./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2372646412 <...> sshd_t tclass=fifo_file permissive=1 [ 14.105324][ T30] audit: type=1400 audit(1700324824.750:64): avc: denied { rlimitinh } for pid=226 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 14.107852][ T30] audit: type=1400 audit(1700324824.750:65): avc: denied { siginh } for pid=226 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 Warning: Permanently added '10.128.1.188' (ED25519) to the list of known hosts. execve("./syz-executor2372646412", ["./syz-executor2372646412"], 0x7fffa26f00c0 /* 10 vars */) = 0 brk(NULL) = 0x5555570c7000 brk(0x5555570c7d00) = 0x5555570c7d00 arch_prctl(ARCH_SET_FS, 0x5555570c7380) = 0 set_tid_address(0x5555570c7650) = 295 set_robust_list(0x5555570c7660, 24) = 0 rseq(0x5555570c7ca0, 0x20, 0, 0x53053053) = -1 ENOSYS (Function not implemented) prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2372646412", 4096) = 28 getrandom("\x62\xbf\x6e\x92\x9d\xcf\x9b\x12", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555570c7d00 brk(0x5555570e8d00) = 0x5555570e8d00 brk(0x5555570e9000) = 0x5555570e9000 mprotect(0x7f23ecbd3000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3 write(3, "0", 1) = 1 close(3) = 0 unshare(CLONE_NEWPID) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570c7650) = 296 ./strace-static-x86_64: Process 296 attached [pid 296] set_robust_list(0x5555570c7660, 24) = 0 [pid 296] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy) [pid 296] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 296] setsid() = 1 [pid 296] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0 [pid 296] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0 [pid 296] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0 [pid 296] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0 [pid 296] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0 [pid 296] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0 [pid 296] unshare(CLONE_NEWNS) = 0 [pid 296] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0 [pid 296] unshare(CLONE_NEWIPC) = -1 EINVAL (Invalid argument) [pid 296] unshare(CLONE_NEWCGROUP) = 0 [pid 296] unshare(CLONE_NEWUTS) = 0 [pid 296] unshare(CLONE_SYSVSEM) = 0 [pid 296] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) [pid 296] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) [pid 296] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) [pid 296] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) [pid 296] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) [pid 296] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) [pid 296] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) [pid 296] getpid() = 1 [pid 296] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< [ 22.522192][ T297] dump_stack_lvl+0x151/0x1b7 [ 22.544514][ T30] audit: type=1400 audit(1700324833.080:70): avc: denied { mounton } for pid=296 comm="syz-executor237" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 22.554206][ T297] ? io_uring_drop_tctx_refs+0x190/0x190 [ 22.554236][ T297] dump_stack+0x15/0x17 [ 22.554250][ T297] should_fail+0x3c6/0x510 [ 22.554264][ T297] __should_failslab+0xa4/0xe0 [ 22.554279][ T297] ? anon_vma_fork+0x1df/0x4e0 [ 22.557906][ T30] audit: type=1400 audit(1700324833.110:71): avc: denied { mounton } for pid=296 comm="syz-executor237" path="/dev/binderfs" dev="devtmpfs" ino=362 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 22.560095][ T297] should_failslab+0x9/0x20 [ 22.564621][ T30] audit: type=1400 audit(1700324833.110:72): avc: denied { mount } for pid=296 comm="syz-executor237" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 22.585875][ T297] slab_pre_alloc_hook+0x37/0xd0 [ 22.585895][ T297] ? anon_vma_fork+0x1df/0x4e0 [ 22.585908][ T297] kmem_cache_alloc+0x44/0x200 [ 22.585922][ T297] anon_vma_fork+0x1df/0x4e0 [ 22.585938][ T297] copy_mm+0xa3a/0x13e0 [ 22.680569][ T297] ? copy_signal+0x610/0x610 [ 22.684988][ T297] ? __init_rwsem+0xd6/0x1c0 [ 22.689416][ T297] ? copy_signal+0x4e3/0x610 [ 22.693839][ T297] copy_process+0x12bc/0x3260 [ 22.698354][ T297] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 22.703299][ T297] ? __kasan_check_write+0x14/0x20 [ 22.708251][ T297] kernel_clone+0x21e/0x9e0 [ 22.712587][ T297] ? _raw_spin_unlock_irq+0x4e/0x70 [ 22.717620][ T297] ? create_io_thread+0x1e0/0x1e0 [ 22.722481][ T297] __x64_sys_clone+0x23f/0x290 [ 22.727082][ T297] ? __do_sys_vfork+0x130/0x130 [ 22.731768][ T297] ? __kasan_check_read+0x11/0x20 [ 22.736631][ T297] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 22.742442][ T297] do_syscall_64+0x3d/0xb0 [ 22.746696][ T297] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 22.752423][ T297] RIP: 0033:0x7f23ecb60009 [ 22.756679][ T297] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 22.776118][ T297] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [pid 297] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES) = -1 ENOMEM (Cannot allocate memory) [pid 297] close(3) = 0 [pid 297] close(4) = -1 EBADF (Bad file descriptor) [pid 297] close(5) = -1 EBADF (Bad file descriptor) [pid 297] close(6) = -1 EBADF (Bad file descriptor) [pid 297] close(7) = -1 EBADF (Bad file descriptor) [pid 297] close(8) = -1 EBADF (Bad file descriptor) [pid 297] close(9) = -1 EBADF (Bad file descriptor) [pid 297] close(10) = -1 EBADF (Bad file descriptor) [pid 297] close(11) = -1 EBADF (Bad file descriptor) [pid 297] close(12) = -1 EBADF (Bad file descriptor) [pid 297] close(13) = -1 EBADF (Bad file descriptor) [pid 297] close(14) = -1 EBADF (Bad file descriptor) [pid 297] close(15) = -1 EBADF (Bad file descriptor) [pid 297] close(16) = -1 EBADF (Bad file descriptor) [pid 297] close(17) = -1 EBADF (Bad file descriptor) [pid 297] close(18) = -1 EBADF (Bad file descriptor) [pid 297] close(19) = -1 EBADF (Bad file descriptor) [pid 297] close(20) = -1 EBADF (Bad file descriptor) [pid 297] close(21) = -1 EBADF (Bad file descriptor) [pid 297] close(22) = -1 EBADF (Bad file descriptor) [pid 297] close(23) = -1 EBADF (Bad file descriptor) [pid 297] close(24) = -1 EBADF (Bad file descriptor) [pid 297] close(25) = -1 EBADF (Bad file descriptor) [pid 297] close(26) = -1 EBADF (Bad file descriptor) [pid 297] close(27) = -1 EBADF (Bad file descriptor) [pid 297] close(28) = -1 EBADF (Bad file descriptor) [pid 297] close(29) = -1 EBADF (Bad file descriptor) [pid 297] exit_group(0) = ? [pid 297] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- [pid 296] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570c7650) = 3 ./strace-static-x86_64: Process 298 attached [pid 298] set_robust_list(0x5555570c7660, 24) = 0 [pid 298] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 298] setpgid(0, 0) = 0 [pid 298] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 298] write(3, "1000", 4) = 4 [pid 298] close(3) = 0 [pid 298] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3 [pid 298] write(3, "54", 2) = 2 [ 22.784370][ T297] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [ 22.792174][ T297] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [ 22.799984][ T297] RBP: 0000000000000002 R08: 0000000000000000 R09: 00005555570c84c0 [ 22.807797][ T297] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f23ecbd3570 [ 22.815616][ T297] R13: 00007fffe02a3cf8 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 22.823421][ T297] [ 22.833205][ T298] FAULT_INJECTION: forcing a failure. [ 22.833205][ T298] name failslab, interval 1, probability 0, space 0, times 0 [ 22.845766][ T298] CPU: 0 PID: 298 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 22.855799][ T298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 22.865694][ T298] Call Trace: [ 22.868820][ T298] [ 22.871592][ T298] dump_stack_lvl+0x151/0x1b7 [ 22.876117][ T298] ? io_uring_drop_tctx_refs+0x190/0x190 [ 22.881578][ T298] dump_stack+0x15/0x17 [ 22.885569][ T298] should_fail+0x3c6/0x510 [ 22.889817][ T298] __should_failslab+0xa4/0xe0 [ 22.894424][ T298] ? anon_vma_clone+0x9a/0x500 [ 22.899017][ T298] should_failslab+0x9/0x20 [ 22.903358][ T298] slab_pre_alloc_hook+0x37/0xd0 [ 22.908136][ T298] ? anon_vma_clone+0x9a/0x500 [ 22.912744][ T298] kmem_cache_alloc+0x44/0x200 [ 22.917330][ T298] anon_vma_clone+0x9a/0x500 [ 22.921757][ T298] anon_vma_fork+0x91/0x4e0 [ 22.926097][ T298] ? anon_vma_name+0x4c/0x70 [ 22.930524][ T298] ? vm_area_dup+0x17a/0x230 [ 22.934949][ T298] copy_mm+0xa3a/0x13e0 [ 22.938943][ T298] ? copy_signal+0x610/0x610 [ 22.943372][ T298] ? __init_rwsem+0xd6/0x1c0 [ 22.947795][ T298] ? copy_signal+0x4e3/0x610 [ 22.952220][ T298] copy_process+0x12bc/0x3260 [ 22.956737][ T298] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 22.961682][ T298] ? __kasan_check_write+0x14/0x20 [ 22.966628][ T298] kernel_clone+0x21e/0x9e0 [ 22.970972][ T298] ? _raw_spin_unlock_irq+0x4e/0x70 [ 22.976015][ T298] ? create_io_thread+0x1e0/0x1e0 [ 22.980862][ T298] __x64_sys_clone+0x23f/0x290 [ 22.985471][ T298] ? __do_sys_vfork+0x130/0x130 [ 22.990150][ T298] ? __kasan_check_read+0x11/0x20 [ 22.995008][ T298] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 23.000825][ T298] do_syscall_64+0x3d/0xb0 [ 23.005079][ T298] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 23.010807][ T298] RIP: 0033:0x7f23ecb60009 [ 23.015058][ T298] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [pid 298] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES) = 4 ./strace-static-x86_64: Process 299 attached [pid 298] close(3) = 0 [pid 298] close(4) = -1 EBADF (Bad file descriptor) [pid 298] close(5) = -1 EBADF (Bad file descriptor) [pid 298] close(6) = -1 EBADF (Bad file descriptor) [pid 298] close(7) = -1 EBADF (Bad file descriptor) [pid 298] close(8) = -1 EBADF (Bad file descriptor) [pid 298] close(9) = -1 EBADF (Bad file descriptor) [pid 298] close(10) = -1 EBADF (Bad file descriptor) [pid 298] close(11) = -1 EBADF (Bad file descriptor) [pid 298] close(12) = -1 EBADF (Bad file descriptor) [pid 298] close(13) = -1 EBADF (Bad file descriptor) [pid 298] close(14) = -1 EBADF (Bad file descriptor) [pid 298] close(15) = -1 EBADF (Bad file descriptor) [pid 298] close(16) = -1 EBADF (Bad file descriptor) [pid 298] close(17) = -1 EBADF (Bad file descriptor) [pid 298] close(18) = -1 EBADF (Bad file descriptor) [pid 298] close(19) = -1 EBADF (Bad file descriptor) [pid 298] close(20) = -1 EBADF (Bad file descriptor) [pid 298] close(21) = -1 EBADF (Bad file descriptor) [pid 298] close(22) = -1 EBADF (Bad file descriptor) [pid 298] close(23) = -1 EBADF (Bad file descriptor) [pid 298] close(24) = -1 EBADF (Bad file descriptor) [pid 298] close(25) = -1 EBADF (Bad file descriptor) [pid 298] close(26) = -1 EBADF (Bad file descriptor) [pid 298] close(27) = -1 EBADF (Bad file descriptor) [pid 298] close(28) = -1 EBADF (Bad file descriptor) [pid 298] close(29) = -1 EBADF (Bad file descriptor) [pid 298] exit_group(0) = ? [pid 298] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [pid 296] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 300 attached , child_tidptr=0x5555570c7650) = 5 [pid 300] set_robust_list(0x5555570c7660, 24) = 0 [pid 300] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 300] setpgid(0, 0) = 0 [pid 300] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 300] write(3, "1000", 4) = 4 [pid 300] close(3) = 0 [pid 300] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3 [pid 300] write(3, "54", 2) = 2 [ 23.034502][ T298] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 23.042745][ T298] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [ 23.050557][ T298] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [ 23.058369][ T298] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [ 23.066196][ T298] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000057a8 [ 23.073991][ T298] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 23.081805][ T298] [ 23.095072][ T300] FAULT_INJECTION: forcing a failure. [ 23.095072][ T300] name failslab, interval 1, probability 0, space 0, times 0 [ 23.107522][ T300] CPU: 1 PID: 300 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 23.117620][ T300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 23.127509][ T300] Call Trace: [ 23.130634][ T300] [ 23.133410][ T300] dump_stack_lvl+0x151/0x1b7 [ 23.137925][ T300] ? io_uring_drop_tctx_refs+0x190/0x190 [ 23.143393][ T300] dump_stack+0x15/0x17 [ 23.147384][ T300] should_fail+0x3c6/0x510 [ 23.151642][ T300] __should_failslab+0xa4/0xe0 [ 23.156244][ T300] ? anon_vma_fork+0x1df/0x4e0 [ 23.160839][ T300] should_failslab+0x9/0x20 [ 23.165178][ T300] slab_pre_alloc_hook+0x37/0xd0 [ 23.169955][ T300] ? anon_vma_fork+0x1df/0x4e0 [ 23.174549][ T300] kmem_cache_alloc+0x44/0x200 [ 23.179151][ T300] anon_vma_fork+0x1df/0x4e0 [ 23.183576][ T300] copy_mm+0xa3a/0x13e0 [ 23.187569][ T300] ? copy_signal+0x610/0x610 [pid 300] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES [pid 299] exit(0) = ? [pid 299] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=4, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 296] restart_syscall(<... resuming interrupted clone ...>) = 0 [ 23.192002][ T300] ? __init_rwsem+0xd6/0x1c0 [ 23.196422][ T300] ? copy_signal+0x4e3/0x610 [ 23.200847][ T300] copy_process+0x12bc/0x3260 [ 23.205368][ T300] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 23.210308][ T300] ? __kasan_check_write+0x14/0x20 [ 23.215261][ T300] kernel_clone+0x21e/0x9e0 [ 23.219596][ T300] ? _raw_spin_unlock_irq+0x4e/0x70 [ 23.224631][ T300] ? create_io_thread+0x1e0/0x1e0 [ 23.229490][ T300] __x64_sys_clone+0x23f/0x290 [ 23.234089][ T300] ? __do_sys_vfork+0x130/0x130 [ 23.238779][ T300] ? __kasan_check_read+0x11/0x20 [ 23.243820][ T300] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 23.249629][ T300] do_syscall_64+0x3d/0xb0 [ 23.253877][ T300] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 23.259607][ T300] RIP: 0033:0x7f23ecb60009 [ 23.263861][ T300] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 23.283302][ T300] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [pid 300] <... clone resumed>) = -1 ENOMEM (Cannot allocate memory) [pid 300] close(3) = 0 [pid 300] close(4) = -1 EBADF (Bad file descriptor) [pid 300] close(5) = -1 EBADF (Bad file descriptor) [pid 300] close(6) = -1 EBADF (Bad file descriptor) [pid 300] close(7) = -1 EBADF (Bad file descriptor) [pid 300] close(8) = -1 EBADF (Bad file descriptor) [pid 300] close(9) = -1 EBADF (Bad file descriptor) [pid 300] close(10) = -1 EBADF (Bad file descriptor) [pid 300] close(11) = -1 EBADF (Bad file descriptor) [pid 300] close(12) = -1 EBADF (Bad file descriptor) [pid 300] close(13) = -1 EBADF (Bad file descriptor) [pid 300] close(14) = -1 EBADF (Bad file descriptor) [pid 300] close(15) = -1 EBADF (Bad file descriptor) [pid 300] close(16) = -1 EBADF (Bad file descriptor) [pid 300] close(17) = -1 EBADF (Bad file descriptor) [pid 300] close(18) = -1 EBADF (Bad file descriptor) [pid 300] close(19) = -1 EBADF (Bad file descriptor) [pid 300] close(20) = -1 EBADF (Bad file descriptor) [pid 300] close(21) = -1 EBADF (Bad file descriptor) [pid 300] close(22) = -1 EBADF (Bad file descriptor) [pid 300] close(23) = -1 EBADF (Bad file descriptor) [pid 300] close(24) = -1 EBADF (Bad file descriptor) [pid 300] close(25) = -1 EBADF (Bad file descriptor) [pid 300] close(26) = -1 EBADF (Bad file descriptor) [pid 300] close(27) = -1 EBADF (Bad file descriptor) [pid 300] close(28) = -1 EBADF (Bad file descriptor) [pid 300] close(29) = -1 EBADF (Bad file descriptor) [pid 300] exit_group(0) = ? [pid 300] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- [pid 296] restart_syscall(<... resuming interrupted restart_syscall ...>) = 0 [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570c7650) = 6 ./strace-static-x86_64: Process 302 attached [pid 302] set_robust_list(0x5555570c7660, 24) = 0 [pid 302] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 302] setpgid(0, 0) = 0 [pid 302] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 302] write(3, "1000", 4) = 4 [pid 302] close(3) = 0 [pid 302] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3 [pid 302] write(3, "54", 2) = 2 [ 23.291549][ T300] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [ 23.299357][ T300] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [ 23.307165][ T300] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [ 23.314981][ T300] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000591f [ 23.323224][ T300] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 23.331130][ T300] [ 23.342059][ T302] FAULT_INJECTION: forcing a failure. [ 23.342059][ T302] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 23.355324][ T302] CPU: 1 PID: 302 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 23.365369][ T302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 23.375265][ T302] Call Trace: [ 23.378388][ T302] [ 23.381164][ T302] dump_stack_lvl+0x151/0x1b7 [ 23.385678][ T302] ? io_uring_drop_tctx_refs+0x190/0x190 [ 23.391154][ T302] dump_stack+0x15/0x17 [ 23.395138][ T302] should_fail+0x3c6/0x510 [ 23.399396][ T302] should_fail_alloc_page+0x5a/0x80 [ 23.404426][ T302] prepare_alloc_pages+0x15c/0x700 [ 23.409471][ T302] ? __alloc_pages_bulk+0xe60/0xe60 [ 23.414509][ T302] __alloc_pages+0x138/0x5e0 [ 23.418920][ T302] ? prep_new_page+0x110/0x110 [ 23.423519][ T302] ? __alloc_pages+0x206/0x5e0 [ 23.428127][ T302] ? stack_trace_save+0x1c0/0x1c0 [ 23.432985][ T302] ? __kasan_check_write+0x14/0x20 [ 23.438021][ T302] ? _raw_spin_lock+0xa4/0x1b0 [ 23.442612][ T302] __pmd_alloc+0xb1/0x550 [ 23.446781][ T302] ? __pud_alloc+0x260/0x260 [ 23.451206][ T302] ? __pud_alloc+0x213/0x260 [ 23.455723][ T302] ? do_handle_mm_fault+0x2330/0x2330 [ 23.460927][ T302] ? __stack_depot_save+0x34/0x470 [ 23.465873][ T302] ? anon_vma_clone+0x9a/0x500 [ 23.470657][ T302] copy_page_range+0x2b3d/0x2f90 [ 23.475424][ T302] ? __kasan_slab_alloc+0xb1/0xe0 [ 23.480279][ T302] ? slab_post_alloc_hook+0x53/0x2c0 [ 23.485403][ T302] ? copy_mm+0xa3a/0x13e0 [ 23.489572][ T302] ? copy_process+0x12bc/0x3260 [ 23.494254][ T302] ? kernel_clone+0x21e/0x9e0 [ 23.498767][ T302] ? do_syscall_64+0x3d/0xb0 [ 23.503193][ T302] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 23.509100][ T302] ? pfn_valid+0x1e0/0x1e0 [ 23.513348][ T302] ? rwsem_write_trylock+0x15b/0x290 [ 23.518469][ T302] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 23.524718][ T302] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 23.530279][ T302] ? __rb_insert_augmented+0x5de/0x610 [ 23.535569][ T302] copy_mm+0xc7e/0x13e0 [ 23.539562][ T302] ? copy_signal+0x610/0x610 [ 23.543988][ T302] ? __init_rwsem+0xd6/0x1c0 [ 23.548411][ T302] ? copy_signal+0x4e3/0x610 [ 23.552838][ T302] copy_process+0x12bc/0x3260 [ 23.557357][ T302] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 23.562298][ T302] ? __kasan_check_write+0x14/0x20 [ 23.567244][ T302] kernel_clone+0x21e/0x9e0 [ 23.571586][ T302] ? _raw_spin_unlock_irq+0x4e/0x70 [ 23.576631][ T302] ? create_io_thread+0x1e0/0x1e0 [ 23.581481][ T302] __x64_sys_clone+0x23f/0x290 [ 23.586081][ T302] ? __do_sys_vfork+0x130/0x130 [ 23.590777][ T302] ? __kasan_check_read+0x11/0x20 [ 23.595625][ T302] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 23.601444][ T302] do_syscall_64+0x3d/0xb0 [ 23.605702][ T302] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 23.611422][ T302] RIP: 0033:0x7f23ecb60009 [ 23.615675][ T302] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 23.635118][ T302] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [pid 302] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES) = -1 ENOMEM (Cannot allocate memory) [pid 302] close(3) = 0 [pid 302] close(4) = -1 EBADF (Bad file descriptor) [pid 302] close(5) = -1 EBADF (Bad file descriptor) [pid 302] close(6) = -1 EBADF (Bad file descriptor) [pid 302] close(7) = -1 EBADF (Bad file descriptor) [pid 302] close(8) = -1 EBADF (Bad file descriptor) [pid 302] close(9) = -1 EBADF (Bad file descriptor) [pid 302] close(10) = -1 EBADF (Bad file descriptor) [pid 302] close(11) = -1 EBADF (Bad file descriptor) [pid 302] close(12) = -1 EBADF (Bad file descriptor) [pid 302] close(13) = -1 EBADF (Bad file descriptor) [pid 302] close(14) = -1 EBADF (Bad file descriptor) [pid 302] close(15) = -1 EBADF (Bad file descriptor) [pid 302] close(16) = -1 EBADF (Bad file descriptor) [pid 302] close(17) = -1 EBADF (Bad file descriptor) [pid 302] close(18) = -1 EBADF (Bad file descriptor) [pid 302] close(19) = -1 EBADF (Bad file descriptor) [pid 302] close(20) = -1 EBADF (Bad file descriptor) [pid 302] close(21) = -1 EBADF (Bad file descriptor) [pid 302] close(22) = -1 EBADF (Bad file descriptor) [pid 302] close(23) = -1 EBADF (Bad file descriptor) [pid 302] close(24) = -1 EBADF (Bad file descriptor) [pid 302] close(25) = -1 EBADF (Bad file descriptor) [pid 302] close(26) = -1 EBADF (Bad file descriptor) [pid 302] close(27) = -1 EBADF (Bad file descriptor) [pid 302] close(28) = -1 EBADF (Bad file descriptor) [pid 302] close(29) = -1 EBADF (Bad file descriptor) [pid 302] exit_group(0) = ? [pid 302] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [pid 296] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 303 attached , child_tidptr=0x5555570c7650) = 7 [pid 303] set_robust_list(0x5555570c7660, 24) = 0 [pid 303] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 303] setpgid(0, 0) = 0 [pid 303] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 303] write(3, "1000", 4) = 4 [pid 303] close(3) = 0 [pid 303] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3 [pid 303] write(3, "54", 2) = 2 [ 23.643361][ T302] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [ 23.651178][ T302] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [ 23.658985][ T302] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [ 23.667062][ T302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000005a22 [ 23.674866][ T302] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 23.682681][ T302] [ 23.693576][ T303] FAULT_INJECTION: forcing a failure. [ 23.693576][ T303] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 23.706715][ T303] CPU: 0 PID: 303 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 23.716769][ T303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 23.726663][ T303] Call Trace: [ 23.729783][ T303] [ 23.732563][ T303] dump_stack_lvl+0x151/0x1b7 [ 23.737072][ T303] ? io_uring_drop_tctx_refs+0x190/0x190 [ 23.742546][ T303] dump_stack+0x15/0x17 [ 23.746540][ T303] should_fail+0x3c6/0x510 [ 23.750786][ T303] should_fail_alloc_page+0x5a/0x80 [ 23.755991][ T303] prepare_alloc_pages+0x15c/0x700 [ 23.760940][ T303] ? __alloc_pages_bulk+0xe60/0xe60 [ 23.765980][ T303] __alloc_pages+0x138/0x5e0 [ 23.770400][ T303] ? prep_new_page+0x110/0x110 [ 23.775000][ T303] ? __alloc_pages+0x206/0x5e0 [ 23.779599][ T303] ? prep_new_page+0x110/0x110 [ 23.784202][ T303] ? __kasan_check_write+0x14/0x20 [ 23.789147][ T303] ? _raw_spin_lock+0xa4/0x1b0 [ 23.793748][ T303] pte_alloc_one+0x73/0x1b0 [ 23.798085][ T303] ? pfn_modify_allowed+0x2f0/0x2f0 [ 23.803122][ T303] ? __pmd_alloc+0x48d/0x550 [ 23.807551][ T303] __pte_alloc+0x86/0x350 [ 23.811714][ T303] ? __pud_alloc+0x260/0x260 [ 23.816138][ T303] ? __pud_alloc+0x213/0x260 [ 23.820566][ T303] ? free_pgtables+0x280/0x280 [ 23.825165][ T303] ? do_handle_mm_fault+0x2330/0x2330 [ 23.830375][ T303] ? __stack_depot_save+0x34/0x470 [ 23.835319][ T303] copy_page_range+0x28a8/0x2f90 [ 23.840093][ T303] ? __kasan_slab_alloc+0xb1/0xe0 [ 23.844956][ T303] ? slab_post_alloc_hook+0x53/0x2c0 [ 23.850075][ T303] ? kernel_clone+0x21e/0x9e0 [ 23.854592][ T303] ? do_syscall_64+0x3d/0xb0 [ 23.859015][ T303] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 23.864920][ T303] ? pfn_valid+0x1e0/0x1e0 [ 23.869169][ T303] ? rwsem_write_trylock+0x15b/0x290 [ 23.874288][ T303] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 23.880540][ T303] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 23.886093][ T303] ? __rb_insert_augmented+0x5de/0x610 [ 23.891389][ T303] copy_mm+0xc7e/0x13e0 [ 23.895387][ T303] ? copy_signal+0x610/0x610 [ 23.899808][ T303] ? __init_rwsem+0xd6/0x1c0 [ 23.904233][ T303] ? copy_signal+0x4e3/0x610 [ 23.908660][ T303] copy_process+0x12bc/0x3260 [ 23.913174][ T303] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 23.918123][ T303] ? __kasan_check_write+0x14/0x20 [ 23.923068][ T303] kernel_clone+0x21e/0x9e0 [ 23.927421][ T303] ? _raw_spin_unlock_irq+0x4e/0x70 [ 23.932440][ T303] ? create_io_thread+0x1e0/0x1e0 [ 23.937305][ T303] __x64_sys_clone+0x23f/0x290 [ 23.941906][ T303] ? __do_sys_vfork+0x130/0x130 [ 23.946591][ T303] ? __kasan_check_read+0x11/0x20 [ 23.951450][ T303] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 23.957261][ T303] do_syscall_64+0x3d/0xb0 [ 23.961515][ T303] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 23.967244][ T303] RIP: 0033:0x7f23ecb60009 [ 23.971496][ T303] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 23.991024][ T303] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [pid 303] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES) = -1 ENOMEM (Cannot allocate memory) [pid 303] close(3) = 0 [pid 303] close(4) = -1 EBADF (Bad file descriptor) [pid 303] close(5) = -1 EBADF (Bad file descriptor) [pid 303] close(6) = -1 EBADF (Bad file descriptor) [pid 303] close(7) = -1 EBADF (Bad file descriptor) [pid 303] close(8) = -1 EBADF (Bad file descriptor) [pid 303] close(9) = -1 EBADF (Bad file descriptor) [pid 303] close(10) = -1 EBADF (Bad file descriptor) [pid 303] close(11) = -1 EBADF (Bad file descriptor) [pid 303] close(12) = -1 EBADF (Bad file descriptor) [pid 303] close(13) = -1 EBADF (Bad file descriptor) [pid 303] close(14) = -1 EBADF (Bad file descriptor) [pid 303] close(15) = -1 EBADF (Bad file descriptor) [pid 303] close(16) = -1 EBADF (Bad file descriptor) [pid 303] close(17) = -1 EBADF (Bad file descriptor) [pid 303] close(18) = -1 EBADF (Bad file descriptor) [pid 303] close(19) = -1 EBADF (Bad file descriptor) [pid 303] close(20) = -1 EBADF (Bad file descriptor) [pid 303] close(21) = -1 EBADF (Bad file descriptor) [pid 303] close(22) = -1 EBADF (Bad file descriptor) [pid 303] close(23) = -1 EBADF (Bad file descriptor) [pid 303] close(24) = -1 EBADF (Bad file descriptor) [pid 303] close(25) = -1 EBADF (Bad file descriptor) [pid 303] close(26) = -1 EBADF (Bad file descriptor) [pid 303] close(27) = -1 EBADF (Bad file descriptor) [pid 303] close(28) = -1 EBADF (Bad file descriptor) [pid 303] close(29) = -1 EBADF (Bad file descriptor) [pid 303] exit_group(0) = ? [pid 303] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [pid 296] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 304 attached [pid 304] set_robust_list(0x5555570c7660, 24) = 0 [pid 304] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 304] setpgid(0, 0) = 0 [pid 304] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 296] <... clone resumed>, child_tidptr=0x5555570c7650) = 8 [pid 304] write(3, "1000", 4) = 4 [pid 304] close(3) = 0 [pid 304] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3 [pid 304] write(3, "54", 2) = 2 [ 23.999273][ T303] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [ 24.007082][ T303] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [ 24.014890][ T303] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [ 24.022705][ T303] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000005b1b [ 24.030517][ T303] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 24.038327][ T303] [ 24.055639][ T304] FAULT_INJECTION: forcing a failure. [ 24.055639][ T304] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 24.068715][ T304] CPU: 1 PID: 304 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 24.078722][ T304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 24.088615][ T304] Call Trace: [ 24.091744][ T304] [ 24.094517][ T304] dump_stack_lvl+0x151/0x1b7 [ 24.099029][ T304] ? io_uring_drop_tctx_refs+0x190/0x190 [ 24.104497][ T304] dump_stack+0x15/0x17 [ 24.108490][ T304] should_fail+0x3c6/0x510 [ 24.112742][ T304] should_fail_alloc_page+0x5a/0x80 [ 24.117777][ T304] prepare_alloc_pages+0x15c/0x700 [ 24.122732][ T304] ? __alloc_pages_bulk+0xe60/0xe60 [ 24.127845][ T304] __alloc_pages+0x138/0x5e0 [ 24.132272][ T304] ? prep_new_page+0x110/0x110 [ 24.136868][ T304] ? __alloc_pages+0x206/0x5e0 [ 24.141468][ T304] ? prep_new_page+0x110/0x110 [ 24.146072][ T304] ? __kasan_check_write+0x14/0x20 [ 24.151017][ T304] ? _raw_spin_lock+0xa4/0x1b0 [ 24.155703][ T304] pte_alloc_one+0x73/0x1b0 [ 24.160218][ T304] ? pfn_modify_allowed+0x2f0/0x2f0 [ 24.165252][ T304] ? __pmd_alloc+0x48d/0x550 [ 24.169679][ T304] __pte_alloc+0x86/0x350 [ 24.173942][ T304] ? __pud_alloc+0x260/0x260 [ 24.178357][ T304] ? __pud_alloc+0x213/0x260 [ 24.182783][ T304] ? free_pgtables+0x280/0x280 [ 24.187391][ T304] ? do_handle_mm_fault+0x2330/0x2330 [ 24.192597][ T304] ? __stack_depot_save+0x34/0x470 [ 24.197538][ T304] ? anon_vma_clone+0x9a/0x500 [ 24.202137][ T304] copy_page_range+0x28a8/0x2f90 [ 24.206909][ T304] ? __kasan_slab_alloc+0xb1/0xe0 [ 24.211771][ T304] ? slab_post_alloc_hook+0x53/0x2c0 [ 24.216894][ T304] ? kernel_clone+0x21e/0x9e0 [ 24.221905][ T304] ? do_syscall_64+0x3d/0xb0 [ 24.226264][ T304] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 24.232169][ T304] ? pfn_valid+0x1e0/0x1e0 [ 24.236419][ T304] ? rwsem_write_trylock+0x15b/0x290 [ 24.241541][ T304] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 24.247793][ T304] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 24.253344][ T304] ? __rb_insert_augmented+0x5de/0x610 [ 24.258641][ T304] copy_mm+0xc7e/0x13e0 [ 24.262641][ T304] ? copy_signal+0x610/0x610 [ 24.267056][ T304] ? __init_rwsem+0xd6/0x1c0 [ 24.271482][ T304] ? copy_signal+0x4e3/0x610 [ 24.275908][ T304] copy_process+0x12bc/0x3260 [ 24.280439][ T304] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 24.285370][ T304] ? __kasan_check_write+0x14/0x20 [ 24.290320][ T304] kernel_clone+0x21e/0x9e0 [ 24.294656][ T304] ? _raw_spin_unlock_irq+0x4e/0x70 [ 24.299695][ T304] ? create_io_thread+0x1e0/0x1e0 [ 24.304551][ T304] __x64_sys_clone+0x23f/0x290 [ 24.309152][ T304] ? __do_sys_vfork+0x130/0x130 [ 24.313836][ T304] ? __kasan_check_read+0x11/0x20 [ 24.318698][ T304] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 24.324512][ T304] do_syscall_64+0x3d/0xb0 [ 24.328770][ T304] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 24.334493][ T304] RIP: 0033:0x7f23ecb60009 [pid 304] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES) = -1 ENOMEM (Cannot allocate memory) [pid 304] close(3) = 0 [pid 304] close(4) = -1 EBADF (Bad file descriptor) [pid 304] close(5) = -1 EBADF (Bad file descriptor) [pid 304] close(6) = -1 EBADF (Bad file descriptor) [pid 304] close(7) = -1 EBADF (Bad file descriptor) [pid 304] close(8) = -1 EBADF (Bad file descriptor) [pid 304] close(9) = -1 EBADF (Bad file descriptor) [pid 304] close(10) = -1 EBADF (Bad file descriptor) [pid 304] close(11) = -1 EBADF (Bad file descriptor) [pid 304] close(12) = -1 EBADF (Bad file descriptor) [pid 304] close(13) = -1 EBADF (Bad file descriptor) [pid 304] close(14) = -1 EBADF (Bad file descriptor) [pid 304] close(15) = -1 EBADF (Bad file descriptor) [pid 304] close(16) = -1 EBADF (Bad file descriptor) [pid 304] close(17) = -1 EBADF (Bad file descriptor) [pid 304] close(18) = -1 EBADF (Bad file descriptor) [pid 304] close(19) = -1 EBADF (Bad file descriptor) [pid 304] close(20) = -1 EBADF (Bad file descriptor) [pid 304] close(21) = -1 EBADF (Bad file descriptor) [pid 304] close(22) = -1 EBADF (Bad file descriptor) [pid 304] close(23) = -1 EBADF (Bad file descriptor) [pid 304] close(24) = -1 EBADF (Bad file descriptor) [pid 304] close(25) = -1 EBADF (Bad file descriptor) [pid 304] close(26) = -1 EBADF (Bad file descriptor) [pid 304] close(27) = -1 EBADF (Bad file descriptor) [pid 304] close(28) = -1 EBADF (Bad file descriptor) [pid 304] close(29) = -1 EBADF (Bad file descriptor) [pid 304] exit_group(0) = ? [pid 304] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=8, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570c7650) = 9 ./strace-static-x86_64: Process 306 attached [pid 306] set_robust_list(0x5555570c7660, 24) = 0 [pid 306] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 306] setpgid(0, 0) = 0 [pid 306] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 306] write(3, "1000", 4) = 4 [pid 306] close(3) = 0 [pid 306] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3 [pid 306] write(3, "54", 2) = 2 [ 24.338745][ T304] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 24.358189][ T304] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 24.366434][ T304] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [ 24.374244][ T304] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [ 24.382053][ T304] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [ 24.389866][ T304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000005c7b [ 24.397675][ T304] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 24.405493][ T304] [ 24.415459][ T306] FAULT_INJECTION: forcing a failure. [ 24.415459][ T306] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 24.428542][ T306] CPU: 0 PID: 306 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 24.438533][ T306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 24.448424][ T306] Call Trace: [ 24.451552][ T306] [ 24.454325][ T306] dump_stack_lvl+0x151/0x1b7 [ 24.458837][ T306] ? io_uring_drop_tctx_refs+0x190/0x190 [ 24.464309][ T306] dump_stack+0x15/0x17 [ 24.468297][ T306] should_fail+0x3c6/0x510 [ 24.472548][ T306] should_fail_alloc_page+0x5a/0x80 [ 24.477585][ T306] prepare_alloc_pages+0x15c/0x700 [ 24.482593][ T306] ? __alloc_pages_bulk+0xe60/0xe60 [ 24.487565][ T306] __alloc_pages+0x138/0x5e0 [ 24.491993][ T306] ? prep_new_page+0x110/0x110 [ 24.496680][ T306] ? __alloc_pages+0x206/0x5e0 [ 24.501374][ T306] ? stack_trace_save+0x1c0/0x1c0 [ 24.506225][ T306] ? __kasan_check_write+0x14/0x20 [ 24.511173][ T306] ? _raw_spin_lock+0xa4/0x1b0 [ 24.515771][ T306] __pmd_alloc+0xb1/0x550 [ 24.519942][ T306] ? __pud_alloc+0x260/0x260 [ 24.524363][ T306] ? __pud_alloc+0x213/0x260 [ 24.528791][ T306] ? do_handle_mm_fault+0x2330/0x2330 [ 24.533998][ T306] ? __stack_depot_save+0x34/0x470 [ 24.538944][ T306] ? anon_vma_clone+0x9a/0x500 [ 24.543547][ T306] copy_page_range+0x2b3d/0x2f90 [ 24.548317][ T306] ? __kasan_slab_alloc+0xb1/0xe0 [ 24.553178][ T306] ? slab_post_alloc_hook+0x53/0x2c0 [ 24.558311][ T306] ? copy_mm+0xa3a/0x13e0 [ 24.562470][ T306] ? copy_process+0x12bc/0x3260 [ 24.567160][ T306] ? kernel_clone+0x21e/0x9e0 [ 24.571669][ T306] ? do_syscall_64+0x3d/0xb0 [ 24.576091][ T306] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 24.582042][ T306] ? pfn_valid+0x1e0/0x1e0 [ 24.586247][ T306] ? rwsem_write_trylock+0x15b/0x290 [ 24.591369][ T306] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 24.597617][ T306] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 24.603171][ T306] ? __rb_insert_augmented+0x5de/0x610 [ 24.608465][ T306] copy_mm+0xc7e/0x13e0 [ 24.612460][ T306] ? copy_signal+0x610/0x610 [ 24.616883][ T306] ? __init_rwsem+0xd6/0x1c0 [ 24.621308][ T306] ? copy_signal+0x4e3/0x610 [ 24.626170][ T306] copy_process+0x12bc/0x3260 [ 24.630697][ T306] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 24.635629][ T306] ? __kasan_check_write+0x14/0x20 [ 24.640577][ T306] kernel_clone+0x21e/0x9e0 [ 24.644921][ T306] ? _raw_spin_unlock_irq+0x4e/0x70 [ 24.649951][ T306] ? create_io_thread+0x1e0/0x1e0 [ 24.654815][ T306] __x64_sys_clone+0x23f/0x290 [ 24.659430][ T306] ? __do_sys_vfork+0x130/0x130 [ 24.664115][ T306] ? __kasan_check_read+0x11/0x20 [ 24.668960][ T306] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 24.674773][ T306] do_syscall_64+0x3d/0xb0 [ 24.679027][ T306] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 24.684754][ T306] RIP: 0033:0x7f23ecb60009 [ 24.689015][ T306] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [pid 306] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES) = -1 ENOMEM (Cannot allocate memory) [pid 306] close(3) = 0 [pid 306] close(4) = -1 EBADF (Bad file descriptor) [pid 306] close(5) = -1 EBADF (Bad file descriptor) [pid 306] close(6) = -1 EBADF (Bad file descriptor) [pid 306] close(7) = -1 EBADF (Bad file descriptor) [pid 306] close(8) = -1 EBADF (Bad file descriptor) [pid 306] close(9) = -1 EBADF (Bad file descriptor) [pid 306] close(10) = -1 EBADF (Bad file descriptor) [pid 306] close(11) = -1 EBADF (Bad file descriptor) [pid 306] close(12) = -1 EBADF (Bad file descriptor) [pid 306] close(13) = -1 EBADF (Bad file descriptor) [pid 306] close(14) = -1 EBADF (Bad file descriptor) [pid 306] close(15) = -1 EBADF (Bad file descriptor) [pid 306] close(16) = -1 EBADF (Bad file descriptor) [pid 306] close(17) = -1 EBADF (Bad file descriptor) [pid 306] close(18) = -1 EBADF (Bad file descriptor) [pid 306] close(19) = -1 EBADF (Bad file descriptor) [pid 306] close(20) = -1 EBADF (Bad file descriptor) [pid 306] close(21) = -1 EBADF (Bad file descriptor) [pid 306] close(22) = -1 EBADF (Bad file descriptor) [pid 306] close(23) = -1 EBADF (Bad file descriptor) [pid 306] close(24) = -1 EBADF (Bad file descriptor) [pid 306] close(25) = -1 EBADF (Bad file descriptor) [pid 306] close(26) = -1 EBADF (Bad file descriptor) [pid 306] close(27) = -1 EBADF (Bad file descriptor) [pid 306] close(28) = -1 EBADF (Bad file descriptor) [pid 306] close(29) = -1 EBADF (Bad file descriptor) [pid 306] exit_group(0) = ? [pid 306] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=9, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [pid 296] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570c7650) = 10 ./strace-static-x86_64: Process 307 attached [pid 307] set_robust_list(0x5555570c7660, 24) = 0 [pid 307] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 307] setpgid(0, 0) = 0 [pid 307] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 307] write(3, "1000", 4) = 4 [pid 307] close(3) = 0 [pid 307] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3 [pid 307] write(3, "54", 2) = 2 [ 24.708449][ T306] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 24.716785][ T306] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [ 24.724593][ T306] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [ 24.732402][ T306] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [ 24.740214][ T306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000005de6 [ 24.748027][ T306] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 24.755838][ T306] [ 24.776187][ T307] FAULT_INJECTION: forcing a failure. [ 24.776187][ T307] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 24.789353][ T307] CPU: 1 PID: 307 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 24.799358][ T307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 24.809251][ T307] Call Trace: [ 24.812375][ T307] [ 24.815155][ T307] dump_stack_lvl+0x151/0x1b7 [ 24.819665][ T307] ? io_uring_drop_tctx_refs+0x190/0x190 [ 24.825234][ T307] ? kmem_cache_alloc+0x134/0x200 [ 24.830097][ T307] dump_stack+0x15/0x17 [ 24.834085][ T307] should_fail+0x3c6/0x510 [ 24.838346][ T307] should_fail_alloc_page+0x5a/0x80 [ 24.843371][ T307] prepare_alloc_pages+0x15c/0x700 [ 24.848326][ T307] ? __alloc_pages_bulk+0xe60/0xe60 [ 24.853350][ T307] __alloc_pages+0x138/0x5e0 [ 24.857778][ T307] ? prep_new_page+0x110/0x110 [ 24.862377][ T307] ? __alloc_pages+0x206/0x5e0 [ 24.866977][ T307] ? stack_trace_save+0x1c0/0x1c0 [ 24.871845][ T307] ? __kasan_check_write+0x14/0x20 [ 24.876787][ T307] ? _raw_spin_lock+0xa4/0x1b0 [ 24.881387][ T307] __pmd_alloc+0xb1/0x550 [ 24.886248][ T307] ? __pud_alloc+0x260/0x260 [ 24.890675][ T307] ? __pud_alloc+0x213/0x260 [ 24.895097][ T307] ? do_handle_mm_fault+0x2330/0x2330 [ 24.900320][ T307] ? __stack_depot_save+0x34/0x470 [ 24.905250][ T307] ? anon_vma_clone+0x9a/0x500 [ 24.909852][ T307] copy_page_range+0x2b3d/0x2f90 [ 24.914624][ T307] ? __kasan_slab_alloc+0xb1/0xe0 [ 24.919487][ T307] ? slab_post_alloc_hook+0x53/0x2c0 [ 24.924606][ T307] ? copy_mm+0xa3a/0x13e0 [ 24.928773][ T307] ? copy_process+0x12bc/0x3260 [ 24.933459][ T307] ? kernel_clone+0x21e/0x9e0 [ 24.937970][ T307] ? do_syscall_64+0x3d/0xb0 [ 24.942398][ T307] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 24.948305][ T307] ? pfn_valid+0x1e0/0x1e0 [ 24.952553][ T307] ? rwsem_write_trylock+0x15b/0x290 [ 24.957674][ T307] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 24.963921][ T307] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 24.969478][ T307] ? __rb_insert_augmented+0x5de/0x610 [ 24.974773][ T307] copy_mm+0xc7e/0x13e0 [ 24.978767][ T307] ? copy_signal+0x610/0x610 [ 24.983190][ T307] ? __init_rwsem+0xd6/0x1c0 [ 24.987618][ T307] ? copy_signal+0x4e3/0x610 [ 24.992045][ T307] copy_process+0x12bc/0x3260 [ 24.996558][ T307] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 25.001502][ T307] ? __kasan_check_write+0x14/0x20 [ 25.006450][ T307] kernel_clone+0x21e/0x9e0 [ 25.010789][ T307] ? _raw_spin_unlock_irq+0x4e/0x70 [ 25.015827][ T307] ? create_io_thread+0x1e0/0x1e0 [ 25.020686][ T307] __x64_sys_clone+0x23f/0x290 [ 25.025285][ T307] ? __do_sys_vfork+0x130/0x130 [ 25.029972][ T307] ? __kasan_check_read+0x11/0x20 [ 25.034831][ T307] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 25.040648][ T307] do_syscall_64+0x3d/0xb0 [ 25.044902][ T307] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 25.050627][ T307] RIP: 0033:0x7f23ecb60009 [ 25.054880][ T307] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [pid 307] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES) = -1 ENOMEM (Cannot allocate memory) [pid 307] close(3) = 0 [pid 307] close(4) = -1 EBADF (Bad file descriptor) [pid 307] close(5) = -1 EBADF (Bad file descriptor) [pid 307] close(6) = -1 EBADF (Bad file descriptor) [pid 307] close(7) = -1 EBADF (Bad file descriptor) [pid 307] close(8) = -1 EBADF (Bad file descriptor) [pid 307] close(9) = -1 EBADF (Bad file descriptor) [pid 307] close(10) = -1 EBADF (Bad file descriptor) [pid 307] close(11) = -1 EBADF (Bad file descriptor) [pid 307] close(12) = -1 EBADF (Bad file descriptor) [pid 307] close(13) = -1 EBADF (Bad file descriptor) [pid 307] close(14) = -1 EBADF (Bad file descriptor) [pid 307] close(15) = -1 EBADF (Bad file descriptor) [pid 307] close(16) = -1 EBADF (Bad file descriptor) [pid 307] close(17) = -1 EBADF (Bad file descriptor) [pid 307] close(18) = -1 EBADF (Bad file descriptor) [pid 307] close(19) = -1 EBADF (Bad file descriptor) [pid 307] close(20) = -1 EBADF (Bad file descriptor) [pid 307] close(21) = -1 EBADF (Bad file descriptor) [pid 307] close(22) = -1 EBADF (Bad file descriptor) [pid 307] close(23) = -1 EBADF (Bad file descriptor) [pid 307] close(24) = -1 EBADF (Bad file descriptor) [pid 307] close(25) = -1 EBADF (Bad file descriptor) [pid 307] close(26) = -1 EBADF (Bad file descriptor) [pid 307] close(27) = -1 EBADF (Bad file descriptor) [pid 307] close(28) = -1 EBADF (Bad file descriptor) [pid 307] close(29) = -1 EBADF (Bad file descriptor) [pid 307] exit_group(0) = ? [pid 307] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=10, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [pid 296] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570c7650) = 11 ./strace-static-x86_64: Process 308 attached [pid 308] set_robust_list(0x5555570c7660, 24) = 0 [pid 308] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 308] setpgid(0, 0) = 0 [pid 308] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 308] write(3, "1000", 4) = 4 [pid 308] close(3) = 0 [pid 308] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3 [pid 308] write(3, "54", 2) = 2 [ 25.074338][ T307] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 25.082566][ T307] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [ 25.090379][ T307] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [ 25.098187][ T307] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [ 25.106002][ T307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000005f4d [ 25.113811][ T307] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 25.121626][ T307] [ 25.130881][ T308] FAULT_INJECTION: forcing a failure. [ 25.130881][ T308] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 25.144031][ T308] CPU: 0 PID: 308 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 25.154068][ T308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 25.163956][ T308] Call Trace: [ 25.167086][ T308] [ 25.169858][ T308] dump_stack_lvl+0x151/0x1b7 [ 25.174373][ T308] ? io_uring_drop_tctx_refs+0x190/0x190 [ 25.179843][ T308] dump_stack+0x15/0x17 [ 25.184179][ T308] should_fail+0x3c6/0x510 [ 25.188430][ T308] should_fail_alloc_page+0x5a/0x80 [ 25.193468][ T308] prepare_alloc_pages+0x15c/0x700 [ 25.198421][ T308] ? __alloc_pages_bulk+0xe60/0xe60 [ 25.203455][ T308] __alloc_pages+0x138/0x5e0 [ 25.207874][ T308] ? stack_trace_save+0x1c0/0x1c0 [ 25.212733][ T308] ? prep_new_page+0x110/0x110 [ 25.217339][ T308] get_zeroed_page+0x19/0x40 [ 25.221759][ T308] __pud_alloc+0x8b/0x260 [ 25.225924][ T308] ? stack_trace_snprint+0xf0/0xf0 [ 25.230959][ T308] ? do_handle_mm_fault+0x2330/0x2330 [ 25.236165][ T308] ? __stack_depot_save+0x34/0x470 [ 25.241114][ T308] ? anon_vma_clone+0x9a/0x500 [ 25.245713][ T308] copy_page_range+0x2bcf/0x2f90 [ 25.250489][ T308] ? __kasan_slab_alloc+0xb1/0xe0 [ 25.255353][ T308] ? slab_post_alloc_hook+0x53/0x2c0 [ 25.260468][ T308] ? copy_mm+0xa3a/0x13e0 [ 25.264634][ T308] ? copy_process+0x12bc/0x3260 [ 25.269320][ T308] ? kernel_clone+0x21e/0x9e0 [ 25.273834][ T308] ? __x64_sys_clone+0x23f/0x290 [ 25.278612][ T308] ? do_syscall_64+0x3d/0xb0 [ 25.283035][ T308] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 25.288938][ T308] ? pfn_valid+0x1e0/0x1e0 [ 25.293200][ T308] ? rwsem_write_trylock+0x15b/0x290 [ 25.298311][ T308] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 25.304557][ T308] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 25.310113][ T308] ? __rb_insert_augmented+0x5de/0x610 [ 25.315429][ T308] copy_mm+0xc7e/0x13e0 [ 25.319400][ T308] ? copy_signal+0x610/0x610 [ 25.323827][ T308] ? __init_rwsem+0xd6/0x1c0 [ 25.328258][ T308] ? copy_signal+0x4e3/0x610 [ 25.332679][ T308] copy_process+0x12bc/0x3260 [ 25.337195][ T308] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 25.342140][ T308] ? __kasan_check_write+0x14/0x20 [ 25.347085][ T308] kernel_clone+0x21e/0x9e0 [ 25.351425][ T308] ? _raw_spin_unlock_irq+0x4e/0x70 [ 25.356460][ T308] ? create_io_thread+0x1e0/0x1e0 [ 25.361321][ T308] __x64_sys_clone+0x23f/0x290 [ 25.365922][ T308] ? __do_sys_vfork+0x130/0x130 [ 25.370605][ T308] ? __kasan_check_read+0x11/0x20 [ 25.375468][ T308] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 25.381281][ T308] do_syscall_64+0x3d/0xb0 [ 25.385534][ T308] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 25.391262][ T308] RIP: 0033:0x7f23ecb60009 [ 25.395520][ T308] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 25.415045][ T308] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 25.423799][ T308] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [pid 308] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES) = -1 ENOMEM (Cannot allocate memory) [pid 308] close(3) = 0 [pid 308] close(4) = -1 EBADF (Bad file descriptor) [pid 308] close(5) = -1 EBADF (Bad file descriptor) [pid 308] close(6) = -1 EBADF (Bad file descriptor) [pid 308] close(7) = -1 EBADF (Bad file descriptor) [pid 308] close(8) = -1 EBADF (Bad file descriptor) [pid 308] close(9) = -1 EBADF (Bad file descriptor) [pid 308] close(10) = -1 EBADF (Bad file descriptor) [pid 308] close(11) = -1 EBADF (Bad file descriptor) [pid 308] close(12) = -1 EBADF (Bad file descriptor) [pid 308] close(13) = -1 EBADF (Bad file descriptor) [pid 308] close(14) = -1 EBADF (Bad file descriptor) [pid 308] close(15) = -1 EBADF (Bad file descriptor) [pid 308] close(16) = -1 EBADF (Bad file descriptor) [pid 308] close(17) = -1 EBADF (Bad file descriptor) [pid 308] close(18) = -1 EBADF (Bad file descriptor) [pid 308] close(19) = -1 EBADF (Bad file descriptor) [pid 308] close(20) = -1 EBADF (Bad file descriptor) [pid 308] close(21) = -1 EBADF (Bad file descriptor) [pid 308] close(22) = -1 EBADF (Bad file descriptor) [pid 308] close(23) = -1 EBADF (Bad file descriptor) [pid 308] close(24) = -1 EBADF (Bad file descriptor) [pid 308] close(25) = -1 EBADF (Bad file descriptor) [pid 308] close(26) = -1 EBADF (Bad file descriptor) [pid 308] close(27) = -1 EBADF (Bad file descriptor) [pid 308] close(28) = -1 EBADF (Bad file descriptor) [pid 308] close(29) = -1 EBADF (Bad file descriptor) [pid 308] exit_group(0) = ? [pid 308] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=11, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [pid 296] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 310 attached , child_tidptr=0x5555570c7650) = 12 [pid 310] set_robust_list(0x5555570c7660, 24) = 0 [pid 310] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 310] setpgid(0, 0) = 0 [pid 310] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 310] write(3, "1000", 4) = 4 [pid 310] close(3) = 0 [pid 310] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3 [pid 310] write(3, "54", 2) = 2 [ 25.431615][ T308] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [ 25.439420][ T308] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [ 25.447236][ T308] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000060b4 [ 25.455041][ T308] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 25.462859][ T308] [ 25.477588][ T310] FAULT_INJECTION: forcing a failure. [ 25.477588][ T310] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 25.490693][ T310] CPU: 1 PID: 310 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 25.500662][ T310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 25.510556][ T310] Call Trace: [ 25.513679][ T310] [ 25.516458][ T310] dump_stack_lvl+0x151/0x1b7 [ 25.520968][ T310] ? io_uring_drop_tctx_refs+0x190/0x190 [ 25.526439][ T310] dump_stack+0x15/0x17 [ 25.530427][ T310] should_fail+0x3c6/0x510 [ 25.534684][ T310] should_fail_alloc_page+0x5a/0x80 [ 25.539715][ T310] prepare_alloc_pages+0x15c/0x700 [ 25.544664][ T310] ? __alloc_pages_bulk+0xe60/0xe60 [ 25.549697][ T310] __alloc_pages+0x138/0x5e0 [ 25.554121][ T310] ? stack_trace_save+0x1c0/0x1c0 [ 25.558985][ T310] ? prep_new_page+0x110/0x110 [ 25.563589][ T310] get_zeroed_page+0x19/0x40 [ 25.568009][ T310] __pud_alloc+0x8b/0x260 [ 25.572177][ T310] ? stack_trace_snprint+0xf0/0xf0 [ 25.577129][ T310] ? do_handle_mm_fault+0x2330/0x2330 [ 25.582330][ T310] ? __stack_depot_save+0x34/0x470 [ 25.587284][ T310] ? anon_vma_clone+0x9a/0x500 [ 25.591876][ T310] copy_page_range+0x2bcf/0x2f90 [ 25.596651][ T310] ? __kasan_slab_alloc+0xb1/0xe0 [ 25.601508][ T310] ? slab_post_alloc_hook+0x53/0x2c0 [ 25.606632][ T310] ? copy_mm+0xa3a/0x13e0 [ 25.610795][ T310] ? copy_process+0x12bc/0x3260 [ 25.615483][ T310] ? kernel_clone+0x21e/0x9e0 [ 25.619995][ T310] ? __x64_sys_clone+0x23f/0x290 [ 25.624768][ T310] ? do_syscall_64+0x3d/0xb0 [ 25.629196][ T310] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 25.635101][ T310] ? pfn_valid+0x1e0/0x1e0 [ 25.639350][ T310] ? rwsem_write_trylock+0x15b/0x290 [ 25.644470][ T310] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 25.650719][ T310] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 25.656278][ T310] ? __rb_insert_augmented+0x5de/0x610 [ 25.661570][ T310] copy_mm+0xc7e/0x13e0 [ 25.665563][ T310] ? copy_signal+0x610/0x610 [ 25.669989][ T310] ? __init_rwsem+0xd6/0x1c0 [ 25.674415][ T310] ? copy_signal+0x4e3/0x610 [ 25.678843][ T310] copy_process+0x12bc/0x3260 [ 25.683357][ T310] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 25.688303][ T310] ? __kasan_check_write+0x14/0x20 [ 25.693251][ T310] kernel_clone+0x21e/0x9e0 [ 25.697589][ T310] ? _raw_spin_unlock_irq+0x4e/0x70 [ 25.702634][ T310] ? create_io_thread+0x1e0/0x1e0 [ 25.707484][ T310] __x64_sys_clone+0x23f/0x290 [ 25.712083][ T310] ? __do_sys_vfork+0x130/0x130 [ 25.716772][ T310] ? __kasan_check_read+0x11/0x20 [ 25.721977][ T310] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 25.727794][ T310] do_syscall_64+0x3d/0xb0 [ 25.732044][ T310] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 25.737770][ T310] RIP: 0033:0x7f23ecb60009 [ 25.742028][ T310] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 25.761472][ T310] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 25.769710][ T310] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [pid 310] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES) = -1 ENOMEM (Cannot allocate memory) [pid 310] close(3) = 0 [pid 310] close(4) = -1 EBADF (Bad file descriptor) [pid 310] close(5) = -1 EBADF (Bad file descriptor) [pid 310] close(6) = -1 EBADF (Bad file descriptor) [pid 310] close(7) = -1 EBADF (Bad file descriptor) [pid 310] close(8) = -1 EBADF (Bad file descriptor) [pid 310] close(9) = -1 EBADF (Bad file descriptor) [pid 310] close(10) = -1 EBADF (Bad file descriptor) [pid 310] close(11) = -1 EBADF (Bad file descriptor) [pid 310] close(12) = -1 EBADF (Bad file descriptor) [pid 310] close(13) = -1 EBADF (Bad file descriptor) [pid 310] close(14) = -1 EBADF (Bad file descriptor) [pid 310] close(15) = -1 EBADF (Bad file descriptor) [pid 310] close(16) = -1 EBADF (Bad file descriptor) [pid 310] close(17) = -1 EBADF (Bad file descriptor) [pid 310] close(18) = -1 EBADF (Bad file descriptor) [pid 310] close(19) = -1 EBADF (Bad file descriptor) [pid 310] close(20) = -1 EBADF (Bad file descriptor) [pid 310] close(21) = -1 EBADF (Bad file descriptor) [pid 310] close(22) = -1 EBADF (Bad file descriptor) [pid 310] close(23) = -1 EBADF (Bad file descriptor) [pid 310] close(24) = -1 EBADF (Bad file descriptor) [pid 310] close(25) = -1 EBADF (Bad file descriptor) [pid 310] close(26) = -1 EBADF (Bad file descriptor) [pid 310] close(27) = -1 EBADF (Bad file descriptor) [pid 310] close(28) = -1 EBADF (Bad file descriptor) [pid 310] close(29) = -1 EBADF (Bad file descriptor) [pid 310] exit_group(0) = ? [pid 310] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=12, si_uid=0, si_status=0, si_utime=0, si_stime=3} --- [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570c7650) = 13 ./strace-static-x86_64: Process 311 attached [pid 311] set_robust_list(0x5555570c7660, 24) = 0 [pid 311] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 311] setpgid(0, 0) = 0 [pid 311] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 311] write(3, "1000", 4) = 4 [pid 311] close(3) = 0 [pid 311] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3 [pid 311] write(3, "54", 2) = 2 [ 25.777524][ T310] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [ 25.785332][ T310] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [ 25.793144][ T310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000006219 [ 25.800956][ T310] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 25.808772][ T310] [ 25.821006][ T311] FAULT_INJECTION: forcing a failure. [ 25.821006][ T311] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 25.834093][ T311] CPU: 0 PID: 311 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 25.844162][ T311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 25.854058][ T311] Call Trace: [ 25.857184][ T311] [ 25.859960][ T311] dump_stack_lvl+0x151/0x1b7 [ 25.864470][ T311] ? io_uring_drop_tctx_refs+0x190/0x190 [ 25.869938][ T311] dump_stack+0x15/0x17 [ 25.874016][ T311] should_fail+0x3c6/0x510 [ 25.878269][ T311] should_fail_alloc_page+0x5a/0x80 [ 25.883302][ T311] prepare_alloc_pages+0x15c/0x700 [ 25.888249][ T311] ? __alloc_pages_bulk+0xe60/0xe60 [ 25.893287][ T311] __alloc_pages+0x138/0x5e0 [ 25.897711][ T311] ? stack_trace_save+0x1c0/0x1c0 [ 25.902571][ T311] ? prep_new_page+0x110/0x110 [ 25.907174][ T311] get_zeroed_page+0x19/0x40 [ 25.911596][ T311] __pud_alloc+0x8b/0x260 [ 25.915762][ T311] ? stack_trace_snprint+0xf0/0xf0 [ 25.920709][ T311] ? do_handle_mm_fault+0x2330/0x2330 [ 25.925919][ T311] ? __stack_depot_save+0x34/0x470 [ 25.930865][ T311] ? anon_vma_clone+0x9a/0x500 [ 25.935464][ T311] copy_page_range+0x2bcf/0x2f90 [ 25.940240][ T311] ? __kasan_slab_alloc+0xb1/0xe0 [ 25.945096][ T311] ? slab_post_alloc_hook+0x53/0x2c0 [ 25.950220][ T311] ? copy_mm+0xa3a/0x13e0 [ 25.954383][ T311] ? copy_process+0x12bc/0x3260 [ 25.959074][ T311] ? kernel_clone+0x21e/0x9e0 [ 25.963587][ T311] ? __x64_sys_clone+0x23f/0x290 [ 25.968357][ T311] ? do_syscall_64+0x3d/0xb0 [ 25.972789][ T311] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 25.978696][ T311] ? pfn_valid+0x1e0/0x1e0 [ 25.982937][ T311] ? rwsem_write_trylock+0x15b/0x290 [ 25.988059][ T311] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 25.994315][ T311] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 25.999865][ T311] ? __rb_insert_augmented+0x5de/0x610 [ 26.005157][ T311] copy_mm+0xc7e/0x13e0 [ 26.009176][ T311] ? copy_signal+0x610/0x610 [ 26.013577][ T311] ? __init_rwsem+0xd6/0x1c0 [ 26.018001][ T311] ? copy_signal+0x4e3/0x610 [ 26.022428][ T311] copy_process+0x12bc/0x3260 [ 26.026943][ T311] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 26.031888][ T311] ? __kasan_check_write+0x14/0x20 [ 26.036836][ T311] kernel_clone+0x21e/0x9e0 [ 26.041186][ T311] ? _raw_spin_unlock_irq+0x4e/0x70 [ 26.046218][ T311] ? create_io_thread+0x1e0/0x1e0 [ 26.051074][ T311] __x64_sys_clone+0x23f/0x290 [ 26.055676][ T311] ? __do_sys_vfork+0x130/0x130 [ 26.060360][ T311] ? __kasan_check_read+0x11/0x20 [ 26.065215][ T311] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 26.071031][ T311] do_syscall_64+0x3d/0xb0 [ 26.075285][ T311] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 26.081013][ T311] RIP: 0033:0x7f23ecb60009 [ 26.085269][ T311] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 26.104706][ T311] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 26.112953][ T311] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [ 26.120767][ T311] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [pid 311] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES) = -1 ENOMEM (Cannot allocate memory) [pid 311] close(3) = 0 [pid 311] close(4) = -1 EBADF (Bad file descriptor) [pid 311] close(5) = -1 EBADF (Bad file descriptor) [pid 311] close(6) = -1 EBADF (Bad file descriptor) [pid 311] close(7) = -1 EBADF (Bad file descriptor) [pid 311] close(8) = -1 EBADF (Bad file descriptor) [pid 311] close(9) = -1 EBADF (Bad file descriptor) [pid 311] close(10) = -1 EBADF (Bad file descriptor) [pid 311] close(11) = -1 EBADF (Bad file descriptor) [pid 311] close(12) = -1 EBADF (Bad file descriptor) [pid 311] close(13) = -1 EBADF (Bad file descriptor) [pid 311] close(14) = -1 EBADF (Bad file descriptor) [pid 311] close(15) = -1 EBADF (Bad file descriptor) [pid 311] close(16) = -1 EBADF (Bad file descriptor) [pid 311] close(17) = -1 EBADF (Bad file descriptor) [pid 311] close(18) = -1 EBADF (Bad file descriptor) [pid 311] close(19) = -1 EBADF (Bad file descriptor) [pid 311] close(20) = -1 EBADF (Bad file descriptor) [pid 311] close(21) = -1 EBADF (Bad file descriptor) [pid 311] close(22) = -1 EBADF (Bad file descriptor) [pid 311] close(23) = -1 EBADF (Bad file descriptor) [pid 311] close(24) = -1 EBADF (Bad file descriptor) [pid 311] close(25) = -1 EBADF (Bad file descriptor) [pid 311] close(26) = -1 EBADF (Bad file descriptor) [pid 311] close(27) = -1 EBADF (Bad file descriptor) [pid 311] close(28) = -1 EBADF (Bad file descriptor) [pid 311] close(29) = -1 EBADF (Bad file descriptor) [pid 311] exit_group(0) = ? [pid 311] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- [pid 296] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570c7650) = 14 ./strace-static-x86_64: Process 312 attached [pid 312] set_robust_list(0x5555570c7660, 24) = 0 [pid 312] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 312] setpgid(0, 0) = 0 [pid 312] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 312] write(3, "1000", 4) = 4 [pid 312] close(3) = 0 [pid 312] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3 [pid 312] write(3, "54", 2) = 2 [ 26.128577][ T311] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [ 26.136385][ T311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000006372 [ 26.144197][ T311] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 26.152010][ T311] [ 26.171829][ T312] FAULT_INJECTION: forcing a failure. [ 26.171829][ T312] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 26.184899][ T312] CPU: 0 PID: 312 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 26.194913][ T312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 26.204817][ T312] Call Trace: [ 26.207936][ T312] [ 26.210708][ T312] dump_stack_lvl+0x151/0x1b7 [ 26.215227][ T312] ? io_uring_drop_tctx_refs+0x190/0x190 [ 26.220691][ T312] dump_stack+0x15/0x17 [ 26.225125][ T312] should_fail+0x3c6/0x510 [ 26.229376][ T312] should_fail_alloc_page+0x5a/0x80 [ 26.234409][ T312] prepare_alloc_pages+0x15c/0x700 [ 26.239357][ T312] ? __alloc_pages_bulk+0xe60/0xe60 [ 26.244388][ T312] __alloc_pages+0x138/0x5e0 [ 26.248821][ T312] ? prep_new_page+0x110/0x110 [ 26.253421][ T312] ? __alloc_pages+0x206/0x5e0 [ 26.258028][ T312] ? prep_new_page+0x110/0x110 [ 26.262616][ T312] ? __kasan_check_write+0x14/0x20 [ 26.267564][ T312] ? _raw_spin_lock+0xa4/0x1b0 [ 26.272161][ T312] pte_alloc_one+0x73/0x1b0 [ 26.276502][ T312] ? pfn_modify_allowed+0x2f0/0x2f0 [ 26.281537][ T312] ? __pmd_alloc+0x48d/0x550 [ 26.285975][ T312] __pte_alloc+0x86/0x350 [ 26.290128][ T312] ? __pud_alloc+0x260/0x260 [ 26.294564][ T312] ? __pud_alloc+0x213/0x260 [ 26.298981][ T312] ? free_pgtables+0x280/0x280 [ 26.303580][ T312] ? do_handle_mm_fault+0x2330/0x2330 [ 26.308793][ T312] ? __stack_depot_save+0x34/0x470 [ 26.313735][ T312] ? anon_vma_clone+0x9a/0x500 [ 26.318336][ T312] copy_page_range+0x28a8/0x2f90 [ 26.323110][ T312] ? __kasan_slab_alloc+0xb1/0xe0 [ 26.328057][ T312] ? slab_post_alloc_hook+0x53/0x2c0 [ 26.333266][ T312] ? kernel_clone+0x21e/0x9e0 [ 26.337781][ T312] ? do_syscall_64+0x3d/0xb0 [ 26.342204][ T312] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 26.348108][ T312] ? pfn_valid+0x1e0/0x1e0 [ 26.352358][ T312] ? rwsem_write_trylock+0x15b/0x290 [ 26.357477][ T312] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 26.363731][ T312] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 26.369291][ T312] ? __rb_insert_augmented+0x5de/0x610 [ 26.374580][ T312] copy_mm+0xc7e/0x13e0 [ 26.378573][ T312] ? copy_signal+0x610/0x610 [ 26.382994][ T312] ? __init_rwsem+0xd6/0x1c0 [ 26.387423][ T312] ? copy_signal+0x4e3/0x610 [ 26.391849][ T312] copy_process+0x12bc/0x3260 [ 26.396362][ T312] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 26.401309][ T312] ? __kasan_check_write+0x14/0x20 [ 26.406260][ T312] kernel_clone+0x21e/0x9e0 [ 26.410596][ T312] ? _raw_spin_unlock_irq+0x4e/0x70 [ 26.415628][ T312] ? create_io_thread+0x1e0/0x1e0 [ 26.420494][ T312] __x64_sys_clone+0x23f/0x290 [ 26.425089][ T312] ? __do_sys_vfork+0x130/0x130 [ 26.429780][ T312] ? __kasan_check_read+0x11/0x20 [ 26.434635][ T312] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 26.440451][ T312] do_syscall_64+0x3d/0xb0 [ 26.444704][ T312] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 26.450433][ T312] RIP: 0033:0x7f23ecb60009 [ 26.454686][ T312] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 26.474128][ T312] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [pid 312] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES) = -1 ENOMEM (Cannot allocate memory) [pid 312] close(3) = 0 [pid 312] close(4) = -1 EBADF (Bad file descriptor) [pid 312] close(5) = -1 EBADF (Bad file descriptor) [pid 312] close(6) = -1 EBADF (Bad file descriptor) [pid 312] close(7) = -1 EBADF (Bad file descriptor) [pid 312] close(8) = -1 EBADF (Bad file descriptor) [pid 312] close(9) = -1 EBADF (Bad file descriptor) [pid 312] close(10) = -1 EBADF (Bad file descriptor) [pid 312] close(11) = -1 EBADF (Bad file descriptor) [pid 312] close(12) = -1 EBADF (Bad file descriptor) [pid 312] close(13) = -1 EBADF (Bad file descriptor) [pid 312] close(14) = -1 EBADF (Bad file descriptor) [pid 312] close(15) = -1 EBADF (Bad file descriptor) [pid 312] close(16) = -1 EBADF (Bad file descriptor) [pid 312] close(17) = -1 EBADF (Bad file descriptor) [pid 312] close(18) = -1 EBADF (Bad file descriptor) [pid 312] close(19) = -1 EBADF (Bad file descriptor) [pid 312] close(20) = -1 EBADF (Bad file descriptor) [pid 312] close(21) = -1 EBADF (Bad file descriptor) [pid 312] close(22) = -1 EBADF (Bad file descriptor) [pid 312] close(23) = -1 EBADF (Bad file descriptor) [pid 312] close(24) = -1 EBADF (Bad file descriptor) [pid 312] close(25) = -1 EBADF (Bad file descriptor) [pid 312] close(26) = -1 EBADF (Bad file descriptor) [pid 312] close(27) = -1 EBADF (Bad file descriptor) [pid 312] close(28) = -1 EBADF (Bad file descriptor) [pid 312] close(29) = -1 EBADF (Bad file descriptor) [pid 312] exit_group(0) = ? [pid 312] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=14, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [pid 296] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 314 attached , child_tidptr=0x5555570c7650) = 15 [pid 314] set_robust_list(0x5555570c7660, 24) = 0 [pid 314] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 314] setpgid(0, 0) = 0 [pid 314] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 314] write(3, "1000", 4) = 4 [pid 314] close(3) = 0 [pid 314] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3 [pid 314] write(3, "54", 2) = 2 [ 26.482372][ T312] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [ 26.490183][ T312] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [ 26.497993][ T312] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [ 26.505810][ T312] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000064c9 [ 26.513617][ T312] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 26.521434][ T312] [ 26.539883][ T314] FAULT_INJECTION: forcing a failure. [ 26.539883][ T314] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 26.552969][ T314] CPU: 0 PID: 314 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 26.562970][ T314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 26.572862][ T314] Call Trace: [ 26.575989][ T314] [ 26.578761][ T314] dump_stack_lvl+0x151/0x1b7 [ 26.583369][ T314] ? io_uring_drop_tctx_refs+0x190/0x190 [ 26.588831][ T314] dump_stack+0x15/0x17 [ 26.592829][ T314] should_fail+0x3c6/0x510 [ 26.597081][ T314] should_fail_alloc_page+0x5a/0x80 [ 26.602110][ T314] prepare_alloc_pages+0x15c/0x700 [ 26.607054][ T314] ? __alloc_pages_bulk+0xe60/0xe60 [ 26.612087][ T314] __alloc_pages+0x138/0x5e0 [ 26.616515][ T314] ? prep_new_page+0x110/0x110 [ 26.621138][ T314] ? __alloc_pages+0x206/0x5e0 [ 26.625715][ T314] ? prep_new_page+0x110/0x110 [ 26.630315][ T314] ? __kasan_check_write+0x14/0x20 [ 26.635263][ T314] ? _raw_spin_lock+0xa4/0x1b0 [ 26.639860][ T314] pte_alloc_one+0x73/0x1b0 [ 26.644202][ T314] ? pfn_modify_allowed+0x2f0/0x2f0 [ 26.649237][ T314] ? __pmd_alloc+0x48d/0x550 [ 26.653661][ T314] __pte_alloc+0x86/0x350 [ 26.657827][ T314] ? __pud_alloc+0x260/0x260 [ 26.662253][ T314] ? __pud_alloc+0x213/0x260 [ 26.666689][ T314] ? free_pgtables+0x280/0x280 [ 26.671283][ T314] ? do_handle_mm_fault+0x2330/0x2330 [ 26.676485][ T314] ? __stack_depot_save+0x34/0x470 [ 26.681434][ T314] ? anon_vma_clone+0x9a/0x500 [ 26.686034][ T314] copy_page_range+0x28a8/0x2f90 [ 26.690806][ T314] ? __kasan_slab_alloc+0xb1/0xe0 [ 26.695669][ T314] ? slab_post_alloc_hook+0x53/0x2c0 [ 26.700788][ T314] ? kernel_clone+0x21e/0x9e0 [ 26.705300][ T314] ? do_syscall_64+0x3d/0xb0 [ 26.709726][ T314] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 26.715632][ T314] ? pfn_valid+0x1e0/0x1e0 [ 26.719883][ T314] ? rwsem_write_trylock+0x15b/0x290 [ 26.725002][ T314] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 26.731253][ T314] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 26.736807][ T314] ? __rb_insert_augmented+0x5de/0x610 [ 26.742102][ T314] copy_mm+0xc7e/0x13e0 [ 26.746096][ T314] ? copy_signal+0x610/0x610 [ 26.750519][ T314] ? __init_rwsem+0xd6/0x1c0 [ 26.754952][ T314] ? copy_signal+0x4e3/0x610 [ 26.760228][ T314] copy_process+0x12bc/0x3260 [ 26.764827][ T314] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 26.769769][ T314] ? __kasan_check_write+0x14/0x20 [ 26.774715][ T314] kernel_clone+0x21e/0x9e0 [ 26.779059][ T314] ? _raw_spin_unlock_irq+0x4e/0x70 [ 26.784089][ T314] ? create_io_thread+0x1e0/0x1e0 [ 26.788950][ T314] __x64_sys_clone+0x23f/0x290 [ 26.793551][ T314] ? __do_sys_vfork+0x130/0x130 [ 26.798237][ T314] ? __kasan_check_read+0x11/0x20 [ 26.803108][ T314] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 26.808915][ T314] do_syscall_64+0x3d/0xb0 [ 26.813166][ T314] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 26.818894][ T314] RIP: 0033:0x7f23ecb60009 [pid 314] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES) = -1 ENOMEM (Cannot allocate memory) [pid 314] close(3) = 0 [pid 314] close(4) = -1 EBADF (Bad file descriptor) [pid 314] close(5) = -1 EBADF (Bad file descriptor) [pid 314] close(6) = -1 EBADF (Bad file descriptor) [pid 314] close(7) = -1 EBADF (Bad file descriptor) [pid 314] close(8) = -1 EBADF (Bad file descriptor) [pid 314] close(9) = -1 EBADF (Bad file descriptor) [pid 314] close(10) = -1 EBADF (Bad file descriptor) [pid 314] close(11) = -1 EBADF (Bad file descriptor) [pid 314] close(12) = -1 EBADF (Bad file descriptor) [pid 314] close(13) = -1 EBADF (Bad file descriptor) [pid 314] close(14) = -1 EBADF (Bad file descriptor) [pid 314] close(15) = -1 EBADF (Bad file descriptor) [pid 314] close(16) = -1 EBADF (Bad file descriptor) [pid 314] close(17) = -1 EBADF (Bad file descriptor) [pid 314] close(18) = -1 EBADF (Bad file descriptor) [pid 314] close(19) = -1 EBADF (Bad file descriptor) [pid 314] close(20) = -1 EBADF (Bad file descriptor) [pid 314] close(21) = -1 EBADF (Bad file descriptor) [pid 314] close(22) = -1 EBADF (Bad file descriptor) [pid 314] close(23) = -1 EBADF (Bad file descriptor) [pid 314] close(24) = -1 EBADF (Bad file descriptor) [pid 314] close(25) = -1 EBADF (Bad file descriptor) [pid 314] close(26) = -1 EBADF (Bad file descriptor) [pid 314] close(27) = -1 EBADF (Bad file descriptor) [pid 314] close(28) = -1 EBADF (Bad file descriptor) [pid 314] close(29) = -1 EBADF (Bad file descriptor) [pid 314] exit_group(0) = ? [pid 314] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=15, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [pid 296] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570c7650) = 16 ./strace-static-x86_64: Process 315 attached [pid 315] set_robust_list(0x5555570c7660, 24) = 0 [pid 315] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 315] setpgid(0, 0) = 0 [pid 315] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [ 26.823151][ T314] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 26.842674][ T314] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 26.850928][ T314] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [ 26.858730][ T314] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [ 26.866557][ T314] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [ 26.874352][ T314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000006627 [ 26.882168][ T314] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [pid 315] write(3, "1000", 4) = 4 [pid 315] close(3) = 0 [pid 315] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3 [pid 315] write(3, "54", 2) = 2 [ 26.889977][ T314] [ 26.903018][ T315] FAULT_INJECTION: forcing a failure. [ 26.903018][ T315] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 26.916143][ T315] CPU: 1 PID: 315 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 26.926083][ T315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 26.936064][ T315] Call Trace: [ 26.939187][ T315] [ 26.941964][ T315] dump_stack_lvl+0x151/0x1b7 [ 26.946481][ T315] ? io_uring_drop_tctx_refs+0x190/0x190 [ 26.951946][ T315] dump_stack+0x15/0x17 [ 26.955937][ T315] should_fail+0x3c6/0x510 [ 26.960190][ T315] should_fail_alloc_page+0x5a/0x80 [ 26.965224][ T315] prepare_alloc_pages+0x15c/0x700 [ 26.970173][ T315] ? __alloc_pages_bulk+0xe60/0xe60 [ 26.975204][ T315] __alloc_pages+0x138/0x5e0 [ 26.979631][ T315] ? prep_new_page+0x110/0x110 [ 26.984234][ T315] ? __alloc_pages+0x206/0x5e0 [ 26.988834][ T315] ? stack_trace_save+0x1c0/0x1c0 [ 26.993695][ T315] ? __kasan_check_write+0x14/0x20 [ 26.998638][ T315] ? _raw_spin_lock+0xa4/0x1b0 [ 27.003237][ T315] __pmd_alloc+0xb1/0x550 [ 27.007406][ T315] ? __pud_alloc+0x260/0x260 [ 27.011830][ T315] ? __pud_alloc+0x213/0x260 [ 27.016258][ T315] ? do_handle_mm_fault+0x2330/0x2330 [ 27.021466][ T315] ? __stack_depot_save+0x34/0x470 [ 27.026412][ T315] ? anon_vma_clone+0x9a/0x500 [ 27.031017][ T315] copy_page_range+0x2b3d/0x2f90 [ 27.035786][ T315] ? __kasan_slab_alloc+0xb1/0xe0 [ 27.040645][ T315] ? slab_post_alloc_hook+0x53/0x2c0 [ 27.045767][ T315] ? copy_mm+0xa3a/0x13e0 [ 27.049932][ T315] ? copy_process+0x12bc/0x3260 [ 27.054619][ T315] ? kernel_clone+0x21e/0x9e0 [ 27.059141][ T315] ? do_syscall_64+0x3d/0xb0 [ 27.063568][ T315] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 27.069464][ T315] ? pfn_valid+0x1e0/0x1e0 [ 27.073712][ T315] ? rwsem_write_trylock+0x15b/0x290 [ 27.078836][ T315] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 27.085083][ T315] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 27.090640][ T315] ? __rb_insert_augmented+0x5de/0x610 [ 27.095932][ T315] copy_mm+0xc7e/0x13e0 [ 27.099926][ T315] ? copy_signal+0x610/0x610 [ 27.104349][ T315] ? __init_rwsem+0xd6/0x1c0 [ 27.108778][ T315] ? copy_signal+0x4e3/0x610 [ 27.113213][ T315] copy_process+0x12bc/0x3260 [ 27.117720][ T315] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 27.122664][ T315] ? __kasan_check_write+0x14/0x20 [ 27.127611][ T315] kernel_clone+0x21e/0x9e0 [ 27.131951][ T315] ? _raw_spin_unlock_irq+0x4e/0x70 [ 27.136983][ T315] ? create_io_thread+0x1e0/0x1e0 [ 27.141846][ T315] __x64_sys_clone+0x23f/0x290 [ 27.146446][ T315] ? __do_sys_vfork+0x130/0x130 [ 27.151133][ T315] ? __kasan_check_read+0x11/0x20 [ 27.155997][ T315] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 27.161805][ T315] do_syscall_64+0x3d/0xb0 [ 27.166060][ T315] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 27.171789][ T315] RIP: 0033:0x7f23ecb60009 [pid 315] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES) = -1 ENOMEM (Cannot allocate memory) [pid 315] close(3) = 0 [pid 315] close(4) = -1 EBADF (Bad file descriptor) [pid 315] close(5) = -1 EBADF (Bad file descriptor) [pid 315] close(6) = -1 EBADF (Bad file descriptor) [pid 315] close(7) = -1 EBADF (Bad file descriptor) [pid 315] close(8) = -1 EBADF (Bad file descriptor) [pid 315] close(9) = -1 EBADF (Bad file descriptor) [pid 315] close(10) = -1 EBADF (Bad file descriptor) [pid 315] close(11) = -1 EBADF (Bad file descriptor) [pid 315] close(12) = -1 EBADF (Bad file descriptor) [pid 315] close(13) = -1 EBADF (Bad file descriptor) [pid 315] close(14) = -1 EBADF (Bad file descriptor) [pid 315] close(15) = -1 EBADF (Bad file descriptor) [pid 315] close(16) = -1 EBADF (Bad file descriptor) [pid 315] close(17) = -1 EBADF (Bad file descriptor) [pid 315] close(18) = -1 EBADF (Bad file descriptor) [pid 315] close(19) = -1 EBADF (Bad file descriptor) [pid 315] close(20) = -1 EBADF (Bad file descriptor) [pid 315] close(21) = -1 EBADF (Bad file descriptor) [pid 315] close(22) = -1 EBADF (Bad file descriptor) [pid 315] close(23) = -1 EBADF (Bad file descriptor) [pid 315] close(24) = -1 EBADF (Bad file descriptor) [pid 315] close(25) = -1 EBADF (Bad file descriptor) [pid 315] close(26) = -1 EBADF (Bad file descriptor) [pid 315] close(27) = -1 EBADF (Bad file descriptor) [pid 315] close(28) = -1 EBADF (Bad file descriptor) [pid 315] close(29) = -1 EBADF (Bad file descriptor) [pid 315] exit_group(0) = ? [pid 315] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=16, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [pid 296] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570c7650) = 17 ./strace-static-x86_64: Process 316 attached [pid 316] set_robust_list(0x5555570c7660, 24) = 0 [pid 316] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 316] setpgid(0, 0) = 0 [ 27.176040][ T315] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 27.195482][ T315] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 27.203728][ T315] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [ 27.211537][ T315] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [ 27.219350][ T315] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [ 27.227167][ T315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000006799 [ 27.234971][ T315] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [pid 316] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 316] write(3, "1000", 4) = 4 [pid 316] close(3) = 0 [pid 316] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3 [pid 316] write(3, "54", 2) = 2 [ 27.242785][ T315] [ 27.254614][ T316] FAULT_INJECTION: forcing a failure. [ 27.254614][ T316] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 27.267663][ T316] CPU: 1 PID: 316 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 27.277697][ T316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 27.287585][ T316] Call Trace: [ 27.290715][ T316] [ 27.293488][ T316] dump_stack_lvl+0x151/0x1b7 [ 27.297994][ T316] ? io_uring_drop_tctx_refs+0x190/0x190 [ 27.303464][ T316] ? kmem_cache_alloc+0x134/0x200 [ 27.308323][ T316] dump_stack+0x15/0x17 [ 27.312322][ T316] should_fail+0x3c6/0x510 [ 27.316567][ T316] should_fail_alloc_page+0x5a/0x80 [ 27.321607][ T316] prepare_alloc_pages+0x15c/0x700 [ 27.326549][ T316] ? __alloc_pages_bulk+0xe60/0xe60 [ 27.331585][ T316] __alloc_pages+0x138/0x5e0 [ 27.336015][ T316] ? prep_new_page+0x110/0x110 [ 27.340610][ T316] ? __alloc_pages+0x206/0x5e0 [ 27.345211][ T316] ? stack_trace_save+0x1c0/0x1c0 [ 27.350080][ T316] ? __kasan_check_write+0x14/0x20 [ 27.355015][ T316] ? _raw_spin_lock+0xa4/0x1b0 [ 27.359616][ T316] __pmd_alloc+0xb1/0x550 [ 27.363783][ T316] ? __pud_alloc+0x260/0x260 [ 27.368208][ T316] ? __pud_alloc+0x213/0x260 [ 27.372636][ T316] ? do_handle_mm_fault+0x2330/0x2330 [ 27.377844][ T316] ? __stack_depot_save+0x34/0x470 [ 27.382792][ T316] ? anon_vma_clone+0x9a/0x500 [ 27.387392][ T316] copy_page_range+0x2b3d/0x2f90 [ 27.392163][ T316] ? __kasan_slab_alloc+0xb1/0xe0 [ 27.397024][ T316] ? slab_post_alloc_hook+0x53/0x2c0 [ 27.402145][ T316] ? copy_mm+0xa3a/0x13e0 [ 27.406310][ T316] ? copy_process+0x12bc/0x3260 [ 27.410998][ T316] ? kernel_clone+0x21e/0x9e0 [ 27.415514][ T316] ? do_syscall_64+0x3d/0xb0 [ 27.419939][ T316] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 27.425847][ T316] ? pfn_valid+0x1e0/0x1e0 [ 27.430093][ T316] ? rwsem_write_trylock+0x15b/0x290 [ 27.435212][ T316] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 27.441460][ T316] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 27.447018][ T316] ? __rb_insert_augmented+0x5de/0x610 [ 27.452312][ T316] copy_mm+0xc7e/0x13e0 [ 27.456306][ T316] ? copy_signal+0x610/0x610 [ 27.460727][ T316] ? __init_rwsem+0xd6/0x1c0 [ 27.465292][ T316] ? copy_signal+0x4e3/0x610 [ 27.469711][ T316] copy_process+0x12bc/0x3260 [ 27.474219][ T316] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 27.479168][ T316] ? __kasan_check_write+0x14/0x20 [ 27.484148][ T316] kernel_clone+0x21e/0x9e0 [ 27.488454][ T316] ? _raw_spin_unlock_irq+0x4e/0x70 [ 27.493485][ T316] ? create_io_thread+0x1e0/0x1e0 [ 27.498346][ T316] __x64_sys_clone+0x23f/0x290 [ 27.502945][ T316] ? __do_sys_vfork+0x130/0x130 [ 27.507631][ T316] ? __kasan_check_read+0x11/0x20 [ 27.512493][ T316] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 27.518307][ T316] do_syscall_64+0x3d/0xb0 [ 27.522907][ T316] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 27.528639][ T316] RIP: 0033:0x7f23ecb60009 [ 27.532887][ T316] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 27.552333][ T316] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 27.560574][ T316] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [ 27.568387][ T316] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [ 27.576196][ T316] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [ 27.584006][ T316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000006903 [pid 316] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES) = -1 ENOMEM (Cannot allocate memory) [pid 316] close(3) = 0 [pid 316] close(4) = -1 EBADF (Bad file descriptor) [pid 316] close(5) = -1 EBADF (Bad file descriptor) [pid 316] close(6) = -1 EBADF (Bad file descriptor) [pid 316] close(7) = -1 EBADF (Bad file descriptor) [pid 316] close(8) = -1 EBADF (Bad file descriptor) [pid 316] close(9) = -1 EBADF (Bad file descriptor) [pid 316] close(10) = -1 EBADF (Bad file descriptor) [pid 316] close(11) = -1 EBADF (Bad file descriptor) [pid 316] close(12) = -1 EBADF (Bad file descriptor) [pid 316] close(13) = -1 EBADF (Bad file descriptor) [pid 316] close(14) = -1 EBADF (Bad file descriptor) [pid 316] close(15) = -1 EBADF (Bad file descriptor) [pid 316] close(16) = -1 EBADF (Bad file descriptor) [pid 316] close(17) = -1 EBADF (Bad file descriptor) [pid 316] close(18) = -1 EBADF (Bad file descriptor) [pid 316] close(19) = -1 EBADF (Bad file descriptor) [pid 316] close(20) = -1 EBADF (Bad file descriptor) [pid 316] close(21) = -1 EBADF (Bad file descriptor) [pid 316] close(22) = -1 EBADF (Bad file descriptor) [pid 316] close(23) = -1 EBADF (Bad file descriptor) [pid 316] close(24) = -1 EBADF (Bad file descriptor) [pid 316] close(25) = -1 EBADF (Bad file descriptor) [pid 316] close(26) = -1 EBADF (Bad file descriptor) [pid 316] close(27) = -1 EBADF (Bad file descriptor) [pid 316] close(28) = -1 EBADF (Bad file descriptor) [pid 316] close(29) = -1 EBADF (Bad file descriptor) [pid 316] exit_group(0) = ? [pid 316] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=17, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [pid 296] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570c7650) = 18 ./strace-static-x86_64: Process 318 attached [pid 318] set_robust_list(0x5555570c7660, 24) = 0 [pid 318] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 318] setpgid(0, 0) = 0 [pid 318] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 318] write(3, "1000", 4) = 4 [pid 318] close(3) = 0 [pid 318] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3 [pid 318] write(3, "54", 2) = 2 [ 27.591819][ T316] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 27.599634][ T316] [ 27.610739][ T318] FAULT_INJECTION: forcing a failure. [ 27.610739][ T318] name failslab, interval 1, probability 0, space 0, times 0 [ 27.623852][ T318] CPU: 0 PID: 318 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 27.633905][ T318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 27.643927][ T318] Call Trace: [ 27.647044][ T318] [ 27.649826][ T318] dump_stack_lvl+0x151/0x1b7 [ 27.654336][ T318] ? io_uring_drop_tctx_refs+0x190/0x190 [ 27.659803][ T318] dump_stack+0x15/0x17 [ 27.663794][ T318] should_fail+0x3c6/0x510 [ 27.668053][ T318] __should_failslab+0xa4/0xe0 [ 27.672649][ T318] ? anon_vma_clone+0x9a/0x500 [ 27.677248][ T318] should_failslab+0x9/0x20 [ 27.681587][ T318] slab_pre_alloc_hook+0x37/0xd0 [ 27.686386][ T318] ? anon_vma_clone+0x9a/0x500 [ 27.690959][ T318] kmem_cache_alloc+0x44/0x200 [ 27.695562][ T318] anon_vma_clone+0x9a/0x500 [ 27.699986][ T318] anon_vma_fork+0x91/0x4e0 [ 27.704326][ T318] ? anon_vma_name+0x43/0x70 [ 27.708752][ T318] ? vm_area_dup+0x17a/0x230 [ 27.713181][ T318] copy_mm+0xa3a/0x13e0 [ 27.717174][ T318] ? copy_signal+0x610/0x610 [ 27.721597][ T318] ? __init_rwsem+0xd6/0x1c0 [ 27.726025][ T318] ? copy_signal+0x4e3/0x610 [ 27.730450][ T318] copy_process+0x12bc/0x3260 [ 27.734976][ T318] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 27.739916][ T318] ? __kasan_check_write+0x14/0x20 [ 27.744858][ T318] kernel_clone+0x21e/0x9e0 [ 27.749208][ T318] ? _raw_spin_unlock_irq+0x4e/0x70 [ 27.754239][ T318] ? create_io_thread+0x1e0/0x1e0 [ 27.759115][ T318] __x64_sys_clone+0x23f/0x290 [ 27.763691][ T318] ? __do_sys_vfork+0x130/0x130 [ 27.768384][ T318] ? __kasan_check_read+0x11/0x20 [ 27.773240][ T318] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 27.779061][ T318] do_syscall_64+0x3d/0xb0 [ 27.783308][ T318] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 27.789036][ T318] RIP: 0033:0x7f23ecb60009 [ 27.793289][ T318] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 27.812730][ T318] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 27.820973][ T318] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [ 27.828793][ T318] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [ 27.836596][ T318] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [pid 318] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES./strace-static-x86_64: Process 319 attached ) = 19 [pid 318] close(3) = 0 [pid 318] close(4) = -1 EBADF (Bad file descriptor) [pid 318] close(5) = -1 EBADF (Bad file descriptor) [pid 318] close(6) = -1 EBADF (Bad file descriptor) [pid 318] close(7) = -1 EBADF (Bad file descriptor) [pid 318] close(8) = -1 EBADF (Bad file descriptor) [pid 318] close(9) = -1 EBADF (Bad file descriptor) [pid 318] close(10) = -1 EBADF (Bad file descriptor) [pid 318] close(11) = -1 EBADF (Bad file descriptor) [pid 318] close(12) = -1 EBADF (Bad file descriptor) [pid 318] close(13) = -1 EBADF (Bad file descriptor) [pid 318] close(14) = -1 EBADF (Bad file descriptor) [pid 318] close(15) = -1 EBADF (Bad file descriptor) [pid 318] close(16) = -1 EBADF (Bad file descriptor) [pid 318] close(17) = -1 EBADF (Bad file descriptor) [pid 318] close(18) = -1 EBADF (Bad file descriptor) [pid 318] close(19) = -1 EBADF (Bad file descriptor) [pid 318] close(20) = -1 EBADF (Bad file descriptor) [pid 318] close(21) = -1 EBADF (Bad file descriptor) [pid 318] close(22) = -1 EBADF (Bad file descriptor) [pid 318] close(23) = -1 EBADF (Bad file descriptor) [pid 318] close(24) = -1 EBADF (Bad file descriptor) [pid 318] close(25) = -1 EBADF (Bad file descriptor) [pid 318] close(26) = -1 EBADF (Bad file descriptor) [pid 318] close(27) = -1 EBADF (Bad file descriptor) [pid 318] close(28) = -1 EBADF (Bad file descriptor) [pid 318] close(29) = -1 EBADF (Bad file descriptor) [pid 318] exit_group(0) = ? [pid 318] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=18, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [pid 296] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570c7650) = 20 ./strace-static-x86_64: Process 320 attached [pid 320] set_robust_list(0x5555570c7660, 24) = 0 [pid 320] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 320] setpgid(0, 0) = 0 [pid 320] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 320] write(3, "1000", 4) = 4 [pid 320] close(3) = 0 [pid 320] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3 [pid 320] write(3, "54", 2) = 2 [ 27.844407][ T318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000006a63 [ 27.852219][ T318] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 27.860034][ T318] [ 27.871349][ T320] FAULT_INJECTION: forcing a failure. [ 27.871349][ T320] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 27.884526][ T320] CPU: 0 PID: 320 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 27.894555][ T320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 27.904448][ T320] Call Trace: [ 27.907573][ T320] [ 27.910354][ T320] dump_stack_lvl+0x151/0x1b7 [ 27.914862][ T320] ? io_uring_drop_tctx_refs+0x190/0x190 [ 27.920331][ T320] dump_stack+0x15/0x17 [ 27.924323][ T320] should_fail+0x3c6/0x510 [ 27.928575][ T320] should_fail_alloc_page+0x5a/0x80 [ 27.933613][ T320] prepare_alloc_pages+0x15c/0x700 [ 27.938567][ T320] ? __alloc_pages_bulk+0xe60/0xe60 [ 27.943594][ T320] __alloc_pages+0x138/0x5e0 [ 27.948020][ T320] ? prep_new_page+0x110/0x110 [ 27.952618][ T320] ? __alloc_pages+0x206/0x5e0 [ 27.957216][ T320] ? stack_trace_save+0x1c0/0x1c0 [ 27.962077][ T320] ? __kasan_check_write+0x14/0x20 [ 27.967024][ T320] ? _raw_spin_lock+0xa4/0x1b0 [ 27.971625][ T320] __pmd_alloc+0xb1/0x550 [ 27.975790][ T320] ? __pud_alloc+0x260/0x260 [ 27.980218][ T320] ? __pud_alloc+0x213/0x260 [ 27.984644][ T320] ? do_handle_mm_fault+0x2330/0x2330 [ 27.989852][ T320] ? __stack_depot_save+0x34/0x470 [pid 320] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES [pid 319] exit(0) = ? [pid 319] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=19, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 296] restart_syscall(<... resuming interrupted clone ...>) = 0 [ 27.994797][ T320] ? anon_vma_clone+0x9a/0x500 [ 27.999399][ T320] copy_page_range+0x2b3d/0x2f90 [ 28.004172][ T320] ? __kasan_slab_alloc+0xb1/0xe0 [ 28.009048][ T320] ? slab_post_alloc_hook+0x53/0x2c0 [ 28.014154][ T320] ? copy_mm+0xa3a/0x13e0 [ 28.018325][ T320] ? copy_process+0x12bc/0x3260 [ 28.023354][ T320] ? kernel_clone+0x21e/0x9e0 [ 28.027870][ T320] ? do_syscall_64+0x3d/0xb0 [ 28.032294][ T320] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 28.038197][ T320] ? pfn_valid+0x1e0/0x1e0 [ 28.042448][ T320] ? rwsem_write_trylock+0x15b/0x290 [ 28.047576][ T320] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 28.053816][ T320] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 28.059378][ T320] ? __rb_insert_augmented+0x5de/0x610 [ 28.064668][ T320] copy_mm+0xc7e/0x13e0 [ 28.068662][ T320] ? copy_signal+0x610/0x610 [ 28.073085][ T320] ? __init_rwsem+0xd6/0x1c0 [ 28.077511][ T320] ? copy_signal+0x4e3/0x610 [ 28.081940][ T320] copy_process+0x12bc/0x3260 [ 28.086458][ T320] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 28.091399][ T320] ? __kasan_check_write+0x14/0x20 [ 28.096345][ T320] kernel_clone+0x21e/0x9e0 [ 28.100687][ T320] ? _raw_spin_unlock_irq+0x4e/0x70 [ 28.105718][ T320] ? create_io_thread+0x1e0/0x1e0 [ 28.110579][ T320] __x64_sys_clone+0x23f/0x290 [ 28.115180][ T320] ? __do_sys_vfork+0x130/0x130 [ 28.119866][ T320] ? __kasan_check_read+0x11/0x20 [ 28.124737][ T320] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 28.130546][ T320] do_syscall_64+0x3d/0xb0 [ 28.134795][ T320] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 28.140520][ T320] RIP: 0033:0x7f23ecb60009 [ 28.144780][ T320] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 28.164217][ T320] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 28.172464][ T320] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [ 28.180274][ T320] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [ 28.188084][ T320] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [pid 320] <... clone resumed>) = -1 ENOMEM (Cannot allocate memory) [pid 320] close(3) = 0 [pid 320] close(4) = -1 EBADF (Bad file descriptor) [pid 320] close(5) = -1 EBADF (Bad file descriptor) [pid 320] close(6) = -1 EBADF (Bad file descriptor) [pid 320] close(7) = -1 EBADF (Bad file descriptor) [pid 320] close(8) = -1 EBADF (Bad file descriptor) [pid 320] close(9) = -1 EBADF (Bad file descriptor) [pid 320] close(10) = -1 EBADF (Bad file descriptor) [pid 320] close(11) = -1 EBADF (Bad file descriptor) [pid 320] close(12) = -1 EBADF (Bad file descriptor) [pid 320] close(13) = -1 EBADF (Bad file descriptor) [pid 320] close(14) = -1 EBADF (Bad file descriptor) [pid 320] close(15) = -1 EBADF (Bad file descriptor) [pid 320] close(16) = -1 EBADF (Bad file descriptor) [pid 320] close(17) = -1 EBADF (Bad file descriptor) [pid 320] close(18) = -1 EBADF (Bad file descriptor) [pid 320] close(19) = -1 EBADF (Bad file descriptor) [pid 320] close(20) = -1 EBADF (Bad file descriptor) [pid 320] close(21) = -1 EBADF (Bad file descriptor) [pid 320] close(22) = -1 EBADF (Bad file descriptor) [pid 320] close(23) = -1 EBADF (Bad file descriptor) [pid 320] close(24) = -1 EBADF (Bad file descriptor) [pid 320] close(25) = -1 EBADF (Bad file descriptor) [pid 320] close(26) = -1 EBADF (Bad file descriptor) [pid 320] close(27) = -1 EBADF (Bad file descriptor) [pid 320] close(28) = -1 EBADF (Bad file descriptor) [pid 320] close(29) = -1 EBADF (Bad file descriptor) [pid 320] exit_group(0) = ? [pid 320] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=20, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [pid 296] restart_syscall(<... resuming interrupted restart_syscall ...>) = 0 [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 321 attached [pid 321] set_robust_list(0x5555570c7660, 24 [pid 296] <... clone resumed>, child_tidptr=0x5555570c7650) = 21 [pid 321] <... set_robust_list resumed>) = 0 [pid 321] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 321] setpgid(0, 0) = 0 [pid 321] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 321] write(3, "1000", 4) = 4 [pid 321] close(3) = 0 [pid 321] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3 [pid 321] write(3, "54", 2) = 2 [ 28.195894][ T320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000006bc9 [ 28.203714][ T320] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 28.211522][ T320] [ 28.232419][ T321] FAULT_INJECTION: forcing a failure. [ 28.232419][ T321] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 28.245598][ T321] CPU: 0 PID: 321 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 28.255648][ T321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 28.265549][ T321] Call Trace: [ 28.268667][ T321] [ 28.271449][ T321] dump_stack_lvl+0x151/0x1b7 [ 28.275968][ T321] ? io_uring_drop_tctx_refs+0x190/0x190 [ 28.281428][ T321] dump_stack+0x15/0x17 [ 28.285420][ T321] should_fail+0x3c6/0x510 [ 28.289670][ T321] should_fail_alloc_page+0x5a/0x80 [ 28.294702][ T321] prepare_alloc_pages+0x15c/0x700 [ 28.299651][ T321] ? __alloc_pages_bulk+0xe60/0xe60 [ 28.304687][ T321] __alloc_pages+0x138/0x5e0 [ 28.309112][ T321] ? prep_new_page+0x110/0x110 [ 28.313712][ T321] ? __alloc_pages+0x206/0x5e0 [ 28.318311][ T321] ? stack_trace_save+0x1c0/0x1c0 [ 28.323173][ T321] ? __kasan_check_write+0x14/0x20 [ 28.328118][ T321] ? _raw_spin_lock+0xa4/0x1b0 [ 28.332717][ T321] __pmd_alloc+0xb1/0x550 [ 28.336894][ T321] ? __pud_alloc+0x260/0x260 [ 28.341310][ T321] ? __pud_alloc+0x213/0x260 [ 28.345739][ T321] ? do_handle_mm_fault+0x2330/0x2330 [ 28.351054][ T321] ? __stack_depot_save+0x34/0x470 [ 28.355994][ T321] ? anon_vma_clone+0x9a/0x500 [ 28.360600][ T321] copy_page_range+0x2b3d/0x2f90 [ 28.365367][ T321] ? __kasan_slab_alloc+0xb1/0xe0 [ 28.370224][ T321] ? slab_post_alloc_hook+0x53/0x2c0 [ 28.375347][ T321] ? copy_mm+0xa3a/0x13e0 [ 28.379519][ T321] ? copy_process+0x12bc/0x3260 [ 28.384198][ T321] ? kernel_clone+0x21e/0x9e0 [ 28.388713][ T321] ? do_syscall_64+0x3d/0xb0 [ 28.393139][ T321] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 28.399076][ T321] ? pfn_valid+0x1e0/0x1e0 [ 28.403294][ T321] ? rwsem_write_trylock+0x15b/0x290 [ 28.408415][ T321] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 28.414664][ T321] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 28.420218][ T321] ? __rb_insert_augmented+0x5de/0x610 [ 28.425530][ T321] copy_mm+0xc7e/0x13e0 [ 28.429506][ T321] ? copy_signal+0x610/0x610 [ 28.433930][ T321] ? __init_rwsem+0xd6/0x1c0 [ 28.438357][ T321] ? copy_signal+0x4e3/0x610 [ 28.442784][ T321] copy_process+0x12bc/0x3260 [ 28.447299][ T321] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 28.452248][ T321] ? __kasan_check_write+0x14/0x20 [ 28.457194][ T321] kernel_clone+0x21e/0x9e0 [ 28.461531][ T321] ? _raw_spin_unlock_irq+0x4e/0x70 [ 28.466567][ T321] ? create_io_thread+0x1e0/0x1e0 [ 28.471427][ T321] __x64_sys_clone+0x23f/0x290 [ 28.476025][ T321] ? __do_sys_vfork+0x130/0x130 [ 28.480713][ T321] ? __kasan_check_read+0x11/0x20 [ 28.485573][ T321] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 28.491386][ T321] do_syscall_64+0x3d/0xb0 [ 28.495640][ T321] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 28.501370][ T321] RIP: 0033:0x7f23ecb60009 [ 28.505624][ T321] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 28.525064][ T321] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 28.533307][ T321] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [ 28.541119][ T321] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [pid 321] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES) = -1 ENOMEM (Cannot allocate memory) [pid 321] close(3) = 0 [pid 321] close(4) = -1 EBADF (Bad file descriptor) [pid 321] close(5) = -1 EBADF (Bad file descriptor) [pid 321] close(6) = -1 EBADF (Bad file descriptor) [pid 321] close(7) = -1 EBADF (Bad file descriptor) [pid 321] close(8) = -1 EBADF (Bad file descriptor) [pid 321] close(9) = -1 EBADF (Bad file descriptor) [pid 321] close(10) = -1 EBADF (Bad file descriptor) [pid 321] close(11) = -1 EBADF (Bad file descriptor) [pid 321] close(12) = -1 EBADF (Bad file descriptor) [pid 321] close(13) = -1 EBADF (Bad file descriptor) [pid 321] close(14) = -1 EBADF (Bad file descriptor) [pid 321] close(15) = -1 EBADF (Bad file descriptor) [pid 321] close(16) = -1 EBADF (Bad file descriptor) [pid 321] close(17) = -1 EBADF (Bad file descriptor) [pid 321] close(18) = -1 EBADF (Bad file descriptor) [pid 321] close(19) = -1 EBADF (Bad file descriptor) [pid 321] close(20) = -1 EBADF (Bad file descriptor) [pid 321] close(21) = -1 EBADF (Bad file descriptor) [pid 321] close(22) = -1 EBADF (Bad file descriptor) [pid 321] close(23) = -1 EBADF (Bad file descriptor) [pid 321] close(24) = -1 EBADF (Bad file descriptor) [pid 321] close(25) = -1 EBADF (Bad file descriptor) [pid 321] close(26) = -1 EBADF (Bad file descriptor) [pid 321] close(27) = -1 EBADF (Bad file descriptor) [pid 321] close(28) = -1 EBADF (Bad file descriptor) [pid 321] close(29) = -1 EBADF (Bad file descriptor) [pid 321] exit_group(0) = ? [pid 321] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=21, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [pid 296] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 323 attached , child_tidptr=0x5555570c7650) = 22 [pid 323] set_robust_list(0x5555570c7660, 24) = 0 [pid 323] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 323] setpgid(0, 0) = 0 [pid 323] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 323] write(3, "1000", 4) = 4 [pid 323] close(3) = 0 [pid 323] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3 [pid 323] write(3, "54", 2) = 2 [ 28.548931][ T321] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [ 28.556740][ T321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000006ccd [ 28.564568][ T321] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 28.572370][ T321] [ 28.584588][ T323] FAULT_INJECTION: forcing a failure. [ 28.584588][ T323] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 28.597696][ T323] CPU: 0 PID: 323 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 28.607669][ T323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 28.617561][ T323] Call Trace: [ 28.620685][ T323] [ 28.623811][ T323] dump_stack_lvl+0x151/0x1b7 [ 28.628327][ T323] ? io_uring_drop_tctx_refs+0x190/0x190 [ 28.633791][ T323] dump_stack+0x15/0x17 [ 28.637784][ T323] should_fail+0x3c6/0x510 [ 28.642038][ T323] should_fail_alloc_page+0x5a/0x80 [ 28.647068][ T323] prepare_alloc_pages+0x15c/0x700 [ 28.652018][ T323] ? __alloc_pages_bulk+0xe60/0xe60 [ 28.657052][ T323] __alloc_pages+0x138/0x5e0 [ 28.661479][ T323] ? prep_new_page+0x110/0x110 [ 28.666078][ T323] ? __alloc_pages+0x206/0x5e0 [ 28.670679][ T323] ? prep_new_page+0x110/0x110 [ 28.675284][ T323] ? __kasan_check_write+0x14/0x20 [ 28.680222][ T323] ? _raw_spin_lock+0xa4/0x1b0 [ 28.684823][ T323] pte_alloc_one+0x73/0x1b0 [ 28.689165][ T323] ? pfn_modify_allowed+0x2f0/0x2f0 [ 28.694199][ T323] ? __pmd_alloc+0x48d/0x550 [ 28.698622][ T323] __pte_alloc+0x86/0x350 [ 28.702789][ T323] ? __pud_alloc+0x260/0x260 [ 28.707216][ T323] ? __pud_alloc+0x213/0x260 [ 28.711645][ T323] ? free_pgtables+0x280/0x280 [ 28.716243][ T323] ? do_handle_mm_fault+0x2330/0x2330 [ 28.721451][ T323] ? __stack_depot_save+0x34/0x470 [ 28.726398][ T323] ? anon_vma_clone+0x9a/0x500 [ 28.731034][ T323] copy_page_range+0x28a8/0x2f90 [ 28.735771][ T323] ? __kasan_slab_alloc+0xb1/0xe0 [ 28.740629][ T323] ? slab_post_alloc_hook+0x53/0x2c0 [ 28.745752][ T323] ? kernel_clone+0x21e/0x9e0 [ 28.750264][ T323] ? do_syscall_64+0x3d/0xb0 [ 28.754691][ T323] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 28.760600][ T323] ? pfn_valid+0x1e0/0x1e0 [ 28.764850][ T323] ? rwsem_write_trylock+0x15b/0x290 [ 28.769966][ T323] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 28.776216][ T323] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 28.781769][ T323] ? __rb_insert_augmented+0x5de/0x610 [ 28.787065][ T323] copy_mm+0xc7e/0x13e0 [ 28.791059][ T323] ? copy_signal+0x610/0x610 [ 28.795484][ T323] ? __init_rwsem+0xd6/0x1c0 [ 28.799913][ T323] ? copy_signal+0x4e3/0x610 [ 28.804337][ T323] copy_process+0x12bc/0x3260 [ 28.808858][ T323] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 28.813798][ T323] ? __kasan_check_write+0x14/0x20 [ 28.818744][ T323] kernel_clone+0x21e/0x9e0 [ 28.823084][ T323] ? _raw_spin_unlock_irq+0x4e/0x70 [ 28.828116][ T323] ? create_io_thread+0x1e0/0x1e0 [ 28.832979][ T323] __x64_sys_clone+0x23f/0x290 [ 28.837578][ T323] ? __do_sys_vfork+0x130/0x130 [ 28.842264][ T323] ? __kasan_check_read+0x11/0x20 [ 28.847129][ T323] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 28.852944][ T323] do_syscall_64+0x3d/0xb0 [ 28.857192][ T323] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 28.862920][ T323] RIP: 0033:0x7f23ecb60009 [ 28.867172][ T323] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 28.886614][ T323] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [pid 323] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES) = -1 ENOMEM (Cannot allocate memory) [pid 323] close(3) = 0 [pid 323] close(4) = -1 EBADF (Bad file descriptor) [pid 323] close(5) = -1 EBADF (Bad file descriptor) [pid 323] close(6) = -1 EBADF (Bad file descriptor) [pid 323] close(7) = -1 EBADF (Bad file descriptor) [pid 323] close(8) = -1 EBADF (Bad file descriptor) [pid 323] close(9) = -1 EBADF (Bad file descriptor) [pid 323] close(10) = -1 EBADF (Bad file descriptor) [pid 323] close(11) = -1 EBADF (Bad file descriptor) [pid 323] close(12) = -1 EBADF (Bad file descriptor) [pid 323] close(13) = -1 EBADF (Bad file descriptor) [pid 323] close(14) = -1 EBADF (Bad file descriptor) [pid 323] close(15) = -1 EBADF (Bad file descriptor) [pid 323] close(16) = -1 EBADF (Bad file descriptor) [ 28.894858][ T323] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [ 28.902671][ T323] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [ 28.910482][ T323] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [ 28.918292][ T323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000006e35 [ 28.926115][ T323] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 28.933932][ T323] [pid 323] close(17) = -1 EBADF (Bad file descriptor) [pid 323] close(18) = -1 EBADF (Bad file descriptor) [pid 323] close(19) = -1 EBADF (Bad file descriptor) [pid 323] close(20) = -1 EBADF (Bad file descriptor) [pid 323] close(21) = -1 EBADF (Bad file descriptor) [pid 323] close(22) = -1 EBADF (Bad file descriptor) [pid 323] close(23) = -1 EBADF (Bad file descriptor) [pid 323] close(24) = -1 EBADF (Bad file descriptor) [pid 323] close(25) = -1 EBADF (Bad file descriptor) [pid 323] close(26) = -1 EBADF (Bad file descriptor) [pid 323] close(27) = -1 EBADF (Bad file descriptor) [pid 323] close(28) = -1 EBADF (Bad file descriptor) [pid 323] close(29) = -1 EBADF (Bad file descriptor) [pid 323] exit_group(0) = ? [pid 323] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=22, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570c7650) = 23 ./strace-static-x86_64: Process 324 attached [pid 324] set_robust_list(0x5555570c7660, 24) = 0 [pid 324] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 324] setpgid(0, 0) = 0 [pid 324] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 324] write(3, "1000", 4) = 4 [pid 324] close(3) = 0 [pid 324] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3 [pid 324] write(3, "54", 2) = 2 [ 28.937831][ T30] audit: type=1400 audit(1700324839.590:73): avc: denied { remove_name } for pid=82 comm="syslogd" name="messages" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 28.960233][ T30] audit: type=1400 audit(1700324839.590:74): avc: denied { rename } for pid=82 comm="syslogd" name="messages" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 28.964927][ T324] FAULT_INJECTION: forcing a failure. [ 28.964927][ T324] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 28.994958][ T324] CPU: 1 PID: 324 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 29.005001][ T324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 29.014910][ T324] Call Trace: [ 29.018019][ T324] [ 29.020794][ T324] dump_stack_lvl+0x151/0x1b7 [ 29.025310][ T324] ? io_uring_drop_tctx_refs+0x190/0x190 [ 29.030776][ T324] dump_stack+0x15/0x17 [ 29.034853][ T324] should_fail+0x3c6/0x510 [ 29.039108][ T324] should_fail_alloc_page+0x5a/0x80 [ 29.044141][ T324] prepare_alloc_pages+0x15c/0x700 [ 29.049090][ T324] ? __alloc_pages_bulk+0xe60/0xe60 [ 29.054124][ T324] __alloc_pages+0x138/0x5e0 [ 29.058549][ T324] ? prep_new_page+0x110/0x110 [ 29.063148][ T324] ? __alloc_pages+0x206/0x5e0 [ 29.067749][ T324] ? stack_trace_save+0x1c0/0x1c0 [ 29.072609][ T324] ? __kasan_check_write+0x14/0x20 [ 29.077560][ T324] ? _raw_spin_lock+0xa4/0x1b0 [ 29.082159][ T324] __pmd_alloc+0xb1/0x550 [ 29.086321][ T324] ? __pud_alloc+0x260/0x260 [ 29.090748][ T324] ? __pud_alloc+0x213/0x260 [ 29.095176][ T324] ? do_handle_mm_fault+0x2330/0x2330 [ 29.100384][ T324] ? __stack_depot_save+0x34/0x470 [ 29.105330][ T324] copy_page_range+0x2b3d/0x2f90 [ 29.110102][ T324] ? __kasan_slab_alloc+0xb1/0xe0 [ 29.114964][ T324] ? slab_post_alloc_hook+0x53/0x2c0 [ 29.120092][ T324] ? copy_mm+0xa3a/0x13e0 [ 29.124251][ T324] ? copy_process+0x12bc/0x3260 [ 29.128936][ T324] ? kernel_clone+0x21e/0x9e0 [ 29.133450][ T324] ? do_syscall_64+0x3d/0xb0 [ 29.137879][ T324] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 29.143783][ T324] ? pfn_valid+0x1e0/0x1e0 [ 29.148030][ T324] ? rwsem_write_trylock+0x15b/0x290 [ 29.153154][ T324] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 29.159399][ T324] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 29.164957][ T324] ? __rb_insert_augmented+0x5de/0x610 [ 29.170264][ T324] copy_mm+0xc7e/0x13e0 [ 29.174242][ T324] ? copy_signal+0x610/0x610 [ 29.178669][ T324] ? __init_rwsem+0xd6/0x1c0 [ 29.183095][ T324] ? copy_signal+0x4e3/0x610 [ 29.187521][ T324] copy_process+0x12bc/0x3260 [ 29.192043][ T324] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 29.196981][ T324] ? __kasan_check_write+0x14/0x20 [ 29.201929][ T324] kernel_clone+0x21e/0x9e0 [ 29.206267][ T324] ? _raw_spin_unlock_irq+0x4e/0x70 [ 29.211303][ T324] ? create_io_thread+0x1e0/0x1e0 [ 29.216162][ T324] __x64_sys_clone+0x23f/0x290 [ 29.220763][ T324] ? __do_sys_vfork+0x130/0x130 [ 29.225450][ T324] ? __kasan_check_read+0x11/0x20 [ 29.230308][ T324] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 29.236133][ T324] do_syscall_64+0x3d/0xb0 [ 29.240381][ T324] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 29.246106][ T324] RIP: 0033:0x7f23ecb60009 [ 29.250359][ T324] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 29.269802][ T324] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 29.278049][ T324] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [ 29.285856][ T324] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [ 29.293666][ T324] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [pid 324] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES) = -1 ENOMEM (Cannot allocate memory) [pid 324] close(3) = 0 [pid 324] close(4) = -1 EBADF (Bad file descriptor) [pid 324] close(5) = -1 EBADF (Bad file descriptor) [pid 324] close(6) = -1 EBADF (Bad file descriptor) [pid 324] close(7) = -1 EBADF (Bad file descriptor) [pid 324] close(8) = -1 EBADF (Bad file descriptor) [pid 324] close(9) = -1 EBADF (Bad file descriptor) [pid 324] close(10) = -1 EBADF (Bad file descriptor) [pid 324] close(11) = -1 EBADF (Bad file descriptor) [pid 324] close(12) = -1 EBADF (Bad file descriptor) [pid 324] close(13) = -1 EBADF (Bad file descriptor) [pid 324] close(14) = -1 EBADF (Bad file descriptor) [pid 324] close(15) = -1 EBADF (Bad file descriptor) [pid 324] close(16) = -1 EBADF (Bad file descriptor) [pid 324] close(17) = -1 EBADF (Bad file descriptor) [pid 324] close(18) = -1 EBADF (Bad file descriptor) [pid 324] close(19) = -1 EBADF (Bad file descriptor) [pid 324] close(20) = -1 EBADF (Bad file descriptor) [pid 324] close(21) = -1 EBADF (Bad file descriptor) [pid 324] close(22) = -1 EBADF (Bad file descriptor) [pid 324] close(23) = -1 EBADF (Bad file descriptor) [pid 324] close(24) = -1 EBADF (Bad file descriptor) [pid 324] close(25) = -1 EBADF (Bad file descriptor) [pid 324] close(26) = -1 EBADF (Bad file descriptor) [pid 324] close(27) = -1 EBADF (Bad file descriptor) [pid 324] close(28) = -1 EBADF (Bad file descriptor) [pid 324] close(29) = -1 EBADF (Bad file descriptor) [pid 324] exit_group(0) = ? [pid 324] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=23, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570c7650) = 24 ./strace-static-x86_64: Process 325 attached [pid 325] set_robust_list(0x5555570c7660, 24) = 0 [pid 325] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 325] setpgid(0, 0) = 0 [pid 325] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 325] write(3, "1000", 4) = 4 [pid 325] close(3) = 0 [pid 325] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3 [pid 325] write(3, "54", 2) = 2 [ 29.301477][ T324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000006f95 [ 29.309375][ T324] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 29.317190][ T324] [ 29.328395][ T325] FAULT_INJECTION: forcing a failure. [ 29.328395][ T325] name failslab, interval 1, probability 0, space 0, times 0 [ 29.340884][ T325] CPU: 1 PID: 325 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 29.350869][ T325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 29.360768][ T325] Call Trace: [ 29.363892][ T325] [ 29.366664][ T325] dump_stack_lvl+0x151/0x1b7 [ 29.371180][ T325] ? io_uring_drop_tctx_refs+0x190/0x190 [ 29.376646][ T325] dump_stack+0x15/0x17 [ 29.380645][ T325] should_fail+0x3c6/0x510 [ 29.384891][ T325] __should_failslab+0xa4/0xe0 [ 29.389492][ T325] ? vm_area_dup+0x26/0x230 [ 29.393834][ T325] should_failslab+0x9/0x20 [ 29.398171][ T325] slab_pre_alloc_hook+0x37/0xd0 [ 29.403032][ T325] ? vm_area_dup+0x26/0x230 [ 29.407369][ T325] kmem_cache_alloc+0x44/0x200 [ 29.411977][ T325] vm_area_dup+0x26/0x230 [ 29.416136][ T325] copy_mm+0x9a1/0x13e0 [ 29.420131][ T325] ? copy_signal+0x610/0x610 [ 29.424554][ T325] ? __init_rwsem+0xd6/0x1c0 [ 29.428981][ T325] ? copy_signal+0x4e3/0x610 [ 29.433409][ T325] copy_process+0x12bc/0x3260 [ 29.437928][ T325] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 29.442871][ T325] ? __kasan_check_write+0x14/0x20 [ 29.447818][ T325] kernel_clone+0x21e/0x9e0 [ 29.452157][ T325] ? _raw_spin_unlock_irq+0x4e/0x70 [ 29.457189][ T325] ? create_io_thread+0x1e0/0x1e0 [ 29.462050][ T325] __x64_sys_clone+0x23f/0x290 [ 29.466667][ T325] ? __do_sys_vfork+0x130/0x130 [ 29.471338][ T325] ? __kasan_check_read+0x11/0x20 [ 29.476198][ T325] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 29.482012][ T325] do_syscall_64+0x3d/0xb0 [ 29.486266][ T325] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 29.491993][ T325] RIP: 0033:0x7f23ecb60009 [ 29.496245][ T325] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 29.515689][ T325] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 29.523930][ T325] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [ 29.531748][ T325] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [ 29.539554][ T325] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [pid 325] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES) = -1 ENOMEM (Cannot allocate memory) [pid 325] close(3) = 0 [pid 325] close(4) = -1 EBADF (Bad file descriptor) [pid 325] close(5) = -1 EBADF (Bad file descriptor) [pid 325] close(6) = -1 EBADF (Bad file descriptor) [pid 325] close(7) = -1 EBADF (Bad file descriptor) [pid 325] close(8) = -1 EBADF (Bad file descriptor) [pid 325] close(9) = -1 EBADF (Bad file descriptor) [pid 325] close(10) = -1 EBADF (Bad file descriptor) [pid 325] close(11) = -1 EBADF (Bad file descriptor) [pid 325] close(12) = -1 EBADF (Bad file descriptor) [pid 325] close(13) = -1 EBADF (Bad file descriptor) [pid 325] close(14) = -1 EBADF (Bad file descriptor) [pid 325] close(15) = -1 EBADF (Bad file descriptor) [pid 325] close(16) = -1 EBADF (Bad file descriptor) [pid 325] close(17) = -1 EBADF (Bad file descriptor) [pid 325] close(18) = -1 EBADF (Bad file descriptor) [pid 325] close(19) = -1 EBADF (Bad file descriptor) [pid 325] close(20) = -1 EBADF (Bad file descriptor) [pid 325] close(21) = -1 EBADF (Bad file descriptor) [pid 325] close(22) = -1 EBADF (Bad file descriptor) [pid 325] close(23) = -1 EBADF (Bad file descriptor) [pid 325] close(24) = -1 EBADF (Bad file descriptor) [pid 325] close(25) = -1 EBADF (Bad file descriptor) [pid 325] close(26) = -1 EBADF (Bad file descriptor) [pid 325] close(27) = -1 EBADF (Bad file descriptor) [pid 325] close(28) = -1 EBADF (Bad file descriptor) [pid 325] close(29) = -1 EBADF (Bad file descriptor) [pid 325] exit_group(0) = ? [pid 325] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=24, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [pid 296] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570c7650) = 25 ./strace-static-x86_64: Process 326 attached [pid 326] set_robust_list(0x5555570c7660, 24) = 0 [pid 326] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 326] setpgid(0, 0) = 0 [pid 326] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 326] write(3, "1000", 4) = 4 [pid 326] close(3) = 0 [pid 326] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3 [pid 326] write(3, "54", 2) = 2 [ 29.547364][ T325] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000710f [ 29.555268][ T325] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 29.563083][ T325] [ 29.573498][ T326] FAULT_INJECTION: forcing a failure. [ 29.573498][ T326] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 29.586692][ T326] CPU: 0 PID: 326 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 29.596747][ T326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 29.606637][ T326] Call Trace: [ 29.609757][ T326] [ 29.612538][ T326] dump_stack_lvl+0x151/0x1b7 [ 29.617053][ T326] ? io_uring_drop_tctx_refs+0x190/0x190 [ 29.622516][ T326] dump_stack+0x15/0x17 [ 29.626506][ T326] should_fail+0x3c6/0x510 [ 29.630761][ T326] should_fail_alloc_page+0x5a/0x80 [ 29.635794][ T326] prepare_alloc_pages+0x15c/0x700 [ 29.640742][ T326] ? __alloc_pages_bulk+0xe60/0xe60 [ 29.645776][ T326] __alloc_pages+0x138/0x5e0 [ 29.650211][ T326] ? prep_new_page+0x110/0x110 [ 29.654801][ T326] ? __alloc_pages+0x206/0x5e0 [ 29.659400][ T326] ? prep_new_page+0x110/0x110 [ 29.664001][ T326] ? __kasan_check_write+0x14/0x20 [ 29.668947][ T326] ? _raw_spin_lock+0xa4/0x1b0 [ 29.673546][ T326] pte_alloc_one+0x73/0x1b0 [ 29.677896][ T326] ? pfn_modify_allowed+0x2f0/0x2f0 [ 29.682921][ T326] ? __pmd_alloc+0x48d/0x550 [ 29.687348][ T326] __pte_alloc+0x86/0x350 [ 29.691689][ T326] ? __pud_alloc+0x260/0x260 [ 29.696113][ T326] ? __pud_alloc+0x213/0x260 [ 29.700542][ T326] ? free_pgtables+0x280/0x280 [ 29.705148][ T326] ? do_handle_mm_fault+0x2330/0x2330 [ 29.710354][ T326] ? __stack_depot_save+0x34/0x470 [ 29.715295][ T326] ? anon_vma_clone+0x9a/0x500 [ 29.719901][ T326] copy_page_range+0x28a8/0x2f90 [ 29.724679][ T326] ? __kasan_slab_alloc+0xb1/0xe0 [ 29.729528][ T326] ? slab_post_alloc_hook+0x53/0x2c0 [ 29.734652][ T326] ? kernel_clone+0x21e/0x9e0 [ 29.739163][ T326] ? do_syscall_64+0x3d/0xb0 [ 29.743592][ T326] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 29.749495][ T326] ? pfn_valid+0x1e0/0x1e0 [ 29.753743][ T326] ? rwsem_write_trylock+0x15b/0x290 [ 29.758862][ T326] ? vma_interval_tree_augment_rotate+0x1d0/0x1d0 [ 29.765122][ T326] ? vma_gap_callbacks_rotate+0x1e2/0x210 [ 29.770668][ T326] ? __rb_insert_augmented+0x5de/0x610 [ 29.775972][ T326] copy_mm+0xc7e/0x13e0 [ 29.780040][ T326] ? copy_signal+0x610/0x610 [ 29.784384][ T326] ? __init_rwsem+0xd6/0x1c0 [ 29.788810][ T326] ? copy_signal+0x4e3/0x610 [ 29.793233][ T326] copy_process+0x12bc/0x3260 [ 29.797748][ T326] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 29.802693][ T326] ? __kasan_check_write+0x14/0x20 [ 29.807642][ T326] kernel_clone+0x21e/0x9e0 [ 29.811989][ T326] ? _raw_spin_unlock_irq+0x4e/0x70 [ 29.817013][ T326] ? create_io_thread+0x1e0/0x1e0 [ 29.821874][ T326] __x64_sys_clone+0x23f/0x290 [ 29.826476][ T326] ? __do_sys_vfork+0x130/0x130 [ 29.831162][ T326] ? __kasan_check_read+0x11/0x20 [ 29.836021][ T326] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 29.841843][ T326] do_syscall_64+0x3d/0xb0 [ 29.846089][ T326] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 29.851816][ T326] RIP: 0033:0x7f23ecb60009 [ 29.856075][ T326] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 29.875520][ T326] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 29.883755][ T326] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [ 29.891570][ T326] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [pid 326] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES) = -1 ENOMEM (Cannot allocate memory) [pid 326] close(3) = 0 [pid 326] close(4) = -1 EBADF (Bad file descriptor) [pid 326] close(5) = -1 EBADF (Bad file descriptor) [pid 326] close(6) = -1 EBADF (Bad file descriptor) [pid 326] close(7) = -1 EBADF (Bad file descriptor) [pid 326] close(8) = -1 EBADF (Bad file descriptor) [pid 326] close(9) = -1 EBADF (Bad file descriptor) [pid 326] close(10) = -1 EBADF (Bad file descriptor) [pid 326] close(11) = -1 EBADF (Bad file descriptor) [pid 326] close(12) = -1 EBADF (Bad file descriptor) [pid 326] close(13) = -1 EBADF (Bad file descriptor) [pid 326] close(14) = -1 EBADF (Bad file descriptor) [pid 326] close(15) = -1 EBADF (Bad file descriptor) [pid 326] close(16) = -1 EBADF (Bad file descriptor) [pid 326] close(17) = -1 EBADF (Bad file descriptor) [pid 326] close(18) = -1 EBADF (Bad file descriptor) [pid 326] close(19) = -1 EBADF (Bad file descriptor) [pid 326] close(20) = -1 EBADF (Bad file descriptor) [pid 326] close(21) = -1 EBADF (Bad file descriptor) [pid 326] close(22) = -1 EBADF (Bad file descriptor) [pid 326] close(23) = -1 EBADF (Bad file descriptor) [pid 326] close(24) = -1 EBADF (Bad file descriptor) [pid 326] close(25) = -1 EBADF (Bad file descriptor) [pid 326] close(26) = -1 EBADF (Bad file descriptor) [pid 326] close(27) = -1 EBADF (Bad file descriptor) [pid 326] close(28) = -1 EBADF (Bad file descriptor) [pid 326] close(29) = -1 EBADF (Bad file descriptor) [pid 326] exit_group(0) = ? [pid 326] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=25, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [pid 296] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570c7650) = 26 ./strace-static-x86_64: Process 328 attached [pid 328] set_robust_list(0x5555570c7660, 24) = 0 [pid 328] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 328] setpgid(0, 0) = 0 [pid 328] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 328] write(3, "1000", 4) = 4 [pid 328] close(3) = 0 [pid 328] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3 [pid 328] write(3, "54", 2) = 2 [ 29.899377][ T326] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [ 29.907191][ T326] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000727d [ 29.915001][ T326] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 29.922818][ T326] [ 29.935853][ T328] FAULT_INJECTION: forcing a failure. [ 29.935853][ T328] name failslab, interval 1, probability 0, space 0, times 0 [ 29.948280][ T328] CPU: 1 PID: 328 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 29.958317][ T328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 29.968218][ T328] Call Trace: [ 29.971333][ T328] [ 29.974110][ T328] dump_stack_lvl+0x151/0x1b7 [ 29.978625][ T328] ? io_uring_drop_tctx_refs+0x190/0x190 [ 29.984095][ T328] dump_stack+0x15/0x17 [ 29.988084][ T328] should_fail+0x3c6/0x510 [ 29.992336][ T328] __should_failslab+0xa4/0xe0 [ 29.996936][ T328] ? anon_vma_fork+0x1df/0x4e0 [ 30.001535][ T328] should_failslab+0x9/0x20 [ 30.005882][ T328] slab_pre_alloc_hook+0x37/0xd0 [ 30.010650][ T328] ? anon_vma_fork+0x1df/0x4e0 [ 30.015248][ T328] kmem_cache_alloc+0x44/0x200 [ 30.019851][ T328] anon_vma_fork+0x1df/0x4e0 [ 30.024275][ T328] copy_mm+0xa3a/0x13e0 [ 30.028268][ T328] ? copy_signal+0x610/0x610 [ 30.032694][ T328] ? __init_rwsem+0xd6/0x1c0 [ 30.037119][ T328] ? copy_signal+0x4e3/0x610 [ 30.041551][ T328] copy_process+0x12bc/0x3260 [ 30.046062][ T328] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 30.051006][ T328] ? __kasan_check_write+0x14/0x20 [ 30.055955][ T328] kernel_clone+0x21e/0x9e0 [ 30.060293][ T328] ? _raw_spin_unlock_irq+0x4e/0x70 [ 30.065328][ T328] ? create_io_thread+0x1e0/0x1e0 [ 30.070187][ T328] __x64_sys_clone+0x23f/0x290 [ 30.074789][ T328] ? __do_sys_vfork+0x130/0x130 [ 30.079473][ T328] ? __kasan_check_read+0x11/0x20 [ 30.084336][ T328] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 30.090175][ T328] do_syscall_64+0x3d/0xb0 [ 30.094402][ T328] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 30.100139][ T328] RIP: 0033:0x7f23ecb60009 [ 30.104384][ T328] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 30.123835][ T328] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 30.132077][ T328] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [ 30.139968][ T328] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [ 30.147780][ T328] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [pid 328] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES) = -1 ENOMEM (Cannot allocate memory) [pid 328] close(3) = 0 [pid 328] close(4) = -1 EBADF (Bad file descriptor) [pid 328] close(5) = -1 EBADF (Bad file descriptor) [pid 328] close(6) = -1 EBADF (Bad file descriptor) [pid 328] close(7) = -1 EBADF (Bad file descriptor) [pid 328] close(8) = -1 EBADF (Bad file descriptor) [pid 328] close(9) = -1 EBADF (Bad file descriptor) [pid 328] close(10) = -1 EBADF (Bad file descriptor) [pid 328] close(11) = -1 EBADF (Bad file descriptor) [pid 328] close(12) = -1 EBADF (Bad file descriptor) [pid 328] close(13) = -1 EBADF (Bad file descriptor) [pid 328] close(14) = -1 EBADF (Bad file descriptor) [pid 328] close(15) = -1 EBADF (Bad file descriptor) [pid 328] close(16) = -1 EBADF (Bad file descriptor) [pid 328] close(17) = -1 EBADF (Bad file descriptor) [pid 328] close(18) = -1 EBADF (Bad file descriptor) [pid 328] close(19) = -1 EBADF (Bad file descriptor) [pid 328] close(20) = -1 EBADF (Bad file descriptor) [pid 328] close(21) = -1 EBADF (Bad file descriptor) [pid 328] close(22) = -1 EBADF (Bad file descriptor) [pid 328] close(23) = -1 EBADF (Bad file descriptor) [pid 328] close(24) = -1 EBADF (Bad file descriptor) [pid 328] close(25) = -1 EBADF (Bad file descriptor) [pid 328] close(26) = -1 EBADF (Bad file descriptor) [pid 328] close(27) = -1 EBADF (Bad file descriptor) [pid 328] close(28) = -1 EBADF (Bad file descriptor) [pid 328] close(29) = -1 EBADF (Bad file descriptor) [pid 328] exit_group(0) = ? [pid 328] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=26, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570c7650) = 27 ./strace-static-x86_64: Process 329 attached [pid 329] set_robust_list(0x5555570c7660, 24) = 0 [pid 329] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 329] setpgid(0, 0) = 0 [pid 329] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 329] write(3, "1000", 4) = 4 [pid 329] close(3) = 0 [pid 329] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3 [pid 329] write(3, "54", 2) = 2 [ 30.155589][ T328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000007375 [ 30.163403][ T328] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 30.171217][ T328] [ 30.180715][ T329] FAULT_INJECTION: forcing a failure. [ 30.180715][ T329] name failslab, interval 1, probability 0, space 0, times 0 [ 30.193294][ T329] CPU: 0 PID: 329 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 30.203262][ T329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 30.213157][ T329] Call Trace: [ 30.216280][ T329] [ 30.219059][ T329] dump_stack_lvl+0x151/0x1b7 [ 30.223571][ T329] ? io_uring_drop_tctx_refs+0x190/0x190 [ 30.229039][ T329] dump_stack+0x15/0x17 [ 30.233029][ T329] should_fail+0x3c6/0x510 [ 30.237282][ T329] __should_failslab+0xa4/0xe0 [ 30.241883][ T329] ? anon_vma_fork+0xf7/0x4e0 [ 30.246394][ T329] should_failslab+0x9/0x20 [ 30.250740][ T329] slab_pre_alloc_hook+0x37/0xd0 [ 30.255509][ T329] ? anon_vma_fork+0xf7/0x4e0 [ 30.260022][ T329] kmem_cache_alloc+0x44/0x200 [ 30.264623][ T329] anon_vma_fork+0xf7/0x4e0 [ 30.268963][ T329] ? anon_vma_name+0x43/0x70 [ 30.273387][ T329] ? vm_area_dup+0x17a/0x230 [ 30.277814][ T329] copy_mm+0xa3a/0x13e0 [ 30.281809][ T329] ? copy_signal+0x610/0x610 [ 30.286232][ T329] ? __init_rwsem+0xd6/0x1c0 [ 30.290660][ T329] ? copy_signal+0x4e3/0x610 [ 30.295088][ T329] copy_process+0x12bc/0x3260 [ 30.299601][ T329] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 30.304546][ T329] ? __kasan_check_write+0x14/0x20 [ 30.309494][ T329] kernel_clone+0x21e/0x9e0 [ 30.313843][ T329] ? _raw_spin_unlock_irq+0x4e/0x70 [ 30.318867][ T329] ? create_io_thread+0x1e0/0x1e0 [ 30.324161][ T329] __x64_sys_clone+0x23f/0x290 [ 30.328764][ T329] ? __do_sys_vfork+0x130/0x130 [ 30.333448][ T329] ? __kasan_check_read+0x11/0x20 [ 30.338309][ T329] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 30.344122][ T329] do_syscall_64+0x3d/0xb0 [ 30.348375][ T329] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 30.354106][ T329] RIP: 0033:0x7f23ecb60009 [ 30.358356][ T329] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 30.377809][ T329] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 30.386043][ T329] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [ 30.393856][ T329] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [pid 329] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES) = -1 ENOMEM (Cannot allocate memory) [pid 329] close(3) = 0 [pid 329] close(4) = -1 EBADF (Bad file descriptor) [pid 329] close(5) = -1 EBADF (Bad file descriptor) [pid 329] close(6) = -1 EBADF (Bad file descriptor) [pid 329] close(7) = -1 EBADF (Bad file descriptor) [pid 329] close(8) = -1 EBADF (Bad file descriptor) [pid 329] close(9) = -1 EBADF (Bad file descriptor) [pid 329] close(10) = -1 EBADF (Bad file descriptor) [pid 329] close(11) = -1 EBADF (Bad file descriptor) [pid 329] close(12) = -1 EBADF (Bad file descriptor) [pid 329] close(13) = -1 EBADF (Bad file descriptor) [pid 329] close(14) = -1 EBADF (Bad file descriptor) [pid 329] close(15) = -1 EBADF (Bad file descriptor) [pid 329] close(16) = -1 EBADF (Bad file descriptor) [pid 329] close(17) = -1 EBADF (Bad file descriptor) [pid 329] close(18) = -1 EBADF (Bad file descriptor) [pid 329] close(19) = -1 EBADF (Bad file descriptor) [pid 329] close(20) = -1 EBADF (Bad file descriptor) [pid 329] close(21) = -1 EBADF (Bad file descriptor) [pid 329] close(22) = -1 EBADF (Bad file descriptor) [pid 329] close(23) = -1 EBADF (Bad file descriptor) [pid 329] close(24) = -1 EBADF (Bad file descriptor) [pid 329] close(25) = -1 EBADF (Bad file descriptor) [pid 329] close(26) = -1 EBADF (Bad file descriptor) [pid 329] close(27) = -1 EBADF (Bad file descriptor) [pid 329] close(28) = -1 EBADF (Bad file descriptor) [pid 329] close(29) = -1 EBADF (Bad file descriptor) [pid 329] exit_group(0) = ? [pid 329] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=27, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570c7650) = 28 ./strace-static-x86_64: Process 330 attached [pid 330] set_robust_list(0x5555570c7660, 24) = 0 [pid 330] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 330] setpgid(0, 0) = 0 [pid 330] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 330] write(3, "1000", 4) = 4 [pid 330] close(3) = 0 [pid 330] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3 [pid 330] write(3, "54", 2) = 2 [ 30.401665][ T329] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [ 30.409477][ T329] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000074db [ 30.417290][ T329] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 30.425102][ T329] [ 30.443551][ T330] FAULT_INJECTION: forcing a failure. [ 30.443551][ T330] name failslab, interval 1, probability 0, space 0, times 0 [ 30.456045][ T330] CPU: 0 PID: 330 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 30.466007][ T330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 30.475992][ T330] Call Trace: [ 30.479118][ T330] [ 30.481893][ T330] dump_stack_lvl+0x151/0x1b7 [ 30.486404][ T330] ? io_uring_drop_tctx_refs+0x190/0x190 [ 30.491874][ T330] dump_stack+0x15/0x17 [ 30.495868][ T330] should_fail+0x3c6/0x510 [ 30.500118][ T330] __should_failslab+0xa4/0xe0 [ 30.504717][ T330] ? anon_vma_fork+0x1df/0x4e0 [ 30.509314][ T330] should_failslab+0x9/0x20 [ 30.513654][ T330] slab_pre_alloc_hook+0x37/0xd0 [ 30.518430][ T330] ? anon_vma_fork+0x1df/0x4e0 [ 30.523029][ T330] kmem_cache_alloc+0x44/0x200 [ 30.527632][ T330] anon_vma_fork+0x1df/0x4e0 [ 30.532059][ T330] copy_mm+0xa3a/0x13e0 [ 30.536050][ T330] ? copy_signal+0x610/0x610 [ 30.540473][ T330] ? __init_rwsem+0xd6/0x1c0 [ 30.544905][ T330] ? copy_signal+0x4e3/0x610 [ 30.549542][ T330] copy_process+0x12bc/0x3260 [ 30.553979][ T330] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 30.558924][ T330] ? __kasan_check_write+0x14/0x20 [ 30.563872][ T330] kernel_clone+0x21e/0x9e0 [ 30.568209][ T330] ? _raw_spin_unlock_irq+0x4e/0x70 [ 30.573241][ T330] ? create_io_thread+0x1e0/0x1e0 [ 30.578102][ T330] __x64_sys_clone+0x23f/0x290 [ 30.582707][ T330] ? __do_sys_vfork+0x130/0x130 [ 30.587392][ T330] ? __kasan_check_read+0x11/0x20 [ 30.592248][ T330] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 30.598071][ T330] do_syscall_64+0x3d/0xb0 [ 30.602318][ T330] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 30.608049][ T330] RIP: 0033:0x7f23ecb60009 [ 30.612298][ T330] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 30.631748][ T330] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 30.639986][ T330] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [ 30.647796][ T330] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [ 30.655605][ T330] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [ 30.663419][ T330] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000075d3 [ 30.671227][ T330] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 30.679053][ T330] [ 30.683014][ T330] ================================================================== [ 30.690879][ T330] BUG: KASAN: double-free or invalid-free in kfree+0xc8/0x220 [ 30.698172][ T330] [ 30.700339][ T330] CPU: 0 PID: 330 Comm: syz-executor237 Not tainted 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 30.710406][ T330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 30.720303][ T330] Call Trace: [ 30.723450][ T330] [ 30.726201][ T330] dump_stack_lvl+0x151/0x1b7 [ 30.730715][ T330] ? io_uring_drop_tctx_refs+0x190/0x190 [ 30.736182][ T330] ? __wake_up_klogd+0xd5/0x110 [ 30.740871][ T330] ? panic+0x751/0x751 [ 30.744884][ T330] ? kfree+0xc8/0x220 [ 30.748705][ T330] print_address_description+0x87/0x3b0 [ 30.754080][ T330] ? kfree+0xc8/0x220 [ 30.757902][ T330] ? kfree+0xc8/0x220 [ 30.761722][ T330] kasan_report_invalid_free+0x6b/0xa0 [ 30.767022][ T330] ____kasan_slab_free+0x13e/0x160 [ 30.771963][ T330] __kasan_slab_free+0x11/0x20 [ 30.776562][ T330] slab_free_freelist_hook+0xbd/0x190 [ 30.781766][ T330] ? anon_vma_name_free+0x15/0x20 [ 30.786624][ T330] kfree+0xc8/0x220 [ 30.790271][ T330] anon_vma_name_free+0x15/0x20 [ 30.794956][ T330] vm_area_free_no_check+0xa6/0x130 [ 30.799992][ T330] copy_mm+0xefb/0x13e0 [ 30.803986][ T330] ? copy_signal+0x610/0x610 [ 30.808411][ T330] ? __init_rwsem+0xd6/0x1c0 [ 30.812836][ T330] ? copy_signal+0x4e3/0x610 [ 30.817264][ T330] copy_process+0x12bc/0x3260 [ 30.821777][ T330] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 30.826810][ T330] ? __kasan_check_write+0x14/0x20 [ 30.831759][ T330] kernel_clone+0x21e/0x9e0 [ 30.836097][ T330] ? _raw_spin_unlock_irq+0x4e/0x70 [ 30.841132][ T330] ? create_io_thread+0x1e0/0x1e0 [ 30.845997][ T330] __x64_sys_clone+0x23f/0x290 [ 30.850594][ T330] ? __do_sys_vfork+0x130/0x130 [ 30.855289][ T330] ? __kasan_check_read+0x11/0x20 [ 30.860138][ T330] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 30.865953][ T330] do_syscall_64+0x3d/0xb0 [ 30.870207][ T330] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 30.875934][ T330] RIP: 0033:0x7f23ecb60009 [ 30.880194][ T330] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 30.899627][ T330] RSP: 002b:00007fffe02a3aa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 30.907872][ T330] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f23ecb60009 [ 30.915683][ T330] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [ 30.923842][ T330] RBP: 0000000000000002 R08: 0000000000000000 R09: 00000000570c84c0 [ 30.931653][ T330] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000075d3 [ 30.939465][ T330] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 30.947281][ T330] [ 30.950140][ T330] [ 30.952308][ T330] Allocated by task 295: [ 30.956391][ T330] __kasan_slab_alloc+0xb1/0xe0 [ 30.961075][ T330] slab_post_alloc_hook+0x53/0x2c0 [ 30.966021][ T330] kmem_cache_alloc+0xf5/0x200 [ 30.970623][ T330] vm_area_dup+0x26/0x230 [ 30.974790][ T330] copy_mm+0x9a1/0x13e0 [ 30.978780][ T330] copy_process+0x12bc/0x3260 [ 30.983294][ T330] kernel_clone+0x21e/0x9e0 [ 30.987632][ T330] __x64_sys_clone+0x23f/0x290 [ 30.992232][ T330] do_syscall_64+0x3d/0xb0 [ 30.996625][ T330] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 31.002358][ T330] [ 31.004518][ T330] The buggy address belongs to the object at ffff88811ce26b90 [ 31.004518][ T330] which belongs to the cache vm_area_struct of size 232 [ 31.018669][ T330] The buggy address is located 88 bytes inside of [ 31.018669][ T330] 232-byte region [ffff88811ce26b90, ffff88811ce26c78) [ 31.031703][ T330] The buggy address belongs to the page: [ 31.037157][ T330] page:ffffea0004738980 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x11ce26 [ 31.047222][ T330] flags: 0x4000000000000200(slab|zone=1) [ 31.052705][ T330] raw: 4000000000000200 0000000000000000 dead000000000122 ffff8881001bc480 [ 31.061116][ T330] raw: 0000000000000000 00000000000d000d 00000001ffffffff 0000000000000000 [ 31.069528][ T330] page dumped because: kasan: bad access detected [ 31.075778][ T330] page_owner tracks the page as allocated [ 31.081329][ T330] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 295, ts 22436627539, free_ts 22197535532 [ 31.097134][ T330] post_alloc_hook+0x1a3/0x1b0 [ 31.101728][ T330] prep_new_page+0x1b/0x110 [ 31.106140][ T330] get_page_from_freelist+0x3550/0x35d0 [ 31.111448][ T330] __alloc_pages+0x206/0x5e0 [ 31.115872][ T330] new_slab+0x9a/0x4e0 [ 31.119779][ T330] ___slab_alloc+0x39e/0x830 [ 31.124209][ T330] __slab_alloc+0x4a/0x90 [ 31.128371][ T330] kmem_cache_alloc+0x134/0x200 [ 31.133063][ T330] vm_area_dup+0x26/0x230 [ 31.137223][ T330] copy_mm+0x9a1/0x13e0 [ 31.141215][ T330] copy_process+0x12bc/0x3260 [ 31.145729][ T330] kernel_clone+0x21e/0x9e0 [ 31.150067][ T330] __x64_sys_clone+0x23f/0x290 [ 31.154669][ T330] do_syscall_64+0x3d/0xb0 [ 31.158923][ T330] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 31.164650][ T330] page last free stack trace: [ 31.169162][ T330] free_unref_page_prepare+0x7c8/0x7d0 [ 31.174456][ T330] free_unref_page+0xe6/0x730 [ 31.178970][ T330] __free_pages+0x61/0xf0 [ 31.183134][ T330] free_pages+0x7c/0x90 [ 31.187129][ T330] kasan_depopulate_vmalloc_pte+0x6a/0x90 [ 31.192683][ T330] __apply_to_page_range+0x8dd/0xbe0 [ 31.197804][ T330] apply_to_existing_page_range+0x38/0x50 [ 31.203358][ T330] kasan_release_vmalloc+0x9a/0xb0 [ 31.208305][ T330] __purge_vmap_area_lazy+0x154a/0x1690 [ 31.213688][ T330] _vm_unmap_aliases+0x339/0x3b0 [ 31.218461][ T330] vm_unmap_aliases+0x19/0x20 [ 31.222975][ T330] change_page_attr_set_clr+0x308/0x1050 [ 31.228444][ T330] set_memory_ro+0xa1/0xe0 [ 31.232694][ T330] bpf_int_jit_compile+0xbf42/0xc6d0 [ 31.237814][ T330] bpf_prog_select_runtime+0x706/0x9e0 [ 31.243110][ T330] bpf_prepare_filter+0x10d0/0x13d0 [ 31.248144][ T330] [ 31.250311][ T330] Memory state around the buggy address: [ 31.255785][ T330] ffff88811ce26a80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 31.263684][ T330] ffff88811ce26b00: 00 00 00 00 00 00 00 00 00 00 fc fc fc fc fc fc [ 31.271578][ T330] >ffff88811ce26b80: fc fc 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 31.279476][ T330] ^ [ 31.286770][ T330] ffff88811ce26c00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 fc [ 31.294668][ T330] ffff88811ce26c80: fc fc fc fc fc fc fc 00 00 00 00 00 00 00 00 00 [ 31.302563][ T330] ================================================================== [pid 330] clone(child_stack=NULL, flags=CLONE_FS|CLONE_FILES) = -1 ENOMEM (Cannot allocate memory) [pid 330] close(3) = 0 [pid 330] close(4) = -1 EBADF (Bad file descriptor) [pid 330] close(5) = -1 EBADF (Bad file descriptor) [pid 330] close(6) = -1 EBADF (Bad file descriptor) [pid 330] close(7) = -1 EBADF (Bad file descriptor) [pid 330] close(8) = -1 EBADF (Bad file descriptor) [pid 330] close(9) = -1 EBADF (Bad file descriptor) [pid 330] close(10) = -1 EBADF (Bad file descriptor) [pid 330] close(11) = -1 EBADF (Bad file descriptor) [pid 330] close(12) = -1 EBADF (Bad file descriptor) [pid 330] close(13) = -1 EBADF (Bad file descriptor) [pid 330] close(14) = -1 EBADF (Bad file descriptor) [pid 330] close(15) = -1 EBADF (Bad file descriptor) [pid 330] close(16) = -1 EBADF (Bad file descriptor) [pid 330] close(17) = -1 EBADF (Bad file descriptor) [pid 330] close(18) = -1 EBADF (Bad file descriptor) [pid 330] close(19) = -1 EBADF (Bad file descriptor) [pid 330] close(20) = -1 EBADF (Bad file descriptor) [pid 330] close(21) = -1 EBADF (Bad file descriptor) [pid 330] close(22) = -1 EBADF (Bad file descriptor) [pid 330] close(23) = -1 EBADF (Bad file descriptor) [pid 330] close(24) = -1 EBADF (Bad file descriptor) [pid 330] close(25) = -1 EBADF (Bad file descriptor) [pid 330] close(26) = -1 EBADF (Bad file descriptor) [pid 330] close(27) = -1 EBADF (Bad file descriptor) [pid 330] close(28) = -1 EBADF (Bad file descriptor) [pid 330] close(29) = -1 EBADF (Bad file descriptor) [pid 330] exit_group(0) = ? [pid 330] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=28, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- [ 31.310461][ T330] Disabling lock debugging due to kernel taint [ 31.322693][ T296] general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#1] PREEMPT SMP KASAN [ 31.334215][ T296] KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f] [ 31.342459][ T296] CPU: 0 PID: 296 Comm: syz-executor237 Tainted: G B 5.15.137-syzkaller-01792-g61cfd264993d #0 [ 31.353914][ T296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 31.363810][ T296] RIP: 0010:__rb_insert_augmented+0x91/0x610 [ 31.369626][ T296] Code: 00 74 08 4c 89 ef e8 ae b3 2b ff 49 8b 45 00 a8 01 0f 85 60 05 00 00 48 89 5d a0 48 89 45 c0 48 8d 58 08 49 89 de 49 c1 ee 03 <43> 80 3c 26 00 74 08 48 89 df e8 80 b3 2b ff 48 89 d8 48 8b 1b 4c [ 31.389073][ T296] RSP: 0018:ffffc900009d78f8 EFLAGS: 00010202 [ 31.394966][ T296] RAX: 0000000000000000 RBX: 0000000000000008 RCX: dffffc0000000000 [ 31.402778][ T296] RDX: ffffffff81a4d410 RSI: ffff8881091d7250 RDI: ffff88811ee5f180 [ 31.410597][ T296] RBP: ffffc900009d7960 R08: dffffc0000000000 R09: ffff88811ee5f188 [ 31.418412][ T296] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 31.426212][ T296] R13: ffff88811ce26be8 R14: 0000000000000001 R15: ffff88811ee5f180 [ 31.434021][ T296] FS: 00005555570c7380(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 31.442794][ T296] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 31.449213][ T296] CR2: 00007f23ecbda1b0 CR3: 000000011ce27000 CR4: 00000000003506b0 [ 31.457073][ T296] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 31.464834][ T296] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 31.472649][ T296] Call Trace: [ 31.475768][ T296] [ 31.478546][ T296] ? __die_body+0x62/0xb0 [ 31.482715][ T296] ? die_addr+0x9f/0xd0 [ 31.486706][ T296] ? exc_general_protection+0x311/0x4b0 [ 31.492088][ T296] ? asm_exc_general_protection+0x27/0x30 [ 31.497641][ T296] ? anon_vma_interval_tree_iter_next+0x390/0x390 [ 31.503888][ T296] ? __rb_insert_augmented+0x91/0x610 [ 31.509100][ T296] ? anon_vma_interval_tree_iter_next+0x390/0x390 [ 31.515345][ T296] vma_interval_tree_insert_after+0x2be/0x2d0 [ 31.521248][ T296] copy_mm+0xba2/0x13e0 [ 31.525240][ T296] ? copy_signal+0x610/0x610 [ 31.529667][ T296] ? __init_rwsem+0xd6/0x1c0 [ 31.534092][ T296] ? copy_signal+0x4e3/0x610 [ 31.538521][ T296] copy_process+0x12bc/0x3260 [ 31.543034][ T296] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 31.547979][ T296] ? __kasan_check_write+0x14/0x20 [ 31.552926][ T296] kernel_clone+0x21e/0x9e0 [ 31.557266][ T296] ? _raw_spin_unlock_irq+0x4e/0x70 [ 31.562298][ T296] ? create_io_thread+0x1e0/0x1e0 [ 31.567161][ T296] __x64_sys_clone+0x23f/0x290 [ 31.571761][ T296] ? __do_sys_vfork+0x130/0x130 [ 31.576447][ T296] ? __kasan_check_read+0x11/0x20 [ 31.581306][ T296] ? syscall_enter_from_user_mode+0x70/0x1b0 [ 31.587122][ T296] do_syscall_64+0x3d/0xb0 [ 31.591374][ T296] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 31.597102][ T296] RIP: 0033:0x7f23ecb5e003 [ 31.601364][ T296] Code: 1f 84 00 00 00 00 00 64 48 8b 04 25 10 00 00 00 45 31 c0 31 d2 31 f6 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 89 c2 85 c0 75 2c 64 48 8b 04 25 10 00 00 [ 31.620977][ T296] RSP: 002b:00007fffe02a39a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 31.629217][ T296] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f23ecb5e003 [ 31.637030][ T296] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 31.644842][ T296] RBP: 0000000000000000 R08: 0000000000000000 R09: 00007fffe03b20b0 [ 31.652662][ T296] R10: 00005555570c7650 R11: 0000000000000246 R12: 0000000000000001 [ 31.660470][ T296] R13: 00007fffe02a3ab4 R14: 00007fffe02a3ae0 R15: 00007fffe02a3ad0 [ 31.668285][ T296] [ 31.671136][ T296] Modules linked in: [ 31.675957][ T296] ---[ end trace 1c733a319cc8c379 ]--- [ 31.681513][ T296] RIP: 0010:__rb_insert_augmented+0x91/0x610 [ 31.687408][ T296] Code: 00 74 08 4c 89 ef e8 ae b3 2b ff 49 8b 45 00 a8 01 0f 85 60 05 00 00 48 89 5d a0 48 89 45 c0 48 8d 58 08 49 89 de 49 c1 ee 03 <43> 80 3c 26 00 74 08 48 89 df e8 80 b3 2b ff 48 89 d8 48 8b 1b 4c [ 31.706861][ T296] RSP: 0018:ffffc900009d78f8 EFLAGS: 00010202 [ 31.712645][ T296] RAX: 0000000000000000 RBX: 0000000000000008 RCX: dffffc0000000000 [ 31.720496][ T296] RDX: ffffffff81a4d410 RSI: ffff8881091d7250 RDI: ffff88811ee5f180 [ 31.728371][ T296] RBP: ffffc900009d7960 R08: dffffc0000000000 R09: ffff88811ee5f188 [ 31.736162][ T296] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 31.744003][ T296] R13: ffff88811ce26be8 R14: 0000000000000001 R15: ffff88811ee5f180 [ 31.751805][ T296] FS: 00005555570c7380(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 31.760574][ T296] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 31.767169][ T296] CR2: 00007f23ecb92f80 CR3: 000000011ce27000 CR4: 00000000003506a0 [ 31.774963][ T296] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 31.782795][ T296] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 31.790600][ T296] Kernel panic - not syncing: Fatal exception [ 31.796645][ T296] Kernel Offset: disabled [ 31.800769][ T296] Rebooting in 86400 seconds..