe_buf_nosteal+0x10/0x10 [ 62.094862] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 62.100383] ? splice_from_pipe_next.part.9+0x296/0x340 [ 62.105751] __splice_from_pipe+0x38e/0x7c0 [ 62.110070] ? generic_pipe_buf_nosteal+0x10/0x10 [ 62.115089] splice_from_pipe+0x1ea/0x340 [ 62.119321] ? generic_pipe_buf_nosteal+0x10/0x10 [ 62.124158] ? splice_shrink_spd+0xd0/0xd0 [ 62.128393] ? security_file_permission+0x1c6/0x240 [ 62.133393] generic_splice_sendpage+0x3c/0x50 [ 62.137959] ? splice_from_pipe+0x340/0x340 [ 62.142281] direct_splice_actor+0x128/0x190 [ 62.146674] splice_direct_to_actor+0x318/0x8f0 [ 62.151429] ? pipe_to_sendpage+0x400/0x400 [ 62.155898] ? do_splice_to+0x190/0x190 [ 62.159873] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 62.165408] ? rw_verify_area+0x118/0x360 [ 62.169634] do_splice_direct+0x2d4/0x420 [ 62.173780] ? splice_direct_to_actor+0x8f0/0x8f0 [ 62.178623] ? rw_verify_area+0x118/0x360 [ 62.182781] do_sendfile+0x623/0xe20 [ 62.186587] ? do_compat_pwritev64+0x1c0/0x1c0 [ 62.191161] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 62.196692] ? _copy_from_user+0xdf/0x150 [ 62.200853] __x64_sys_sendfile64+0x15d/0x250 [ 62.205333] ? __ia32_sys_sendfile+0x2a0/0x2a0 [ 62.209899] ? do_syscall_64+0x9a/0x820 [ 62.213858] do_syscall_64+0x1b9/0x820 [ 62.217744] ? syscall_return_slowpath+0x5e0/0x5e0 [ 62.222739] ? syscall_return_slowpath+0x31d/0x5e0 [ 62.227659] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 62.233015] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 62.237868] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 62.243042] RIP: 0033:0x440cc9 [ 62.246220] Code: e8 0c b6 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 9b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00 executing program [ 62.265500] RSP: 002b:00007fff94c3a518 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 62.273195] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000440cc9 [ 62.280446] RDX: 00000000200000c0 RSI: 0000000000000005 RDI: 0000000000000004 [ 62.287786] RBP: 00007fff94c3a530 R08: 0000000000000001 R09: 0000000000000000 [ 62.295037] R10: 0000000000000005 R11: 0000000000000246 R12: ffffffffffffffff [ 62.302286] R13: 0000000000000006 R14: 0000000000000000 R15: 0000000000000000 [ 62.325949] FAULT_INJECTION: forcing a failure. [ 62.325949] name failslab, interval 1, probability 0, space 0, times 0 [ 62.337226] CPU: 0 PID: 4531 Comm: syz-executor098 Not tainted 4.18.0-rc1+ #108 [ 62.344759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 62.354356] Call Trace: [ 62.357298] dump_stack+0x1c9/0x2b4 [ 62.360923] ? dump_stack_print_info.cold.2+0x52/0x52 [ 62.366110] ? debug_check_no_locks_freed+0x310/0x310 [ 62.371299] should_fail.cold.4+0xa/0x1a [ 62.375347] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 62.380440] ? scatterwalk_copychunks+0x424/0x500 [ 62.385287] ? graph_lock+0x170/0x170 [ 62.389314] ? scatterwalk_map_and_copy+0xe7/0x260 [ 62.394243] ? find_held_lock+0x36/0x1c0 [ 62.398300] ? __lock_is_held+0xb5/0x140 [ 62.402357] ? check_same_owner+0x340/0x340 [ 62.406689] ? rcu_note_context_switch+0x730/0x730 [ 62.412133] __should_failslab+0x124/0x180 [ 62.416407] should_failslab+0x9/0x14 [ 62.420192] kmem_cache_alloc_node+0x272/0x780 [ 62.424878] __alloc_skb+0x119/0x790 [ 62.428598] ? skb_scrub_packet+0x580/0x580 [ 62.432922] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 62.438473] ? tcp_established_options+0x374/0x5c0 [ 62.443401] ? tcp_select_initial_window+0x3a0/0x3a0 [ 62.448503] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 62.453513] ? tcp_current_mss+0x2ac/0x410 [ 62.457737] ? tcp_mtu_to_mss+0x4e0/0x4e0 [ 62.461965] sk_stream_alloc_skb+0x141/0x970 [ 62.466373] ? tcp_init_transfer+0x470/0x470 [ 62.470778] ? is_bpf_text_address+0xd7/0x170 [ 62.475267] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 62.480362] do_tcp_sendpages+0xa26/0x1e80 [ 62.484998] ? sk_stream_alloc_skb+0x970/0x970 [ 62.489578] ? generic_gcmaes_decrypt+0x190/0x190 [ 62.494421] ? tls_sw_sendpage+0x5ff/0xf60 [ 62.498668] ? inet_sendpage+0x1de/0x750 [ 62.502742] ? kernel_sendpage+0x93/0xf0 [ 62.506795] ? sock_sendpage+0x8c/0xc0 [ 62.510677] ? pipe_to_sendpage+0x2d0/0x400 [ 62.514986] ? splice_from_pipe+0x1ea/0x340 [ 62.519404] ? generic_splice_sendpage+0x3c/0x50 [ 62.524166] ? direct_splice_actor+0x128/0x190 [ 62.528832] ? do_sendfile+0x623/0xe20 [ 62.532748] ? __x64_sys_sendfile64+0x15d/0x250 [ 62.537407] ? do_syscall_64+0x1b9/0x820 [ 62.541466] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 62.546937] ? find_held_lock+0x36/0x1c0 [ 62.550994] ? print_usage_bug+0xc0/0xc0 [ 62.555322] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 62.561701] ? tcp_rate_check_app_limited+0x121/0x470 [ 62.566894] ? tcp_fastopen_reset_cipher.cold.14+0x47/0x47 [ 62.572528] tls_push_sg+0x263/0x880 [ 62.576241] ? wait_on_pending_writer+0x5a0/0x5a0 [ 62.581076] ? __kmalloc+0x5f9/0x760 [ 62.584780] ? sk_alloc_sg+0x798/0x9d0 [ 62.588741] tls_push_record+0xaec/0x1400 [ 62.592908] tls_sw_sendpage+0x5ff/0xf60 [ 62.596988] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 62.601305] ? iov_iter_npages+0xe80/0xe80 [ 62.605626] ? trace_hardirqs_on+0xd/0x10 [ 62.609764] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 62.614072] inet_sendpage+0x1de/0x750 [ 62.617949] ? inet_sendmsg+0x690/0x690 [ 62.621957] ? iter_file_splice_write+0x1010/0x1010 [ 62.626960] kernel_sendpage+0x93/0xf0 [ 62.630834] ? inet_sendmsg+0x690/0x690 [ 62.634969] sock_sendpage+0x8c/0xc0 [ 62.638696] ? kernel_sendpage+0xf0/0xf0 [ 62.642765] pipe_to_sendpage+0x2d0/0x400 [ 62.646923] ? generic_pipe_buf_nosteal+0x10/0x10 [ 62.651760] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 62.657292] ? splice_from_pipe_next.part.9+0x296/0x340 [ 62.662648] __splice_from_pipe+0x38e/0x7c0 [ 62.666961] ? generic_pipe_buf_nosteal+0x10/0x10 [ 62.671791] splice_from_pipe+0x1ea/0x340 [ 62.675925] ? generic_pipe_buf_nosteal+0x10/0x10 [ 62.680786] ? splice_shrink_spd+0xd0/0xd0 [ 62.685035] ? security_file_permission+0x1c6/0x240 [ 62.690062] generic_splice_sendpage+0x3c/0x50 [ 62.694639] ? splice_from_pipe+0x340/0x340 [ 62.698959] direct_splice_actor+0x128/0x190 [ 62.703367] splice_direct_to_actor+0x318/0x8f0 [ 62.708041] ? pipe_to_sendpage+0x400/0x400 [ 62.712355] ? do_splice_to+0x190/0x190 [ 62.716317] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 62.721869] ? rw_verify_area+0x118/0x360 [ 62.726023] do_splice_direct+0x2d4/0x420 [ 62.730165] ? splice_direct_to_actor+0x8f0/0x8f0 [ 62.734996] ? rw_verify_area+0x118/0x360 [ 62.739143] do_sendfile+0x623/0xe20 [ 62.742866] ? do_compat_pwritev64+0x1c0/0x1c0 [ 62.747625] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 62.753157] ? _copy_from_user+0xdf/0x150 [ 62.757293] __x64_sys_sendfile64+0x15d/0x250 [ 62.761774] ? __ia32_sys_sendfile+0x2a0/0x2a0 [ 62.766355] ? do_syscall_64+0x9a/0x820 [ 62.770315] do_syscall_64+0x1b9/0x820 [ 62.774361] ? syscall_return_slowpath+0x5e0/0x5e0 [ 62.779277] ? syscall_return_slowpath+0x31d/0x5e0 [ 62.784200] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 62.789561] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 62.794406] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 62.799580] RIP: 0033:0x440cc9 [ 62.802749] Code: e8 0c b6 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 9b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00 executing program [ 62.822073] RSP: 002b:00007fff94c3a518 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 62.829773] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000440cc9 [ 62.837035] RDX: 00000000200000c0 RSI: 0000000000000005 RDI: 0000000000000004 [ 62.844309] RBP: 00007fff94c3a530 R08: 0000000000000001 R09: 0000000000000000 [ 62.851566] R10: 0000000000000005 R11: 0000000000000246 R12: ffffffffffffffff [ 62.858829] R13: 0000000000000006 R14: 0000000000000000 R15: 0000000000000000 [ 62.896706] FAULT_INJECTION: forcing a failure. [ 62.896706] name failslab, interval 1, probability 0, space 0, times 0 [ 62.908056] CPU: 1 PID: 4532 Comm: syz-executor098 Not tainted 4.18.0-rc1+ #108 [ 62.915588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 62.924945] Call Trace: [ 62.927550] dump_stack+0x1c9/0x2b4 [ 62.931267] ? dump_stack_print_info.cold.2+0x52/0x52 [ 62.936478] ? debug_check_no_locks_freed+0x310/0x310 [ 62.941667] should_fail.cold.4+0xa/0x1a [ 62.945734] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 62.950828] ? scatterwalk_copychunks+0x424/0x500 [ 62.955660] ? graph_lock+0x170/0x170 [ 62.959447] ? scatterwalk_map_and_copy+0xe7/0x260 [ 62.964372] ? find_held_lock+0x36/0x1c0 [ 62.968428] ? __lock_is_held+0xb5/0x140 [ 62.972479] ? check_same_owner+0x340/0x340 [ 62.976788] ? rcu_note_context_switch+0x730/0x730 [ 62.981716] __should_failslab+0x124/0x180 [ 62.985953] should_failslab+0x9/0x14 [ 62.989742] kmem_cache_alloc_node+0x272/0x780 [ 62.994323] __alloc_skb+0x119/0x790 [ 62.998033] ? skb_scrub_packet+0x580/0x580 [ 63.002370] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 63.007901] ? tcp_established_options+0x374/0x5c0 [ 63.012826] ? tcp_select_initial_window+0x3a0/0x3a0 [ 63.017934] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 63.022947] ? tcp_current_mss+0x2ac/0x410 [ 63.027262] ? tcp_mtu_to_mss+0x4e0/0x4e0 [ 63.031404] sk_stream_alloc_skb+0x141/0x970 [ 63.035806] ? tcp_init_transfer+0x470/0x470 [ 63.040222] ? is_bpf_text_address+0xd7/0x170 [ 63.044720] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 63.049751] do_tcp_sendpages+0xa26/0x1e80 [ 63.053989] ? sk_stream_alloc_skb+0x970/0x970 [ 63.058579] ? generic_gcmaes_decrypt+0x190/0x190 [ 63.063427] ? tls_sw_sendpage+0x5ff/0xf60 [ 63.067653] ? inet_sendpage+0x1de/0x750 [ 63.071721] ? kernel_sendpage+0x93/0xf0 [ 63.075788] ? sock_sendpage+0x8c/0xc0 [ 63.079674] ? pipe_to_sendpage+0x2d0/0x400 [ 63.083989] ? splice_from_pipe+0x1ea/0x340 [ 63.088301] ? generic_splice_sendpage+0x3c/0x50 [ 63.093051] ? direct_splice_actor+0x128/0x190 [ 63.097644] ? do_sendfile+0x623/0xe20 [ 63.101534] ? __x64_sys_sendfile64+0x15d/0x250 [ 63.106200] ? do_syscall_64+0x1b9/0x820 [ 63.110253] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 63.115638] ? find_held_lock+0x36/0x1c0 [ 63.119706] ? print_usage_bug+0xc0/0xc0 [ 63.123761] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 63.129304] ? tcp_rate_check_app_limited+0x121/0x470 [ 63.134504] ? tcp_fastopen_reset_cipher.cold.14+0x47/0x47 [ 63.140144] tls_push_sg+0x263/0x880 [ 63.143864] ? wait_on_pending_writer+0x5a0/0x5a0 [ 63.148703] ? __kmalloc+0x5f9/0x760 [ 63.152411] ? sk_alloc_sg+0x798/0x9d0 [ 63.156293] tls_push_record+0xaec/0x1400 [ 63.160444] tls_sw_sendpage+0x5ff/0xf60 [ 63.164520] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 63.168846] ? iov_iter_npages+0xe80/0xe80 [ 63.173089] ? trace_hardirqs_on+0xd/0x10 [ 63.177230] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 63.181553] inet_sendpage+0x1de/0x750 [ 63.185429] ? inet_sendmsg+0x690/0x690 [ 63.189392] ? iter_file_splice_write+0x1010/0x1010 [ 63.194402] kernel_sendpage+0x93/0xf0 [ 63.198366] ? inet_sendmsg+0x690/0x690 [ 63.202339] sock_sendpage+0x8c/0xc0 [ 63.206047] ? kernel_sendpage+0xf0/0xf0 [ 63.210100] pipe_to_sendpage+0x2d0/0x400 [ 63.214247] ? generic_pipe_buf_nosteal+0x10/0x10 [ 63.219074] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 63.224621] ? splice_from_pipe_next.part.9+0x296/0x340 [ 63.229981] __splice_from_pipe+0x38e/0x7c0 [ 63.234312] ? generic_pipe_buf_nosteal+0x10/0x10 [ 63.239171] splice_from_pipe+0x1ea/0x340 [ 63.243312] ? generic_pipe_buf_nosteal+0x10/0x10 [ 63.248151] ? splice_shrink_spd+0xd0/0xd0 [ 63.252487] ? security_file_permission+0x1c6/0x240 [ 63.257687] generic_splice_sendpage+0x3c/0x50 [ 63.262268] ? splice_from_pipe+0x340/0x340 [ 63.266579] direct_splice_actor+0x128/0x190 [ 63.271443] splice_direct_to_actor+0x318/0x8f0 [ 63.276126] ? pipe_to_sendpage+0x400/0x400 [ 63.280440] ? do_splice_to+0x190/0x190 [ 63.284409] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 63.289953] ? rw_verify_area+0x118/0x360 [ 63.294113] do_splice_direct+0x2d4/0x420 [ 63.298262] ? splice_direct_to_actor+0x8f0/0x8f0 [ 63.303120] ? rw_verify_area+0x118/0x360 [ 63.307264] do_sendfile+0x623/0xe20 [ 63.310978] ? do_compat_pwritev64+0x1c0/0x1c0 [ 63.315559] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 63.321085] ? _copy_from_user+0xdf/0x150 [ 63.325234] __x64_sys_sendfile64+0x15d/0x250 [ 63.329728] ? __ia32_sys_sendfile+0x2a0/0x2a0 [ 63.334302] ? do_syscall_64+0x9a/0x820 [ 63.338274] do_syscall_64+0x1b9/0x820 [ 63.342235] ? syscall_return_slowpath+0x5e0/0x5e0 [ 63.347158] ? syscall_return_slowpath+0x31d/0x5e0 [ 63.352098] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 63.357456] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 63.362292] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 63.367479] RIP: 0033:0x440cc9 [ 63.370926] Code: e8 0c b6 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 9b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 63.390930] RSP: 002b:00007fff94c3a518 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 63.398632] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000440cc9 [ 63.405905] RDX: 00000000200000c0 RSI: 0000000000000005 RDI: 0000000000000004 [ 63.413254] RBP: 00007fff94c3a530 R08: 0000000000000001 R09: 0000000000000000 [ 63.420534] R10: 0000000000000005 R11: 0000000000000246 R12: ffffffffffffffff [ 63.427796] R13: 0000000000000006 R14: 0000000000000000 R15: 0000000000000000 executing program [ 63.547854] FAULT_INJECTION: forcing a failure. [ 63.547854] name failslab, interval 1, probability 0, space 0, times 0 [ 63.559131] CPU: 0 PID: 4533 Comm: syz-executor098 Not tainted 4.18.0-rc1+ #108 [ 63.566580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 63.575945] Call Trace: [ 63.578533] dump_stack+0x1c9/0x2b4 [ 63.582165] ? dump_stack_print_info.cold.2+0x52/0x52 [ 63.587366] ? debug_check_no_locks_freed+0x310/0x310 [ 63.592686] should_fail.cold.4+0xa/0x1a [ 63.596752] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 63.601857] ? scatterwalk_copychunks+0x424/0x500 [ 63.606707] ? graph_lock+0x170/0x170 [ 63.610498] ? scatterwalk_map_and_copy+0xe7/0x260 [ 63.615419] ? find_held_lock+0x36/0x1c0 [ 63.619482] ? __lock_is_held+0xb5/0x140 [ 63.623578] ? check_same_owner+0x340/0x340 [ 63.627891] ? rcu_note_context_switch+0x730/0x730 [ 63.632836] __should_failslab+0x124/0x180 [ 63.637064] should_failslab+0x9/0x14 [ 63.640857] kmem_cache_alloc_node+0x272/0x780 [ 63.645441] __alloc_skb+0x119/0x790 [ 63.649145] ? skb_scrub_packet+0x580/0x580 [ 63.653462] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 63.659089] ? tcp_established_options+0x374/0x5c0 [ 63.664019] ? tcp_select_initial_window+0x3a0/0x3a0 [ 63.669131] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 63.674134] ? tcp_current_mss+0x2ac/0x410 [ 63.678360] ? tcp_mtu_to_mss+0x4e0/0x4e0 [ 63.682529] sk_stream_alloc_skb+0x141/0x970 [ 63.686937] ? tcp_init_transfer+0x470/0x470 [ 63.691350] ? is_bpf_text_address+0xd7/0x170 [ 63.695851] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 63.700867] do_tcp_sendpages+0xa26/0x1e80 [ 63.705097] ? sk_stream_alloc_skb+0x970/0x970 [ 63.709669] ? generic_gcmaes_decrypt+0x190/0x190 [ 63.714514] ? tls_sw_sendpage+0x5ff/0xf60 [ 63.718777] ? inet_sendpage+0x1de/0x750 [ 63.722822] ? kernel_sendpage+0x93/0xf0 [ 63.726872] ? sock_sendpage+0x8c/0xc0 [ 63.730745] ? pipe_to_sendpage+0x2d0/0x400 [ 63.735067] ? splice_from_pipe+0x1ea/0x340 [ 63.739384] ? generic_splice_sendpage+0x3c/0x50 [ 63.744130] ? direct_splice_actor+0x128/0x190 [ 63.748711] ? do_sendfile+0x623/0xe20 [ 63.752587] ? __x64_sys_sendfile64+0x15d/0x250 [ 63.757256] ? do_syscall_64+0x1b9/0x820 [ 63.761314] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 63.766679] ? find_held_lock+0x36/0x1c0 [ 63.770730] ? print_usage_bug+0xc0/0xc0 [ 63.774790] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 63.780328] ? tcp_rate_check_app_limited+0x121/0x470 [ 63.785521] ? tcp_fastopen_reset_cipher.cold.14+0x47/0x47 [ 63.791138] tls_push_sg+0x263/0x880 [ 63.794845] ? wait_on_pending_writer+0x5a0/0x5a0 [ 63.799676] ? __kmalloc+0x5f9/0x760 [ 63.803375] ? sk_alloc_sg+0x798/0x9d0 [ 63.807261] tls_push_record+0xaec/0x1400 [ 63.811406] tls_sw_sendpage+0x5ff/0xf60 [ 63.815460] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 63.819773] ? iov_iter_npages+0xe80/0xe80 [ 63.824104] ? trace_hardirqs_on+0xd/0x10 [ 63.828254] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 63.832570] inet_sendpage+0x1de/0x750 [ 63.836451] ? inet_sendmsg+0x690/0x690 [ 63.840423] ? iter_file_splice_write+0x1010/0x1010 [ 63.845428] kernel_sendpage+0x93/0xf0 [ 63.849313] ? inet_sendmsg+0x690/0x690 [ 63.853286] sock_sendpage+0x8c/0xc0 [ 63.856999] ? kernel_sendpage+0xf0/0xf0 [ 63.861056] pipe_to_sendpage+0x2d0/0x400 [ 63.865195] ? generic_pipe_buf_nosteal+0x10/0x10 [ 63.870141] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 63.875666] ? splice_from_pipe_next.part.9+0x296/0x340 [ 63.881106] __splice_from_pipe+0x38e/0x7c0 [ 63.885500] ? generic_pipe_buf_nosteal+0x10/0x10 [ 63.890341] splice_from_pipe+0x1ea/0x340 [ 63.894573] ? generic_pipe_buf_nosteal+0x10/0x10 [ 63.899399] ? splice_shrink_spd+0xd0/0xd0 [ 63.903622] ? security_file_permission+0x1c6/0x240 [ 63.908628] generic_splice_sendpage+0x3c/0x50 [ 63.913192] ? splice_from_pipe+0x340/0x340 [ 63.917508] direct_splice_actor+0x128/0x190 [ 63.921911] splice_direct_to_actor+0x318/0x8f0 [ 63.926586] ? pipe_to_sendpage+0x400/0x400 [ 63.930893] ? do_splice_to+0x190/0x190 [ 63.934857] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 63.940385] ? rw_verify_area+0x118/0x360 [ 63.944527] do_splice_direct+0x2d4/0x420 [ 63.948669] ? splice_direct_to_actor+0x8f0/0x8f0 [ 63.953503] ? rw_verify_area+0x118/0x360 [ 63.957650] do_sendfile+0x623/0xe20 [ 63.961360] ? do_compat_pwritev64+0x1c0/0x1c0 [ 63.965931] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 63.971452] ? _copy_from_user+0xdf/0x150 [ 63.975588] __x64_sys_sendfile64+0x15d/0x250 [ 63.980068] ? __ia32_sys_sendfile+0x2a0/0x2a0 [ 63.984723] ? do_syscall_64+0x9a/0x820 [ 63.988690] do_syscall_64+0x1b9/0x820 [ 63.992583] ? syscall_return_slowpath+0x5e0/0x5e0 [ 63.997500] ? syscall_return_slowpath+0x31d/0x5e0 [ 64.002425] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 64.007867] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 64.012702] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 64.017877] RIP: 0033:0x440cc9 [ 64.021136] Code: e8 0c b6 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 9b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 64.040318] RSP: 002b:00007fff94c3a518 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 64.048017] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000440cc9 [ 64.055273] RDX: 00000000200000c0 RSI: 0000000000000005 RDI: 0000000000000004 [ 64.062530] RBP: 00007fff94c3a530 R08: 0000000000000001 R09: 0000000000000000 [ 64.069796] R10: 0000000000000005 R11: 0000000000000246 R12: ffffffffffffffff [ 64.077055] R13: 0000000000000006 R14: 0000000000000000 R15: 0000000000000000 executing program [ 64.228562] FAULT_INJECTION: forcing a failure. [ 64.228562] name failslab, interval 1, probability 0, space 0, times 0 [ 64.239805] CPU: 1 PID: 4534 Comm: syz-executor098 Not tainted 4.18.0-rc1+ #108 [ 64.247258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 64.256621] Call Trace: [ 64.259210] dump_stack+0x1c9/0x2b4 [ 64.262829] ? dump_stack_print_info.cold.2+0x52/0x52 [ 64.268023] ? debug_check_no_locks_freed+0x310/0x310 [ 64.273222] should_fail.cold.4+0xa/0x1a [ 64.277279] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 64.282379] ? scatterwalk_copychunks+0x424/0x500 [ 64.287218] ? graph_lock+0x170/0x170 [ 64.291011] ? scatterwalk_map_and_copy+0xe7/0x260 [ 64.295942] ? find_held_lock+0x36/0x1c0 [ 64.300020] ? __lock_is_held+0xb5/0x140 [ 64.304088] ? check_same_owner+0x340/0x340 [ 64.308422] ? rcu_note_context_switch+0x730/0x730 [ 64.313348] __should_failslab+0x124/0x180 [ 64.317579] should_failslab+0x9/0x14 [ 64.321369] kmem_cache_alloc_node+0x272/0x780 [ 64.325946] __alloc_skb+0x119/0x790 [ 64.329648] ? skb_scrub_packet+0x580/0x580 [ 64.333961] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 64.339491] ? tcp_established_options+0x374/0x5c0 [ 64.344408] ? tcp_select_initial_window+0x3a0/0x3a0 [ 64.349526] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 64.354538] ? tcp_current_mss+0x2ac/0x410 [ 64.358771] ? tcp_mtu_to_mss+0x4e0/0x4e0 [ 64.362912] sk_stream_alloc_skb+0x141/0x970 [ 64.367324] ? tcp_init_transfer+0x470/0x470 [ 64.371743] ? is_bpf_text_address+0xd7/0x170 [ 64.376254] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 64.381269] do_tcp_sendpages+0xa26/0x1e80 [ 64.385511] ? sk_stream_alloc_skb+0x970/0x970 [ 64.390089] ? generic_gcmaes_decrypt+0x190/0x190 [ 64.394925] ? tls_sw_sendpage+0x5ff/0xf60 [ 64.399145] ? inet_sendpage+0x1de/0x750 [ 64.403198] ? kernel_sendpage+0x93/0xf0 [ 64.407246] ? sock_sendpage+0x8c/0xc0 [ 64.411141] ? pipe_to_sendpage+0x2d0/0x400 [ 64.415452] ? splice_from_pipe+0x1ea/0x340 [ 64.419761] ? generic_splice_sendpage+0x3c/0x50 [ 64.424511] ? direct_splice_actor+0x128/0x190 [ 64.429088] ? do_sendfile+0x623/0xe20 [ 64.432965] ? __x64_sys_sendfile64+0x15d/0x250 [ 64.437628] ? do_syscall_64+0x1b9/0x820 [ 64.441674] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 64.447040] ? find_held_lock+0x36/0x1c0 [ 64.451110] ? print_usage_bug+0xc0/0xc0 [ 64.455173] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 64.460784] ? tcp_rate_check_app_limited+0x121/0x470 [ 64.466057] ? tcp_fastopen_reset_cipher.cold.14+0x47/0x47 [ 64.471675] tls_push_sg+0x263/0x880 [ 64.475393] ? wait_on_pending_writer+0x5a0/0x5a0 [ 64.480227] ? __kmalloc+0x5f9/0x760 [ 64.483955] ? sk_alloc_sg+0x798/0x9d0 [ 64.487848] tls_push_record+0xaec/0x1400 [ 64.492005] tls_sw_sendpage+0x5ff/0xf60 [ 64.496094] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 64.500405] ? iov_iter_npages+0xe80/0xe80 [ 64.504664] ? trace_hardirqs_on+0xd/0x10 [ 64.508820] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 64.513146] inet_sendpage+0x1de/0x750 [ 64.517033] ? inet_sendmsg+0x690/0x690 [ 64.521011] ? iter_file_splice_write+0x1010/0x1010 [ 64.526033] kernel_sendpage+0x93/0xf0 [ 64.529915] ? inet_sendmsg+0x690/0x690 [ 64.533886] sock_sendpage+0x8c/0xc0 [ 64.537600] ? kernel_sendpage+0xf0/0xf0 [ 64.541648] pipe_to_sendpage+0x2d0/0x400 [ 64.545797] ? generic_pipe_buf_nosteal+0x10/0x10 [ 64.550636] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 64.556162] ? splice_from_pipe_next.part.9+0x296/0x340 [ 64.561529] __splice_from_pipe+0x38e/0x7c0 [ 64.565843] ? generic_pipe_buf_nosteal+0x10/0x10 [ 64.570698] splice_from_pipe+0x1ea/0x340 [ 64.575029] ? generic_pipe_buf_nosteal+0x10/0x10 [ 64.579889] ? splice_shrink_spd+0xd0/0xd0 [ 64.584126] ? security_file_permission+0x1c6/0x240 [ 64.589156] generic_splice_sendpage+0x3c/0x50 [ 64.593850] ? splice_from_pipe+0x340/0x340 [ 64.598185] direct_splice_actor+0x128/0x190 [ 64.602603] splice_direct_to_actor+0x318/0x8f0 [ 64.607268] ? pipe_to_sendpage+0x400/0x400 [ 64.611677] ? do_splice_to+0x190/0x190 [ 64.615641] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 64.621170] ? rw_verify_area+0x118/0x360 [ 64.625323] do_splice_direct+0x2d4/0x420 [ 64.629476] ? splice_direct_to_actor+0x8f0/0x8f0 [ 64.634326] ? rw_verify_area+0x118/0x360 [ 64.638481] do_sendfile+0x623/0xe20 [ 64.642191] ? do_compat_pwritev64+0x1c0/0x1c0 [ 64.646767] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 64.652301] ? _copy_from_user+0xdf/0x150 [ 64.656539] __x64_sys_sendfile64+0x15d/0x250 [ 64.661031] ? __ia32_sys_sendfile+0x2a0/0x2a0 [ 64.665608] ? do_syscall_64+0x9a/0x820 [ 64.669578] do_syscall_64+0x1b9/0x820 [ 64.673463] ? syscall_return_slowpath+0x5e0/0x5e0 [ 64.678378] ? syscall_return_slowpath+0x31d/0x5e0 [ 64.683304] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 64.688665] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 64.693513] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 64.698688] RIP: 0033:0x440cc9 [ 64.701858] Code: e8 0c b6 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 9b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 64.721161] RSP: 002b:00007fff94c3a518 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 64.729205] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000440cc9 [ 64.736460] RDX: 00000000200000c0 RSI: 0000000000000005 RDI: 0000000000000004 [ 64.743715] RBP: 00007fff94c3a530 R08: 0000000000000001 R09: 0000000000000000 [ 64.750979] R10: 0000000000000005 R11: 0000000000000246 R12: ffffffffffffffff [ 64.758239] R13: 0000000000000006 R14: 0000000000000000 R15: 0000000000000000 executing program [ 64.916398] FAULT_INJECTION: forcing a failure. [ 64.916398] name failslab, interval 1, probability 0, space 0, times 0 [ 64.927661] CPU: 1 PID: 4535 Comm: syz-executor098 Not tainted 4.18.0-rc1+ #108 [ 64.935108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 64.944452] Call Trace: [ 64.947040] dump_stack+0x1c9/0x2b4 [ 64.950664] ? dump_stack_print_info.cold.2+0x52/0x52 [ 64.955855] ? debug_check_no_locks_freed+0x310/0x310 [ 64.961054] should_fail.cold.4+0xa/0x1a [ 64.965116] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 64.970223] ? scatterwalk_copychunks+0x424/0x500 [ 64.975075] ? graph_lock+0x170/0x170 [ 64.978875] ? scatterwalk_map_and_copy+0xe7/0x260 [ 64.983806] ? find_held_lock+0x36/0x1c0 [ 64.987866] ? __lock_is_held+0xb5/0x140 [ 64.991946] ? check_same_owner+0x340/0x340 [ 64.996267] ? rcu_note_context_switch+0x730/0x730 [ 65.001196] __should_failslab+0x124/0x180 [ 65.005429] should_failslab+0x9/0x14 [ 65.009214] kmem_cache_alloc_node+0x272/0x780 [ 65.013792] __alloc_skb+0x119/0x790 [ 65.017493] ? skb_scrub_packet+0x580/0x580 [ 65.021811] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 65.027344] ? tcp_established_options+0x374/0x5c0 [ 65.032292] ? tcp_select_initial_window+0x3a0/0x3a0 [ 65.037416] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 65.042488] ? tcp_current_mss+0x2ac/0x410 [ 65.046725] ? tcp_mtu_to_mss+0x4e0/0x4e0 [ 65.050877] sk_stream_alloc_skb+0x141/0x970 [ 65.055296] ? tcp_init_transfer+0x470/0x470 [ 65.059703] ? is_bpf_text_address+0xd7/0x170 [ 65.064195] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 65.069210] do_tcp_sendpages+0xa26/0x1e80 [ 65.073461] ? sk_stream_alloc_skb+0x970/0x970 [ 65.078050] ? generic_gcmaes_decrypt+0x190/0x190 [ 65.082889] ? tls_sw_sendpage+0x5ff/0xf60 [ 65.087118] ? inet_sendpage+0x1de/0x750 [ 65.091177] ? kernel_sendpage+0x93/0xf0 [ 65.095238] ? sock_sendpage+0x8c/0xc0 [ 65.099122] ? pipe_to_sendpage+0x2d0/0x400 [ 65.103460] ? splice_from_pipe+0x1ea/0x340 [ 65.107778] ? generic_splice_sendpage+0x3c/0x50 [ 65.112539] ? direct_splice_actor+0x128/0x190 [ 65.117119] ? do_sendfile+0x623/0xe20 [ 65.121007] ? __x64_sys_sendfile64+0x15d/0x250 [ 65.125710] ? do_syscall_64+0x1b9/0x820 [ 65.129785] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 65.135186] ? find_held_lock+0x36/0x1c0 [ 65.139247] ? print_usage_bug+0xc0/0xc0 [ 65.143309] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 65.148854] ? tcp_rate_check_app_limited+0x121/0x470 [ 65.154060] ? tcp_fastopen_reset_cipher.cold.14+0x47/0x47 [ 65.159686] tls_push_sg+0x263/0x880 [ 65.163415] ? wait_on_pending_writer+0x5a0/0x5a0 [ 65.168268] ? __kmalloc+0x5f9/0x760 [ 65.171983] ? sk_alloc_sg+0x798/0x9d0 [ 65.175879] tls_push_record+0xaec/0x1400 [ 65.180055] tls_sw_sendpage+0x5ff/0xf60 [ 65.184127] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 65.188460] ? iov_iter_npages+0xe80/0xe80 [ 65.192789] ? trace_hardirqs_on+0xd/0x10 [ 65.196931] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 65.201244] inet_sendpage+0x1de/0x750 [ 65.205233] ? inet_sendmsg+0x690/0x690 [ 65.209210] ? iter_file_splice_write+0x1010/0x1010 [ 65.214215] kernel_sendpage+0x93/0xf0 [ 65.218093] ? inet_sendmsg+0x690/0x690 [ 65.222062] sock_sendpage+0x8c/0xc0 [ 65.225768] ? kernel_sendpage+0xf0/0xf0 [ 65.229816] pipe_to_sendpage+0x2d0/0x400 [ 65.233951] ? generic_pipe_buf_nosteal+0x10/0x10 [ 65.238781] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 65.244305] ? splice_from_pipe_next.part.9+0x296/0x340 [ 65.249672] __splice_from_pipe+0x38e/0x7c0 [ 65.253989] ? generic_pipe_buf_nosteal+0x10/0x10 [ 65.258866] splice_from_pipe+0x1ea/0x340 [ 65.263042] ? generic_pipe_buf_nosteal+0x10/0x10 [ 65.267903] ? splice_shrink_spd+0xd0/0xd0 [ 65.272133] ? security_file_permission+0x1c6/0x240 [ 65.277145] generic_splice_sendpage+0x3c/0x50 [ 65.281730] ? splice_from_pipe+0x340/0x340 [ 65.286051] direct_splice_actor+0x128/0x190 [ 65.290456] splice_direct_to_actor+0x318/0x8f0 [ 65.295123] ? pipe_to_sendpage+0x400/0x400 [ 65.299463] ? do_splice_to+0x190/0x190 [ 65.303427] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 65.308958] ? rw_verify_area+0x118/0x360 [ 65.313105] do_splice_direct+0x2d4/0x420 [ 65.317253] ? splice_direct_to_actor+0x8f0/0x8f0 [ 65.322099] ? rw_verify_area+0x118/0x360 [ 65.326241] do_sendfile+0x623/0xe20 [ 65.329947] ? do_compat_pwritev64+0x1c0/0x1c0 [ 65.334522] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 65.340055] ? _copy_from_user+0xdf/0x150 [ 65.344198] __x64_sys_sendfile64+0x15d/0x250 [ 65.348772] ? __ia32_sys_sendfile+0x2a0/0x2a0 [ 65.353355] ? do_syscall_64+0x9a/0x820 [ 65.357316] do_syscall_64+0x1b9/0x820 [ 65.361190] ? syscall_return_slowpath+0x5e0/0x5e0 [ 65.366110] ? syscall_return_slowpath+0x31d/0x5e0 [ 65.371061] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 65.376427] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 65.381266] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 65.386450] RIP: 0033:0x440cc9 [ 65.390451] Code: e8 0c b6 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 9b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 65.409724] RSP: 002b:00007fff94c3a518 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 executing program [ 65.417421] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000440cc9 [ 65.424685] RDX: 00000000200000c0 RSI: 0000000000000005 RDI: 0000000000000004 [ 65.431946] RBP: 00007fff94c3a530 R08: 0000000000000001 R09: 0000000000000000 [ 65.439206] R10: 0000000000000005 R11: 0000000000000246 R12: ffffffffffffffff [ 65.446485] R13: 0000000000000006 R14: 0000000000000000 R15: 0000000000000000 [ 65.468353] FAULT_INJECTION: forcing a failure. [ 65.468353] name failslab, interval 1, probability 0, space 0, times 0 [ 65.479746] CPU: 0 PID: 4536 Comm: syz-executor098 Not tainted 4.18.0-rc1+ #108 [ 65.487192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 65.496531] Call Trace: [ 65.499115] dump_stack+0x1c9/0x2b4 [ 65.502739] ? dump_stack_print_info.cold.2+0x52/0x52 [ 65.507923] ? debug_check_no_locks_freed+0x310/0x310 [ 65.513114] should_fail.cold.4+0xa/0x1a [ 65.517162] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 65.522258] ? scatterwalk_copychunks+0x424/0x500 [ 65.527176] ? graph_lock+0x170/0x170 [ 65.530964] ? scatterwalk_map_and_copy+0xe7/0x260 [ 65.535885] ? find_held_lock+0x36/0x1c0 [ 65.539950] ? __lock_is_held+0xb5/0x140 [ 65.544015] ? check_same_owner+0x340/0x340 [ 65.548342] ? rcu_note_context_switch+0x730/0x730 [ 65.553271] __should_failslab+0x124/0x180 [ 65.557504] should_failslab+0x9/0x14 [ 65.561314] kmem_cache_alloc_node+0x272/0x780 [ 65.565910] __alloc_skb+0x119/0x790 [ 65.569616] ? skb_scrub_packet+0x580/0x580 [ 65.573934] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 65.579491] ? tcp_established_options+0x374/0x5c0 [ 65.584417] ? tcp_select_initial_window+0x3a0/0x3a0 [ 65.589601] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 65.594693] ? tcp_current_mss+0x2ac/0x410 [ 65.598917] ? tcp_mtu_to_mss+0x4e0/0x4e0 [ 65.603066] sk_stream_alloc_skb+0x141/0x970 [ 65.607475] ? tcp_init_transfer+0x470/0x470 [ 65.611887] ? is_bpf_text_address+0xd7/0x170 [ 65.616397] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 65.621415] do_tcp_sendpages+0xa26/0x1e80 [ 65.625646] ? sk_stream_alloc_skb+0x970/0x970 [ 65.630234] ? generic_gcmaes_decrypt+0x190/0x190 [ 65.635072] ? tls_sw_sendpage+0x5ff/0xf60 [ 65.639299] ? inet_sendpage+0x1de/0x750 [ 65.643378] ? kernel_sendpage+0x93/0xf0 [ 65.647429] ? sock_sendpage+0x8c/0xc0 [ 65.651311] ? pipe_to_sendpage+0x2d0/0x400 [ 65.655627] ? splice_from_pipe+0x1ea/0x340 [ 65.659942] ? generic_splice_sendpage+0x3c/0x50 [ 65.665301] ? direct_splice_actor+0x128/0x190 [ 65.669891] ? do_sendfile+0x623/0xe20 [ 65.673791] ? __x64_sys_sendfile64+0x15d/0x250 [ 65.678447] ? do_syscall_64+0x1b9/0x820 [ 65.682497] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 65.687854] ? find_held_lock+0x36/0x1c0 [ 65.691903] ? print_usage_bug+0xc0/0xc0 [ 65.695952] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 65.701476] ? tcp_rate_check_app_limited+0x121/0x470 [ 65.706651] ? tcp_fastopen_reset_cipher.cold.14+0x47/0x47 [ 65.712273] tls_push_sg+0x263/0x880 [ 65.715978] ? wait_on_pending_writer+0x5a0/0x5a0 [ 65.720807] ? __kmalloc+0x5f9/0x760 [ 65.724507] ? sk_alloc_sg+0x798/0x9d0 [ 65.728386] tls_push_record+0xaec/0x1400 [ 65.732557] tls_sw_sendpage+0x5ff/0xf60 [ 65.736616] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 65.740946] ? iov_iter_npages+0xe80/0xe80 [ 65.745170] ? trace_hardirqs_on+0xd/0x10 [ 65.749313] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 65.753632] inet_sendpage+0x1de/0x750 [ 65.757521] ? inet_sendmsg+0x690/0x690 [ 65.761486] ? iter_file_splice_write+0x1010/0x1010 [ 65.766599] kernel_sendpage+0x93/0xf0 [ 65.770473] ? inet_sendmsg+0x690/0x690 [ 65.774522] sock_sendpage+0x8c/0xc0 [ 65.778223] ? kernel_sendpage+0xf0/0xf0 [ 65.782274] pipe_to_sendpage+0x2d0/0x400 [ 65.786439] ? generic_pipe_buf_nosteal+0x10/0x10 [ 65.791270] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 65.796797] ? splice_from_pipe_next.part.9+0x296/0x340 [ 65.802154] __splice_from_pipe+0x38e/0x7c0 [ 65.806466] ? generic_pipe_buf_nosteal+0x10/0x10 [ 65.811478] splice_from_pipe+0x1ea/0x340 [ 65.815620] ? generic_pipe_buf_nosteal+0x10/0x10 [ 65.820451] ? splice_shrink_spd+0xd0/0xd0 [ 65.824675] ? security_file_permission+0x1c6/0x240 [ 65.829701] generic_splice_sendpage+0x3c/0x50 [ 65.834280] ? splice_from_pipe+0x340/0x340 [ 65.838590] direct_splice_actor+0x128/0x190 [ 65.842995] splice_direct_to_actor+0x318/0x8f0 [ 65.847653] ? pipe_to_sendpage+0x400/0x400 [ 65.851963] ? do_splice_to+0x190/0x190 [ 65.855925] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 65.861451] ? rw_verify_area+0x118/0x360 [ 65.865590] do_splice_direct+0x2d4/0x420 [ 65.869733] ? splice_direct_to_actor+0x8f0/0x8f0 [ 65.874572] ? rw_verify_area+0x118/0x360 [ 65.878706] do_sendfile+0x623/0xe20 [ 65.882414] ? do_compat_pwritev64+0x1c0/0x1c0 [ 65.886985] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 65.892516] ? _copy_from_user+0xdf/0x150 [ 65.896656] __x64_sys_sendfile64+0x15d/0x250 [ 65.901143] ? __ia32_sys_sendfile+0x2a0/0x2a0 [ 65.905798] ? do_syscall_64+0x9a/0x820 [ 65.909773] do_syscall_64+0x1b9/0x820 [ 65.913648] ? syscall_return_slowpath+0x5e0/0x5e0 [ 65.918660] ? syscall_return_slowpath+0x31d/0x5e0 [ 65.923585] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 65.928949] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 65.933788] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 65.938965] RIP: 0033:0x440cc9 [ 65.942142] Code: e8 0c b6 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 9b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 65.961462] RSP: 002b:00007fff94c3a518 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 65.969157] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000440cc9 [ 65.976413] RDX: 00000000200000c0 RSI: 0000000000000005 RDI: 0000000000000004 [ 65.983684] RBP: 00007fff94c3a530 R08: 0000000000000001 R09: 0000000000000000 [ 65.990961] R10: 0000000000000005 R11: 0000000000000246 R12: ffffffffffffffff [ 65.998222] R13: 0000000000000006 R14: 0000000000000000 R15: 0000000000000000 executing program [ 66.140624] FAULT_INJECTION: forcing a failure. [ 66.140624] name failslab, interval 1, probability 0, space 0, times 0 [ 66.151873] CPU: 1 PID: 4537 Comm: syz-executor098 Not tainted 4.18.0-rc1+ #108 [ 66.159311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 66.168755] Call Trace: [ 66.171359] dump_stack+0x1c9/0x2b4 [ 66.174993] ? dump_stack_print_info.cold.2+0x52/0x52 [ 66.180210] ? debug_check_no_locks_freed+0x310/0x310 [ 66.185403] should_fail.cold.4+0xa/0x1a [ 66.189480] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 66.194595] ? scatterwalk_copychunks+0x424/0x500 [ 66.199428] ? graph_lock+0x170/0x170 [ 66.203225] ? scatterwalk_map_and_copy+0xe7/0x260 [ 66.208153] ? find_held_lock+0x36/0x1c0 [ 66.212220] ? __lock_is_held+0xb5/0x140 [ 66.216301] ? check_same_owner+0x340/0x340 [ 66.220627] ? rcu_note_context_switch+0x730/0x730 [ 66.225562] __should_failslab+0x124/0x180 [ 66.229782] should_failslab+0x9/0x14 [ 66.233584] kmem_cache_alloc_node+0x272/0x780 [ 66.238160] __alloc_skb+0x119/0x790 [ 66.241860] ? skb_scrub_packet+0x580/0x580 [ 66.246166] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 66.251687] ? tcp_established_options+0x374/0x5c0 [ 66.256619] ? tcp_select_initial_window+0x3a0/0x3a0 [ 66.261715] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 66.266715] ? tcp_current_mss+0x2ac/0x410 [ 66.270941] ? tcp_mtu_to_mss+0x4e0/0x4e0 [ 66.275087] sk_stream_alloc_skb+0x141/0x970 [ 66.279522] ? tcp_init_transfer+0x470/0x470 [ 66.283928] ? is_bpf_text_address+0xd7/0x170 [ 66.288421] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 66.293437] do_tcp_sendpages+0xa26/0x1e80 [ 66.297663] ? sk_stream_alloc_skb+0x970/0x970 [ 66.302235] ? generic_gcmaes_decrypt+0x190/0x190 [ 66.307069] ? tls_sw_sendpage+0x5ff/0xf60 [ 66.311292] ? inet_sendpage+0x1de/0x750 [ 66.315361] ? kernel_sendpage+0x93/0xf0 [ 66.319414] ? sock_sendpage+0x8c/0xc0 [ 66.323288] ? pipe_to_sendpage+0x2d0/0x400 [ 66.327596] ? splice_from_pipe+0x1ea/0x340 [ 66.331911] ? generic_splice_sendpage+0x3c/0x50 [ 66.336654] ? direct_splice_actor+0x128/0x190 [ 66.341223] ? do_sendfile+0x623/0xe20 [ 66.345095] ? __x64_sys_sendfile64+0x15d/0x250 [ 66.349767] ? do_syscall_64+0x1b9/0x820 [ 66.353824] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 66.359274] ? find_held_lock+0x36/0x1c0 [ 66.363324] ? print_usage_bug+0xc0/0xc0 [ 66.367375] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 66.372902] ? tcp_rate_check_app_limited+0x121/0x470 [ 66.378085] ? tcp_fastopen_reset_cipher.cold.14+0x47/0x47 [ 66.383706] tls_push_sg+0x263/0x880 [ 66.387411] ? wait_on_pending_writer+0x5a0/0x5a0 [ 66.392245] ? __kmalloc+0x5f9/0x760 [ 66.395959] ? sk_alloc_sg+0x798/0x9d0 [ 66.399851] tls_push_record+0xaec/0x1400 [ 66.403998] tls_sw_sendpage+0x5ff/0xf60 [ 66.408080] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 66.412407] ? iov_iter_npages+0xe80/0xe80 [ 66.416639] ? trace_hardirqs_on+0xd/0x10 [ 66.420779] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 66.425112] inet_sendpage+0x1de/0x750 [ 66.428986] ? inet_sendmsg+0x690/0x690 [ 66.432951] ? iter_file_splice_write+0x1010/0x1010 [ 66.437961] kernel_sendpage+0x93/0xf0 [ 66.441845] ? inet_sendmsg+0x690/0x690 [ 66.445814] sock_sendpage+0x8c/0xc0 [ 66.449515] ? kernel_sendpage+0xf0/0xf0 [ 66.453561] pipe_to_sendpage+0x2d0/0x400 [ 66.457706] ? generic_pipe_buf_nosteal+0x10/0x10 [ 66.462546] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 66.468078] ? splice_from_pipe_next.part.9+0x296/0x340 [ 66.473431] __splice_from_pipe+0x38e/0x7c0 [ 66.477739] ? generic_pipe_buf_nosteal+0x10/0x10 [ 66.482586] splice_from_pipe+0x1ea/0x340 [ 66.486723] ? generic_pipe_buf_nosteal+0x10/0x10 [ 66.491556] ? splice_shrink_spd+0xd0/0xd0 [ 66.495795] ? security_file_permission+0x1c6/0x240 [ 66.500813] generic_splice_sendpage+0x3c/0x50 [ 66.505382] ? splice_from_pipe+0x340/0x340 [ 66.509697] direct_splice_actor+0x128/0x190 [ 66.514182] splice_direct_to_actor+0x318/0x8f0 [ 66.518841] ? pipe_to_sendpage+0x400/0x400 [ 66.523149] ? do_splice_to+0x190/0x190 [ 66.527127] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 66.532660] ? rw_verify_area+0x118/0x360 [ 66.536820] do_splice_direct+0x2d4/0x420 [ 66.540954] ? splice_direct_to_actor+0x8f0/0x8f0 [ 66.545800] ? rw_verify_area+0x118/0x360 [ 66.549938] do_sendfile+0x623/0xe20 [ 66.553641] ? do_compat_pwritev64+0x1c0/0x1c0 [ 66.558231] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 66.563785] ? _copy_from_user+0xdf/0x150 [ 66.567937] __x64_sys_sendfile64+0x15d/0x250 [ 66.572435] ? __ia32_sys_sendfile+0x2a0/0x2a0 [ 66.577025] ? do_syscall_64+0x9a/0x820 [ 66.581009] do_syscall_64+0x1b9/0x820 [ 66.584895] ? syscall_return_slowpath+0x5e0/0x5e0 [ 66.589812] ? syscall_return_slowpath+0x31d/0x5e0 [ 66.594736] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 66.600104] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 66.604943] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 66.610120] RIP: 0033:0x440cc9 [ 66.613302] Code: e8 0c b6 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 9b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 66.632571] RSP: 002b:00007fff94c3a518 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 66.640274] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000440cc9 [ 66.647538] RDX: 00000000200000c0 RSI: 0000000000000005 RDI: 0000000000000004 [ 66.654892] RBP: 00007fff94c3a530 R08: 0000000000000001 R09: 0000000000000000 [ 66.662162] R10: 0000000000000005 R11: 0000000000000246 R12: ffffffffffffffff [ 66.669439] R13: 0000000000000006 R14: 0000000000000000 R15: 0000000000000000 executing program [ 66.804911] FAULT_INJECTION: forcing a failure. [ 66.804911] name failslab, interval 1, probability 0, space 0, times 0 [ 66.816189] CPU: 0 PID: 4538 Comm: syz-executor098 Not tainted 4.18.0-rc1+ #108 [ 66.823620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 66.832956] Call Trace: [ 66.835549] dump_stack+0x1c9/0x2b4 [ 66.839164] ? dump_stack_print_info.cold.2+0x52/0x52 [ 66.844351] should_fail.cold.4+0xa/0x1a [ 66.848400] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 66.853497] ? tcp_push+0x8c0/0x8c0 [ 66.857110] ? __sk_mem_raise_allocated+0x88a/0x1600 [ 66.862200] ? graph_lock+0x170/0x170 [ 66.865985] ? sk_busy_loop_end+0x1c0/0x1c0 [ 66.870295] ? find_held_lock+0x36/0x1c0 [ 66.874343] ? __lock_is_held+0xb5/0x140 [ 66.878403] ? check_same_owner+0x340/0x340 [ 66.882717] ? rcu_note_context_switch+0x730/0x730 [ 66.887813] __should_failslab+0x124/0x180 [ 66.892059] should_failslab+0x9/0x14 [ 66.895845] __kmalloc+0x2c8/0x760 [ 66.899373] ? sk_alloc_sg+0x798/0x9d0 [ 66.903263] ? tls_push_record+0x10d/0x1400 [ 66.907574] tls_push_record+0x10d/0x1400 [ 66.911797] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 66.916805] ? lock_sock_nested+0x9f/0x120 [ 66.921042] ? trace_hardirqs_on+0xd/0x10 [ 66.925182] ? __local_bh_enable_ip+0x161/0x230 [ 66.929853] tls_sw_sendpage+0x5ff/0xf60 [ 66.934019] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 66.938349] ? iov_iter_npages+0xe80/0xe80 [ 66.942585] ? trace_hardirqs_on+0xd/0x10 [ 66.946725] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 66.951126] inet_sendpage+0x1de/0x750 [ 66.955013] ? inet_sendmsg+0x690/0x690 [ 66.958987] ? iter_file_splice_write+0x1010/0x1010 [ 66.963996] kernel_sendpage+0x93/0xf0 [ 66.967874] ? inet_sendmsg+0x690/0x690 [ 66.971853] sock_sendpage+0x8c/0xc0 [ 66.975569] ? kernel_sendpage+0xf0/0xf0 [ 66.979615] pipe_to_sendpage+0x2d0/0x400 [ 66.983749] ? generic_pipe_buf_nosteal+0x10/0x10 [ 66.988585] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 66.994109] ? splice_from_pipe_next.part.9+0x296/0x340 [ 66.999468] __splice_from_pipe+0x38e/0x7c0 [ 67.003789] ? generic_pipe_buf_nosteal+0x10/0x10 [ 67.008623] splice_from_pipe+0x1ea/0x340 [ 67.012820] ? generic_pipe_buf_nosteal+0x10/0x10 [ 67.017663] ? splice_shrink_spd+0xd0/0xd0 [ 67.021905] ? security_file_permission+0x1c6/0x240 [ 67.026918] generic_splice_sendpage+0x3c/0x50 [ 67.031572] ? splice_from_pipe+0x340/0x340 [ 67.035885] direct_splice_actor+0x128/0x190 [ 67.040293] splice_direct_to_actor+0x318/0x8f0 [ 67.044967] ? pipe_to_sendpage+0x400/0x400 [ 67.049298] ? do_splice_to+0x190/0x190 [ 67.053288] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 67.058823] ? rw_verify_area+0x118/0x360 [ 67.063408] do_splice_direct+0x2d4/0x420 [ 67.067582] ? splice_direct_to_actor+0x8f0/0x8f0 [ 67.072441] ? rw_verify_area+0x118/0x360 [ 67.076595] do_sendfile+0x623/0xe20 [ 67.080314] ? do_compat_pwritev64+0x1c0/0x1c0 [ 67.084899] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 67.090441] ? _copy_from_user+0xdf/0x150 [ 67.094594] __x64_sys_sendfile64+0x15d/0x250 [ 67.099088] ? __ia32_sys_sendfile+0x2a0/0x2a0 [ 67.103676] ? do_syscall_64+0x9a/0x820 [ 67.107661] do_syscall_64+0x1b9/0x820 [ 67.111539] ? syscall_return_slowpath+0x5e0/0x5e0 [ 67.116463] ? syscall_return_slowpath+0x31d/0x5e0 [ 67.121389] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 67.126755] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 67.131607] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 67.136783] RIP: 0033:0x440cc9 [ 67.139960] Code: e8 0c b6 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 9b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 67.159203] RSP: 002b:00007fff94c3a518 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 67.167207] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000440cc9 [ 67.174563] RDX: 00000000200000c0 RSI: 0000000000000005 RDI: 0000000000000004 [ 67.181826] RBP: 00007fff94c3a530 R08: 0000000000000001 R09: 0000000000000000 [ 67.189088] R10: 0000000000000005 R11: 0000000000000246 R12: ffffffffffffffff [ 67.196356] R13: 0000000000000006 R14: 0000000000000000 R15: 0000000000000000 [ 67.251167] kasan: CONFIG_KASAN_INLINE enabled [ 67.255962] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 67.263370] general protection fault: 0000 [#1] SMP KASAN [ 67.268915] CPU: 0 PID: 4538 Comm: syz-executor098 Not tainted 4.18.0-rc1+ #108 [ 67.276345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 67.285803] RIP: 0010:scatterwalk_copychunks+0x3ae/0x500 [ 67.291236] Code: 4c 89 f8 48 c1 e8 03 80 3c 08 00 0f 85 2b 01 00 00 49 8d 7c 24 08 4d 89 27 48 ba 00 00 00 00 00 fc ff df 48 89 f8 48 c1 e8 03 <0f> b6 04 10 84 c0 74 08 3c 03 0f 8e 34 01 00 00 48 8b 45 c8 0f b6 [ 67.310396] RSP: 0018:ffff8801d920eb10 EFLAGS: 00010202 [ 67.315744] RAX: 0000000000000001 RBX: 0000000000000022 RCX: dffffc0000000000 [ 67.322998] RDX: dffffc0000000000 RSI: ffffffff835bb712 RDI: 0000000000000008 [ 67.330260] RBP: ffff8801d920eb60 R08: ffff8801d8d86400 R09: ffffed0038774002 [ 67.337518] R10: ffffed0038774004 R11: ffff8801c3ba0021 R12: 0000000000000000 [ 67.344787] R13: 0000000000000022 R14: 0000000000000005 R15: ffff8801d920eba8 [ 67.352049] FS: 00000000010b6880(0000) GS:ffff8801dae00000(0000) knlGS:0000000000000000 [ 67.360266] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 67.366150] CR2: 00000000004b63d8 CR3: 00000001acd52000 CR4: 00000000001406f0 [ 67.373416] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 67.380680] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 67.388042] Call Trace: [ 67.390624] scatterwalk_map_and_copy+0x1f0/0x260 [ 67.395473] ? scatterwalk_ffwd+0x3b0/0x3b0 [ 67.399787] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 67.405306] ? kernel_fpu_enable+0x23/0x40 [ 67.409551] ? sg_next+0x83/0xd0 [ 67.412906] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 67.418437] gcmaes_crypt_by_sg+0xcee/0x1ee0 [ 67.422831] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 67.427506] ? aesni_gcm_enc_avx2+0x180/0x180 [ 67.432114] ? graph_lock+0x170/0x170 [ 67.435905] ? debug_check_no_locks_freed+0x310/0x310 [ 67.441464] ? find_held_lock+0x36/0x1c0 [ 67.445516] ? lock_downgrade+0x8f0/0x8f0 [ 67.449679] ? is_bpf_text_address+0xd7/0x170 [ 67.454173] ? __kernel_text_address+0xd/0x40 [ 67.458669] ? unwind_get_return_address+0x61/0xa0 [ 67.463588] ? __save_stack_trace+0x8d/0xf0 [ 67.467897] gcmaes_encrypt.constprop.16+0x716/0xf10 [ 67.472995] ? generic_gcmaes_decrypt+0x190/0x190 [ 67.477827] ? tls_sw_sendpage+0x5ff/0xf60 [ 67.482055] ? inet_sendpage+0x1de/0x750 [ 67.486101] ? kernel_sendpage+0x93/0xf0 [ 67.490158] ? sock_sendpage+0x8c/0xc0 [ 67.495154] ? pipe_to_sendpage+0x2d0/0x400 [ 67.499472] ? __splice_from_pipe+0x38e/0x7c0 [ 67.503951] ? splice_from_pipe+0x1ea/0x340 [ 67.508370] ? generic_splice_sendpage+0x3c/0x50 [ 67.513108] ? direct_splice_actor+0x128/0x190 [ 67.517673] ? do_sendfile+0x623/0xe20 [ 67.521547] ? __x64_sys_sendfile64+0x15d/0x250 [ 67.526205] ? do_syscall_64+0x1b9/0x820 [ 67.530251] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 67.535598] ? find_held_lock+0x36/0x1c0 [ 67.539648] ? print_usage_bug+0xc0/0xc0 [ 67.543705] ? graph_lock+0x170/0x170 [ 67.547492] ? __lock_is_held+0xb5/0x140 [ 67.551547] generic_gcmaes_encrypt+0x12d/0x186 [ 67.556228] ? generic_gcmaes_encrypt+0x12d/0x186 [ 67.561058] ? helper_rfc4106_encrypt+0x4a0/0x4a0 [ 67.565887] ? __kmalloc+0x5f9/0x760 [ 67.569586] ? sk_alloc_sg+0x798/0x9d0 [ 67.573469] gcmaes_wrapper_encrypt+0x162/0x200 [ 67.578123] tls_push_record+0x966/0x1400 [ 67.582259] tls_sw_sendpage+0x5ff/0xf60 [ 67.586321] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 67.590629] ? iov_iter_npages+0xe80/0xe80 [ 67.594848] ? trace_hardirqs_on+0xd/0x10 [ 67.598981] ? tls_sw_sendmsg+0x12c0/0x12c0 [ 67.603284] inet_sendpage+0x1de/0x750 [ 67.607244] ? inet_sendmsg+0x690/0x690 [ 67.611209] ? iter_file_splice_write+0x1010/0x1010 [ 67.616208] kernel_sendpage+0x93/0xf0 [ 67.620076] ? inet_sendmsg+0x690/0x690 [ 67.624038] sock_sendpage+0x8c/0xc0 [ 67.627853] ? kernel_sendpage+0xf0/0xf0 [ 67.631904] pipe_to_sendpage+0x2d0/0x400 [ 67.636066] ? generic_pipe_buf_nosteal+0x10/0x10 [ 67.640900] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 67.646425] ? splice_from_pipe_next.part.9+0x296/0x340 [ 67.651781] __splice_from_pipe+0x38e/0x7c0 [ 67.656087] ? generic_pipe_buf_nosteal+0x10/0x10 [ 67.660921] splice_from_pipe+0x1ea/0x340 [ 67.665058] ? generic_pipe_buf_nosteal+0x10/0x10 [ 67.669892] ? splice_shrink_spd+0xd0/0xd0 [ 67.674119] ? security_file_permission+0x1c6/0x240 [ 67.679131] generic_splice_sendpage+0x3c/0x50 [ 67.683704] ? splice_from_pipe+0x340/0x340 [ 67.688095] direct_splice_actor+0x128/0x190 [ 67.692498] splice_direct_to_actor+0x318/0x8f0 [ 67.697187] ? pipe_to_sendpage+0x400/0x400 [ 67.701515] ? do_splice_to+0x190/0x190 [ 67.705488] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 67.711023] ? rw_verify_area+0x118/0x360 [ 67.715182] do_splice_direct+0x2d4/0x420 [ 67.719324] ? splice_direct_to_actor+0x8f0/0x8f0 [ 67.724149] ? rw_verify_area+0x118/0x360 [ 67.728297] do_sendfile+0x623/0xe20 [ 67.732008] ? do_compat_pwritev64+0x1c0/0x1c0 [ 67.736596] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 67.742125] ? _copy_from_user+0xdf/0x150 [ 67.746280] __x64_sys_sendfile64+0x15d/0x250 [ 67.750771] ? __ia32_sys_sendfile+0x2a0/0x2a0 [ 67.755348] ? do_syscall_64+0x9a/0x820 [ 67.759328] do_syscall_64+0x1b9/0x820 [ 67.763208] ? syscall_return_slowpath+0x5e0/0x5e0 [ 67.768120] ? syscall_return_slowpath+0x31d/0x5e0 [ 67.773044] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 67.778416] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 67.783258] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 67.788428] RIP: 0033:0x440cc9 [ 67.791607] Code: e8 0c b6 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 9b 10 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 67.810749] RSP: 002b:00007fff94c3a518 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 67.818456] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000440cc9 [ 67.825721] RDX: 00000000200000c0 RSI: 0000000000000005 RDI: 0000000000000004 [ 67.832975] RBP: 00007fff94c3a530 R08: 0000000000000001 R09: 0000000000000000 [ 67.840229] R10: 0000000000000005 R11: 0000000000000246 R12: ffffffffffffffff [ 67.847491] R13: 0000000000000006 R14: 0000000000000000 R15: 0000000000000000 [ 67.854745] Modules linked in: [ 67.857926] Dumping ftrace buffer: [ 67.861652] (ftrace buffer empty) [ 67.865456] ---[ end trace 687f8ba94a271f8a ]--- [ 67.870244] RIP: 0010:scatterwalk_copychunks+0x3ae/0x500 [ 67.875704] Code: 4c 89 f8 48 c1 e8 03 80 3c 08 00 0f 85 2b 01 00 00 49 8d 7c 24 08 4d 89 27 48 ba 00 00 00 00 00 fc ff df 48 89 f8 48 c1 e8 03 <0f> b6 04 10 84 c0 74 08 3c 03 0f 8e 34 01 00 00 48 8b 45 c8 0f b6 [ 67.894962] RSP: 0018:ffff8801d920eb10 EFLAGS: 00010202 [ 67.900466] RAX: 0000000000000001 RBX: 0000000000000022 RCX: dffffc0000000000 [ 67.907764] RDX: dffffc0000000000 RSI: ffffffff835bb712 RDI: 0000000000000008 [ 67.915145] RBP: ffff8801d920eb60 R08: ffff8801d8d86400 R09: ffffed0038774002 [ 67.922440] R10: ffffed0038774004 R11: ffff8801c3ba0021 R12: 0000000000000000 [ 67.929743] R13: 0000000000000022 R14: 0000000000000005 R15: ffff8801d920eba8 [ 67.937061] FS: 00000000010b6880(0000) GS:ffff8801dae00000(0000) knlGS:0000000000000000 [ 67.945316] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 67.951222] CR2: 00000000004b63d8 CR3: 00000001acd52000 CR4: 00000000001406f0 [ 67.958511] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 67.965802] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 67.973091] Kernel panic - not syncing: Fatal exception [ 67.979029] Dumping ftrace buffer: [ 67.982559] (ftrace buffer empty) [ 67.986249] Kernel Offset: disabled [ 67.989856] Rebooting in 86400 seconds..