0x0, 0x7}, @jmp={0x5, 0x0, 0x1, 0xb, 0xa, 0x10, 0xfffffffffffffffc}, @map_idx_val={0x18, 0x3, 0x6, 0x0, 0x9, 0x0, 0x0, 0x0, 0x6}, @ldst={0x1, 0x1, 0x3, 0x1, 0x8, 0xfffffffffffffff0, 0xfffffffffffffff0}, @map_val={0x18, 0xd, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0xd9}, @exit], &(0x7f0000000300)='syzkaller\x00', 0x9, 0x0, &(0x7f0000000340), 0x41100, 0x9, '\x00', 0x0, 0x25, r0, 0x8, &(0x7f0000000380)={0x9, 0x5}, 0x8, 0x10, &(0x7f00000003c0)={0x3, 0x5, 0x81, 0x7fff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)=[r0, r0, r0, r0, r0, r0, r0, r0, r0]}, 0x80) syz_clone(0x1c000000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:56 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0xc, 0x0, 0x0, 0x0}, 0x20) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x1, 0x47, 0x1f, 0xff, 0x0, 0x3566, 0x8, 0xa, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:56 executing program 4: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:44:56 executing program 5: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000100)={0xffffffffffffffff, 0x1, 0x0, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], 0x4}, 0x20) openat$cgroup(r1, &(0x7f0000000080)='syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0xc, 0x0, 0x0, 0x0}, 0x20) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r2}, 0x14) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000040)={@cgroup=r0, r2, 0xa}, 0x10) 14:44:56 executing program 0: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r0, 0x58, &(0x7f0000000140)}, 0x10) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) syz_clone(0x1c000000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:56 executing program 4: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:44:56 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0xc, 0x0, 0x0, 0x0}, 0x20) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x1, 0x47, 0x1f, 0xff, 0x0, 0x3566, 0x8, 0xa, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:56 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x4000, &(0x7f0000000000)="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", 0x1000, &(0x7f0000001000), &(0x7f0000001040), &(0x7f0000001080)="8c32407c72359f9ab61790caa52e06e15296dc0f077945cd0e3581cc6fdb719df5929acc8f8f86608df77b04cecfb06c8039e8fa03b61246695f8f042728d7818e6f31d4befd0d811ec35ba7cf3c8cec92976afcb1048e661046375ce5fa8410a993356f19e7859437571cabfb7a5e2efb86a436b5b2b98c80056eea1b8eaf5ab28da1b87cc2568845848852df12e0f901e7b44537af2a16d13c1f02868ee637093d3fa4dafeb81445670c3035bec29c4449397837f1df540cceff799da410") 14:44:56 executing program 0: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r0, 0x58, &(0x7f0000000140)}, 0x10) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) syz_clone(0x1c000000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:56 executing program 3: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r0, 0x58, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0xb, &(0x7f0000000280)=@raw=[@btf_id={0x18, 0x3ede05996ad0d327, 0x3, 0x0, 0x2}, @map_idx_val={0x18, 0x6, 0x6, 0x0, 0xd, 0x0, 0x0, 0x0, 0x7}, @jmp={0x5, 0x0, 0x1, 0xb, 0xa, 0x10, 0xfffffffffffffffc}, @map_idx_val={0x18, 0x3, 0x6, 0x0, 0x9, 0x0, 0x0, 0x0, 0x6}, @ldst={0x1, 0x1, 0x3, 0x1, 0x8, 0xfffffffffffffff0, 0xfffffffffffffff0}, @map_val={0x18, 0xd, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0xd9}, @exit], &(0x7f0000000300)='syzkaller\x00', 0x9, 0x0, &(0x7f0000000340), 0x41100, 0x9, '\x00', 0x0, 0x25, r0, 0x8, &(0x7f0000000380)={0x9, 0x5}, 0x8, 0x10, &(0x7f00000003c0)={0x3, 0x5, 0x81, 0x7fff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)=[r0, r0, r0, r0, r0, r0, r0, r0, r0]}, 0x80) r4 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r4, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r4, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000500)=@bpf_ext={0x1c, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="183700000100000000000000000000008500000026000000"], &(0x7f00000000c0)='syzkaller\x00', 0x9, 0x13, &(0x7f0000000100)=""/19, 0x41000, 0x2, '\x00', r1, 0x0, r2, 0x8, &(0x7f0000000200)={0x6, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x1, 0x7, 0x1f, 0x2}, 0x10, 0x2287a, r3, 0x0, &(0x7f00000004c0)=[r4]}, 0x80) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) syz_clone(0x1c000000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:56 executing program 4: syz_clone(0x0, 0x0, 0x54, 0x0, 0x0, 0x0) 14:44:56 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0xc, 0x0, 0x0, 0x0}, 0x20) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x1, 0x47, 0x1f, 0xff, 0x0, 0x3566, 0x8, 0xa, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:56 executing program 5: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000100)={0xffffffffffffffff, 0x1, 0x0, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], 0x4}, 0x20) openat$cgroup(r1, &(0x7f0000000080)='syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0xc, 0x0, 0x0, 0x0}, 0x20) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r2}, 0x14) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000040)={@cgroup=r0, r2, 0xa}, 0x10) 14:44:56 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x1, 0x47, 0x1f, 0xff, 0x0, 0x3566, 0x8, 0xa, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:56 executing program 0: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r0, 0x58, &(0x7f0000000140)}, 0x10) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) syz_clone(0x1c000000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:56 executing program 4: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x22, 0x0, 0x0, 0x0}, 0x20) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f00000001c0)='##\x00') ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f00000015c0)='blkio.bfq.io_queued_recursive\x00') bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000001340)={0x1, 0x58, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) r4 = bpf$ITER_CREATE(0x21, &(0x7f00000014c0), 0x8) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001540)={0x18, 0x2, &(0x7f0000000200)=ANY=[@ANYBLOB="18170000", @ANYRES32=0x1, @ANYBLOB="8000000000000000"], &(0x7f0000000240)='syzkaller\x00', 0x2, 0x5c, &(0x7f0000000080)=""/96, 0x41000, 0x0, '\x00', r3, 0x0, r2, 0x8, &(0x7f0000001440)={0x4, 0x3}, 0x4, 0x10, &(0x7f0000001480)={0x0, 0xb, 0x9, 0x8000}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000001500)=[r4, r1]}, 0x80) 14:44:56 executing program 2: perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x1, 0x47, 0x1f, 0xff, 0x0, 0x3566, 0x8, 0xa, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0xb) 14:44:56 executing program 3: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r0, 0x58, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0xb, &(0x7f0000000280)=@raw=[@btf_id={0x18, 0x3ede05996ad0d327, 0x3, 0x0, 0x2}, @map_idx_val={0x18, 0x6, 0x6, 0x0, 0xd, 0x0, 0x0, 0x0, 0x7}, @jmp={0x5, 0x0, 0x1, 0xb, 0xa, 0x10, 0xfffffffffffffffc}, @map_idx_val={0x18, 0x3, 0x6, 0x0, 0x9, 0x0, 0x0, 0x0, 0x6}, @ldst={0x1, 0x1, 0x3, 0x1, 0x8, 0xfffffffffffffff0, 0xfffffffffffffff0}, @map_val={0x18, 0xd, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0xd9}, @exit], &(0x7f0000000300)='syzkaller\x00', 0x9, 0x0, &(0x7f0000000340), 0x41100, 0x9, '\x00', 0x0, 0x25, r0, 0x8, &(0x7f0000000380)={0x9, 0x5}, 0x8, 0x10, &(0x7f00000003c0)={0x3, 0x5, 0x81, 0x7fff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)=[r0, r0, r0, r0, r0, r0, r0, r0, r0]}, 0x80) r4 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r4, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r4, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000500)=@bpf_ext={0x1c, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="183700000100000000000000000000008500000026000000"], &(0x7f00000000c0)='syzkaller\x00', 0x9, 0x13, &(0x7f0000000100)=""/19, 0x41000, 0x2, '\x00', r1, 0x0, r2, 0x8, &(0x7f0000000200)={0x6, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x1, 0x7, 0x1f, 0x2}, 0x10, 0x2287a, r3, 0x0, &(0x7f00000004c0)=[r4]}, 0x80) syz_clone(0x1c000000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:56 executing program 5: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000100)={0xffffffffffffffff, 0x1, 0x0, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], 0x4}, 0x20) openat$cgroup(r1, &(0x7f0000000080)='syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0xc, 0x0, 0x0, 0x0}, 0x20) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000040)={@cgroup=r0, r2, 0xa}, 0x10) 14:44:56 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) syz_clone(0x4000, &(0x7f0000000000)="0d73088e43e99af65a309b35ec1e28ca83effd9d7bcd919b5c19e0f3f13d48c94ef16bccb6138051c8f7f5b0251da5640f1bb55d337d5e203129faac663a2221af7767be1d1597163ee5be3839c686ba511b62aab1135d46c3ebc34329e43d9be7b1a817637f06fe9553ee85ecc3dfcfb9ea28372f1393726326d6098b5f4884cb0643fd28dd696251853b049eee01df8940731ef7198951d4fff48d5bc6e6b053c8f6fbdc1239041e8b18b3d8c6bd26a7f9ed743f9f49bdb4f157d96cbec6ae7348aadf19aba443104239bf5c5fb146a82d83cb615f617851873613866389f3a63427e1393260d7ec6d23d128536cdf908414da14971111c65d225aff8694c3953052257cac9f03353164ae5f60ec663116b30f52e3d21c19f729fcb65f1a034659db1a69d2ad2699bed34725a6097e5fadaf6c9f06fad4154fe662d4093847a991a23930e6067bc8715f975481a1c9315503b5c47e26379270adbcc1bfa74a189e973bb93cd531c48c9a400424d2ab96394693b310e9ff2470d70fe069bd898efccb69f57882d437c670f8167b93c86c23a3d35a77eb492c45fda3343134b8f427ab5565c299ed1d428dd0bf2cd2035e579b1ac503cba94312416361534e896ab52d9a93c04e85aa0d7a8aa0ed4f6c00f7a48543387393a7f81e3e55764f8039b20c817693f00a1fca40f362c3b6e017ed024b2a4542f2f66eb2e6a468a28c867506a0ff49883484aa398aeb506b260ab85f3262668451446a5e57a4638ef962d947961755124e387f1a0c48822957692b2a1ed110664aae897b428f33120274d5e4624f22390980829b1d20f39427bb095259207800c7994771aeb8dea5ae3d3ae4479f5e7481682da699dbe9892b3a163b13094bd7314aa47f8c7d4ced209d0105fca63461b2f61921fd2d85cdcca5445afee65499b3fe3173d732399d423fd3e2c1e8f18e2a2eeb7d3769baeb86d456d25d68c2085cd8e186b6b4fdc8bab5066fff99cc0261fd31982e274022087492ec5cae2732b2ab811706e9e9711a7243f4cd63ad9ac519e2fdbd2c5655d8c0acd0039bffe4c40a14589bb9497409a80de8de5d6349617e0f228aac628f498673ea464049073c26dc84a549b2ffdf6eb49878dd06a995947e2abbb655a93627e5a5a8f678cd64d56e93a16fd175cf8b910d645132e752b7d15ba395fc13a28689aff8fa6034ff67a3dd9aa4b5b62a570e2ece06c07c36f8fef5d00fa544d7c5f14a372a717b8d78912a5cf9f5edcf851531a5e6b67171ef1eeba53286cb4dcd4c6ea403a1087702dd7cf50765cd765e487d8ae4edd061255dc9c758d403ce984389a63f0f29209adca83ef6110504246c928c9a3df4cce873218adb86a95ef4fc9a220f83cb27d2d5417897e5cab10540fce2d530fb69791c792d827cb1de3e16164f444ff7c70b178531ee610f49006c0136c534ed020797e418c88c4dd2614427aee2290d8c74c07283ddfbecf9ffb40e7e068fcfb24aa1662593981fffd6123adbb1519a508eb2bc7f3105d6e2e833671b3ce683ed2e1662f66425b18cbd8edc37a99325dec169b7000c388999188c2aae428295b8aaa02dc8eb10dbc0e2b74091348b12c1a057559a339d9fa7b10d87618c3dc0b30d939d72de234d56fbaf3303b54d0120fb6b607bd944894022b1afbdc73dab89f99dfa9ce89c8c897fb0a19e03e5b469a9960c82a6fd8240097d8b2805b491914e407584287f3d3f1b60809bd7726e3e7068ff9ed7c9a64760f9f941577036c241f3d26efe65b170f55f3ee3376ee4f99becf3ac671fbff1b120d7ff41d27925b3884eefecd9e8e4a0d2ca6af9ce91c5e38d4e9815904702d9d043c17ae48a0abd0cef9ac40003608cec11bda539427b3361a84f0e04b39242cadf9e894c17b4338b6fe9d686de968fb936021b21ab8d0187b21b3fd92f5999a56c3a9bf2f4a3ede3f464629b820f0c03d36af849bfbc952f46777beaef49757a2f1e97dd20a63fca120cf0dcd3c68c56b67eda5aa29621a0340d4453f2d9e7081385369da0b8f2560ff678ece70fc9d1aaa91efb3d122cd7389e529ec6e498ae7fa75e801bad689f671b28ead5483153b5b59980420923789c6f79154fc2544c05665249e35e5c5c0e3125a2167493ce9efce260e8389fbde9d9d4ccdb10b873ea23d008cf0a5765b34c806aee58343bc7160e6af213015cc74400f1de0d51325e64a7ed9b7a390517291ebfef3bff73f25344460b5de0fe85877f8eb208a089cee6eda1a2bb97ac8f2accbfe2f1a8591a24ed801322cbb9bd5e4ae6d0de0391effc370923b225e59f7aa88cab909ec0534f63a97e68636066d25f4e9581c31b82d9fac7fc0a5dfb54d9109aeac55caf56e070322eae59fb4a4312c6bfbcfaf372f3645d48d1ac83969933f5dfaf67c340bd195b7b6122a9561b2e0185ff9cf380ed2cb4b4e7b25a9f23ae2e5fa89cd93fb4327041bb04bd399ab8c7918656b9b541f35a334f9dc0eb7b92c76c4a728850bbb45369dec9bdd8e876aee33926428c66398ee9e2d69a5ad17661565bc05911ee08857279a063e7594a03aaf8d5bf63cccb9ffc405477e0f0c43d31f96dd1cd36d6162c0be338a3eff3c5064f35f8b44ac47a084d50b26d83ec31fea768df6c0654d29b3ea78b59f6498cb194127f585bf666a6c7ab19a8a93733ca70b1cdfbe9cbc8ce073f737eb50bef8f8560e182cd34eeb43c7552fa2ad263af226dd4d828133c422f6c054b63dec32c2c903c4ddf2c87e6613ac9e421caf15d4e7531f68e1410eb49585f9fd572624f7955d4fedcaf0dff6945170eb9b6b01092036f5e7837eb704917f9d11b0e9e77d423cbf7d7925317818617ca2a778c8e1edd0c388f9c96f055f0d2ce30ce84a15353860e8658540c5b35d9b350d45dbdac0bd1ecaa6277a115b90e38ac703c46ee0940016f6e2332da18087f0f441f4bdc4b8a75fd4d0da91fb9f1e65a06140086457338207fba748968f26ac9910a399a1dd3f597aaacb3a70a3a8c4250c741b71b53023d0e24ddf3a35bd8d96038e4e5d0d99667c6e87aa823725ea99b15401ba21032a2d66642070c579d9c74fb2a8ef95334c613404b943bfad979b9856c50ab3cbbc6c9b5f8dadcfb2f1723c1b5d486aa603b6040aab11bf7272f079ad060e0652e2d9738c2102ff7da47621ef3ee3aa82462852d7662c9abea6e074c32d4ad8549593f33f5cd456cd2e2b5f863d48479ac6809c002707dd15addf1364888124fff9cede4679dd9876b0125ae340917944327e1d4b62f058cf4e2515a5d59a08bbe185f175f54705932e7dacfe5e2c748f534e0b0df379851a238d7d6a6a29600cc6957805d46e0a56c7821725f720f952eec73e8983e4640dae077744360dda93a2f26938e8942640b02a3a62202112c410bc2819e7d568bb522dc0b30baa533a66106c329ce20036223e7cc0eaeed704608b802722640b04690627b4a5f87ae9df8411c8d9c46a87ec6aab82dd52f1842109865f4a06535f279a3d455c854de0556a1070855cbc3a05f62d20b812edb4ef9f5663f0283adade636f1a453cfbc7658513969ecb5c4d6bdd1b76e9fa985ad5c96826261d390cfb0a6e125f310d259d9f0ef223c3a61f224ce4e85beb908dd14add82dc0fc795dde6375288add1571f335e03dfb461345ab9262ed60c9ff04f504cf60764d4274418652a408adbf1f8788f732654e627c1ac465f483aece90690048d64d19aed53bfdc3c5b3f91d1c87407f44ce17f991af3d35214e31c9549ca6c7a948987a107c3fe9952c42129cb02ef55bb685d69bfa4228e87b441b31f36fb0e3e3bf075e6937e75354212591c6c32d8bda18aa79d89b9b1668337c4648a5f5c397d6d3eacf8deb6f482832555135755897fc3d0f53b188ba25a2ea46cc3f1baf2bc82a6d3c75a2eead92607e255f386e4c5a214921e161809da7048389989ccda4e68f3d8f423e071adb644b77128e5c3f5d02a8f3715bb6ac9d700dba1a9aa13d346291fabf9eaf6524e736754c70e85db8d7c0bffd576462320177f620ab4307a630824df7c4369ae612584428fa9da6e21f24293ae92629825a2829488b68af36a9406d510ded07d2ae6b7d4d67e5afd584b0fbea32ccdc473d44fd5cf6af4a5b0cdce2099b8fc2d9f0e2b3b3051b19a1cb62eb4c24cb5d7537477d610d2df308280e72d0e8ca7e7c11848974ccf7c3892c8080db965a62ea501204af5c6cd21bf28bf14ddefcf3126dab6cdc337e05fce2d68e76b0ee8075693d18d2d3f3ae23b160ec5fe1425f59484c4d8f69eacf2f2b4d54098450db1ed9693728d15eaefca1b2ab9d2bc0074b45fdc5a62539144d6555e8486f1336331e74e4dc062fc275507b4cc7c7240a8ba3c7aec122f06d01d5c1f3cdca20dd4173e02cdb8c736c0a65bdf7b1a2aa341fa85ac9308a98f9cb7dee54046664df20946eeec68b5c7036b2cfca0b5fdc37fbdc3418186ac7a21129ce0ebbd6cba610b0c218557b27e2293263147112bdaaf2b83079de9af2f55ea1b76e44f7fb58c1dee5e683147c685c150ce93df02d791c94bfd07493737b568442d2d7c56b794d0c7a84d14a1a10725e677e43a049538006d85384f32a84ccaca1c9276f2c2dbd66095133857b17800c5f15770bdd3093121a6b0e2e897985beaba215475d877b8a3bbbfd724daad78d94843b5cd97201af9f2c65b4ac7659767a4d47b494f383918da2ba69bd0fe83834e3d4b7b73c698970a95a349e2b0084a32dd481edc6f5d17006ca714eb8976e113696bb78b23ebf99406549d8cd8e54879e59313f5238a232f265fe2f7e89090d30920c8140446c0b817c23cbb973dea54126c10b7aa808964eb3baa8fc05a2248dad6b3cf08e46260e893dd8e0b9e9f1616bd574efac6aaf512522a19926e0eeaf337b92e26b19220ee020ba5e88803f46d2641ab0d445be075bdd43a92497f193dfc5cc3e27b989c8ecb7faef95235a51b00f7d9191c404344a333e8591a88fab64b631061d9f1abd574f9f1de2e3f8ab3a43685268db8f7b793b2191a293317c8be0c6d9990014b088f436d6d6570d6f1b96bfc3c213b44e88d186c769e468c82b43a7a6612efe69d6386fb9f2bec6aa94c2382da5a6a1427d4ee3c1dc6071020e16e1460e411e0070b4417ee3e4c21abbe797978ba8f6c112c3f8d56f400024ca19388b973667d8179f127de3def1559fa642b45fb950e887ace54009ee2b6d084acc971e6fb75771a327a9d1c696f258cd497e636f73019bfcaae34577e1a203160993980633dfdbbd1b6d161434f315985bb276da08e99a3c91f111584b4aa6af9b158c085dd671238054d3f2a5ad6aab6bddefead1de43149a2321f937cb636eb96f4ac13ee2ce3c299c264917d4a2600ff3e403859ed2d3b8fb32eecc359c67bc85e727ab040fecb77816e5650841f75913e61385e5faa205a9353dd5501065ea3fca9a663842b35652740aad8f375871640d6a8032ef524ff0c651d33eb671f3cb3fc012b07006c86880880286496c9e5cd14afc1b72bd5e180b7769fe77945a98472bd55c75be3a514ce98d48d85e0dbb1d24d92142d4aefab518c2c60d57e2ac3dcf63ab1d25d7e5c5ad1cffeff510c1688e7682c8bf5cbf17e3fd2dadd080873efcafd84b74c93837cc153ad442684236cbf899dd0b3ca4762445c6ff97d89f1e825b850c65f604d0b799720cb22a431e22571091191f85f6f8805219a79bfa2415f95b1c1cf4540d135aa2a1d85d66dafa12640570d5507c15f84a4f34427b", 0x1000, &(0x7f0000001000), &(0x7f0000001040), &(0x7f0000001080)="8c32407c72359f9ab61790caa52e06e15296dc0f077945cd0e3581cc6fdb719df5929acc8f8f86608df77b04cecfb06c8039e8fa03b61246695f8f042728d7818e6f31d4befd0d811ec35ba7cf3c8cec92976afcb1048e661046375ce5fa8410a993356f19e7859437571cabfb7a5e2efb86a436b5b2b98c80056eea1b8eaf5ab28da1b87cc2568845848852df12e0f901e7b44537af2a16d13c1f02868ee637093d3fa4dafeb81445670c3035bec29c4449397837f1df540cceff799da410") 14:44:56 executing program 2: perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x1, 0x47, 0x1f, 0xff, 0x0, 0x3566, 0x8, 0xa, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0xb) 14:44:56 executing program 3: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r0, 0x58, &(0x7f0000000140)}, 0x10) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0xb, &(0x7f0000000280)=@raw=[@btf_id={0x18, 0x3ede05996ad0d327, 0x3, 0x0, 0x2}, @map_idx_val={0x18, 0x6, 0x6, 0x0, 0xd, 0x0, 0x0, 0x0, 0x7}, @jmp={0x5, 0x0, 0x1, 0xb, 0xa, 0x10, 0xfffffffffffffffc}, @map_idx_val={0x18, 0x3, 0x6, 0x0, 0x9, 0x0, 0x0, 0x0, 0x6}, @ldst={0x1, 0x1, 0x3, 0x1, 0x8, 0xfffffffffffffff0, 0xfffffffffffffff0}, @map_val={0x18, 0xd, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0xd9}, @exit], &(0x7f0000000300)='syzkaller\x00', 0x9, 0x0, &(0x7f0000000340), 0x41100, 0x9, '\x00', 0x0, 0x25, r0, 0x8, &(0x7f0000000380)={0x9, 0x5}, 0x8, 0x10, &(0x7f00000003c0)={0x3, 0x5, 0x81, 0x7fff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)=[r0, r0, r0, r0, r0, r0, r0, r0, r0]}, 0x80) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) syz_clone(0x1c000000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:56 executing program 0: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r0, 0x58, &(0x7f0000000140)}, 0x10) syz_clone(0x1c000000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:56 executing program 4: syz_clone(0x9800000, 0x0, 0xf5ffffff00000000, 0x0, 0x0, 0x0) 14:44:56 executing program 5: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000100)={0xffffffffffffffff, 0x1, 0x0, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], 0x4}, 0x20) openat$cgroup(r1, &(0x7f0000000080)='syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0xc, 0x0, 0x0, 0x0}, 0x20) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000040)={@cgroup=r0, 0xffffffffffffffff, 0xa}, 0x10) 14:44:56 executing program 2: perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x1, 0x47, 0x1f, 0xff, 0x0, 0x3566, 0x8, 0xa, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0xb) 14:44:56 executing program 0: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) syz_clone(0x1c000000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:56 executing program 3: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r0, 0x58, &(0x7f0000000140)}, 0x10) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0xb, &(0x7f0000000280)=@raw=[@btf_id={0x18, 0x3ede05996ad0d327, 0x3, 0x0, 0x2}, @map_idx_val={0x18, 0x6, 0x6, 0x0, 0xd, 0x0, 0x0, 0x0, 0x7}, @jmp={0x5, 0x0, 0x1, 0xb, 0xa, 0x10, 0xfffffffffffffffc}, @map_idx_val={0x18, 0x3, 0x6, 0x0, 0x9, 0x0, 0x0, 0x0, 0x6}, @ldst={0x1, 0x1, 0x3, 0x1, 0x8, 0xfffffffffffffff0, 0xfffffffffffffff0}, @map_val={0x18, 0xd, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0xd9}, @exit], &(0x7f0000000300)='syzkaller\x00', 0x9, 0x0, &(0x7f0000000340), 0x41100, 0x9, '\x00', 0x0, 0x25, r0, 0x8, &(0x7f0000000380)={0x9, 0x5}, 0x8, 0x10, &(0x7f00000003c0)={0x3, 0x5, 0x81, 0x7fff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)=[r0, r0, r0, r0, r0, r0, r0, r0, r0]}, 0x80) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) syz_clone(0x1c000000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:56 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x1, 0x47, 0x1f, 0xff, 0x0, 0x3566, 0x8, 0xa, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:56 executing program 4: syz_clone(0x9800000, 0x0, 0x900000000000000, 0x0, 0x0, 0x0) 14:44:56 executing program 0: bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) syz_clone(0x1c000000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:57 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x4000, &(0x7f0000000000)="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", 0x1000, &(0x7f0000001000), &(0x7f0000001040), &(0x7f0000001080)="8c32407c72359f9ab61790caa52e06e15296dc0f077945cd0e3581cc6fdb719df5929acc8f8f86608df77b04cecfb06c8039e8fa03b61246695f8f042728d7818e6f31d4befd0d811ec35ba7cf3c8cec92976afcb1048e661046375ce5fa8410a993356f19e7859437571cabfb7a5e2efb86a436b5b2b98c80056eea1b8eaf5ab28da1b87cc2568845848852df12e0f901e7b44537af2a16d13c1f02868ee637093d3fa4dafeb81445670c3035bec29c4449397837f1df540cceff799da410") 14:44:57 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x1, 0x47, 0x1f, 0xff, 0x0, 0x3566, 0x8, 0xa, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:57 executing program 3: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r0, 0x58, &(0x7f0000000140)}, 0x10) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0xb, &(0x7f0000000280)=@raw=[@btf_id={0x18, 0x3ede05996ad0d327, 0x3, 0x0, 0x2}, @map_idx_val={0x18, 0x6, 0x6, 0x0, 0xd, 0x0, 0x0, 0x0, 0x7}, @jmp={0x5, 0x0, 0x1, 0xb, 0xa, 0x10, 0xfffffffffffffffc}, @map_idx_val={0x18, 0x3, 0x6, 0x0, 0x9, 0x0, 0x0, 0x0, 0x6}, @ldst={0x1, 0x1, 0x3, 0x1, 0x8, 0xfffffffffffffff0, 0xfffffffffffffff0}, @map_val={0x18, 0xd, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0xd9}, @exit], &(0x7f0000000300)='syzkaller\x00', 0x9, 0x0, &(0x7f0000000340), 0x41100, 0x9, '\x00', 0x0, 0x25, r0, 0x8, &(0x7f0000000380)={0x9, 0x5}, 0x8, 0x10, &(0x7f00000003c0)={0x3, 0x5, 0x81, 0x7fff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)=[r0, r0, r0, r0, r0, r0, r0, r0, r0]}, 0x80) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) syz_clone(0x1c000000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:57 executing program 0: syz_clone(0x1c000000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:57 executing program 5: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000100)={0xffffffffffffffff, 0x1, 0x0, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], 0x4}, 0x20) openat$cgroup(r1, &(0x7f0000000080)='syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000040)={@cgroup=r0, 0xffffffffffffffff, 0xa}, 0x10) 14:44:57 executing program 4: r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x9, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0xffffffa8}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0x5}, @ldst={0x1, 0x1, 0x3, 0xb, 0x0, 0x50, 0x10}, @initr0={0x18, 0x0, 0x0, 0x0, 0x554, 0x0, 0x0, 0x0, 0xe9a}, @alu={0x4, 0x0, 0x1, 0x0, 0x1, 0x50, 0xfffffffffffffff0}]}, &(0x7f0000000080)='syzkaller\x00', 0x800, 0x6c, &(0x7f00000000c0)=""/108, 0x41000, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000140)={0x3, 0x5}, 0x8, 0x10, &(0x7f0000000180)={0x2, 0xe, 0x7, 0x4}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[0xffffffffffffffff]}, 0x80) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r0, 0x0, 0x31, 0x20, &(0x7f0000000280)="5143314927fda177935969e4f9d1409b742d2a549b73285de495b3d200195ab468e4bbde74c1e3547d75117c407dfa4feb", &(0x7f00000002c0)=""/32, 0x5, 0x0, 0x6a, 0x6, &(0x7f0000000300)="1422e697b2db1ad1032ead405570b9a17f7b31364d47821a3d0c639202bc25691585baf7005a8051cd9dde45f8d58ed4cf9401f266641e7f2234ded5f582e0fa168a82ae989982411509f63f671efb460c122d92cccd34e5642cf1d892ceeb268f59e18f68ee6b36046a", &(0x7f0000000380)="bf9fffd4c5d4", 0x0, 0xfffffffc}, 0x48) bpf$MAP_CREATE(0x0, &(0x7f0000001140)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2}, 0x48) syz_open_procfs$namespace(0xffffffffffffffff, 0x0) 14:44:57 executing program 0: syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:57 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x1, 0x47, 0x1f, 0xff, 0x0, 0x3566, 0x8, 0xa, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:57 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(0x0, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:57 executing program 3: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r0, 0x58, &(0x7f0000000140)}, 0x10) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0xb, &(0x7f0000000280)=@raw=[@btf_id={0x18, 0x3ede05996ad0d327, 0x3, 0x0, 0x2}, @map_idx_val={0x18, 0x6, 0x6, 0x0, 0xd, 0x0, 0x0, 0x0, 0x7}, @jmp={0x5, 0x0, 0x1, 0xb, 0xa, 0x10, 0xfffffffffffffffc}, @map_idx_val={0x18, 0x3, 0x6, 0x0, 0x9, 0x0, 0x0, 0x0, 0x6}, @ldst={0x1, 0x1, 0x3, 0x1, 0x8, 0xfffffffffffffff0, 0xfffffffffffffff0}, @map_val={0x18, 0xd, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0xd9}, @exit], &(0x7f0000000300)='syzkaller\x00', 0x9, 0x0, &(0x7f0000000340), 0x41100, 0x9, '\x00', 0x0, 0x25, r0, 0x8, &(0x7f0000000380)={0x9, 0x5}, 0x8, 0x10, &(0x7f00000003c0)={0x3, 0x5, 0x81, 0x7fff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)=[r0, r0, r0, r0, r0, r0, r0, r0, r0]}, 0x80) syz_clone(0x1c000000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:57 executing program 0: syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:57 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(0x0, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:57 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, &(0x7f0000000000)={'veth1_vlan\x00', 0x200}) 14:44:57 executing program 0: syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:57 executing program 3: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r0, 0x58, &(0x7f0000000140)}, 0x10) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) syz_clone(0x1c000000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:57 executing program 5: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000100)={0xffffffffffffffff, 0x1, 0x0, 0x4, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], 0x4}, 0x20) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000040)={@cgroup=r0, 0xffffffffffffffff, 0xa}, 0x10) 14:44:57 executing program 4: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x22, 0x0, 0x0, 0x0}, 0x20) perf_event_open(&(0x7f0000000580)={0x5, 0x80, 0xa, 0x7f, 0x8, 0x0, 0x0, 0xf4a, 0x0, 0x4, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_bp={&(0x7f0000000540), 0x3}, 0x808, 0x8, 0x7, 0x6, 0x5, 0xfffffffe, 0x100, 0x0, 0x1, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) 14:44:57 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(0x0, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:57 executing program 0: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) r1 = openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) r3 = syz_clone(0x9000, &(0x7f0000000180)="5e9abc038f7ed211fb2978b967e6fc455a976b058cd60a3a0f3c805d1f7827452d683ced4cb0b77bb3ce4e7f40aa474b7654b1cbafbe38bd634e8df2fd14fd637a292cb8f6ec2412e07b1898b5beaca8b1b49c4370fc35d463d4899e99dbd959de7030e69da820ebc5e72e281baa07e3f92335aec7ab448d77adebc0b8da31015ca361da2775f6c91e7033d28ffcddfb6edb39ed03309bd54ef16a28631380b09ae074d9832320066a8cc11d3d361ec4890964430ee852", 0xb7, &(0x7f0000000240), &(0x7f0000000280), &(0x7f00000002c0)="cfda4fc1cb85a8127e380ee2d146feb71c853763f645a27f5fa91ef9bd520ac5cc348f1191e9b2332d8da65d9f74dc85eebf9384d6ef3aedf050db8f9520af6a8b3fcfff99c3c546a0b1a0f669ad3fc423a8b20ca70865dbd1e0d1da5841b03245377f4f447e3ad8efefca39f767c123b05ac2") bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000380)={r3, r1, 0x0, 0xe, &(0x7f0000000340)='./cgroup/syz0\x00'}, 0x30) openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={r2, 0x58, &(0x7f00000000c0)}, 0x10) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={r0, 0xf, 0x1, 0x0, 0x0}, 0x20) 14:44:57 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x47, 0x1f, 0xff, 0x0, 0x3566, 0x8, 0xa, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:57 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x1f, 0xff, 0x0, 0x3566, 0x8, 0xa, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:57 executing program 3: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r0, 0x58, &(0x7f0000000140)}, 0x10) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) syz_clone(0x1c000000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:57 executing program 4: syz_clone(0x9800000, 0x0, 0x100000, 0x0, 0x0, 0x0) 14:44:57 executing program 5: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000040)={@cgroup=r0, 0xffffffffffffffff, 0xa}, 0x10) 14:44:57 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, &(0x7f0000000000)={'veth1_vlan\x00', 0x200}) 14:44:57 executing program 0: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) r1 = openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) r3 = syz_clone(0x9000, &(0x7f0000000180)="5e9abc038f7ed211fb2978b967e6fc455a976b058cd60a3a0f3c805d1f7827452d683ced4cb0b77bb3ce4e7f40aa474b7654b1cbafbe38bd634e8df2fd14fd637a292cb8f6ec2412e07b1898b5beaca8b1b49c4370fc35d463d4899e99dbd959de7030e69da820ebc5e72e281baa07e3f92335aec7ab448d77adebc0b8da31015ca361da2775f6c91e7033d28ffcddfb6edb39ed03309bd54ef16a28631380b09ae074d9832320066a8cc11d3d361ec4890964430ee852", 0xb7, &(0x7f0000000240), &(0x7f0000000280), &(0x7f00000002c0)="cfda4fc1cb85a8127e380ee2d146feb71c853763f645a27f5fa91ef9bd520ac5cc348f1191e9b2332d8da65d9f74dc85eebf9384d6ef3aedf050db8f9520af6a8b3fcfff99c3c546a0b1a0f669ad3fc423a8b20ca70865dbd1e0d1da5841b03245377f4f447e3ad8efefca39f767c123b05ac2") bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000380)={r3, r1, 0x0, 0xe, &(0x7f0000000340)='./cgroup/syz0\x00'}, 0x30) openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={r2, 0x58, &(0x7f00000000c0)}, 0x10) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={r0, 0xf, 0x1, 0x0, 0x0}, 0x20) 14:44:57 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0xff, 0x0, 0x3566, 0x8, 0xa, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:57 executing program 5: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000040)={@cgroup=r0, 0xffffffffffffffff, 0xa}, 0x10) 14:44:57 executing program 3: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r0, 0x58, &(0x7f0000000140)}, 0x10) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) syz_clone(0x1c000000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:57 executing program 4: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0xb, 0x0, 0x0, 0x0}, 0x20) openat$cgroup_procs(r0, &(0x7f0000000040)='cgroup.threads\x00', 0x2, 0x0) 14:44:57 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3566, 0x8, 0xa, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:57 executing program 4: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0xb, 0x0, 0x2000000, 0x0}, 0x20) 14:44:57 executing program 5: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000040)={@cgroup=r0, 0xffffffffffffffff, 0xa}, 0x10) 14:44:57 executing program 3: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r0, 0x58, &(0x7f0000000140)}, 0x10) syz_clone(0x1c000000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:57 executing program 0: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) r1 = openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) r3 = syz_clone(0x9000, &(0x7f0000000180)="5e9abc038f7ed211fb2978b967e6fc455a976b058cd60a3a0f3c805d1f7827452d683ced4cb0b77bb3ce4e7f40aa474b7654b1cbafbe38bd634e8df2fd14fd637a292cb8f6ec2412e07b1898b5beaca8b1b49c4370fc35d463d4899e99dbd959de7030e69da820ebc5e72e281baa07e3f92335aec7ab448d77adebc0b8da31015ca361da2775f6c91e7033d28ffcddfb6edb39ed03309bd54ef16a28631380b09ae074d9832320066a8cc11d3d361ec4890964430ee852", 0xb7, &(0x7f0000000240), &(0x7f0000000280), &(0x7f00000002c0)="cfda4fc1cb85a8127e380ee2d146feb71c853763f645a27f5fa91ef9bd520ac5cc348f1191e9b2332d8da65d9f74dc85eebf9384d6ef3aedf050db8f9520af6a8b3fcfff99c3c546a0b1a0f669ad3fc423a8b20ca70865dbd1e0d1da5841b03245377f4f447e3ad8efefca39f767c123b05ac2") bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000380)={r3, r1, 0x0, 0xe, &(0x7f0000000340)='./cgroup/syz0\x00'}, 0x30) openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={r2, 0x58, &(0x7f00000000c0)}, 0x10) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={r0, 0xf, 0x1, 0x0, 0x0}, 0x20) 14:44:57 executing program 5: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000040)={@cgroup=r0, 0xffffffffffffffff, 0xa}, 0x10) 14:44:57 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, &(0x7f0000000000)={'veth1_vlan\x00', 0x200}) 14:44:57 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xa, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:57 executing program 4: syz_open_procfs$namespace(0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) ioctl$TUNSETSTEERINGEBPF(r2, 0x800454e0, &(0x7f0000000100)=r1) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000000c0)='ns/net\x00') openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) openat$cgroup_procs(r1, &(0x7f0000000000)='tasks\x00', 0x2, 0x0) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) close(r0) openat$cgroup_type(r1, &(0x7f0000000080), 0x2, 0x0) 14:44:57 executing program 3: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) syz_clone(0x1c000000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:57 executing program 5: bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000040)={@cgroup, 0xffffffffffffffff, 0xa}, 0x10) 14:44:57 executing program 0: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) r1 = openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) r3 = syz_clone(0x9000, &(0x7f0000000180)="5e9abc038f7ed211fb2978b967e6fc455a976b058cd60a3a0f3c805d1f7827452d683ced4cb0b77bb3ce4e7f40aa474b7654b1cbafbe38bd634e8df2fd14fd637a292cb8f6ec2412e07b1898b5beaca8b1b49c4370fc35d463d4899e99dbd959de7030e69da820ebc5e72e281baa07e3f92335aec7ab448d77adebc0b8da31015ca361da2775f6c91e7033d28ffcddfb6edb39ed03309bd54ef16a28631380b09ae074d9832320066a8cc11d3d361ec4890964430ee852", 0xb7, &(0x7f0000000240), &(0x7f0000000280), &(0x7f00000002c0)="cfda4fc1cb85a8127e380ee2d146feb71c853763f645a27f5fa91ef9bd520ac5cc348f1191e9b2332d8da65d9f74dc85eebf9384d6ef3aedf050db8f9520af6a8b3fcfff99c3c546a0b1a0f669ad3fc423a8b20ca70865dbd1e0d1da5841b03245377f4f447e3ad8efefca39f767c123b05ac2") bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000380)={r3, r1, 0x0, 0xe, &(0x7f0000000340)='./cgroup/syz0\x00'}, 0x30) openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={r2, 0x58, &(0x7f00000000c0)}, 0x10) 14:44:57 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:57 executing program 5: bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0) 14:44:57 executing program 4: syz_open_procfs$namespace(0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) ioctl$TUNSETSTEERINGEBPF(r2, 0x800454e0, &(0x7f0000000100)=r1) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000000c0)='ns/net\x00') openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) openat$cgroup_procs(r1, &(0x7f0000000000)='tasks\x00', 0x2, 0x0) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) close(r0) openat$cgroup_type(r1, &(0x7f0000000080), 0x2, 0x0) 14:44:57 executing program 3: bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) syz_clone(0x1c000000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:57 executing program 5: bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0) 14:44:57 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:57 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = gettid() write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000000)=r0, 0x12) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000001200)={&(0x7f0000000040)="b78eeb10cb343979fc6091319cd3c625475844346cc43c899855198240fe3f590f7be5e5d1c81a1688b717b603723271bb374008ec8196dc0b528bcd36289c41bdf4c187ddfb1d7babd8173a622c2a541c43079bc0083d06f656d1da0eccfce3dc9fd83a3924f6501c14895682552c2a3633cbb0c211665a6185665933701bf421c7b6fe4b1db31802c3648584cc829d28525b94d99c47ab860e641c6e79a03de2456f5cdd17271fa55ec02745657a1e5740a0981a62e69fb6c95e7fadc1b1c6ff8ea61b1245971990ad62243c74a0b6d86bcab20aee0a971aa49773b402035a713a3d8661aeb29ed6bc208d13e9f0ff72a5befbf5f2ca456a9683e91e625d0a345240fa0b42b21261f8ba19e8cd4e377cb12aa2dd8c0c79e116fda6bb8b8fe4c9a493551a40b1d9c2ff64a8cf064f5c0ee27cb5c3e17535af4393225e55ccabdfb2f7bf9f5ba2fd1d72c76a76b8a7e4fe4683a6d2cef0c0f1536be2291bc6739e3c17fe3d98ca6ac6360ebfa18c062f0e29c8016beaaf94f86f0eda89bc0a8341b57f2b58fb5a533f77c23030201d653da0fff6d0c08cdb973f14f85a89ed946bf984eb59f5ccae435261e732b3f3f00e4df2061f1ef8d6ae90a59bc849d4bf420a37607e9d871d5e59ee0cb5086c4e20d64d0ffdc1fcb68d90a9502dd3889cd1dff4d92c462466a281750093d62e802245c3996b8fb7ea0c9517cb5712e92fd53f3b3de719b80de14a06f92e9c6487bac41113043b985d31b628bddd2793ca67f2258dd5bb122c1fd9b4807eafe3894a2bfb641c2d2309759c6717ce3d1557879c2acaf37ea15954d932ef059c3e4a2bcd73f6a1ffb6e7b61dc1223009795e73ea574eda0b48ec20838407b6f0410dcce27184c27a2163bfe0b94fbee1e515aaf40e99c98601384c0f26114cbc2dc5ba81bd6baceed766a6ca45f959cc61da59ff27ddf1ed3c37b3ae79772485de0ad8739544f496fbc205152d6fb32f96cf90e7872b2a156e14ea38e727f0f4730af20dbbf972e4f7e8a2c5b2227dd0fc8e16d6d5992db1dafe7af1152e1daf71b0ef2d73ce7573f2ab74079ee37a341410c591a2a0b193ae5d49cdbd5c31d131407076d855a0cdb96fd73fcab3badf62641661e023599b54280b93da65327ddd6c3531a42f7ce0522dd1b64d6983810a54c388b25d13ceccf9c6952a7b01bf3c87fd469720bdbec40cf0d8c3505262a6739d6bc77f39541117df7037aaef7f40f6109d8c34dbe6852a021d293f9346d40bb15f388bc47453e462248888550d3df3f727a9d27b3fbbb07bdf31846719680d78b2415dc74eebf4d96e34bbb200b16021dca5f9ace1ae2d8b1e91a293ebf97c47f071d2dcbf00c2f914d4cefbb95ea5f958e8f316daaa6784f81270e4fb77b4bf723813f4cc38365f65f6e2429a353a2e15cca55ab98c713e8fe970b80a44dcaa7318cdc3422236fed6eed0976d25225eb898c1bea9695deeee6885a50591734ba7d656f227ea18c8c54c7fbc272d823a6370dee55552e1b8b5e40739ba1aaf4b2a0bd176a046f5ae46b7e03fb1012d9987221eeccbb8d88fdd61828deaee11c738847e3a75cba657f6d2f1edb6e96037ae7fccbad1b243ce082e14d18249a7e8352a61f0ee12a403b79ea7ef77cf1f37adc454b9e87dc981ca3b57c56a65c58f22f29d501d98108aaece3720a66393daeca9e25d7d36a1119b9065c42b5f244a782b7f04f4cecfb00f264893d5f8c55eb874344cfe22c0a2b26393afe0cf099907f2b2791713f676aa0a5f2d12c132367ddee501cc33df00a55e4fafa3758f3a56f3be9396f13f20b7060ef696151d503fb80d63be04274b2b46a2002d3cb609e6e3c3d62dbe5496d51658791910848106a0483bea0f8ddd7ae7c950b9b544590ffc9e90c054ccd3cee301b7ab6b0adcbff88144684cbbfc4d29311553c2c7be3b27d3b19b2802a54c399353be2b5e87a08e244cf3e4a2e521aa8cd04f1b00c218d2d9680ef9bdd6a96e6192afee7fd98d65a642421be35b50202129facb93a7e90ad72386e2435fab453c1601f2620b2742af5c152989e94efe219ac61900ffa26be2376e95151248457fe4052170c1d6ac0666891fd0edda4fba8e67e0aa25974439a89fe284e42b3ab8a1edd4c73043da6df134c88ed5a72e7278951f39e578dba533edc00d4d356010506004966cdf4f9fa042c37d5eb25a9af9ef125c0ec21195cc6481fd3c20fa415c5fd2350ff1d9fa9d8094424da846fb54f1cecff6ba1a951574206ff3d45d296486f4e45a25b556571d32935cbc3e9b0cfc87167ef48cbbc3679f4a91eb1ec09f3b76217f57fce67d1bf917f10ed1de98e53276055ef6814b370bad6832a166b4fed2556333f7b72fbaefb272bbb0a81cad5e3aa9e55edc478838ca2a13315fd32b27651ac907f7a2dc5f7120c12dd3270513ba9a8fa67d2427bb817fbb40ecd8842751af7f6f25b4e9b2631e405d17012dad0aa6ec389cf5782e23878b823f315d871758e9ecfe222669634f2082ff2306b263e923e12a8a8a45523ca4df4e18dc29fa258e5b3823698ed2a8dd9a253cb0854e0e975f54936e11748c85fbee6ff2b5711582f65e93ee2523b09fb3a9222b686c3d01a45212b1770aec5708730e1523044dd49f1c614953201451230ccdd9162e3a4de449ec495d524b63cb3531221ad8553602f07ac88fea75d78d1eeedcf18007631ad3143b6f8fec07674bf8a869b47da5a6326b5ac4e9284ffcf22069432b655fd187788487c38155bd685387b73af9a267a34493433417534547b396f2e6a1429db993cbde05bd5a54819252639b5a28b4f27009c9a1a22947113cf384e9698159d733aea7890c8da2f0c6f0ac86970b937adf105c8a73a7adac39fdf02e0163c00f840469c80f945c99011668be8b2cd23d40b4132ea13bc5791531dd299d917192a7b87fa11bee5c7e2a5e204725bb9ec5deb33fff4edc3f89554f9cda095abc9efe7673094eea585497f7f299b0176f9587da3f4cb21bc980092e4f097c297ad3092256a1567562746dd170820e8aec848cb0c6bb05a6fdc524447e289a67cbcf55fbc6cb0a6f19e97dc1120172e05db854a87ebc383203bb3cc678606e983abca78bcab7bd85796078144d9d511bb629a4aa17e37fc0f0ca65db9d352f865d2a0ae4ddd51f3514e4822ab7713d9e281ad58ce2cf138e39ed67c5c869f951a9ff2a7cb731d34390fb100e49e71c6139889123601944bd35be9e252b566cf6e7db0317da869ea50781d761620bf8095a62ebe3758a893d68839e15d0034e31a9f764fc3593e9e1289dfd3c828ca80cb6257c591c9ee179065eacd768c6345d57933e0dd6c78ad11b70e7dd67f4c3f558dec467dac229d1ea7c5a4a5bdbbc9142f920cc2d7cf1926ae15d32287597d7619d3c98f4fe7ef19a9f24f3207e1a6dde80f39e25534000946cb7dab594ab90c65fbd7a1e766bbe193c14e62d500216337069cbb36a1440a611d060cbc6340db49c05fbacde09e192473a8e4387eb3565a37301fd62464bf522ec7fb3f36c3176d8f39ace53acad5402c174aabed558723c56451cced77ada3196d079460fa083145aef66df81d035b065533aae47eee8b10c18e6e26f01268945555f24f8d3992c6f474cf2dae3edbb17c948044d96c3ee2dc9e832e5ddbffad602b02a2b02241a012e9dd7bc31f264908126ec0d02e3ead323e2292b8369cc4f585e00d2c7d837a49a974a6e387d556dd80c68578404dce22e2fe957866aeb93c309e6088fcf83ad33fbcfb8b60b7f133a5cc606096a0955bc3910eddb6fc5fd453a4539b832bd33329d7330808aeabc53b4beee672fc4d631836d61c312b0330780de6871acbb4ba9186685dec0af401f6948efafe0bdbe5b9c02536c550019aa115211d7baf1543abd020843101a666aa74e5a3800cbd4ba65d9c2c696d1c4d3751c9f3310c7e5d4025401da3517f80e30e7de4a5d2ba024a62465fb30aec5b2f08ccafe178d5b24fc66a260cc8b64e38b8fab56fea4104d1c6c27eec870e5cf3b86a276b0987b1098fcc11eca26bf9f6baa7cd5024e97b860711b4d2d0273d968434d468b750d343d27e7614207f27aaecbf7baa2dc4e7f2135f076ba54b6d0e30571b2e7efbf58b9b927bf0a090063c65717b187337fe3c7e4b0e05408bc96c605d2bc2ee663725a1b89f33a1c9d660c6fa3914c71ca09f928454bf171c7234778b44646f42bb0f4ad3e4b406dfb8ee33d6fab6bcc88792609f8f0c01de269940120504c1d56b35a1bf3ee0b7af339282bbff058ae90798dfe039cb0c7f41cfe52de2098be45f330d097dc02abb8f2237832d3a37a92993f1794a7ec0677c3d565f593e662264c03b005f7426b3d093adbc230a18a8f588742b19782b80b18d6f8c1212ef23edfa0c9197bf189e4908e10de15b207de97de6f769c5060f738e57b4b00ea5d3dfd97e24151fe9256ad88b03136f8978df416ac290dea875d529fa79e91e711239b71fc19dd32d11effd4309b34a015b9a88b9e97e7b9e00cb18ef25a3ccb88621dbb8315a345e58ae382d407b6a6020a469c869ff3c08974fc66df367bc8f10b62546861c2a15f49d38c9ffcb82229225b9a4b33a937d3300474ebcc3e2e19008348dec0046fd3583e2f9b0a8a5aa2d98fc348f663b409c02e7e62e4f2ae8ce02dedbd7e8e876c1aa8dbedba0ee56ef0c9609194a98d36b238d08beade8eef23ab00c5f555572c26e10bc414d651a5bec34f561d5bf85b154e5b4cb37c22f5c54c5b8f86c2b1e822b2663130c1ed02aca4b9638faf4db65c5aac2d43efdc98dce0ebe04aacb3486f2820c4c5a82b8a81e421fcdd7200c345463953ae49c353bc895ab90cf5994e6ae9e14afd9d35f85f3f0799ebe14d18a15a8577a64ccd1b2552a44dbc610d797f785c0ac75c8a6340c38fd7d143a6b8bef326d01b922bb436476d83e7e1fbb20423c75e99d95717702d9844df1b17582f2dd8fd51e3a8e281db15c10b3eb23837f75b8c9c5472aefcc768f9bf140c2c691e4302583871bd1434aa4d3b307f516fcc9d21f430637996da5632096fff4e9062218f330002111ee4779eddd41788c495763f3655ab16684ab5f9b5b6733a96bae22b1561f3a75819de434528d6eb943e791b3d0b2ab26e524b5f2c3789a60521054551c98033f5dc75503f925a06a87fd3df00e7696f321bf8808737b22b0b458d1557ab0b52d7859527f41fdd3dcd7f22fc8350d453ac43cc0c518fada56641e1a26c2b8f74d8ff082015dc6b32a82f6b638c5953abb303c11be90cc204b265f3a70bb2bac861d7a5d128cfd5fc6647a35807132ab9a84df39791d2695904a3ca66ef81eb7bb3e229b12111ed3657045e7332f2f8618b0c79aca8c41ebfe9c5e9b6c868dcd5cbb74b7e9c05f9970fecf24bb8fe3b7b03b1ba4a41fcbaf44dd6acd49dbc226fdbea42b7f5abce49221c021d475529246db830aa4814a8478c3981427e656eab9ab12875fd2589cb79c556edb66f03cd361c61d5a6f932961a13a05d0deb980be05b10caedb4a3a44ee00ebf53363771fc566e09faccc80d3f780bbdbe8fd68d1a32e1edd6df63d80c1709a2eba850ca1526dcb283ec7bf38c28ccd678a54599a007d353ce0377d058cc721264592e3b19916398d06393c78c555caf5369f22f8c9fe40cc79c54322cd229b850363d3cac83d4834429931a43a09a52a2ca66e6430207008c2b20d342e6eec70325794ababa7b14936e2a8e91dc7c05bf000d1db3305a360eb63e9e3745d0b1", &(0x7f0000001040)=""/204, &(0x7f0000001140)="8e1cc142bdb88a36bd0edde4b372c27134a22b3cafbe18153446adf5d4929d742e22d20d03fe76fa1a5301f038aa00827a3be9fa4cdf3ee8c61d97f0136b7302aae88a0a51f3eabdc8ae26272d1801e16a9d06264aa163b835948e", &(0x7f00000011c0)="e6368e1a3aec0234066f6f42bf5548565573f54bde11558da2b5b841126aa63fd7d02b96a34919fa93ef431f03df", 0x59, 0x1, 0x4}, 0x38) 14:44:57 executing program 4: syz_open_procfs$namespace(0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) ioctl$TUNSETSTEERINGEBPF(r2, 0x800454e0, &(0x7f0000000100)=r1) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000000c0)='ns/net\x00') openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) openat$cgroup_procs(r1, &(0x7f0000000000)='tasks\x00', 0x2, 0x0) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) close(r0) openat$cgroup_type(r1, &(0x7f0000000080), 0x2, 0x0) 14:44:57 executing program 5: bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0) 14:44:57 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:57 executing program 3: syz_clone(0x1c000000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:57 executing program 0: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) r1 = openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) r3 = syz_clone(0x9000, &(0x7f0000000180)="5e9abc038f7ed211fb2978b967e6fc455a976b058cd60a3a0f3c805d1f7827452d683ced4cb0b77bb3ce4e7f40aa474b7654b1cbafbe38bd634e8df2fd14fd637a292cb8f6ec2412e07b1898b5beaca8b1b49c4370fc35d463d4899e99dbd959de7030e69da820ebc5e72e281baa07e3f92335aec7ab448d77adebc0b8da31015ca361da2775f6c91e7033d28ffcddfb6edb39ed03309bd54ef16a28631380b09ae074d9832320066a8cc11d3d361ec4890964430ee852", 0xb7, &(0x7f0000000240), &(0x7f0000000280), &(0x7f00000002c0)="cfda4fc1cb85a8127e380ee2d146feb71c853763f645a27f5fa91ef9bd520ac5cc348f1191e9b2332d8da65d9f74dc85eebf9384d6ef3aedf050db8f9520af6a8b3fcfff99c3c546a0b1a0f669ad3fc423a8b20ca70865dbd1e0d1da5841b03245377f4f447e3ad8efefca39f767c123b05ac2") bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000380)={r3, r1, 0x0, 0xe, &(0x7f0000000340)='./cgroup/syz0\x00'}, 0x30) openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) 14:44:57 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:57 executing program 4: syz_open_procfs$namespace(0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) ioctl$TUNSETSTEERINGEBPF(r2, 0x800454e0, &(0x7f0000000100)=r1) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000000c0)='ns/net\x00') openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) openat$cgroup_procs(r1, &(0x7f0000000000)='tasks\x00', 0x2, 0x0) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) close(r0) 14:44:57 executing program 3: syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:57 executing program 0: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) r1 = openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) r3 = syz_clone(0x9000, &(0x7f0000000180)="5e9abc038f7ed211fb2978b967e6fc455a976b058cd60a3a0f3c805d1f7827452d683ced4cb0b77bb3ce4e7f40aa474b7654b1cbafbe38bd634e8df2fd14fd637a292cb8f6ec2412e07b1898b5beaca8b1b49c4370fc35d463d4899e99dbd959de7030e69da820ebc5e72e281baa07e3f92335aec7ab448d77adebc0b8da31015ca361da2775f6c91e7033d28ffcddfb6edb39ed03309bd54ef16a28631380b09ae074d9832320066a8cc11d3d361ec4890964430ee852", 0xb7, &(0x7f0000000240), &(0x7f0000000280), &(0x7f00000002c0)="cfda4fc1cb85a8127e380ee2d146feb71c853763f645a27f5fa91ef9bd520ac5cc348f1191e9b2332d8da65d9f74dc85eebf9384d6ef3aedf050db8f9520af6a8b3fcfff99c3c546a0b1a0f669ad3fc423a8b20ca70865dbd1e0d1da5841b03245377f4f447e3ad8efefca39f767c123b05ac2") bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000380)={r3, r1, 0x0, 0xe, &(0x7f0000000340)='./cgroup/syz0\x00'}, 0x30) 14:44:57 executing program 5: bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000040), 0x10) 14:44:57 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:57 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = gettid() write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000000)=r0, 0x12) (async) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000001200)={&(0x7f0000000040)="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", &(0x7f0000001040)=""/204, &(0x7f0000001140)="8e1cc142bdb88a36bd0edde4b372c27134a22b3cafbe18153446adf5d4929d742e22d20d03fe76fa1a5301f038aa00827a3be9fa4cdf3ee8c61d97f0136b7302aae88a0a51f3eabdc8ae26272d1801e16a9d06264aa163b835948e", &(0x7f00000011c0)="e6368e1a3aec0234066f6f42bf5548565573f54bde11558da2b5b841126aa63fd7d02b96a34919fa93ef431f03df", 0x59, 0x1, 0x4}, 0x38) 14:44:57 executing program 5: bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000040), 0x10) 14:44:57 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:57 executing program 3: syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:58 executing program 4: syz_open_procfs$namespace(0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) ioctl$TUNSETSTEERINGEBPF(r2, 0x800454e0, &(0x7f0000000100)=r1) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000000c0)='ns/net\x00') openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) openat$cgroup_procs(r1, &(0x7f0000000000)='tasks\x00', 0x2, 0x0) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) 14:44:58 executing program 3: syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:58 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:58 executing program 0: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) syz_clone(0x9000, &(0x7f0000000180)="5e9abc038f7ed211fb2978b967e6fc455a976b058cd60a3a0f3c805d1f7827452d683ced4cb0b77bb3ce4e7f40aa474b7654b1cbafbe38bd634e8df2fd14fd637a292cb8f6ec2412e07b1898b5beaca8b1b49c4370fc35d463d4899e99dbd959de7030e69da820ebc5e72e281baa07e3f92335aec7ab448d77adebc0b8da31015ca361da2775f6c91e7033d28ffcddfb6edb39ed03309bd54ef16a28631380b09ae074d9832320066a8cc11d3d361ec4890964430ee852", 0xb7, &(0x7f0000000240), &(0x7f0000000280), &(0x7f00000002c0)="cfda4fc1cb85a8127e380ee2d146feb71c853763f645a27f5fa91ef9bd520ac5cc348f1191e9b2332d8da65d9f74dc85eebf9384d6ef3aedf050db8f9520af6a8b3fcfff99c3c546a0b1a0f669ad3fc423a8b20ca70865dbd1e0d1da5841b03245377f4f447e3ad8efefca39f767c123b05ac2") 14:44:58 executing program 4: syz_open_procfs$namespace(0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) ioctl$TUNSETSTEERINGEBPF(r2, 0x800454e0, &(0x7f0000000100)=r1) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000000c0)='ns/net\x00') openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) 14:44:58 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:58 executing program 5: bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000040), 0x10) 14:44:58 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:58 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) r0 = gettid() write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000000)=r0, 0x12) (async) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000001200)={&(0x7f0000000040)="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", &(0x7f0000001040)=""/204, &(0x7f0000001140)="8e1cc142bdb88a36bd0edde4b372c27134a22b3cafbe18153446adf5d4929d742e22d20d03fe76fa1a5301f038aa00827a3be9fa4cdf3ee8c61d97f0136b7302aae88a0a51f3eabdc8ae26272d1801e16a9d06264aa163b835948e", &(0x7f00000011c0)="e6368e1a3aec0234066f6f42bf5548565573f54bde11558da2b5b841126aa63fd7d02b96a34919fa93ef431f03df", 0x59, 0x1, 0x4}, 0x38) 14:44:58 executing program 3: syz_open_procfs$namespace(0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) ioctl$TUNSETSTEERINGEBPF(r2, 0x800454e0, &(0x7f0000000100)=r1) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000000c0)='ns/net\x00') openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) openat$cgroup_procs(r1, &(0x7f0000000000)='tasks\x00', 0x2, 0x0) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) close(r0) openat$cgroup_type(r1, &(0x7f0000000080), 0x2, 0x0) 14:44:58 executing program 4: syz_open_procfs$namespace(0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) ioctl$TUNSETSTEERINGEBPF(r2, 0x800454e0, &(0x7f0000000100)=r1) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000000c0)='ns/net\x00') recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) 14:44:58 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:58 executing program 4: syz_open_procfs$namespace(0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) ioctl$TUNSETSTEERINGEBPF(r2, 0x800454e0, &(0x7f0000000100)=r1) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) 14:44:58 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:44:58 executing program 5: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:58 executing program 0: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) syz_clone(0x9000, &(0x7f0000000180)="5e9abc038f7ed211fb2978b967e6fc455a976b058cd60a3a0f3c805d1f7827452d683ced4cb0b77bb3ce4e7f40aa474b7654b1cbafbe38bd634e8df2fd14fd637a292cb8f6ec2412e07b1898b5beaca8b1b49c4370fc35d463d4899e99dbd959de7030e69da820ebc5e72e281baa07e3f92335aec7ab448d77adebc0b8da31015ca361da2775f6c91e7033d28ffcddfb6edb39ed03309bd54ef16a28631380b09ae074d9832320066a8cc11d3d361ec4890964430ee852", 0xb7, &(0x7f0000000240), &(0x7f0000000280), &(0x7f00000002c0)="cfda4fc1cb85a8127e380ee2d146feb71c853763f645a27f5fa91ef9bd520ac5cc348f1191e9b2332d8da65d9f74dc85eebf9384d6ef3aedf050db8f9520af6a8b3fcfff99c3c546a0b1a0f669ad3fc423a8b20ca70865dbd1e0d1da5841b03245377f4f447e3ad8efefca39f767c123b05ac2") 14:44:58 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:58 executing program 4: syz_open_procfs$namespace(0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) 14:44:58 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:44:58 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) getpid() 14:44:58 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:58 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:44:58 executing program 5: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:58 executing program 4: syz_open_procfs$namespace(0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) 14:44:58 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:58 executing program 3: bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={0xffffffffffffffff, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:44:58 executing program 4: syz_open_procfs$namespace(0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) 14:44:58 executing program 0: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) syz_clone(0x9000, &(0x7f0000000180)="5e9abc038f7ed211fb2978b967e6fc455a976b058cd60a3a0f3c805d1f7827452d683ced4cb0b77bb3ce4e7f40aa474b7654b1cbafbe38bd634e8df2fd14fd637a292cb8f6ec2412e07b1898b5beaca8b1b49c4370fc35d463d4899e99dbd959de7030e69da820ebc5e72e281baa07e3f92335aec7ab448d77adebc0b8da31015ca361da2775f6c91e7033d28ffcddfb6edb39ed03309bd54ef16a28631380b09ae074d9832320066a8cc11d3d361ec4890964430ee852", 0xb7, &(0x7f0000000240), &(0x7f0000000280), &(0x7f00000002c0)="cfda4fc1cb85a8127e380ee2d146feb71c853763f645a27f5fa91ef9bd520ac5cc348f1191e9b2332d8da65d9f74dc85eebf9384d6ef3aedf050db8f9520af6a8b3fcfff99c3c546a0b1a0f669ad3fc423a8b20ca70865dbd1e0d1da5841b03245377f4f447e3ad8efefca39f767c123b05ac2") 14:44:58 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:58 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) getpid() 14:44:58 executing program 3: bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={0xffffffffffffffff, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:44:58 executing program 4: syz_open_procfs$namespace(0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) 14:44:58 executing program 5: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:58 executing program 3: bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={0xffffffffffffffff, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:44:58 executing program 4: syz_open_procfs$namespace(0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) 14:44:58 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:58 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:44:58 executing program 4: syz_open_procfs$namespace(0xffffffffffffffff, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) 14:44:58 executing program 5: syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:58 executing program 0: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) syz_clone(0x9000, &(0x7f0000000180)="5e9abc038f7ed211fb2978b967e6fc455a976b058cd60a3a0f3c805d1f7827452d683ced4cb0b77bb3ce4e7f40aa474b7654b1cbafbe38bd634e8df2fd14fd637a292cb8f6ec2412e07b1898b5beaca8b1b49c4370fc35d463d4899e99dbd959de7030e69da820ebc5e72e281baa07e3f92335aec7ab448d77adebc0b8da31015ca361da2775f6c91e7033d28ffcddfb6edb39ed03309bd54ef16a28631380b09ae074d9832320066a8cc11d3d361ec4890964430ee852", 0xb7, &(0x7f0000000240), &(0x7f0000000280), &(0x7f00000002c0)="cfda4fc1cb85a8127e380ee2d146feb71c853763f645a27f5fa91ef9bd520ac5cc348f1191e9b2332d8da65d9f74dc85eebf9384d6ef3aedf050db8f9520af6a8b3fcfff99c3c546a0b1a0f669ad3fc423a8b20ca70865dbd1e0d1da5841b03245377f4f447e3ad8efefca39f767c123b05ac2") 14:44:58 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:58 executing program 4: syz_open_procfs$namespace(0xffffffffffffffff, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) 14:44:58 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:44:58 executing program 5: syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:58 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) getpid() 14:44:58 executing program 5: syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:58 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:58 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:44:58 executing program 1: syz_clone(0xb00c1280, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:58 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41dc, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:58 executing program 4: syz_open_procfs$namespace(0xffffffffffffffff, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) 14:44:58 executing program 0: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) syz_clone(0x9000, &(0x7f0000000180)="5e9abc038f7ed211fb2978b967e6fc455a976b058cd60a3a0f3c805d1f7827452d683ced4cb0b77bb3ce4e7f40aa474b7654b1cbafbe38bd634e8df2fd14fd637a292cb8f6ec2412e07b1898b5beaca8b1b49c4370fc35d463d4899e99dbd959de7030e69da820ebc5e72e281baa07e3f92335aec7ab448d77adebc0b8da31015ca361da2775f6c91e7033d28ffcddfb6edb39ed03309bd54ef16a28631380b09ae074d9832320066a8cc11d3d361ec4890964430ee852", 0xb7, &(0x7f0000000240), &(0x7f0000000280), &(0x7f00000002c0)="cfda4fc1cb85a8127e380ee2d146feb71c853763f645a27f5fa91ef9bd520ac5cc348f1191e9b2332d8da65d9f74dc85eebf9384d6ef3aedf050db8f9520af6a8b3fcfff99c3c546a0b1a0f669ad3fc423a8b20ca70865dbd1e0d1da5841b03245377f4f447e3ad8efefca39f767c123b05ac2") 14:44:58 executing program 5: syz_open_procfs$namespace(0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) 14:44:58 executing program 3: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0) 14:44:58 executing program 1: syz_clone(0xb00c1280, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:58 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:58 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) 14:44:58 executing program 1: syz_clone(0xb00c1280, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:58 executing program 3: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0) 14:44:58 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xa2}, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:58 executing program 4: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) 14:44:58 executing program 5: syz_open_procfs$namespace(0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) 14:44:58 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x4000000, &(0x7f0000000000)="f952c3b77a2e230008b936a5289e8f8673c6df23be8046ed84a161e0dc0880ad61a230c9bc2bab99c01a98780f8cd351b0e0411828ed83c509362550098db797e97ab50e86", 0x45, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100)="e1c723f836a7811540f0004529bc2d1593bfe9dcfa8e07ac86c545c9101b0deff323d26351f57aaf380ffdb554b42efbf85d001c65fb1356897a8697dc6ff437a8b4531df4ec6d4af2572c72f54ba752d478815dd42ab4269e") 14:44:58 executing program 0: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) syz_clone(0x9000, &(0x7f0000000180)="5e9abc038f7ed211fb2978b967e6fc455a976b058cd60a3a0f3c805d1f7827452d683ced4cb0b77bb3ce4e7f40aa474b7654b1cbafbe38bd634e8df2fd14fd637a292cb8f6ec2412e07b1898b5beaca8b1b49c4370fc35d463d4899e99dbd959de7030e69da820ebc5e72e281baa07e3f92335aec7ab448d77adebc0b8da31015ca361da2775f6c91e7033d28ffcddfb6edb39ed03309bd54ef16a28631380b09ae074d9832320066a8cc11d3d361ec4890964430ee852", 0xb7, &(0x7f0000000240), &(0x7f0000000280), &(0x7f00000002c0)="cfda4fc1cb85a8127e380ee2d146feb71c853763f645a27f5fa91ef9bd520ac5cc348f1191e9b2332d8da65d9f74dc85eebf9384d6ef3aedf050db8f9520af6a8b3fcfff99c3c546a0b1a0f669ad3fc423a8b20ca70865dbd1e0d1da5841b03245377f4f447e3ad8efefca39f767c123b05ac2") 14:44:58 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x800, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:58 executing program 3: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0) 14:44:58 executing program 4: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) 14:44:58 executing program 5: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x10200, 0x0) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000040)={0xba07d6653f571743, 0x4, [@local, @empty, @local, @random="db91977ec63d"]}) syz_open_procfs$namespace(0xffffffffffffffff, 0x0) 14:44:58 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x4000000, &(0x7f0000000000)="f952c3b77a2e230008b936a5289e8f8673c6df23be8046ed84a161e0dc0880ad61a230c9bc2bab99c01a98780f8cd351b0e0411828ed83c509362550098db797e97ab50e86", 0x45, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100)="e1c723f836a7811540f0004529bc2d1593bfe9dcfa8e07ac86c545c9101b0deff323d26351f57aaf380ffdb554b42efbf85d001c65fb1356897a8697dc6ff437a8b4531df4ec6d4af2572c72f54ba752d478815dd42ab4269e") syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) syz_clone(0x4000000, &(0x7f0000000000)="f952c3b77a2e230008b936a5289e8f8673c6df23be8046ed84a161e0dc0880ad61a230c9bc2bab99c01a98780f8cd351b0e0411828ed83c509362550098db797e97ab50e86", 0x45, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100)="e1c723f836a7811540f0004529bc2d1593bfe9dcfa8e07ac86c545c9101b0deff323d26351f57aaf380ffdb554b42efbf85d001c65fb1356897a8697dc6ff437a8b4531df4ec6d4af2572c72f54ba752d478815dd42ab4269e") (async) 14:44:58 executing program 4: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) 14:44:58 executing program 3: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={0xffffffffffffffff, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:44:58 executing program 5: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x4000000, &(0x7f0000000000)="f952c3b77a2e230008b936a5289e8f8673c6df23be8046ed84a161e0dc0880ad61a230c9bc2bab99c01a98780f8cd351b0e0411828ed83c509362550098db797e97ab50e86", 0x45, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100)="e1c723f836a7811540f0004529bc2d1593bfe9dcfa8e07ac86c545c9101b0deff323d26351f57aaf380ffdb554b42efbf85d001c65fb1356897a8697dc6ff437a8b4531df4ec6d4af2572c72f54ba752d478815dd42ab4269e") 14:44:58 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x3, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:58 executing program 3: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={0xffffffffffffffff, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:44:58 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xcad7, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:58 executing program 3: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={0xffffffffffffffff, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:44:58 executing program 4: socketpair$unix(0x1, 0x2, 0x0, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) 14:44:58 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x5, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:58 executing program 0: syz_clone(0x9000, &(0x7f0000000180)="5e9abc038f7ed211fb2978b967e6fc455a976b058cd60a3a0f3c805d1f7827452d683ced4cb0b77bb3ce4e7f40aa474b7654b1cbafbe38bd634e8df2fd14fd637a292cb8f6ec2412e07b1898b5beaca8b1b49c4370fc35d463d4899e99dbd959de7030e69da820ebc5e72e281baa07e3f92335aec7ab448d77adebc0b8da31015ca361da2775f6c91e7033d28ffcddfb6edb39ed03309bd54ef16a28631380b09ae074d9832320066a8cc11d3d361ec4890964430ee852", 0xb7, &(0x7f0000000240), &(0x7f0000000280), &(0x7f00000002c0)="cfda4fc1cb85a8127e380ee2d146feb71c853763f645a27f5fa91ef9bd520ac5cc348f1191e9b2332d8da65d9f74dc85eebf9384d6ef3aedf050db8f9520af6a8b3fcfff99c3c546a0b1a0f669ad3fc423a8b20ca70865dbd1e0d1da5841b03245377f4f447e3ad8efefca39f767c123b05ac2") 14:44:58 executing program 5: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x21, &(0x7f0000000280)={r0, 0xb, 0x0, 0x0, 0x0}, 0x20) 14:44:58 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x4000000, &(0x7f0000000000)="f952c3b77a2e230008b936a5289e8f8673c6df23be8046ed84a161e0dc0880ad61a230c9bc2bab99c01a98780f8cd351b0e0411828ed83c509362550098db797e97ab50e86", 0x45, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100)="e1c723f836a7811540f0004529bc2d1593bfe9dcfa8e07ac86c545c9101b0deff323d26351f57aaf380ffdb554b42efbf85d001c65fb1356897a8697dc6ff437a8b4531df4ec6d4af2572c72f54ba752d478815dd42ab4269e") syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) syz_clone(0x4000000, &(0x7f0000000000)="f952c3b77a2e230008b936a5289e8f8673c6df23be8046ed84a161e0dc0880ad61a230c9bc2bab99c01a98780f8cd351b0e0411828ed83c509362550098db797e97ab50e86", 0x45, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100)="e1c723f836a7811540f0004529bc2d1593bfe9dcfa8e07ac86c545c9101b0deff323d26351f57aaf380ffdb554b42efbf85d001c65fb1356897a8697dc6ff437a8b4531df4ec6d4af2572c72f54ba752d478815dd42ab4269e") (async) 14:44:58 executing program 4: socketpair$unix(0x1, 0x2, 0x0, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) 14:44:58 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x0, 0x0, 0x0, 0x0}, 0x20) 14:44:58 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:58 executing program 4: socketpair$unix(0x1, 0x2, 0x0, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) 14:44:58 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff58d, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:58 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x0, 0x0, 0x0, 0x0}, 0x20) 14:44:58 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) recvmsg$unix(0xffffffffffffffff, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) 14:44:58 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x0, 0x0, 0x0, 0x0}, 0x20) 14:44:58 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3feb, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:58 executing program 0: syz_clone(0x0, &(0x7f0000000180)="5e9abc038f7ed211fb2978b967e6fc455a976b058cd60a3a0f3c805d1f7827452d683ced4cb0b77bb3ce4e7f40aa474b7654b1cbafbe38bd634e8df2fd14fd637a292cb8f6ec2412e07b1898b5beaca8b1b49c4370fc35d463d4899e99dbd959de7030e69da820ebc5e72e281baa07e3f92335aec7ab448d77adebc0b8da31015ca361da2775f6c91e7033d28ffcddfb6edb39ed03309bd54ef16a28631380b09ae074d9832320066a8cc11d3d361ec4890964430ee852", 0xb7, &(0x7f0000000240), &(0x7f0000000280), &(0x7f00000002c0)="cfda4fc1cb85a8127e380ee2d146feb71c853763f645a27f5fa91ef9bd520ac5cc348f1191e9b2332d8da65d9f74dc85eebf9384d6ef3aedf050db8f9520af6a8b3fcfff99c3c546a0b1a0f669ad3fc423a8b20ca70865dbd1e0d1da5841b03245377f4f447e3ad8efefca39f767c123b05ac2") 14:44:58 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) recvmsg$unix(0xffffffffffffffff, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) 14:44:58 executing program 1: syz_clone(0x41024200, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:58 executing program 5: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x21, &(0x7f0000000280)={r0, 0xb, 0x0, 0x0, 0x0}, 0x20) 14:44:58 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (fail_nth: 1) 14:44:58 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:58 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) recvmsg$unix(0xffffffffffffffff, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x40000023) [ 1030.478132][ T9826] FAULT_INJECTION: forcing a failure. [ 1030.478132][ T9826] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1030.491324][ T9826] CPU: 0 PID: 9826 Comm: syz-executor.3 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1030.501289][ T9826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1030.511182][ T9826] Call Trace: [ 1030.514306][ T9826] [ 1030.517090][ T9826] dump_stack_lvl+0x151/0x1b7 [ 1030.521598][ T9826] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1030.526983][ T9826] dump_stack+0x15/0x17 [ 1030.530979][ T9826] should_fail+0x3c0/0x510 [ 1030.535229][ T9826] should_fail_usercopy+0x1a/0x20 [ 1030.540352][ T9826] _copy_from_user+0x20/0xd0 [ 1030.544781][ T9826] __sys_bpf+0x1f6/0x750 [ 1030.548854][ T9826] ? bpf_link_show_fdinfo+0x2d0/0x2d0 [ 1030.554068][ T9826] ? debug_smp_processor_id+0x17/0x20 [ 1030.559270][ T9826] __x64_sys_bpf+0x7c/0x90 [ 1030.563526][ T9826] do_syscall_64+0x44/0xd0 [ 1030.567781][ T9826] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1030.573516][ T9826] RIP: 0033:0x7fb69e6810d9 [ 1030.577764][ T9826] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1030.597377][ T9826] RSP: 002b:00007fb69d3f4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 1030.605627][ T9826] RAX: ffffffffffffffda RBX: 00007fb69e7a0f80 RCX: 00007fb69e6810d9 [ 1030.613441][ T9826] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000010 14:44:59 executing program 5: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x21, &(0x7f0000000280)={r0, 0xb, 0x0, 0x0, 0x0}, 0x20) 14:44:59 executing program 0: syz_clone(0x0, &(0x7f0000000180)="5e9abc038f7ed211fb2978b967e6fc455a976b058cd60a3a0f3c805d1f7827452d683ced4cb0b77bb3ce4e7f40aa474b7654b1cbafbe38bd634e8df2fd14fd637a292cb8f6ec2412e07b1898b5beaca8b1b49c4370fc35d463d4899e99dbd959de7030e69da820ebc5e72e281baa07e3f92335aec7ab448d77adebc0b8da31015ca361da2775f6c91e7033d28ffcddfb6edb39ed03309bd54ef16a28631380b09ae074d9832320066a8cc11d3d361ec4890964430ee852", 0xb7, &(0x7f0000000240), &(0x7f0000000280), &(0x7f00000002c0)="cfda4fc1cb85a8127e380ee2d146feb71c853763f645a27f5fa91ef9bd520ac5cc348f1191e9b2332d8da65d9f74dc85eebf9384d6ef3aedf050db8f9520af6a8b3fcfff99c3c546a0b1a0f669ad3fc423a8b20ca70865dbd1e0d1da5841b03245377f4f447e3ad8efefca39f767c123b05ac2") 14:44:59 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe2b3}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:59 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, 0x0, 0x40000023) 14:44:59 executing program 5: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 1) 14:44:59 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0xb, 0xffffffffffffffff, 0xb) 14:44:59 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (fail_nth: 2) [ 1030.621334][ T9826] RBP: 00007fb69d3f41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1030.629238][ T9826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1030.637048][ T9826] R13: 00007ffc1063929f R14: 00007fb69d3f4300 R15: 0000000000022000 [ 1030.644857][ T9826] 14:44:59 executing program 1: syz_clone(0x41024200, 0x0, 0x0, 0x0, 0x0, 0x0) 14:44:59 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, 0x0, 0x40000023) 14:44:59 executing program 2: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0xb) 14:44:59 executing program 2: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0xb) 14:44:59 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, 0x0, 0x40000023) 14:44:59 executing program 2: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0xb) [ 1030.729506][ T9849] FAULT_INJECTION: forcing a failure. [ 1030.729506][ T9849] name failslab, interval 1, probability 0, space 0, times 0 [ 1030.778447][ T9849] CPU: 0 PID: 9849 Comm: syz-executor.5 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1030.788450][ T9849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1030.798344][ T9849] Call Trace: [ 1030.801900][ T9849] [ 1030.804684][ T9849] dump_stack_lvl+0x151/0x1b7 [ 1030.809190][ T9849] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1030.814482][ T9849] ? do_handle_mm_fault+0x142f/0x2370 [ 1030.819695][ T9849] dump_stack+0x15/0x17 [ 1030.823686][ T9849] should_fail+0x3c0/0x510 [ 1030.827946][ T9849] __should_failslab+0x9f/0xe0 [ 1030.832633][ T9849] should_failslab+0x9/0x20 [ 1030.836975][ T9849] kmem_cache_alloc+0x4f/0x2f0 [ 1030.841576][ T9849] ? dup_task_struct+0x53/0xa60 [ 1030.846262][ T9849] ? __kasan_check_write+0x14/0x20 [ 1030.851305][ T9849] dup_task_struct+0x53/0xa60 [ 1030.855806][ T9849] ? __kasan_check_write+0x14/0x20 [ 1030.860757][ T9849] copy_process+0x579/0x3250 [ 1030.865186][ T9849] ? __kasan_check_write+0x14/0x20 [ 1030.870129][ T9849] ? proc_fail_nth_write+0x213/0x290 [ 1030.875249][ T9849] ? proc_fail_nth_read+0x220/0x220 [ 1030.880286][ T9849] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1030.885531][ T9849] ? vfs_write+0x9af/0x1050 [ 1030.889938][ T9849] ? vmacache_update+0xb7/0x120 [ 1030.894626][ T9849] kernel_clone+0x22d/0x990 [ 1030.898966][ T9849] ? file_end_write+0x1b0/0x1b0 [ 1030.903651][ T9849] ? __kasan_check_write+0x14/0x20 [ 1030.908603][ T9849] ? create_io_thread+0x1e0/0x1e0 [ 1030.913550][ T9849] ? __mutex_lock_slowpath+0x10/0x10 [ 1030.918758][ T9849] __x64_sys_clone+0x289/0x310 [ 1030.923481][ T9849] ? __do_sys_vfork+0x130/0x130 [ 1030.928152][ T9849] ? debug_smp_processor_id+0x17/0x20 [ 1030.933382][ T9849] do_syscall_64+0x44/0xd0 [ 1030.939092][ T9849] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1030.944822][ T9849] RIP: 0033:0x7fe10d3640d9 [ 1030.949074][ T9849] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1030.968517][ T9849] RSP: 002b:00007fe10c0d7118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 14:44:59 executing program 0: syz_clone(0x0, &(0x7f0000000180)="5e9abc038f7ed211fb2978b967e6fc455a976b058cd60a3a0f3c805d1f7827452d683ced4cb0b77bb3ce4e7f40aa474b7654b1cbafbe38bd634e8df2fd14fd637a292cb8f6ec2412e07b1898b5beaca8b1b49c4370fc35d463d4899e99dbd959de7030e69da820ebc5e72e281baa07e3f92335aec7ab448d77adebc0b8da31015ca361da2775f6c91e7033d28ffcddfb6edb39ed03309bd54ef16a28631380b09ae074d9832320066a8cc11d3d361ec4890964430ee852", 0xb7, &(0x7f0000000240), &(0x7f0000000280), &(0x7f00000002c0)="cfda4fc1cb85a8127e380ee2d146feb71c853763f645a27f5fa91ef9bd520ac5cc348f1191e9b2332d8da65d9f74dc85eebf9384d6ef3aedf050db8f9520af6a8b3fcfff99c3c546a0b1a0f669ad3fc423a8b20ca70865dbd1e0d1da5841b03245377f4f447e3ad8efefca39f767c123b05ac2") 14:44:59 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:44:59 executing program 1: syz_clone(0x41024200, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1030.976766][ T9849] RAX: ffffffffffffffda RBX: 00007fe10d483f80 RCX: 00007fe10d3640d9 [ 1030.984574][ T9849] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000009800600 [ 1030.992389][ T9849] RBP: 00007fe10c0d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 1031.000463][ T9849] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001 [ 1031.008275][ T9849] R13: 00007ffefbbdb86f R14: 00007fe10c0d7300 R15: 0000000000022000 [ 1031.016434][ T9849] [ 1031.040999][ T9863] FAULT_INJECTION: forcing a failure. [ 1031.040999][ T9863] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1031.057518][ T9863] CPU: 0 PID: 9863 Comm: syz-executor.3 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1031.067765][ T9863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1031.077917][ T9863] Call Trace: [ 1031.081042][ T9863] [ 1031.083816][ T9863] dump_stack_lvl+0x151/0x1b7 [ 1031.088449][ T9863] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1031.093828][ T9863] ? avc_denied+0x1b0/0x1b0 [ 1031.098173][ T9863] dump_stack+0x15/0x17 [ 1031.102147][ T9863] should_fail+0x3c0/0x510 [ 1031.106415][ T9863] should_fail_usercopy+0x1a/0x20 [ 1031.111262][ T9863] _copy_to_user+0x20/0x90 [ 1031.115517][ T9863] __cgroup_bpf_query+0x34c/0x930 [ 1031.120377][ T9863] ? __cgroup_bpf_detach+0x880/0x880 [ 1031.125516][ T9863] ? __kasan_check_write+0x14/0x20 [ 1031.130528][ T9863] ? fput_many+0x47/0x1a0 [ 1031.134697][ T9863] cgroup_bpf_query+0x31/0x50 [ 1031.139211][ T9863] cgroup_bpf_prog_query+0x63/0x1c0 [ 1031.144243][ T9863] ? bpf_prog_query+0x173/0x220 [ 1031.148932][ T9863] bpf_prog_query+0x1bd/0x220 [ 1031.153446][ T9863] __sys_bpf+0x334/0x750 [ 1031.157525][ T9863] ? bpf_link_show_fdinfo+0x2d0/0x2d0 [ 1031.162739][ T9863] ? debug_smp_processor_id+0x17/0x20 [ 1031.167941][ T9863] __x64_sys_bpf+0x7c/0x90 [ 1031.172207][ T9863] do_syscall_64+0x44/0xd0 [ 1031.176447][ T9863] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1031.182178][ T9863] RIP: 0033:0x7fb69e6810d9 [ 1031.186428][ T9863] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1031.205871][ T9863] RSP: 002b:00007fb69d3f4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 1031.214119][ T9863] RAX: ffffffffffffffda RBX: 00007fb69e7a0f80 RCX: 00007fb69e6810d9 [ 1031.221930][ T9863] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000010 [ 1031.229757][ T9863] RBP: 00007fb69d3f41d0 R08: 0000000000000000 R09: 0000000000000000 14:44:59 executing program 5: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 2) 14:44:59 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0xb) 14:44:59 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (fail_nth: 1) 14:44:59 executing program 1: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) openat$cgroup_type(r0, &(0x7f0000000040), 0x2, 0x0) syz_clone(0xcabea100, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/syz1\x00', 0x200002, 0x0) openat$cgroup_netprio_ifpriomap(r1, &(0x7f00000000c0), 0x2, 0x0) 14:44:59 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), &(0x7f0000000280), &(0x7f00000002c0)="cfda4fc1cb85a8127e380ee2d146feb71c853763f645a27f5fa91ef9bd520ac5cc348f1191e9b2332d8da65d9f74dc85eebf9384d6ef3aedf050db8f9520af6a8b3fcfff99c3c546a0b1a0f669ad3fc423a8b20ca70865dbd1e0d1da5841b03245377f4f447e3ad8efefca39f767c123b05ac2") 14:44:59 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (fail_nth: 3) [ 1031.237553][ T9863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1031.245372][ T9863] R13: 00007ffc1063929f R14: 00007fb69d3f4300 R15: 0000000000022000 [ 1031.253181][ T9863] 14:44:59 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:44:59 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) (fail_nth: 1) [ 1031.288339][ T9871] FAULT_INJECTION: forcing a failure. [ 1031.288339][ T9871] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1031.300713][ T9873] FAULT_INJECTION: forcing a failure. [ 1031.300713][ T9873] name failslab, interval 1, probability 0, space 0, times 0 [ 1031.316768][ T9878] FAULT_INJECTION: forcing a failure. [ 1031.316768][ T9878] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1031.334258][ T9878] CPU: 0 PID: 9878 Comm: syz-executor.3 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1031.339622][ T9882] FAULT_INJECTION: forcing a failure. [ 1031.339622][ T9882] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1031.344311][ T9878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1031.344327][ T9878] Call Trace: [ 1031.344334][ T9878] [ 1031.344340][ T9878] dump_stack_lvl+0x151/0x1b7 [ 1031.377477][ T9878] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1031.382770][ T9878] ? avc_denied+0x1b0/0x1b0 [ 1031.387107][ T9878] dump_stack+0x15/0x17 [ 1031.391102][ T9878] should_fail+0x3c0/0x510 [ 1031.395356][ T9878] should_fail_usercopy+0x1a/0x20 [ 1031.400214][ T9878] _copy_to_user+0x20/0x90 [ 1031.404465][ T9878] __cgroup_bpf_query+0x37e/0x930 [ 1031.409331][ T9878] ? __cgroup_bpf_detach+0x880/0x880 [ 1031.414446][ T9878] ? __kasan_check_write+0x14/0x20 [ 1031.419395][ T9878] ? fput_many+0x47/0x1a0 [ 1031.423568][ T9878] cgroup_bpf_query+0x31/0x50 [ 1031.428073][ T9878] cgroup_bpf_prog_query+0x63/0x1c0 [ 1031.433111][ T9878] ? bpf_prog_query+0x173/0x220 14:44:59 executing program 1: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) openat$cgroup_type(r0, &(0x7f0000000040), 0x2, 0x0) (async) syz_clone(0xcabea100, 0x0, 0x0, 0x0, 0x0, 0x0) (async) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/syz1\x00', 0x200002, 0x0) openat$cgroup_netprio_ifpriomap(r1, &(0x7f00000000c0), 0x2, 0x0) [ 1031.437797][ T9878] bpf_prog_query+0x1bd/0x220 [ 1031.442311][ T9878] __sys_bpf+0x334/0x750 [ 1031.446388][ T9878] ? bpf_link_show_fdinfo+0x2d0/0x2d0 [ 1031.451601][ T9878] ? debug_smp_processor_id+0x17/0x20 [ 1031.456808][ T9878] __x64_sys_bpf+0x7c/0x90 [ 1031.461063][ T9878] do_syscall_64+0x44/0xd0 [ 1031.465407][ T9878] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1031.471127][ T9878] RIP: 0033:0x7fb69e6810d9 [ 1031.475385][ T9878] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1031.494830][ T9878] RSP: 002b:00007fb69d3f4168 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 1031.503074][ T9878] RAX: ffffffffffffffda RBX: 00007fb69e7a0f80 RCX: 00007fb69e6810d9 [ 1031.510894][ T9878] RDX: 0000000000000020 RSI: 0000000020000280 RDI: 0000000000000010 [ 1031.518694][ T9878] RBP: 00007fb69d3f41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1031.526508][ T9878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1031.534318][ T9878] R13: 00007ffc1063929f R14: 00007fb69d3f4300 R15: 0000000000022000 [ 1031.542135][ T9878] [ 1031.547187][ T9882] CPU: 1 PID: 9882 Comm: syz-executor.2 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1031.557159][ T9882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1031.567051][ T9882] Call Trace: [ 1031.570178][ T9882] [ 1031.572954][ T9882] dump_stack_lvl+0x151/0x1b7 [ 1031.577555][ T9882] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1031.582850][ T9882] ? avc_has_perm+0x16d/0x260 [ 1031.587371][ T9882] ? __kasan_check_write+0x14/0x20 [ 1031.592308][ T9882] dump_stack+0x15/0x17 [ 1031.596313][ T9882] should_fail+0x3c0/0x510 [ 1031.600558][ T9882] should_fail_usercopy+0x1a/0x20 [ 1031.605416][ T9882] _copy_from_user+0x20/0xd0 [ 1031.609842][ T9882] perf_copy_attr+0x16f/0x860 [ 1031.614356][ T9882] __se_sys_perf_event_open+0x103/0x3cb0 [ 1031.619823][ T9882] ? file_end_write+0x1b0/0x1b0 [ 1031.624509][ T9882] ? __kasan_check_write+0x14/0x20 [ 1031.629805][ T9882] ? mutex_lock+0xb6/0x130 [ 1031.634057][ T9882] ? __kasan_check_write+0x14/0x20 [ 1031.639006][ T9882] ? mutex_unlock+0xa2/0x110 [ 1031.643431][ T9882] ? __mutex_lock_slowpath+0x10/0x10 [ 1031.648552][ T9882] ? __x64_sys_perf_event_open+0xd0/0xd0 [ 1031.654022][ T9882] ? __ia32_sys_read+0x90/0x90 [ 1031.658621][ T9882] __x64_sys_perf_event_open+0xbf/0xd0 [ 1031.663918][ T9882] do_syscall_64+0x44/0xd0 [ 1031.668168][ T9882] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1031.673904][ T9882] RIP: 0033:0x7f2a1687b0d9 [ 1031.678151][ T9882] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1031.697615][ T9882] RSP: 002b:00007f2a155ee168 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 1031.705838][ T9882] RAX: ffffffffffffffda RBX: 00007f2a1699af80 RCX: 00007f2a1687b0d9 [ 1031.713650][ T9882] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000020000040 [ 1031.721464][ T9882] RBP: 00007f2a155ee1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1031.729448][ T9882] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001 14:45:00 executing program 0: syz_clone(0x9000, 0x0, 0x0, 0x0, &(0x7f0000000280), &(0x7f00000002c0)="cfda4fc1cb85a8127e380ee2d146feb71c853763f645a27f5fa91ef9bd520ac5cc348f1191e9b2332d8da65d9f74dc85eebf9384d6ef3aedf050db8f9520af6a8b3fcfff99c3c546a0b1a0f669ad3fc423a8b20ca70865dbd1e0d1da5841b03245377f4f447e3ad8efefca39f767c123b05ac2") [ 1031.737261][ T9882] R13: 00007ffeffdb5c4f R14: 00007f2a155ee300 R15: 0000000000022000 [ 1031.745077][ T9882] [ 1031.747940][ T9873] CPU: 0 PID: 9873 Comm: syz-executor.5 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1031.757921][ T9873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1031.767823][ T9873] Call Trace: [ 1031.770944][ T9873] [ 1031.773981][ T9873] dump_stack_lvl+0x151/0x1b7 [ 1031.778493][ T9873] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1031.783787][ T9873] ? __kasan_slab_alloc+0xc4/0xe0 14:45:00 executing program 0: syz_clone(0x9000, 0x0, 0x0, 0x0, &(0x7f0000000280), &(0x7f00000002c0)="cfda4fc1cb85a8127e380ee2d146feb71c853763f645a27f5fa91ef9bd520ac5cc348f1191e9b2332d8da65d9f74dc85eebf9384d6ef3aedf050db8f9520af6a8b3fcfff99c3c546a0b1a0f669ad3fc423a8b20ca70865dbd1e0d1da5841b03245377f4f447e3ad8efefca39f767c123b05ac2") [ 1031.788652][ T9873] ? kmem_cache_alloc+0x189/0x2f0 [ 1031.793510][ T9873] dump_stack+0x15/0x17 [ 1031.797503][ T9873] should_fail+0x3c0/0x510 [ 1031.801755][ T9873] ? __get_vm_area_node+0x13a/0x380 [ 1031.806791][ T9873] __should_failslab+0x9f/0xe0 [ 1031.811392][ T9873] should_failslab+0x9/0x20 [ 1031.815730][ T9873] kmem_cache_alloc_trace+0x4a/0x310 [ 1031.820852][ T9873] __get_vm_area_node+0x13a/0x380 [ 1031.825715][ T9873] __vmalloc_node_range+0xda/0x800 [ 1031.830669][ T9873] ? copy_process+0x579/0x3250 [ 1031.835260][ T9873] ? kmem_cache_alloc+0x1c1/0x2f0 [ 1031.840120][ T9873] ? dup_task_struct+0x53/0xa60 [ 1031.844808][ T9873] dup_task_struct+0x61f/0xa60 [ 1031.849409][ T9873] ? copy_process+0x579/0x3250 [ 1031.854009][ T9873] ? __kasan_check_write+0x14/0x20 [ 1031.858957][ T9873] copy_process+0x579/0x3250 [ 1031.863482][ T9873] ? __kasan_check_write+0x14/0x20 [ 1031.868428][ T9873] ? proc_fail_nth_write+0x213/0x290 [ 1031.873552][ T9873] ? proc_fail_nth_read+0x220/0x220 [ 1031.878591][ T9873] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1031.883533][ T9873] ? vfs_write+0x9af/0x1050 14:45:00 executing program 0: syz_clone(0x9000, 0x0, 0x0, 0x0, &(0x7f0000000280), &(0x7f00000002c0)="cfda4fc1cb85a8127e380ee2d146feb71c853763f645a27f5fa91ef9bd520ac5cc348f1191e9b2332d8da65d9f74dc85eebf9384d6ef3aedf050db8f9520af6a8b3fcfff99c3c546a0b1a0f669ad3fc423a8b20ca70865dbd1e0d1da5841b03245377f4f447e3ad8efefca39f767c123b05ac2") [ 1031.887871][ T9873] ? vmacache_update+0xb7/0x120 [ 1031.892564][ T9873] kernel_clone+0x22d/0x990 [ 1031.896900][ T9873] ? file_end_write+0x1b0/0x1b0 [ 1031.901588][ T9873] ? __kasan_check_write+0x14/0x20 [ 1031.906537][ T9873] ? create_io_thread+0x1e0/0x1e0 [ 1031.911396][ T9873] ? __mutex_lock_slowpath+0x10/0x10 [ 1031.916519][ T9873] __x64_sys_clone+0x289/0x310 [ 1031.921117][ T9873] ? __do_sys_vfork+0x130/0x130 [ 1031.925804][ T9873] ? debug_smp_processor_id+0x17/0x20 [ 1031.931014][ T9873] do_syscall_64+0x44/0xd0 [ 1031.935264][ T9873] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1031.940992][ T9873] RIP: 0033:0x7fe10d3640d9 [ 1031.945245][ T9873] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1031.966276][ T9873] RSP: 002b:00007fe10c0d7118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1031.974515][ T9873] RAX: ffffffffffffffda RBX: 00007fe10d483f80 RCX: 00007fe10d3640d9 [ 1031.982332][ T9873] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000009800600 [ 1031.990227][ T9873] RBP: 00007fe10c0d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 1031.998042][ T9873] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001 [ 1032.005854][ T9873] R13: 00007ffefbbdb86f R14: 00007fe10c0d7300 R15: 0000000000022000 [ 1032.013668][ T9873] [ 1032.018263][ T9871] CPU: 1 PID: 9871 Comm: syz-executor.4 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1032.028240][ T9871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1032.038149][ T9871] Call Trace: [ 1032.041253][ T9871] [ 1032.044130][ T9871] dump_stack_lvl+0x151/0x1b7 [ 1032.048631][ T9871] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1032.054021][ T9871] dump_stack+0x15/0x17 [ 1032.058091][ T9871] should_fail+0x3c0/0x510 [ 1032.062344][ T9871] should_fail_usercopy+0x1a/0x20 [ 1032.067204][ T9871] _copy_from_user+0x20/0xd0 [ 1032.071633][ T9871] __sys_recvmsg+0x287/0x8b0 [ 1032.076058][ T9871] ? vmacache_update+0xb7/0x120 [ 1032.080746][ T9871] ? ____sys_recvmsg+0x530/0x530 [ 1032.085522][ T9871] ? mutex_lock+0xb6/0x130 [ 1032.089776][ T9871] ? fput_many+0x47/0x1a0 [ 1032.093940][ T9871] ? ksys_write+0x25f/0x2c0 [ 1032.098281][ T9871] ? debug_smp_processor_id+0x17/0x20 [ 1032.103489][ T9871] __x64_sys_recvmsg+0x7f/0x90 [ 1032.108088][ T9871] do_syscall_64+0x44/0xd0 [ 1032.112343][ T9871] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1032.118069][ T9871] RIP: 0033:0x7f920fec10d9 [ 1032.122321][ T9871] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1032.141770][ T9871] RSP: 002b:00007f920ec34168 EFLAGS: 00000246 ORIG_RAX: 000000000000002f [ 1032.150013][ T9871] RAX: ffffffffffffffda RBX: 00007f920ffe0f80 RCX: 00007f920fec10d9 [ 1032.157826][ T9871] RDX: 0000000000000000 RSI: 0000000020003380 RDI: 0000000000000004 [ 1032.165634][ T9871] RBP: 00007f920ec341d0 R08: 0000000000000000 R09: 0000000000000000 [ 1032.173452][ T9871] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1032.181260][ T9871] R13: 00007ffd637d1faf R14: 00007f920ec34300 R15: 0000000000022000 [ 1032.189084][ T9871] [ 1032.521264][ T9873] syz-executor.5: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0 [ 1032.557473][ T9873] CPU: 1 PID: 9873 Comm: syz-executor.5 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1032.567453][ T9873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1032.577344][ T9873] Call Trace: [ 1032.580472][ T9873] [ 1032.583246][ T9873] dump_stack_lvl+0x151/0x1b7 [ 1032.587760][ T9873] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1032.593069][ T9873] ? pr_cont_kernfs_name+0xe6/0x100 [ 1032.598087][ T9873] dump_stack+0x15/0x17 [ 1032.602167][ T9873] warn_alloc+0x242/0x3d0 [ 1032.606334][ T9873] ? zone_watermark_ok_safe+0x280/0x280 [ 1032.611714][ T9873] ? __get_vm_area_node+0x36a/0x380 [ 1032.616750][ T9873] __vmalloc_node_range+0x2be/0x800 [ 1032.621787][ T9873] ? dup_task_struct+0x53/0xa60 [ 1032.626473][ T9873] dup_task_struct+0x61f/0xa60 [ 1032.631080][ T9873] ? copy_process+0x579/0x3250 [ 1032.635675][ T9873] ? __kasan_check_write+0x14/0x20 [ 1032.640621][ T9873] copy_process+0x579/0x3250 [ 1032.645046][ T9873] ? __kasan_check_write+0x14/0x20 [ 1032.649996][ T9873] ? proc_fail_nth_write+0x213/0x290 [ 1032.655120][ T9873] ? proc_fail_nth_read+0x220/0x220 [ 1032.660157][ T9873] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1032.665097][ T9873] ? vfs_write+0x9af/0x1050 [ 1032.669440][ T9873] ? vmacache_update+0xb7/0x120 [ 1032.674130][ T9873] kernel_clone+0x22d/0x990 [ 1032.678466][ T9873] ? file_end_write+0x1b0/0x1b0 [ 1032.683421][ T9873] ? __kasan_check_write+0x14/0x20 [ 1032.688366][ T9873] ? create_io_thread+0x1e0/0x1e0 [ 1032.693222][ T9873] ? __mutex_lock_slowpath+0x10/0x10 [ 1032.698346][ T9873] __x64_sys_clone+0x289/0x310 [ 1032.702947][ T9873] ? __do_sys_vfork+0x130/0x130 [ 1032.707629][ T9873] ? debug_smp_processor_id+0x17/0x20 [ 1032.712840][ T9873] do_syscall_64+0x44/0xd0 [ 1032.717092][ T9873] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1032.722822][ T9873] RIP: 0033:0x7fe10d3640d9 [ 1032.727074][ T9873] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1032.746525][ T9873] RSP: 002b:00007fe10c0d7118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1032.754764][ T9873] RAX: ffffffffffffffda RBX: 00007fe10d483f80 RCX: 00007fe10d3640d9 [ 1032.762589][ T9873] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000009800600 [ 1032.770383][ T9873] RBP: 00007fe10c0d71d0 R08: 0000000000000000 R09: 0000000000000000 [ 1032.778197][ T9873] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001 [ 1032.786009][ T9873] R13: 00007ffefbbdb86f R14: 00007fe10c0d7300 R15: 0000000000022000 [ 1032.793825][ T9873] [ 1033.011505][ T9873] Mem-Info: [ 1033.014576][ T9873] active_anon:15493 inactive_anon:18115 isolated_anon:0 [ 1033.014576][ T9873] active_file:6568 inactive_file:64019 isolated_file:0 [ 1033.014576][ T9873] unevictable:0 dirty:41840 writeback:11948 [ 1033.014576][ T9873] slab_reclaimable:27096 slab_unreclaimable:59420 [ 1033.014576][ T9873] mapped:31161 shmem:15551 pagetables:692 bounce:0 [ 1033.014576][ T9873] kernel_misc_reclaimable:0 [ 1033.014576][ T9873] free:1479586 free_pcp:20089 free_cma:0 [ 1033.089439][ T9873] Node 0 active_anon:61972kB inactive_anon:72460kB active_file:26272kB inactive_file:255376kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:124644kB dirty:159560kB writeback:53892kB shmem:62204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:4796kB pagetables:2768kB all_unreclaimable? no [ 1033.140337][ T9873] DMA32 free:2976724kB min:62592kB low:78240kB high:93888kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3145324kB managed:2982424kB mlocked:0kB bounce:0kB free_pcp:5700kB local_pcp:1828kB free_cma:0kB [ 1033.168791][ T9873] lowmem_reserve[]: 0 3941 3941 [ 1033.173867][ T9873] Normal free:2941116kB min:84860kB low:106072kB high:127284kB reserved_highatomic:0KB active_anon:61972kB inactive_anon:72460kB active_file:26272kB inactive_file:255876kB unevictable:0kB writepending:210108kB present:5242880kB managed:4035848kB mlocked:0kB bounce:0kB free_pcp:75092kB local_pcp:36004kB free_cma:0kB [ 1033.204369][ T9873] lowmem_reserve[]: 0 0 0 [ 1033.208843][ T9873] DMA32: 3*4kB (M) 1*8kB (M) 2*16kB (M) 3*32kB (M) 3*64kB (M) 3*128kB (M) 3*256kB (M) 3*512kB (M) 4*1024kB (UM) 4*2048kB (UM) 723*4096kB (M) = 2976724kB 14:45:01 executing program 5: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:01 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000002c0)="cfda4fc1cb85a8127e380ee2d146feb71c853763f645a27f5fa91ef9bd520ac5cc348f1191e9b2332d8da65d9f74dc85eebf9384d6ef3aedf050db8f9520af6a8b3fcfff99c3c546a0b1a0f669ad3fc423a8b20ca70865dbd1e0d1da5841b03245377f4f447e3ad8efefca39f767c123b05ac2") 14:45:01 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (fail_nth: 4) 14:45:01 executing program 1: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) openat$cgroup_type(r0, &(0x7f0000000040), 0x2, 0x0) syz_clone(0xcabea100, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/syz1\x00', 0x200002, 0x0) openat$cgroup_netprio_ifpriomap(r1, &(0x7f00000000c0), 0x2, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) openat$cgroup_type(r0, &(0x7f0000000040), 0x2, 0x0) (async) syz_clone(0xcabea100, 0x0, 0x0, 0x0, 0x0, 0x0) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/syz1\x00', 0x200002, 0x0) (async) openat$cgroup_netprio_ifpriomap(r1, &(0x7f00000000c0), 0x2, 0x0) (async) 14:45:01 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:01 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) [ 1033.224863][ T9873] Normal: 338*4kB (UME) 1623*8kB (UE) 1082*16kB (UME) 1691*32kB (UME) 1989*64kB (UME) 2521*128kB (UM) 1387*256kB (UME) 454*512kB (UM) 101*1024kB (UME) 9*2048kB (UME) 414*4096kB (M) = 2940864kB [ 1033.244328][ T9873] 87781 total pagecache pages [ 1033.248988][ T9873] 0 pages in swap cache [ 1033.253017][ T9873] Swap cache stats: add 0, delete 0, find 0/0 [ 1033.258911][ T9873] Free swap = 0kB [ 1033.262697][ T9873] Total swap = 0kB [ 1033.266326][ T9873] 2097051 pages RAM [ 1033.269946][ T9873] 0 pages HighMem/MovableOnly [ 1033.274481][ T9873] 342483 pages reserved [ 1033.278454][ T9873] 0 pages cma reserved [ 1033.293817][ T9903] FAULT_INJECTION: forcing a failure. [ 1033.293817][ T9903] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1033.311805][ T9903] CPU: 1 PID: 9903 Comm: syz-executor.3 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1033.321789][ T9903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1033.331684][ T9903] Call Trace: [ 1033.334811][ T9903] [ 1033.337584][ T9903] dump_stack_lvl+0x151/0x1b7 14:45:01 executing program 1: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000002480)={&(0x7f00000002c0)="ba2f75bd6cdf7c71fcff7ed9fbc03af068fd884882a73a68b224767c0bb96cb516534a7c4ddbea7105340e5fc1e29576db4bc976517f8d58257e0bfb898531743ffd52358a117cf0d8fea764dd89c6304d5fd74a45894994d7d958f195dbe31a5bd240b56854579633c0a91a5eb765efa91f9454dccdaa5b8a5bbd03f6a0ff875da5a286ffb7e25e819a1b001b924dd4c222046a82910007a0c73e6ea638298ee7c9ebc3c61084add4b772f5dfe6215107091cb2a60024fb1d68842bab59b02f01f323e5de62df71d740e4caf7", &(0x7f00000003c0)=""/4096, &(0x7f00000013c0)="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", &(0x7f00000023c0)="8f244d6856e9d905025bfe22f772ede4627c0ff49fa95243f1207838fb0294f87e2cfb86a28c51d4ab3cd5f91ece0ecb3ffdeab692f1e48f793d5cc6d83f2b5b02c82aa761c87e58628ec0f7b1eceb589736a95dbb987a7e59e36323386e92073bee34d4fcb03fcda1cd2dd0490d0e00652df08a895b4df3b1f93b6a3e07ae38984d41574e306305079f4c5519b8bd0caf42bf94", 0x800, r0, 0x4}, 0x38) syz_clone(0x68812180, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) syz_clone(0x100000, &(0x7f0000000100)="9247df4be761b822a8ad9b18f06d2046d0c21c7dfd22ab9e13e2932eef1d82ccb85f300ad278883842f814397b3f55f20d942eaa1b69523c7ffe80849d6769c6d8c7cf3c5927620ced03bc931baac4d2eb7efce21529d11cd33aadb844db967f7fd4230a", 0x64, &(0x7f0000000180), &(0x7f00000001c0), &(0x7f0000000200)="f9944bf565acc110f1e20bc0691dc802ee9a1047c3e1d654d46f02dc58084564c4ece96a94db7d9151fe2761372cb8a2a39cc0be5c21ddf977dbb20bf583dac535f878321bad32fc47a649fe55a33cb174d39d2308ac7f4454f861cfa0b62f686001234f5cb5dadc768251185c1f66996853acfb5fd5b21b30fde1fea3cb462628c9c26ed8a0bf7b") bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000000c0)={r1, 0x58, &(0x7f0000000040)}, 0x10) 14:45:01 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89, 0x0, 0xffffffff00000000}, 0x0) 14:45:01 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:01 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1033.342101][ T9903] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1033.347389][ T9903] ? avc_has_perm_noaudit+0x358/0x450 [ 1033.352616][ T9903] dump_stack+0x15/0x17 [ 1033.356681][ T9903] should_fail+0x3c0/0x510 [ 1033.360931][ T9903] should_fail_usercopy+0x1a/0x20 [ 1033.365980][ T9903] _copy_to_user+0x20/0x90 [ 1033.370229][ T9903] simple_read_from_buffer+0xdd/0x160 [ 1033.375437][ T9903] proc_fail_nth_read+0x1af/0x220 [ 1033.380293][ T9903] ? proc_fault_inject_write+0x3a0/0x3a0 [ 1033.385765][ T9903] ? security_file_permission+0x497/0x5f0 14:45:01 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) [ 1033.391319][ T9903] ? proc_fault_inject_write+0x3a0/0x3a0 [ 1033.396787][ T9903] vfs_read+0x299/0xd80 [ 1033.400788][ T9903] ? kernel_read+0x1f0/0x1f0 [ 1033.405207][ T9903] ? __kasan_check_write+0x14/0x20 [ 1033.410248][ T9903] ? mutex_lock+0xb6/0x130 [ 1033.414506][ T9903] ? wait_for_completion_killable_timeout+0x10/0x10 [ 1033.420926][ T9903] ? __fdget_pos+0x26d/0x310 [ 1033.425351][ T9903] ? ksys_read+0x77/0x2c0 [ 1033.429513][ T9903] ksys_read+0x198/0x2c0 [ 1033.433590][ T9903] ? vfs_write+0x1050/0x1050 [ 1033.438014][ T9903] ? debug_smp_processor_id+0x17/0x20 [ 1033.443225][ T9903] __x64_sys_read+0x7b/0x90 [ 1033.447574][ T9903] do_syscall_64+0x44/0xd0 [ 1033.451816][ T9903] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1033.457546][ T9903] RIP: 0033:0x7fb69e632efc [ 1033.461801][ T9903] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1033.481247][ T9903] RSP: 002b:00007fb69d3f4160 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 14:45:02 executing program 5: syz_clone(0x9800300, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:02 executing program 1: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000002480)={&(0x7f00000002c0)="ba2f75bd6cdf7c71fcff7ed9fbc03af068fd884882a73a68b224767c0bb96cb516534a7c4ddbea7105340e5fc1e29576db4bc976517f8d58257e0bfb898531743ffd52358a117cf0d8fea764dd89c6304d5fd74a45894994d7d958f195dbe31a5bd240b56854579633c0a91a5eb765efa91f9454dccdaa5b8a5bbd03f6a0ff875da5a286ffb7e25e819a1b001b924dd4c222046a82910007a0c73e6ea638298ee7c9ebc3c61084add4b772f5dfe6215107091cb2a60024fb1d68842bab59b02f01f323e5de62df71d740e4caf7", &(0x7f00000003c0)=""/4096, &(0x7f00000013c0)="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", &(0x7f00000023c0)="8f244d6856e9d905025bfe22f772ede4627c0ff49fa95243f1207838fb0294f87e2cfb86a28c51d4ab3cd5f91ece0ecb3ffdeab692f1e48f793d5cc6d83f2b5b02c82aa761c87e58628ec0f7b1eceb589736a95dbb987a7e59e36323386e92073bee34d4fcb03fcda1cd2dd0490d0e00652df08a895b4df3b1f93b6a3e07ae38984d41574e306305079f4c5519b8bd0caf42bf94", 0x800, r0, 0x4}, 0x38) (async) syz_clone(0x68812180, 0x0, 0x0, 0x0, 0x0, 0x0) (async) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) syz_clone(0x100000, &(0x7f0000000100)="9247df4be761b822a8ad9b18f06d2046d0c21c7dfd22ab9e13e2932eef1d82ccb85f300ad278883842f814397b3f55f20d942eaa1b69523c7ffe80849d6769c6d8c7cf3c5927620ced03bc931baac4d2eb7efce21529d11cd33aadb844db967f7fd4230a", 0x64, &(0x7f0000000180), &(0x7f00000001c0), &(0x7f0000000200)="f9944bf565acc110f1e20bc0691dc802ee9a1047c3e1d654d46f02dc58084564c4ece96a94db7d9151fe2761372cb8a2a39cc0be5c21ddf977dbb20bf583dac535f878321bad32fc47a649fe55a33cb174d39d2308ac7f4454f861cfa0b62f686001234f5cb5dadc768251185c1f66996853acfb5fd5b21b30fde1fea3cb462628c9c26ed8a0bf7b") bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000000c0)={r1, 0x58, &(0x7f0000000040)}, 0x10) 14:45:02 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1033.489489][ T9903] RAX: ffffffffffffffda RBX: 00007fb69e7a0f80 RCX: 00007fb69e632efc [ 1033.497306][ T9903] RDX: 000000000000000f RSI: 00007fb69d3f41e0 RDI: 0000000000000004 [ 1033.505113][ T9903] RBP: 00007fb69d3f41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1033.512927][ T9903] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1033.520736][ T9903] R13: 00007ffc1063929f R14: 00007fb69d3f4300 R15: 0000000000022000 [ 1033.528551][ T9903] 14:45:02 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:02 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:02 executing program 5: syz_clone(0x9800702, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:02 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x10, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:02 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x2, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:02 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x3, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:02 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0xffffffff00000000) 14:45:02 executing program 5: syz_clone(0x9800707, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:02 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x4000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:02 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x4, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:02 executing program 1: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000002480)={&(0x7f00000002c0)="ba2f75bd6cdf7c71fcff7ed9fbc03af068fd884882a73a68b224767c0bb96cb516534a7c4ddbea7105340e5fc1e29576db4bc976517f8d58257e0bfb898531743ffd52358a117cf0d8fea764dd89c6304d5fd74a45894994d7d958f195dbe31a5bd240b56854579633c0a91a5eb765efa91f9454dccdaa5b8a5bbd03f6a0ff875da5a286ffb7e25e819a1b001b924dd4c222046a82910007a0c73e6ea638298ee7c9ebc3c61084add4b772f5dfe6215107091cb2a60024fb1d68842bab59b02f01f323e5de62df71d740e4caf7", &(0x7f00000003c0)=""/4096, &(0x7f00000013c0)="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", &(0x7f00000023c0)="8f244d6856e9d905025bfe22f772ede4627c0ff49fa95243f1207838fb0294f87e2cfb86a28c51d4ab3cd5f91ece0ecb3ffdeab692f1e48f793d5cc6d83f2b5b02c82aa761c87e58628ec0f7b1eceb589736a95dbb987a7e59e36323386e92073bee34d4fcb03fcda1cd2dd0490d0e00652df08a895b4df3b1f93b6a3e07ae38984d41574e306305079f4c5519b8bd0caf42bf94", 0x800, r0, 0x4}, 0x38) syz_clone(0x68812180, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) syz_clone(0x100000, &(0x7f0000000100)="9247df4be761b822a8ad9b18f06d2046d0c21c7dfd22ab9e13e2932eef1d82ccb85f300ad278883842f814397b3f55f20d942eaa1b69523c7ffe80849d6769c6d8c7cf3c5927620ced03bc931baac4d2eb7efce21529d11cd33aadb844db967f7fd4230a", 0x64, &(0x7f0000000180), &(0x7f00000001c0), &(0x7f0000000200)="f9944bf565acc110f1e20bc0691dc802ee9a1047c3e1d654d46f02dc58084564c4ece96a94db7d9151fe2761372cb8a2a39cc0be5c21ddf977dbb20bf583dac535f878321bad32fc47a649fe55a33cb174d39d2308ac7f4454f861cfa0b62f686001234f5cb5dadc768251185c1f66996853acfb5fd5b21b30fde1fea3cb462628c9c26ed8a0bf7b") bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000000c0)={r1, 0x58, &(0x7f0000000040)}, 0x10) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000002480)={&(0x7f00000002c0)="ba2f75bd6cdf7c71fcff7ed9fbc03af068fd884882a73a68b224767c0bb96cb516534a7c4ddbea7105340e5fc1e29576db4bc976517f8d58257e0bfb898531743ffd52358a117cf0d8fea764dd89c6304d5fd74a45894994d7d958f195dbe31a5bd240b56854579633c0a91a5eb765efa91f9454dccdaa5b8a5bbd03f6a0ff875da5a286ffb7e25e819a1b001b924dd4c222046a82910007a0c73e6ea638298ee7c9ebc3c61084add4b772f5dfe6215107091cb2a60024fb1d68842bab59b02f01f323e5de62df71d740e4caf7", &(0x7f00000003c0)=""/4096, &(0x7f00000013c0)="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", &(0x7f00000023c0)="8f244d6856e9d905025bfe22f772ede4627c0ff49fa95243f1207838fb0294f87e2cfb86a28c51d4ab3cd5f91ece0ecb3ffdeab692f1e48f793d5cc6d83f2b5b02c82aa761c87e58628ec0f7b1eceb589736a95dbb987a7e59e36323386e92073bee34d4fcb03fcda1cd2dd0490d0e00652df08a895b4df3b1f93b6a3e07ae38984d41574e306305079f4c5519b8bd0caf42bf94", 0x800, r0, 0x4}, 0x38) (async) syz_clone(0x68812180, 0x0, 0x0, 0x0, 0x0, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) syz_clone(0x100000, &(0x7f0000000100)="9247df4be761b822a8ad9b18f06d2046d0c21c7dfd22ab9e13e2932eef1d82ccb85f300ad278883842f814397b3f55f20d942eaa1b69523c7ffe80849d6769c6d8c7cf3c5927620ced03bc931baac4d2eb7efce21529d11cd33aadb844db967f7fd4230a", 0x64, &(0x7f0000000180), &(0x7f00000001c0), &(0x7f0000000200)="f9944bf565acc110f1e20bc0691dc802ee9a1047c3e1d654d46f02dc58084564c4ece96a94db7d9151fe2761372cb8a2a39cc0be5c21ddf977dbb20bf583dac535f878321bad32fc47a649fe55a33cb174d39d2308ac7f4454f861cfa0b62f686001234f5cb5dadc768251185c1f66996853acfb5fd5b21b30fde1fea3cb462628c9c26ed8a0bf7b") (async) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000000c0)={r1, 0x58, &(0x7f0000000040)}, 0x10) (async) 14:45:02 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 1) 14:45:02 executing program 5: syz_clone(0x9800708, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:02 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x5, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:02 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000000080), 0x10) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='fsi_master_gpio_clock_zeros\x00'}, 0x10) ioctl$PERF_EVENT_IOC_ID(r1, 0x80082407, &(0x7f00000001c0)) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r3, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) recvmsg$unix(r3, &(0x7f0000000640)={&(0x7f0000000240)=@abs, 0x6e, &(0x7f00000005c0)=[{&(0x7f00000002c0)=""/110, 0x6e}, {&(0x7f0000000340)=""/110, 0x6e}, {&(0x7f00000003c0)=""/220, 0xdc}, {&(0x7f00000004c0)=""/203, 0xcb}], 0x4, &(0x7f0000000600)=[@cred={{0x1c}}], 0x20}, 0x40010102) r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x80000, 0x0) openat$cgroup(0xffffffffffffffff, &(0x7f0000000680)='syz0\x00', 0x200002, 0x0) ioctl$TUNGETSNDBUF(r4, 0x800454d3, &(0x7f0000000200)) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000840)={0x1, 0x58, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000bc0)={r2, 0xe0, &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, &(0x7f0000000900)=[0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4, &(0x7f0000000940)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000980)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f00000009c0)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000a00), &(0x7f0000000a40), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000a80)}}, 0x10) r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=@base={0x14, 0x3, 0x9, 0x7, 0x80, 0x1, 0x80000000, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x2}, 0x48) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000cc0)=@bpf_lsm={0x1d, 0xb, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000101000000000000ffffffff1085c0ff10000000186000000d00000000000000050000008500000018000000027001000700000018000000ffffffff00000000f20d000085100000010000009500000000000000588f73eb88db641544a7740c808a8c0d2498c6445f818717c4056f05f3c2f949c0fd1facc3856496ddde96f3d038e46f8c20c753f3cd1ebdb45912e72b2c064171913de9062115dc8697440584ffdc9d05c2"], &(0x7f0000000740)='syzkaller\x00', 0x3, 0x1d, &(0x7f0000000780)=""/29, 0x40f00, 0x4, '\x00', r5, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000880)={0x4, 0x2}, 0x8, 0x10, &(0x7f00000008c0)={0x5, 0xe, 0x5, 0x80}, 0x10, r6, 0x0, 0x0, &(0x7f0000000c80)=[r7, 0xffffffffffffffff, 0x1, 0x1]}, 0x80) r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x200002, 0x0) openat$cgroup_devices(r8, &(0x7f0000000040)='devices.deny\x00', 0x2, 0x0) 14:45:02 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x400001, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:02 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x6, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:02 executing program 5: syz_clone(0x9800709, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:02 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x1004000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:02 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x7, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:02 executing program 5: syz_clone(0x9801f00, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:02 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x2000000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:02 executing program 1: r0 = syz_clone(0x54dba20932ea4f6b, 0x0, 0xffffff69, 0x0, 0x0, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) ioctl$TUNGETVNETHDRSZ(r1, 0x800454d7, &(0x7f0000000080)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x1f, 0x7b, 0x40, 0x8, 0x0, 0x20, 0x40f44, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0xe3a, 0x4, @perf_config_ext={0x80000001, 0x3}, 0x8000, 0x0, 0x0, 0x5, 0xff, 0x80000000, 0x81, 0x0, 0x3, 0x0, 0x7ff0}, r0, 0x3, r1, 0x3) [ 1033.767713][ T9996] FAULT_INJECTION: forcing a failure. [ 1033.767713][ T9996] name failslab, interval 1, probability 0, space 0, times 0 [ 1033.866613][ T9996] CPU: 0 PID: 9996 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1033.876628][ T9996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1033.886503][ T9996] Call Trace: [ 1033.889631][ T9996] [ 1033.892401][ T9996] dump_stack_lvl+0x151/0x1b7 [ 1033.896916][ T9996] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1033.902212][ T9996] ? do_handle_mm_fault+0x142f/0x2370 [ 1033.907941][ T9996] dump_stack+0x15/0x17 [ 1033.911941][ T9996] should_fail+0x3c0/0x510 [ 1033.916184][ T9996] __should_failslab+0x9f/0xe0 [ 1033.920783][ T9996] should_failslab+0x9/0x20 [ 1033.925122][ T9996] kmem_cache_alloc+0x4f/0x2f0 [ 1033.929778][ T9996] ? dup_task_struct+0x53/0xa60 [ 1033.934412][ T9996] ? __kasan_check_write+0x14/0x20 [ 1033.939366][ T9996] dup_task_struct+0x53/0xa60 [ 1033.943871][ T9996] ? __kasan_check_write+0x14/0x20 [ 1033.948822][ T9996] copy_process+0x579/0x3250 [ 1033.953249][ T9996] ? __kasan_check_write+0x14/0x20 [ 1033.958199][ T9996] ? proc_fail_nth_write+0x213/0x290 [ 1033.963317][ T9996] ? proc_fail_nth_read+0x220/0x220 [ 1033.968355][ T9996] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1033.973303][ T9996] ? vfs_write+0x9af/0x1050 [ 1033.977635][ T9996] ? vmacache_update+0xb7/0x120 [ 1033.982325][ T9996] kernel_clone+0x22d/0x990 [ 1033.986668][ T9996] ? file_end_write+0x1b0/0x1b0 [ 1033.991355][ T9996] ? __kasan_check_write+0x14/0x20 [ 1033.996301][ T9996] ? create_io_thread+0x1e0/0x1e0 [ 1034.001166][ T9996] ? __mutex_lock_slowpath+0x10/0x10 [ 1034.006279][ T9996] __x64_sys_clone+0x289/0x310 [ 1034.010881][ T9996] ? __do_sys_vfork+0x130/0x130 [ 1034.015571][ T9996] ? debug_smp_processor_id+0x17/0x20 [ 1034.020777][ T9996] do_syscall_64+0x44/0xd0 [ 1034.025030][ T9996] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1034.030758][ T9996] RIP: 0033:0x7f0bd76b80d9 [ 1034.035011][ T9996] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1034.054461][ T9996] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1034.062704][ T9996] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1034.070516][ T9996] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1034.078326][ T9996] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1034.086139][ T9996] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001 [ 1034.093988][ T9996] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1034.101765][ T9996] 14:45:03 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 2) 14:45:03 executing program 5: syz_clone(0x9800700, 0x0, 0x2, 0x0, 0x0, 0x0) 14:45:03 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x4000000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:03 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x8, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:03 executing program 1: r0 = syz_clone(0x54dba20932ea4f6b, 0x0, 0xffffff69, 0x0, 0x0, 0x0) (async, rerun: 32) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (rerun: 32) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async, rerun: 32) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) (rerun: 32) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) (async) ioctl$TUNGETVNETHDRSZ(r1, 0x800454d7, &(0x7f0000000080)) (async) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x1f, 0x7b, 0x40, 0x8, 0x0, 0x20, 0x40f44, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0xe3a, 0x4, @perf_config_ext={0x80000001, 0x3}, 0x8000, 0x0, 0x0, 0x5, 0xff, 0x80000000, 0x81, 0x0, 0x3, 0x0, 0x7ff0}, r0, 0x3, r1, 0x3) 14:45:03 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000000080), 0x10) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='fsi_master_gpio_clock_zeros\x00'}, 0x10) ioctl$PERF_EVENT_IOC_ID(r1, 0x80082407, &(0x7f00000001c0)) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r3, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) recvmsg$unix(r3, &(0x7f0000000640)={&(0x7f0000000240)=@abs, 0x6e, &(0x7f00000005c0)=[{&(0x7f00000002c0)=""/110, 0x6e}, {&(0x7f0000000340)=""/110, 0x6e}, {&(0x7f00000003c0)=""/220, 0xdc}, {&(0x7f00000004c0)=""/203, 0xcb}], 0x4, &(0x7f0000000600)=[@cred={{0x1c}}], 0x20}, 0x40010102) r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x80000, 0x0) openat$cgroup(0xffffffffffffffff, &(0x7f0000000680)='syz0\x00', 0x200002, 0x0) ioctl$TUNGETSNDBUF(r4, 0x800454d3, &(0x7f0000000200)) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000840)={0x1, 0x58, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000bc0)={r2, 0xe0, &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, &(0x7f0000000900)=[0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4, &(0x7f0000000940)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000980)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f00000009c0)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000a00), &(0x7f0000000a40), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000a80)}}, 0x10) r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=@base={0x14, 0x3, 0x9, 0x7, 0x80, 0x1, 0x80000000, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x2}, 0x48) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000cc0)=@bpf_lsm={0x1d, 0xb, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000101000000000000ffffffff1085c0ff10000000186000000d00000000000000050000008500000018000000027001000700000018000000ffffffff00000000f20d000085100000010000009500000000000000588f73eb88db641544a7740c808a8c0d2498c6445f818717c4056f05f3c2f949c0fd1facc3856496ddde96f3d038e46f8c20c753f3cd1ebdb45912e72b2c064171913de9062115dc8697440584ffdc9d05c2"], &(0x7f0000000740)='syzkaller\x00', 0x3, 0x1d, &(0x7f0000000780)=""/29, 0x40f00, 0x4, '\x00', r5, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000880)={0x4, 0x2}, 0x8, 0x10, &(0x7f00000008c0)={0x5, 0xe, 0x5, 0x80}, 0x10, r6, 0x0, 0x0, &(0x7f0000000c80)=[r7, 0xffffffffffffffff, 0x1, 0x1]}, 0x80) r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x200002, 0x0) openat$cgroup_devices(r8, &(0x7f0000000040)='devices.deny\x00', 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000000080), 0x10) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='fsi_master_gpio_clock_zeros\x00'}, 0x10) (async) ioctl$PERF_EVENT_IOC_ID(r1, 0x80082407, &(0x7f00000001c0)) (async) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) recvmsg$unix(r3, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) (async) recvmsg$unix(r3, &(0x7f0000000640)={&(0x7f0000000240)=@abs, 0x6e, &(0x7f00000005c0)=[{&(0x7f00000002c0)=""/110, 0x6e}, {&(0x7f0000000340)=""/110, 0x6e}, {&(0x7f00000003c0)=""/220, 0xdc}, {&(0x7f00000004c0)=""/203, 0xcb}], 0x4, &(0x7f0000000600)=[@cred={{0x1c}}], 0x20}, 0x40010102) (async) openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x80000, 0x0) (async) openat$cgroup(0xffffffffffffffff, &(0x7f0000000680)='syz0\x00', 0x200002, 0x0) (async) ioctl$TUNGETSNDBUF(r4, 0x800454d3, &(0x7f0000000200)) (async) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000840)={0x1, 0x58, &(0x7f00000007c0)}, 0x10) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000bc0)={r2, 0xe0, &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, &(0x7f0000000900)=[0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4, &(0x7f0000000940)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000980)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f00000009c0)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000a00), &(0x7f0000000a40), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000a80)}}, 0x10) (async) bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=@base={0x14, 0x3, 0x9, 0x7, 0x80, 0x1, 0x80000000, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x2}, 0x48) (async) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000cc0)=@bpf_lsm={0x1d, 0xb, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000101000000000000ffffffff1085c0ff10000000186000000d00000000000000050000008500000018000000027001000700000018000000ffffffff00000000f20d000085100000010000009500000000000000588f73eb88db641544a7740c808a8c0d2498c6445f818717c4056f05f3c2f949c0fd1facc3856496ddde96f3d038e46f8c20c753f3cd1ebdb45912e72b2c064171913de9062115dc8697440584ffdc9d05c2"], &(0x7f0000000740)='syzkaller\x00', 0x3, 0x1d, &(0x7f0000000780)=""/29, 0x40f00, 0x4, '\x00', r5, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000880)={0x4, 0x2}, 0x8, 0x10, &(0x7f00000008c0)={0x5, 0xe, 0x5, 0x80}, 0x10, r6, 0x0, 0x0, &(0x7f0000000c80)=[r7, 0xffffffffffffffff, 0x1, 0x1]}, 0x80) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x200002, 0x0) (async) openat$cgroup_devices(r8, &(0x7f0000000040)='devices.deny\x00', 0x2, 0x0) (async) 14:45:03 executing program 5: syz_clone(0x9800700, 0x0, 0x7, 0x0, 0x0, 0x0) 14:45:03 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x9, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:03 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x10000000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:03 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x40000000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1034.598905][T10007] FAULT_INJECTION: forcing a failure. [ 1034.598905][T10007] name failslab, interval 1, probability 0, space 0, times 0 [ 1034.638396][T10007] CPU: 1 PID: 10007 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 14:45:03 executing program 1: r0 = syz_clone(0x54dba20932ea4f6b, 0x0, 0xffffff69, 0x0, 0x0, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) ioctl$TUNGETVNETHDRSZ(r1, 0x800454d7, &(0x7f0000000080)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x1f, 0x7b, 0x40, 0x8, 0x0, 0x20, 0x40f44, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0xe3a, 0x4, @perf_config_ext={0x80000001, 0x3}, 0x8000, 0x0, 0x0, 0x5, 0xff, 0x80000000, 0x81, 0x0, 0x3, 0x0, 0x7ff0}, r0, 0x3, r1, 0x3) syz_clone(0x54dba20932ea4f6b, 0x0, 0xffffff69, 0x0, 0x0, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async) openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) (async) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) (async) ioctl$TUNGETVNETHDRSZ(r1, 0x800454d7, &(0x7f0000000080)) (async) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x1f, 0x7b, 0x40, 0x8, 0x0, 0x20, 0x40f44, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0xe3a, 0x4, @perf_config_ext={0x80000001, 0x3}, 0x8000, 0x0, 0x0, 0x5, 0xff, 0x80000000, 0x81, 0x0, 0x3, 0x0, 0x7ff0}, r0, 0x3, r1, 0x3) (async) 14:45:03 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0xa, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) [ 1034.648473][T10007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1034.658367][T10007] Call Trace: [ 1034.661487][T10007] [ 1034.664275][T10007] dump_stack_lvl+0x151/0x1b7 [ 1034.668774][T10007] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1034.674073][T10007] ? __kasan_slab_alloc+0xc4/0xe0 [ 1034.678936][T10007] ? kmem_cache_alloc+0x189/0x2f0 [ 1034.683845][T10007] dump_stack+0x15/0x17 [ 1034.687788][T10007] should_fail+0x3c0/0x510 [ 1034.692043][T10007] ? __get_vm_area_node+0x13a/0x380 [ 1034.697079][T10007] __should_failslab+0x9f/0xe0 [ 1034.701677][T10007] should_failslab+0x9/0x20 [ 1034.706012][T10007] kmem_cache_alloc_trace+0x4a/0x310 [ 1034.711139][T10007] __get_vm_area_node+0x13a/0x380 [ 1034.715996][T10007] __vmalloc_node_range+0xda/0x800 [ 1034.720946][T10007] ? copy_process+0x579/0x3250 [ 1034.725544][T10007] ? kmem_cache_alloc+0x1c1/0x2f0 [ 1034.730404][T10007] ? dup_task_struct+0x53/0xa60 [ 1034.735097][T10007] dup_task_struct+0x61f/0xa60 [ 1034.739780][T10007] ? copy_process+0x579/0x3250 [ 1034.744383][T10007] ? __kasan_check_write+0x14/0x20 [ 1034.749329][T10007] copy_process+0x579/0x3250 [ 1034.753768][T10007] ? __kasan_check_write+0x14/0x20 [ 1034.758702][T10007] ? proc_fail_nth_write+0x213/0x290 [ 1034.763823][T10007] ? proc_fail_nth_read+0x220/0x220 [ 1034.768857][T10007] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1034.773805][T10007] ? vfs_write+0x9af/0x1050 [ 1034.778140][T10007] ? vmacache_update+0xb7/0x120 [ 1034.782854][T10007] kernel_clone+0x22d/0x990 [ 1034.787169][T10007] ? file_end_write+0x1b0/0x1b0 [ 1034.791861][T10007] ? __kasan_check_write+0x14/0x20 [ 1034.796805][T10007] ? create_io_thread+0x1e0/0x1e0 [ 1034.801668][T10007] ? __mutex_lock_slowpath+0x10/0x10 [ 1034.806785][T10007] __x64_sys_clone+0x289/0x310 [ 1034.811386][T10007] ? __do_sys_vfork+0x130/0x130 [ 1034.816073][T10007] ? debug_smp_processor_id+0x17/0x20 [ 1034.821278][T10007] do_syscall_64+0x44/0xd0 [ 1034.825621][T10007] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1034.831350][T10007] RIP: 0033:0x7f0bd76b80d9 [ 1034.835602][T10007] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1034.855053][T10007] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1034.863300][T10007] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1034.871102][T10007] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1034.878915][T10007] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1034.886726][T10007] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001 [ 1034.894536][T10007] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1034.902364][T10007] 14:45:03 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 3) 14:45:03 executing program 1: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x6c0480, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) ioctl$TUNGETVNETBE(r1, 0x800454df, &(0x7f0000000000)=0x1) ioctl$TUNGETDEVNETNS(r0, 0x54e3, 0x0) ioctl$TUNSETSTEERINGEBPF(r1, 0x800454e0, &(0x7f00000001c0)) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000180)={&(0x7f0000000040)="7dbfaeaf819c4450e01921cfd2ae022fa2068d4045bbbc9ef03bcf2e0e72cf2084a5f911cdb0", &(0x7f0000000080)=""/50, &(0x7f00000000c0)="dda9e377ddd97c2e5cfc", &(0x7f0000000140)="d925951112460aa875e72e0c426f2fc7116e632f67ee57e47db48fa9becffb6130055948dea4e4758be52ddabb5cf2bbbb2f9eceb0cd", 0x7, 0x1}, 0x38) 14:45:03 executing program 5: syz_clone(0x9800700, 0x0, 0x8, 0x0, 0x0, 0x0) 14:45:03 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x200000c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:03 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0xb, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:03 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) (async) bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000000080), 0x10) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='fsi_master_gpio_clock_zeros\x00'}, 0x10) ioctl$PERF_EVENT_IOC_ID(r1, 0x80082407, &(0x7f00000001c0)) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r3, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) recvmsg$unix(r3, &(0x7f0000000640)={&(0x7f0000000240)=@abs, 0x6e, &(0x7f00000005c0)=[{&(0x7f00000002c0)=""/110, 0x6e}, {&(0x7f0000000340)=""/110, 0x6e}, {&(0x7f00000003c0)=""/220, 0xdc}, {&(0x7f00000004c0)=""/203, 0xcb}], 0x4, &(0x7f0000000600)=[@cred={{0x1c}}], 0x20}, 0x40010102) (async) r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x80000, 0x0) openat$cgroup(0xffffffffffffffff, &(0x7f0000000680)='syz0\x00', 0x200002, 0x0) (async) ioctl$TUNGETSNDBUF(r4, 0x800454d3, &(0x7f0000000200)) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000840)={0x1, 0x58, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000bc0)={r2, 0xe0, &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, &(0x7f0000000900)=[0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4, &(0x7f0000000940)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000980)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f00000009c0)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000a00), &(0x7f0000000a40), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000a80)}}, 0x10) (async) r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=@base={0x14, 0x3, 0x9, 0x7, 0x80, 0x1, 0x80000000, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x2}, 0x48) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000cc0)=@bpf_lsm={0x1d, 0xb, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000101000000000000ffffffff1085c0ff10000000186000000d00000000000000050000008500000018000000027001000700000018000000ffffffff00000000f20d000085100000010000009500000000000000588f73eb88db641544a7740c808a8c0d2498c6445f818717c4056f05f3c2f949c0fd1facc3856496ddde96f3d038e46f8c20c753f3cd1ebdb45912e72b2c064171913de9062115dc8697440584ffdc9d05c2"], &(0x7f0000000740)='syzkaller\x00', 0x3, 0x1d, &(0x7f0000000780)=""/29, 0x40f00, 0x4, '\x00', r5, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000880)={0x4, 0x2}, 0x8, 0x10, &(0x7f00000008c0)={0x5, 0xe, 0x5, 0x80}, 0x10, r6, 0x0, 0x0, &(0x7f0000000c80)=[r7, 0xffffffffffffffff, 0x1, 0x1]}, 0x80) (async) r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x200002, 0x0) openat$cgroup_devices(r8, &(0x7f0000000040)='devices.deny\x00', 0x2, 0x0) 14:45:03 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:03 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0xc, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:03 executing program 5: syz_clone(0x9800700, 0x0, 0x9, 0x0, 0x0, 0x0) 14:45:03 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:03 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0xd, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:03 executing program 5: syz_clone(0x9800700, 0x0, 0x10, 0x0, 0x0, 0x0) [ 1035.058932][T10077] FAULT_INJECTION: forcing a failure. [ 1035.058932][T10077] name failslab, interval 1, probability 0, space 0, times 0 [ 1035.079145][T10077] CPU: 1 PID: 10077 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1035.089213][T10077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1035.099106][T10077] Call Trace: [ 1035.102229][T10077] [ 1035.105005][T10077] dump_stack_lvl+0x151/0x1b7 [ 1035.109522][T10077] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1035.114815][T10077] dump_stack+0x15/0x17 [ 1035.118808][T10077] should_fail+0x3c0/0x510 [ 1035.123322][T10077] ? security_prepare_creds+0x50/0x160 [ 1035.128787][T10077] __should_failslab+0x9f/0xe0 [ 1035.133400][T10077] should_failslab+0x9/0x20 [ 1035.137727][T10077] __kmalloc+0x6d/0x350 [ 1035.141720][T10077] security_prepare_creds+0x50/0x160 [ 1035.146844][T10077] prepare_creds+0x471/0x690 [ 1035.151268][T10077] copy_creds+0xde/0x640 [ 1035.155436][T10077] copy_process+0x775/0x3250 [ 1035.159860][T10077] ? __kasan_check_write+0x14/0x20 [ 1035.164808][T10077] ? proc_fail_nth_write+0x213/0x290 [ 1035.169931][T10077] ? proc_fail_nth_read+0x220/0x220 [ 1035.174963][T10077] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1035.179912][T10077] ? vfs_write+0x9af/0x1050 [ 1035.184251][T10077] ? vmacache_update+0xb7/0x120 [ 1035.188939][T10077] kernel_clone+0x22d/0x990 [ 1035.193277][T10077] ? file_end_write+0x1b0/0x1b0 [ 1035.197965][T10077] ? __kasan_check_write+0x14/0x20 [ 1035.202924][T10077] ? create_io_thread+0x1e0/0x1e0 [ 1035.207773][T10077] ? __mutex_lock_slowpath+0x10/0x10 [ 1035.212895][T10077] __x64_sys_clone+0x289/0x310 [ 1035.217496][T10077] ? __do_sys_vfork+0x130/0x130 [ 1035.222186][T10077] ? debug_smp_processor_id+0x17/0x20 [ 1035.227478][T10077] do_syscall_64+0x44/0xd0 [ 1035.231735][T10077] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1035.237463][T10077] RIP: 0033:0x7f0bd76b80d9 [ 1035.241720][T10077] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1035.261156][T10077] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1035.269399][T10077] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1035.277212][T10077] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1035.285023][T10077] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1035.292922][T10077] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001 [ 1035.300738][T10077] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1035.308723][T10077] 14:45:03 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 4) 14:45:03 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0xe, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:03 executing program 1: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x6c0480, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) ioctl$TUNGETVNETBE(r1, 0x800454df, &(0x7f0000000000)=0x1) ioctl$TUNGETDEVNETNS(r0, 0x54e3, 0x0) ioctl$TUNSETSTEERINGEBPF(r1, 0x800454e0, &(0x7f00000001c0)) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000180)={&(0x7f0000000040)="7dbfaeaf819c4450e01921cfd2ae022fa2068d4045bbbc9ef03bcf2e0e72cf2084a5f911cdb0", &(0x7f0000000080)=""/50, &(0x7f00000000c0)="dda9e377ddd97c2e5cfc", &(0x7f0000000140)="d925951112460aa875e72e0c426f2fc7116e632f67ee57e47db48fa9becffb6130055948dea4e4758be52ddabb5cf2bbbb2f9eceb0cd", 0x7, 0x1}, 0x38) openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x6c0480, 0x0) (async) openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) (async) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) (async) ioctl$TUNGETVNETBE(r1, 0x800454df, &(0x7f0000000000)=0x1) (async) ioctl$TUNGETDEVNETNS(r0, 0x54e3, 0x0) (async) ioctl$TUNSETSTEERINGEBPF(r1, 0x800454e0, &(0x7f00000001c0)) (async) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000180)={&(0x7f0000000040)="7dbfaeaf819c4450e01921cfd2ae022fa2068d4045bbbc9ef03bcf2e0e72cf2084a5f911cdb0", &(0x7f0000000080)=""/50, &(0x7f00000000c0)="dda9e377ddd97c2e5cfc", &(0x7f0000000140)="d925951112460aa875e72e0c426f2fc7116e632f67ee57e47db48fa9becffb6130055948dea4e4758be52ddabb5cf2bbbb2f9eceb0cd", 0x7, 0x1}, 0x38) (async) 14:45:03 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:03 executing program 5: syz_clone(0x9800700, 0x0, 0x700, 0x0, 0x0, 0x0) [ 1035.434620][T10088] FAULT_INJECTION: forcing a failure. [ 1035.434620][T10088] name failslab, interval 1, probability 0, space 0, times 0 [ 1035.460262][T10088] CPU: 0 PID: 10088 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1035.470334][T10088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1035.480232][T10088] Call Trace: [ 1035.483350][T10088] [ 1035.486126][T10088] dump_stack_lvl+0x151/0x1b7 [ 1035.490641][T10088] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1035.495938][T10088] ? avc_has_perm_noaudit+0x358/0x450 [ 1035.501165][T10088] dump_stack+0x15/0x17 [ 1035.505138][T10088] should_fail+0x3c0/0x510 [ 1035.509392][T10088] __should_failslab+0x9f/0xe0 [ 1035.513997][T10088] should_failslab+0x9/0x20 [ 1035.518327][T10088] kmem_cache_alloc+0x4f/0x2f0 [ 1035.522934][T10088] ? dup_fd+0x71/0xa40 [ 1035.526834][T10088] dup_fd+0x71/0xa40 [ 1035.530567][T10088] ? avc_has_perm+0x16d/0x260 [ 1035.535080][T10088] ? avc_has_perm_noaudit+0x450/0x450 [ 1035.540293][T10088] copy_files+0xe6/0x200 [ 1035.544369][T10088] ? perf_event_attrs+0x30/0x30 [ 1035.549056][T10088] ? dup_task_struct+0xa60/0xa60 [ 1035.553921][T10088] ? security_task_alloc+0x132/0x150 [ 1035.559130][T10088] copy_process+0x11e9/0x3250 [ 1035.563729][T10088] ? proc_fail_nth_write+0x213/0x290 [ 1035.568851][T10088] ? proc_fail_nth_read+0x220/0x220 [ 1035.573884][T10088] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1035.578837][T10088] ? vfs_write+0x9af/0x1050 [ 1035.583172][T10088] ? vmacache_update+0xb7/0x120 [ 1035.587866][T10088] kernel_clone+0x22d/0x990 [ 1035.592200][T10088] ? file_end_write+0x1b0/0x1b0 [ 1035.596893][T10088] ? __kasan_check_write+0x14/0x20 [ 1035.601832][T10088] ? create_io_thread+0x1e0/0x1e0 [ 1035.606696][T10088] ? __mutex_lock_slowpath+0x10/0x10 [ 1035.611817][T10088] __x64_sys_clone+0x289/0x310 [ 1035.616415][T10088] ? __do_sys_vfork+0x130/0x130 [ 1035.621103][T10088] ? debug_smp_processor_id+0x17/0x20 [ 1035.626340][T10088] do_syscall_64+0x44/0xd0 [ 1035.630568][T10088] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1035.636301][T10088] RIP: 0033:0x7f0bd76b80d9 [ 1035.640565][T10088] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1035.660001][T10088] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1035.668239][T10088] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1035.676051][T10088] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1035.683862][T10088] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1035.691674][T10088] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001 [ 1035.699486][T10088] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1035.707305][T10088] 14:45:04 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0xf, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:04 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:04 executing program 5: syz_clone(0x9800700, 0x0, 0x900, 0x0, 0x0, 0x0) 14:45:04 executing program 1: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x6c0480, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) (async) ioctl$TUNGETVNETBE(r1, 0x800454df, &(0x7f0000000000)=0x1) (async) ioctl$TUNGETDEVNETNS(r0, 0x54e3, 0x0) (async) ioctl$TUNSETSTEERINGEBPF(r1, 0x800454e0, &(0x7f00000001c0)) (async) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000180)={&(0x7f0000000040)="7dbfaeaf819c4450e01921cfd2ae022fa2068d4045bbbc9ef03bcf2e0e72cf2084a5f911cdb0", &(0x7f0000000080)=""/50, &(0x7f00000000c0)="dda9e377ddd97c2e5cfc", &(0x7f0000000140)="d925951112460aa875e72e0c426f2fc7116e632f67ee57e47db48fa9becffb6130055948dea4e4758be52ddabb5cf2bbbb2f9eceb0cd", 0x7, 0x1}, 0x38) 14:45:04 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 5) 14:45:04 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r2}, 0x14) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000380)={r2, 0xe0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0), ""/16, 0x0, 0x0, 0x0, 0x0, 0x4, 0x7, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000400)=[{}, {}, {}, {}], 0x18, 0x10, &(0x7f00000001c0), &(0x7f0000000200), 0xffe8, 0x10, 0x8, 0x8, &(0x7f0000000240)}}, 0x10) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000180)={0xffffffffffffffff, r2, 0x0, r2}, 0x10) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r3, 0x800454e1, 0x0) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r4}, 0x14) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000600)=r4, 0x4) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x200180, 0x0) ioctl$TUNGETFEATURES(r5, 0x800454cf, &(0x7f0000000080)) r6 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r6, 0x800454cf, &(0x7f0000000040)) r7 = openat$cgroup_ro(r6, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000740)={r7, 0x58, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x6, 0x5, &(0x7f0000000640)=@raw=[@ldst={0x3, 0x2, 0x2, 0x1, 0x0, 0xfffffffffffffff0, 0x18}, @map_idx_val={0x18, 0x6, 0x6, 0x0, 0xc, 0x0, 0x0, 0x0, 0x100}, @map_idx_val={0x18, 0x2, 0x6, 0x0, 0x9, 0x0, 0x0, 0x0, 0x1}], &(0x7f0000000680)='GPL\x00', 0xef, 0x0, 0x0, 0x41100, 0x0, '\x00', r8, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000780)={0x2, 0x3}, 0x8, 0x10, &(0x7f00000007c0)={0x1, 0x5, 0x2, 0x1}, 0x10}, 0x80) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000000c0)={r6, &(0x7f0000000500)="bcd9c8d32c66d844d84205dc292752d25788b66d04ad587659bd9e6b4bdcc9a30e23d7a2aa3cc1909598ab2139dbd0ca7be20dff51c1a6d995d37ac5814e4872d279fa6669aa730f37828f225d6324b113dea6a2b5767dc34a577d8aaf", &(0x7f0000000580)=""/125}, 0x20) ioctl$TUNSETQUEUE(r3, 0x400454d9, &(0x7f0000000000)={'macvtap0\x00', 0x400}) 14:45:04 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x11, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:04 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:04 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r2}, 0x14) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000380)={r2, 0xe0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0), ""/16, 0x0, 0x0, 0x0, 0x0, 0x4, 0x7, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000400)=[{}, {}, {}, {}], 0x18, 0x10, &(0x7f00000001c0), &(0x7f0000000200), 0xffe8, 0x10, 0x8, 0x8, &(0x7f0000000240)}}, 0x10) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000180)={0xffffffffffffffff, r2, 0x0, r2}, 0x10) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r3, 0x800454e1, 0x0) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r4}, 0x14) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000600)=r4, 0x4) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x200180, 0x0) ioctl$TUNGETFEATURES(r5, 0x800454cf, &(0x7f0000000080)) r6 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r6, 0x800454cf, &(0x7f0000000040)) r7 = openat$cgroup_ro(r6, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000740)={r7, 0x58, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x6, 0x5, &(0x7f0000000640)=@raw=[@ldst={0x3, 0x2, 0x2, 0x1, 0x0, 0xfffffffffffffff0, 0x18}, @map_idx_val={0x18, 0x6, 0x6, 0x0, 0xc, 0x0, 0x0, 0x0, 0x100}, @map_idx_val={0x18, 0x2, 0x6, 0x0, 0x9, 0x0, 0x0, 0x0, 0x1}], &(0x7f0000000680)='GPL\x00', 0xef, 0x0, 0x0, 0x41100, 0x0, '\x00', r8, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000780)={0x2, 0x3}, 0x8, 0x10, &(0x7f00000007c0)={0x1, 0x5, 0x2, 0x1}, 0x10}, 0x80) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000000c0)={r6, &(0x7f0000000500)="bcd9c8d32c66d844d84205dc292752d25788b66d04ad587659bd9e6b4bdcc9a30e23d7a2aa3cc1909598ab2139dbd0ca7be20dff51c1a6d995d37ac5814e4872d279fa6669aa730f37828f225d6324b113dea6a2b5767dc34a577d8aaf", &(0x7f0000000580)=""/125}, 0x20) ioctl$TUNSETQUEUE(r3, 0x400454d9, &(0x7f0000000000)={'macvtap0\x00', 0x400}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) (async) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r2}, 0x14) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000380)={r2, 0xe0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0), ""/16, 0x0, 0x0, 0x0, 0x0, 0x4, 0x7, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000400)=[{}, {}, {}, {}], 0x18, 0x10, &(0x7f00000001c0), &(0x7f0000000200), 0xffe8, 0x10, 0x8, 0x8, &(0x7f0000000240)}}, 0x10) (async) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000180)={0xffffffffffffffff, r2, 0x0, r2}, 0x10) (async) openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) (async) ioctl$TUNSETFILTEREBPF(r3, 0x800454e1, 0x0) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) (async) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r4}, 0x14) (async) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000600)=r4, 0x4) (async) openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x200180, 0x0) (async) ioctl$TUNGETFEATURES(r5, 0x800454cf, &(0x7f0000000080)) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) ioctl$TUNGETFEATURES(r6, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r6, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000740)={r7, 0x58, &(0x7f00000006c0)}, 0x10) (async) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x6, 0x5, &(0x7f0000000640)=@raw=[@ldst={0x3, 0x2, 0x2, 0x1, 0x0, 0xfffffffffffffff0, 0x18}, @map_idx_val={0x18, 0x6, 0x6, 0x0, 0xc, 0x0, 0x0, 0x0, 0x100}, @map_idx_val={0x18, 0x2, 0x6, 0x0, 0x9, 0x0, 0x0, 0x0, 0x1}], &(0x7f0000000680)='GPL\x00', 0xef, 0x0, 0x0, 0x41100, 0x0, '\x00', r8, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000780)={0x2, 0x3}, 0x8, 0x10, &(0x7f00000007c0)={0x1, 0x5, 0x2, 0x1}, 0x10}, 0x80) (async) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000000c0)={r6, &(0x7f0000000500)="bcd9c8d32c66d844d84205dc292752d25788b66d04ad587659bd9e6b4bdcc9a30e23d7a2aa3cc1909598ab2139dbd0ca7be20dff51c1a6d995d37ac5814e4872d279fa6669aa730f37828f225d6324b113dea6a2b5767dc34a577d8aaf", &(0x7f0000000580)=""/125}, 0x20) (async) ioctl$TUNSETQUEUE(r3, 0x400454d9, &(0x7f0000000000)={'macvtap0\x00', 0x400}) (async) 14:45:04 executing program 5: syz_clone(0x9800700, 0x0, 0x1f00, 0x0, 0x0, 0x0) 14:45:04 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$TUNGETSNDBUF(0xffffffffffffffff, 0x800454d3, &(0x7f0000000000)) ioctl$TUNGETFILTER(0xffffffffffffffff, 0x801054db, &(0x7f0000000040)=""/119) 14:45:04 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x12, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:04 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:04 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x13, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:04 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r2}, 0x14) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000380)={r2, 0xe0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0), ""/16, 0x0, 0x0, 0x0, 0x0, 0x4, 0x7, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000400)=[{}, {}, {}, {}], 0x18, 0x10, &(0x7f00000001c0), &(0x7f0000000200), 0xffe8, 0x10, 0x8, 0x8, &(0x7f0000000240)}}, 0x10) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000180)={0xffffffffffffffff, r2, 0x0, r2}, 0x10) (async) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r3, 0x800454e1, 0x0) (async) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r4}, 0x14) (async) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000600)=r4, 0x4) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x200180, 0x0) ioctl$TUNGETFEATURES(r5, 0x800454cf, &(0x7f0000000080)) (async) r6 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r6, 0x800454cf, &(0x7f0000000040)) (async) r7 = openat$cgroup_ro(r6, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000740)={r7, 0x58, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x6, 0x5, &(0x7f0000000640)=@raw=[@ldst={0x3, 0x2, 0x2, 0x1, 0x0, 0xfffffffffffffff0, 0x18}, @map_idx_val={0x18, 0x6, 0x6, 0x0, 0xc, 0x0, 0x0, 0x0, 0x100}, @map_idx_val={0x18, 0x2, 0x6, 0x0, 0x9, 0x0, 0x0, 0x0, 0x1}], &(0x7f0000000680)='GPL\x00', 0xef, 0x0, 0x0, 0x41100, 0x0, '\x00', r8, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000780)={0x2, 0x3}, 0x8, 0x10, &(0x7f00000007c0)={0x1, 0x5, 0x2, 0x1}, 0x10}, 0x80) (async) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000000c0)={r6, &(0x7f0000000500)="bcd9c8d32c66d844d84205dc292752d25788b66d04ad587659bd9e6b4bdcc9a30e23d7a2aa3cc1909598ab2139dbd0ca7be20dff51c1a6d995d37ac5814e4872d279fa6669aa730f37828f225d6324b113dea6a2b5767dc34a577d8aaf", &(0x7f0000000580)=""/125}, 0x20) (async) ioctl$TUNSETQUEUE(r3, 0x400454d9, &(0x7f0000000000)={'macvtap0\x00', 0x400}) 14:45:04 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1035.892701][T10114] FAULT_INJECTION: forcing a failure. [ 1035.892701][T10114] name failslab, interval 1, probability 0, space 0, times 0 [ 1035.936126][T10114] CPU: 0 PID: 10114 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1035.946199][T10114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1035.956093][T10114] Call Trace: [ 1035.959212][T10114] [ 1035.961988][T10114] dump_stack_lvl+0x151/0x1b7 [ 1035.966502][T10114] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1035.972680][T10114] dump_stack+0x15/0x17 [ 1035.976657][T10114] should_fail+0x3c0/0x510 [ 1035.980912][T10114] ? alloc_fdtable+0xaf/0x2b0 [ 1035.985426][T10114] __should_failslab+0x9f/0xe0 [ 1035.990025][T10114] should_failslab+0x9/0x20 [ 1035.994364][T10114] kmem_cache_alloc_trace+0x4a/0x310 [ 1035.999487][T10114] ? __kasan_check_write+0x14/0x20 [ 1036.004443][T10114] ? _raw_spin_lock+0xa3/0x1b0 [ 1036.009037][T10114] alloc_fdtable+0xaf/0x2b0 [ 1036.013377][T10114] dup_fd+0x781/0xa40 [ 1036.017193][T10114] ? avc_has_perm+0x16d/0x260 [ 1036.021709][T10114] copy_files+0xe6/0x200 [ 1036.025785][T10114] ? perf_event_attrs+0x30/0x30 [ 1036.030474][T10114] ? dup_task_struct+0xa60/0xa60 [ 1036.035248][T10114] ? security_task_alloc+0x132/0x150 [ 1036.040367][T10114] copy_process+0x11e9/0x3250 [ 1036.044882][T10114] ? proc_fail_nth_write+0x213/0x290 [ 1036.050002][T10114] ? proc_fail_nth_read+0x220/0x220 [ 1036.055038][T10114] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1036.059986][T10114] ? vfs_write+0x9af/0x1050 [ 1036.064325][T10114] ? vmacache_update+0xb7/0x120 [ 1036.069012][T10114] kernel_clone+0x22d/0x990 [ 1036.073351][T10114] ? file_end_write+0x1b0/0x1b0 [ 1036.078037][T10114] ? __kasan_check_write+0x14/0x20 [ 1036.082985][T10114] ? create_io_thread+0x1e0/0x1e0 [ 1036.087847][T10114] ? __mutex_lock_slowpath+0x10/0x10 [ 1036.092969][T10114] __x64_sys_clone+0x289/0x310 [ 1036.097572][T10114] ? __do_sys_vfork+0x130/0x130 [ 1036.102259][T10114] ? debug_smp_processor_id+0x17/0x20 [ 1036.107469][T10114] do_syscall_64+0x44/0xd0 [ 1036.111720][T10114] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1036.117449][T10114] RIP: 0033:0x7f0bd76b80d9 [ 1036.121706][T10114] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1036.141142][T10114] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1036.149388][T10114] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1036.157212][T10114] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1036.165018][T10114] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1036.172826][T10114] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001 14:45:04 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 6) 14:45:04 executing program 5: syz_clone(0x9800700, 0x0, 0x2000, 0x0, 0x0, 0x0) 14:45:04 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x14, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:04 executing program 4: ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f0000000000)) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:04 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$TUNGETSNDBUF(0xffffffffffffffff, 0x800454d3, &(0x7f0000000000)) (async) ioctl$TUNGETFILTER(0xffffffffffffffff, 0x801054db, &(0x7f0000000040)=""/119) 14:45:04 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:04 executing program 4: ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f0000000000)) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f0000000000)) (async) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002fc0)) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) 14:45:04 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x15, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:04 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:04 executing program 5: syz_clone(0x9800700, 0x0, 0x80000, 0x0, 0x0, 0x0) 14:45:04 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) ioctl$TUNGETSNDBUF(0xffffffffffffffff, 0x800454d3, &(0x7f0000000000)) (async) ioctl$TUNGETFILTER(0xffffffffffffffff, 0x801054db, &(0x7f0000000040)=""/119) [ 1036.180897][T10114] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1036.188722][T10114] [ 1036.225132][T10167] FAULT_INJECTION: forcing a failure. [ 1036.225132][T10167] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1036.245016][T10167] CPU: 0 PID: 10167 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1036.255090][T10167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1036.264981][T10167] Call Trace: [ 1036.268111][T10167] [ 1036.270891][T10167] dump_stack_lvl+0x151/0x1b7 14:45:04 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x16, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) [ 1036.275394][T10167] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1036.280687][T10167] dump_stack+0x15/0x17 [ 1036.284682][T10167] should_fail+0x3c0/0x510 [ 1036.288931][T10167] should_fail_alloc_page+0x58/0x70 [ 1036.293968][T10167] __alloc_pages+0x1de/0x7c0 [ 1036.298395][T10167] ? __count_vm_events+0x30/0x30 [ 1036.303175][T10167] ? _raw_spin_trylock_bh+0x1d0/0x1d0 [ 1036.308375][T10167] __get_free_pages+0xe/0x30 [ 1036.312796][T10167] kasan_populate_vmalloc_pte+0x39/0x130 [ 1036.318263][T10167] ? __apply_to_page_range+0x8a5/0xb90 [ 1036.323559][T10167] __apply_to_page_range+0x8b8/0xb90 [ 1036.328679][T10167] ? kasan_populate_vmalloc+0x70/0x70 [ 1036.333904][T10167] ? kasan_populate_vmalloc+0x70/0x70 [ 1036.339095][T10167] apply_to_page_range+0x3b/0x50 [ 1036.343875][T10167] kasan_populate_vmalloc+0x65/0x70 [ 1036.348905][T10167] alloc_vmap_area+0x1946/0x1a90 [ 1036.353679][T10167] ? vm_map_ram+0xa80/0xa80 [ 1036.358017][T10167] ? __kasan_kmalloc+0x9/0x10 [ 1036.362534][T10167] ? __get_vm_area_node+0x13a/0x380 [ 1036.367565][T10167] __get_vm_area_node+0x17b/0x380 [ 1036.372427][T10167] __vmalloc_node_range+0xda/0x800 [ 1036.377378][T10167] ? copy_process+0x579/0x3250 [ 1036.382062][T10167] ? kmem_cache_alloc+0x1c1/0x2f0 [ 1036.386925][T10167] ? dup_task_struct+0x53/0xa60 [ 1036.391638][T10167] dup_task_struct+0x61f/0xa60 [ 1036.396212][T10167] ? copy_process+0x579/0x3250 [ 1036.400814][T10167] ? __kasan_check_write+0x14/0x20 [ 1036.405853][T10167] copy_process+0x579/0x3250 [ 1036.410274][T10167] ? __kasan_check_write+0x14/0x20 [ 1036.415230][T10167] ? proc_fail_nth_write+0x213/0x290 [ 1036.420342][T10167] ? proc_fail_nth_read+0x220/0x220 [ 1036.425386][T10167] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1036.430347][T10167] ? vfs_write+0x9af/0x1050 [ 1036.434671][T10167] ? vmacache_update+0xb7/0x120 [ 1036.439548][T10167] kernel_clone+0x22d/0x990 [ 1036.443890][T10167] ? file_end_write+0x1b0/0x1b0 [ 1036.448583][T10167] ? __kasan_check_write+0x14/0x20 [ 1036.453522][T10167] ? create_io_thread+0x1e0/0x1e0 [ 1036.458384][T10167] ? __mutex_lock_slowpath+0x10/0x10 [ 1036.463508][T10167] __x64_sys_clone+0x289/0x310 [ 1036.468112][T10167] ? __do_sys_vfork+0x130/0x130 [ 1036.472883][T10167] ? debug_smp_processor_id+0x17/0x20 [ 1036.478095][T10167] do_syscall_64+0x44/0xd0 [ 1036.482342][T10167] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1036.488067][T10167] RIP: 0033:0x7f0bd76b80d9 [ 1036.492324][T10167] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1036.512209][T10167] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 14:45:05 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 7) 14:45:05 executing program 1: syz_clone(0x24a80900, 0x0, 0xfffffffffffffed5, 0x0, 0x0, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b00)={0x18, 0x2, &(0x7f00000008c0)=@raw=[@alu={0x7}, @call], &(0x7f0000000940)='GPL\x00', 0x1, 0xe2, &(0x7f0000000980)=""/226, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000080)={&(0x7f0000000040)='./file0\x00'}, 0x10) bpf$PROG_BIND_MAP(0x23, &(0x7f00000000c0)={r0, r1}, 0xc) r2 = gettid() syz_open_procfs$namespace(r2, 0x0) 14:45:05 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:05 executing program 5: syz_clone(0x9800700, 0x0, 0x100000, 0x0, 0x0, 0x0) 14:45:05 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x17, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:05 executing program 4: ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f0000000000)) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:05 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000580)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000005c0), 0x4) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cgroup.kill\x00', 0x0, 0x0) recvmsg$unix(r2, &(0x7f0000000240)={&(0x7f0000000040), 0x6e, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/184, 0xb8}, {&(0x7f0000000180)=""/5, 0x5}], 0x2, &(0x7f0000000200)=[@cred={{0x1c}}], 0x20}, 0x0) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000540)={r2, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000280)=[0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x5, &(0x7f00000002c0)=[0x0, 0x0], &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000340)=[{}], 0x8, 0x10, &(0x7f0000000380), &(0x7f00000003c0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000400)}}, 0x10) [ 1036.520879][T10167] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1036.528690][T10167] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1036.536506][T10167] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1036.544347][T10167] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001 [ 1036.552124][T10167] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1036.559953][T10167] 14:45:05 executing program 1: syz_clone(0x24a80900, 0x0, 0xfffffffffffffed5, 0x0, 0x0, 0x0) (async) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b00)={0x18, 0x2, &(0x7f00000008c0)=@raw=[@alu={0x7}, @call], &(0x7f0000000940)='GPL\x00', 0x1, 0xe2, &(0x7f0000000980)=""/226, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000080)={&(0x7f0000000040)='./file0\x00'}, 0x10) bpf$PROG_BIND_MAP(0x23, &(0x7f00000000c0)={r0, r1}, 0xc) r2 = gettid() syz_open_procfs$namespace(r2, 0x0) 14:45:05 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:05 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x18, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:05 executing program 1: syz_clone(0x24a80900, 0x0, 0xfffffffffffffed5, 0x0, 0x0, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b00)={0x18, 0x2, &(0x7f00000008c0)=@raw=[@alu={0x7}, @call], &(0x7f0000000940)='GPL\x00', 0x1, 0xe2, &(0x7f0000000980)=""/226, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000080)={&(0x7f0000000040)='./file0\x00'}, 0x10) bpf$PROG_BIND_MAP(0x23, &(0x7f00000000c0)={r0, r1}, 0xc) (async) r2 = gettid() syz_open_procfs$namespace(r2, 0x0) [ 1036.584266][T10191] FAULT_INJECTION: forcing a failure. [ 1036.584266][T10191] name failslab, interval 1, probability 0, space 0, times 0 [ 1036.597620][T10191] CPU: 0 PID: 10191 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1036.607681][T10191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1036.617586][T10191] Call Trace: [ 1036.620698][T10191] [ 1036.623476][T10191] dump_stack_lvl+0x151/0x1b7 [ 1036.627992][T10191] ? bfq_pos_tree_add_move+0x43e/0x43e 14:45:05 executing program 1: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) openat$cgroup_procs(r1, &(0x7f0000000280)='cgroup.procs\x00', 0x2, 0x0) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) r3 = openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000001c0)={r0, 0x20, &(0x7f0000000180)={&(0x7f0000000000)=""/183, 0xb7, 0x0, &(0x7f00000000c0)=""/150, 0x96}}, 0x10) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r4, 0x800454e1, 0x0) ioctl$TUNSETLINK(r4, 0x400454cd, 0x205) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000480)={r1, 0x20, &(0x7f0000000440)={&(0x7f00000002c0)=""/235, 0xeb, 0x0, &(0x7f00000003c0)=""/98, 0x62}}, 0x10) r5 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000500)={&(0x7f00000004c0)='./file0\x00', 0x0, 0x8}, 0x10) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000940)={r2, 0xe0, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000680)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x2, &(0x7f00000006c0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000700)=[0x0, 0x0], 0x0, 0x8, &(0x7f0000000740)=[{}], 0x8, 0x10, &(0x7f0000000780), &(0x7f00000007c0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000800)}}, 0x10) r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r8}, 0x14) r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r9}, 0x14) r10 = bpf$ITER_CREATE(0x21, &(0x7f0000000ac0)={r0}, 0x8) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@cgroup=r10, r9, 0x0, 0x7, r8}, 0x14) bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x3b, 0x5, &(0x7f0000000540)=@raw=[@btf_id={0x18, 0x8, 0x3, 0x0, 0x1}, @map_val={0x18, 0x9, 0x2, 0x0, r5, 0x0, 0x0, 0x0, 0x3}, @ldst={0x3, 0x1, 0x0, 0x2, 0x1, 0xfffffffffffffff8, 0x8}], &(0x7f0000000580)='syzkaller\x00', 0x9899, 0x97, &(0x7f00000005c0)=""/151, 0x40f00, 0x0, '\x00', r6, 0x18, r0, 0x8, &(0x7f0000000980)={0x4, 0x5}, 0x8, 0x10, &(0x7f00000009c0)={0x1, 0xd, 0x800, 0x6}, 0x10, 0xffffffffffffffff, r7, 0x0, &(0x7f0000000a00)=[0xffffffffffffffff, r3]}, 0x80) syz_clone(0x9850080, 0x0, 0x0, 0x0, 0x0, 0x0) r11 = openat$cgroup_ro(r0, &(0x7f0000000200)='cpuacct.stat\x00', 0x0, 0x0) gettid() ioctl$TUNSETSNDBUF(r11, 0x400454d4, &(0x7f0000000240)=0x3a) [ 1036.633285][T10191] dump_stack+0x15/0x17 [ 1036.637276][T10191] should_fail+0x3c0/0x510 [ 1036.641533][T10191] ? __vmalloc_node_range+0x2e3/0x800 [ 1036.646743][T10191] __should_failslab+0x9f/0xe0 [ 1036.651339][T10191] should_failslab+0x9/0x20 [ 1036.655687][T10191] __kmalloc+0x6d/0x350 [ 1036.659670][T10191] __vmalloc_node_range+0x2e3/0x800 [ 1036.664707][T10191] dup_task_struct+0x61f/0xa60 [ 1036.669308][T10191] ? copy_process+0x579/0x3250 [ 1036.673914][T10191] ? __kasan_check_write+0x14/0x20 [ 1036.678853][T10191] copy_process+0x579/0x3250 [ 1036.683283][T10191] ? __kasan_check_write+0x14/0x20 [ 1036.688234][T10191] ? proc_fail_nth_write+0x213/0x290 [ 1036.693349][T10191] ? proc_fail_nth_read+0x220/0x220 [ 1036.698383][T10191] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1036.703328][T10191] ? vfs_write+0x9af/0x1050 [ 1036.707667][T10191] ? vmacache_update+0xb7/0x120 [ 1036.712439][T10191] kernel_clone+0x22d/0x990 [ 1036.716780][T10191] ? file_end_write+0x1b0/0x1b0 [ 1036.721467][T10191] ? __kasan_check_write+0x14/0x20 [ 1036.726499][T10191] ? create_io_thread+0x1e0/0x1e0 [ 1036.731367][T10191] ? __mutex_lock_slowpath+0x10/0x10 [ 1036.736488][T10191] __x64_sys_clone+0x289/0x310 [ 1036.741089][T10191] ? __do_sys_vfork+0x130/0x130 [ 1036.745777][T10191] ? debug_smp_processor_id+0x17/0x20 [ 1036.750990][T10191] do_syscall_64+0x44/0xd0 [ 1036.755408][T10191] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1036.761135][T10191] RIP: 0033:0x7f0bd76b80d9 [ 1036.765398][T10191] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 14:45:05 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 8) 14:45:05 executing program 5: syz_clone(0x9800700, 0x0, 0x101000, 0x0, 0x0, 0x0) 14:45:05 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:05 executing program 1: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async, rerun: 64) r2 = openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async, rerun: 64) openat$cgroup_procs(r1, &(0x7f0000000280)='cgroup.procs\x00', 0x2, 0x0) (async) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) (async, rerun: 64) r3 = openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async, rerun: 64) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000001c0)={r0, 0x20, &(0x7f0000000180)={&(0x7f0000000000)=""/183, 0xb7, 0x0, &(0x7f00000000c0)=""/150, 0x96}}, 0x10) (async, rerun: 32) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) (rerun: 32) ioctl$TUNSETFILTEREBPF(r4, 0x800454e1, 0x0) (async, rerun: 64) ioctl$TUNSETLINK(r4, 0x400454cd, 0x205) (async, rerun: 64) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000480)={r1, 0x20, &(0x7f0000000440)={&(0x7f00000002c0)=""/235, 0xeb, 0x0, &(0x7f00000003c0)=""/98, 0x62}}, 0x10) (async) r5 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000500)={&(0x7f00000004c0)='./file0\x00', 0x0, 0x8}, 0x10) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000940)={r2, 0xe0, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000680)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x2, &(0x7f00000006c0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000700)=[0x0, 0x0], 0x0, 0x8, &(0x7f0000000740)=[{}], 0x8, 0x10, &(0x7f0000000780), &(0x7f00000007c0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000800)}}, 0x10) r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) (async) r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r8}, 0x14) r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r9}, 0x14) (async) r10 = bpf$ITER_CREATE(0x21, &(0x7f0000000ac0)={r0}, 0x8) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@cgroup=r10, r9, 0x0, 0x7, r8}, 0x14) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x3b, 0x5, &(0x7f0000000540)=@raw=[@btf_id={0x18, 0x8, 0x3, 0x0, 0x1}, @map_val={0x18, 0x9, 0x2, 0x0, r5, 0x0, 0x0, 0x0, 0x3}, @ldst={0x3, 0x1, 0x0, 0x2, 0x1, 0xfffffffffffffff8, 0x8}], &(0x7f0000000580)='syzkaller\x00', 0x9899, 0x97, &(0x7f00000005c0)=""/151, 0x40f00, 0x0, '\x00', r6, 0x18, r0, 0x8, &(0x7f0000000980)={0x4, 0x5}, 0x8, 0x10, &(0x7f00000009c0)={0x1, 0xd, 0x800, 0x6}, 0x10, 0xffffffffffffffff, r7, 0x0, &(0x7f0000000a00)=[0xffffffffffffffff, r3]}, 0x80) syz_clone(0x9850080, 0x0, 0x0, 0x0, 0x0, 0x0) r11 = openat$cgroup_ro(r0, &(0x7f0000000200)='cpuacct.stat\x00', 0x0, 0x0) (async) gettid() ioctl$TUNSETSNDBUF(r11, 0x400454d4, &(0x7f0000000240)=0x3a) 14:45:05 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x19, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:05 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000580)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000005c0), 0x4) (async) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cgroup.kill\x00', 0x0, 0x0) recvmsg$unix(r2, &(0x7f0000000240)={&(0x7f0000000040), 0x6e, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/184, 0xb8}, {&(0x7f0000000180)=""/5, 0x5}], 0x2, &(0x7f0000000200)=[@cred={{0x1c}}], 0x20}, 0x0) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000540)={r2, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000280)=[0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x5, &(0x7f00000002c0)=[0x0, 0x0], &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000340)=[{}], 0x8, 0x10, &(0x7f0000000380), &(0x7f00000003c0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000400)}}, 0x10) 14:45:05 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1036.784831][T10191] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1036.793075][T10191] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1036.800890][T10191] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1036.808700][T10191] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1036.816511][T10191] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001 [ 1036.824332][T10191] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1036.832137][T10191] 14:45:05 executing program 5: syz_clone(0x9800700, 0x0, 0xf0ff1f, 0x0, 0x0, 0x0) 14:45:05 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000580)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000005c0), 0x4) (async) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cgroup.kill\x00', 0x0, 0x0) recvmsg$unix(r2, &(0x7f0000000240)={&(0x7f0000000040), 0x6e, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/184, 0xb8}, {&(0x7f0000000180)=""/5, 0x5}], 0x2, &(0x7f0000000200)=[@cred={{0x1c}}], 0x20}, 0x0) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async, rerun: 64) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000540)={r2, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000280)=[0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x5, &(0x7f00000002c0)=[0x0, 0x0], &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000340)=[{}], 0x8, 0x10, &(0x7f0000000380), &(0x7f00000003c0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000400)}}, 0x10) (rerun: 64) 14:45:05 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x1a, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) [ 1036.857502][T10218] FAULT_INJECTION: forcing a failure. [ 1036.857502][T10218] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1036.878269][T10218] CPU: 0 PID: 10218 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1036.888334][T10218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1036.898316][T10218] Call Trace: [ 1036.901436][T10218] [ 1036.904218][T10218] dump_stack_lvl+0x151/0x1b7 [ 1036.908725][T10218] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1036.914022][T10218] dump_stack+0x15/0x17 [ 1036.918015][T10218] should_fail+0x3c0/0x510 [ 1036.922270][T10218] should_fail_alloc_page+0x58/0x70 [ 1036.927302][T10218] __alloc_pages+0x1de/0x7c0 [ 1036.931729][T10218] ? __count_vm_events+0x30/0x30 [ 1036.936515][T10218] ? __kasan_kmalloc+0x9/0x10 [ 1036.941027][T10218] ? __kmalloc+0x203/0x350 [ 1036.945271][T10218] ? __vmalloc_node_range+0x2e3/0x800 [ 1036.950480][T10218] __vmalloc_node_range+0x48f/0x800 [ 1036.955688][T10218] dup_task_struct+0x61f/0xa60 [ 1036.960285][T10218] ? copy_process+0x579/0x3250 [ 1036.965288][T10218] ? __kasan_check_write+0x14/0x20 [ 1036.970185][T10218] copy_process+0x579/0x3250 [ 1036.974609][T10218] ? __kasan_check_write+0x14/0x20 [ 1036.979555][T10218] ? proc_fail_nth_write+0x213/0x290 [ 1036.984674][T10218] ? proc_fail_nth_read+0x220/0x220 [ 1036.989710][T10218] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1036.994659][T10218] ? vfs_write+0x9af/0x1050 [ 1036.998998][T10218] ? vmacache_update+0xb7/0x120 [ 1037.003685][T10218] kernel_clone+0x22d/0x990 [ 1037.008026][T10218] ? file_end_write+0x1b0/0x1b0 [ 1037.012711][T10218] ? __kasan_check_write+0x14/0x20 [ 1037.018007][T10218] ? create_io_thread+0x1e0/0x1e0 [ 1037.022866][T10218] ? __mutex_lock_slowpath+0x10/0x10 [ 1037.027993][T10218] __x64_sys_clone+0x289/0x310 [ 1037.032590][T10218] ? __do_sys_vfork+0x130/0x130 [ 1037.037280][T10218] ? debug_smp_processor_id+0x17/0x20 [ 1037.042489][T10218] do_syscall_64+0x44/0xd0 [ 1037.046830][T10218] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1037.052552][T10218] RIP: 0033:0x7f0bd76b80d9 [ 1037.056807][T10218] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1037.076251][T10218] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1037.084499][T10218] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1037.092306][T10218] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1037.100126][T10218] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 14:45:05 executing program 1: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async, rerun: 32) r2 = openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (rerun: 32) openat$cgroup_procs(r1, &(0x7f0000000280)='cgroup.procs\x00', 0x2, 0x0) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) (async) r3 = openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000001c0)={r0, 0x20, &(0x7f0000000180)={&(0x7f0000000000)=""/183, 0xb7, 0x0, &(0x7f00000000c0)=""/150, 0x96}}, 0x10) (async) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r4, 0x800454e1, 0x0) (async) ioctl$TUNSETLINK(r4, 0x400454cd, 0x205) (async) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000480)={r1, 0x20, &(0x7f0000000440)={&(0x7f00000002c0)=""/235, 0xeb, 0x0, &(0x7f00000003c0)=""/98, 0x62}}, 0x10) (async, rerun: 64) r5 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000500)={&(0x7f00000004c0)='./file0\x00', 0x0, 0x8}, 0x10) (async, rerun: 64) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000940)={r2, 0xe0, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000680)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x2, &(0x7f00000006c0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000700)=[0x0, 0x0], 0x0, 0x8, &(0x7f0000000740)=[{}], 0x8, 0x10, &(0x7f0000000780), &(0x7f00000007c0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000800)}}, 0x10) r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) (async) r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r8}, 0x14) r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r9}, 0x14) (async) r10 = bpf$ITER_CREATE(0x21, &(0x7f0000000ac0)={r0}, 0x8) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@cgroup=r10, r9, 0x0, 0x7, r8}, 0x14) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x3b, 0x5, &(0x7f0000000540)=@raw=[@btf_id={0x18, 0x8, 0x3, 0x0, 0x1}, @map_val={0x18, 0x9, 0x2, 0x0, r5, 0x0, 0x0, 0x0, 0x3}, @ldst={0x3, 0x1, 0x0, 0x2, 0x1, 0xfffffffffffffff8, 0x8}], &(0x7f0000000580)='syzkaller\x00', 0x9899, 0x97, &(0x7f00000005c0)=""/151, 0x40f00, 0x0, '\x00', r6, 0x18, r0, 0x8, &(0x7f0000000980)={0x4, 0x5}, 0x8, 0x10, &(0x7f00000009c0)={0x1, 0xd, 0x800, 0x6}, 0x10, 0xffffffffffffffff, r7, 0x0, &(0x7f0000000a00)=[0xffffffffffffffff, r3]}, 0x80) (async) syz_clone(0x9850080, 0x0, 0x0, 0x0, 0x0, 0x0) r11 = openat$cgroup_ro(r0, &(0x7f0000000200)='cpuacct.stat\x00', 0x0, 0x0) gettid() (async) ioctl$TUNSETSNDBUF(r11, 0x400454d4, &(0x7f0000000240)=0x3a) 14:45:05 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x1b, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:05 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 9) 14:45:05 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000000040)='{*@\x00') 14:45:05 executing program 5: syz_clone(0x9800700, 0x0, 0x1000000, 0x0, 0x0, 0x0) 14:45:05 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x1c, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:05 executing program 1: r0 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000000)={0x0, 0xa2, 0x10}, 0xc) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={0xffffffffffffffff, 0xe0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000140), 0x0, 0x8, &(0x7f0000000180)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], 0x50, 0x10, &(0x7f0000000200), &(0x7f0000000240), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000280)}}, 0x10) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={0xffffffffffffffff, 0xe0, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000480)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000580), &(0x7f00000005c0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000600)}}, 0x10) r3 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000007c0)={&(0x7f0000000780)='./file0\x00', 0x0, 0x4}, 0x10) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r4}, 0x14) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000a80)={r4, 0x0, 0x22, 0x64, &(0x7f00000008c0)="a41f006e157faea07ec1da86cb641c6e5e9dab3f1d41086f358b07b2731518ab314c", &(0x7f0000000900)=""/100, 0x200, 0x0, 0xc0, 0x22, &(0x7f0000000980)="d2664cda542d862e8ea7f15b5750bb122eb20fd581343b9f0187c0702ed27a8ece91492aaaa05f3f5ad2587d26714542077b5dd2646b37a3b33db06c1093cf0b489b51d669ae82d87fa41fbc13009770f0aebfbca1cacbb7e8ad7f119b6ca77b0957811fa13aae3f5d0359600dc993ea334effba555baa32e36550d868530a4b6c2300cb2822d9deb0a9583d78c3e21f12b1a0e5c06c391d743f3e59d5a08ac4148b81d1114874d8c2b22bf9711743479d9ee079a3637ab28694e1807a7a779c", &(0x7f0000000a40)="408b928596c7fafcba9a0f5fb28eb3e9fa4b1d670ba0854e2779b73ccbc1c5c12cde", 0x0, 0x10001}, 0x48) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000840)=@bpf_lsm={0x1d, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB="317def52030000000000000008000000183a000004000000000000000000000018190000", @ANYRES32=r0, @ANYBLOB="000000000000000085100000020000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0xffffffff, 0x0, 0x0, 0x41000, 0x1d, '\x00', r1, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x1, 0x1}, 0x8, 0x10, &(0x7f0000000440)={0x3, 0xc, 0x7, 0x1}, 0x10, r2, 0x0, 0x0, &(0x7f0000000800)=[0xffffffffffffffff, r3]}, 0x80) bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000140)={0x9}, 0x8) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1037.108107][T10218] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001 [ 1037.115918][T10218] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1037.123731][T10218] 14:45:05 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000000040)='{*@\x00') socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0) (async) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000000040)='{*@\x00') (async) 14:45:05 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:05 executing program 5: syz_clone(0x9800700, 0x0, 0x2000000, 0x0, 0x0, 0x0) 14:45:05 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x1d, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:05 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000000040)='{*@\x00') 14:45:05 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x1e, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:05 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1037.186672][T10252] FAULT_INJECTION: forcing a failure. [ 1037.186672][T10252] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1037.227097][T10252] CPU: 1 PID: 10252 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1037.237165][T10252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1037.247055][T10252] Call Trace: [ 1037.250180][T10252] [ 1037.252961][T10252] dump_stack_lvl+0x151/0x1b7 [ 1037.257472][T10252] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1037.262771][T10252] dump_stack+0x15/0x17 [ 1037.266762][T10252] should_fail+0x3c0/0x510 [ 1037.271192][T10252] should_fail_alloc_page+0x58/0x70 [ 1037.276219][T10252] __alloc_pages+0x1de/0x7c0 [ 1037.280651][T10252] ? __count_vm_events+0x30/0x30 [ 1037.285423][T10252] ? __kasan_kmalloc+0x9/0x10 [ 1037.289938][T10252] ? __kmalloc+0x203/0x350 [ 1037.294191][T10252] ? __vmalloc_node_range+0x2e3/0x800 [ 1037.299398][T10252] __vmalloc_node_range+0x48f/0x800 [ 1037.304436][T10252] dup_task_struct+0x61f/0xa60 [ 1037.309039][T10252] ? copy_process+0x579/0x3250 [ 1037.313644][T10252] ? __kasan_check_write+0x14/0x20 [ 1037.318578][T10252] copy_process+0x579/0x3250 [ 1037.323005][T10252] ? __kasan_check_write+0x14/0x20 [ 1037.327959][T10252] ? proc_fail_nth_write+0x213/0x290 [ 1037.333073][T10252] ? proc_fail_nth_read+0x220/0x220 [ 1037.338107][T10252] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1037.343055][T10252] ? vfs_write+0x9af/0x1050 [ 1037.347399][T10252] ? vmacache_update+0xb7/0x120 [ 1037.352083][T10252] kernel_clone+0x22d/0x990 [ 1037.356426][T10252] ? file_end_write+0x1b0/0x1b0 [ 1037.361112][T10252] ? __kasan_check_write+0x14/0x20 [ 1037.366059][T10252] ? create_io_thread+0x1e0/0x1e0 [ 1037.370922][T10252] ? __mutex_lock_slowpath+0x10/0x10 [ 1037.376042][T10252] __x64_sys_clone+0x289/0x310 [ 1037.380642][T10252] ? __do_sys_vfork+0x130/0x130 [ 1037.385326][T10252] ? debug_smp_processor_id+0x17/0x20 [ 1037.390538][T10252] do_syscall_64+0x44/0xd0 [ 1037.394790][T10252] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1037.400515][T10252] RIP: 0033:0x7f0bd76b80d9 [ 1037.404769][T10252] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 14:45:06 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 10) 14:45:06 executing program 1: r0 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000000)={0x0, 0xa2, 0x10}, 0xc) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={0xffffffffffffffff, 0xe0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000140), 0x0, 0x8, &(0x7f0000000180)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], 0x50, 0x10, &(0x7f0000000200), &(0x7f0000000240), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000280)}}, 0x10) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={0xffffffffffffffff, 0xe0, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000480)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000580), &(0x7f00000005c0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000600)}}, 0x10) r3 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000007c0)={&(0x7f0000000780)='./file0\x00', 0x0, 0x4}, 0x10) (async) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r4}, 0x14) (async) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000a80)={r4, 0x0, 0x22, 0x64, &(0x7f00000008c0)="a41f006e157faea07ec1da86cb641c6e5e9dab3f1d41086f358b07b2731518ab314c", &(0x7f0000000900)=""/100, 0x200, 0x0, 0xc0, 0x22, &(0x7f0000000980)="d2664cda542d862e8ea7f15b5750bb122eb20fd581343b9f0187c0702ed27a8ece91492aaaa05f3f5ad2587d26714542077b5dd2646b37a3b33db06c1093cf0b489b51d669ae82d87fa41fbc13009770f0aebfbca1cacbb7e8ad7f119b6ca77b0957811fa13aae3f5d0359600dc993ea334effba555baa32e36550d868530a4b6c2300cb2822d9deb0a9583d78c3e21f12b1a0e5c06c391d743f3e59d5a08ac4148b81d1114874d8c2b22bf9711743479d9ee079a3637ab28694e1807a7a779c", &(0x7f0000000a40)="408b928596c7fafcba9a0f5fb28eb3e9fa4b1d670ba0854e2779b73ccbc1c5c12cde", 0x0, 0x10001}, 0x48) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000840)=@bpf_lsm={0x1d, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB="317def52030000000000000008000000183a000004000000000000000000000018190000", @ANYRES32=r0, @ANYBLOB="000000000000000085100000020000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0xffffffff, 0x0, 0x0, 0x41000, 0x1d, '\x00', r1, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x1, 0x1}, 0x8, 0x10, &(0x7f0000000440)={0x3, 0xc, 0x7, 0x1}, 0x10, r2, 0x0, 0x0, &(0x7f0000000800)=[0xffffffffffffffff, r3]}, 0x80) bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000140)={0x9}, 0x8) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:06 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x21, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:06 executing program 5: syz_clone(0x9800700, 0x0, 0x7000000, 0x0, 0x0, 0x0) 14:45:06 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:06 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x3a, 0x0, 0x57}, 0x140) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000040)={[{0x2b, 'devices'}]}, 0x9) 14:45:06 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x22, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) [ 1037.424216][T10252] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1037.432460][T10252] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1037.440271][T10252] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1037.448081][T10252] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1037.456070][T10252] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001 [ 1037.463881][T10252] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1037.471695][T10252] 14:45:06 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x23, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:06 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:06 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x3a, 0x0, 0x57}, 0x140) (async) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000040)={[{0x2b, 'devices'}]}, 0x9) 14:45:06 executing program 1: r0 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000000)={0x0, 0xa2, 0x10}, 0xc) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={0xffffffffffffffff, 0xe0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000140), 0x0, 0x8, &(0x7f0000000180)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], 0x50, 0x10, &(0x7f0000000200), &(0x7f0000000240), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000280)}}, 0x10) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={0xffffffffffffffff, 0xe0, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000480)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000580), &(0x7f00000005c0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000600)}}, 0x10) r3 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000007c0)={&(0x7f0000000780)='./file0\x00', 0x0, 0x4}, 0x10) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r4}, 0x14) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000a80)={r4, 0x0, 0x22, 0x64, &(0x7f00000008c0)="a41f006e157faea07ec1da86cb641c6e5e9dab3f1d41086f358b07b2731518ab314c", &(0x7f0000000900)=""/100, 0x200, 0x0, 0xc0, 0x22, &(0x7f0000000980)="d2664cda542d862e8ea7f15b5750bb122eb20fd581343b9f0187c0702ed27a8ece91492aaaa05f3f5ad2587d26714542077b5dd2646b37a3b33db06c1093cf0b489b51d669ae82d87fa41fbc13009770f0aebfbca1cacbb7e8ad7f119b6ca77b0957811fa13aae3f5d0359600dc993ea334effba555baa32e36550d868530a4b6c2300cb2822d9deb0a9583d78c3e21f12b1a0e5c06c391d743f3e59d5a08ac4148b81d1114874d8c2b22bf9711743479d9ee079a3637ab28694e1807a7a779c", &(0x7f0000000a40)="408b928596c7fafcba9a0f5fb28eb3e9fa4b1d670ba0854e2779b73ccbc1c5c12cde", 0x0, 0x10001}, 0x48) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000840)=@bpf_lsm={0x1d, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB="317def52030000000000000008000000183a000004000000000000000000000018190000", @ANYRES32=r0, @ANYBLOB="000000000000000085100000020000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0xffffffff, 0x0, 0x0, 0x41000, 0x1d, '\x00', r1, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x1, 0x1}, 0x8, 0x10, &(0x7f0000000440)={0x3, 0xc, 0x7, 0x1}, 0x10, r2, 0x0, 0x0, &(0x7f0000000800)=[0xffffffffffffffff, r3]}, 0x80) bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000140)={0x9}, 0x8) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000000)={0x0, 0xa2, 0x10}, 0xc) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={0xffffffffffffffff, 0xe0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000140), 0x0, 0x8, &(0x7f0000000180)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], 0x50, 0x10, &(0x7f0000000200), &(0x7f0000000240), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000280)}}, 0x10) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={0xffffffffffffffff, 0xe0, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000480)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000580), &(0x7f00000005c0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000600)}}, 0x10) (async) bpf$OBJ_GET_MAP(0x7, &(0x7f00000007c0)={&(0x7f0000000780)='./file0\x00', 0x0, 0x4}, 0x10) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) (async) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r4}, 0x14) (async) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000a80)={r4, 0x0, 0x22, 0x64, &(0x7f00000008c0)="a41f006e157faea07ec1da86cb641c6e5e9dab3f1d41086f358b07b2731518ab314c", &(0x7f0000000900)=""/100, 0x200, 0x0, 0xc0, 0x22, &(0x7f0000000980)="d2664cda542d862e8ea7f15b5750bb122eb20fd581343b9f0187c0702ed27a8ece91492aaaa05f3f5ad2587d26714542077b5dd2646b37a3b33db06c1093cf0b489b51d669ae82d87fa41fbc13009770f0aebfbca1cacbb7e8ad7f119b6ca77b0957811fa13aae3f5d0359600dc993ea334effba555baa32e36550d868530a4b6c2300cb2822d9deb0a9583d78c3e21f12b1a0e5c06c391d743f3e59d5a08ac4148b81d1114874d8c2b22bf9711743479d9ee079a3637ab28694e1807a7a779c", &(0x7f0000000a40)="408b928596c7fafcba9a0f5fb28eb3e9fa4b1d670ba0854e2779b73ccbc1c5c12cde", 0x0, 0x10001}, 0x48) (async) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000840)=@bpf_lsm={0x1d, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB="317def52030000000000000008000000183a000004000000000000000000000018190000", @ANYRES32=r0, @ANYBLOB="000000000000000085100000020000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0xffffffff, 0x0, 0x0, 0x41000, 0x1d, '\x00', r1, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x1, 0x1}, 0x8, 0x10, &(0x7f0000000440)={0x3, 0xc, 0x7, 0x1}, 0x10, r2, 0x0, 0x0, &(0x7f0000000800)=[0xffffffffffffffff, r3]}, 0x80) (async) bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000140)={0x9}, 0x8) (async) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) 14:45:06 executing program 5: syz_clone(0x9800700, 0x0, 0x8000000, 0x0, 0x0, 0x0) [ 1037.518709][T10290] FAULT_INJECTION: forcing a failure. [ 1037.518709][T10290] name failslab, interval 1, probability 0, space 0, times 0 [ 1037.544454][T10290] CPU: 1 PID: 10290 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1037.554521][T10290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1037.564415][T10290] Call Trace: [ 1037.567553][T10290] [ 1037.570315][T10290] dump_stack_lvl+0x151/0x1b7 [ 1037.574829][T10290] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1037.580124][T10290] dump_stack+0x15/0x17 [ 1037.584120][T10290] should_fail+0x3c0/0x510 [ 1037.588374][T10290] __should_failslab+0x9f/0xe0 [ 1037.592976][T10290] should_failslab+0x9/0x20 [ 1037.597328][T10290] kmem_cache_alloc+0x4f/0x2f0 [ 1037.601916][T10290] ? copy_signal+0x55/0x610 [ 1037.606254][T10290] copy_signal+0x55/0x610 [ 1037.610419][T10290] copy_process+0x126a/0x3250 [ 1037.614935][T10290] ? proc_fail_nth_write+0x213/0x290 [ 1037.620056][T10290] ? proc_fail_nth_read+0x220/0x220 [ 1037.625097][T10290] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1037.630042][T10290] ? vfs_write+0x9af/0x1050 [ 1037.634376][T10290] ? vmacache_update+0xb7/0x120 [ 1037.639072][T10290] kernel_clone+0x22d/0x990 [ 1037.643406][T10290] ? file_end_write+0x1b0/0x1b0 [ 1037.648108][T10290] ? __kasan_check_write+0x14/0x20 [ 1037.653039][T10290] ? create_io_thread+0x1e0/0x1e0 [ 1037.657909][T10290] ? __mutex_lock_slowpath+0x10/0x10 [ 1037.663020][T10290] __x64_sys_clone+0x289/0x310 [ 1037.667654][T10290] ? __do_sys_vfork+0x130/0x130 [ 1037.672309][T10290] ? debug_smp_processor_id+0x17/0x20 [ 1037.677516][T10290] do_syscall_64+0x44/0xd0 [ 1037.681768][T10290] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1037.687497][T10290] RIP: 0033:0x7f0bd76b80d9 [ 1037.691758][T10290] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1037.711198][T10290] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 14:45:06 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 11) 14:45:06 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x2, 0x0, 0x0, 0x0}, 0x20) 14:45:06 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x3a, 0x0, 0x57}, 0x140) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000040)={[{0x2b, 'devices'}]}, 0x9) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x3a, 0x0, 0x57}, 0x140) (async) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000040)={[{0x2b, 'devices'}]}, 0x9) (async) 14:45:06 executing program 1: syz_clone(0x80001280, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:06 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x400001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:06 executing program 5: syz_clone(0x9800700, 0x0, 0x9000000, 0x0, 0x0, 0x0) [ 1037.719437][T10290] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1037.727251][T10290] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1037.735061][T10290] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1037.743141][T10290] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1037.750955][T10290] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1037.758855][T10290] 14:45:06 executing program 1: syz_clone(0x80001280, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x80001280, 0x0, 0x0, 0x0, 0x0, 0x0) (async) 14:45:06 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x3, 0x0, 0x0, 0x0}, 0x20) 14:45:06 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x1004000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1037.789225][T10321] FAULT_INJECTION: forcing a failure. [ 1037.789225][T10321] name failslab, interval 1, probability 0, space 0, times 0 [ 1037.806011][T10321] CPU: 1 PID: 10321 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1037.816073][T10321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1037.826058][T10321] Call Trace: [ 1037.829182][T10321] [ 1037.831958][T10321] dump_stack_lvl+0x151/0x1b7 14:45:06 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) bpf$OBJ_GET_PROG(0x7, &(0x7f0000000040)={&(0x7f0000000000)='./file0\x00', 0x0, 0x8}, 0x10) 14:45:06 executing program 1: syz_clone(0x80001280, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x80001280, 0x0, 0x0, 0x0, 0x0, 0x0) (async) 14:45:06 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) bpf$OBJ_GET_PROG(0x7, &(0x7f0000000040)={&(0x7f0000000000)='./file0\x00', 0x0, 0x8}, 0x10) [ 1037.836471][T10321] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1037.841768][T10321] dump_stack+0x15/0x17 [ 1037.845757][T10321] should_fail+0x3c0/0x510 [ 1037.850015][T10321] __should_failslab+0x9f/0xe0 [ 1037.854611][T10321] should_failslab+0x9/0x20 [ 1037.858948][T10321] kmem_cache_alloc+0x4f/0x2f0 [ 1037.863554][T10321] ? copy_signal+0x55/0x610 [ 1037.867887][T10321] copy_signal+0x55/0x610 [ 1037.872051][T10321] copy_process+0x126a/0x3250 [ 1037.876566][T10321] ? proc_fail_nth_write+0x213/0x290 [ 1037.881687][T10321] ? proc_fail_nth_read+0x220/0x220 [ 1037.886722][T10321] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1037.891668][T10321] ? vfs_write+0x9af/0x1050 [ 1037.896009][T10321] ? vmacache_update+0xb7/0x120 [ 1037.900695][T10321] kernel_clone+0x22d/0x990 [ 1037.905034][T10321] ? file_end_write+0x1b0/0x1b0 [ 1037.909724][T10321] ? __kasan_check_write+0x14/0x20 [ 1037.914678][T10321] ? create_io_thread+0x1e0/0x1e0 [ 1037.919537][T10321] ? __mutex_lock_slowpath+0x10/0x10 [ 1037.924656][T10321] __x64_sys_clone+0x289/0x310 [ 1037.929251][T10321] ? __do_sys_vfork+0x130/0x130 [ 1037.933948][T10321] ? debug_smp_processor_id+0x17/0x20 [ 1037.939149][T10321] do_syscall_64+0x44/0xd0 [ 1037.943402][T10321] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1037.949217][T10321] RIP: 0033:0x7f0bd76b80d9 [ 1037.953471][T10321] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1037.972913][T10321] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1037.981263][T10321] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 14:45:06 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 12) 14:45:06 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) bpf$OBJ_GET_PROG(0x7, &(0x7f0000000040)={&(0x7f0000000000)='./file0\x00', 0x0, 0x8}, 0x10) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) bpf$OBJ_GET_PROG(0x7, &(0x7f0000000040)={&(0x7f0000000000)='./file0\x00', 0x0, 0x8}, 0x10) (async) 14:45:06 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:06 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000), 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000080)=""/30, 0x1e}], 0x1, &(0x7f0000000100)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x80}, 0x0) 14:45:06 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x6, 0x0, 0x0, 0x0}, 0x20) 14:45:06 executing program 5: syz_clone(0x9800700, 0x0, 0x1f000000, 0x0, 0x0, 0x0) [ 1037.989074][T10321] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1037.996885][T10321] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1038.004697][T10321] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1038.012509][T10321] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1038.020325][T10321] [ 1038.034545][T10343] FAULT_INJECTION: forcing a failure. 14:45:06 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:06 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000101) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000000080), 0x10) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) ioctl$TUNDETACHFILTER(r1, 0x401054d6, 0x0) openat$cgroup_pressure(r1, &(0x7f0000000000)='cpu.pressure\x00', 0x2, 0x0) 14:45:06 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x8, 0x0, 0x0, 0x0}, 0x20) 14:45:06 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000), 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000080)=""/30, 0x1e}], 0x1, &(0x7f0000000100)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x80}, 0x0) [ 1038.034545][T10343] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1038.055737][T10343] CPU: 1 PID: 10343 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1038.065811][T10343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1038.075709][T10343] Call Trace: [ 1038.078829][T10343] [ 1038.081603][T10343] dump_stack_lvl+0x151/0x1b7 14:45:06 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:06 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000), 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000080)=""/30, 0x1e}], 0x1, &(0x7f0000000100)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x80}, 0x0) [ 1038.086121][T10343] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1038.091417][T10343] dump_stack+0x15/0x17 [ 1038.095407][T10343] should_fail+0x3c0/0x510 [ 1038.099662][T10343] should_fail_alloc_page+0x58/0x70 [ 1038.104693][T10343] __alloc_pages+0x1de/0x7c0 [ 1038.109122][T10343] ? __count_vm_events+0x30/0x30 [ 1038.113895][T10343] ? __kasan_kmalloc+0x9/0x10 [ 1038.118404][T10343] ? __kmalloc+0x203/0x350 [ 1038.122660][T10343] ? __vmalloc_node_range+0x2e3/0x800 [ 1038.127871][T10343] __vmalloc_node_range+0x48f/0x800 [ 1038.132905][T10343] dup_task_struct+0x61f/0xa60 [ 1038.137503][T10343] ? copy_process+0x579/0x3250 [ 1038.142109][T10343] ? __kasan_check_write+0x14/0x20 [ 1038.147057][T10343] copy_process+0x579/0x3250 [ 1038.151480][T10343] ? __kasan_check_write+0x14/0x20 [ 1038.156425][T10343] ? proc_fail_nth_write+0x213/0x290 [ 1038.161541][T10343] ? proc_fail_nth_read+0x220/0x220 [ 1038.166576][T10343] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1038.171523][T10343] ? vfs_write+0x9af/0x1050 [ 1038.175863][T10343] ? vmacache_update+0xb7/0x120 [ 1038.180551][T10343] kernel_clone+0x22d/0x990 [ 1038.184890][T10343] ? file_end_write+0x1b0/0x1b0 [ 1038.189579][T10343] ? __kasan_check_write+0x14/0x20 [ 1038.194531][T10343] ? create_io_thread+0x1e0/0x1e0 [ 1038.199388][T10343] ? __mutex_lock_slowpath+0x10/0x10 [ 1038.204508][T10343] __x64_sys_clone+0x289/0x310 [ 1038.209112][T10343] ? __do_sys_vfork+0x130/0x130 [ 1038.213797][T10343] ? debug_smp_processor_id+0x17/0x20 [ 1038.219006][T10343] do_syscall_64+0x44/0xd0 [ 1038.223361][T10343] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1038.229091][T10343] RIP: 0033:0x7f0bd76b80d9 [ 1038.233342][T10343] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1038.252881][T10343] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1038.261134][T10343] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1038.268936][T10343] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1038.276751][T10343] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 14:45:06 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 13) 14:45:06 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000101) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000000080), 0x10) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) ioctl$TUNDETACHFILTER(r1, 0x401054d6, 0x0) openat$cgroup_pressure(r1, &(0x7f0000000000)='cpu.pressure\x00', 0x2, 0x0) 14:45:06 executing program 1: ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0xef80) 14:45:06 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:06 executing program 5: syz_clone(0x9800700, 0x0, 0x1ffff000, 0x0, 0x0, 0x0) 14:45:06 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x9, 0x0, 0x0, 0x0}, 0x20) 14:45:06 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000101) (async) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000000080), 0x10) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) ioctl$TUNDETACHFILTER(r1, 0x401054d6, 0x0) openat$cgroup_pressure(r1, &(0x7f0000000000)='cpu.pressure\x00', 0x2, 0x0) [ 1038.284557][T10343] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1038.292371][T10343] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1038.300184][T10343] [ 1038.312973][T10370] FAULT_INJECTION: forcing a failure. [ 1038.312973][T10370] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1038.331821][T10370] CPU: 1 PID: 10370 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1038.341890][T10370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1038.351776][T10370] Call Trace: [ 1038.354903][T10370] [ 1038.357679][T10370] dump_stack_lvl+0x151/0x1b7 [ 1038.362193][T10370] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1038.367490][T10370] dump_stack+0x15/0x17 [ 1038.371483][T10370] should_fail+0x3c0/0x510 [ 1038.375747][T10370] should_fail_alloc_page+0x58/0x70 [ 1038.380765][T10370] __alloc_pages+0x1de/0x7c0 [ 1038.385194][T10370] ? __count_vm_events+0x30/0x30 [ 1038.389966][T10370] ? __kasan_kmalloc+0x9/0x10 [ 1038.394587][T10370] ? __kmalloc+0x203/0x350 [ 1038.398839][T10370] ? __vmalloc_node_range+0x2e3/0x800 [ 1038.404045][T10370] __vmalloc_node_range+0x48f/0x800 [ 1038.409084][T10370] dup_task_struct+0x61f/0xa60 [ 1038.413686][T10370] ? copy_process+0x579/0x3250 [ 1038.418282][T10370] ? __kasan_check_write+0x14/0x20 [ 1038.423315][T10370] copy_process+0x579/0x3250 [ 1038.427743][T10370] ? __kasan_check_write+0x14/0x20 [ 1038.432699][T10370] ? proc_fail_nth_write+0x213/0x290 [ 1038.437814][T10370] ? proc_fail_nth_read+0x220/0x220 [ 1038.442845][T10370] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1038.447883][T10370] ? vfs_write+0x9af/0x1050 [ 1038.452240][T10370] ? vmacache_update+0xb7/0x120 [ 1038.456912][T10370] kernel_clone+0x22d/0x990 [ 1038.461248][T10370] ? file_end_write+0x1b0/0x1b0 [ 1038.465942][T10370] ? __kasan_check_write+0x14/0x20 [ 1038.470883][T10370] ? create_io_thread+0x1e0/0x1e0 [ 1038.475743][T10370] ? __mutex_lock_slowpath+0x10/0x10 [ 1038.480863][T10370] __x64_sys_clone+0x289/0x310 [ 1038.485465][T10370] ? __do_sys_vfork+0x130/0x130 [ 1038.490160][T10370] ? debug_smp_processor_id+0x17/0x20 [ 1038.495358][T10370] do_syscall_64+0x44/0xd0 [ 1038.499610][T10370] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1038.505339][T10370] RIP: 0033:0x7f0bd76b80d9 [ 1038.509597][T10370] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1038.529039][T10370] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 14:45:07 executing program 1: ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0xef80) 14:45:07 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0xa, 0x0, 0x0, 0x0}, 0x20) 14:45:07 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:07 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 14) 14:45:07 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) recvmsg(r0, &(0x7f0000000180)={&(0x7f0000000000)=@tipc=@id, 0x80, &(0x7f0000000140)=[{&(0x7f0000000080)=""/13, 0xd}, {&(0x7f00000000c0)=""/21, 0x15}, {&(0x7f0000000100)=""/50, 0x32}], 0x3}, 0x40010161) ioctl$TUNGETVNETBE(0xffffffffffffffff, 0x800454df, &(0x7f00000001c0)) 14:45:07 executing program 5: syz_clone(0x9800700, 0x0, 0x20000000, 0x0, 0x0, 0x0) 14:45:07 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0xb, 0x0, 0x0, 0x0}, 0x20) 14:45:07 executing program 1: ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0xef80) [ 1038.537283][T10370] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1038.545094][T10370] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1038.552905][T10370] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1038.560719][T10370] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1038.568534][T10370] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1038.576437][T10370] 14:45:07 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0xc, 0x0, 0x0, 0x0}, 0x20) 14:45:07 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:07 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) recvmsg(r0, &(0x7f0000000180)={&(0x7f0000000000)=@tipc=@id, 0x80, &(0x7f0000000140)=[{&(0x7f0000000080)=""/13, 0xd}, {&(0x7f00000000c0)=""/21, 0x15}, {&(0x7f0000000100)=""/50, 0x32}], 0x3}, 0x40010161) (async) ioctl$TUNGETVNETBE(0xffffffffffffffff, 0x800454df, &(0x7f00000001c0)) 14:45:07 executing program 1: ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f0000000080)) ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000040)={0x4, &(0x7f0000000000)=[{0x1ff, 0x8, 0xe1, 0x4}, {0x1f, 0x18, 0x5, 0x7}, {0x5, 0x7f, 0x4, 0x5}, {0x1, 0x9, 0x6, 0x7}]}) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) gettid() 14:45:07 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0xd, 0x0, 0x0, 0x0}, 0x20) 14:45:07 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0xe, 0x0, 0x0, 0x0}, 0x20) [ 1038.624328][T10394] FAULT_INJECTION: forcing a failure. [ 1038.624328][T10394] name failslab, interval 1, probability 0, space 0, times 0 [ 1038.647754][T10394] CPU: 1 PID: 10394 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1038.657819][T10394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1038.667731][T10394] Call Trace: [ 1038.670840][T10394] 14:45:07 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0xf, 0x0, 0x0, 0x0}, 0x20) [ 1038.673615][T10394] dump_stack_lvl+0x151/0x1b7 [ 1038.678131][T10394] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1038.683426][T10394] dump_stack+0x15/0x17 [ 1038.687416][T10394] should_fail+0x3c0/0x510 [ 1038.691673][T10394] __should_failslab+0x9f/0xe0 [ 1038.696269][T10394] should_failslab+0x9/0x20 [ 1038.700612][T10394] kmem_cache_alloc+0x4f/0x2f0 [ 1038.705209][T10394] ? vm_area_dup+0x26/0x1d0 [ 1038.709552][T10394] vm_area_dup+0x26/0x1d0 [ 1038.713723][T10394] dup_mmap+0x6b8/0xea0 [ 1038.717708][T10394] ? __delayed_free_task+0x20/0x20 [ 1038.722657][T10394] ? mm_init+0x807/0x960 [ 1038.726733][T10394] dup_mm+0x91/0x330 [ 1038.730465][T10394] copy_mm+0x108/0x1b0 [ 1038.734383][T10394] copy_process+0x1295/0x3250 [ 1038.738894][T10394] ? proc_fail_nth_write+0x213/0x290 [ 1038.744005][T10394] ? proc_fail_nth_read+0x220/0x220 [ 1038.749051][T10394] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1038.753988][T10394] ? vfs_write+0x9af/0x1050 [ 1038.758327][T10394] ? vmacache_update+0xb7/0x120 [ 1038.763021][T10394] kernel_clone+0x22d/0x990 [ 1038.767358][T10394] ? file_end_write+0x1b0/0x1b0 [ 1038.772128][T10394] ? __kasan_check_write+0x14/0x20 [ 1038.777076][T10394] ? create_io_thread+0x1e0/0x1e0 [ 1038.781939][T10394] ? __mutex_lock_slowpath+0x10/0x10 [ 1038.787068][T10394] __x64_sys_clone+0x289/0x310 [ 1038.791659][T10394] ? __do_sys_vfork+0x130/0x130 [ 1038.796349][T10394] ? debug_smp_processor_id+0x17/0x20 [ 1038.801558][T10394] do_syscall_64+0x44/0xd0 [ 1038.806066][T10394] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1038.811882][T10394] RIP: 0033:0x7f0bd76b80d9 [ 1038.816138][T10394] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1038.835577][T10394] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1038.843830][T10394] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1038.851652][T10394] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1038.859449][T10394] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1038.867259][T10394] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 14:45:07 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 15) 14:45:07 executing program 1: ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f0000000080)) ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000040)={0x4, &(0x7f0000000000)=[{0x1ff, 0x8, 0xe1, 0x4}, {0x1f, 0x18, 0x5, 0x7}, {0x5, 0x7f, 0x4, 0x5}, {0x1, 0x9, 0x6, 0x7}]}) (async, rerun: 64) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64) gettid() 14:45:07 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) recvmsg(r0, &(0x7f0000000180)={&(0x7f0000000000)=@tipc=@id, 0x80, &(0x7f0000000140)=[{&(0x7f0000000080)=""/13, 0xd}, {&(0x7f00000000c0)=""/21, 0x15}, {&(0x7f0000000100)=""/50, 0x32}], 0x3}, 0x40010161) ioctl$TUNGETVNETBE(0xffffffffffffffff, 0x800454df, &(0x7f00000001c0)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) recvmsg(r0, &(0x7f0000000180)={&(0x7f0000000000)=@tipc=@id, 0x80, &(0x7f0000000140)=[{&(0x7f0000000080)=""/13, 0xd}, {&(0x7f00000000c0)=""/21, 0x15}, {&(0x7f0000000100)=""/50, 0x32}], 0x3}, 0x40010161) (async) ioctl$TUNGETVNETBE(0xffffffffffffffff, 0x800454df, &(0x7f00000001c0)) (async) 14:45:07 executing program 5: syz_clone(0x9800700, 0x0, 0xf5ffffff, 0x0, 0x0, 0x0) 14:45:07 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x10, 0x0, 0x0, 0x0}, 0x20) 14:45:07 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:07 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x11, 0x0, 0x0, 0x0}, 0x20) 14:45:07 executing program 5: syz_clone(0x9800700, 0x0, 0xfbffffff, 0x0, 0x0, 0x0) [ 1038.875140][T10394] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1038.882884][T10394] [ 1038.909552][T10432] FAULT_INJECTION: forcing a failure. [ 1038.909552][T10432] name fail_page_alloc, interval 1, probability 0, space 0, times 0 14:45:07 executing program 5: syz_clone(0x9800700, 0x0, 0xfffffff5, 0x0, 0x0, 0x0) 14:45:07 executing program 5: syz_clone(0x9800700, 0x0, 0xfffffffb, 0x0, 0x0, 0x0) 14:45:07 executing program 5: syz_clone(0x9800700, 0x0, 0x1b0be1f000, 0x0, 0x0, 0x0) [ 1038.923539][T10432] CPU: 0 PID: 10432 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1038.933609][T10432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1038.943500][T10432] Call Trace: [ 1038.946623][T10432] [ 1038.949408][T10432] dump_stack_lvl+0x151/0x1b7 [ 1038.953919][T10432] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1038.959208][T10432] dump_stack+0x15/0x17 [ 1038.963200][T10432] should_fail+0x3c0/0x510 [ 1038.967457][T10432] should_fail_alloc_page+0x58/0x70 [ 1038.972486][T10432] __alloc_pages+0x1de/0x7c0 [ 1038.976914][T10432] ? __count_vm_events+0x30/0x30 [ 1038.981692][T10432] ? __kasan_kmalloc+0x9/0x10 [ 1038.986200][T10432] ? __kmalloc+0x203/0x350 [ 1038.990458][T10432] ? __vmalloc_node_range+0x2e3/0x800 [ 1038.995664][T10432] __vmalloc_node_range+0x48f/0x800 [ 1039.000697][T10432] dup_task_struct+0x61f/0xa60 [ 1039.005298][T10432] ? copy_process+0x579/0x3250 [ 1039.009895][T10432] ? __kasan_check_write+0x14/0x20 [ 1039.014842][T10432] copy_process+0x579/0x3250 [ 1039.019278][T10432] ? __kasan_check_write+0x14/0x20 14:45:07 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x13, 0x0, 0x0, 0x0}, 0x20) [ 1039.024220][T10432] ? proc_fail_nth_write+0x213/0x290 [ 1039.029340][T10432] ? proc_fail_nth_read+0x220/0x220 [ 1039.034377][T10432] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1039.039322][T10432] ? vfs_write+0x9af/0x1050 [ 1039.043670][T10432] ? vmacache_update+0xb7/0x120 [ 1039.048353][T10432] kernel_clone+0x22d/0x990 [ 1039.052689][T10432] ? file_end_write+0x1b0/0x1b0 [ 1039.057463][T10432] ? __kasan_check_write+0x14/0x20 [ 1039.062414][T10432] ? create_io_thread+0x1e0/0x1e0 [ 1039.067272][T10432] ? __mutex_lock_slowpath+0x10/0x10 [ 1039.072395][T10432] __x64_sys_clone+0x289/0x310 [ 1039.076994][T10432] ? __do_sys_vfork+0x130/0x130 [ 1039.081683][T10432] ? debug_smp_processor_id+0x17/0x20 [ 1039.086891][T10432] do_syscall_64+0x44/0xd0 [ 1039.091144][T10432] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1039.096871][T10432] RIP: 0033:0x7f0bd76b80d9 [ 1039.101125][T10432] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 14:45:07 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 16) 14:45:07 executing program 5: syz_clone(0x9800700, 0x0, 0x2a8bb59ad000, 0x0, 0x0, 0x0) 14:45:07 executing program 1: ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f0000000080)) (async) ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000040)={0x4, &(0x7f0000000000)=[{0x1ff, 0x8, 0xe1, 0x4}, {0x1f, 0x18, 0x5, 0x7}, {0x5, 0x7f, 0x4, 0x5}, {0x1, 0x9, 0x6, 0x7}]}) (async) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) gettid() 14:45:07 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x14, 0x0, 0x0, 0x0}, 0x20) 14:45:07 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:07 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:07 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:07 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x15, 0x0, 0x0, 0x0}, 0x20) 14:45:07 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1039.120610][T10432] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1039.128814][T10432] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1039.136624][T10432] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1039.144442][T10432] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1039.152247][T10432] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1039.160067][T10432] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1039.167878][T10432] 14:45:07 executing program 5: syz_clone(0x9800700, 0x0, 0x553a28ac8000, 0x0, 0x0, 0x0) 14:45:07 executing program 1: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0xa4002, 0x0) ioctl$TUNSETFILTEREBPF(r0, 0x800454e1, 0x0) ioctl$TUNSETVNETHDRSZ(r0, 0x400454d8, &(0x7f0000000000)=0x5) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:07 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) [ 1039.215570][T10467] FAULT_INJECTION: forcing a failure. [ 1039.215570][T10467] name failslab, interval 1, probability 0, space 0, times 0 [ 1039.231331][T10467] CPU: 1 PID: 10467 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1039.241392][T10467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1039.251288][T10467] Call Trace: [ 1039.254411][T10467] [ 1039.257190][T10467] dump_stack_lvl+0x151/0x1b7 [ 1039.261703][T10467] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1039.266996][T10467] dump_stack+0x15/0x17 [ 1039.270993][T10467] should_fail+0x3c0/0x510 [ 1039.275240][T10467] __should_failslab+0x9f/0xe0 [ 1039.279839][T10467] should_failslab+0x9/0x20 [ 1039.284185][T10467] kmem_cache_alloc+0x4f/0x2f0 [ 1039.288794][T10467] ? vm_area_dup+0x26/0x1d0 [ 1039.293125][T10467] vm_area_dup+0x26/0x1d0 [ 1039.297285][T10467] dup_mmap+0x6b8/0xea0 [ 1039.301278][T10467] ? __delayed_free_task+0x20/0x20 [ 1039.306222][T10467] ? mm_init+0x807/0x960 [ 1039.310312][T10467] dup_mm+0x91/0x330 [ 1039.314040][T10467] copy_mm+0x108/0x1b0 [ 1039.317945][T10467] copy_process+0x1295/0x3250 [ 1039.322463][T10467] ? proc_fail_nth_write+0x213/0x290 [ 1039.327636][T10467] ? proc_fail_nth_read+0x220/0x220 [ 1039.332615][T10467] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1039.337560][T10467] ? vfs_write+0x9af/0x1050 [ 1039.341904][T10467] ? vmacache_update+0xb7/0x120 [ 1039.346586][T10467] kernel_clone+0x22d/0x990 [ 1039.351002][T10467] ? file_end_write+0x1b0/0x1b0 [ 1039.356956][T10467] ? __kasan_check_write+0x14/0x20 [ 1039.361904][T10467] ? create_io_thread+0x1e0/0x1e0 [ 1039.366763][T10467] ? __mutex_lock_slowpath+0x10/0x10 [ 1039.371885][T10467] __x64_sys_clone+0x289/0x310 [ 1039.376489][T10467] ? __do_sys_vfork+0x130/0x130 [ 1039.381172][T10467] ? debug_smp_processor_id+0x17/0x20 [ 1039.386381][T10467] do_syscall_64+0x44/0xd0 [ 1039.390635][T10467] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1039.396362][T10467] RIP: 0033:0x7f0bd76b80d9 [ 1039.400616][T10467] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1039.420059][T10467] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1039.428303][T10467] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1039.436123][T10467] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1039.443929][T10467] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1039.451738][T10467] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 14:45:07 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 17) 14:45:07 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x16, 0x0, 0x0, 0x0}, 0x20) 14:45:07 executing program 1: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0xa4002, 0x0) ioctl$TUNSETFILTEREBPF(r0, 0x800454e1, 0x0) ioctl$TUNSETVNETHDRSZ(r0, 0x400454d8, &(0x7f0000000000)=0x5) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0xa4002, 0x0) (async) ioctl$TUNSETFILTEREBPF(r0, 0x800454e1, 0x0) (async) ioctl$TUNSETVNETHDRSZ(r0, 0x400454d8, &(0x7f0000000000)=0x5) (async) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) 14:45:07 executing program 5: syz_clone(0x9800700, 0x0, 0x8000000000000, 0x0, 0x0, 0x0) 14:45:07 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1004000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:07 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000000) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@bloom_filter={0x1e, 0xffffffe0, 0x5, 0x800, 0x40c, 0x1, 0xc54, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0, 0x8}, 0x48) bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f00000001c0)={&(0x7f0000000040)="c53c41fc4374804854133cd24ef4b79d6bb04d8345e316b4e705057193eb22e7c1246599b14274a2c1fe3bd24aa80d91544b171fca2b35f1", &(0x7f0000000080)=""/59, &(0x7f00000000c0)="247fd7a7d84e16b56b8ec51237195c4c60e38abe04b401c836b93b4372abfd023694e85732b3ec8c0eeb6036b0bed608964eb30ac045", &(0x7f0000000100)="09bc", 0x40, r1, 0x4}, 0x38) 14:45:08 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x1d, 0x0, 0x0, 0x0}, 0x20) 14:45:08 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1039.459552][T10467] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1039.467364][T10467] 14:45:08 executing program 5: syz_clone(0x9800700, 0x0, 0x10000000000000, 0x0, 0x0, 0x0) 14:45:08 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x1e, 0x0, 0x0, 0x0}, 0x20) [ 1039.492998][T10486] FAULT_INJECTION: forcing a failure. [ 1039.492998][T10486] name failslab, interval 1, probability 0, space 0, times 0 [ 1039.519130][T10486] CPU: 1 PID: 10486 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1039.529294][T10486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1039.539182][T10486] Call Trace: 14:45:08 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:08 executing program 1: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0xa4002, 0x0) ioctl$TUNSETFILTEREBPF(r0, 0x800454e1, 0x0) ioctl$TUNSETVNETHDRSZ(r0, 0x400454d8, &(0x7f0000000000)=0x5) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1039.542310][T10486] [ 1039.545093][T10486] dump_stack_lvl+0x151/0x1b7 [ 1039.549603][T10486] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1039.554898][T10486] dump_stack+0x15/0x17 [ 1039.558892][T10486] should_fail+0x3c0/0x510 [ 1039.563144][T10486] ? security_prepare_creds+0x50/0x160 [ 1039.568439][T10486] __should_failslab+0x9f/0xe0 [ 1039.573039][T10486] should_failslab+0x9/0x20 [ 1039.577378][T10486] __kmalloc+0x6d/0x350 [ 1039.581368][T10486] security_prepare_creds+0x50/0x160 [ 1039.586489][T10486] prepare_creds+0x471/0x690 [ 1039.590914][T10486] copy_creds+0xde/0x640 [ 1039.594992][T10486] copy_process+0x775/0x3250 [ 1039.599419][T10486] ? __kasan_check_write+0x14/0x20 [ 1039.604363][T10486] ? proc_fail_nth_write+0x213/0x290 [ 1039.609487][T10486] ? proc_fail_nth_read+0x220/0x220 [ 1039.614519][T10486] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1039.619468][T10486] ? vfs_write+0x9af/0x1050 [ 1039.623816][T10486] ? vmacache_update+0xb7/0x120 [ 1039.628493][T10486] kernel_clone+0x22d/0x990 [ 1039.632833][T10486] ? file_end_write+0x1b0/0x1b0 [ 1039.637522][T10486] ? __kasan_check_write+0x14/0x20 [ 1039.642509][T10486] ? create_io_thread+0x1e0/0x1e0 [ 1039.647338][T10486] ? __mutex_lock_slowpath+0x10/0x10 [ 1039.652451][T10486] __x64_sys_clone+0x289/0x310 [ 1039.657055][T10486] ? __do_sys_vfork+0x130/0x130 [ 1039.661745][T10486] ? debug_smp_processor_id+0x17/0x20 [ 1039.666948][T10486] do_syscall_64+0x44/0xd0 [ 1039.671213][T10486] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1039.676936][T10486] RIP: 0033:0x7f0bd76b80d9 [ 1039.681185][T10486] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1039.700888][T10486] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1039.709138][T10486] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1039.716948][T10486] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1039.724757][T10486] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1039.732659][T10486] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 14:45:08 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 18) 14:45:08 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x22, 0x0, 0x0, 0x0}, 0x20) 14:45:08 executing program 1: r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='ext4_da_write_pages_extent\x00'}, 0x10) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) ioctl$TUNGETFILTER(r2, 0x801054db, &(0x7f00000013c0)=""/95) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, &(0x7f00000000c0)) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, 0xffffffffffffffff) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000001200)={0x1, 0x58, &(0x7f0000001180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000)={0x0, 0x0}, 0x8) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r5, 0x800454e1, 0x0) ioctl$TUNSETNOCSUM(r5, 0x400454c8, 0x0) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000000c0)=r4, 0x4) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r6}, 0x14) r7 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000001480)) ioctl$TUNSETSNDBUF(0xffffffffffffffff, 0x400454d4, &(0x7f0000001440)=0x5) openat$cgroup_ro(r7, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000014c0)={'pim6reg0\x00', 0x9000}) bpf$PROG_LOAD(0x5, &(0x7f0000001300)={0xb, 0x8, &(0x7f0000000100)=@raw=[@generic={0x18, 0xb, 0xf, 0x5, 0x8c89}, @map_idx_val={0x18, 0x9, 0x6, 0x0, 0xe, 0x0, 0x0, 0x0, 0x401}, @call={0x85, 0x0, 0x0, 0x24}, @func={0x85, 0x0, 0x1, 0x0, 0xffffffffffffffff}, @ldst={0x3, 0x0, 0x6, 0xa, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x4e}, @func={0x85, 0x0, 0x1, 0x0, 0x8}], &(0x7f0000000140)='syzkaller\x00', 0x5784, 0x1000, &(0x7f0000000180)=""/4096, 0x41100, 0x4, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001240)={0x1, 0x2}, 0x8, 0x10, &(0x7f0000001280)={0x1, 0x6, 0x4, 0x1}, 0x10, r4, r6, 0x0, &(0x7f00000012c0)=[r7, 0xffffffffffffffff, 0x1]}, 0x80) 14:45:08 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:08 executing program 5: syz_clone(0x9800700, 0x0, 0x10100000000000, 0x0, 0x0, 0x0) [ 1039.740467][T10486] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1039.748283][T10486] [ 1039.777732][T10512] FAULT_INJECTION: forcing a failure. [ 1039.777732][T10512] name failslab, interval 1, probability 0, space 0, times 0 [ 1039.790193][T10512] CPU: 1 PID: 10512 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1039.800209][T10512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1039.810193][T10512] Call Trace: [ 1039.813326][T10512] [ 1039.816094][T10512] dump_stack_lvl+0x151/0x1b7 [ 1039.820619][T10512] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1039.825995][T10512] dump_stack+0x15/0x17 [ 1039.829986][T10512] should_fail+0x3c0/0x510 [ 1039.834245][T10512] __should_failslab+0x9f/0xe0 [ 1039.838836][T10512] should_failslab+0x9/0x20 [ 1039.843202][T10512] kmem_cache_alloc+0x4f/0x2f0 [ 1039.847779][T10512] ? vm_area_dup+0x26/0x1d0 [ 1039.852131][T10512] ? __kasan_check_read+0x11/0x20 [ 1039.857000][T10512] vm_area_dup+0x26/0x1d0 [ 1039.861145][T10512] dup_mmap+0x6b8/0xea0 [ 1039.865290][T10512] ? __delayed_free_task+0x20/0x20 [ 1039.870242][T10512] ? mm_init+0x807/0x960 [ 1039.874313][T10512] dup_mm+0x91/0x330 [ 1039.878040][T10512] copy_mm+0x108/0x1b0 [ 1039.881952][T10512] copy_process+0x1295/0x3250 [ 1039.886469][T10512] ? proc_fail_nth_write+0x213/0x290 [ 1039.891582][T10512] ? proc_fail_nth_read+0x220/0x220 [ 1039.896618][T10512] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1039.901565][T10512] ? vfs_write+0x9af/0x1050 [ 1039.905911][T10512] ? vmacache_update+0xb7/0x120 [ 1039.910592][T10512] kernel_clone+0x22d/0x990 [ 1039.914930][T10512] ? file_end_write+0x1b0/0x1b0 [ 1039.919624][T10512] ? __kasan_check_write+0x14/0x20 [ 1039.924566][T10512] ? create_io_thread+0x1e0/0x1e0 [ 1039.929426][T10512] ? __mutex_lock_slowpath+0x10/0x10 [ 1039.935070][T10512] __x64_sys_clone+0x289/0x310 [ 1039.939669][T10512] ? __do_sys_vfork+0x130/0x130 [ 1039.944360][T10512] ? debug_smp_processor_id+0x17/0x20 [ 1039.949564][T10512] do_syscall_64+0x44/0xd0 [ 1039.953820][T10512] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1039.959551][T10512] RIP: 0033:0x7f0bd76b80d9 [ 1039.963801][T10512] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1039.983241][T10512] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1039.991491][T10512] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1039.999303][T10512] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1040.007118][T10512] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1040.014922][T10512] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1040.022734][T10512] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1040.030551][T10512] 14:45:08 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000000) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@bloom_filter={0x1e, 0xffffffe0, 0x5, 0x800, 0x40c, 0x1, 0xc54, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0, 0x8}, 0x48) bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f00000001c0)={&(0x7f0000000040)="c53c41fc4374804854133cd24ef4b79d6bb04d8345e316b4e705057193eb22e7c1246599b14274a2c1fe3bd24aa80d91544b171fca2b35f1", &(0x7f0000000080)=""/59, &(0x7f00000000c0)="247fd7a7d84e16b56b8ec51237195c4c60e38abe04b401c836b93b4372abfd023694e85732b3ec8c0eeb6036b0bed608964eb30ac045", &(0x7f0000000100)="09bc", 0x40, r1, 0x4}, 0x38) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000000) (async) bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@bloom_filter={0x1e, 0xffffffe0, 0x5, 0x800, 0x40c, 0x1, 0xc54, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0, 0x8}, 0x48) (async) bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f00000001c0)={&(0x7f0000000040)="c53c41fc4374804854133cd24ef4b79d6bb04d8345e316b4e705057193eb22e7c1246599b14274a2c1fe3bd24aa80d91544b171fca2b35f1", &(0x7f0000000080)=""/59, &(0x7f00000000c0)="247fd7a7d84e16b56b8ec51237195c4c60e38abe04b401c836b93b4372abfd023694e85732b3ec8c0eeb6036b0bed608964eb30ac045", &(0x7f0000000100)="09bc", 0x40, r1, 0x4}, 0x38) (async) 14:45:08 executing program 5: syz_clone(0x9800700, 0x0, 0x80ac283a550000, 0x0, 0x0, 0x0) 14:45:08 executing program 1: r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='ext4_da_write_pages_extent\x00'}, 0x10) (async) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) (async) ioctl$TUNGETFILTER(r2, 0x801054db, &(0x7f00000013c0)=""/95) (async, rerun: 64) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, &(0x7f00000000c0)) (async, rerun: 64) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, 0xffffffffffffffff) (async) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000001200)={0x1, 0x58, &(0x7f0000001180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) (async) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000)={0x0, 0x0}, 0x8) (async) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r5, 0x800454e1, 0x0) (async) ioctl$TUNSETNOCSUM(r5, 0x400454c8, 0x0) (async, rerun: 32) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000000c0)=r4, 0x4) (rerun: 32) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r6}, 0x14) (async) r7 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000001480)) (async) ioctl$TUNSETSNDBUF(0xffffffffffffffff, 0x400454d4, &(0x7f0000001440)=0x5) (async) openat$cgroup_ro(r7, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000014c0)={'pim6reg0\x00', 0x9000}) bpf$PROG_LOAD(0x5, &(0x7f0000001300)={0xb, 0x8, &(0x7f0000000100)=@raw=[@generic={0x18, 0xb, 0xf, 0x5, 0x8c89}, @map_idx_val={0x18, 0x9, 0x6, 0x0, 0xe, 0x0, 0x0, 0x0, 0x401}, @call={0x85, 0x0, 0x0, 0x24}, @func={0x85, 0x0, 0x1, 0x0, 0xffffffffffffffff}, @ldst={0x3, 0x0, 0x6, 0xa, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x4e}, @func={0x85, 0x0, 0x1, 0x0, 0x8}], &(0x7f0000000140)='syzkaller\x00', 0x5784, 0x1000, &(0x7f0000000180)=""/4096, 0x41100, 0x4, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001240)={0x1, 0x2}, 0x8, 0x10, &(0x7f0000001280)={0x1, 0x6, 0x4, 0x1}, 0x10, r4, r6, 0x0, &(0x7f00000012c0)=[r7, 0xffffffffffffffff, 0x1]}, 0x80) 14:45:08 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x23, 0x0, 0x0, 0x0}, 0x20) 14:45:08 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:08 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 19) 14:45:08 executing program 5: syz_clone(0x9800700, 0x0, 0xd09ab58b2a0000, 0x0, 0x0, 0x0) 14:45:08 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x24, 0x0, 0x0, 0x0}, 0x20) 14:45:08 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:08 executing program 1: r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='ext4_da_write_pages_extent\x00'}, 0x10) (async) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0) (async) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) (async) ioctl$TUNGETFILTER(r2, 0x801054db, &(0x7f00000013c0)=""/95) (async) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, &(0x7f00000000c0)) (async) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, 0xffffffffffffffff) (async, rerun: 64) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000001200)={0x1, 0x58, &(0x7f0000001180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) (async, rerun: 64) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000)={0x0, 0x0}, 0x8) (async) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r5, 0x800454e1, 0x0) ioctl$TUNSETNOCSUM(r5, 0x400454c8, 0x0) (async) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000000c0)=r4, 0x4) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r6}, 0x14) (async) r7 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000001480)) (async) ioctl$TUNSETSNDBUF(0xffffffffffffffff, 0x400454d4, &(0x7f0000001440)=0x5) (async) openat$cgroup_ro(r7, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000014c0)={'pim6reg0\x00', 0x9000}) (async) bpf$PROG_LOAD(0x5, &(0x7f0000001300)={0xb, 0x8, &(0x7f0000000100)=@raw=[@generic={0x18, 0xb, 0xf, 0x5, 0x8c89}, @map_idx_val={0x18, 0x9, 0x6, 0x0, 0xe, 0x0, 0x0, 0x0, 0x401}, @call={0x85, 0x0, 0x0, 0x24}, @func={0x85, 0x0, 0x1, 0x0, 0xffffffffffffffff}, @ldst={0x3, 0x0, 0x6, 0xa, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x4e}, @func={0x85, 0x0, 0x1, 0x0, 0x8}], &(0x7f0000000140)='syzkaller\x00', 0x5784, 0x1000, &(0x7f0000000180)=""/4096, 0x41100, 0x4, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001240)={0x1, 0x2}, 0x8, 0x10, &(0x7f0000001280)={0x1, 0x6, 0x4, 0x1}, 0x10, r4, r6, 0x0, &(0x7f00000012c0)=[r7, 0xffffffffffffffff, 0x1]}, 0x80) 14:45:08 executing program 5: syz_clone(0x9800700, 0x0, 0xf0e10b1b000000, 0x0, 0x0, 0x0) 14:45:08 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1040.360613][T10535] FAULT_INJECTION: forcing a failure. [ 1040.360613][T10535] name failslab, interval 1, probability 0, space 0, times 0 [ 1040.384270][T10535] CPU: 1 PID: 10535 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1040.394340][T10535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1040.404240][T10535] Call Trace: [ 1040.407358][T10535] [ 1040.410221][T10535] dump_stack_lvl+0x151/0x1b7 [ 1040.414732][T10535] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1040.420025][T10535] ? do_syscall_64+0x44/0xd0 [ 1040.424453][T10535] dump_stack+0x15/0x17 [ 1040.428448][T10535] should_fail+0x3c0/0x510 [ 1040.432695][T10535] __should_failslab+0x9f/0xe0 [ 1040.437296][T10535] should_failslab+0x9/0x20 [ 1040.441644][T10535] kmem_cache_alloc+0x4f/0x2f0 [ 1040.446241][T10535] ? anon_vma_clone+0xa1/0x4f0 [ 1040.450853][T10535] anon_vma_clone+0xa1/0x4f0 [ 1040.455275][T10535] anon_vma_fork+0x91/0x4f0 [ 1040.459615][T10535] ? anon_vma_name+0x4c/0x70 [ 1040.464206][T10535] dup_mmap+0x750/0xea0 [ 1040.468197][T10535] ? __delayed_free_task+0x20/0x20 [ 1040.473145][T10535] ? mm_init+0x807/0x960 [ 1040.477224][T10535] dup_mm+0x91/0x330 [ 1040.480959][T10535] copy_mm+0x108/0x1b0 [ 1040.484861][T10535] copy_process+0x1295/0x3250 [ 1040.489394][T10535] ? proc_fail_nth_write+0x213/0x290 [ 1040.494496][T10535] ? proc_fail_nth_read+0x220/0x220 [ 1040.499533][T10535] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1040.504484][T10535] ? vfs_write+0x9af/0x1050 [ 1040.508831][T10535] ? vmacache_update+0xb7/0x120 [ 1040.513509][T10535] kernel_clone+0x22d/0x990 [ 1040.517847][T10535] ? file_end_write+0x1b0/0x1b0 [ 1040.522540][T10535] ? __kasan_check_write+0x14/0x20 [ 1040.527482][T10535] ? create_io_thread+0x1e0/0x1e0 [ 1040.532342][T10535] ? __mutex_lock_slowpath+0x10/0x10 [ 1040.537557][T10535] __x64_sys_clone+0x289/0x310 [ 1040.542152][T10535] ? __do_sys_vfork+0x130/0x130 [ 1040.546846][T10535] ? debug_smp_processor_id+0x17/0x20 [ 1040.552047][T10535] do_syscall_64+0x44/0xd0 [ 1040.556487][T10535] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1040.562212][T10535] RIP: 0033:0x7f0bd76b80d9 [ 1040.566465][T10535] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1040.585895][T10535] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1040.594144][T10535] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1040.601961][T10535] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1040.609767][T10535] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1040.617577][T10535] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1040.625390][T10535] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1040.633205][T10535] 14:45:09 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000000) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@bloom_filter={0x1e, 0xffffffe0, 0x5, 0x800, 0x40c, 0x1, 0xc54, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0, 0x8}, 0x48) bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f00000001c0)={&(0x7f0000000040)="c53c41fc4374804854133cd24ef4b79d6bb04d8345e316b4e705057193eb22e7c1246599b14274a2c1fe3bd24aa80d91544b171fca2b35f1", &(0x7f0000000080)=""/59, &(0x7f00000000c0)="247fd7a7d84e16b56b8ec51237195c4c60e38abe04b401c836b93b4372abfd023694e85732b3ec8c0eeb6036b0bed608964eb30ac045", &(0x7f0000000100)="09bc", 0x40, r1, 0x4}, 0x38) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000000) (async) bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@bloom_filter={0x1e, 0xffffffe0, 0x5, 0x800, 0x40c, 0x1, 0xc54, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0, 0x8}, 0x48) (async) bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f00000001c0)={&(0x7f0000000040)="c53c41fc4374804854133cd24ef4b79d6bb04d8345e316b4e705057193eb22e7c1246599b14274a2c1fe3bd24aa80d91544b171fca2b35f1", &(0x7f0000000080)=""/59, &(0x7f00000000c0)="247fd7a7d84e16b56b8ec51237195c4c60e38abe04b401c836b93b4372abfd023694e85732b3ec8c0eeb6036b0bed608964eb30ac045", &(0x7f0000000100)="09bc", 0x40, r1, 0x4}, 0x38) (async) 14:45:09 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:09 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:09 executing program 5: syz_clone(0x9800700, 0x0, 0xf0ff1f00000000, 0x0, 0x0, 0x0) 14:45:09 executing program 1: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) recvmsg(r0, &(0x7f00000013c0)={&(0x7f0000000000)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f0000001480)=[{&(0x7f0000000080)=""/30, 0x1e}, {&(0x7f00000001c0)=""/30, 0x1e}, {&(0x7f0000000100)=""/116, 0x74}, {&(0x7f0000001380)=""/46, 0x2e}, {&(0x7f0000001200)=""/9, 0x9}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001400)=""/123, 0x7b}], 0x7, &(0x7f0000001280)=""/252, 0xfc}, 0x40000001) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0), 0x4) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:09 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 20) 14:45:09 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x2, 0x0, 0x0}, 0x20) 14:45:09 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:09 executing program 5: syz_clone(0x9800700, 0x0, 0x100000000000000, 0x0, 0x0, 0x0) 14:45:09 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000001000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:09 executing program 1: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) recvmsg(r0, &(0x7f00000013c0)={&(0x7f0000000000)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f0000001480)=[{&(0x7f0000000080)=""/30, 0x1e}, {&(0x7f00000001c0)=""/30, 0x1e}, {&(0x7f0000000100)=""/116, 0x74}, {&(0x7f0000001380)=""/46, 0x2e}, {&(0x7f0000001200)=""/9, 0x9}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001400)=""/123, 0x7b}], 0x7, &(0x7f0000001280)=""/252, 0xfc}, 0x40000001) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0), 0x4) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)) (async) recvmsg(r0, &(0x7f00000013c0)={&(0x7f0000000000)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f0000001480)=[{&(0x7f0000000080)=""/30, 0x1e}, {&(0x7f00000001c0)=""/30, 0x1e}, {&(0x7f0000000100)=""/116, 0x74}, {&(0x7f0000001380)=""/46, 0x2e}, {&(0x7f0000001200)=""/9, 0x9}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001400)=""/123, 0x7b}], 0x7, &(0x7f0000001280)=""/252, 0xfc}, 0x40000001) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) (async) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0), 0x4) (async) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) 14:45:09 executing program 1: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) recvmsg(r0, &(0x7f00000013c0)={&(0x7f0000000000)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f0000001480)=[{&(0x7f0000000080)=""/30, 0x1e}, {&(0x7f00000001c0)=""/30, 0x1e}, {&(0x7f0000000100)=""/116, 0x74}, {&(0x7f0000001380)=""/46, 0x2e}, {&(0x7f0000001200)=""/9, 0x9}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001400)=""/123, 0x7b}], 0x7, &(0x7f0000001280)=""/252, 0xfc}, 0x40000001) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) (async) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000000c0), 0x4) (async) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1041.207757][T10568] FAULT_INJECTION: forcing a failure. [ 1041.207757][T10568] name failslab, interval 1, probability 0, space 0, times 0 [ 1041.225847][T10568] CPU: 1 PID: 10568 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1041.235919][T10568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1041.245820][T10568] Call Trace: [ 1041.248933][T10568] [ 1041.251711][T10568] dump_stack_lvl+0x151/0x1b7 [ 1041.256225][T10568] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1041.261522][T10568] dump_stack+0x15/0x17 [ 1041.265515][T10568] should_fail+0x3c0/0x510 [ 1041.269764][T10568] __should_failslab+0x9f/0xe0 [ 1041.274364][T10568] should_failslab+0x9/0x20 [ 1041.278703][T10568] kmem_cache_alloc+0x4f/0x2f0 [ 1041.283311][T10568] ? anon_vma_clone+0xa1/0x4f0 [ 1041.287903][T10568] anon_vma_clone+0xa1/0x4f0 [ 1041.292337][T10568] anon_vma_fork+0x91/0x4f0 [ 1041.296668][T10568] ? anon_vma_name+0x4c/0x70 [ 1041.301096][T10568] dup_mmap+0x750/0xea0 [ 1041.305090][T10568] ? __delayed_free_task+0x20/0x20 [ 1041.310035][T10568] ? mm_init+0x807/0x960 [ 1041.314116][T10568] dup_mm+0x91/0x330 [ 1041.317855][T10568] copy_mm+0x108/0x1b0 [ 1041.321754][T10568] copy_process+0x1295/0x3250 [ 1041.326283][T10568] ? proc_fail_nth_write+0x213/0x290 [ 1041.331395][T10568] ? proc_fail_nth_read+0x220/0x220 [ 1041.336429][T10568] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1041.341372][T10568] ? vfs_write+0x9af/0x1050 [ 1041.345715][T10568] ? vmacache_update+0xb7/0x120 [ 1041.351095][T10568] kernel_clone+0x22d/0x990 [ 1041.355449][T10568] ? file_end_write+0x1b0/0x1b0 [ 1041.360127][T10568] ? __kasan_check_write+0x14/0x20 [ 1041.365071][T10568] ? create_io_thread+0x1e0/0x1e0 [ 1041.369929][T10568] ? __mutex_lock_slowpath+0x10/0x10 [ 1041.375064][T10568] __x64_sys_clone+0x289/0x310 [ 1041.379658][T10568] ? __do_sys_vfork+0x130/0x130 [ 1041.384339][T10568] ? debug_smp_processor_id+0x17/0x20 [ 1041.389545][T10568] do_syscall_64+0x44/0xd0 [ 1041.393809][T10568] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1041.399548][T10568] RIP: 0033:0x7f0bd76b80d9 [ 1041.403790][T10568] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1041.423317][T10568] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1041.431583][T10568] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1041.439367][T10568] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1041.447179][T10568] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1041.454996][T10568] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1041.462808][T10568] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1041.470705][T10568] 14:45:10 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:10 executing program 1: r0 = syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={r0, 0xffffffffffffffff, 0x0, 0x2, &(0x7f0000000000)='\\\x00'}, 0x30) 14:45:10 executing program 5: syz_clone(0x9800700, 0x0, 0x200000000000000, 0x0, 0x0, 0x0) 14:45:10 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x1000000, 0x0, 0x0}, 0x20) 14:45:10 executing program 4: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) r1 = openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) ioctl$TUNSETSTEERINGEBPF(r1, 0x800454e0, &(0x7f0000000080)=r0) ioctl$PERF_EVENT_IOC_ID(r0, 0x80082407, &(0x7f0000000000)) recvmsg$unix(0xffffffffffffffff, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:10 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 21) 14:45:10 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x2000000, 0x0, 0x0}, 0x20) 14:45:10 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:10 executing program 4: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) r1 = openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) ioctl$TUNSETSTEERINGEBPF(r1, 0x800454e0, &(0x7f0000000080)=r0) (async, rerun: 32) ioctl$PERF_EVENT_IOC_ID(r0, 0x80082407, &(0x7f0000000000)) (rerun: 32) recvmsg$unix(0xffffffffffffffff, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:10 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:10 executing program 5: syz_clone(0x9800700, 0x0, 0x700000000000000, 0x0, 0x0, 0x0) 14:45:10 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:10 executing program 1: r0 = syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={r0, 0xffffffffffffffff, 0x0, 0x2, &(0x7f0000000000)='\\\x00'}, 0x30) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={r0, 0xffffffffffffffff, 0x0, 0x2, &(0x7f0000000000)='\\\x00'}, 0x30) (async) 14:45:10 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x2, 0x0}, 0x20) 14:45:10 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x1000000, 0x0}, 0x20) [ 1042.057983][T10604] FAULT_INJECTION: forcing a failure. [ 1042.057983][T10604] name failslab, interval 1, probability 0, space 0, times 0 [ 1042.080548][T10604] CPU: 0 PID: 10604 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1042.090637][T10604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1042.100538][T10604] Call Trace: [ 1042.103644][T10604] 14:45:10 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x2000000, 0x0}, 0x20) 14:45:10 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) [ 1042.106422][T10604] dump_stack_lvl+0x151/0x1b7 [ 1042.110936][T10604] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1042.116231][T10604] dump_stack+0x15/0x17 [ 1042.120225][T10604] should_fail+0x3c0/0x510 [ 1042.124479][T10604] __should_failslab+0x9f/0xe0 [ 1042.129077][T10604] should_failslab+0x9/0x20 [ 1042.133414][T10604] kmem_cache_alloc+0x4f/0x2f0 [ 1042.138016][T10604] ? anon_vma_clone+0xa1/0x4f0 [ 1042.142616][T10604] anon_vma_clone+0xa1/0x4f0 [ 1042.147140][T10604] anon_vma_fork+0x91/0x4f0 [ 1042.151490][T10604] ? anon_vma_name+0x4c/0x70 [ 1042.155916][T10604] dup_mmap+0x750/0xea0 [ 1042.159907][T10604] ? __delayed_free_task+0x20/0x20 [ 1042.164849][T10604] ? mm_init+0x807/0x960 [ 1042.168931][T10604] dup_mm+0x91/0x330 [ 1042.172661][T10604] copy_mm+0x108/0x1b0 [ 1042.176565][T10604] copy_process+0x1295/0x3250 [ 1042.181080][T10604] ? proc_fail_nth_write+0x213/0x290 [ 1042.190401][T10604] ? proc_fail_nth_read+0x220/0x220 [ 1042.195402][T10604] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1042.200454][T10604] ? vfs_write+0x9af/0x1050 [ 1042.204774][T10604] ? vmacache_update+0xb7/0x120 [ 1042.209471][T10604] kernel_clone+0x22d/0x990 [ 1042.213805][T10604] ? file_end_write+0x1b0/0x1b0 [ 1042.218494][T10604] ? __kasan_check_write+0x14/0x20 [ 1042.223448][T10604] ? create_io_thread+0x1e0/0x1e0 [ 1042.228304][T10604] ? __mutex_lock_slowpath+0x10/0x10 [ 1042.233433][T10604] __x64_sys_clone+0x289/0x310 [ 1042.238022][T10604] ? __do_sys_vfork+0x130/0x130 [ 1042.242709][T10604] ? debug_smp_processor_id+0x17/0x20 [ 1042.247915][T10604] do_syscall_64+0x44/0xd0 [ 1042.252178][T10604] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1042.257895][T10604] RIP: 0033:0x7f0bd76b80d9 [ 1042.262150][T10604] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1042.281612][T10604] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1042.289924][T10604] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1042.297842][T10604] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 14:45:10 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 22) 14:45:10 executing program 5: syz_clone(0x9800700, 0x0, 0x800000000000000, 0x0, 0x0, 0x0) 14:45:10 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0, 0x2}, 0x20) 14:45:10 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000010000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:10 executing program 1: r0 = syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={r0, 0xffffffffffffffff, 0x0, 0x2, &(0x7f0000000000)='\\\x00'}, 0x30) 14:45:10 executing program 4: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) r1 = openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) ioctl$TUNSETSTEERINGEBPF(r1, 0x800454e0, &(0x7f0000000080)=r0) ioctl$PERF_EVENT_IOC_ID(r0, 0x80082407, &(0x7f0000000000)) recvmsg$unix(0xffffffffffffffff, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) ioctl$TUNSETSTEERINGEBPF(r1, 0x800454e0, &(0x7f0000000080)=r0) (async) ioctl$PERF_EVENT_IOC_ID(r0, 0x80082407, &(0x7f0000000000)) (async) recvmsg$unix(0xffffffffffffffff, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) 14:45:10 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0, 0x1000000}, 0x20) [ 1042.305636][T10604] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1042.313449][T10604] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1042.321260][T10604] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1042.329073][T10604] 14:45:10 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x40000000, &(0x7f0000000000)="de11f99bbd523feb7b42a8d2c4", 0xd, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)="3e5289c6ed5e778d98f87d9f4290417b35256928cb5bdab547c987e6f0636e876cad6e2e36563f431dfb71ba80691529681fceb89d4330c8536e89c526191e2cda0608b12140a9ae90b0dccff65a54fd10df7e36d608fb08df7de9dea34fe4a8952d28cabe6edd3b2e4a156d23bc118f0c576b9abb37f95c30b0dbbc7f48cfe8101eca66a059360eb8f21e0eee32584592447c4d450e32f53f5c480d6a218b2b96faea") 14:45:10 executing program 5: syz_clone(0x9800700, 0x0, 0x900000000000000, 0x0, 0x0, 0x0) 14:45:10 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0xffffffffffffff2f, 0x0, 0xfffffffffffffe1b}, 0x12163) 14:45:10 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000100000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:10 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0, 0x2000000}, 0x20) [ 1042.357806][T10646] FAULT_INJECTION: forcing a failure. [ 1042.357806][T10646] name failslab, interval 1, probability 0, space 0, times 0 [ 1042.381915][T10646] CPU: 0 PID: 10646 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1042.392000][T10646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1042.402053][T10646] Call Trace: [ 1042.405186][T10646] [ 1042.407955][T10646] dump_stack_lvl+0x151/0x1b7 [ 1042.412468][T10646] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1042.417767][T10646] dump_stack+0x15/0x17 [ 1042.421777][T10646] should_fail+0x3c0/0x510 [ 1042.426061][T10646] __should_failslab+0x9f/0xe0 [ 1042.430624][T10646] should_failslab+0x9/0x20 [ 1042.434950][T10646] kmem_cache_alloc+0x4f/0x2f0 [ 1042.439551][T10646] ? anon_vma_clone+0xa1/0x4f0 [ 1042.444157][T10646] anon_vma_clone+0xa1/0x4f0 [ 1042.448578][T10646] anon_vma_fork+0x91/0x4f0 [ 1042.452920][T10646] ? anon_vma_name+0x4c/0x70 [ 1042.457346][T10646] dup_mmap+0x750/0xea0 [ 1042.461338][T10646] ? __delayed_free_task+0x20/0x20 [ 1042.466287][T10646] ? mm_init+0x807/0x960 [ 1042.470362][T10646] dup_mm+0x91/0x330 [ 1042.474096][T10646] copy_mm+0x108/0x1b0 [ 1042.478005][T10646] copy_process+0x1295/0x3250 [ 1042.482518][T10646] ? proc_fail_nth_write+0x213/0x290 [ 1042.487638][T10646] ? proc_fail_nth_read+0x220/0x220 [ 1042.492670][T10646] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1042.497629][T10646] ? vfs_write+0x9af/0x1050 [ 1042.501956][T10646] ? vmacache_update+0xb7/0x120 [ 1042.506644][T10646] kernel_clone+0x22d/0x990 [ 1042.510987][T10646] ? file_end_write+0x1b0/0x1b0 [ 1042.515670][T10646] ? __kasan_check_write+0x14/0x20 [ 1042.520620][T10646] ? create_io_thread+0x1e0/0x1e0 [ 1042.525489][T10646] ? __mutex_lock_slowpath+0x10/0x10 [ 1042.530601][T10646] __x64_sys_clone+0x289/0x310 [ 1042.535294][T10646] ? __do_sys_vfork+0x130/0x130 [ 1042.539979][T10646] ? debug_smp_processor_id+0x17/0x20 [ 1042.545189][T10646] do_syscall_64+0x44/0xd0 [ 1042.549438][T10646] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1042.555165][T10646] RIP: 0033:0x7f0bd76b80d9 [ 1042.559426][T10646] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1042.578864][T10646] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1042.587121][T10646] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1042.594921][T10646] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 14:45:11 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 23) 14:45:11 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:11 executing program 5: syz_clone(0x9800700, 0x0, 0x1f00000000000000, 0x0, 0x0, 0x0) 14:45:11 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x200002a0) 14:45:11 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x40000000, &(0x7f0000000000)="de11f99bbd523feb7b42a8d2c4", 0xd, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)="3e5289c6ed5e778d98f87d9f4290417b35256928cb5bdab547c987e6f0636e876cad6e2e36563f431dfb71ba80691529681fceb89d4330c8536e89c526191e2cda0608b12140a9ae90b0dccff65a54fd10df7e36d608fb08df7de9dea34fe4a8952d28cabe6edd3b2e4a156d23bc118f0c576b9abb37f95c30b0dbbc7f48cfe8101eca66a059360eb8f21e0eee32584592447c4d450e32f53f5c480d6a218b2b96faea") syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) syz_clone(0x40000000, &(0x7f0000000000)="de11f99bbd523feb7b42a8d2c4", 0xd, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)="3e5289c6ed5e778d98f87d9f4290417b35256928cb5bdab547c987e6f0636e876cad6e2e36563f431dfb71ba80691529681fceb89d4330c8536e89c526191e2cda0608b12140a9ae90b0dccff65a54fd10df7e36d608fb08df7de9dea34fe4a8952d28cabe6edd3b2e4a156d23bc118f0c576b9abb37f95c30b0dbbc7f48cfe8101eca66a059360eb8f21e0eee32584592447c4d450e32f53f5c480d6a218b2b96faea") (async) 14:45:11 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0xffffffffffffff2f, 0x0, 0xfffffffffffffe1b}, 0x12163) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) (async) recvmsg$unix(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0xffffffffffffff2f, 0x0, 0xfffffffffffffe1b}, 0x12163) (async) 14:45:11 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:11 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0xffffffffffffff2f, 0x0, 0xfffffffffffffe1b}, 0x12163) [ 1042.602734][T10646] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1042.610546][T10646] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1042.618369][T10646] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1042.626170][T10646] 14:45:11 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={0xffffffffffffffff, 0x58, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000001300)={0xd, 0x10, &(0x7f0000000080)=@raw=[@map_fd={0x18, 0xa, 0x1, 0x0, 0x1}, @cb_func={0x18, 0x5, 0x4, 0x0, 0x3}, @map_val={0x18, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x43}, @exit, @alu={0x7, 0x0, 0x4, 0x3, 0x3, 0xc, 0x4}, @jmp={0x5, 0x1, 0x35642109c78c296c, 0x3, 0x6, 0x1, 0x3}, @map_val={0x18, 0x5, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x58a5}, @func={0x85, 0x0, 0x1, 0x0, 0x7}, @cb_func={0x18, 0x9, 0x4, 0x0, 0x1}, @map_fd={0x18, 0x6, 0x1, 0x0, 0x1}], &(0x7f0000000100)='GPL\x00', 0x7ff, 0x1000, &(0x7f00000002c0)=""/4096, 0x41100, 0x1d, '\x00', r1, 0x8, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x1, 0x3}, 0x8, 0x10, &(0x7f0000000240)={0x0, 0x7, 0x8, 0x7fffffff}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000012c0)=[0xffffffffffffffff]}, 0x80) 14:45:11 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:11 executing program 4: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) r1 = openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000200)={&(0x7f0000000000)="7483b57d43ca757d0f1f94fe4a0596475cdbe9437878e6a0dbfebd6cf06286e30537060e0d689f59c345c03005cd8b8291266f9b4990630725f2754da0cb1a597e1219fc506c3a641849466d91416ba57f9a28d0d360cda64d07ac79e2194d3c068a67025643e89fb62d8590feac7368a910416a00471fb02da03dabfa189a6a600ea9576a26ff079f5ab738bc164104c69092e37e74bb1b1e158e6a4f37a874cad993ff811c08980dab8679b76bce8ba9b4696a8c09ed254f4875f972411341d746d2f61d6948ce161a25e1ee0f7e572709dd69", &(0x7f0000000100)=""/19, &(0x7f0000000140)="8769d7b7da734de2d1044b1ae57db4a3b979c4e7ef31264d96239e9065b8b2708266995709192ab5498a14c6c0", &(0x7f0000000180)="faa893e4bcd4b4bcaaa9c8151c7a01e16aa574cea95f223e5f393d741ca1d2afb92542dbe1ee7f211c5d3e8a45943362e45c2586933c0fbe6695dca662541b6313a08ab4d0de19c58b0e96f6825aa9012aa775f0b14e2dad6e40b5e79349897021e195e7f587f0", 0x4, r0}, 0x38) r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x4, &(0x7f0000000240)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x5a9c}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff8}, @ldst={0x0, 0x0, 0x2, 0x9, 0x9, 0xfffffffffffffff4, 0x1}], &(0x7f0000000280)='GPL\x00', 0xfffffffc, 0x43, &(0x7f00000002c0)=""/67, 0x40f00, 0xb, '\x00', 0x0, 0x25, r1, 0x8, &(0x7f0000000340)={0x8, 0x3}, 0x8, 0x10, &(0x7f0000000380)={0x5, 0x2, 0x1, 0x4}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[r1]}, 0x80) r3 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000680)=@bpf_lsm={0x1d, 0xa, &(0x7f0000000480)=ANY=[@ANYBLOB="180000000000000000000000090000003025080000000000852000000200000018510100030000000000000000000000851000000400000095000000000000009caac0fffcffffff9500000000000000"], &(0x7f0000000500)='GPL\x00', 0x6, 0x67, &(0x7f0000000540)=""/103, 0x0, 0xf, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000005c0)={0x4, 0x3}, 0x8, 0x10, &(0x7f0000000600)={0x2, 0xd, 0x4, 0x5}, 0x10, 0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000640)=[r1, r1, r0, r0, r1, r1, r1, r1, r1]}, 0x80) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000700)={r1, r2, 0x4, r3}, 0x10) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r4, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:11 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={0xffffffffffffffff, 0x58, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000001300)={0xd, 0x10, &(0x7f0000000080)=@raw=[@map_fd={0x18, 0xa, 0x1, 0x0, 0x1}, @cb_func={0x18, 0x5, 0x4, 0x0, 0x3}, @map_val={0x18, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x43}, @exit, @alu={0x7, 0x0, 0x4, 0x3, 0x3, 0xc, 0x4}, @jmp={0x5, 0x1, 0x35642109c78c296c, 0x3, 0x6, 0x1, 0x3}, @map_val={0x18, 0x5, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x58a5}, @func={0x85, 0x0, 0x1, 0x0, 0x7}, @cb_func={0x18, 0x9, 0x4, 0x0, 0x1}, @map_fd={0x18, 0x6, 0x1, 0x0, 0x1}], &(0x7f0000000100)='GPL\x00', 0x7ff, 0x1000, &(0x7f00000002c0)=""/4096, 0x41100, 0x1d, '\x00', r1, 0x8, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x1, 0x3}, 0x8, 0x10, &(0x7f0000000240)={0x0, 0x7, 0x8, 0x7fffffff}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000012c0)=[0xffffffffffffffff]}, 0x80) [ 1042.679902][T10680] FAULT_INJECTION: forcing a failure. [ 1042.679902][T10680] name failslab, interval 1, probability 0, space 0, times 0 [ 1042.701410][T10680] CPU: 1 PID: 10680 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1042.711477][T10680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1042.721376][T10680] Call Trace: [ 1042.724503][T10680] [ 1042.727276][T10680] dump_stack_lvl+0x151/0x1b7 [ 1042.731788][T10680] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1042.737088][T10680] ? vma_interval_tree_augment_rotate+0x210/0x210 [ 1042.743334][T10680] dump_stack+0x15/0x17 [ 1042.747323][T10680] should_fail+0x3c0/0x510 [ 1042.751576][T10680] __should_failslab+0x9f/0xe0 [ 1042.756178][T10680] should_failslab+0x9/0x20 [ 1042.760519][T10680] kmem_cache_alloc+0x4f/0x2f0 [ 1042.765125][T10680] ? anon_vma_fork+0xf7/0x4f0 [ 1042.769630][T10680] anon_vma_fork+0xf7/0x4f0 [ 1042.774062][T10680] ? anon_vma_name+0x4c/0x70 [ 1042.778572][T10680] dup_mmap+0x750/0xea0 [ 1042.782564][T10680] ? __delayed_free_task+0x20/0x20 [ 1042.787516][T10680] ? mm_init+0x807/0x960 [ 1042.791593][T10680] dup_mm+0x91/0x330 [ 1042.795323][T10680] copy_mm+0x108/0x1b0 [ 1042.799230][T10680] copy_process+0x1295/0x3250 [ 1042.803744][T10680] ? proc_fail_nth_write+0x213/0x290 [ 1042.808869][T10680] ? proc_fail_nth_read+0x220/0x220 [ 1042.813901][T10680] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1042.818849][T10680] ? vfs_write+0x9af/0x1050 [ 1042.823189][T10680] ? vmacache_update+0xb7/0x120 [ 1042.828142][T10680] kernel_clone+0x22d/0x990 [ 1042.832473][T10680] ? file_end_write+0x1b0/0x1b0 [ 1042.837164][T10680] ? __kasan_check_write+0x14/0x20 [ 1042.842113][T10680] ? create_io_thread+0x1e0/0x1e0 [ 1042.846969][T10680] ? __mutex_lock_slowpath+0x10/0x10 [ 1042.852093][T10680] __x64_sys_clone+0x289/0x310 [ 1042.856696][T10680] ? __do_sys_vfork+0x130/0x130 [ 1042.861383][T10680] ? debug_smp_processor_id+0x17/0x20 [ 1042.866590][T10680] do_syscall_64+0x44/0xd0 [ 1042.870842][T10680] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1042.876582][T10680] RIP: 0033:0x7f0bd76b80d9 [ 1042.880825][T10680] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1042.900526][T10680] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1042.908780][T10680] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1042.916588][T10680] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 14:45:11 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 24) 14:45:11 executing program 5: syz_clone(0x9800700, 0x0, 0x2000000000000000, 0x0, 0x0, 0x0) 14:45:11 executing program 4: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) (async) r1 = openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000200)={&(0x7f0000000000)="7483b57d43ca757d0f1f94fe4a0596475cdbe9437878e6a0dbfebd6cf06286e30537060e0d689f59c345c03005cd8b8291266f9b4990630725f2754da0cb1a597e1219fc506c3a641849466d91416ba57f9a28d0d360cda64d07ac79e2194d3c068a67025643e89fb62d8590feac7368a910416a00471fb02da03dabfa189a6a600ea9576a26ff079f5ab738bc164104c69092e37e74bb1b1e158e6a4f37a874cad993ff811c08980dab8679b76bce8ba9b4696a8c09ed254f4875f972411341d746d2f61d6948ce161a25e1ee0f7e572709dd69", &(0x7f0000000100)=""/19, &(0x7f0000000140)="8769d7b7da734de2d1044b1ae57db4a3b979c4e7ef31264d96239e9065b8b2708266995709192ab5498a14c6c0", &(0x7f0000000180)="faa893e4bcd4b4bcaaa9c8151c7a01e16aa574cea95f223e5f393d741ca1d2afb92542dbe1ee7f211c5d3e8a45943362e45c2586933c0fbe6695dca662541b6313a08ab4d0de19c58b0e96f6825aa9012aa775f0b14e2dad6e40b5e79349897021e195e7f587f0", 0x4, r0}, 0x38) r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x4, &(0x7f0000000240)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x5a9c}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff8}, @ldst={0x0, 0x0, 0x2, 0x9, 0x9, 0xfffffffffffffff4, 0x1}], &(0x7f0000000280)='GPL\x00', 0xfffffffc, 0x43, &(0x7f00000002c0)=""/67, 0x40f00, 0xb, '\x00', 0x0, 0x25, r1, 0x8, &(0x7f0000000340)={0x8, 0x3}, 0x8, 0x10, &(0x7f0000000380)={0x5, 0x2, 0x1, 0x4}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[r1]}, 0x80) (async) r3 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000680)=@bpf_lsm={0x1d, 0xa, &(0x7f0000000480)=ANY=[@ANYBLOB="180000000000000000000000090000003025080000000000852000000200000018510100030000000000000000000000851000000400000095000000000000009caac0fffcffffff9500000000000000"], &(0x7f0000000500)='GPL\x00', 0x6, 0x67, &(0x7f0000000540)=""/103, 0x0, 0xf, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000005c0)={0x4, 0x3}, 0x8, 0x10, &(0x7f0000000600)={0x2, 0xd, 0x4, 0x5}, 0x10, 0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000640)=[r1, r1, r0, r0, r1, r1, r1, r1, r1]}, 0x80) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000700)={r1, r2, 0x4, r3}, 0x10) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r4, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:11 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:11 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) syz_clone(0x40000000, &(0x7f0000000000)="de11f99bbd523feb7b42a8d2c4", 0xd, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)="3e5289c6ed5e778d98f87d9f4290417b35256928cb5bdab547c987e6f0636e876cad6e2e36563f431dfb71ba80691529681fceb89d4330c8536e89c526191e2cda0608b12140a9ae90b0dccff65a54fd10df7e36d608fb08df7de9dea34fe4a8952d28cabe6edd3b2e4a156d23bc118f0c576b9abb37f95c30b0dbbc7f48cfe8101eca66a059360eb8f21e0eee32584592447c4d450e32f53f5c480d6a218b2b96faea") 14:45:11 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={0xffffffffffffffff, 0x58, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000001300)={0xd, 0x10, &(0x7f0000000080)=@raw=[@map_fd={0x18, 0xa, 0x1, 0x0, 0x1}, @cb_func={0x18, 0x5, 0x4, 0x0, 0x3}, @map_val={0x18, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x43}, @exit, @alu={0x7, 0x0, 0x4, 0x3, 0x3, 0xc, 0x4}, @jmp={0x5, 0x1, 0x35642109c78c296c, 0x3, 0x6, 0x1, 0x3}, @map_val={0x18, 0x5, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x58a5}, @func={0x85, 0x0, 0x1, 0x0, 0x7}, @cb_func={0x18, 0x9, 0x4, 0x0, 0x1}, @map_fd={0x18, 0x6, 0x1, 0x0, 0x1}], &(0x7f0000000100)='GPL\x00', 0x7ff, 0x1000, &(0x7f00000002c0)=""/4096, 0x41100, 0x1d, '\x00', r1, 0x8, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x1, 0x3}, 0x8, 0x10, &(0x7f0000000240)={0x0, 0x7, 0x8, 0x7fffffff}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000012c0)=[0xffffffffffffffff]}, 0x80) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={0xffffffffffffffff, 0x58, &(0x7f0000000140)}, 0x10) (async) bpf$PROG_LOAD(0x5, &(0x7f0000001300)={0xd, 0x10, &(0x7f0000000080)=@raw=[@map_fd={0x18, 0xa, 0x1, 0x0, 0x1}, @cb_func={0x18, 0x5, 0x4, 0x0, 0x3}, @map_val={0x18, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x43}, @exit, @alu={0x7, 0x0, 0x4, 0x3, 0x3, 0xc, 0x4}, @jmp={0x5, 0x1, 0x35642109c78c296c, 0x3, 0x6, 0x1, 0x3}, @map_val={0x18, 0x5, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x58a5}, @func={0x85, 0x0, 0x1, 0x0, 0x7}, @cb_func={0x18, 0x9, 0x4, 0x0, 0x1}, @map_fd={0x18, 0x6, 0x1, 0x0, 0x1}], &(0x7f0000000100)='GPL\x00', 0x7ff, 0x1000, &(0x7f00000002c0)=""/4096, 0x41100, 0x1d, '\x00', r1, 0x8, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x1, 0x3}, 0x8, 0x10, &(0x7f0000000240)={0x0, 0x7, 0x8, 0x7fffffff}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000012c0)=[0xffffffffffffffff]}, 0x80) (async) [ 1042.924401][T10680] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1042.932208][T10680] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1042.940019][T10680] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1042.947835][T10680] 14:45:11 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:11 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:11 executing program 5: syz_clone(0x9800700, 0x0, 0xf5ffffff00000000, 0x0, 0x0, 0x0) [ 1043.000990][T10705] FAULT_INJECTION: forcing a failure. [ 1043.000990][T10705] name failslab, interval 1, probability 0, space 0, times 0 [ 1043.022930][T10705] CPU: 1 PID: 10705 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1043.033000][T10705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1043.042899][T10705] Call Trace: [ 1043.046023][T10705] 14:45:11 executing program 4: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) r1 = openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000200)={&(0x7f0000000000)="7483b57d43ca757d0f1f94fe4a0596475cdbe9437878e6a0dbfebd6cf06286e30537060e0d689f59c345c03005cd8b8291266f9b4990630725f2754da0cb1a597e1219fc506c3a641849466d91416ba57f9a28d0d360cda64d07ac79e2194d3c068a67025643e89fb62d8590feac7368a910416a00471fb02da03dabfa189a6a600ea9576a26ff079f5ab738bc164104c69092e37e74bb1b1e158e6a4f37a874cad993ff811c08980dab8679b76bce8ba9b4696a8c09ed254f4875f972411341d746d2f61d6948ce161a25e1ee0f7e572709dd69", &(0x7f0000000100)=""/19, &(0x7f0000000140)="8769d7b7da734de2d1044b1ae57db4a3b979c4e7ef31264d96239e9065b8b2708266995709192ab5498a14c6c0", &(0x7f0000000180)="faa893e4bcd4b4bcaaa9c8151c7a01e16aa574cea95f223e5f393d741ca1d2afb92542dbe1ee7f211c5d3e8a45943362e45c2586933c0fbe6695dca662541b6313a08ab4d0de19c58b0e96f6825aa9012aa775f0b14e2dad6e40b5e79349897021e195e7f587f0", 0x4, r0}, 0x38) r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x4, &(0x7f0000000240)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x5a9c}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff8}, @ldst={0x0, 0x0, 0x2, 0x9, 0x9, 0xfffffffffffffff4, 0x1}], &(0x7f0000000280)='GPL\x00', 0xfffffffc, 0x43, &(0x7f00000002c0)=""/67, 0x40f00, 0xb, '\x00', 0x0, 0x25, r1, 0x8, &(0x7f0000000340)={0x8, 0x3}, 0x8, 0x10, &(0x7f0000000380)={0x5, 0x2, 0x1, 0x4}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[r1]}, 0x80) (async) r3 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000680)=@bpf_lsm={0x1d, 0xa, &(0x7f0000000480)=ANY=[@ANYBLOB="180000000000000000000000090000003025080000000000852000000200000018510100030000000000000000000000851000000400000095000000000000009caac0fffcffffff9500000000000000"], &(0x7f0000000500)='GPL\x00', 0x6, 0x67, &(0x7f0000000540)=""/103, 0x0, 0xf, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f00000005c0)={0x4, 0x3}, 0x8, 0x10, &(0x7f0000000600)={0x2, 0xd, 0x4, 0x5}, 0x10, 0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000640)=[r1, r1, r0, r0, r1, r1, r1, r1, r1]}, 0x80) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000700)={r1, r2, 0x4, r3}, 0x10) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r4, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:11 executing program 1: syz_clone(0x9844900, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1043.048796][T10705] dump_stack_lvl+0x151/0x1b7 [ 1043.053315][T10705] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1043.058611][T10705] dump_stack+0x15/0x17 [ 1043.062596][T10705] should_fail+0x3c0/0x510 [ 1043.066851][T10705] __should_failslab+0x9f/0xe0 [ 1043.071455][T10705] should_failslab+0x9/0x20 [ 1043.075792][T10705] kmem_cache_alloc+0x4f/0x2f0 [ 1043.080396][T10705] ? copy_signal+0x55/0x610 [ 1043.084730][T10705] copy_signal+0x55/0x610 [ 1043.088899][T10705] copy_process+0x126a/0x3250 [ 1043.093412][T10705] ? proc_fail_nth_write+0x213/0x290 14:45:11 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) openat$cgroup_subtree(r1, &(0x7f0000000040), 0x2, 0x0) [ 1043.098534][T10705] ? proc_fail_nth_read+0x220/0x220 [ 1043.103569][T10705] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1043.108521][T10705] ? vfs_write+0x9af/0x1050 [ 1043.112855][T10705] ? vmacache_update+0xb7/0x120 [ 1043.117543][T10705] kernel_clone+0x22d/0x990 [ 1043.121880][T10705] ? file_end_write+0x1b0/0x1b0 [ 1043.126568][T10705] ? __kasan_check_write+0x14/0x20 [ 1043.131544][T10705] ? create_io_thread+0x1e0/0x1e0 [ 1043.136378][T10705] ? __mutex_lock_slowpath+0x10/0x10 [ 1043.141502][T10705] __x64_sys_clone+0x289/0x310 [ 1043.146106][T10705] ? __do_sys_vfork+0x130/0x130 [ 1043.150784][T10705] ? debug_smp_processor_id+0x17/0x20 [ 1043.155995][T10705] do_syscall_64+0x44/0xd0 [ 1043.160275][T10705] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1043.166061][T10705] RIP: 0033:0x7f0bd76b80d9 [ 1043.170317][T10705] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1043.189873][T10705] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 14:45:11 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 25) 14:45:11 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:11 executing program 1: syz_clone(0x9844900, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:11 executing program 5: syz_clone(0x9800700, 0x0, 0xfbffffff00000000, 0x0, 0x0, 0x0) 14:45:11 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) openat$cgroup_subtree(r1, &(0x7f0000000040), 0x2, 0x0) 14:45:11 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xe, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x800}, [@func={0x85, 0x0, 0x1, 0x0, 0x3}, @map_idx_val={0x18, 0x6, 0x6, 0x0, 0x4, 0x0, 0x0, 0x0, 0x4}, @btf_id={0x18, 0x5, 0x3, 0x0, 0x1}, @exit, @call={0x85, 0x0, 0x0, 0xac}, @map_fd={0x18, 0x8, 0x1, 0x0, 0x1}, @initr0={0x18, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x5}]}, &(0x7f0000000140)='GPL\x00', 0x2, 0x0, 0x0, 0x40f00, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x7, 0x5}, 0x8, 0x10, &(0x7f00000001c0)={0x1, 0x10, 0x401, 0x1}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000200)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x1, 0x1]}, 0x80) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000380)={r1}, 0x8) write$cgroup_pressure(r3, &(0x7f00000003c0)={'some', 0x20, 0x400, 0x20, 0x2}, 0x2f) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000240)={@cgroup=r1, r2, 0xc, 0x4}, 0x14) openat$cgroup_devices(r0, &(0x7f0000000040)='devices.deny\x00', 0x2, 0x0) openat$cgroup_procs(r1, &(0x7f0000000340)='tasks\x00', 0x2, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:11 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xe, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x800}, [@func={0x85, 0x0, 0x1, 0x0, 0x3}, @map_idx_val={0x18, 0x6, 0x6, 0x0, 0x4, 0x0, 0x0, 0x0, 0x4}, @btf_id={0x18, 0x5, 0x3, 0x0, 0x1}, @exit, @call={0x85, 0x0, 0x0, 0xac}, @map_fd={0x18, 0x8, 0x1, 0x0, 0x1}, @initr0={0x18, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x5}]}, &(0x7f0000000140)='GPL\x00', 0x2, 0x0, 0x0, 0x40f00, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x7, 0x5}, 0x8, 0x10, &(0x7f00000001c0)={0x1, 0x10, 0x401, 0x1}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000200)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x1, 0x1]}, 0x80) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000380)={r1}, 0x8) write$cgroup_pressure(r3, &(0x7f00000003c0)={'some', 0x20, 0x400, 0x20, 0x2}, 0x2f) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000240)={@cgroup=r1, r2, 0xc, 0x4}, 0x14) openat$cgroup_devices(r0, &(0x7f0000000040)='devices.deny\x00', 0x2, 0x0) openat$cgroup_procs(r1, &(0x7f0000000340)='tasks\x00', 0x2, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xe, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x800}, [@func={0x85, 0x0, 0x1, 0x0, 0x3}, @map_idx_val={0x18, 0x6, 0x6, 0x0, 0x4, 0x0, 0x0, 0x0, 0x4}, @btf_id={0x18, 0x5, 0x3, 0x0, 0x1}, @exit, @call={0x85, 0x0, 0x0, 0xac}, @map_fd={0x18, 0x8, 0x1, 0x0, 0x1}, @initr0={0x18, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x5}]}, &(0x7f0000000140)='GPL\x00', 0x2, 0x0, 0x0, 0x40f00, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x7, 0x5}, 0x8, 0x10, &(0x7f00000001c0)={0x1, 0x10, 0x401, 0x1}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000200)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x1, 0x1]}, 0x80) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000380)={r1}, 0x8) (async) write$cgroup_pressure(r3, &(0x7f00000003c0)={'some', 0x20, 0x400, 0x20, 0x2}, 0x2f) (async) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000240)={@cgroup=r1, r2, 0xc, 0x4}, 0x14) (async) openat$cgroup_devices(r0, &(0x7f0000000040)='devices.deny\x00', 0x2, 0x0) (async) openat$cgroup_procs(r1, &(0x7f0000000340)='tasks\x00', 0x2, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) [ 1043.198129][T10705] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1043.206011][T10705] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1043.213831][T10705] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1043.221637][T10705] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1043.229449][T10705] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1043.237270][T10705] 14:45:11 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:11 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) openat$cgroup_subtree(r1, &(0x7f0000000040), 0x2, 0x0) 14:45:11 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1004000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:11 executing program 5: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={r0, 0x58, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f00000000c0)=r1) [ 1043.264088][T10737] FAULT_INJECTION: forcing a failure. [ 1043.264088][T10737] name failslab, interval 1, probability 0, space 0, times 0 [ 1043.287803][T10737] CPU: 1 PID: 10737 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1043.297880][T10737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1043.307773][T10737] Call Trace: [ 1043.310902][T10737] 14:45:11 executing program 1: syz_clone(0x9844900, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1043.313674][T10737] dump_stack_lvl+0x151/0x1b7 [ 1043.318187][T10737] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1043.323487][T10737] dump_stack+0x15/0x17 [ 1043.327475][T10737] should_fail+0x3c0/0x510 [ 1043.331727][T10737] __should_failslab+0x9f/0xe0 [ 1043.336328][T10737] should_failslab+0x9/0x20 [ 1043.340669][T10737] kmem_cache_alloc+0x4f/0x2f0 [ 1043.345265][T10737] ? dup_mm+0x29/0x330 [ 1043.349172][T10737] dup_mm+0x29/0x330 [ 1043.352918][T10737] copy_mm+0x108/0x1b0 [ 1043.356813][T10737] copy_process+0x1295/0x3250 [ 1043.361324][T10737] ? proc_fail_nth_write+0x213/0x290 [ 1043.366450][T10737] ? proc_fail_nth_read+0x220/0x220 [ 1043.371480][T10737] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1043.376431][T10737] ? vfs_write+0x9af/0x1050 [ 1043.380770][T10737] ? vmacache_update+0xb7/0x120 [ 1043.385554][T10737] kernel_clone+0x22d/0x990 [ 1043.389895][T10737] ? file_end_write+0x1b0/0x1b0 [ 1043.394583][T10737] ? __kasan_check_write+0x14/0x20 [ 1043.399528][T10737] ? create_io_thread+0x1e0/0x1e0 [ 1043.404392][T10737] ? __mutex_lock_slowpath+0x10/0x10 [ 1043.409506][T10737] __x64_sys_clone+0x289/0x310 [ 1043.414105][T10737] ? __do_sys_vfork+0x130/0x130 [ 1043.418792][T10737] ? debug_smp_processor_id+0x17/0x20 [ 1043.424000][T10737] do_syscall_64+0x44/0xd0 [ 1043.428254][T10737] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1043.433980][T10737] RIP: 0033:0x7f0bd76b80d9 [ 1043.438234][T10737] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 14:45:12 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 26) 14:45:12 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:12 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)=""/179, 0xb3}, {&(0x7f00000000c0)=""/139, 0x8b}, {&(0x7f0000000180)=""/32, 0x20}], 0x3, &(0x7f0000000200)=[@cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xd8}, 0x102) 14:45:12 executing program 5: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={r0, 0x58, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f00000000c0)=r1) 14:45:12 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000001400)={0x0, 0x0, &(0x7f00000012c0)=[{&(0x7f0000000040)=""/4096, 0x1000}, {&(0x7f0000001040)=""/119, 0x77}, {&(0x7f00000010c0)=""/241, 0xf1}, {&(0x7f00000011c0)=""/72, 0x48}, {&(0x7f0000001240)=""/85, 0x55}], 0x5, &(0x7f0000001340)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0xb0}, 0x12040) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.bfq.io_service_time_recursive\x00', 0x0, 0x0) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:12 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xe, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x800}, [@func={0x85, 0x0, 0x1, 0x0, 0x3}, @map_idx_val={0x18, 0x6, 0x6, 0x0, 0x4, 0x0, 0x0, 0x0, 0x4}, @btf_id={0x18, 0x5, 0x3, 0x0, 0x1}, @exit, @call={0x85, 0x0, 0x0, 0xac}, @map_fd={0x18, 0x8, 0x1, 0x0, 0x1}, @initr0={0x18, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x5}]}, &(0x7f0000000140)='GPL\x00', 0x2, 0x0, 0x0, 0x40f00, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x7, 0x5}, 0x8, 0x10, &(0x7f00000001c0)={0x1, 0x10, 0x401, 0x1}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000200)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x1, 0x1]}, 0x80) (async) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000380)={r1}, 0x8) write$cgroup_pressure(r3, &(0x7f00000003c0)={'some', 0x20, 0x400, 0x20, 0x2}, 0x2f) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000240)={@cgroup=r1, r2, 0xc, 0x4}, 0x14) openat$cgroup_devices(r0, &(0x7f0000000040)='devices.deny\x00', 0x2, 0x0) (async) openat$cgroup_procs(r1, &(0x7f0000000340)='tasks\x00', 0x2, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) [ 1043.457676][T10737] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1043.466038][T10737] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1043.473839][T10737] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1043.481652][T10737] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1043.489459][T10737] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1043.497274][T10737] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1043.505087][T10737] 14:45:12 executing program 5: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={r0, 0x58, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f00000000c0)=r1) 14:45:12 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:12 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000040)={r0, 0x3f8200ecae99564f, 0x0, 0x0, 0x0}, 0x20) 14:45:12 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000001400)={0x0, 0x0, &(0x7f00000012c0)=[{&(0x7f0000000040)=""/4096, 0x1000}, {&(0x7f0000001040)=""/119, 0x77}, {&(0x7f00000010c0)=""/241, 0xf1}, {&(0x7f00000011c0)=""/72, 0x48}, {&(0x7f0000001240)=""/85, 0x55}], 0x5, &(0x7f0000001340)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0xb0}, 0x12040) (async, rerun: 32) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.bfq.io_service_time_recursive\x00', 0x0, 0x0) (rerun: 32) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:12 executing program 5: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001480)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb01001800000000000000f8000000b70000f392e61a2cc1c38dba98f15f000600008e000000000000000000000000010000060400000000000000000000000000000000000f03000000a235df000000000000000300000000080000000000000000000000000000000000824436979e24b7dd000200000000000000000000002b7eeca02c61fe019d4ee0f9db9d8d4040"], &(0x7f00000014c0)=""/4099, 0xd6, 0x1003, 0x1}, 0x20) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:12 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000040)={r0, 0x3f8200ecae99564f, 0x0, 0x0, 0x0}, 0x20) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000040)={r0, 0x3f8200ecae99564f, 0x0, 0x0, 0x0}, 0x20) (async) [ 1043.519772][T10768] FAULT_INJECTION: forcing a failure. [ 1043.519772][T10768] name failslab, interval 1, probability 0, space 0, times 0 [ 1043.535804][T10768] CPU: 1 PID: 10768 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1043.545870][T10768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1043.555772][T10768] Call Trace: [ 1043.558887][T10768] [ 1043.561667][T10768] dump_stack_lvl+0x151/0x1b7 [ 1043.566182][T10768] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1043.571564][T10768] dump_stack+0x15/0x17 [ 1043.575552][T10768] should_fail+0x3c0/0x510 [ 1043.579804][T10768] ? mm_init+0x392/0x960 [ 1043.583886][T10768] __should_failslab+0x9f/0xe0 [ 1043.588487][T10768] should_failslab+0x9/0x20 [ 1043.592826][T10768] kmem_cache_alloc_trace+0x4a/0x310 [ 1043.597945][T10768] mm_init+0x392/0x960 [ 1043.601853][T10768] dup_mm+0x7d/0x330 [ 1043.605588][T10768] copy_mm+0x108/0x1b0 [ 1043.609488][T10768] copy_process+0x1295/0x3250 [ 1043.614003][T10768] ? proc_fail_nth_write+0x213/0x290 [ 1043.619127][T10768] ? proc_fail_nth_read+0x220/0x220 [ 1043.624167][T10768] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1043.629113][T10768] ? vfs_write+0x9af/0x1050 [ 1043.633448][T10768] ? vmacache_update+0xb7/0x120 [ 1043.638131][T10768] kernel_clone+0x22d/0x990 [ 1043.642471][T10768] ? file_end_write+0x1b0/0x1b0 [ 1043.647160][T10768] ? __kasan_check_write+0x14/0x20 [ 1043.652113][T10768] ? create_io_thread+0x1e0/0x1e0 [ 1043.656974][T10768] ? __mutex_lock_slowpath+0x10/0x10 [ 1043.663020][T10768] __x64_sys_clone+0x289/0x310 [ 1043.667621][T10768] ? __do_sys_vfork+0x130/0x130 [ 1043.672307][T10768] ? debug_smp_processor_id+0x17/0x20 [ 1043.677605][T10768] do_syscall_64+0x44/0xd0 [ 1043.681850][T10768] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1043.687598][T10768] RIP: 0033:0x7f0bd76b80d9 [ 1043.691833][T10768] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1043.711562][T10768] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 14:45:12 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 27) 14:45:12 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000040)={r0, 0x3f8200ecae99564f, 0x0, 0x0, 0x0}, 0x20) 14:45:12 executing program 5: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001480)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb01001800000000000000f8000000b70000f392e61a2cc1c38dba98f15f000600008e000000000000000000000000010000060400000000000000000000000000000000000f03000000a235df000000000000000300000000080000000000000000000000000000000000824436979e24b7dd000200000000000000000000002b7eeca02c61fe019d4ee0f9db9d8d4040"], &(0x7f00000014c0)=""/4099, 0xd6, 0x1003, 0x1}, 0x20) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001480)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb01001800000000000000f8000000b70000f392e61a2cc1c38dba98f15f000600008e000000000000000000000000010000060400000000000000000000000000000000000f03000000a235df000000000000000300000000080000000000000000000000000000000000824436979e24b7dd000200000000000000000000002b7eeca02c61fe019d4ee0f9db9d8d4040"], &(0x7f00000014c0)=""/4099, 0xd6, 0x1003, 0x1}, 0x20) (async) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) (async) 14:45:12 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)=""/179, 0xb3}, {&(0x7f00000000c0)=""/139, 0x8b}, {&(0x7f0000000180)=""/32, 0x20}], 0x3, &(0x7f0000000200)=[@cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xd8}, 0x102) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)=""/179, 0xb3}, {&(0x7f00000000c0)=""/139, 0x8b}, {&(0x7f0000000180)=""/32, 0x20}], 0x3, &(0x7f0000000200)=[@cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xd8}, 0x102) (async) 14:45:12 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:12 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000001400)={0x0, 0x0, &(0x7f00000012c0)=[{&(0x7f0000000040)=""/4096, 0x1000}, {&(0x7f0000001040)=""/119, 0x77}, {&(0x7f00000010c0)=""/241, 0xf1}, {&(0x7f00000011c0)=""/72, 0x48}, {&(0x7f0000001240)=""/85, 0x55}], 0x5, &(0x7f0000001340)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0xb0}, 0x12040) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.bfq.io_service_time_recursive\x00', 0x0, 0x0) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) recvmsg$unix(r0, &(0x7f0000001400)={0x0, 0x0, &(0x7f00000012c0)=[{&(0x7f0000000040)=""/4096, 0x1000}, {&(0x7f0000001040)=""/119, 0x77}, {&(0x7f00000010c0)=""/241, 0xf1}, {&(0x7f00000011c0)=""/72, 0x48}, {&(0x7f0000001240)=""/85, 0x55}], 0x5, &(0x7f0000001340)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0xb0}, 0x12040) (async) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.bfq.io_service_time_recursive\x00', 0x0, 0x0) (async) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) [ 1043.719805][T10768] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1043.727617][T10768] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1043.735434][T10768] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1043.743239][T10768] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1043.751050][T10768] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1043.758866][T10768] 14:45:12 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000000c0)={r1, r2, 0x21}, 0x10) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r3, 0x800454cf, &(0x7f0000000100)) openat$cgroup_ro(r3, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x5, 0x8d, 0x20, 0x8, 0x0, 0xfffffffffffffbff, 0x0, 0x6, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10000, 0x4, @perf_config_ext={0x0, 0xc3a}, 0x3428, 0x5, 0x4, 0x9, 0x5, 0x40, 0x2, 0x0, 0x6, 0x0, 0x1}, r1, 0xa, r3, 0x2) 14:45:12 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1043.784915][T10810] FAULT_INJECTION: forcing a failure. [ 1043.784915][T10810] name failslab, interval 1, probability 0, space 0, times 0 [ 1043.801955][T10810] CPU: 1 PID: 10810 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1043.812030][T10810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1043.822006][T10810] Call Trace: [ 1043.825128][T10810] [ 1043.827990][T10810] dump_stack_lvl+0x151/0x1b7 14:45:12 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:12 executing program 1: syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)=""/179, 0xb3}, {&(0x7f00000000c0)=""/139, 0x8b}, {&(0x7f0000000180)=""/32, 0x20}], 0x3, &(0x7f0000000200)=[@cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xd8}, 0x102) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)=""/179, 0xb3}, {&(0x7f00000000c0)=""/139, 0x8b}, {&(0x7f0000000180)=""/32, 0x20}], 0x3, &(0x7f0000000200)=[@cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xd8}, 0x102) (async) 14:45:12 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:12 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1043.832521][T10810] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1043.837803][T10810] dump_stack+0x15/0x17 [ 1043.841881][T10810] should_fail+0x3c0/0x510 [ 1043.846144][T10810] __should_failslab+0x9f/0xe0 [ 1043.850737][T10810] should_failslab+0x9/0x20 [ 1043.855086][T10810] kmem_cache_alloc+0x4f/0x2f0 [ 1043.859675][T10810] ? vm_area_dup+0x26/0x1d0 [ 1043.864016][T10810] vm_area_dup+0x26/0x1d0 [ 1043.868184][T10810] dup_mmap+0x6b8/0xea0 [ 1043.872434][T10810] ? __delayed_free_task+0x20/0x20 [ 1043.877379][T10810] ? mm_init+0x807/0x960 [ 1043.881466][T10810] dup_mm+0x91/0x330 [ 1043.885213][T10810] copy_mm+0x108/0x1b0 [ 1043.889196][T10810] copy_process+0x1295/0x3250 [ 1043.893694][T10810] ? proc_fail_nth_write+0x213/0x290 [ 1043.898818][T10810] ? proc_fail_nth_read+0x220/0x220 [ 1043.903862][T10810] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1043.908802][T10810] ? vfs_write+0x9af/0x1050 [ 1043.913144][T10810] ? vmacache_update+0xb7/0x120 [ 1043.917832][T10810] kernel_clone+0x22d/0x990 [ 1043.922167][T10810] ? file_end_write+0x1b0/0x1b0 [ 1043.926852][T10810] ? __kasan_check_write+0x14/0x20 [ 1043.931829][T10810] ? create_io_thread+0x1e0/0x1e0 [ 1043.936670][T10810] ? __mutex_lock_slowpath+0x10/0x10 [ 1043.941798][T10810] __x64_sys_clone+0x289/0x310 [ 1043.946426][T10810] ? __do_sys_vfork+0x130/0x130 [ 1043.951069][T10810] ? debug_smp_processor_id+0x17/0x20 [ 1043.956280][T10810] do_syscall_64+0x44/0xd0 [ 1043.960529][T10810] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1043.966269][T10810] RIP: 0033:0x7f0bd76b80d9 [ 1043.970516][T10810] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1043.991000][T10810] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1043.999246][T10810] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1044.007059][T10810] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1044.014866][T10810] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1044.022688][T10810] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 14:45:12 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 28) 14:45:12 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:12 executing program 5: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001480)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb01001800000000000000f8000000b70000f392e61a2cc1c38dba98f15f000600008e000000000000000000000000010000060400000000000000000000000000000000000f03000000a235df000000000000000300000000080000000000000000000000000000000000824436979e24b7dd000200000000000000000000002b7eeca02c61fe019d4ee0f9db9d8d4040"], &(0x7f00000014c0)=""/4099, 0xd6, 0x1003, 0x1}, 0x20) (async) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:12 executing program 1: r0 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000000)={0x0, 0x1, 0x10}, 0xc) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000001100)={r0, &(0x7f0000000040)="ce1ab254f85168c6dc0ef3bcc15f5978133c8a4193d6051d04b6e16cf94e9412ecb4dd8177e46de70eb11ba6274217ab593c743e2965ec6ca696d0af632d7728614a8b0f9e9b2858db6bb17875f4cc589cb3eb892f041912ba9b0ceb20ba6b48989cb3917db39830b1ae5a3ebe0a2d5dc9d9df17e8077e12bf9319a3b0fe5567e2cf672fd8fde1e6bdedba72fbe12c4e7ea092d40dad69ad", &(0x7f0000000100)=""/4096}, 0x20) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:12 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000000c0)={r1, r2, 0x21}, 0x10) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r3, 0x800454cf, &(0x7f0000000100)) openat$cgroup_ro(r3, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x5, 0x8d, 0x20, 0x8, 0x0, 0xfffffffffffffbff, 0x0, 0x6, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10000, 0x4, @perf_config_ext={0x0, 0xc3a}, 0x3428, 0x5, 0x4, 0x9, 0x5, 0x40, 0x2, 0x0, 0x6, 0x0, 0x1}, r1, 0xa, r3, 0x2) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000000c0)={r1, r2, 0x21}, 0x10) (async) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) ioctl$TUNGETFEATURES(r3, 0x800454cf, &(0x7f0000000100)) (async) openat$cgroup_ro(r3, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x5, 0x8d, 0x20, 0x8, 0x0, 0xfffffffffffffbff, 0x0, 0x6, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10000, 0x4, @perf_config_ext={0x0, 0xc3a}, 0x3428, 0x5, 0x4, 0x9, 0x5, 0x40, 0x2, 0x0, 0x6, 0x0, 0x1}, r1, 0xa, r3, 0x2) (async) 14:45:12 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) ioctl$TUNSETSNDBUF(r1, 0x400454d4, &(0x7f0000000000)=0x8) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:12 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000000c0)={r1, r2, 0x21}, 0x10) (async) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async, rerun: 64) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (rerun: 64) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r3, 0x800454cf, &(0x7f0000000100)) (async) openat$cgroup_ro(r3, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async, rerun: 32) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x5, 0x8d, 0x20, 0x8, 0x0, 0xfffffffffffffbff, 0x0, 0x6, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10000, 0x4, @perf_config_ext={0x0, 0xc3a}, 0x3428, 0x5, 0x4, 0x9, 0x5, 0x40, 0x2, 0x0, 0x6, 0x0, 0x1}, r1, 0xa, r3, 0x2) (rerun: 32) 14:45:12 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) ioctl$TUNSETSNDBUF(r1, 0x400454d4, &(0x7f0000000000)=0x8) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) (async) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) (async) ioctl$TUNSETSNDBUF(r1, 0x400454d4, &(0x7f0000000000)=0x8) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) [ 1044.030492][T10810] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1044.038306][T10810] 14:45:12 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000001000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:12 executing program 5: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r0, 0x800454e1, 0x0) ioctl$TUNSETVNETBE(r0, 0x400454de, &(0x7f0000001200)=0x1) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001140)={0x13, 0x2, &(0x7f0000000000)=@raw=[@map_idx_val={0x18, 0x0, 0x6, 0x0, 0xd, 0x0, 0x0, 0x0, 0x2}], &(0x7f0000000040)='GPL\x00', 0x5, 0x1000, &(0x7f0000000080)=""/4096, 0x40f00, 0x8, '\x00', 0x0, 0x1, 0xffffffffffffffff, 0x8, &(0x7f0000001080)={0x8, 0x2}, 0x8, 0x10, &(0x7f00000010c0)={0x1, 0xa, 0x3, 0x1f}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001100)=[0xffffffffffffffff, 0x1, 0x1, 0x1, 0xffffffffffffffff, 0x1, 0xffffffffffffffff]}, 0x80) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000011c0)={r1, r2, 0x20}, 0x10) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:12 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) ioctl$TUNSETSNDBUF(r1, 0x400454d4, &(0x7f0000000000)=0x8) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) (async) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) (async) ioctl$TUNSETSNDBUF(r1, 0x400454d4, &(0x7f0000000000)=0x8) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) 14:45:12 executing program 1: r0 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000000)={0x0, 0x1, 0x10}, 0xc) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000001100)={r0, &(0x7f0000000040)="ce1ab254f85168c6dc0ef3bcc15f5978133c8a4193d6051d04b6e16cf94e9412ecb4dd8177e46de70eb11ba6274217ab593c743e2965ec6ca696d0af632d7728614a8b0f9e9b2858db6bb17875f4cc589cb3eb892f041912ba9b0ceb20ba6b48989cb3917db39830b1ae5a3ebe0a2d5dc9d9df17e8077e12bf9319a3b0fe5567e2cf672fd8fde1e6bdedba72fbe12c4e7ea092d40dad69ad", &(0x7f0000000100)=""/4096}, 0x20) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000000)={0x0, 0x1, 0x10}, 0xc) (async) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000001100)={r0, &(0x7f0000000040)="ce1ab254f85168c6dc0ef3bcc15f5978133c8a4193d6051d04b6e16cf94e9412ecb4dd8177e46de70eb11ba6274217ab593c743e2965ec6ca696d0af632d7728614a8b0f9e9b2858db6bb17875f4cc589cb3eb892f041912ba9b0ceb20ba6b48989cb3917db39830b1ae5a3ebe0a2d5dc9d9df17e8077e12bf9319a3b0fe5567e2cf672fd8fde1e6bdedba72fbe12c4e7ea092d40dad69ad", &(0x7f0000000100)=""/4096}, 0x20) (async) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) [ 1044.078412][T10853] FAULT_INJECTION: forcing a failure. [ 1044.078412][T10853] name failslab, interval 1, probability 0, space 0, times 0 [ 1044.101826][T10853] CPU: 0 PID: 10853 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1044.111897][T10853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1044.121964][T10853] Call Trace: [ 1044.125103][T10853] [ 1044.127887][T10853] dump_stack_lvl+0x151/0x1b7 [ 1044.132389][T10853] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1044.137679][T10853] dump_stack+0x15/0x17 [ 1044.141668][T10853] should_fail+0x3c0/0x510 [ 1044.145916][T10853] __should_failslab+0x9f/0xe0 [ 1044.150515][T10853] should_failslab+0x9/0x20 [ 1044.154854][T10853] kmem_cache_alloc+0x4f/0x2f0 [ 1044.159459][T10853] ? vm_area_dup+0x26/0x1d0 [ 1044.163797][T10853] ? __kasan_check_read+0x11/0x20 [ 1044.169004][T10853] vm_area_dup+0x26/0x1d0 [ 1044.173190][T10853] dup_mmap+0x6b8/0xea0 [ 1044.177169][T10853] ? __delayed_free_task+0x20/0x20 [ 1044.182113][T10853] ? mm_init+0x807/0x960 [ 1044.186207][T10853] dup_mm+0x91/0x330 [ 1044.189927][T10853] copy_mm+0x108/0x1b0 [ 1044.193838][T10853] copy_process+0x1295/0x3250 [ 1044.198345][T10853] ? proc_fail_nth_write+0x213/0x290 [ 1044.203548][T10853] ? proc_fail_nth_read+0x220/0x220 [ 1044.208587][T10853] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1044.213531][T10853] ? vfs_write+0x9af/0x1050 [ 1044.217874][T10853] ? vmacache_update+0xb7/0x120 [ 1044.222566][T10853] kernel_clone+0x22d/0x990 [ 1044.226997][T10853] ? file_end_write+0x1b0/0x1b0 [ 1044.231676][T10853] ? __kasan_check_write+0x14/0x20 [ 1044.236629][T10853] ? create_io_thread+0x1e0/0x1e0 [ 1044.241491][T10853] ? __mutex_lock_slowpath+0x10/0x10 [ 1044.246695][T10853] __x64_sys_clone+0x289/0x310 [ 1044.251298][T10853] ? __do_sys_vfork+0x130/0x130 [ 1044.255984][T10853] ? debug_smp_processor_id+0x17/0x20 [ 1044.261193][T10853] do_syscall_64+0x44/0xd0 [ 1044.265441][T10853] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1044.271261][T10853] RIP: 0033:0x7f0bd76b80d9 [ 1044.275510][T10853] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1044.295927][T10853] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1044.304152][T10853] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1044.311980][T10853] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1044.320560][T10853] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 14:45:12 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 29) 14:45:12 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:12 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000100), 0x8) perf_event_open$cgroup(&(0x7f0000000080)={0x5, 0x80, 0x6, 0x9, 0x3, 0x6e, 0x0, 0xed8, 0x0, 0x6, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, @perf_bp={&(0x7f0000000040), 0x5}, 0x6100, 0x401, 0x5, 0x0, 0x609f, 0x7, 0x800, 0x0, 0x2, 0x0, 0x4}, r1, 0x3, 0xffffffffffffffff, 0x6) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:12 executing program 1: r0 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000000)={0x0, 0x1, 0x10}, 0xc) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000001100)={r0, &(0x7f0000000040)="ce1ab254f85168c6dc0ef3bcc15f5978133c8a4193d6051d04b6e16cf94e9412ecb4dd8177e46de70eb11ba6274217ab593c743e2965ec6ca696d0af632d7728614a8b0f9e9b2858db6bb17875f4cc589cb3eb892f041912ba9b0ceb20ba6b48989cb3917db39830b1ae5a3ebe0a2d5dc9d9df17e8077e12bf9319a3b0fe5567e2cf672fd8fde1e6bdedba72fbe12c4e7ea092d40dad69ad", &(0x7f0000000100)=""/4096}, 0x20) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:12 executing program 4: ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:12 executing program 5: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r0, 0x800454e1, 0x0) ioctl$TUNSETVNETBE(r0, 0x400454de, &(0x7f0000001200)=0x1) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001140)={0x13, 0x2, &(0x7f0000000000)=@raw=[@map_idx_val={0x18, 0x0, 0x6, 0x0, 0xd, 0x0, 0x0, 0x0, 0x2}], &(0x7f0000000040)='GPL\x00', 0x5, 0x1000, &(0x7f0000000080)=""/4096, 0x40f00, 0x8, '\x00', 0x0, 0x1, 0xffffffffffffffff, 0x8, &(0x7f0000001080)={0x8, 0x2}, 0x8, 0x10, &(0x7f00000010c0)={0x1, 0xa, 0x3, 0x1f}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001100)=[0xffffffffffffffff, 0x1, 0x1, 0x1, 0xffffffffffffffff, 0x1, 0xffffffffffffffff]}, 0x80) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000011c0)={r1, r2, 0x20}, 0x10) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) (async) ioctl$TUNSETFILTEREBPF(r0, 0x800454e1, 0x0) (async) ioctl$TUNSETVNETBE(r0, 0x400454de, &(0x7f0000001200)=0x1) (async) bpf$PROG_LOAD(0x5, &(0x7f0000001140)={0x13, 0x2, &(0x7f0000000000)=@raw=[@map_idx_val={0x18, 0x0, 0x6, 0x0, 0xd, 0x0, 0x0, 0x0, 0x2}], &(0x7f0000000040)='GPL\x00', 0x5, 0x1000, &(0x7f0000000080)=""/4096, 0x40f00, 0x8, '\x00', 0x0, 0x1, 0xffffffffffffffff, 0x8, &(0x7f0000001080)={0x8, 0x2}, 0x8, 0x10, &(0x7f00000010c0)={0x1, 0xa, 0x3, 0x1f}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001100)=[0xffffffffffffffff, 0x1, 0x1, 0x1, 0xffffffffffffffff, 0x1, 0xffffffffffffffff]}, 0x80) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000011c0)={r1, r2, 0x20}, 0x10) (async) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) (async) 14:45:12 executing program 4: ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0x4) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) [ 1044.328370][T10853] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1044.336178][T10853] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1044.343996][T10853] 14:45:12 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000100), 0x8) perf_event_open$cgroup(&(0x7f0000000080)={0x5, 0x80, 0x6, 0x9, 0x3, 0x6e, 0x0, 0xed8, 0x0, 0x6, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, @perf_bp={&(0x7f0000000040), 0x5}, 0x6100, 0x401, 0x5, 0x0, 0x609f, 0x7, 0x800, 0x0, 0x2, 0x0, 0x4}, r1, 0x3, 0xffffffffffffffff, 0x6) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000100), 0x8) (async) perf_event_open$cgroup(&(0x7f0000000080)={0x5, 0x80, 0x6, 0x9, 0x3, 0x6e, 0x0, 0xed8, 0x0, 0x6, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, @perf_bp={&(0x7f0000000040), 0x5}, 0x6100, 0x401, 0x5, 0x0, 0x609f, 0x7, 0x800, 0x0, 0x2, 0x0, 0x4}, r1, 0x3, 0xffffffffffffffff, 0x6) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) 14:45:12 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:12 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000100), 0x8) perf_event_open$cgroup(&(0x7f0000000080)={0x5, 0x80, 0x6, 0x9, 0x3, 0x6e, 0x0, 0xed8, 0x0, 0x6, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, @perf_bp={&(0x7f0000000040), 0x5}, 0x6100, 0x401, 0x5, 0x0, 0x609f, 0x7, 0x800, 0x0, 0x2, 0x0, 0x4}, r1, 0x3, 0xffffffffffffffff, 0x6) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000100), 0x8) (async) perf_event_open$cgroup(&(0x7f0000000080)={0x5, 0x80, 0x6, 0x9, 0x3, 0x6e, 0x0, 0xed8, 0x0, 0x6, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, @perf_bp={&(0x7f0000000040), 0x5}, 0x6100, 0x401, 0x5, 0x0, 0x609f, 0x7, 0x800, 0x0, 0x2, 0x0, 0x4}, r1, 0x3, 0xffffffffffffffff, 0x6) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) 14:45:12 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz0\x00', 0x200002, 0x0) mkdirat$cgroup(r0, &(0x7f0000000040)='syz1\x00', 0x1ff) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0, 0x30}, 0x20) 14:45:12 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz0\x00', 0x200002, 0x0) mkdirat$cgroup(r0, &(0x7f0000000040)='syz1\x00', 0x1ff) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0, 0x30}, 0x20) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz0\x00', 0x200002, 0x0) (async) mkdirat$cgroup(r0, &(0x7f0000000040)='syz1\x00', 0x1ff) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0, 0x30}, 0x20) (async) [ 1044.371885][T10894] FAULT_INJECTION: forcing a failure. [ 1044.371885][T10894] name failslab, interval 1, probability 0, space 0, times 0 [ 1044.385761][T10894] CPU: 0 PID: 10894 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1044.395826][T10894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1044.405715][T10894] Call Trace: [ 1044.408845][T10894] [ 1044.411619][T10894] dump_stack_lvl+0x151/0x1b7 [ 1044.416134][T10894] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1044.421447][T10894] dump_stack+0x15/0x17 [ 1044.425427][T10894] should_fail+0x3c0/0x510 [ 1044.429673][T10894] __should_failslab+0x9f/0xe0 [ 1044.434380][T10894] should_failslab+0x9/0x20 [ 1044.438962][T10894] kmem_cache_alloc+0x4f/0x2f0 [ 1044.443560][T10894] ? vm_area_dup+0x26/0x1d0 [ 1044.447910][T10894] ? __kasan_check_read+0x11/0x20 [ 1044.452768][T10894] vm_area_dup+0x26/0x1d0 [ 1044.456930][T10894] dup_mmap+0x6b8/0xea0 [ 1044.460932][T10894] ? __delayed_free_task+0x20/0x20 [ 1044.465863][T10894] ? mm_init+0x807/0x960 [ 1044.470116][T10894] dup_mm+0x91/0x330 [ 1044.473871][T10894] copy_mm+0x108/0x1b0 [ 1044.477763][T10894] copy_process+0x1295/0x3250 [ 1044.482270][T10894] ? proc_fail_nth_write+0x213/0x290 [ 1044.487389][T10894] ? proc_fail_nth_read+0x220/0x220 [ 1044.492599][T10894] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1044.497641][T10894] ? vfs_write+0x9af/0x1050 [ 1044.501978][T10894] ? vmacache_update+0xb7/0x120 [ 1044.506661][T10894] kernel_clone+0x22d/0x990 [ 1044.510998][T10894] ? file_end_write+0x1b0/0x1b0 [ 1044.515691][T10894] ? __kasan_check_write+0x14/0x20 [ 1044.520633][T10894] ? create_io_thread+0x1e0/0x1e0 [ 1044.525597][T10894] ? __mutex_lock_slowpath+0x10/0x10 [ 1044.530795][T10894] __x64_sys_clone+0x289/0x310 [ 1044.535396][T10894] ? __do_sys_vfork+0x130/0x130 [ 1044.540096][T10894] ? debug_smp_processor_id+0x17/0x20 [ 1044.545384][T10894] do_syscall_64+0x44/0xd0 [ 1044.549702][T10894] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1044.555374][T10894] RIP: 0033:0x7f0bd76b80d9 [ 1044.559722][T10894] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1044.579138][T10894] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1044.588083][T10894] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1044.596001][T10894] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1044.603887][T10894] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1044.611704][T10894] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 14:45:13 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 30) 14:45:13 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz0\x00', 0x200002, 0x0) mkdirat$cgroup(r0, &(0x7f0000000040)='syz1\x00', 0x1ff) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0, 0x30}, 0x20) 14:45:13 executing program 1: syz_clone(0x1850500, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:13 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:13 executing program 5: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r0, 0x800454e1, 0x0) (async) ioctl$TUNSETVNETBE(r0, 0x400454de, &(0x7f0000001200)=0x1) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001140)={0x13, 0x2, &(0x7f0000000000)=@raw=[@map_idx_val={0x18, 0x0, 0x6, 0x0, 0xd, 0x0, 0x0, 0x0, 0x2}], &(0x7f0000000040)='GPL\x00', 0x5, 0x1000, &(0x7f0000000080)=""/4096, 0x40f00, 0x8, '\x00', 0x0, 0x1, 0xffffffffffffffff, 0x8, &(0x7f0000001080)={0x8, 0x2}, 0x8, 0x10, &(0x7f00000010c0)={0x1, 0xa, 0x3, 0x1f}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001100)=[0xffffffffffffffff, 0x1, 0x1, 0x1, 0xffffffffffffffff, 0x1, 0xffffffffffffffff]}, 0x80) (async) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000011c0)={r1, r2, 0x20}, 0x10) (async) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:13 executing program 4: ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:13 executing program 1: syz_clone(0x1850500, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:13 executing program 4: recvmsg$unix(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f00000001c0), 0x6e, &(0x7f00000006c0)=[{&(0x7f0000000240)=""/135, 0x87}, {&(0x7f0000000300)=""/245, 0xf5}, {&(0x7f0000000400)=""/248, 0xf8}, {&(0x7f0000000500)=""/58, 0x3a}, {&(0x7f0000000540)=""/133, 0x85}, {&(0x7f0000000600)=""/188, 0xbc}], 0x6, &(0x7f0000000880)=ANY=[@ANYBLOB="18000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000047ec6300000000000000010000000100"/36, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32], 0xc8}, 0x2040) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) recvmsg$unix(r1, &(0x7f0000000180)={&(0x7f0000000040)=@abs, 0x6e, &(0x7f0000000140)=[{&(0x7f00000000c0)=""/70, 0x46}], 0x1}, 0x2000) [ 1044.619518][T10894] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1044.627331][T10894] 14:45:13 executing program 3: write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000140)={'b', ' *:* ', 'm\x00'}, 0x8) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) perf_event_open$cgroup(&(0x7f00000000c0)={0x5, 0x80, 0x8, 0x9, 0x81, 0x0, 0x0, 0x0, 0x23000, 0xe, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_config_ext={0x62a, 0x8}, 0xc, 0x2, 0x9, 0x7, 0xfffffffffffffff9, 0x3, 0xff, 0x0, 0x0, 0x0, 0x10001}, r1, 0x2, 0xffffffffffffffff, 0x9) openat$cgroup_procs(r1, &(0x7f0000000180)='tasks\x00', 0x2, 0x0) 14:45:13 executing program 5: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNSETFILTEREBPF(r0, 0x800454e1, &(0x7f0000000040)) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:13 executing program 3: write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000140)={'b', ' *:* ', 'm\x00'}, 0x8) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) perf_event_open$cgroup(&(0x7f00000000c0)={0x5, 0x80, 0x8, 0x9, 0x81, 0x0, 0x0, 0x0, 0x23000, 0xe, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_config_ext={0x62a, 0x8}, 0xc, 0x2, 0x9, 0x7, 0xfffffffffffffff9, 0x3, 0xff, 0x0, 0x0, 0x0, 0x10001}, r1, 0x2, 0xffffffffffffffff, 0x9) openat$cgroup_procs(r1, &(0x7f0000000180)='tasks\x00', 0x2, 0x0) write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000140)={'b', ' *:* ', 'm\x00'}, 0x8) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) perf_event_open$cgroup(&(0x7f00000000c0)={0x5, 0x80, 0x8, 0x9, 0x81, 0x0, 0x0, 0x0, 0x23000, 0xe, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_config_ext={0x62a, 0x8}, 0xc, 0x2, 0x9, 0x7, 0xfffffffffffffff9, 0x3, 0xff, 0x0, 0x0, 0x0, 0x10001}, r1, 0x2, 0xffffffffffffffff, 0x9) (async) openat$cgroup_procs(r1, &(0x7f0000000180)='tasks\x00', 0x2, 0x0) (async) 14:45:13 executing program 1: syz_clone(0x1850500, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x1850500, 0x0, 0x0, 0x0, 0x0, 0x0) (async) [ 1044.668655][T10942] FAULT_INJECTION: forcing a failure. [ 1044.668655][T10942] name failslab, interval 1, probability 0, space 0, times 0 [ 1044.705741][T10942] CPU: 1 PID: 10942 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1044.715911][T10942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1044.725808][T10942] Call Trace: [ 1044.729027][T10942] [ 1044.731985][T10942] dump_stack_lvl+0x151/0x1b7 [ 1044.736503][T10942] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1044.741788][T10942] ? vma_interval_tree_augment_rotate+0x210/0x210 [ 1044.748035][T10942] dump_stack+0x15/0x17 [ 1044.752052][T10942] should_fail+0x3c0/0x510 [ 1044.756283][T10942] __should_failslab+0x9f/0xe0 [ 1044.760880][T10942] should_failslab+0x9/0x20 [ 1044.765232][T10942] kmem_cache_alloc+0x4f/0x2f0 [ 1044.769818][T10942] ? anon_vma_fork+0xf7/0x4f0 [ 1044.774333][T10942] anon_vma_fork+0xf7/0x4f0 [ 1044.778672][T10942] ? anon_vma_name+0x4c/0x70 [ 1044.783199][T10942] dup_mmap+0x750/0xea0 [ 1044.787192][T10942] ? __delayed_free_task+0x20/0x20 [ 1044.792162][T10942] ? mm_init+0x807/0x960 [ 1044.796232][T10942] dup_mm+0x91/0x330 [ 1044.799949][T10942] copy_mm+0x108/0x1b0 [ 1044.803861][T10942] copy_process+0x1295/0x3250 [ 1044.808454][T10942] ? proc_fail_nth_write+0x213/0x290 [ 1044.813576][T10942] ? proc_fail_nth_read+0x220/0x220 [ 1044.818637][T10942] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1044.823556][T10942] ? vfs_write+0x9af/0x1050 [ 1044.827897][T10942] ? vmacache_update+0xb7/0x120 [ 1044.832584][T10942] kernel_clone+0x22d/0x990 [ 1044.836923][T10942] ? file_end_write+0x1b0/0x1b0 [ 1044.841608][T10942] ? __kasan_check_write+0x14/0x20 [ 1044.846558][T10942] ? create_io_thread+0x1e0/0x1e0 [ 1044.851418][T10942] ? __mutex_lock_slowpath+0x10/0x10 [ 1044.856539][T10942] __x64_sys_clone+0x289/0x310 [ 1044.861139][T10942] ? __do_sys_vfork+0x130/0x130 [ 1044.865827][T10942] ? debug_smp_processor_id+0x17/0x20 [ 1044.871048][T10942] do_syscall_64+0x44/0xd0 [ 1044.875547][T10942] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1044.881275][T10942] RIP: 0033:0x7f0bd76b80d9 [ 1044.885617][T10942] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1044.905246][T10942] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 14:45:13 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 31) 14:45:13 executing program 4: recvmsg$unix(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f00000001c0), 0x6e, &(0x7f00000006c0)=[{&(0x7f0000000240)=""/135, 0x87}, {&(0x7f0000000300)=""/245, 0xf5}, {&(0x7f0000000400)=""/248, 0xf8}, {&(0x7f0000000500)=""/58, 0x3a}, {&(0x7f0000000540)=""/133, 0x85}, {&(0x7f0000000600)=""/188, 0xbc}], 0x6, &(0x7f0000000880)=ANY=[@ANYBLOB="18000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000047ec6300000000000000010000000100"/36, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32], 0xc8}, 0x2040) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) recvmsg$unix(r1, &(0x7f0000000180)={&(0x7f0000000040)=@abs, 0x6e, &(0x7f0000000140)=[{&(0x7f00000000c0)=""/70, 0x46}], 0x1}, 0x2000) 14:45:13 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000010000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:13 executing program 1: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETVNETHDRSZ(r0, 0x800454d7, &(0x7f0000000040)) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1044.913483][T10942] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1044.921297][T10942] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1044.929112][T10942] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1044.936919][T10942] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1044.944734][T10942] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1044.952545][T10942] 14:45:13 executing program 5: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNSETFILTEREBPF(r0, 0x800454e1, &(0x7f0000000040)) (async, rerun: 64) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) (rerun: 64) 14:45:13 executing program 3: write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000140)={'b', ' *:* ', 'm\x00'}, 0x8) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) perf_event_open$cgroup(&(0x7f00000000c0)={0x5, 0x80, 0x8, 0x9, 0x81, 0x0, 0x0, 0x0, 0x23000, 0xe, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_config_ext={0x62a, 0x8}, 0xc, 0x2, 0x9, 0x7, 0xfffffffffffffff9, 0x3, 0xff, 0x0, 0x0, 0x0, 0x10001}, r1, 0x2, 0xffffffffffffffff, 0x9) openat$cgroup_procs(r1, &(0x7f0000000180)='tasks\x00', 0x2, 0x0) write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000140)={'b', ' *:* ', 'm\x00'}, 0x8) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) perf_event_open$cgroup(&(0x7f00000000c0)={0x5, 0x80, 0x8, 0x9, 0x81, 0x0, 0x0, 0x0, 0x23000, 0xe, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_config_ext={0x62a, 0x8}, 0xc, 0x2, 0x9, 0x7, 0xfffffffffffffff9, 0x3, 0xff, 0x0, 0x0, 0x0, 0x10001}, r1, 0x2, 0xffffffffffffffff, 0x9) (async) openat$cgroup_procs(r1, &(0x7f0000000180)='tasks\x00', 0x2, 0x0) (async) 14:45:13 executing program 4: recvmsg$unix(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f00000001c0), 0x6e, &(0x7f00000006c0)=[{&(0x7f0000000240)=""/135, 0x87}, {&(0x7f0000000300)=""/245, 0xf5}, {&(0x7f0000000400)=""/248, 0xf8}, {&(0x7f0000000500)=""/58, 0x3a}, {&(0x7f0000000540)=""/133, 0x85}, {&(0x7f0000000600)=""/188, 0xbc}], 0x6, &(0x7f0000000880)=ANY=[@ANYBLOB="18000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000047ec6300000000000000010000000100"/36, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32], 0xc8}, 0x2040) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) recvmsg$unix(r1, &(0x7f0000000180)={&(0x7f0000000040)=@abs, 0x6e, &(0x7f0000000140)=[{&(0x7f00000000c0)=""/70, 0x46}], 0x1}, 0x2000) [ 1044.966057][T10961] FAULT_INJECTION: forcing a failure. [ 1044.966057][T10961] name failslab, interval 1, probability 0, space 0, times 0 [ 1044.986849][T10961] CPU: 1 PID: 10961 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1044.996921][T10961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1045.006819][T10961] Call Trace: [ 1045.009942][T10961] [ 1045.012888][T10961] dump_stack_lvl+0x151/0x1b7 [ 1045.017405][T10961] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1045.022788][T10961] dump_stack+0x15/0x17 [ 1045.026780][T10961] should_fail+0x3c0/0x510 [ 1045.031031][T10961] __should_failslab+0x9f/0xe0 [ 1045.035635][T10961] should_failslab+0x9/0x20 [ 1045.039975][T10961] kmem_cache_alloc+0x4f/0x2f0 [ 1045.044919][T10961] ? vm_area_dup+0x26/0x1d0 [ 1045.049540][T10961] ? __kasan_check_read+0x11/0x20 [ 1045.054408][T10961] vm_area_dup+0x26/0x1d0 [ 1045.058569][T10961] dup_mmap+0x6b8/0xea0 [ 1045.062569][T10961] ? __delayed_free_task+0x20/0x20 [ 1045.067525][T10961] ? mm_init+0x807/0x960 [ 1045.071609][T10961] dup_mm+0x91/0x330 [ 1045.075319][T10961] copy_mm+0x108/0x1b0 [ 1045.079230][T10961] copy_process+0x1295/0x3250 [ 1045.083741][T10961] ? proc_fail_nth_write+0x213/0x290 [ 1045.088857][T10961] ? proc_fail_nth_read+0x220/0x220 [ 1045.093891][T10961] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1045.098840][T10961] ? vfs_write+0x9af/0x1050 [ 1045.103181][T10961] ? vmacache_update+0xb7/0x120 [ 1045.108312][T10961] kernel_clone+0x22d/0x990 [ 1045.112639][T10961] ? file_end_write+0x1b0/0x1b0 [ 1045.117328][T10961] ? __kasan_check_write+0x14/0x20 [ 1045.122277][T10961] ? create_io_thread+0x1e0/0x1e0 [ 1045.127135][T10961] ? __mutex_lock_slowpath+0x10/0x10 [ 1045.132271][T10961] __x64_sys_clone+0x289/0x310 [ 1045.136863][T10961] ? __do_sys_vfork+0x130/0x130 [ 1045.141555][T10961] ? debug_smp_processor_id+0x17/0x20 [ 1045.146770][T10961] do_syscall_64+0x44/0xd0 [ 1045.151006][T10961] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1045.156823][T10961] RIP: 0033:0x7f0bd76b80d9 14:45:13 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x15, 0x0, 0x2, 0x0}, 0x20) 14:45:13 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000100000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:13 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x15, 0x0, 0x2, 0x0}, 0x20) 14:45:13 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:13 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x15, 0x0, 0x2, 0x0}, 0x20) [ 1045.161078][T10961] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1045.180524][T10961] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1045.188765][T10961] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1045.196848][T10961] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1045.204825][T10961] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1045.212635][T10961] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 14:45:13 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 32) 14:45:13 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:13 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000000c0)={r1, &(0x7f0000000040)="619c79c8f2e879b1311020746ef5b2f3bfe0d80f073061e93f1e424bac906e051ffce0f5da4aa54a496e2b3d85141d9181", &(0x7f0000000080)}, 0x20) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:13 executing program 1: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETVNETHDRSZ(r0, 0x800454d7, &(0x7f0000000040)) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) ioctl$TUNGETVNETHDRSZ(r0, 0x800454d7, &(0x7f0000000040)) (async) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) 14:45:13 executing program 5: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNSETFILTEREBPF(r0, 0x800454e1, &(0x7f0000000040)) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:13 executing program 4: ioctl$TUNSETVNETHDRSZ(0xffffffffffffffff, 0x400454d8, &(0x7f0000000000)=0xffffffff) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) 14:45:13 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:13 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000000c0)={r1, &(0x7f0000000040)="619c79c8f2e879b1311020746ef5b2f3bfe0d80f073061e93f1e424bac906e051ffce0f5da4aa54a496e2b3d85141d9181", &(0x7f0000000080)}, 0x20) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000000c0)={r1, &(0x7f0000000040)="619c79c8f2e879b1311020746ef5b2f3bfe0d80f073061e93f1e424bac906e051ffce0f5da4aa54a496e2b3d85141d9181", &(0x7f0000000080)}, 0x20) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) 14:45:13 executing program 4: ioctl$TUNSETVNETHDRSZ(0xffffffffffffffff, 0x400454d8, &(0x7f0000000000)=0xffffffff) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) ioctl$TUNSETVNETHDRSZ(0xffffffffffffffff, 0x400454d8, &(0x7f0000000000)=0xffffffff) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) 14:45:13 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:13 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000000c0)={r1, &(0x7f0000000040)="619c79c8f2e879b1311020746ef5b2f3bfe0d80f073061e93f1e424bac906e051ffce0f5da4aa54a496e2b3d85141d9181", &(0x7f0000000080)}, 0x20) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:13 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1045.220450][T10961] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1045.228261][T10961] [ 1045.285856][T11025] FAULT_INJECTION: forcing a failure. [ 1045.285856][T11025] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1045.298989][T11025] CPU: 0 PID: 11025 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1045.309054][T11025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1045.318948][T11025] Call Trace: [ 1045.322068][T11025] [ 1045.324859][T11025] dump_stack_lvl+0x151/0x1b7 [ 1045.329365][T11025] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1045.334655][T11025] ? stack_trace_save+0x1f0/0x1f0 [ 1045.339514][T11025] ? __kernel_text_address+0x9a/0x110 [ 1045.344720][T11025] dump_stack+0x15/0x17 [ 1045.348799][T11025] should_fail+0x3c0/0x510 [ 1045.353055][T11025] should_fail_alloc_page+0x58/0x70 [ 1045.358175][T11025] __alloc_pages+0x1de/0x7c0 [ 1045.362602][T11025] ? stack_trace_save+0x12d/0x1f0 [ 1045.367460][T11025] ? stack_trace_snprint+0x100/0x100 [ 1045.372768][T11025] ? __count_vm_events+0x30/0x30 [ 1045.377616][T11025] ? __kasan_slab_alloc+0xc4/0xe0 [ 1045.382653][T11025] ? __kasan_slab_alloc+0xb2/0xe0 [ 1045.387512][T11025] ? kmem_cache_alloc+0x189/0x2f0 [ 1045.392372][T11025] ? anon_vma_fork+0x1b9/0x4f0 [ 1045.396971][T11025] get_zeroed_page+0x19/0x40 [ 1045.401406][T11025] __pud_alloc+0x8b/0x260 [ 1045.405584][T11025] ? do_handle_mm_fault+0x2370/0x2370 [ 1045.410779][T11025] copy_page_range+0xd9e/0x1090 [ 1045.415505][T11025] ? pfn_valid+0x1e0/0x1e0 [ 1045.419717][T11025] dup_mmap+0x99f/0xea0 [ 1045.423830][T11025] ? __delayed_free_task+0x20/0x20 [ 1045.428856][T11025] ? mm_init+0x807/0x960 [ 1045.432940][T11025] dup_mm+0x91/0x330 [ 1045.436675][T11025] copy_mm+0x108/0x1b0 [ 1045.440590][T11025] copy_process+0x1295/0x3250 [ 1045.445105][T11025] ? proc_fail_nth_write+0x213/0x290 [ 1045.450206][T11025] ? proc_fail_nth_read+0x220/0x220 [ 1045.455238][T11025] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1045.460382][T11025] ? vfs_write+0x9af/0x1050 [ 1045.464707][T11025] ? vmacache_update+0xb7/0x120 [ 1045.469392][T11025] kernel_clone+0x22d/0x990 [ 1045.473726][T11025] ? file_end_write+0x1b0/0x1b0 [ 1045.478434][T11025] ? __kasan_check_write+0x14/0x20 [ 1045.483363][T11025] ? create_io_thread+0x1e0/0x1e0 [ 1045.488244][T11025] ? __mutex_lock_slowpath+0x10/0x10 [ 1045.493342][T11025] __x64_sys_clone+0x289/0x310 [ 1045.497950][T11025] ? __do_sys_vfork+0x130/0x130 [ 1045.502734][T11025] ? debug_smp_processor_id+0x17/0x20 [ 1045.508531][T11025] do_syscall_64+0x44/0xd0 [ 1045.512801][T11025] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1045.518514][T11025] RIP: 0033:0x7f0bd76b80d9 [ 1045.523116][T11025] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1045.542646][T11025] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1045.551174][T11025] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1045.559236][T11025] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1045.567043][T11025] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1045.574848][T11025] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 14:45:14 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 33) 14:45:14 executing program 5: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) recvmsg$unix(r0, &(0x7f0000000200)={&(0x7f0000000000), 0x6e, &(0x7f00000001c0)=[{&(0x7f0000000080)=""/80, 0x50}, {&(0x7f0000000100)=""/141, 0x8d}], 0x2}, 0x22) 14:45:14 executing program 1: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETVNETHDRSZ(r0, 0x800454d7, &(0x7f0000000040)) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:14 executing program 4: ioctl$TUNSETVNETHDRSZ(0xffffffffffffffff, 0x400454d8, &(0x7f0000000000)=0xffffffff) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) 14:45:14 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:14 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x1, 0x6, 0x5, 0x0, 0xe1c4, 0x8020, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x3, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x81, 0x4, @perf_config_ext={0x9, 0x7}, 0x80980, 0x21, 0x40, 0x9, 0x4, 0x5, 0xb42, 0x0, 0x8, 0x0, 0x7}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x5) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f00000000c0)='./cgro\x00') r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:14 executing program 4: socketpair$unix(0x1, 0x7, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40010030) r1 = openat$cgroup(0xffffffffffffffff, &(0x7f00000001c0)='syz1\x00', 0x200002, 0x0) r2 = openat$cgroup_type(r1, &(0x7f0000000240), 0x2, 0x0) write$cgroup_type(r2, &(0x7f0000000040), 0x9) ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x203) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x301000, 0x0) close(r3) r4 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000180)='cgroup.clone_children\x00', 0x2, 0x0) ioctl$TUNGETFEATURES(r4, 0x800454cf, &(0x7f0000000040)) r5 = openat$cgroup_ro(r4, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) openat$cgroup_netprio_ifpriomap(r4, &(0x7f0000000100), 0x2, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000080)='#\x00') mkdirat$cgroup(r5, &(0x7f0000000140)='syz1\x00', 0x1ff) ioctl$TUNSETVNETHDRSZ(r4, 0x400454d8, &(0x7f0000000200)=0x10000) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0)) 14:45:14 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x1, 0x6, 0x5, 0x0, 0xe1c4, 0x8020, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x3, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x81, 0x4, @perf_config_ext={0x9, 0x7}, 0x80980, 0x21, 0x40, 0x9, 0x4, 0x5, 0xb42, 0x0, 0x8, 0x0, 0x7}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x5) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f00000000c0)='./cgro\x00') r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x1, 0x6, 0x5, 0x0, 0xe1c4, 0x8020, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x3, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x81, 0x4, @perf_config_ext={0x9, 0x7}, 0x80980, 0x21, 0x40, 0x9, 0x4, 0x5, 0xb42, 0x0, 0x8, 0x0, 0x7}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x5) (async) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f00000000c0)='./cgro\x00') (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) 14:45:14 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:14 executing program 1: bpf$OBJ_GET_MAP(0x7, &(0x7f0000000040)={&(0x7f0000000000)='./file0\x00', 0x0, 0x10}, 0x10) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:14 executing program 4: socketpair$unix(0x1, 0x7, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40010030) r1 = openat$cgroup(0xffffffffffffffff, &(0x7f00000001c0)='syz1\x00', 0x200002, 0x0) r2 = openat$cgroup_type(r1, &(0x7f0000000240), 0x2, 0x0) write$cgroup_type(r2, &(0x7f0000000040), 0x9) ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x203) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x301000, 0x0) close(r3) r4 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000180)='cgroup.clone_children\x00', 0x2, 0x0) ioctl$TUNGETFEATURES(r4, 0x800454cf, &(0x7f0000000040)) r5 = openat$cgroup_ro(r4, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) openat$cgroup_netprio_ifpriomap(r4, &(0x7f0000000100), 0x2, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000080)='#\x00') mkdirat$cgroup(r5, &(0x7f0000000140)='syz1\x00', 0x1ff) ioctl$TUNSETVNETHDRSZ(r4, 0x400454d8, &(0x7f0000000200)=0x10000) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0)) socketpair$unix(0x1, 0x7, 0x0, &(0x7f0000002fc0)) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40010030) (async) openat$cgroup(0xffffffffffffffff, &(0x7f00000001c0)='syz1\x00', 0x200002, 0x0) (async) openat$cgroup_type(r1, &(0x7f0000000240), 0x2, 0x0) (async) write$cgroup_type(r2, &(0x7f0000000040), 0x9) (async) ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x203) (async) openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x301000, 0x0) (async) close(r3) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000180)='cgroup.clone_children\x00', 0x2, 0x0) (async) ioctl$TUNGETFEATURES(r4, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r4, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) openat$cgroup_netprio_ifpriomap(r4, &(0x7f0000000100), 0x2, 0x0) (async) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000080)='#\x00') (async) mkdirat$cgroup(r5, &(0x7f0000000140)='syz1\x00', 0x1ff) (async) ioctl$TUNSETVNETHDRSZ(r4, 0x400454d8, &(0x7f0000000200)=0x10000) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0)) (async) [ 1045.582661][T11025] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1045.590648][T11025] 14:45:14 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x1, 0x6, 0x5, 0x0, 0xe1c4, 0x8020, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x3, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x81, 0x4, @perf_config_ext={0x9, 0x7}, 0x80980, 0x21, 0x40, 0x9, 0x4, 0x5, 0xb42, 0x0, 0x8, 0x0, 0x7}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x5) (async) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f00000000c0)='./cgro\x00') (async) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) [ 1045.639327][T11047] FAULT_INJECTION: forcing a failure. [ 1045.639327][T11047] name failslab, interval 1, probability 0, space 0, times 0 [ 1045.654968][T11047] CPU: 1 PID: 11047 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1045.665039][T11047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1045.675113][T11047] Call Trace: [ 1045.678238][T11047] [ 1045.681009][T11047] dump_stack_lvl+0x151/0x1b7 [ 1045.685713][T11047] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1045.691093][T11047] ? do_syscall_64+0x44/0xd0 [ 1045.695604][T11047] dump_stack+0x15/0x17 [ 1045.699701][T11047] should_fail+0x3c0/0x510 [ 1045.704041][T11047] __should_failslab+0x9f/0xe0 [ 1045.708650][T11047] should_failslab+0x9/0x20 [ 1045.712977][T11047] kmem_cache_alloc+0x4f/0x2f0 [ 1045.717582][T11047] ? anon_vma_clone+0xa1/0x4f0 [ 1045.722264][T11047] anon_vma_clone+0xa1/0x4f0 [ 1045.726697][T11047] anon_vma_fork+0x91/0x4f0 [ 1045.731043][T11047] ? anon_vma_name+0x4c/0x70 [ 1045.735460][T11047] dup_mmap+0x750/0xea0 [ 1045.739453][T11047] ? __delayed_free_task+0x20/0x20 [ 1045.744421][T11047] ? mm_init+0x807/0x960 [ 1045.748479][T11047] dup_mm+0x91/0x330 [ 1045.752209][T11047] copy_mm+0x108/0x1b0 [ 1045.756119][T11047] copy_process+0x1295/0x3250 [ 1045.760632][T11047] ? proc_fail_nth_write+0x213/0x290 [ 1045.765756][T11047] ? proc_fail_nth_read+0x220/0x220 [ 1045.770802][T11047] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1045.775734][T11047] ? vfs_write+0x9af/0x1050 [ 1045.780077][T11047] ? vmacache_update+0xb7/0x120 [ 1045.784764][T11047] kernel_clone+0x22d/0x990 [ 1045.789100][T11047] ? file_end_write+0x1b0/0x1b0 [ 1045.793787][T11047] ? __kasan_check_write+0x14/0x20 [ 1045.799119][T11047] ? create_io_thread+0x1e0/0x1e0 [ 1045.804381][T11047] ? __mutex_lock_slowpath+0x10/0x10 [ 1045.809765][T11047] __x64_sys_clone+0x289/0x310 [ 1045.814455][T11047] ? __do_sys_vfork+0x130/0x130 [ 1045.819135][T11047] ? debug_smp_processor_id+0x17/0x20 [ 1045.824528][T11047] do_syscall_64+0x44/0xd0 [ 1045.828858][T11047] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1045.834587][T11047] RIP: 0033:0x7f0bd76b80d9 [ 1045.838839][T11047] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1045.858295][T11047] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1045.866715][T11047] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1045.874513][T11047] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1045.882327][T11047] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 14:45:14 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 34) [ 1045.890147][T11047] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1045.898123][T11047] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1045.905938][T11047] [ 1045.923264][T11077] FAULT_INJECTION: forcing a failure. [ 1045.923264][T11077] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1045.936340][T11077] CPU: 1 PID: 11077 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1045.946416][T11077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1045.956317][T11077] Call Trace: [ 1045.959438][T11077] [ 1045.962220][T11077] dump_stack_lvl+0x151/0x1b7 [ 1045.966726][T11077] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1045.972023][T11077] dump_stack+0x15/0x17 [ 1045.976018][T11077] should_fail+0x3c0/0x510 [ 1045.980281][T11077] should_fail_alloc_page+0x58/0x70 [ 1045.985312][T11077] __alloc_pages+0x1de/0x7c0 [ 1045.989733][T11077] ? __count_vm_events+0x30/0x30 [ 1045.994506][T11077] ? dup_mm+0x91/0x330 [ 1045.998415][T11077] ? copy_mm+0x108/0x1b0 [ 1046.002489][T11077] ? copy_process+0x1295/0x3250 [ 1046.007174][T11077] ? kernel_clone+0x22d/0x990 [ 1046.011687][T11077] ? __x64_sys_clone+0x289/0x310 [ 1046.016465][T11077] pte_alloc_one+0x73/0x1b0 [ 1046.020805][T11077] ? pfn_modify_allowed+0x2e0/0x2e0 [ 1046.025848][T11077] ? __kasan_check_write+0x14/0x20 [ 1046.030782][T11077] ? __set_page_owner+0x2ee/0x310 [ 1046.035995][T11077] __pte_alloc+0x86/0x350 [ 1046.040160][T11077] ? post_alloc_hook+0x1ab/0x1b0 [ 1046.044936][T11077] ? free_pgtables+0x210/0x210 [ 1046.049556][T11077] ? get_page_from_freelist+0x38b/0x400 [ 1046.055004][T11077] copy_pte_range+0x1b1f/0x20b0 [ 1046.059701][T11077] ? __kunmap_atomic+0x80/0x80 [ 1046.064291][T11077] ? __pud_alloc+0x260/0x260 [ 1046.068716][T11077] ? __pud_alloc+0x218/0x260 [ 1046.073143][T11077] ? do_handle_mm_fault+0x2370/0x2370 [ 1046.078352][T11077] copy_page_range+0xc1e/0x1090 [ 1046.083040][T11077] ? pfn_valid+0x1e0/0x1e0 [ 1046.087728][T11077] dup_mmap+0x99f/0xea0 [ 1046.091726][T11077] ? __delayed_free_task+0x20/0x20 [ 1046.096666][T11077] ? mm_init+0x807/0x960 [ 1046.100749][T11077] dup_mm+0x91/0x330 [ 1046.105088][T11077] copy_mm+0x108/0x1b0 [ 1046.108992][T11077] copy_process+0x1295/0x3250 [ 1046.113514][T11077] ? proc_fail_nth_write+0x213/0x290 [ 1046.118713][T11077] ? proc_fail_nth_read+0x220/0x220 [ 1046.123755][T11077] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1046.128703][T11077] ? vfs_write+0x9af/0x1050 [ 1046.133038][T11077] ? vmacache_update+0xb7/0x120 [ 1046.137723][T11077] kernel_clone+0x22d/0x990 [ 1046.142071][T11077] ? file_end_write+0x1b0/0x1b0 [ 1046.146749][T11077] ? __kasan_check_write+0x14/0x20 [ 1046.151700][T11077] ? create_io_thread+0x1e0/0x1e0 [ 1046.156741][T11077] ? __mutex_lock_slowpath+0x10/0x10 [ 1046.161852][T11077] __x64_sys_clone+0x289/0x310 [ 1046.166459][T11077] ? __do_sys_vfork+0x130/0x130 [ 1046.171142][T11077] ? debug_smp_processor_id+0x17/0x20 [ 1046.176351][T11077] do_syscall_64+0x44/0xd0 [ 1046.180601][T11077] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1046.186351][T11077] RIP: 0033:0x7f0bd76b80d9 [ 1046.190593][T11077] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1046.210125][T11077] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1046.218402][T11077] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1046.226188][T11077] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1046.234006][T11077] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1046.241806][T11077] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1046.249633][T11077] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1046.257432][T11077] 14:45:14 executing program 5: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) (async) recvmsg$unix(r0, &(0x7f0000000200)={&(0x7f0000000000), 0x6e, &(0x7f00000001c0)=[{&(0x7f0000000080)=""/80, 0x50}, {&(0x7f0000000100)=""/141, 0x8d}], 0x2}, 0x22) 14:45:14 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:14 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:14 executing program 1: bpf$OBJ_GET_MAP(0x7, &(0x7f0000000040)={&(0x7f0000000000)='./file0\x00', 0x0, 0x10}, 0x10) (async) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:14 executing program 4: socketpair$unix(0x1, 0x7, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40010030) r1 = openat$cgroup(0xffffffffffffffff, &(0x7f00000001c0)='syz1\x00', 0x200002, 0x0) r2 = openat$cgroup_type(r1, &(0x7f0000000240), 0x2, 0x0) write$cgroup_type(r2, &(0x7f0000000040), 0x9) ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x203) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x301000, 0x0) close(r3) r4 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000180)='cgroup.clone_children\x00', 0x2, 0x0) ioctl$TUNGETFEATURES(r4, 0x800454cf, &(0x7f0000000040)) r5 = openat$cgroup_ro(r4, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) openat$cgroup_netprio_ifpriomap(r4, &(0x7f0000000100), 0x2, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000080)='#\x00') mkdirat$cgroup(r5, &(0x7f0000000140)='syz1\x00', 0x1ff) ioctl$TUNSETVNETHDRSZ(r4, 0x400454d8, &(0x7f0000000200)=0x10000) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0)) socketpair$unix(0x1, 0x7, 0x0, &(0x7f0000002fc0)) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40010030) (async) openat$cgroup(0xffffffffffffffff, &(0x7f00000001c0)='syz1\x00', 0x200002, 0x0) (async) openat$cgroup_type(r1, &(0x7f0000000240), 0x2, 0x0) (async) write$cgroup_type(r2, &(0x7f0000000040), 0x9) (async) ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x203) (async) openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x301000, 0x0) (async) close(r3) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000180)='cgroup.clone_children\x00', 0x2, 0x0) (async) ioctl$TUNGETFEATURES(r4, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r4, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) openat$cgroup_netprio_ifpriomap(r4, &(0x7f0000000100), 0x2, 0x0) (async) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000080)='#\x00') (async) mkdirat$cgroup(r5, &(0x7f0000000140)='syz1\x00', 0x1ff) (async) ioctl$TUNSETVNETHDRSZ(r4, 0x400454d8, &(0x7f0000000200)=0x10000) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0)) (async) 14:45:14 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 35) 14:45:14 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1004000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:14 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:14 executing program 1: bpf$OBJ_GET_MAP(0x7, &(0x7f0000000040)={&(0x7f0000000000)='./file0\x00', 0x0, 0x10}, 0x10) syz_clone(0x9800000, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:14 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:14 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) close(0xffffffffffffffff) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) sendmsg$inet(r1, &(0x7f00000014c0)={&(0x7f0000000000)={0x2, 0x4e22, @remote}, 0x10, &(0x7f0000001340)=[{&(0x7f0000000040)="7f809a584ba1dbb4340ec853617a768b3c7131538396bd77cb552a75f8909ac32c282111935665e785c2c116cadd877b5800db83e6e877b55ee0d58ad80f6ea0ed980033dd056d0793e07e7787c61f9fc9962e56d8f11af2016fb43ca40b2c995e47051624b72c8fc4cf5d181f366e01848135f3300eefc7f1bdd2fd65b27abb0047df6f766239801410a330f1d2f45915c333b11a4c14cd32d53624569aea735c11451b2cab1d800cbe0075a3964dafb370f56e9f30f2eceda206b667995e264de018dfd5f5c8b15fcd3c1634ddc554a1c9b1cd0e99d7d3b92db6a4cffbbcbd7473", 0xe2}, {&(0x7f0000000140)="09042d7f219a438b064778d7f58ab7aee4be9454e27f0b8c1c87e276eb891313cddc9562adcfd931a9dd70e9bb877a89ddd079b497fd5592b6e6d6d98890eace32346efbacc03bdbea47591e3b2a548d98643f3dad8b40f5ff5e5e5981d0a3679543", 0x62}, {&(0x7f00000001c0)="6e7638839773217c281e4901bbafe20cb398e6179f9a14f8b9e4a6c77eaa0572c1fd2308405fd115dd8b41b4e466b972620b03b2fd632a4e0544a0af39a2e78531749ff44faa3a740dff616277d8233d54ed423ce8d9562753a7ff1a6c44cd8b5e24e9b2178ac5174617a62ba8c785812e0882ac6910e6344b849fa57204778be29e9a6df9e38952eefeeac7fe8d7a6ddce3b0709c1801837165a68d84eaa99945d31730c31ae960d424772a48f2a667468fc4bee0d247c40422248db2f81fd30bf17505b0419b5b0bae52d5105c17ca369e174382e02e3801a89e54498a51c5824f1dd3029ff08789a8e9d4ada228bf62de797f29f0974fdd52", 0xfa}, {&(0x7f00000002c0)="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", 0x1000}, {&(0x7f00000012c0)="8c21d0577aa58b9ef11bf3b925d528ea3a66eb0671b440389219c922816a0a26465c4e4bc86b03ec94e20028f4f83f7d639e80a32b853632311e5f8c9dc542239b49dc0df11d9fd35f2552f1f69ed88eeedf56ef6dda", 0x56}], 0x5, &(0x7f00000013c0)=ANY=[@ANYBLOB="1c000869997b0c040000000000000000", @ANYRES32=0x0, @ANYBLOB="ac1414aa7f000001000000003c000000000000000000000007000000442c3043e000000100000feb0000000000000005ac1e010100000113ac1e0001000000020a010101000000b60000000014000000000000000000000002000000ff7f000000000000140000000000000000000000020000000500000000000000"], 0x90}, 0x80) 14:45:15 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) [ 1046.475147][T11110] FAULT_INJECTION: forcing a failure. [ 1046.475147][T11110] name failslab, interval 1, probability 0, space 0, times 0 [ 1046.495149][T11110] CPU: 1 PID: 11110 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1046.505313][T11110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1046.515206][T11110] Call Trace: [ 1046.518325][T11110] [ 1046.521105][T11110] dump_stack_lvl+0x151/0x1b7 [ 1046.525620][T11110] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1046.530910][T11110] dump_stack+0x15/0x17 [ 1046.534904][T11110] should_fail+0x3c0/0x510 [ 1046.539156][T11110] __should_failslab+0x9f/0xe0 [ 1046.543754][T11110] should_failslab+0x9/0x20 [ 1046.548094][T11110] kmem_cache_alloc+0x4f/0x2f0 [ 1046.552695][T11110] ? anon_vma_clone+0xa1/0x4f0 [ 1046.557296][T11110] anon_vma_clone+0xa1/0x4f0 [ 1046.561723][T11110] anon_vma_fork+0x91/0x4f0 [ 1046.566061][T11110] ? anon_vma_name+0x4c/0x70 [ 1046.570488][T11110] dup_mmap+0x750/0xea0 [ 1046.574482][T11110] ? __delayed_free_task+0x20/0x20 [ 1046.579494][T11110] ? mm_init+0x807/0x960 [ 1046.583513][T11110] dup_mm+0x91/0x330 [ 1046.587241][T11110] copy_mm+0x108/0x1b0 [ 1046.591154][T11110] copy_process+0x1295/0x3250 [ 1046.595662][T11110] ? proc_fail_nth_write+0x213/0x290 [ 1046.600784][T11110] ? proc_fail_nth_read+0x220/0x220 [ 1046.605826][T11110] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1046.610768][T11110] ? vfs_write+0x9af/0x1050 [ 1046.615105][T11110] ? vmacache_update+0xb7/0x120 [ 1046.619835][T11110] kernel_clone+0x22d/0x990 [ 1046.624133][T11110] ? file_end_write+0x1b0/0x1b0 [ 1046.628820][T11110] ? __kasan_check_write+0x14/0x20 [ 1046.633813][T11110] ? create_io_thread+0x1e0/0x1e0 [ 1046.638625][T11110] ? __mutex_lock_slowpath+0x10/0x10 [ 1046.643752][T11110] __x64_sys_clone+0x289/0x310 [ 1046.648353][T11110] ? __do_sys_vfork+0x130/0x130 [ 1046.653037][T11110] ? debug_smp_processor_id+0x17/0x20 [ 1046.658249][T11110] do_syscall_64+0x44/0xd0 [ 1046.662508][T11110] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1046.668229][T11110] RIP: 0033:0x7f0bd76b80d9 [ 1046.672483][T11110] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1046.691923][T11110] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1046.700181][T11110] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1046.707983][T11110] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1046.715795][T11110] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1046.723606][T11110] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1046.731416][T11110] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1046.739237][T11110] 14:45:15 executing program 5: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) recvmsg$unix(r0, &(0x7f0000000200)={&(0x7f0000000000), 0x6e, &(0x7f00000001c0)=[{&(0x7f0000000080)=""/80, 0x50}, {&(0x7f0000000100)=""/141, 0x8d}], 0x2}, 0x22) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) (async) recvmsg$unix(r0, &(0x7f0000000200)={&(0x7f0000000000), 0x6e, &(0x7f00000001c0)=[{&(0x7f0000000080)=""/80, 0x50}, {&(0x7f0000000100)=""/141, 0x8d}], 0x2}, 0x22) (async) 14:45:15 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) close(0xffffffffffffffff) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)) (async) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) sendmsg$inet(r1, &(0x7f00000014c0)={&(0x7f0000000000)={0x2, 0x4e22, @remote}, 0x10, &(0x7f0000001340)=[{&(0x7f0000000040)="7f809a584ba1dbb4340ec853617a768b3c7131538396bd77cb552a75f8909ac32c282111935665e785c2c116cadd877b5800db83e6e877b55ee0d58ad80f6ea0ed980033dd056d0793e07e7787c61f9fc9962e56d8f11af2016fb43ca40b2c995e47051624b72c8fc4cf5d181f366e01848135f3300eefc7f1bdd2fd65b27abb0047df6f766239801410a330f1d2f45915c333b11a4c14cd32d53624569aea735c11451b2cab1d800cbe0075a3964dafb370f56e9f30f2eceda206b667995e264de018dfd5f5c8b15fcd3c1634ddc554a1c9b1cd0e99d7d3b92db6a4cffbbcbd7473", 0xe2}, {&(0x7f0000000140)="09042d7f219a438b064778d7f58ab7aee4be9454e27f0b8c1c87e276eb891313cddc9562adcfd931a9dd70e9bb877a89ddd079b497fd5592b6e6d6d98890eace32346efbacc03bdbea47591e3b2a548d98643f3dad8b40f5ff5e5e5981d0a3679543", 0x62}, {&(0x7f00000001c0)="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", 0xfa}, {&(0x7f00000002c0)="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", 0x1000}, {&(0x7f00000012c0)="8c21d0577aa58b9ef11bf3b925d528ea3a66eb0671b440389219c922816a0a26465c4e4bc86b03ec94e20028f4f83f7d639e80a32b853632311e5f8c9dc542239b49dc0df11d9fd35f2552f1f69ed88eeedf56ef6dda", 0x56}], 0x5, &(0x7f00000013c0)=ANY=[@ANYBLOB="1c000869997b0c040000000000000000", @ANYRES32=0x0, @ANYBLOB="ac1414aa7f000001000000003c000000000000000000000007000000442c3043e000000100000feb0000000000000005ac1e010100000113ac1e0001000000020a010101000000b60000000014000000000000000000000002000000ff7f000000000000140000000000000000000000020000000500000000000000"], 0x90}, 0x80) 14:45:15 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:15 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f0000000080)) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) ioctl$TUNSETPERSIST(r1, 0x400454cb, 0x1) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:15 executing program 1: sendmsg$tipc(0xffffffffffffffff, &(0x7f0000002100)={&(0x7f0000000000)=@id={0x1e, 0x3, 0x0, {0x4e23, 0x2}}, 0x10, &(0x7f00000020c0)=[{&(0x7f00000021c0)="2eba9d9622b4d68f3edeff21cd160a0f06265693ae7b4b99a3853468167a55f226d29148e7503810fabecf1826ee7ff338f9541f7736a4b75f56261ada09208313f40e9539174db49c2dd7710130b2e42f8320b8443e2ca3adc200cd7d0e98283e8478c92a7d9f8524d2350916116ed9851e14c16d56a6026cf2f5fb6b50facf5c063153d11ed23e4e32e5e24c75004cdf898c4c39ab31b54b537322ee20029b643053e8c9d4abc574cf5c1c9e4968b61b8c416c65dae7802fe1f9fdf98b042470e596ce7d2f1fb818c554955f2742bb1bd90eb5d997377f72aa9fb0d4a1681a1249b96618d271031308f421a0fd0be991b6e80ead6762a9d3d85d96f721fc7888e6d39aae8f86776653baa1b8eadbf52e5a091b37b489e43da78b6cfc5b8ddb824b377e26efdd20d73ce26f4f20b59a28c7659dab6b9d19c5d39a92e6c62d8d32ae0dfdbbca1c9212309e5e58cdc7ce4c594510f3943d6bbfadb11c002fa2b62bf1103c49af3b565cd5eeed49718afa0f9b7f410cdc6905a0fddf6c3047cfb4d844094be30411c02df1062af7cd87baa91acb5ee8ac97470cac79bcb8f7270f4e295e480848fa58fed2523465f78c3582113cf36d7630cc80e97dbf6074ce38a9b97ea20d6bd50c9af83ced103dcae2bdf49d034cc32ce9d71e02d6d9eaa772ce53d72ea5fb0c85d590e2de4675b6055b0e5eb08f6662d37721f622e32fd6807ea4e04eb7033057352a3b18ebb8636ae6f51976abc80b237320472f6bfd11e8ab4880b4ca88221a7133e020eaf6b36b4c50c7565eac4f4ee3482e853c7aa63d256c9bede86c37f7659b37a2eaae50bef8ea8d365559338e65f7facec7521af689eaf067c4ca247b4abece7e320a3ea8dd8184bfb79549dedb913e05679f63b0cca1e4679245ec64c46f16065aaf3b07ad2c63808288bc7017530be13418519aafb8af057536603375e31e7bed6bdb56926ee2a38734eca81bfea0d042fd20cabafadb66710cfb549fb5f394d1ce4e5356be7aecf9b46e41fe8ff4a73e0a0c27e9ef476f211f017a1cbc004f4bd93787fc5aa010d9d6b157d948b2d1ff48101a35aff628853a2cd6a2d43d946c4ce5f20dc01146289e835f392f2735a3efdcd3507dc397a5cb8123e8c7b6a656aeb92cc2b9fd5a4c010895c511e4b5c25211c6b405b6e029d0af6356d76ace82486337f40e7b49544a150ad0c3312ec3e727d9a5cc853cc5dcd199e11f98b3b9a34749509205271c4dae6122d52acbd9bfe5c1f31400abae94b5211bbe008e251c398b78313e90d22f5eb1385f01fdcc883c6db6bb2a1f4b9e1acfa1b5b263aefce69df4f4c8a399b2a11fe026ff1eaa8f210747a3aa2c52c28b487d0aece941cdf730663a3be843db129b527f2223dba0832698600a5ef10a749b3204b9eb75c5c5b541b54e301bb8660e279579b84773e985b05aa2a858d42faf2a2c7d17c98b7d932c72a2639eb507acc020939d093b848fac8c621fb2feab1d57761d38726ed29ac7ed800f5bd1b45841eb9e8f90fe21878099e8a3555887dd26a7ef2a2b79576cd413b645468ba427854dfa4dfe59c9e1dcd45c324d85a24a340cdb1ce726510ecebf423104d1ff44b9294f04b1ca8cf291d147d0af3f681f9503f614c28c2b3211bb6b5f57fee2986949433d08cc5a5ff8141f27fc0927c44d6f01ecab1d47355744f17f797f2c7fc69c847ab5c8f27087e45c8d6ebd2eebdeafa43229e837ff89cc6262c19ca067d9bc0f5388a57dc4d14aa1cd2d2f3fd70b69867dd217a83053fce18ce6ae7b8cef3ee6ee04c660746ef1bac3667cecdcf14510662323c97cf493fd29dd457c4aaecafdc015e956378e08d914709a0aa762b3b4646c578fdb4d27785bd32140a9ad4c1e5b437e95bc8a0f5ca22f5d4cd115423be968c7851de220aac17a07b06126d979ef723c948d1bca3b3b80726246fbc2e1669ae34cd6a1ed1b85d1d1e5db7a5b417f0cc3f9a18b9156e8fc85f5e80c70cfa6b36af64fab8f2b93d1b7d52d3079b8b967d353df38c79b942f06623970d418c6866b034f6d735e74711114f7877e9dc4d4d3f6ec01dd80b75c4a180e9f5f4f3d1dfc1243028d0c78db1c1f50c1087a7ef20ea92a13897711f677bdbb26da4a3570c230f6f610da74fd8ce078370d6652050f845eec7d1b2c2a007d1c42a1a194eaeb64556837955476089bcc02f163bbf5442a101f9fc050eb688dfa559ab43f8d0d1abc71c9f11cef82355c2684d69005f07d273b57856a6648bd73ae673793210834d771d83f785a966b73668efa825c524d367784c80396a9b6da8ea3f1427bf0cfc100be2edaf0871f23678e60eba11f73f862050ccd837cee3d529794b4eedf5ec08f0ca1b2bab1de37d4aaff60a4d4f176e9943380eb5995fbd520a4e332bf3f27f2ee0ce120d32ee7866a2216204f4de024caa6abf9145c4803629b84eb25e1c4ab440e84885c8ed237ef630008aaefa314495dbbb7433cb454b81d3d0b1d41bbe57fe8ce10d91027056a185202cb22280b1537d77e24512ee738fa12704d44dca2defd94ac578044b9c61b565ddd5bec39c4c50311a4f4797ca7238da42c43b3dc810181ec8cd067b765ee3ce40bd2ec0613971f4c2f5a41c6ac01a9a7ad21d0231ce36b19e1d4acb194553c59827ca3c92c9ba6f446725db977f51da526ce41ca75aea54813f464a58b63072bd1285dc9dad29f74fa2f81d61cf3cd4230fac01fdb60dfeec4269b8970f3d733839be8d0ebaed00f0682f3790f9468282af1d4969356ad889bbabbd54e10171fc64d5bf22e298d54821a29aa68d1bcfa6c25efcd3f4f777cdff0d6a445e2a848e4c66d56022c0a0a7d449a420695176bfefa9b3240dd2f738c716d2e0d7185105efc7982811318d5721380fb1d309ebe061a8f9b6989a9e8921cd8ac85fdcee5673946b9239559dec4651fa3090439536f205d79463da11f31f5b582f725159c4e57573c5492f8f8aa48f642019a5fff1401c8fce18895ac2da7914e2cff07b82c0c0d4e3e490e6b96fe174d52294027bed7e5da5e8012ae9013744e1d33eb62d037ede08ac69a0ed60d49ff59caf014458d9927bbf7c121aa575505adadf9bdbf583518a545c628ab37d503c10314df675b0cc0106409667a7ae9827392f1ba756169585f96ec573e76485fc6908b07ef884e1a20081a1573a581b80a5373db6d6587f3da0cd3f46b1c426e38f9d087a7a55679f7b4e6bce8b5184541673aeb5d75e32f65c1c9880887468ed2f0a3455085ef678f6233ec03599aeb1d3451ed0be63e59411483bd45db203b480ae8f3c72ce58ac8a71db66d969d0f070a0de4421235a7d702f4e45ce5496da0343032dd093dd72522a3d108d24d605a549c2a213d0dde34b807bafd5b8eca483e7054fd08afeb4bd3f565ebdab8de69a9861d82aa11aa9f6192b7a20a901b72aad718a683146fe10cb226de3dc4aeed96affbe63194adbfda43f17ceb1d02075755a7de907b51fc105fa8fd58e86a58fd5d975b0b24395cb65850d8d733617791371788b62bdf0704dfff4ba31cd4c2cdbc5c2f4c5128ecc07d1544f47c9eacd896a4d52e856354bafb971b07a5b2610f2d54228f754227c7c3ec3edc2e28d9aa8f64dd310c768513496443c45c949ee9106a93ab781d911cb6b6062c0303bdda2fbd12fab37ea9b99162ad1c7f651df053cdba3482e8b6d3b29bfa08d9a4a41e750cdede45758506758056c91356de26448f2f568bbeea3df715e589cd6b91f812a245b0d97768dda19ad6d50813c71624d78e43c2d280a5b2b9cb0b7ec1e3a3fcf63ee02457e74081c3ac588d874088462570fec06802d9045d6ed57fc6494c95c4fdaf2e7536548671980d394a010e1081b3ecdfba9a0b7bf5a714a53b9398241b6e40e583b96f65e9644d26509463f4074e7696b5a5a113b50d95a2759fb3e201eac9740d20aee1276d99f92a4ba59656fc0a472aa91ae2a7cef00a67b676ef95b02f5086a6312e3e66275ea2baca6404c5468a6b0d716a87db8c2323242af1fff2e1c69926ac312a5c88e40e5630b59c229aee8e8b7caefc7ff08ab85fee78fa7210ae7a9d9c8f9a51134d1b0bdf09d281c20dab364e8f7e089c57e647826b95141ebd1a211e2afa6f7f75eba0e2e51e89840a1b8beb9be675f710501eb00aeb0373cd8b7a9e5b1f50691a85cbf0873f097387fb59dc25dda8f6c52dbc71bb232eadd5e68aa5ab0d2fbc36d91be677b6010b8d632e3d0e83cc26d7828872620d8a63d82b8e907167d05ff20fe41ab6a7c680eb85e44b2608f3f46899fa6b7b9b8b62e578c158c8f1f2d244900b4eafc9337e7733e764a05e138a9c0082a04c75e6785c443a08c3dfffb75b6264140d4aa0d568ac3dff8107169a88d634f2e1edbaf1259170ec71b62bf760e6f1e086214c440ab259a3c1761ed92691e7ecd48bcba8fd42488613c90324a2ebc88c429b89e852d6426189ce767f3b26c59a44e7048d3892be7fb3d2426530f6d058edff408c3b4f37d8d43027738232c5cf9ff8193c02b3d41d4e4902f55c2e41717dc520865c835e2c3a56272a0dbfa440fc661d4ee80c02cf5d7ba7bc4da4540100ea79ba6cc02481ba9097fd28c7d22e89bc67da82f541cfd8e559d43a9f99ad49f0504c3658d1404a3c734e20d6b2e110f487ead8d2c6660ed360807ca9214091eb994bcae752c6b537c772988ddda112ad7862f3ae886dd5386b4dd59e0f92210061c533f74fb6fd6af3a5f2effb89307c8b8558221ba2e8e5543cea1d3928f9306351a7cb3383a17f4bcd6d009ad3e271ebc1512a613bcb2e10180371367d42d19613d2a65d2a2de1ba0d8c5961b721f2cbd96ef907709ff0f6d522f6f0299f0a2d8ef9460429078e5e66895520c258e0e0062562fb690230b90b81d9637b6cc29308ca8d2f8219cd398daebc1cb96bf0d6ce00f920eec78b6a7445199eae137d282bfa1f5b914e6618ffa39527c096150937d58ede4e7c29100ce9c8a9b84c124072f50ee1dcb64ddd6a25594fa4984d641ed8b0f72c5f9aa68dd4ecc63a211a670ee531aeeb43b7ca26ae381bdc64bf996f31558cfdd4e5f4fd4bb374545814b806c521ec97f1a25f43cf5d1072a0ab6439f1c187c01dcecae6b4d709b130f6fc760b3d6d42abdcd9bdd6e588b5c3859349ca6923fb759451905e794e499c16ef63f4398e0199deb9ac19861283f22949f2570cae21092d991570f06d6f02c2c73486abf88878b58a7fab56e8d21659fb5320693376df3286bf4d7a36a7e4a524eab97f05bddf2109e09c68c63706376b904b1213424c1cf2dc7876495f55f4d828a4425aa9bd3e0ba69b0ab3e295170b61bdb89f0e6490cb49f573ee14bfd7a245870c67b37fa39d933eae9749b1664e4326ca2b2f26b943399966cacd69b9d3c1a236dd328387c5b34d782dc2a03e69501be8010b67eb7417cb03391cc7de79063056d6478e6be31cc41ee2fd11c0ee3afc06f1c47c4b769ae2690b5a62f1f89a92c201d1fd901debbc67b81aa5b7e0d449d1a37b150c5c5567f72619a05dd15d301c2fd9333c06ea1e3b1a61f71579e3117ca7643a042c8e4a2818338354ef7ceaa6c3ac8cfdd28b046b7a9deb8d472056a14ee06dccf2749ce57fe2037aaba21e53edd4f52b00f3bfe74d1818cf6676151bbad1ecf0390d52d3e609099c4b3d37a83d4124062a7e35da2d6b5220ce4621acb3fa99b3132d9c8c3452ecc2a605a7c2e1a69cc2f7559e153646f49fdec8a7827669e338af1e6ca129030c446e19d07c0c971c72607709ed77d86fee968ef714d9100fc1f4a6a6bcf830ba52d2d67719ce84b23f06f7df9106df38e586bd5f1f7e6e20d11f5292fe591936ed3ab8370560e92ff530cba8e6057e383aa526772b135fd0ef7e", 0x1056}, {&(0x7f0000001040)="fd5f46f1f6b62035bd3f88d4bac225a5beeefc0acdec264040c869636f76794f717fea17adf2c3cf31d0154e940ea453719e77cce46ed62e0f5232e448dee3a71259b69c", 0x44}, {&(0x7f00000010c0)="a4a7c70fd04b8aef616ca31ef2d783a1da340cc6c606f8bce633e0330b8e82d48ad939cd03b2bd1904be273a529d92907275af1c3f05fd1399069947fcec5b9ab9dfe78ee03d7267e07a56e487630e1caa93e704525dc3e4f9bc4789c859259a426796c3750b424f636946bb5e6c0e31ea2f08335bb0a41d53b0a59c52946456d933528fa24ae6ca476fbd1c9a6ea2492f2d1a5454f21a342bb02432bf83855e4aace816c66fdb38c1d9238244cfd4bd1aec198a9847ad3f568aed194c8733d9303b77d4b92ce4989961ef3cbf684015752a95682d16156ce2e3c994971481cebc584c2a271c0e84dde03dc9df8b9b0682a7d4169c5bfbc223f60e31b67b7cb887945e9558af740d0a6055934f03bdff765d7b88b10728bd72e831576b6a044642189d5ce2ae080324d2a7f7fe0ec89e9c685340fd598905a86fa243ff707f8fa13264ea1945f6c190e47d332a65f7b5fdaad88221a23f4364719842a1ef1c28c26274bc4e24003ffa06199df0c07f3f3aa038f3f4923b1b829f6f30d99a876f2800a8eb44d857085857dc34e77bad98da2d23cf79490d92564442492106e93f34bd753aaaf640faa2f7a398cfa4026761c5588b35195caf2decd916412c1dedd5e95290a0b4017e2b46c4fb6b1f6e3ce2cc87b50c626a25bda08b6d719996ab6896f8dc8ad9c9100696f6f7312348d4bb7efe51d1e9feb521a0d89267f5c1e2fb22859cbd1fd265a65ca52d9e57a480c5cc037865aefdb80b69a6478a0523f3bdb6e54f43742dce7b61e43c24579145860b8200cc58285775a4bcbfa5f0d198cf6d7ea2d50cfddc7747e66e286e47ae9ef4654932f7299ed4ea9b19275c729b5dc5baa9cdab92a0b008908a192491f65dcf283ac246e1e772da39252b73950a19746e3ba6b2ac3fdaa9dac1ce6b2afae5d81ce7f042ebf00ff19fd82042166678c2bc030debb0ee0dad29caac302393d31cc2c8976eda3ab7e9816cf2f43e45cff788ce967768bf1974a838834f5d081cdd1dad4044d1542ed1e2178fd0764770355b29fff22cb1957bbd26dc14e3c5d882ea4ccea40df4c02ac8b57bb6829380a495c5c1ac22bf8e44231c623cb2dbce14ad1de36a5f28f09475f2b5d231d4bc3da0bca44947971afaa566afca1b991d531e136659e110b145f67c50a5264d9ed335aa1ddbdd0638b36d9b4a41f7543fa4831bfed1ce21d386799de9a526cf43fd89bdf9a60533fe297eea1ce45be9f9d84e6cb1f6680589e260fbf51e6ad30ffb2b0ae9cb4a05b91ad23733f31131726cb46c9530b754ae7cecd9324efbcc2c4ac2362de7047cd58c25c93e18f813105044dda64c2f155fa5efcab9c958e5f547d810ec98add440d186722c723479e607eb7d60d292ea5f88a582d20abf8608c5c86285974d2aac0b06ca923d6851759305d5720c8482f6d7c5df2dc55418834ebd95430f9fb0ec63c3985a7d1ee358d92fcade1d5c50ac685b6448802987c521a54dd1e5e98b6eb48fe111230f14a143f2ad1e0e6f0437a66717ff4576832f162fa8ec3069e7a6a83c28a09979e2cc9d2507931b90ffa71046d5910b23f277c440403ad036757d79b317f58e25ec9b4675ef6cf65f109da57009f040d7189fde2891e0dfc4e4666e1e84538764f1df91fbf8631122bfaa75d97728058be19ef10e8978920d2f9b95eb15487afd9ac09294f52d5785d86770a64c25b0b455d9cafa128938ede01ef03009ee4abfb6b41e829b56cd7f20ae79f6b1e5c27c4dee5443922f0c116c933a4a73eefc05a55e25adb9a471885d1c4ce3260da8a3e013319712c123fa922f1fa1720f50592735451654031d4957996ecfb58c99c3eddbe1a7c64147dd75c454a0dfb4a6884665e2cfe592a339175c51cb1fb1886a7f4afd6df19f4bc00580f5cc442be30b4e061a62fe4cfa2529126f5eb7df222cfa866262e6b4b6da1f44ca2da81143e7f20724e224ab99f82709f36b68e92663e2293c031a39b38d790a430b20d30cdaf56bbdf28eebc2ef76295cea6e2a7ad503c5143b19d341175b72181124b81f5acb85210c0c5a47b4e0b51432d4ba6e4940974a4f8d9c328b8402e65bc331819aad2e2736ab09f23d76c27eec2528581eceb1e0286b66a0d3383b80b02aa5f7f3efb9a2c1d9c2e761c0e880147dc2e9c931ef205bdba1a9ee5de94116213f05bcb431580e3d5ff1395a371ee95b3b67364e6f0d5502ecb1f289281fe0fc28c112aaf5c75f0898d4313dfe69d773ea732c900c2e44547de0cde622621b5e5c19d9df124fd3e0fe24cdb6dc45d4fa097ffb8e9dc3afa50eebaa118dd507b835fd0685d4b62c410411068687a02e76283bcbac13ad72b309942466db98d47d8bf83b04251be92229a9b8c520725a0b664a8f0a0b9b66debe54a9951e66858a08a45da2a0ea1ccf346441be6bb9eda22fdc12d18fc66246dd91bc3159682c2863df5be5870c3abc84fc43282a73ef4b04099a3a8c56b9178acdd6a4e4e0033fac8c4afd60add88c7d89607dae14f8d83031d992e1c82c396ccf16fd56d3955cf7bf8389c384158832268256cd908e3cd2f35b957f2c6b97764cd1574a6728d7a6fa1eea6cf2a9acd06cd1a0031fd1c6bfa50e00ff39598e15aa40c57749ddc56fef188ab6b9e7e9c6053de9320689280600faed11a9619403f8b6fdd57eb7e34a62a730d4b318b2c35743437f5d8b9451f9eae1677b7c6e88e187cadb287fe21cb181308fe292055643ac81b8a7b88505f6788502930c896de9ae38baecb686ef719995246e9ab2d8e47dbb047d1d64ad349fe40403d1d0850e8385889962fee617cf1af671ea0de0d5b8c525c5d1164ec6c284218b26746f11754d6c3593c357deff06f87ee5a4d97a440001cf4f2dba81900f129bc6acce95e5d395bf39b1f88afc5eb3edd5878120b0cb1188a84fcb41001bd41311b2bbbdab843c2853c0bd6da089bcb6d87489b4c293d5368d5030c4c9cfcb955e104ca3a40d21b34976beb295c8a3c0121b75766a29468bc69fae392108ab11948993b562272b4828c92ec2b42c451fe7c0853c53ee1cbfd9f24b80b1173e2ab60563b5e16b63605ab35564a3e0a8c6841542ba1e8534b29b695649428e5ed43710e62429cfe4d305159fded68ad4d5730aad3b9f8b7e8fe7bf06eb003659d314a89e83f50b910c365361b3ba739a3144d5e18c950a25b70f8a39b1c3e2c76825f3a2053c945ef9425d0f89cbe89f0bad4f1e28d795c0c741f90de7e90aa25e5ca4f8830f6366865957d2172330f92e6bfa100f53518c8361698e0b5b8c241634b2193e5209333eb00c2f262688270fcf96aeffe6d5f72c7457ca58a72ce076cd62426059a774d87639dd7ac2297da422db9aac215222198c79a897447691d0fa7eea8b73c0fddbe7be5f32c3e58cc19ac7af150b30b7ba84fbbc8a583358b0b75e0d56939e56449680ed696b1d0ae8d686713556e48a352719586365a219015599bf838096cf11770b596ed4f84746bdfe15240e5cd56efc0c1699cbe734366a76036438750a35723122ad1bd4e97186d700e2c775681ca0874c4c9421ef179fccb769567032a49a2c3cbbe253c55a6e7c364e86f43b177e4753870fce7bac941a39cd619282764d306ba67d0d783c113588763f14e084ea068c72fb2833cbfff1099394dceaee8148805d2551fe0f241488d20477cf0555ffd2f1aa47134e833fa8244d520a8befcc36c95e9fabc51aa7dd86605a76c40631bb6d8ad5c54350f0707f7fb7125bcb8503a4f6f86366587b9e9b568549a62bb2005f4d97f89e7356845b9947590b7b42685d1315ea30254113cfea68d5e394c744b63937b368f9222a16427798d4abe5ccee2c09622b1dca0f29acc62195b126447a777f0adccf50b3784b39a4fe372bcfcbc511071bf7efb356535434e428beb2d3c55afe9f76e98ce24d2bd6c3cff5ecef2c3de8732ce286d6ee8a22ce0ef0757e494127fd6a54a05f1e6ac8412d1d252a12e3a3eeb64256d959df216a35531b6bdcd6e18de5b0b97e82d02016d84bb947e5965977a0e17d9e9eb994fa79bbf94440ecba2302c619c4666271116264899ed94953c09ea2687fba0d194c85fdb41fd401fd0769132bece9c7e1cf1cd848de9e8403303e61ffc4d00c3a74c459905f301b0e981971baf0a58ac4fab25ad926e875a7c83421556b309174ce62459b108af48bb79367a16c765f414b1d714207e0b7dbd54493cf4c686491254e547c1064bdda5ca9085683eaaaa209541059075f0340a5a37f66bea903f329f9f3b527ff1ec2be7a044646f5a999cb6416271ef1cf43d426e81ee3c6d860fddc28595292453f3d0deb65066cbe9c9ad9675f4a769188e5fb8079aebbf4d8c54d43b7f11246190d64baa68e4e6315939b5801373fc6486764e59280f3eaedc09e24984e69d5adf944584ad40ed15e2e26b576dc970547299f3815a0b9a27af058b6ec986c54f6e7dbd76fc9113c83677cf0a3312d4d3e0f3df28a6a01c94ccbd6a94a4407d14f032247f593a1bbfabcbc44b6b5b12f2a32aca144be68749019fa854c836efbc32b08dc45a2be3b1d639a990efaaf35b9a65f70ed02c6ed24477cd9deccdca5fa2cc5b5134f037bbf5daa52f87209c82432d848a3ad083350cdbb5470a79f58a1b4fc28daff06020e6f6c6251c93ce94fe7008dd431afca8d2d92a9cd6155a4373cf751fe615a5fac0be2a816855bf5715c081d1512cd8e544dc11de2d6c9816e5836aef9c4e860f210f11c0e7d02196211fd1811fae383473e524e2bc6923e66bf51f1c7dfabcaaebdb68a14c48c5149d9dccb2f395f309f6d1f9c33c01dbf02b17e4098330b82e3a70d7ee1ff7c1043ac2931b0c8a832a6b9bb975b80080eda23bff7700c3b22e0241790f030da6049f0e4a0e5944d35b57377b688f6a26c522cf9c666aa21d985f37e832326cdc1bc61cd705bffafd887a2604fb8e3fbad3d23b98a5dd6c9a8bc4020c5b87c50e0d6398dc47ae35b3eef83b63ab1298d17603ea492394838cd2d0228957b581c4621d5d551940b917ad071b40772dbbdc8a0e24ea1f94b90f115ab9fd4b0ad18307a7cd0c69d67c5ec84fb605fb97b4336511b655fa0ffbc6f97a85d1a2541da0a2611d89c6da2c8dc8aec03a6440d9cc5d8dd15435f06a37c4eac54796d1c96d5138da770d48eb80bc78ae50fdda70acc8f56c541d29bf7fbcb79d57fe6aa52a6a4fd32f7ee5427e34731eac570f346961ea767d0c0ff2bbec64211bccf9b4751763e09517763f728e37e49afdf5905875a8e482e75f365ac63db29ee9220fce995f2650e66204d9bc9deaa6b1c907ac3a997393c396d3c333f03920481e63039bc7b1544f45fa0157393e96b09bf4e9fe3f88083581b9e55faabc86df06358b74a0de0e850a1bcc8e628877418e953e0712ab21bf45246aede6b0bc3012211776f00533ba3c038b43892847ea18d52135d3f31e316a1e285492f4d58d1c34367682a63080ca9320c3d53fdcdc1c49a7bbe223ab39c73a4d74bf74e556f80f6ebacd86ae9740ed031aae15522dbc2c1cd120adea5d12fee6517aa33fc95399c7b299873da549f2a4b498c97b756b02cc0fedaac2bbcd6b51af4394df943720ca9a71bc078caa38273fd18913c8361daad10c730d131232ea5e599095d736cab4f6136597767d424051983785dafb0dffe9b1432fe4271a23043d75c8b6a99a1bd70d2c9ea04e29fe3ecfa9bee858af40a5c7c7286503081803a8a24da9ce41f988fc8996617a65054c97261516392cfab", 0x1000}], 0x3, 0x0, 0x0, 0x8854}, 0x4048085) syz_clone(0x40301000, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000002140)=0xffffffffffffffff, 0x4) bpf$ITER_CREATE(0x21, &(0x7f0000002180)={r0}, 0x8) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000000c0)={0x1, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000100)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r1}, 0x14) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000080)={&(0x7f0000000040)='./file0\x00', r1}, 0x10) 14:45:15 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 36) 14:45:15 executing program 1: sendmsg$tipc(0xffffffffffffffff, &(0x7f0000002100)={&(0x7f0000000000)=@id={0x1e, 0x3, 0x0, {0x4e23, 0x2}}, 0x10, &(0x7f00000020c0)=[{&(0x7f00000021c0)="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", 0x1056}, {&(0x7f0000001040)="fd5f46f1f6b62035bd3f88d4bac225a5beeefc0acdec264040c869636f76794f717fea17adf2c3cf31d0154e940ea453719e77cce46ed62e0f5232e448dee3a71259b69c", 0x44}, {&(0x7f00000010c0)="a4a7c70fd04b8aef616ca31ef2d783a1da340cc6c606f8bce633e0330b8e82d48ad939cd03b2bd1904be273a529d92907275af1c3f05fd1399069947fcec5b9ab9dfe78ee03d7267e07a56e487630e1caa93e704525dc3e4f9bc4789c859259a426796c3750b424f636946bb5e6c0e31ea2f08335bb0a41d53b0a59c52946456d933528fa24ae6ca476fbd1c9a6ea2492f2d1a5454f21a342bb02432bf83855e4aace816c66fdb38c1d9238244cfd4bd1aec198a9847ad3f568aed194c8733d9303b77d4b92ce4989961ef3cbf684015752a95682d16156ce2e3c994971481cebc584c2a271c0e84dde03dc9df8b9b0682a7d4169c5bfbc223f60e31b67b7cb887945e9558af740d0a6055934f03bdff765d7b88b10728bd72e831576b6a044642189d5ce2ae080324d2a7f7fe0ec89e9c685340fd598905a86fa243ff707f8fa13264ea1945f6c190e47d332a65f7b5fdaad88221a23f4364719842a1ef1c28c26274bc4e24003ffa06199df0c07f3f3aa038f3f4923b1b829f6f30d99a876f2800a8eb44d857085857dc34e77bad98da2d23cf79490d92564442492106e93f34bd753aaaf640faa2f7a398cfa4026761c5588b35195caf2decd916412c1dedd5e95290a0b4017e2b46c4fb6b1f6e3ce2cc87b50c626a25bda08b6d719996ab6896f8dc8ad9c9100696f6f7312348d4bb7efe51d1e9feb521a0d89267f5c1e2fb22859cbd1fd265a65ca52d9e57a480c5cc037865aefdb80b69a6478a0523f3bdb6e54f43742dce7b61e43c24579145860b8200cc58285775a4bcbfa5f0d198cf6d7ea2d50cfddc7747e66e286e47ae9ef4654932f7299ed4ea9b19275c729b5dc5baa9cdab92a0b008908a192491f65dcf283ac246e1e772da39252b73950a19746e3ba6b2ac3fdaa9dac1ce6b2afae5d81ce7f042ebf00ff19fd82042166678c2bc030debb0ee0dad29caac302393d31cc2c8976eda3ab7e9816cf2f43e45cff788ce967768bf1974a838834f5d081cdd1dad4044d1542ed1e2178fd0764770355b29fff22cb1957bbd26dc14e3c5d882ea4ccea40df4c02ac8b57bb6829380a495c5c1ac22bf8e44231c623cb2dbce14ad1de36a5f28f09475f2b5d231d4bc3da0bca44947971afaa566afca1b991d531e136659e110b145f67c50a5264d9ed335aa1ddbdd0638b36d9b4a41f7543fa4831bfed1ce21d386799de9a526cf43fd89bdf9a60533fe297eea1ce45be9f9d84e6cb1f6680589e260fbf51e6ad30ffb2b0ae9cb4a05b91ad23733f31131726cb46c9530b754ae7cecd9324efbcc2c4ac2362de7047cd58c25c93e18f813105044dda64c2f155fa5efcab9c958e5f547d810ec98add440d186722c723479e607eb7d60d292ea5f88a582d20abf8608c5c86285974d2aac0b06ca923d6851759305d5720c8482f6d7c5df2dc55418834ebd95430f9fb0ec63c3985a7d1ee358d92fcade1d5c50ac685b6448802987c521a54dd1e5e98b6eb48fe111230f14a143f2ad1e0e6f0437a66717ff4576832f162fa8ec3069e7a6a83c28a09979e2cc9d2507931b90ffa71046d5910b23f277c440403ad036757d79b317f58e25ec9b4675ef6cf65f109da57009f040d7189fde2891e0dfc4e4666e1e84538764f1df91fbf8631122bfaa75d97728058be19ef10e8978920d2f9b95eb15487afd9ac09294f52d5785d86770a64c25b0b455d9cafa128938ede01ef03009ee4abfb6b41e829b56cd7f20ae79f6b1e5c27c4dee5443922f0c116c933a4a73eefc05a55e25adb9a471885d1c4ce3260da8a3e013319712c123fa922f1fa1720f50592735451654031d4957996ecfb58c99c3eddbe1a7c64147dd75c454a0dfb4a6884665e2cfe592a339175c51cb1fb1886a7f4afd6df19f4bc00580f5cc442be30b4e061a62fe4cfa2529126f5eb7df222cfa866262e6b4b6da1f44ca2da81143e7f20724e224ab99f82709f36b68e92663e2293c031a39b38d790a430b20d30cdaf56bbdf28eebc2ef76295cea6e2a7ad503c5143b19d341175b72181124b81f5acb85210c0c5a47b4e0b51432d4ba6e4940974a4f8d9c328b8402e65bc331819aad2e2736ab09f23d76c27eec2528581eceb1e0286b66a0d3383b80b02aa5f7f3efb9a2c1d9c2e761c0e880147dc2e9c931ef205bdba1a9ee5de94116213f05bcb431580e3d5ff1395a371ee95b3b67364e6f0d5502ecb1f289281fe0fc28c112aaf5c75f0898d4313dfe69d773ea732c900c2e44547de0cde622621b5e5c19d9df124fd3e0fe24cdb6dc45d4fa097ffb8e9dc3afa50eebaa118dd507b835fd0685d4b62c410411068687a02e76283bcbac13ad72b309942466db98d47d8bf83b04251be92229a9b8c520725a0b664a8f0a0b9b66debe54a9951e66858a08a45da2a0ea1ccf346441be6bb9eda22fdc12d18fc66246dd91bc3159682c2863df5be5870c3abc84fc43282a73ef4b04099a3a8c56b9178acdd6a4e4e0033fac8c4afd60add88c7d89607dae14f8d83031d992e1c82c396ccf16fd56d3955cf7bf8389c384158832268256cd908e3cd2f35b957f2c6b97764cd1574a6728d7a6fa1eea6cf2a9acd06cd1a0031fd1c6bfa50e00ff39598e15aa40c57749ddc56fef188ab6b9e7e9c6053de9320689280600faed11a9619403f8b6fdd57eb7e34a62a730d4b318b2c35743437f5d8b9451f9eae1677b7c6e88e187cadb287fe21cb181308fe292055643ac81b8a7b88505f6788502930c896de9ae38baecb686ef719995246e9ab2d8e47dbb047d1d64ad349fe40403d1d0850e8385889962fee617cf1af671ea0de0d5b8c525c5d1164ec6c284218b26746f11754d6c3593c357deff06f87ee5a4d97a440001cf4f2dba81900f129bc6acce95e5d395bf39b1f88afc5eb3edd5878120b0cb1188a84fcb41001bd41311b2bbbdab843c2853c0bd6da089bcb6d87489b4c293d5368d5030c4c9cfcb955e104ca3a40d21b34976beb295c8a3c0121b75766a29468bc69fae392108ab11948993b562272b4828c92ec2b42c451fe7c0853c53ee1cbfd9f24b80b1173e2ab60563b5e16b63605ab35564a3e0a8c6841542ba1e8534b29b695649428e5ed43710e62429cfe4d305159fded68ad4d5730aad3b9f8b7e8fe7bf06eb003659d314a89e83f50b910c365361b3ba739a3144d5e18c950a25b70f8a39b1c3e2c76825f3a2053c945ef9425d0f89cbe89f0bad4f1e28d795c0c741f90de7e90aa25e5ca4f8830f6366865957d2172330f92e6bfa100f53518c8361698e0b5b8c241634b2193e5209333eb00c2f262688270fcf96aeffe6d5f72c7457ca58a72ce076cd62426059a774d87639dd7ac2297da422db9aac215222198c79a897447691d0fa7eea8b73c0fddbe7be5f32c3e58cc19ac7af150b30b7ba84fbbc8a583358b0b75e0d56939e56449680ed696b1d0ae8d686713556e48a352719586365a219015599bf838096cf11770b596ed4f84746bdfe15240e5cd56efc0c1699cbe734366a76036438750a35723122ad1bd4e97186d700e2c775681ca0874c4c9421ef179fccb769567032a49a2c3cbbe253c55a6e7c364e86f43b177e4753870fce7bac941a39cd619282764d306ba67d0d783c113588763f14e084ea068c72fb2833cbfff1099394dceaee8148805d2551fe0f241488d20477cf0555ffd2f1aa47134e833fa8244d520a8befcc36c95e9fabc51aa7dd86605a76c40631bb6d8ad5c54350f0707f7fb7125bcb8503a4f6f86366587b9e9b568549a62bb2005f4d97f89e7356845b9947590b7b42685d1315ea30254113cfea68d5e394c744b63937b368f9222a16427798d4abe5ccee2c09622b1dca0f29acc62195b126447a777f0adccf50b3784b39a4fe372bcfcbc511071bf7efb356535434e428beb2d3c55afe9f76e98ce24d2bd6c3cff5ecef2c3de8732ce286d6ee8a22ce0ef0757e494127fd6a54a05f1e6ac8412d1d252a12e3a3eeb64256d959df216a35531b6bdcd6e18de5b0b97e82d02016d84bb947e5965977a0e17d9e9eb994fa79bbf94440ecba2302c619c4666271116264899ed94953c09ea2687fba0d194c85fdb41fd401fd0769132bece9c7e1cf1cd848de9e8403303e61ffc4d00c3a74c459905f301b0e981971baf0a58ac4fab25ad926e875a7c83421556b309174ce62459b108af48bb79367a16c765f414b1d714207e0b7dbd54493cf4c686491254e547c1064bdda5ca9085683eaaaa209541059075f0340a5a37f66bea903f329f9f3b527ff1ec2be7a044646f5a999cb6416271ef1cf43d426e81ee3c6d860fddc28595292453f3d0deb65066cbe9c9ad9675f4a769188e5fb8079aebbf4d8c54d43b7f11246190d64baa68e4e6315939b5801373fc6486764e59280f3eaedc09e24984e69d5adf944584ad40ed15e2e26b576dc970547299f3815a0b9a27af058b6ec986c54f6e7dbd76fc9113c83677cf0a3312d4d3e0f3df28a6a01c94ccbd6a94a4407d14f032247f593a1bbfabcbc44b6b5b12f2a32aca144be68749019fa854c836efbc32b08dc45a2be3b1d639a990efaaf35b9a65f70ed02c6ed24477cd9deccdca5fa2cc5b5134f037bbf5daa52f87209c82432d848a3ad083350cdbb5470a79f58a1b4fc28daff06020e6f6c6251c93ce94fe7008dd431afca8d2d92a9cd6155a4373cf751fe615a5fac0be2a816855bf5715c081d1512cd8e544dc11de2d6c9816e5836aef9c4e860f210f11c0e7d02196211fd1811fae383473e524e2bc6923e66bf51f1c7dfabcaaebdb68a14c48c5149d9dccb2f395f309f6d1f9c33c01dbf02b17e4098330b82e3a70d7ee1ff7c1043ac2931b0c8a832a6b9bb975b80080eda23bff7700c3b22e0241790f030da6049f0e4a0e5944d35b57377b688f6a26c522cf9c666aa21d985f37e832326cdc1bc61cd705bffafd887a2604fb8e3fbad3d23b98a5dd6c9a8bc4020c5b87c50e0d6398dc47ae35b3eef83b63ab1298d17603ea492394838cd2d0228957b581c4621d5d551940b917ad071b40772dbbdc8a0e24ea1f94b90f115ab9fd4b0ad18307a7cd0c69d67c5ec84fb605fb97b4336511b655fa0ffbc6f97a85d1a2541da0a2611d89c6da2c8dc8aec03a6440d9cc5d8dd15435f06a37c4eac54796d1c96d5138da770d48eb80bc78ae50fdda70acc8f56c541d29bf7fbcb79d57fe6aa52a6a4fd32f7ee5427e34731eac570f346961ea767d0c0ff2bbec64211bccf9b4751763e09517763f728e37e49afdf5905875a8e482e75f365ac63db29ee9220fce995f2650e66204d9bc9deaa6b1c907ac3a997393c396d3c333f03920481e63039bc7b1544f45fa0157393e96b09bf4e9fe3f88083581b9e55faabc86df06358b74a0de0e850a1bcc8e628877418e953e0712ab21bf45246aede6b0bc3012211776f00533ba3c038b43892847ea18d52135d3f31e316a1e285492f4d58d1c34367682a63080ca9320c3d53fdcdc1c49a7bbe223ab39c73a4d74bf74e556f80f6ebacd86ae9740ed031aae15522dbc2c1cd120adea5d12fee6517aa33fc95399c7b299873da549f2a4b498c97b756b02cc0fedaac2bbcd6b51af4394df943720ca9a71bc078caa38273fd18913c8361daad10c730d131232ea5e599095d736cab4f6136597767d424051983785dafb0dffe9b1432fe4271a23043d75c8b6a99a1bd70d2c9ea04e29fe3ecfa9bee858af40a5c7c7286503081803a8a24da9ce41f988fc8996617a65054c97261516392cfab", 0x1000}], 0x3, 0x0, 0x0, 0x8854}, 0x4048085) (async) syz_clone(0x40301000, 0x0, 0x0, 0x0, 0x0, 0x0) (async) r0 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000002140)=0xffffffffffffffff, 0x4) bpf$ITER_CREATE(0x21, &(0x7f0000002180)={r0}, 0x8) (async) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000000c0)={0x1, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000100)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r1}, 0x14) (async) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000080)={&(0x7f0000000040)='./file0\x00', r1}, 0x10) 14:45:15 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f0000000080)) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) ioctl$TUNSETPERSIST(r1, 0x400454cb, 0x1) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:15 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) close(0xffffffffffffffff) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) (async, rerun: 32) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)) (rerun: 32) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) sendmsg$inet(r1, &(0x7f00000014c0)={&(0x7f0000000000)={0x2, 0x4e22, @remote}, 0x10, &(0x7f0000001340)=[{&(0x7f0000000040)="7f809a584ba1dbb4340ec853617a768b3c7131538396bd77cb552a75f8909ac32c282111935665e785c2c116cadd877b5800db83e6e877b55ee0d58ad80f6ea0ed980033dd056d0793e07e7787c61f9fc9962e56d8f11af2016fb43ca40b2c995e47051624b72c8fc4cf5d181f366e01848135f3300eefc7f1bdd2fd65b27abb0047df6f766239801410a330f1d2f45915c333b11a4c14cd32d53624569aea735c11451b2cab1d800cbe0075a3964dafb370f56e9f30f2eceda206b667995e264de018dfd5f5c8b15fcd3c1634ddc554a1c9b1cd0e99d7d3b92db6a4cffbbcbd7473", 0xe2}, {&(0x7f0000000140)="09042d7f219a438b064778d7f58ab7aee4be9454e27f0b8c1c87e276eb891313cddc9562adcfd931a9dd70e9bb877a89ddd079b497fd5592b6e6d6d98890eace32346efbacc03bdbea47591e3b2a548d98643f3dad8b40f5ff5e5e5981d0a3679543", 0x62}, {&(0x7f00000001c0)="6e7638839773217c281e4901bbafe20cb398e6179f9a14f8b9e4a6c77eaa0572c1fd2308405fd115dd8b41b4e466b972620b03b2fd632a4e0544a0af39a2e78531749ff44faa3a740dff616277d8233d54ed423ce8d9562753a7ff1a6c44cd8b5e24e9b2178ac5174617a62ba8c785812e0882ac6910e6344b849fa57204778be29e9a6df9e38952eefeeac7fe8d7a6ddce3b0709c1801837165a68d84eaa99945d31730c31ae960d424772a48f2a667468fc4bee0d247c40422248db2f81fd30bf17505b0419b5b0bae52d5105c17ca369e174382e02e3801a89e54498a51c5824f1dd3029ff08789a8e9d4ada228bf62de797f29f0974fdd52", 0xfa}, {&(0x7f00000002c0)="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", 0x1000}, {&(0x7f00000012c0)="8c21d0577aa58b9ef11bf3b925d528ea3a66eb0671b440389219c922816a0a26465c4e4bc86b03ec94e20028f4f83f7d639e80a32b853632311e5f8c9dc542239b49dc0df11d9fd35f2552f1f69ed88eeedf56ef6dda", 0x56}], 0x5, &(0x7f00000013c0)=ANY=[@ANYBLOB="1c000869997b0c040000000000000000", @ANYRES32=0x0, @ANYBLOB="ac1414aa7f000001000000003c000000000000000000000007000000442c3043e000000100000feb0000000000000005ac1e010100000113ac1e0001000000020a010101000000b60000000014000000000000000000000002000000ff7f000000000000140000000000000000000000020000000500000000000000"], 0x90}, 0x80) 14:45:15 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1047.297953][T11131] FAULT_INJECTION: forcing a failure. [ 1047.297953][T11131] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1047.311374][T11131] CPU: 1 PID: 11131 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1047.321439][T11131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1047.331336][T11131] Call Trace: [ 1047.334460][T11131] [ 1047.337343][T11131] dump_stack_lvl+0x151/0x1b7 [ 1047.341870][T11131] ? bfq_pos_tree_add_move+0x43e/0x43e 14:45:15 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:15 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f0000000080)) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) ioctl$TUNSETPERSIST(r1, 0x400454cb, 0x1) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f0000000080)) (async) openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) (async) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) (async) ioctl$TUNSETPERSIST(r1, 0x400454cb, 0x1) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) [ 1047.347241][T11131] dump_stack+0x15/0x17 [ 1047.351230][T11131] should_fail+0x3c0/0x510 [ 1047.355656][T11131] should_fail_alloc_page+0x58/0x70 [ 1047.360687][T11131] __alloc_pages+0x1de/0x7c0 [ 1047.365133][T11131] ? __count_vm_events+0x30/0x30 [ 1047.369888][T11131] ? __this_cpu_preempt_check+0x13/0x20 [ 1047.375269][T11131] ? __mod_node_page_state+0xac/0xf0 [ 1047.380407][T11131] pte_alloc_one+0x73/0x1b0 [ 1047.384733][T11131] ? pfn_modify_allowed+0x2e0/0x2e0 [ 1047.389767][T11131] __pte_alloc+0x86/0x350 [ 1047.393931][T11131] ? free_pgtables+0x210/0x210 [ 1047.398538][T11131] ? _raw_spin_lock+0xa3/0x1b0 [ 1047.403131][T11131] ? _raw_spin_trylock_bh+0x1d0/0x1d0 [ 1047.408430][T11131] ? __kernel_text_address+0x9a/0x110 [ 1047.414501][T11131] copy_pte_range+0x1b1f/0x20b0 [ 1047.419322][T11131] ? __kunmap_atomic+0x80/0x80 [ 1047.424199][T11131] ? __kasan_slab_alloc+0xc4/0xe0 [ 1047.429077][T11131] ? __kasan_slab_alloc+0xb2/0xe0 [ 1047.433988][T11131] ? kmem_cache_alloc+0x189/0x2f0 [ 1047.438963][T11131] ? vm_area_dup+0x26/0x1d0 [ 1047.443397][T11131] ? dup_mmap+0x6b8/0xea0 [ 1047.447559][T11131] ? dup_mm+0x91/0x330 [ 1047.451466][T11131] ? copy_mm+0x108/0x1b0 [ 1047.455543][T11131] ? copy_process+0x1295/0x3250 [ 1047.460235][T11131] ? kernel_clone+0x22d/0x990 [ 1047.464855][T11131] ? __x64_sys_clone+0x289/0x310 [ 1047.469602][T11131] ? do_syscall_64+0x44/0xd0 [ 1047.474045][T11131] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1047.480023][T11131] copy_page_range+0xc1e/0x1090 [ 1047.484713][T11131] ? pfn_valid+0x1e0/0x1e0 [ 1047.488961][T11131] dup_mmap+0x99f/0xea0 [ 1047.493042][T11131] ? __delayed_free_task+0x20/0x20 [ 1047.498162][T11131] ? mm_init+0x807/0x960 [ 1047.502417][T11131] dup_mm+0x91/0x330 [ 1047.506147][T11131] copy_mm+0x108/0x1b0 [ 1047.510066][T11131] copy_process+0x1295/0x3250 [ 1047.514713][T11131] ? proc_fail_nth_write+0x213/0x290 [ 1047.519780][T11131] ? proc_fail_nth_read+0x220/0x220 [ 1047.524808][T11131] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1047.529931][T11131] ? vfs_write+0x9af/0x1050 [ 1047.534290][T11131] ? vmacache_update+0xb7/0x120 [ 1047.539051][T11131] kernel_clone+0x22d/0x990 [ 1047.543391][T11131] ? file_end_write+0x1b0/0x1b0 [ 1047.548164][T11131] ? __kasan_check_write+0x14/0x20 [ 1047.553137][T11131] ? create_io_thread+0x1e0/0x1e0 [ 1047.557975][T11131] ? __mutex_lock_slowpath+0x10/0x10 [ 1047.563270][T11131] __x64_sys_clone+0x289/0x310 [ 1047.567870][T11131] ? __do_sys_vfork+0x130/0x130 [ 1047.572762][T11131] ? debug_smp_processor_id+0x17/0x20 [ 1047.578036][T11131] do_syscall_64+0x44/0xd0 [ 1047.582232][T11131] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1047.587962][T11131] RIP: 0033:0x7f0bd76b80d9 [ 1047.592218][T11131] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1047.611829][T11131] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1047.620339][T11131] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1047.629021][T11131] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1047.636833][T11131] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1047.644639][T11131] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1047.652453][T11131] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1047.660265][T11131] 14:45:16 executing program 3: r0 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000040)={0x0, 0x5, 0x10}, 0xc) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={@map=r0, 0xffffffffffffffff, 0x27}, 0x10) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r2 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000180)={0x0, 0x4, 0x10}, 0xc) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000240)={r2, 0x58, &(0x7f00000001c0)}, 0x10) r3 = perf_event_open$cgroup(&(0x7f00000000c0)={0x6, 0x80, 0x4, 0x40, 0x9d, 0x2, 0x0, 0x10000, 0xe4431, 0xa, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x8, 0x2, @perf_config_ext={0x10001, 0x100000001}, 0x808, 0x0, 0x6, 0x4, 0x32f, 0x0, 0x1f, 0x0, 0x4, 0x0, 0x8}, r1, 0x0, 0xffffffffffffffff, 0x8) ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000140)='./cgroup/syz0\x00') bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r1, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:16 executing program 1: sendmsg$tipc(0xffffffffffffffff, &(0x7f0000002100)={&(0x7f0000000000)=@id={0x1e, 0x3, 0x0, {0x4e23, 0x2}}, 0x10, &(0x7f00000020c0)=[{&(0x7f00000021c0)="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", 0x1056}, {&(0x7f0000001040)="fd5f46f1f6b62035bd3f88d4bac225a5beeefc0acdec264040c869636f76794f717fea17adf2c3cf31d0154e940ea453719e77cce46ed62e0f5232e448dee3a71259b69c", 0x44}, {&(0x7f00000010c0)="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", 0x1000}], 0x3, 0x0, 0x0, 0x8854}, 0x4048085) (async) syz_clone(0x40301000, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000002140)=0xffffffffffffffff, 0x4) bpf$ITER_CREATE(0x21, &(0x7f0000002180)={r0}, 0x8) (async, rerun: 64) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000000c0)={0x1, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000100)}, 0x80) (rerun: 64) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r1}, 0x14) (async) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000080)={&(0x7f0000000040)='./file0\x00', r1}, 0x10) 14:45:16 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='blkio.bfq.io_service_bytes\x00', 0x0, 0x0) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x44, 0x0, 0x0, 0x0, 0xfffffffffffffff7}, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000640)={r0, 0xe0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x7, &(0x7f00000003c0)=[0x0, 0x0], &(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000440)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f0000000480), &(0x7f00000004c0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000500)}}, 0x10) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000680)={r1, r2, 0x25, 0x1a}, 0x10) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r3, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r3, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r4 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r4, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r4, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@bloom_filter={0x1e, 0x3, 0x21, 0x4, 0x1100, r0, 0x5, '\x00', 0x0, r0, 0x3, 0x5, 0x2, 0xb}, 0x48) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r5, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_tracing={0x1a, 0x4, &(0x7f0000000740)=ANY=[], &(0x7f00000000c0)='syzkaller\x00', 0x1, 0x8a, &(0x7f0000000100)=""/138, 0x41100, 0x2, '\x00', 0x0, 0x17, r3, 0x8, &(0x7f00000001c0)={0x1, 0x4}, 0x8, 0x10, &(0x7f0000000200)={0x4, 0xf, 0x0, 0x7fff}, 0x10, 0x2fb66, r0, 0x0, &(0x7f00000002c0)}, 0x80) 14:45:16 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:16 executing program 5: ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0xe07) r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000080)=ANY=[@ANYBLOB="06000000000000000000000000000000000000000000d0feeef3dc00"/37]) ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0x4d) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:16 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 37) 14:45:16 executing program 3: r0 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000040)={0x0, 0x5, 0x10}, 0xc) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={@map=r0, 0xffffffffffffffff, 0x27}, 0x10) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r2 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000180)={0x0, 0x4, 0x10}, 0xc) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000240)={r2, 0x58, &(0x7f00000001c0)}, 0x10) r3 = perf_event_open$cgroup(&(0x7f00000000c0)={0x6, 0x80, 0x4, 0x40, 0x9d, 0x2, 0x0, 0x10000, 0xe4431, 0xa, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x8, 0x2, @perf_config_ext={0x10001, 0x100000001}, 0x808, 0x0, 0x6, 0x4, 0x32f, 0x0, 0x1f, 0x0, 0x4, 0x0, 0x8}, r1, 0x0, 0xffffffffffffffff, 0x8) ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000140)='./cgroup/syz0\x00') bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r1, 0x12, 0x0, 0x0, 0x0}, 0x20) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000040)={0x0, 0x5, 0x10}, 0xc) (async) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={@map=r0, 0xffffffffffffffff, 0x27}, 0x10) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000180)={0x0, 0x4, 0x10}, 0xc) (async) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000240)={r2, 0x58, &(0x7f00000001c0)}, 0x10) (async) perf_event_open$cgroup(&(0x7f00000000c0)={0x6, 0x80, 0x4, 0x40, 0x9d, 0x2, 0x0, 0x10000, 0xe4431, 0xa, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x8, 0x2, @perf_config_ext={0x10001, 0x100000001}, 0x808, 0x0, 0x6, 0x4, 0x32f, 0x0, 0x1f, 0x0, 0x4, 0x0, 0x8}, r1, 0x0, 0xffffffffffffffff, 0x8) (async) ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000140)='./cgroup/syz0\x00') (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r1, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) 14:45:16 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:16 executing program 1: syz_clone(0x100, 0x0, 0xfffffed8, 0x0, 0x0, 0x0) 14:45:16 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='blkio.bfq.io_service_bytes\x00', 0x0, 0x0) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x44, 0x0, 0x0, 0x0, 0xfffffffffffffff7}, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000640)={r0, 0xe0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x7, &(0x7f00000003c0)=[0x0, 0x0], &(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000440)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f0000000480), &(0x7f00000004c0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000500)}}, 0x10) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000680)={r1, r2, 0x25, 0x1a}, 0x10) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r3, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r3, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) r4 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r4, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r4, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@bloom_filter={0x1e, 0x3, 0x21, 0x4, 0x1100, r0, 0x5, '\x00', 0x0, r0, 0x3, 0x5, 0x2, 0xb}, 0x48) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r5, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) (async) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_tracing={0x1a, 0x4, &(0x7f0000000740)=ANY=[], &(0x7f00000000c0)='syzkaller\x00', 0x1, 0x8a, &(0x7f0000000100)=""/138, 0x41100, 0x2, '\x00', 0x0, 0x17, r3, 0x8, &(0x7f00000001c0)={0x1, 0x4}, 0x8, 0x10, &(0x7f0000000200)={0x4, 0xf, 0x0, 0x7fff}, 0x10, 0x2fb66, r0, 0x0, &(0x7f00000002c0)}, 0x80) 14:45:16 executing program 3: r0 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000040)={0x0, 0x5, 0x10}, 0xc) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={@map=r0, 0xffffffffffffffff, 0x27}, 0x10) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r2 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000180)={0x0, 0x4, 0x10}, 0xc) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000240)={r2, 0x58, &(0x7f00000001c0)}, 0x10) r3 = perf_event_open$cgroup(&(0x7f00000000c0)={0x6, 0x80, 0x4, 0x40, 0x9d, 0x2, 0x0, 0x10000, 0xe4431, 0xa, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x8, 0x2, @perf_config_ext={0x10001, 0x100000001}, 0x808, 0x0, 0x6, 0x4, 0x32f, 0x0, 0x1f, 0x0, 0x4, 0x0, 0x8}, r1, 0x0, 0xffffffffffffffff, 0x8) ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000140)='./cgroup/syz0\x00') bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r1, 0x12, 0x0, 0x0, 0x0}, 0x20) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000040)={0x0, 0x5, 0x10}, 0xc) (async) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={@map=r0, 0xffffffffffffffff, 0x27}, 0x10) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000180)={0x0, 0x4, 0x10}, 0xc) (async) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000240)={r2, 0x58, &(0x7f00000001c0)}, 0x10) (async) perf_event_open$cgroup(&(0x7f00000000c0)={0x6, 0x80, 0x4, 0x40, 0x9d, 0x2, 0x0, 0x10000, 0xe4431, 0xa, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x8, 0x2, @perf_config_ext={0x10001, 0x100000001}, 0x808, 0x0, 0x6, 0x4, 0x32f, 0x0, 0x1f, 0x0, 0x4, 0x0, 0x8}, r1, 0x0, 0xffffffffffffffff, 0x8) (async) ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000140)='./cgroup/syz0\x00') (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r1, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) [ 1048.185845][T11169] FAULT_INJECTION: forcing a failure. [ 1048.185845][T11169] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1048.210551][T11169] CPU: 1 PID: 11169 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1048.220623][T11169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1048.230522][T11169] Call Trace: 14:45:16 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:16 executing program 1: syz_clone(0x100, 0x0, 0xfffffed8, 0x0, 0x0, 0x0) 14:45:16 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='blkio.bfq.io_service_bytes\x00', 0x0, 0x0) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x44, 0x0, 0x0, 0x0, 0xfffffffffffffff7}, 0x0) (async) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000640)={r0, 0xe0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x7, &(0x7f00000003c0)=[0x0, 0x0], &(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000440)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f0000000480), &(0x7f00000004c0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000500)}}, 0x10) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000680)={r1, r2, 0x25, 0x1a}, 0x10) (async) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r3, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r3, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r4 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r4, 0x800454cf, &(0x7f0000000040)) (async, rerun: 64) openat$cgroup_ro(r4, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (rerun: 64) bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@bloom_filter={0x1e, 0x3, 0x21, 0x4, 0x1100, r0, 0x5, '\x00', 0x0, r0, 0x3, 0x5, 0x2, 0xb}, 0x48) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r5, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) (async) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_tracing={0x1a, 0x4, &(0x7f0000000740)=ANY=[], &(0x7f00000000c0)='syzkaller\x00', 0x1, 0x8a, &(0x7f0000000100)=""/138, 0x41100, 0x2, '\x00', 0x0, 0x17, r3, 0x8, &(0x7f00000001c0)={0x1, 0x4}, 0x8, 0x10, &(0x7f0000000200)={0x4, 0xf, 0x0, 0x7fff}, 0x10, 0x2fb66, r0, 0x0, &(0x7f00000002c0)}, 0x80) 14:45:16 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:16 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) recvmsg$unix(0xffffffffffffffff, &(0x7f0000001300)={&(0x7f0000000000)=@abs, 0x6e, &(0x7f0000001280)}, 0x10162) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) [ 1048.233649][T11169] [ 1048.236423][T11169] dump_stack_lvl+0x151/0x1b7 [ 1048.240937][T11169] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1048.246230][T11169] ? stack_trace_save+0x1f0/0x1f0 [ 1048.251092][T11169] ? __kernel_text_address+0x9a/0x110 [ 1048.256299][T11169] dump_stack+0x15/0x17 [ 1048.260289][T11169] should_fail+0x3c0/0x510 [ 1048.264543][T11169] should_fail_alloc_page+0x58/0x70 [ 1048.269580][T11169] __alloc_pages+0x1de/0x7c0 [ 1048.274007][T11169] ? stack_trace_save+0x12d/0x1f0 [ 1048.278867][T11169] ? stack_trace_snprint+0x100/0x100 [ 1048.283986][T11169] ? __count_vm_events+0x30/0x30 [ 1048.288762][T11169] ? __kasan_slab_alloc+0xc4/0xe0 [ 1048.293619][T11169] ? __kasan_slab_alloc+0xb2/0xe0 [ 1048.298485][T11169] ? kmem_cache_alloc+0x189/0x2f0 [ 1048.303346][T11169] ? anon_vma_fork+0x1b9/0x4f0 [ 1048.307945][T11169] get_zeroed_page+0x19/0x40 [ 1048.312372][T11169] __pud_alloc+0x8b/0x260 [ 1048.316535][T11169] ? do_handle_mm_fault+0x2370/0x2370 [ 1048.321746][T11169] copy_page_range+0xd9e/0x1090 [ 1048.326435][T11169] ? pfn_valid+0x1e0/0x1e0 [ 1048.330689][T11169] dup_mmap+0x99f/0xea0 [ 1048.334678][T11169] ? __delayed_free_task+0x20/0x20 [ 1048.339621][T11169] ? mm_init+0x807/0x960 [ 1048.343714][T11169] dup_mm+0x91/0x330 [ 1048.347436][T11169] copy_mm+0x108/0x1b0 [ 1048.351344][T11169] copy_process+0x1295/0x3250 [ 1048.355880][T11169] ? proc_fail_nth_write+0x213/0x290 [ 1048.360983][T11169] ? proc_fail_nth_read+0x220/0x220 [ 1048.366014][T11169] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1048.370960][T11169] ? vfs_write+0x9af/0x1050 [ 1048.375300][T11169] ? vmacache_update+0xb7/0x120 [ 1048.379989][T11169] kernel_clone+0x22d/0x990 [ 1048.384329][T11169] ? file_end_write+0x1b0/0x1b0 [ 1048.389013][T11169] ? __kasan_check_write+0x14/0x20 [ 1048.393963][T11169] ? create_io_thread+0x1e0/0x1e0 [ 1048.398832][T11169] ? __mutex_lock_slowpath+0x10/0x10 [ 1048.403957][T11169] __x64_sys_clone+0x289/0x310 [ 1048.408546][T11169] ? __do_sys_vfork+0x130/0x130 [ 1048.413245][T11169] ? debug_smp_processor_id+0x17/0x20 [ 1048.418452][T11169] do_syscall_64+0x44/0xd0 [ 1048.422786][T11169] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1048.428682][T11169] RIP: 0033:0x7f0bd76b80d9 [ 1048.433032][T11169] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1048.452469][T11169] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1048.460729][T11169] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1048.468539][T11169] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1048.476336][T11169] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 14:45:17 executing program 5: ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0xe07) r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000080)=ANY=[@ANYBLOB="06000000000000000000000000000000000000000000d0feeef3dc00"/37]) ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0x4d) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0xe07) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000080)=ANY=[@ANYBLOB="06000000000000000000000000000000000000000000d0feeef3dc00"/37]) (async) ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0x4d) (async) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) (async) 14:45:17 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 38) 14:45:17 executing program 1: syz_clone(0x100, 0x0, 0xfffffed8, 0x0, 0x0, 0x0) 14:45:17 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000001000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:17 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) (async) recvmsg$unix(0xffffffffffffffff, &(0x7f0000001300)={&(0x7f0000000000)=@abs, 0x6e, &(0x7f0000001280)}, 0x10162) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:17 executing program 3: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x1, 0x8, &(0x7f0000000080)=@raw=[@generic={0x9, 0xa, 0x8, 0x1f, 0x7}, @generic={0x2, 0x0, 0x7, 0x8a2c, 0x2}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @map_val={0x18, 0x3, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, @ldst={0x0, 0x1, 0x0, 0x0, 0x0, 0x50, 0xffffffffffffffff}, @map_val={0x18, 0xc, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8}], &(0x7f00000003c0)='syzkaller\x00', 0xef, 0x70, &(0x7f0000000100)=""/112, 0x41000, 0x24, '\x00', 0x0, 0x6, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x9, 0x1}, 0x8, 0x10, &(0x7f00000001c0)={0x2, 0xb, 0x5, 0x1}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, &(0x7f0000000200)=[0xffffffffffffffff]}, 0x80) socketpair(0xb, 0x6, 0x8, &(0x7f0000000240)={0xffffffffffffffff}) recvmsg(r2, &(0x7f0000000600)={&(0x7f0000000340)=@nfc, 0x80, &(0x7f0000000580)=[{&(0x7f00000003c0)}, {&(0x7f0000000400)=""/83, 0x53}, {&(0x7f0000000480)=""/109, 0x6d}, {&(0x7f0000000500)=""/116, 0x74}], 0x4, &(0x7f00000005c0)=""/21, 0x15}, 0x10202) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r3, 0x12, 0x0, 0x0, 0x0}, 0x20) [ 1048.484237][T11169] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1048.492056][T11169] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1048.499954][T11169] 14:45:17 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:17 executing program 1: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x40082404, &(0x7f0000000080)=0x1f) 14:45:17 executing program 3: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x1, 0x8, &(0x7f0000000080)=@raw=[@generic={0x9, 0xa, 0x8, 0x1f, 0x7}, @generic={0x2, 0x0, 0x7, 0x8a2c, 0x2}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @map_val={0x18, 0x3, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, @ldst={0x0, 0x1, 0x0, 0x0, 0x0, 0x50, 0xffffffffffffffff}, @map_val={0x18, 0xc, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8}], &(0x7f00000003c0)='syzkaller\x00', 0xef, 0x70, &(0x7f0000000100)=""/112, 0x41000, 0x24, '\x00', 0x0, 0x6, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x9, 0x1}, 0x8, 0x10, &(0x7f00000001c0)={0x2, 0xb, 0x5, 0x1}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, &(0x7f0000000200)=[0xffffffffffffffff]}, 0x80) (async) socketpair(0xb, 0x6, 0x8, &(0x7f0000000240)={0xffffffffffffffff}) recvmsg(r2, &(0x7f0000000600)={&(0x7f0000000340)=@nfc, 0x80, &(0x7f0000000580)=[{&(0x7f00000003c0)}, {&(0x7f0000000400)=""/83, 0x53}, {&(0x7f0000000480)=""/109, 0x6d}, {&(0x7f0000000500)=""/116, 0x74}], 0x4, &(0x7f00000005c0)=""/21, 0x15}, 0x10202) (async) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) (async) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r3, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:17 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) recvmsg$unix(0xffffffffffffffff, &(0x7f0000001300)={&(0x7f0000000000)=@abs, 0x6e, &(0x7f0000001280)}, 0x10162) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) (async) recvmsg$unix(0xffffffffffffffff, &(0x7f0000001300)={&(0x7f0000000000)=@abs, 0x6e, &(0x7f0000001280)}, 0x10162) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) 14:45:17 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1048.550010][ T30] audit: type=1400 audit(1670251517.060:123): avc: denied { create } for pid=11233 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1 [ 1048.555323][T11229] FAULT_INJECTION: forcing a failure. [ 1048.555323][T11229] name fail_page_alloc, interval 1, probability 0, space 0, times 0 14:45:17 executing program 1: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x40082404, &(0x7f0000000080)=0x1f) [ 1048.607582][T11229] CPU: 0 PID: 11229 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1048.617659][T11229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1048.627564][T11229] Call Trace: [ 1048.630677][T11229] [ 1048.633453][T11229] dump_stack_lvl+0x151/0x1b7 [ 1048.637968][T11229] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1048.643271][T11229] ? stack_trace_save+0x1f0/0x1f0 [ 1048.648136][T11229] ? __kernel_text_address+0x9a/0x110 [ 1048.653334][T11229] dump_stack+0x15/0x17 [ 1048.657333][T11229] should_fail+0x3c0/0x510 [ 1048.661580][T11229] should_fail_alloc_page+0x58/0x70 [ 1048.666884][T11229] __alloc_pages+0x1de/0x7c0 [ 1048.671308][T11229] ? stack_trace_save+0x12d/0x1f0 [ 1048.676167][T11229] ? stack_trace_snprint+0x100/0x100 [ 1048.681288][T11229] ? __count_vm_events+0x30/0x30 [ 1048.686060][T11229] ? __kasan_slab_alloc+0xc4/0xe0 [ 1048.690927][T11229] ? __kasan_slab_alloc+0xb2/0xe0 [ 1048.695875][T11229] ? kmem_cache_alloc+0x189/0x2f0 [ 1048.700771][T11229] ? anon_vma_fork+0x1b9/0x4f0 [ 1048.705337][T11229] get_zeroed_page+0x19/0x40 [ 1048.709764][T11229] __pud_alloc+0x8b/0x260 [ 1048.713928][T11229] ? do_handle_mm_fault+0x2370/0x2370 [ 1048.719141][T11229] copy_page_range+0xd9e/0x1090 [ 1048.723925][T11229] ? pfn_valid+0x1e0/0x1e0 [ 1048.728165][T11229] dup_mmap+0x99f/0xea0 [ 1048.732154][T11229] ? __delayed_free_task+0x20/0x20 [ 1048.737108][T11229] ? mm_init+0x807/0x960 [ 1048.741181][T11229] dup_mm+0x91/0x330 [ 1048.744914][T11229] copy_mm+0x108/0x1b0 [ 1048.748823][T11229] copy_process+0x1295/0x3250 [ 1048.753332][T11229] ? proc_fail_nth_write+0x213/0x290 [ 1048.758455][T11229] ? proc_fail_nth_read+0x220/0x220 [ 1048.763591][T11229] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1048.768526][T11229] ? vfs_write+0x9af/0x1050 [ 1048.772867][T11229] ? vmacache_update+0xb7/0x120 [ 1048.777695][T11229] kernel_clone+0x22d/0x990 [ 1048.782032][T11229] ? file_end_write+0x1b0/0x1b0 [ 1048.786967][T11229] ? __kasan_check_write+0x14/0x20 [ 1048.791920][T11229] ? create_io_thread+0x1e0/0x1e0 [ 1048.796775][T11229] ? __mutex_lock_slowpath+0x10/0x10 [ 1048.801980][T11229] __x64_sys_clone+0x289/0x310 [ 1048.806582][T11229] ? __do_sys_vfork+0x130/0x130 [ 1048.811266][T11229] ? debug_smp_processor_id+0x17/0x20 [ 1048.816469][T11229] do_syscall_64+0x44/0xd0 [ 1048.820725][T11229] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1048.826540][T11229] RIP: 0033:0x7f0bd76b80d9 [ 1048.830796][T11229] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1048.850242][T11229] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 14:45:17 executing program 5: ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0xe07) r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000080)=ANY=[@ANYBLOB="06000000000000000000000000000000000000000000d0feeef3dc00"/37]) ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0x4d) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0xe07) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000080)=ANY=[@ANYBLOB="06000000000000000000000000000000000000000000d0feeef3dc00"/37]) (async) ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0x4d) (async) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) (async) [ 1048.858485][T11229] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1048.866295][T11229] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1048.874105][T11229] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1048.881922][T11229] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1048.890008][T11229] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1048.897819][T11229] 14:45:17 executing program 3: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) (async) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x1, 0x8, &(0x7f0000000080)=@raw=[@generic={0x9, 0xa, 0x8, 0x1f, 0x7}, @generic={0x2, 0x0, 0x7, 0x8a2c, 0x2}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @map_val={0x18, 0x3, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, @ldst={0x0, 0x1, 0x0, 0x0, 0x0, 0x50, 0xffffffffffffffff}, @map_val={0x18, 0xc, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8}], &(0x7f00000003c0)='syzkaller\x00', 0xef, 0x70, &(0x7f0000000100)=""/112, 0x41000, 0x24, '\x00', 0x0, 0x6, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x9, 0x1}, 0x8, 0x10, &(0x7f00000001c0)={0x2, 0xb, 0x5, 0x1}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, &(0x7f0000000200)=[0xffffffffffffffff]}, 0x80) socketpair(0xb, 0x6, 0x8, &(0x7f0000000240)={0xffffffffffffffff}) recvmsg(r2, &(0x7f0000000600)={&(0x7f0000000340)=@nfc, 0x80, &(0x7f0000000580)=[{&(0x7f00000003c0)}, {&(0x7f0000000400)=""/83, 0x53}, {&(0x7f0000000480)=""/109, 0x6d}, {&(0x7f0000000500)=""/116, 0x74}], 0x4, &(0x7f00000005c0)=""/21, 0x15}, 0x10202) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r3, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:17 executing program 1: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x40082404, &(0x7f0000000080)=0x1f) 14:45:17 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000380)=0x3) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000000440)={&(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000280)="e8eb2b5c0af2a77c002eca7fa9f831f26887886aceda315800ae5d8477b90202eff44c92e06318b13e9e87c0a3dd16a05f257e1a24230935b6932629729782c2d3870e9063bf", 0x46}], 0x1}, 0x800) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000540)='memory.swap.current\x00', 0x0, 0x0) ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f00000005c0)={0x4, &(0x7f0000000580)=[{0xfff, 0x20, 0x2, 0x6f6}, {0x2297, 0x0, 0x6e, 0xfff}, {0x2, 0x0, 0xfa, 0x3}, {0x81, 0xff, 0xe4, 0xe0}]}) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r3, 0x800454cf, &(0x7f0000000040)) r4 = openat$cgroup_ro(r3, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r3, 0x4008240b, &(0x7f00000004c0)={0x975074f9d05ac35f, 0x80, 0xe, 0x0, 0x3, 0xff, 0x0, 0xc00000000000000, 0x4, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x7f, 0x0, @perf_bp={&(0x7f0000000480), 0x2}, 0x100, 0x9, 0x0, 0x5, 0x100, 0xffffe0d4, 0x80, 0x0, 0x6, 0x0, 0x6}) socketpair(0x2c, 0x80000, 0x7, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) bpf$ITER_CREATE(0x21, &(0x7f0000000600)={r4}, 0x8) recvmsg$unix(r5, &(0x7f0000000340)={&(0x7f00000003c0)=@abs, 0x6e, &(0x7f0000000240)=[{&(0x7f00000000c0)=""/140, 0x8c}, {&(0x7f0000000180)=""/98, 0x62}, {&(0x7f0000000200)=""/18, 0x12}], 0x3, &(0x7f0000000280)}, 0x0) 14:45:17 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 39) 14:45:17 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:17 executing program 5: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) getpid() 14:45:17 executing program 5: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) getpid() syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) (async) getpid() (async) 14:45:17 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) openat$cgroup(r0, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:17 executing program 1: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) getpid() 14:45:17 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000010000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:17 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000380)=0x3) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000000440)={&(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000280)="e8eb2b5c0af2a77c002eca7fa9f831f26887886aceda315800ae5d8477b90202eff44c92e06318b13e9e87c0a3dd16a05f257e1a24230935b6932629729782c2d3870e9063bf", 0x46}], 0x1}, 0x800) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000540)='memory.swap.current\x00', 0x0, 0x0) ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f00000005c0)={0x4, &(0x7f0000000580)=[{0xfff, 0x20, 0x2, 0x6f6}, {0x2297, 0x0, 0x6e, 0xfff}, {0x2, 0x0, 0xfa, 0x3}, {0x81, 0xff, 0xe4, 0xe0}]}) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r3, 0x800454cf, &(0x7f0000000040)) r4 = openat$cgroup_ro(r3, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r3, 0x4008240b, &(0x7f00000004c0)={0x975074f9d05ac35f, 0x80, 0xe, 0x0, 0x3, 0xff, 0x0, 0xc00000000000000, 0x4, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x7f, 0x0, @perf_bp={&(0x7f0000000480), 0x2}, 0x100, 0x9, 0x0, 0x5, 0x100, 0xffffe0d4, 0x80, 0x0, 0x6, 0x0, 0x6}) socketpair(0x2c, 0x80000, 0x7, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) bpf$ITER_CREATE(0x21, &(0x7f0000000600)={r4}, 0x8) recvmsg$unix(r5, &(0x7f0000000340)={&(0x7f00000003c0)=@abs, 0x6e, &(0x7f0000000240)=[{&(0x7f00000000c0)=""/140, 0x8c}, {&(0x7f0000000180)=""/98, 0x62}, {&(0x7f0000000200)=""/18, 0x12}], 0x3, &(0x7f0000000280)}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000380)=0x3) (async) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)) (async) sendmsg$inet(r1, &(0x7f0000000440)={&(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000280)="e8eb2b5c0af2a77c002eca7fa9f831f26887886aceda315800ae5d8477b90202eff44c92e06318b13e9e87c0a3dd16a05f257e1a24230935b6932629729782c2d3870e9063bf", 0x46}], 0x1}, 0x800) (async) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000540)='memory.swap.current\x00', 0x0, 0x0) (async) ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f00000005c0)={0x4, &(0x7f0000000580)=[{0xfff, 0x20, 0x2, 0x6f6}, {0x2297, 0x0, 0x6e, 0xfff}, {0x2, 0x0, 0xfa, 0x3}, {0x81, 0xff, 0xe4, 0xe0}]}) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) ioctl$TUNGETFEATURES(r3, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r3, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r3, 0x4008240b, &(0x7f00000004c0)={0x975074f9d05ac35f, 0x80, 0xe, 0x0, 0x3, 0xff, 0x0, 0xc00000000000000, 0x4, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x7f, 0x0, @perf_bp={&(0x7f0000000480), 0x2}, 0x100, 0x9, 0x0, 0x5, 0x100, 0xffffe0d4, 0x80, 0x0, 0x6, 0x0, 0x6}) (async) socketpair(0x2c, 0x80000, 0x7, &(0x7f0000000000)) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000600)={r4}, 0x8) (async) recvmsg$unix(r5, &(0x7f0000000340)={&(0x7f00000003c0)=@abs, 0x6e, &(0x7f0000000240)=[{&(0x7f00000000c0)=""/140, 0x8c}, {&(0x7f0000000180)=""/98, 0x62}, {&(0x7f0000000200)=""/18, 0x12}], 0x3, &(0x7f0000000280)}, 0x0) (async) [ 1048.924391][ T30] audit: type=1400 audit(1670251517.440:124): avc: denied { create } for pid=11264 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 14:45:17 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) openat$cgroup(r0, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) openat$cgroup(r0, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) [ 1048.968867][T11277] FAULT_INJECTION: forcing a failure. [ 1048.968867][T11277] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1048.988073][T11277] CPU: 0 PID: 11277 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1048.998151][T11277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1049.008043][T11277] Call Trace: [ 1049.011165][T11277] [ 1049.013942][T11277] dump_stack_lvl+0x151/0x1b7 [ 1049.018453][T11277] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1049.023749][T11277] ? __kasan_check_write+0x14/0x20 [ 1049.028699][T11277] ? __set_page_owner+0x2ee/0x310 [ 1049.033565][T11277] dump_stack+0x15/0x17 [ 1049.037549][T11277] should_fail+0x3c0/0x510 [ 1049.041804][T11277] should_fail_alloc_page+0x58/0x70 [ 1049.046835][T11277] __alloc_pages+0x1de/0x7c0 [ 1049.051266][T11277] ? __count_vm_events+0x30/0x30 [ 1049.056040][T11277] ? __count_vm_events+0x30/0x30 [ 1049.060810][T11277] ? __kasan_check_write+0x14/0x20 [ 1049.065761][T11277] ? _raw_spin_lock+0xa3/0x1b0 [ 1049.070389][T11277] __pmd_alloc+0xb1/0x550 [ 1049.074524][T11277] ? kmem_cache_alloc+0x189/0x2f0 [ 1049.079394][T11277] ? anon_vma_fork+0x1b9/0x4f0 [ 1049.083988][T11277] ? __pud_alloc+0x260/0x260 [ 1049.088601][T11277] ? __pud_alloc+0x218/0x260 [ 1049.093027][T11277] ? do_handle_mm_fault+0x2370/0x2370 [ 1049.098245][T11277] copy_page_range+0xd04/0x1090 [ 1049.103729][T11277] ? pfn_valid+0x1e0/0x1e0 [ 1049.107976][T11277] dup_mmap+0x99f/0xea0 [ 1049.111989][T11277] ? __delayed_free_task+0x20/0x20 [ 1049.116915][T11277] ? mm_init+0x807/0x960 [ 1049.120994][T11277] dup_mm+0x91/0x330 [ 1049.124725][T11277] copy_mm+0x108/0x1b0 [ 1049.128652][T11277] copy_process+0x1295/0x3250 [ 1049.133192][T11277] ? proc_fail_nth_write+0x213/0x290 [ 1049.138302][T11277] ? proc_fail_nth_read+0x220/0x220 [ 1049.143307][T11277] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1049.148277][T11277] ? vfs_write+0x9af/0x1050 [ 1049.152596][T11277] ? vmacache_update+0xb7/0x120 [ 1049.157278][T11277] kernel_clone+0x22d/0x990 [ 1049.161641][T11277] ? file_end_write+0x1b0/0x1b0 [ 1049.166411][T11277] ? __kasan_check_write+0x14/0x20 [ 1049.171445][T11277] ? create_io_thread+0x1e0/0x1e0 [ 1049.176390][T11277] ? __mutex_lock_slowpath+0x10/0x10 [ 1049.181635][T11277] __x64_sys_clone+0x289/0x310 [ 1049.186243][T11277] ? __do_sys_vfork+0x130/0x130 [ 1049.191095][T11277] ? debug_smp_processor_id+0x17/0x20 [ 1049.196668][T11277] do_syscall_64+0x44/0xd0 [ 1049.200927][T11277] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1049.206765][T11277] RIP: 0033:0x7f0bd76b80d9 [ 1049.211088][T11277] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1049.231249][T11277] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1049.239469][T11277] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1049.247282][T11277] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1049.255095][T11277] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 14:45:17 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 40) 14:45:17 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000380)=0x3) (async) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000000440)={&(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000280)="e8eb2b5c0af2a77c002eca7fa9f831f26887886aceda315800ae5d8477b90202eff44c92e06318b13e9e87c0a3dd16a05f257e1a24230935b6932629729782c2d3870e9063bf", 0x46}], 0x1}, 0x800) (async) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000540)='memory.swap.current\x00', 0x0, 0x0) ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f00000005c0)={0x4, &(0x7f0000000580)=[{0xfff, 0x20, 0x2, 0x6f6}, {0x2297, 0x0, 0x6e, 0xfff}, {0x2, 0x0, 0xfa, 0x3}, {0x81, 0xff, 0xe4, 0xe0}]}) (async) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r3, 0x800454cf, &(0x7f0000000040)) (async) r4 = openat$cgroup_ro(r3, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r3, 0x4008240b, &(0x7f00000004c0)={0x975074f9d05ac35f, 0x80, 0xe, 0x0, 0x3, 0xff, 0x0, 0xc00000000000000, 0x4, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x7f, 0x0, @perf_bp={&(0x7f0000000480), 0x2}, 0x100, 0x9, 0x0, 0x5, 0x100, 0xffffe0d4, 0x80, 0x0, 0x6, 0x0, 0x6}) (async) socketpair(0x2c, 0x80000, 0x7, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000600)={r4}, 0x8) recvmsg$unix(r5, &(0x7f0000000340)={&(0x7f00000003c0)=@abs, 0x6e, &(0x7f0000000240)=[{&(0x7f00000000c0)=""/140, 0x8c}, {&(0x7f0000000180)=""/98, 0x62}, {&(0x7f0000000200)=""/18, 0x12}], 0x3, &(0x7f0000000280)}, 0x0) 14:45:17 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000100000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:17 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) openat$cgroup(r0, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:17 executing program 1: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) openat$cgroup(r0, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:17 executing program 5: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64) getpid() (rerun: 64) 14:45:17 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:17 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) sendmsg$inet(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000000)={0x2, 0x4e21, @empty}, 0x10, &(0x7f0000000380)=[{&(0x7f0000000040)="906fd9f34992edd68f9a1b6387c6828bd718c113bdfb37db1c60dd8e31fbd60c28038f469a90e58d7b22fad6763fe117d65be61364163b88456d549f78cd3156d0ba62f7766c83e64e61fdfdd04b5cdcf1dadd8b18eb7ac2c48988779dd737bd5fa3c857a886ee6590cd148007b9e71d810679e0855baf79f8545924bbfe656dc9716eb90fceb0e1af9b4df6835922b1f226a727f3506fdef75c33f99b804b83854e7788e2cd1b1e48d43a797dfc59b335f7b69d648533f6e0a492dc479674f37192f8882d9f9cbd47cacd3e5546ae5b70500e04c55aea31925fdd76a2422f9b4f5a82259dae638c", 0xe8}, {&(0x7f0000000140)="cb73a0ab67bd85eb96d3784205fd66dcd9ea38e4bfd7a428a98d446488079286e2d0dc066d4937cd7b2efa689b75196670f146956328c52374ac881212870232d8bd53b9dc49d1927a4e321c2397562d2f5853824cc4d68e66b604f192012a689b1325ec7cbfe0e81d00f03ab83f8e184846c73547f5cf2668214daa50e427218e6c65d859d70b723c9384779afc962e8b65354f0e751c580cf968a15c5013433eb321b88699ec3ae57d2bec3c1d5c28153a4eda19b89b35b878f74e83708711ed3608c4c6c5c9e9eb2eb097ea7fe2c78b3b6c52ec08e9d4d6a0d27c8eb3647ce87253294571d0f143823b924bb8a480b3", 0xf1}, {&(0x7f0000000240)="5e7cb6c7cc6945ea1f0fdfdf732214f7a4474ed3be3ac1aff87a3376", 0x1c}, {&(0x7f0000000280)="7049af32e93a7793751f21b6fbb6bdaf8972ffa3e64f9e480a68535fb3422a77741b0ea4589f8c4d2d8376d6f87338c394eb35948df1d1d51709327ad4f958040866ec5a7832150063c5ed4503a712e3e3c20297b20fe96e6b2d27cdd2dfd8460e7dec98d332afeec6c9525bf2a00ec8530c5fb7e3e4645828c6b0c2b653894372015d67510dcd7912f2bdf66da5ca474d25695c30bc2335f0e7c9a5b3bb0ce5788941fbe4b05200123b9d1a5af960972bccf496274ea3f3b9130df9feaec56ec524698d2092721d1628b79363cf45228ad4f382ca59", 0xd6}], 0x4, &(0x7f00000003c0)=[@ip_tos_u8={{0x11}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @rand_addr=0x64010100, @remote}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x1}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x4}}], 0x68}, 0x20000001) ioctl$TUNSETOFFLOAD(r1, 0x400454d0, 0x9) 14:45:17 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f0000000040)='blkio.bfq.empty_time\x00', 0x0, 0x0) openat$cgroup_subtree(r1, &(0x7f0000000080), 0x2, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:17 executing program 1: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) openat$cgroup(r0, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) [ 1049.263025][T11277] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1049.270825][T11277] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1049.278638][T11277] 14:45:17 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) sendmsg$inet(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000000)={0x2, 0x4e21, @empty}, 0x10, &(0x7f0000000380)=[{&(0x7f0000000040)="906fd9f34992edd68f9a1b6387c6828bd718c113bdfb37db1c60dd8e31fbd60c28038f469a90e58d7b22fad6763fe117d65be61364163b88456d549f78cd3156d0ba62f7766c83e64e61fdfdd04b5cdcf1dadd8b18eb7ac2c48988779dd737bd5fa3c857a886ee6590cd148007b9e71d810679e0855baf79f8545924bbfe656dc9716eb90fceb0e1af9b4df6835922b1f226a727f3506fdef75c33f99b804b83854e7788e2cd1b1e48d43a797dfc59b335f7b69d648533f6e0a492dc479674f37192f8882d9f9cbd47cacd3e5546ae5b70500e04c55aea31925fdd76a2422f9b4f5a82259dae638c", 0xe8}, {&(0x7f0000000140)="cb73a0ab67bd85eb96d3784205fd66dcd9ea38e4bfd7a428a98d446488079286e2d0dc066d4937cd7b2efa689b75196670f146956328c52374ac881212870232d8bd53b9dc49d1927a4e321c2397562d2f5853824cc4d68e66b604f192012a689b1325ec7cbfe0e81d00f03ab83f8e184846c73547f5cf2668214daa50e427218e6c65d859d70b723c9384779afc962e8b65354f0e751c580cf968a15c5013433eb321b88699ec3ae57d2bec3c1d5c28153a4eda19b89b35b878f74e83708711ed3608c4c6c5c9e9eb2eb097ea7fe2c78b3b6c52ec08e9d4d6a0d27c8eb3647ce87253294571d0f143823b924bb8a480b3", 0xf1}, {&(0x7f0000000240)="5e7cb6c7cc6945ea1f0fdfdf732214f7a4474ed3be3ac1aff87a3376", 0x1c}, {&(0x7f0000000280)="7049af32e93a7793751f21b6fbb6bdaf8972ffa3e64f9e480a68535fb3422a77741b0ea4589f8c4d2d8376d6f87338c394eb35948df1d1d51709327ad4f958040866ec5a7832150063c5ed4503a712e3e3c20297b20fe96e6b2d27cdd2dfd8460e7dec98d332afeec6c9525bf2a00ec8530c5fb7e3e4645828c6b0c2b653894372015d67510dcd7912f2bdf66da5ca474d25695c30bc2335f0e7c9a5b3bb0ce5788941fbe4b05200123b9d1a5af960972bccf496274ea3f3b9130df9feaec56ec524698d2092721d1628b79363cf45228ad4f382ca59", 0xd6}], 0x4, &(0x7f00000003c0)=[@ip_tos_u8={{0x11}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @rand_addr=0x64010100, @remote}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x1}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x4}}], 0x68}, 0x20000001) (async) ioctl$TUNSETOFFLOAD(r1, 0x400454d0, 0x9) 14:45:17 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1049.325375][T11323] FAULT_INJECTION: forcing a failure. [ 1049.325375][T11323] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1049.345367][T11323] CPU: 1 PID: 11323 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1049.355448][T11323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1049.365337][T11323] Call Trace: [ 1049.368463][T11323] [ 1049.371235][T11323] dump_stack_lvl+0x151/0x1b7 [ 1049.375750][T11323] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1049.381044][T11323] dump_stack+0x15/0x17 [ 1049.385036][T11323] should_fail+0x3c0/0x510 [ 1049.389290][T11323] should_fail_alloc_page+0x58/0x70 [ 1049.394328][T11323] __alloc_pages+0x1de/0x7c0 [ 1049.398752][T11323] ? __count_vm_events+0x30/0x30 [ 1049.403539][T11323] ? __this_cpu_preempt_check+0x13/0x20 [ 1049.408908][T11323] ? __mod_node_page_state+0xac/0xf0 [ 1049.414031][T11323] pte_alloc_one+0x73/0x1b0 [ 1049.418367][T11323] ? pfn_modify_allowed+0x2e0/0x2e0 [ 1049.423410][T11323] __pte_alloc+0x86/0x350 [ 1049.427586][T11323] ? free_pgtables+0x210/0x210 [ 1049.432167][T11323] ? _raw_spin_lock+0xa3/0x1b0 [ 1049.436770][T11323] ? _raw_spin_trylock_bh+0x1d0/0x1d0 [ 1049.441978][T11323] ? __kernel_text_address+0x9a/0x110 [ 1049.447194][T11323] copy_pte_range+0x1b1f/0x20b0 [ 1049.451965][T11323] ? __kunmap_atomic+0x80/0x80 [ 1049.456560][T11323] ? __kasan_slab_alloc+0xc4/0xe0 [ 1049.461433][T11323] ? __kasan_slab_alloc+0xb2/0xe0 [ 1049.466292][T11323] ? kmem_cache_alloc+0x189/0x2f0 [ 1049.471231][T11323] ? vm_area_dup+0x26/0x1d0 [ 1049.475655][T11323] ? dup_mmap+0x6b8/0xea0 [ 1049.479926][T11323] ? dup_mm+0x91/0x330 [ 1049.483817][T11323] ? copy_mm+0x108/0x1b0 [ 1049.487893][T11323] ? copy_process+0x1295/0x3250 [ 1049.492591][T11323] ? kernel_clone+0x22d/0x990 [ 1049.497098][T11323] ? __x64_sys_clone+0x289/0x310 [ 1049.501963][T11323] ? do_syscall_64+0x44/0xd0 [ 1049.506382][T11323] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1049.512289][T11323] copy_page_range+0xc1e/0x1090 [ 1049.516982][T11323] ? pfn_valid+0x1e0/0x1e0 [ 1049.521236][T11323] dup_mmap+0x99f/0xea0 [ 1049.525225][T11323] ? __delayed_free_task+0x20/0x20 [ 1049.530260][T11323] ? mm_init+0x807/0x960 [ 1049.534383][T11323] dup_mm+0x91/0x330 [ 1049.538172][T11323] copy_mm+0x108/0x1b0 [ 1049.542056][T11323] copy_process+0x1295/0x3250 [ 1049.546568][T11323] ? proc_fail_nth_write+0x213/0x290 [ 1049.551688][T11323] ? proc_fail_nth_read+0x220/0x220 [ 1049.556721][T11323] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1049.561670][T11323] ? vfs_write+0x9af/0x1050 [ 1049.566007][T11323] ? vmacache_update+0xb7/0x120 [ 1049.570697][T11323] kernel_clone+0x22d/0x990 [ 1049.575038][T11323] ? file_end_write+0x1b0/0x1b0 [ 1049.579736][T11323] ? __kasan_check_write+0x14/0x20 [ 1049.584680][T11323] ? create_io_thread+0x1e0/0x1e0 [ 1049.589534][T11323] ? __mutex_lock_slowpath+0x10/0x10 [ 1049.594653][T11323] __x64_sys_clone+0x289/0x310 [ 1049.599253][T11323] ? __do_sys_vfork+0x130/0x130 [ 1049.603940][T11323] ? debug_smp_processor_id+0x17/0x20 [ 1049.609250][T11323] do_syscall_64+0x44/0xd0 [ 1049.613491][T11323] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1049.619311][T11323] RIP: 0033:0x7f0bd76b80d9 [ 1049.623560][T11323] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1049.643087][T11323] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1049.651335][T11323] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1049.659152][T11323] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1049.666961][T11323] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 14:45:18 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 41) 14:45:18 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f0000000040)='blkio.bfq.empty_time\x00', 0x0, 0x0) openat$cgroup_subtree(r1, &(0x7f0000000080), 0x2, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:18 executing program 1: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) openat$cgroup(r0, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:18 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:18 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) sendmsg$inet(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000000)={0x2, 0x4e21, @empty}, 0x10, &(0x7f0000000380)=[{&(0x7f0000000040)="906fd9f34992edd68f9a1b6387c6828bd718c113bdfb37db1c60dd8e31fbd60c28038f469a90e58d7b22fad6763fe117d65be61364163b88456d549f78cd3156d0ba62f7766c83e64e61fdfdd04b5cdcf1dadd8b18eb7ac2c48988779dd737bd5fa3c857a886ee6590cd148007b9e71d810679e0855baf79f8545924bbfe656dc9716eb90fceb0e1af9b4df6835922b1f226a727f3506fdef75c33f99b804b83854e7788e2cd1b1e48d43a797dfc59b335f7b69d648533f6e0a492dc479674f37192f8882d9f9cbd47cacd3e5546ae5b70500e04c55aea31925fdd76a2422f9b4f5a82259dae638c", 0xe8}, {&(0x7f0000000140)="cb73a0ab67bd85eb96d3784205fd66dcd9ea38e4bfd7a428a98d446488079286e2d0dc066d4937cd7b2efa689b75196670f146956328c52374ac881212870232d8bd53b9dc49d1927a4e321c2397562d2f5853824cc4d68e66b604f192012a689b1325ec7cbfe0e81d00f03ab83f8e184846c73547f5cf2668214daa50e427218e6c65d859d70b723c9384779afc962e8b65354f0e751c580cf968a15c5013433eb321b88699ec3ae57d2bec3c1d5c28153a4eda19b89b35b878f74e83708711ed3608c4c6c5c9e9eb2eb097ea7fe2c78b3b6c52ec08e9d4d6a0d27c8eb3647ce87253294571d0f143823b924bb8a480b3", 0xf1}, {&(0x7f0000000240)="5e7cb6c7cc6945ea1f0fdfdf732214f7a4474ed3be3ac1aff87a3376", 0x1c}, {&(0x7f0000000280)="7049af32e93a7793751f21b6fbb6bdaf8972ffa3e64f9e480a68535fb3422a77741b0ea4589f8c4d2d8376d6f87338c394eb35948df1d1d51709327ad4f958040866ec5a7832150063c5ed4503a712e3e3c20297b20fe96e6b2d27cdd2dfd8460e7dec98d332afeec6c9525bf2a00ec8530c5fb7e3e4645828c6b0c2b653894372015d67510dcd7912f2bdf66da5ca474d25695c30bc2335f0e7c9a5b3bb0ce5788941fbe4b05200123b9d1a5af960972bccf496274ea3f3b9130df9feaec56ec524698d2092721d1628b79363cf45228ad4f382ca59", 0xd6}], 0x4, &(0x7f00000003c0)=[@ip_tos_u8={{0x11}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @rand_addr=0x64010100, @remote}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x1}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x4}}], 0x68}, 0x20000001) ioctl$TUNSETOFFLOAD(r1, 0x400454d0, 0x9) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) (async) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) (async) sendmsg$inet(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000000)={0x2, 0x4e21, @empty}, 0x10, &(0x7f0000000380)=[{&(0x7f0000000040)="906fd9f34992edd68f9a1b6387c6828bd718c113bdfb37db1c60dd8e31fbd60c28038f469a90e58d7b22fad6763fe117d65be61364163b88456d549f78cd3156d0ba62f7766c83e64e61fdfdd04b5cdcf1dadd8b18eb7ac2c48988779dd737bd5fa3c857a886ee6590cd148007b9e71d810679e0855baf79f8545924bbfe656dc9716eb90fceb0e1af9b4df6835922b1f226a727f3506fdef75c33f99b804b83854e7788e2cd1b1e48d43a797dfc59b335f7b69d648533f6e0a492dc479674f37192f8882d9f9cbd47cacd3e5546ae5b70500e04c55aea31925fdd76a2422f9b4f5a82259dae638c", 0xe8}, {&(0x7f0000000140)="cb73a0ab67bd85eb96d3784205fd66dcd9ea38e4bfd7a428a98d446488079286e2d0dc066d4937cd7b2efa689b75196670f146956328c52374ac881212870232d8bd53b9dc49d1927a4e321c2397562d2f5853824cc4d68e66b604f192012a689b1325ec7cbfe0e81d00f03ab83f8e184846c73547f5cf2668214daa50e427218e6c65d859d70b723c9384779afc962e8b65354f0e751c580cf968a15c5013433eb321b88699ec3ae57d2bec3c1d5c28153a4eda19b89b35b878f74e83708711ed3608c4c6c5c9e9eb2eb097ea7fe2c78b3b6c52ec08e9d4d6a0d27c8eb3647ce87253294571d0f143823b924bb8a480b3", 0xf1}, {&(0x7f0000000240)="5e7cb6c7cc6945ea1f0fdfdf732214f7a4474ed3be3ac1aff87a3376", 0x1c}, {&(0x7f0000000280)="7049af32e93a7793751f21b6fbb6bdaf8972ffa3e64f9e480a68535fb3422a77741b0ea4589f8c4d2d8376d6f87338c394eb35948df1d1d51709327ad4f958040866ec5a7832150063c5ed4503a712e3e3c20297b20fe96e6b2d27cdd2dfd8460e7dec98d332afeec6c9525bf2a00ec8530c5fb7e3e4645828c6b0c2b653894372015d67510dcd7912f2bdf66da5ca474d25695c30bc2335f0e7c9a5b3bb0ce5788941fbe4b05200123b9d1a5af960972bccf496274ea3f3b9130df9feaec56ec524698d2092721d1628b79363cf45228ad4f382ca59", 0xd6}], 0x4, &(0x7f00000003c0)=[@ip_tos_u8={{0x11}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @rand_addr=0x64010100, @remote}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x1}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x4}}], 0x68}, 0x20000001) (async) ioctl$TUNSETOFFLOAD(r1, 0x400454d0, 0x9) (async) 14:45:18 executing program 5: syz_clone(0x9b02380, 0x0, 0x0, 0x0, 0x0, 0x0) gettid() 14:45:18 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f0000000040)='blkio.bfq.empty_time\x00', 0x0, 0x0) openat$cgroup_subtree(r1, &(0x7f0000000080), 0x2, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:18 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000380)=0x3) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000000440)={&(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000280)="e8eb2b5c0af2a77c002eca7fa9f831f26887886aceda315800ae5d8477b90202eff44c92e06318b13e9e87c0a3dd16a05f257e1a24230935b6932629729782c2d3870e9063bf", 0x46}], 0x1}, 0x800) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000540)='memory.swap.current\x00', 0x0, 0x0) ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f00000005c0)={0x4, &(0x7f0000000580)=[{0xfff, 0x20, 0x2, 0x6f6}, {0x2297, 0x0, 0x6e, 0xfff}, {0x2, 0x0, 0xfa, 0x3}, {0x81, 0xff, 0xe4, 0xe0}]}) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r3, 0x800454cf, &(0x7f0000000040)) r4 = openat$cgroup_ro(r3, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r3, 0x4008240b, &(0x7f00000004c0)={0x975074f9d05ac35f, 0x80, 0xe, 0x0, 0x3, 0xff, 0x0, 0xc00000000000000, 0x4, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x7f, 0x0, @perf_bp={&(0x7f0000000480), 0x2}, 0x100, 0x9, 0x0, 0x5, 0x100, 0xffffe0d4, 0x80, 0x0, 0x6, 0x0, 0x6}) socketpair(0x2c, 0x80000, 0x7, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) bpf$ITER_CREATE(0x21, &(0x7f0000000600)={r4}, 0x8) recvmsg$unix(r5, &(0x7f0000000340)={&(0x7f00000003c0)=@abs, 0x6e, &(0x7f0000000240)=[{&(0x7f00000000c0)=""/140, 0x8c}, {&(0x7f0000000180)=""/98, 0x62}, {&(0x7f0000000200)=""/18, 0x12}], 0x3, &(0x7f0000000280)}, 0x0) 14:45:18 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:18 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x3, 0x80, 0x8, 0x7, 0x6, 0x0, 0x0, 0x4, 0x80000, 0xb, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, @perf_config_ext={0x7, 0x1}, 0x0, 0x8, 0x2, 0x9, 0x9, 0x400, 0x3ff, 0x0, 0x8, 0x0, 0x8}, r0, 0x10, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:18 executing program 5: syz_clone(0x9b02380, 0x0, 0x0, 0x0, 0x0, 0x0) gettid() [ 1049.674775][T11323] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1049.682583][T11323] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1049.690401][T11323] 14:45:18 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000380)=0x3) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000000440)={&(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000280)="e8eb2b5c0af2a77c002eca7fa9f831f26887886aceda315800ae5d8477b90202eff44c92e06318b13e9e87c0a3dd16a05f257e1a24230935b6932629729782c2d3870e9063bf", 0x46}], 0x1}, 0x800) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000540)='memory.swap.current\x00', 0x0, 0x0) ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f00000005c0)={0x4, &(0x7f0000000580)=[{0xfff, 0x20, 0x2, 0x6f6}, {0x2297, 0x0, 0x6e, 0xfff}, {0x2, 0x0, 0xfa, 0x3}, {0x81, 0xff, 0xe4, 0xe0}]}) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r3, 0x800454cf, &(0x7f0000000040)) r4 = openat$cgroup_ro(r3, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r3, 0x4008240b, &(0x7f00000004c0)={0x975074f9d05ac35f, 0x80, 0xe, 0x0, 0x3, 0xff, 0x0, 0xc00000000000000, 0x4, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x7f, 0x0, @perf_bp={&(0x7f0000000480), 0x2}, 0x100, 0x9, 0x0, 0x5, 0x100, 0xffffe0d4, 0x80, 0x0, 0x6, 0x0, 0x6}) socketpair(0x2c, 0x80000, 0x7, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) bpf$ITER_CREATE(0x21, &(0x7f0000000600)={r4}, 0x8) recvmsg$unix(r5, &(0x7f0000000340)={&(0x7f00000003c0)=@abs, 0x6e, &(0x7f0000000240)=[{&(0x7f00000000c0)=""/140, 0x8c}, {&(0x7f0000000180)=""/98, 0x62}, {&(0x7f0000000200)=""/18, 0x12}], 0x3, &(0x7f0000000280)}, 0x0) [ 1049.737099][T11350] FAULT_INJECTION: forcing a failure. [ 1049.737099][T11350] name failslab, interval 1, probability 0, space 0, times 0 [ 1049.754622][T11350] CPU: 0 PID: 11350 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1049.764700][T11350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1049.774702][T11350] Call Trace: [ 1049.777807][T11350] [ 1049.780579][T11350] dump_stack_lvl+0x151/0x1b7 [ 1049.785179][T11350] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1049.790605][T11350] dump_stack+0x15/0x17 [ 1049.794678][T11350] should_fail+0x3c0/0x510 [ 1049.798920][T11350] __should_failslab+0x9f/0xe0 [ 1049.803519][T11350] should_failslab+0x9/0x20 [ 1049.808117][T11350] kmem_cache_alloc+0x4f/0x2f0 [ 1049.812979][T11350] ? vm_area_dup+0x26/0x1d0 [ 1049.817574][T11350] vm_area_dup+0x26/0x1d0 [ 1049.821742][T11350] dup_mmap+0x6b8/0xea0 [ 1049.825739][T11350] ? __delayed_free_task+0x20/0x20 [ 1049.830779][T11350] ? mm_init+0x807/0x960 [ 1049.834945][T11350] dup_mm+0x91/0x330 [ 1049.838689][T11350] copy_mm+0x108/0x1b0 [ 1049.843113][T11350] copy_process+0x1295/0x3250 [ 1049.847626][T11350] ? proc_fail_nth_write+0x213/0x290 [ 1049.852743][T11350] ? proc_fail_nth_read+0x220/0x220 [ 1049.857863][T11350] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1049.862818][T11350] ? vfs_write+0x9af/0x1050 [ 1049.867374][T11350] ? vmacache_update+0xb7/0x120 [ 1049.872048][T11350] kernel_clone+0x22d/0x990 [ 1049.876392][T11350] ? file_end_write+0x1b0/0x1b0 [ 1049.881178][T11350] ? __kasan_check_write+0x14/0x20 [ 1049.886131][T11350] ? create_io_thread+0x1e0/0x1e0 [ 1049.890989][T11350] ? __mutex_lock_slowpath+0x10/0x10 [ 1049.896111][T11350] __x64_sys_clone+0x289/0x310 [ 1049.900709][T11350] ? __do_sys_vfork+0x130/0x130 [ 1049.905420][T11350] ? debug_smp_processor_id+0x17/0x20 [ 1049.910609][T11350] do_syscall_64+0x44/0xd0 [ 1049.914867][T11350] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1049.920598][T11350] RIP: 0033:0x7f0bd76b80d9 [ 1049.924851][T11350] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1049.947355][T11350] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1049.955590][T11350] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1049.963490][T11350] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1049.971310][T11350] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1049.980150][T11350] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 14:45:18 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 42) 14:45:18 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x3, 0x80, 0x8, 0x7, 0x6, 0x0, 0x0, 0x4, 0x80000, 0xb, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, @perf_config_ext={0x7, 0x1}, 0x0, 0x8, 0x2, 0x9, 0x9, 0x400, 0x3ff, 0x0, 0x8, 0x0, 0x8}, r0, 0x10, 0xffffffffffffffff, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:18 executing program 5: syz_clone(0x9b02380, 0x0, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64) gettid() (rerun: 64) 14:45:18 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000380)=0x3) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000000440)={&(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000280)="e8eb2b5c0af2a77c002eca7fa9f831f26887886aceda315800ae5d8477b90202eff44c92e06318b13e9e87c0a3dd16a05f257e1a24230935b6932629729782c2d3870e9063bf", 0x46}], 0x1}, 0x800) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000540)='memory.swap.current\x00', 0x0, 0x0) ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f00000005c0)={0x4, &(0x7f0000000580)=[{0xfff, 0x20, 0x2, 0x6f6}, {0x2297, 0x0, 0x6e, 0xfff}, {0x2, 0x0, 0xfa, 0x3}, {0x81, 0xff, 0xe4, 0xe0}]}) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r3, 0x800454cf, &(0x7f0000000040)) r4 = openat$cgroup_ro(r3, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r3, 0x4008240b, &(0x7f00000004c0)={0x975074f9d05ac35f, 0x80, 0xe, 0x0, 0x3, 0xff, 0x0, 0xc00000000000000, 0x4, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x7f, 0x0, @perf_bp={&(0x7f0000000480), 0x2}, 0x100, 0x9, 0x0, 0x5, 0x100, 0xffffe0d4, 0x80, 0x0, 0x6, 0x0, 0x6}) socketpair(0x2c, 0x80000, 0x7, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) bpf$ITER_CREATE(0x21, &(0x7f0000000600)={r4}, 0x8) recvmsg$unix(r5, &(0x7f0000000340)={&(0x7f00000003c0)=@abs, 0x6e, &(0x7f0000000240)=[{&(0x7f00000000c0)=""/140, 0x8c}, {&(0x7f0000000180)=""/98, 0x62}, {&(0x7f0000000200)=""/18, 0x12}], 0x3, &(0x7f0000000280)}, 0x0) 14:45:18 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89, 0x0, 0x39}, 0x0) 14:45:18 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:18 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x3, 0x80, 0x8, 0x7, 0x6, 0x0, 0x0, 0x4, 0x80000, 0xb, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, @perf_config_ext={0x7, 0x1}, 0x0, 0x8, 0x2, 0x9, 0x9, 0x400, 0x3ff, 0x0, 0x8, 0x0, 0x8}, r0, 0x10, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) perf_event_open$cgroup(&(0x7f0000000040)={0x3, 0x80, 0x8, 0x7, 0x6, 0x0, 0x0, 0x4, 0x80000, 0xb, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, @perf_config_ext={0x7, 0x1}, 0x0, 0x8, 0x2, 0x9, 0x9, 0x400, 0x3ff, 0x0, 0x8, 0x0, 0x8}, r0, 0x10, 0xffffffffffffffff, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) 14:45:18 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:18 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89, 0x0, 0x39}, 0x0) 14:45:18 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000380)=0x3) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000000440)={&(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000280)="e8eb2b5c0af2a77c002eca7fa9f831f26887886aceda315800ae5d8477b90202eff44c92e06318b13e9e87c0a3dd16a05f257e1a24230935b6932629729782c2d3870e9063bf", 0x46}], 0x1}, 0x800) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000540)='memory.swap.current\x00', 0x0, 0x0) ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f00000005c0)={0x4, &(0x7f0000000580)=[{0xfff, 0x20, 0x2, 0x6f6}, {0x2297, 0x0, 0x6e, 0xfff}, {0x2, 0x0, 0xfa, 0x3}, {0x81, 0xff, 0xe4, 0xe0}]}) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r3, 0x800454cf, &(0x7f0000000040)) r4 = openat$cgroup_ro(r3, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r3, 0x4008240b, &(0x7f00000004c0)={0x975074f9d05ac35f, 0x80, 0xe, 0x0, 0x3, 0xff, 0x0, 0xc00000000000000, 0x4, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x7f, 0x0, @perf_bp={&(0x7f0000000480), 0x2}, 0x100, 0x9, 0x0, 0x5, 0x100, 0xffffe0d4, 0x80, 0x0, 0x6, 0x0, 0x6}) socketpair(0x2c, 0x80000, 0x7, &(0x7f0000000000)) bpf$ITER_CREATE(0x21, &(0x7f0000000600)={r4}, 0x8) 14:45:18 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) (async) recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89, 0x0, 0x39}, 0x0) 14:45:18 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1049.988049][T11350] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1049.995963][T11350] [ 1050.050066][T11377] FAULT_INJECTION: forcing a failure. [ 1050.050066][T11377] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1050.091225][T11377] CPU: 1 PID: 11377 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1050.101314][T11377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1050.111193][T11377] Call Trace: [ 1050.114316][T11377] [ 1050.117095][T11377] dump_stack_lvl+0x151/0x1b7 [ 1050.121609][T11377] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1050.126907][T11377] dump_stack+0x15/0x17 [ 1050.130891][T11377] should_fail+0x3c0/0x510 [ 1050.135148][T11377] should_fail_alloc_page+0x58/0x70 [ 1050.140183][T11377] __alloc_pages+0x1de/0x7c0 [ 1050.144608][T11377] ? __count_vm_events+0x30/0x30 [ 1050.149381][T11377] ? __this_cpu_preempt_check+0x13/0x20 [ 1050.154763][T11377] ? __mod_node_page_state+0xac/0xf0 [ 1050.159885][T11377] pte_alloc_one+0x73/0x1b0 [ 1050.164228][T11377] ? pfn_modify_allowed+0x2e0/0x2e0 [ 1050.169259][T11377] __pte_alloc+0x86/0x350 [ 1050.173520][T11377] ? free_pgtables+0x210/0x210 [ 1050.178114][T11377] ? _raw_spin_lock+0xa3/0x1b0 [ 1050.182712][T11377] ? _raw_spin_trylock_bh+0x1d0/0x1d0 [ 1050.187920][T11377] ? __kernel_text_address+0x9a/0x110 [ 1050.193154][T11377] copy_pte_range+0x1b1f/0x20b0 [ 1050.197844][T11377] ? __kunmap_atomic+0x80/0x80 [ 1050.202416][T11377] ? __kasan_slab_alloc+0xc4/0xe0 [ 1050.207281][T11377] ? __kasan_slab_alloc+0xb2/0xe0 [ 1050.212144][T11377] ? kmem_cache_alloc+0x189/0x2f0 [ 1050.216998][T11377] ? vm_area_dup+0x26/0x1d0 [ 1050.221344][T11377] ? dup_mmap+0x6b8/0xea0 [ 1050.225509][T11377] ? dup_mm+0x91/0x330 [ 1050.229414][T11377] ? copy_mm+0x108/0x1b0 [ 1050.233495][T11377] ? copy_process+0x1295/0x3250 [ 1050.238176][T11377] ? kernel_clone+0x22d/0x990 [ 1050.242698][T11377] ? __x64_sys_clone+0x289/0x310 [ 1050.247462][T11377] ? do_syscall_64+0x44/0xd0 [ 1050.251887][T11377] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1050.257813][T11377] copy_page_range+0xc1e/0x1090 [ 1050.262487][T11377] ? pfn_valid+0x1e0/0x1e0 [ 1050.266730][T11377] dup_mmap+0x99f/0xea0 [ 1050.270729][T11377] ? __delayed_free_task+0x20/0x20 [ 1050.275675][T11377] ? mm_init+0x807/0x960 [ 1050.279755][T11377] dup_mm+0x91/0x330 [ 1050.283485][T11377] copy_mm+0x108/0x1b0 [ 1050.287391][T11377] copy_process+0x1295/0x3250 [ 1050.291921][T11377] ? proc_fail_nth_write+0x213/0x290 [ 1050.297025][T11377] ? proc_fail_nth_read+0x220/0x220 [ 1050.302063][T11377] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1050.307014][T11377] ? vfs_write+0x9af/0x1050 [ 1050.311361][T11377] ? vmacache_update+0xb7/0x120 [ 1050.316038][T11377] kernel_clone+0x22d/0x990 [ 1050.320372][T11377] ? file_end_write+0x1b0/0x1b0 [ 1050.325069][T11377] ? __kasan_check_write+0x14/0x20 [ 1050.330017][T11377] ? create_io_thread+0x1e0/0x1e0 [ 1050.334869][T11377] ? __mutex_lock_slowpath+0x10/0x10 [ 1050.339997][T11377] __x64_sys_clone+0x289/0x310 [ 1050.344677][T11377] ? __do_sys_vfork+0x130/0x130 [ 1050.349388][T11377] ? debug_smp_processor_id+0x17/0x20 [ 1050.354747][T11377] do_syscall_64+0x44/0xd0 [ 1050.359018][T11377] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1050.366382][T11377] RIP: 0033:0x7f0bd76b80d9 [ 1050.370726][T11377] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 14:45:18 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 43) 14:45:18 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:18 executing program 4: r0 = openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0) write$cgroup_netprio_ifpriomap(r0, &(0x7f0000000040)={'tunl0', 0x32, 0x35}, 0x8) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:18 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000380)=0x3) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000000440)={&(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000280)="e8eb2b5c0af2a77c002eca7fa9f831f26887886aceda315800ae5d8477b90202eff44c92e06318b13e9e87c0a3dd16a05f257e1a24230935b6932629729782c2d3870e9063bf", 0x46}], 0x1}, 0x800) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000540)='memory.swap.current\x00', 0x0, 0x0) ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f00000005c0)={0x4, &(0x7f0000000580)=[{0xfff, 0x20, 0x2, 0x6f6}, {0x2297, 0x0, 0x6e, 0xfff}, {0x2, 0x0, 0xfa, 0x3}, {0x81, 0xff, 0xe4, 0xe0}]}) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r3, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r3, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r3, 0x4008240b, &(0x7f00000004c0)={0x975074f9d05ac35f, 0x80, 0xe, 0x0, 0x3, 0xff, 0x0, 0xc00000000000000, 0x4, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x7f, 0x0, @perf_bp={&(0x7f0000000480), 0x2}, 0x100, 0x9, 0x0, 0x5, 0x100, 0xffffe0d4, 0x80, 0x0, 0x6, 0x0, 0x6}) socketpair(0x2c, 0x80000, 0x7, &(0x7f0000000000)) 14:45:18 executing program 5: r0 = syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='freezer.state\x00', 0x0, 0x0) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) r3 = openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) openat$cgroup_ro(r2, &(0x7f0000000080)='rdma.current\x00', 0x0, 0x0) write$cgroup_pid(r1, &(0x7f0000000040)=r0, 0x12) r4 = openat$cgroup_ro(r3, &(0x7f00000000c0)='pids.current\x00', 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000100)={r4, r3, 0x7}, 0x10) 14:45:18 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:18 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000380)=0x3) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000000440)={&(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000280)="e8eb2b5c0af2a77c002eca7fa9f831f26887886aceda315800ae5d8477b90202eff44c92e06318b13e9e87c0a3dd16a05f257e1a24230935b6932629729782c2d3870e9063bf", 0x46}], 0x1}, 0x800) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000540)='memory.swap.current\x00', 0x0, 0x0) ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f00000005c0)={0x4, &(0x7f0000000580)=[{0xfff, 0x20, 0x2, 0x6f6}, {0x2297, 0x0, 0x6e, 0xfff}, {0x2, 0x0, 0xfa, 0x3}, {0x81, 0xff, 0xe4, 0xe0}]}) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r3, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r3, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) socketpair(0x2c, 0x80000, 0x7, &(0x7f0000000000)) 14:45:18 executing program 4: r0 = openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0) write$cgroup_netprio_ifpriomap(r0, &(0x7f0000000040)={'tunl0', 0x32, 0x35}, 0x8) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:18 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400001, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1050.390337][T11377] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1050.398583][T11377] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1050.406390][T11377] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1050.414206][T11377] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1050.422016][T11377] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1050.429824][T11377] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1050.437653][T11377] 14:45:19 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:19 executing program 4: r0 = openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0) write$cgroup_netprio_ifpriomap(r0, &(0x7f0000000040)={'tunl0', 0x32, 0x35}, 0x8) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:19 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1004000, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1050.489139][T11410] FAULT_INJECTION: forcing a failure. [ 1050.489139][T11410] name failslab, interval 1, probability 0, space 0, times 0 [ 1050.510896][T11410] CPU: 1 PID: 11410 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1050.520970][T11410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1050.531205][T11410] Call Trace: [ 1050.534327][T11410] [ 1050.537126][T11410] dump_stack_lvl+0x151/0x1b7 [ 1050.541623][T11410] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1050.546912][T11410] dump_stack+0x15/0x17 [ 1050.550907][T11410] should_fail+0x3c0/0x510 [ 1050.555179][T11410] __should_failslab+0x9f/0xe0 [ 1050.559758][T11410] should_failslab+0x9/0x20 [ 1050.564098][T11410] kmem_cache_alloc+0x4f/0x2f0 [ 1050.568699][T11410] ? vm_area_dup+0x26/0x1d0 [ 1050.573041][T11410] vm_area_dup+0x26/0x1d0 [ 1050.577220][T11410] dup_mmap+0x6b8/0xea0 [ 1050.581211][T11410] ? __delayed_free_task+0x20/0x20 [ 1050.586149][T11410] ? mm_init+0x807/0x960 [ 1050.590510][T11410] dup_mm+0x91/0x330 [ 1050.594226][T11410] copy_mm+0x108/0x1b0 [ 1050.598128][T11410] copy_process+0x1295/0x3250 [ 1050.602641][T11410] ? proc_fail_nth_write+0x213/0x290 [ 1050.607768][T11410] ? proc_fail_nth_read+0x220/0x220 [ 1050.612898][T11410] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1050.617838][T11410] ? vfs_write+0x9af/0x1050 [ 1050.622172][T11410] ? vmacache_update+0xb7/0x120 [ 1050.626856][T11410] kernel_clone+0x22d/0x990 [ 1050.631202][T11410] ? irqentry_exit+0x30/0x40 [ 1050.635625][T11410] ? sysvec_apic_timer_interrupt+0x55/0xc0 [ 1050.641267][T11410] ? asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 1050.647254][T11410] ? create_io_thread+0x1e0/0x1e0 [ 1050.652116][T11410] ? fput_many+0x3e/0x1a0 [ 1050.656282][T11410] ? delayed_fput+0x81/0x90 [ 1050.660623][T11410] __x64_sys_clone+0x289/0x310 [ 1050.665223][T11410] ? __do_sys_vfork+0x130/0x130 [ 1050.669935][T11410] ? debug_smp_processor_id+0x17/0x20 [ 1050.675118][T11410] do_syscall_64+0x44/0xd0 [ 1050.679398][T11410] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1050.685105][T11410] RIP: 0033:0x7f0bd76b80d9 [ 1050.689368][T11410] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1050.708802][T11410] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1050.717078][T11410] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1050.725044][T11410] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 14:45:19 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 44) 14:45:19 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000380)=0x3) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000000440)={&(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000280)="e8eb2b5c0af2a77c002eca7fa9f831f26887886aceda315800ae5d8477b90202eff44c92e06318b13e9e87c0a3dd16a05f257e1a24230935b6932629729782c2d3870e9063bf", 0x46}], 0x1}, 0x800) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000540)='memory.swap.current\x00', 0x0, 0x0) ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f00000005c0)={0x4, &(0x7f0000000580)=[{0xfff, 0x20, 0x2, 0x6f6}, {0x2297, 0x0, 0x6e, 0xfff}, {0x2, 0x0, 0xfa, 0x3}, {0x81, 0xff, 0xe4, 0xe0}]}) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r3, 0x800454cf, &(0x7f0000000040)) socketpair(0x2c, 0x80000, 0x7, &(0x7f0000000000)) 14:45:19 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:19 executing program 5: r0 = syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='freezer.state\x00', 0x0, 0x0) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) r3 = openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) openat$cgroup_ro(r2, &(0x7f0000000080)='rdma.current\x00', 0x0, 0x0) write$cgroup_pid(r1, &(0x7f0000000040)=r0, 0x12) r4 = openat$cgroup_ro(r3, &(0x7f00000000c0)='pids.current\x00', 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000100)={r4, r3, 0x7}, 0x10) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) (async) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='freezer.state\x00', 0x0, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)) (async) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) openat$cgroup_ro(r2, &(0x7f0000000080)='rdma.current\x00', 0x0, 0x0) (async) write$cgroup_pid(r1, &(0x7f0000000040)=r0, 0x12) (async) openat$cgroup_ro(r3, &(0x7f00000000c0)='pids.current\x00', 0x0, 0x0) (async) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000100)={r4, r3, 0x7}, 0x10) (async) 14:45:19 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) 14:45:19 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair(0x2, 0x3, 0x7f, &(0x7f0000000100)) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000000c0)={r0, &(0x7f0000000000)="77635ea5b6869b4e037f44ff6c6bf76f75efc5d01d01d5ead8db99eef7c13dc879b8b09671758f4aa2fdf283443863858ee17c5db514f17d4ab8a4f79fd5340076f05aaa9e7db4eddcd8fcd958bc37dcc2cd3054c172f2689a62453a0e6699cc5df40ab065b2b89b0fb4c8d2d9d025377ca9fbcc3fc01a2804ddb38a76cfc520bb67e4836aa91c267fd6346ae98e634e49aee15099366bfc15bcd4d649e7235516e2fde04b7525efa0a34cda070dc1d267658460fa5d855ad4887d10"}, 0x20) 14:45:19 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = openat$cgroup_devices(r0, &(0x7f0000000040)='devices.deny\x00', 0x2, 0x0) write$cgroup_devices(r1, &(0x7f0000000080)={'c', ' *:* ', 'rw\x00'}, 0x9) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:19 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair(0x2, 0x3, 0x7f, &(0x7f0000000100)) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000000c0)={r0, &(0x7f0000000000)="77635ea5b6869b4e037f44ff6c6bf76f75efc5d01d01d5ead8db99eef7c13dc879b8b09671758f4aa2fdf283443863858ee17c5db514f17d4ab8a4f79fd5340076f05aaa9e7db4eddcd8fcd958bc37dcc2cd3054c172f2689a62453a0e6699cc5df40ab065b2b89b0fb4c8d2d9d025377ca9fbcc3fc01a2804ddb38a76cfc520bb67e4836aa91c267fd6346ae98e634e49aee15099366bfc15bcd4d649e7235516e2fde04b7525efa0a34cda070dc1d267658460fa5d855ad4887d10"}, 0x20) [ 1050.732852][T11410] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1050.740668][T11410] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1050.748486][T11410] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1050.756311][T11410] [ 1050.778466][T11428] FAULT_INJECTION: forcing a failure. 14:45:19 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:19 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000380)=0x3) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000000440)={&(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000280)="e8eb2b5c0af2a77c002eca7fa9f831f26887886aceda315800ae5d8477b90202eff44c92e06318b13e9e87c0a3dd16a05f257e1a24230935b6932629729782c2d3870e9063bf", 0x46}], 0x1}, 0x800) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000540)='memory.swap.current\x00', 0x0, 0x0) ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f00000005c0)={0x4, &(0x7f0000000580)=[{0xfff, 0x20, 0x2, 0x6f6}, {0x2297, 0x0, 0x6e, 0xfff}, {0x2, 0x0, 0xfa, 0x3}, {0x81, 0xff, 0xe4, 0xe0}]}) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) socketpair(0x2c, 0x80000, 0x7, &(0x7f0000000000)) 14:45:19 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = openat$cgroup_devices(r0, &(0x7f0000000040)='devices.deny\x00', 0x2, 0x0) write$cgroup_devices(r1, &(0x7f0000000080)={'c', ' *:* ', 'rw\x00'}, 0x9) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:19 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1050.778466][T11428] name failslab, interval 1, probability 0, space 0, times 0 [ 1050.795014][T11428] CPU: 0 PID: 11428 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1050.805083][T11428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1050.814977][T11428] Call Trace: [ 1050.818100][T11428] [ 1050.820879][T11428] dump_stack_lvl+0x151/0x1b7 [ 1050.825403][T11428] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1050.830688][T11428] dump_stack+0x15/0x17 [ 1050.834686][T11428] should_fail+0x3c0/0x510 [ 1050.838931][T11428] __should_failslab+0x9f/0xe0 [ 1050.843531][T11428] should_failslab+0x9/0x20 [ 1050.847872][T11428] kmem_cache_alloc+0x4f/0x2f0 [ 1050.852471][T11428] ? anon_vma_fork+0x1b9/0x4f0 [ 1050.857082][T11428] anon_vma_fork+0x1b9/0x4f0 [ 1050.861496][T11428] dup_mmap+0x750/0xea0 [ 1050.865487][T11428] ? __delayed_free_task+0x20/0x20 [ 1050.870436][T11428] ? mm_init+0x807/0x960 [ 1050.874533][T11428] dup_mm+0x91/0x330 [ 1050.878254][T11428] copy_mm+0x108/0x1b0 [ 1050.882152][T11428] copy_process+0x1295/0x3250 [ 1050.886670][T11428] ? proc_fail_nth_write+0x213/0x290 [ 1050.891789][T11428] ? proc_fail_nth_read+0x220/0x220 [ 1050.896822][T11428] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1050.901770][T11428] ? vfs_write+0x9af/0x1050 [ 1050.906108][T11428] ? vmacache_update+0xb7/0x120 [ 1050.910797][T11428] kernel_clone+0x22d/0x990 [ 1050.915137][T11428] ? file_end_write+0x1b0/0x1b0 [ 1050.919839][T11428] ? __kasan_check_write+0x14/0x20 [ 1050.924772][T11428] ? create_io_thread+0x1e0/0x1e0 [ 1050.929633][T11428] ? __mutex_lock_slowpath+0x10/0x10 [ 1050.934761][T11428] __x64_sys_clone+0x289/0x310 [ 1050.939352][T11428] ? __do_sys_vfork+0x130/0x130 [ 1050.944042][T11428] ? debug_smp_processor_id+0x17/0x20 [ 1050.949259][T11428] do_syscall_64+0x44/0xd0 [ 1050.953506][T11428] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1050.959336][T11428] RIP: 0033:0x7f0bd76b80d9 [ 1050.963573][T11428] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 14:45:19 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 45) 14:45:19 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = openat$cgroup_devices(r0, &(0x7f0000000040)='devices.deny\x00', 0x2, 0x0) write$cgroup_devices(r1, &(0x7f0000000080)={'c', ' *:* ', 'rw\x00'}, 0x9) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:19 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:19 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000380)=0x3) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000000440)={&(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000280)="e8eb2b5c0af2a77c002eca7fa9f831f26887886aceda315800ae5d8477b90202eff44c92e06318b13e9e87c0a3dd16a05f257e1a24230935b6932629729782c2d3870e9063bf", 0x46}], 0x1}, 0x800) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000540)='memory.swap.current\x00', 0x0, 0x0) ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f00000005c0)={0x4, &(0x7f0000000580)=[{0xfff, 0x20, 0x2, 0x6f6}, {0x2297, 0x0, 0x6e, 0xfff}, {0x2, 0x0, 0xfa, 0x3}, {0x81, 0xff, 0xe4, 0xe0}]}) socketpair(0x2c, 0x80000, 0x7, &(0x7f0000000000)) 14:45:19 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair(0x2, 0x3, 0x7f, &(0x7f0000000100)) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000000c0)={r0, &(0x7f0000000000)="77635ea5b6869b4e037f44ff6c6bf76f75efc5d01d01d5ead8db99eef7c13dc879b8b09671758f4aa2fdf283443863858ee17c5db514f17d4ab8a4f79fd5340076f05aaa9e7db4eddcd8fcd958bc37dcc2cd3054c172f2689a62453a0e6699cc5df40ab065b2b89b0fb4c8d2d9d025377ca9fbcc3fc01a2804ddb38a76cfc520bb67e4836aa91c267fd6346ae98e634e49aee15099366bfc15bcd4d649e7235516e2fde04b7525efa0a34cda070dc1d267658460fa5d855ad4887d10"}, 0x20) 14:45:19 executing program 5: r0 = syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='freezer.state\x00', 0x0, 0x0) (async, rerun: 64) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)) (async, rerun: 64) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) (async, rerun: 64) r3 = openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) openat$cgroup_ro(r2, &(0x7f0000000080)='rdma.current\x00', 0x0, 0x0) write$cgroup_pid(r1, &(0x7f0000000040)=r0, 0x12) r4 = openat$cgroup_ro(r3, &(0x7f00000000c0)='pids.current\x00', 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000100)={r4, r3, 0x7}, 0x10) 14:45:19 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:19 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000380)=0x3) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000000440)={&(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000280)="e8eb2b5c0af2a77c002eca7fa9f831f26887886aceda315800ae5d8477b90202eff44c92e06318b13e9e87c0a3dd16a05f257e1a24230935b6932629729782c2d3870e9063bf", 0x46}], 0x1}, 0x800) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000540)='memory.swap.current\x00', 0x0, 0x0) socketpair(0x2c, 0x80000, 0x7, &(0x7f0000000000)) 14:45:19 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000040)={&(0x7f0000000000)='./file0\x00'}, 0x10) 14:45:19 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f00000012c0)={&(0x7f0000000040)="f0ce9ebf5ce4d80b0fb1345fbc1dcd673169fbbdcdab872c9fcaf331dcea5473fa015d62f6e7d1cf55c4bcafddf205edf6b21eb2c3b52b67acc62a907c60f0de8f5c99f38d372f8828404f86118ccb960994baa940e0632c68bd68d968d50c9dc30a232a8e87c9a53ffa33914f6ef3098e9cdcd1be76b680a6204fc6b37a34c6031b2b34b9295e5ac69c081b064e318382824539e728e01b1704b2bd742a11d8cc19dd81", &(0x7f0000000100)=""/98, &(0x7f0000000180)="63c197929c4a840ac002681afee52e2c263bd78d5019e97ee64bf6661765111a2309635f2957dec150f718ef5e133f67997f28a94993a276ed07f84f30e348c2d892333814d812f02838ef4923331c97457bda95473ca5f0032f5a9fc5f553c90dce9a19a0fcd95c06f84ba6f07e87dbf6b612af5107d2c9f67efe69217183f3f6a0bf0a067cadbf1a0688e4680c2f0f30b7e5f14a2f733628e9a66d9f87aaaa5d81245b370cb30fc261bc27f49cea32dafca5d32c0d62582eb3cf9b91de4866cfa677214fd6a594697ad98892939fe7977537b6d8200d", &(0x7f00000002c0)="33da5aa4affd11ba45fe838fd79ea5dbe27a6cbbb619966e9d38f0778bfd343e53983086721f55b25999a8846e194ae15170e28d4c43d060baa5ca3134adc711c046d98b7d6c06af4f6f86a256fb7d489c9d329613d1d34fe740b43e895834f51dc0f09e3772f5c6301ced099c395e85deb78ef9283cdc7e5094d9dbe1fc16d21e2400b3c088edd82dd78716b573b714945068a8f446539a0bfcdbd69e6db23e87e17f78e0bbd18123090947c28205dfd17fee52c05100ab8ce8aede40f40588c442bed0e876cde4420ef4beacf157e69307aefbbec841efd52eff28da52ce1f459432034d1f919719733a5e765e16fc5e56c730a93c97ab90cc954ad702f76061ab58e8575c9774673ca3ced32b040fae5e42076bd98d8d1a36dd13ec70923312110295fb059fa8fa69cef90c46a6751fb6c59943daf9be8766376b8f9244d8691b1521877fd520ceaeaf58cd107e868777c680accd33b92983358abd81303672faf8f9321cecd99d18c436c1ce921b1efedc08a2ea2f69f142f5b9237abb701a41c3a6d18bfe7411eddf5ee6a1ff7fec1d0a2edfe7c3c5667ef071949bbfad7babb579c21750b6f93453ba97ef64ca2de5f5bfe07a3bfa2b6d9cabbdaf89fd2e0263361599e434e4a1c1c0cf692df5d1e875db672df1a879894b9aaeb021b28659fc02c5cc96dc09752ad984e04a1ac53612b9df43d5a4476a7a0d286ddd146580c84b249fdc57b597484209f2097f45cab788f788147c66b26b1705fb15aa7c4de5ecb1c85ab1e951429122aed14f5a07adedc7d601457b277731523af97510b0950dff128170e0d63cdc00f90c1d61fbaeb5091ef50cd6a7cebcaa1909b261e21c757dbe8778b8ad130d29635d12b0dfb6ae12c98b8a128d905033f50de5b34e844e28f89c88039ac664d36d5b0ce0fdce10eaa1ecb819db1e130badb3c0c5c6a8879be5961234ec20466d11e45b4bad41c94b956737f6ae73dd12cbe4828a1e842d31d5406b16187739e51b3568b5bcfb8b73f11834c9bd7da2bce63b4c1ad19b366455061e7f01a0000e66c5b502ef01f1491866a2d8e44cc946361fd2fc44aff374b1c5f9ae51b23d8f2e4cae9453d3889d254a6940647689370f7acec2049a9ffec56c568b5b7118085de2a9b22b49a4b5f3b830e0e9791de4f1cd17e38c0bfb0c596e1bb8b686ed8f683758ccd8e13e4997bd113d752013dff8596dc8b9e30611a1935d487a75a1e8af29b710a4ea884f0b4ba1ae96c0ff7ebb966f24b374b2b3b27185f4e1879c96da6a2c9c78e7c72921b724ee3a0555f61746c427f51f5690bfc1bb66c833ec238a343b378c465555ce9ebf966a77ddc89d48575643a774e6386f0450bbe434aca5e7028067262717603f32ae0bd19ab3a08c50aa7962cc1771652922a81b6344bb66286924ff7b1d271a6c9c7073359cce144061b869c40999ce60d72b9ee3b8ab014cb8f2048f6dafabf0674bfd70ec192b7bb0f78ae82281592f0a012545f264044cb738df01cdef6ee6e0d6f520c9290f6802ae2e0e704ccfc1a60bc2fefe2f0b934df646ea3fe2fdb68633c3ae5b6c7d9cd8942406de26ee73a985b72a05e8789f378041db8e251df90fb4927b9cfd5aa605f6919c50aabd35f3f127e2ad500bf176d2a03c89b5f7ecad6b12d9d78f507bdd3186e7d9aa9197fb2b17064f0234a7c0d6aa297585cb98623585de052d3c961e5402c413dc47566da978a04125b0f8370df1b93d71c28191e00b1829b98a9a5104b54e1fb4e942cc7470a5070fad6c4d79894c6e042a7f0440bb2711f77c2bee12ab9a60b33a4e59bdb6e047812a5feea382b45970d1c50e4a08b1af9c2e8c6a3c1f3564ae1bc109de85e28c2282e137ac83feda3ab623ec88a3e22c2eb11e1d536e4357d40eeee880d704868edf1257039f7827d6efa8a5f2d408341d0208d8fceabb9b04dbac07397053dca81b11f0ac1cc12b29902ed81f0fee3980b73ba3d11f40a1fb7ba95480cd9ad87ea60cd14e9b468f09da9d1e6c0e0cd47b67ef7e81cdad95f7d1b0a33359a2410ee71c54bf70d07e97bccf0c1b3ff6fea870fd61a4ddbcca08e21313d8d66d8e2fe54d3a08dc51cf5f7ef6ec2da8f65cd795d5ababbfa56caef7b662197ca1f394e6271339ccde70d6d8d87cd1ca66bc4dd4d5626dcf190b30bf9147382ddfb24633b3b835680169fe73d0b9d09b7e7e8fd880a2951768ecc9742180f37eb456969faef391643696a3e0c9cdda78388318722c5a9a799b6f4064d8cb08ebe89e92561a421dce8b6b7140ab5e5bb674d29ace41cac0c7a911f537c6d344d58cb43569bafadc8c576a46f542f704a95d6c0823cc097b953f4285589b2ffd6502533dcc6e7383d3ed2f0fe25c804aa096c4e8e7a8bb005d0b935fca80a8e06b0c3be00eb5e6c46c0c8f93ad57e467e1b40ebeabc0b078c54ef76d0b6554c44645de7748a87da37f6ce1e802f2c7a554736be8d5ea44cba52dfb8c9471e71410564667c90ca74be7485a649ba42275f254314310c4589a21a689026ed30393d81969f1f594ab0d96449fd7c922c6cc17330cefdc5108baf97bddb055e0793171dca42f870f8d934f55daae4b06018b0ca86ee131f1b3a8e084eb80e6ac3e3d7f80483185c0a5e3e7e7a099bf69198630fce01abe452deeb82e3fa5c09a68143bfdf5fcfabde44d752119e2ba4510dcf58529e2c2d4f71912f0058608fe207ce7367fefe95b788d796f79f8a84523d3df9130045ceac2e2c62ac13dfdcadc574e2725a4fa3fac5b7884e2820770727de99f293de8e7b1d07f08116a3fb59154babe5d29d09c6ccd3af177879be38564b27fc596b2eb799ce320675d91577395402df111f5a638df123436d52ab3def520e4d1ae56478e74f87d402c143fd87b17336219606483c86a9f3d45d17aef438ad7c2daee563889c9614d81eadcfa9c3aa562f13c175ae50bc8db5ba6410d2227cdb4390433bb4d39bb03d265ad1f7e2dff3c5408442a7f87505bc358637e09a43cce1c06e72d74fdf3175f2a07a14666e34213ce767a95ef212db276796b0493ba8dcd7d9c52fcb661eb8d043b398e914c1bc891b5665b50a894e64fd6d999b56b4ef11b44f6f129e9b0ddd1744e0ebb7d24871f9f07906e329c02e95b2593cc21c2f3e5c5ff74048a791948dbb548099ed593f8e3c33e28ea4e06ac37b93ab127c680f6da17010d7c77d022cbe0ea6605bc9205266e4d8a123049b911a1142b0515d9bab0a795eaa6940156d29349015cc4e0633c0cfa818811ee84f8a6ba3025f20dd910dd4917610c49aa253e3588694e0a826bfab8f5ab494f74b2824f0fa58e37dc81e3ff1307556fcc8e561e796e357d45ab7fa395941f9f77872311d25e424c1860de4b251052c9975cf656220e2dc4b0b1f5c4b99ccae082f0d4b97973d21f64d6307311cdd28292efabdce038e914dd0b30a1519010369406c64537ff2d4cba445d47df3b287a928d145919fd9cd3b1c128ded9c9826f47eafb7e0b9c97e2cc4c8ec0bfadd75c9c51706191c11ebcb0ca1275961d6d345f59b7abcd33809767effdd52e2e705705cdb3a1703116b0dc6e68917186752015469fc07c9609197cc70835784b502e139669f03b50a91018670b201acd289b71c9507de92b9aadc7150d8b0293f250a3154d61788d4fc3aa46de173a8ee8a82d2f8af1b44dff00f6fc08ddd95c09daa6e747c27c01b783de1560f63449dd7f23aa8376034a1c8cc4d3207820d6c033de4f033a453578a2b19c2949eb63562444869f812de5e81c1be93abf25061eb5bd7d8d0e5fdb650f36bebc3b3cec2979c4a012d3a99571ee489858695c556276e3b384f44573543691e4c4e5983aff81dd1197b895e81aa2bbdf3525d1f029ad77e93161614daf655846e27ee1ec604ed50755041b1e8f9c5803c7c8d681ab716f99e848f7e9fc114dce4b4d7ec314c02ede67680cbf2232f4d260927a2164469463555b3da01d28b883587667144d398a392a3512fd448fd518db0faa93e671762611591bbfbe92908b533576519a9f885d50ff883f0e459ec248eb94b25f0b740d1af0f771df0426654993f009a6c3ec48fb73c891da713385aa4b9cc84a3352b6f485d3c82b80c9d1cea20031c5442c85093360384351b38ee540aaf8ad004982bc28ea7bf06a8815a1306a6e5693683fcc9db4ed1241901abdcf43915cf5071abf8b41df12b79ac73ceefd7bf4d9fe06c5575387bf6c967030e9f6ea0496ded468b9c7c3accb54b1a3efc29cd0ab9e4ca2aad4346d133c88baf44bb46ff23d80e3363d05336ca789a41859e7b73f7736de1f482436b656ab152b89a63ea74e42388166a893d4f31cb1395bfd91ab318fe260f7d482ea75474317243f70ea8bfa9abbf731baf55ae88d712d18c846cb2ed1df8c9c5726828d618263e6a99f6d3bffc0309ff0eab40653ba7209d2755113ce9687008b5ccc2f9ac2de4138ba5a563836c472a2f2d93fa5c518c564bcfca234ddb06d75f396d65cd035f28268597ae682c0affbed9892a520cf93a1da30d4747076e97ce76691f27b8c7449fd7ab002489e6b71f056f010f21920117fa08b91c2d65e6bd78bba3f5cc4beafd32901410a8dcb2a7008c0b91c4d4c0e481d7e55959fafdfc7b48f70c8f6e1528e292b5a01863943a3d2f8c4f7e1752d339350538dcbaef37b0500f2016ebc5d9bf3fc2a23929c5ac89a1a90ad6689281bb8e5fbcd69804a4fb32942832a85aa099462f043aea639db3158c52504848d46f1e1ffb6d986cd13f921b164f3d88937dfb377c9c988aea4f4cddbdf4677a7d77ed4a40b8053d1e4bd1599cedcd75066d8a66f0b37a42944e024a502d62c7ac2f3848b4b340901780bb44f5058ff36dbe30efc509c6eff067fe90bd222cf920ac6a9796fc1cff599afe17e3ad22e9e15e84bc46be255eea34cb024e385333736457524cada79dda576013bacba645363369510648b02df34a8595d3f8e8902dc583234a142d01ddeffee006314fa4d58cbd9a63f11901967dd56bfdb374c74bacdf5c80fef997bd4bd8fc707893d6b354d52db956cde668d4241eef07c63965ba2b8547dab5208f138cb0486986a2006f0209fc290164c9e005718041ffb314855370dc5781bba7564eb4c11da7377cbc7d5183cbb0cf3759c9d390b4baa17016dbed3bfeeff3f044f0af96586841ff519b6550bb31427c4016e4ff4cc6e8382f6bb0766e0ba8f9f8b233cca42471606bd8e3f827cefff5b6198267c6921450109b5ed89edf3958194e06c6eb9cb6fff46c56aa90eb1b9aaa0039bf144a4a3f029b6e24b6c6db2bad2e6720224bded918c7eace83c7c6cb6e41cc654711f2050056b72c0d201f5750a052a923210f25c563fb5f5513ebeb571a50ed0f6b5d47d2c3f491c298e7780f8d0d24b4f8049ee6bd03d677b608ad1c4ce82e1289abd0bc0df15b2f4d8b5f148829eb3af2c36bf5ce3c3e148d6c311b2f1e851d3a7b23d8446b63e7170dd002d711f0ee672895a74b03894ffbbbe8c6e29e32d8607a60a1c1b62e3ebae88f9758f9ea7c7a8450afd98e2665b49c7da1edfb85feeaea0d7da1483bf8cfe63dbed43f1797a767718e5e6ffb50d1995c0f75049404ecf8e07e8bc4419094902f87d12fc1954f25824b5817eb7119b988a4f6fbfb2e660a3edd3ead1ebfddf9677bf39d277c9950b7c9698c119f096b192df78e9492e9f7fe11618c9e1f23ef5776b336d1f53a8fa045e01bc0f2fd207745e16d84c62c41bb906cfae77c447d86e97f0", 0x2e02, 0x1}, 0x38) [ 1050.983186][T11428] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1050.991434][T11428] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1050.999245][T11428] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1051.007058][T11428] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1051.014867][T11428] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1051.022692][T11428] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1051.030493][T11428] 14:45:19 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:19 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f00000012c0)={&(0x7f0000000040)="f0ce9ebf5ce4d80b0fb1345fbc1dcd673169fbbdcdab872c9fcaf331dcea5473fa015d62f6e7d1cf55c4bcafddf205edf6b21eb2c3b52b67acc62a907c60f0de8f5c99f38d372f8828404f86118ccb960994baa940e0632c68bd68d968d50c9dc30a232a8e87c9a53ffa33914f6ef3098e9cdcd1be76b680a6204fc6b37a34c6031b2b34b9295e5ac69c081b064e318382824539e728e01b1704b2bd742a11d8cc19dd81", &(0x7f0000000100)=""/98, &(0x7f0000000180)="63c197929c4a840ac002681afee52e2c263bd78d5019e97ee64bf6661765111a2309635f2957dec150f718ef5e133f67997f28a94993a276ed07f84f30e348c2d892333814d812f02838ef4923331c97457bda95473ca5f0032f5a9fc5f553c90dce9a19a0fcd95c06f84ba6f07e87dbf6b612af5107d2c9f67efe69217183f3f6a0bf0a067cadbf1a0688e4680c2f0f30b7e5f14a2f733628e9a66d9f87aaaa5d81245b370cb30fc261bc27f49cea32dafca5d32c0d62582eb3cf9b91de4866cfa677214fd6a594697ad98892939fe7977537b6d8200d", &(0x7f00000002c0)="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", 0x2e02, 0x1}, 0x38) [ 1051.087569][T11478] FAULT_INJECTION: forcing a failure. [ 1051.087569][T11478] name failslab, interval 1, probability 0, space 0, times 0 [ 1051.105834][T11478] CPU: 1 PID: 11478 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1051.115904][T11478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1051.125801][T11478] Call Trace: [ 1051.128924][T11478] [ 1051.131706][T11478] dump_stack_lvl+0x151/0x1b7 [ 1051.136222][T11478] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1051.141507][T11478] dump_stack+0x15/0x17 [ 1051.145497][T11478] should_fail+0x3c0/0x510 [ 1051.149763][T11478] __should_failslab+0x9f/0xe0 [ 1051.154355][T11478] should_failslab+0x9/0x20 [ 1051.158690][T11478] kmem_cache_alloc+0x4f/0x2f0 [ 1051.163294][T11478] ? vm_area_dup+0x26/0x1d0 [ 1051.167633][T11478] vm_area_dup+0x26/0x1d0 [ 1051.171802][T11478] dup_mmap+0x6b8/0xea0 [ 1051.175797][T11478] ? __delayed_free_task+0x20/0x20 [ 1051.180742][T11478] ? mm_init+0x807/0x960 [ 1051.184821][T11478] dup_mm+0x91/0x330 [ 1051.188551][T11478] copy_mm+0x108/0x1b0 [ 1051.192461][T11478] copy_process+0x1295/0x3250 [ 1051.196971][T11478] ? proc_fail_nth_write+0x213/0x290 [ 1051.202094][T11478] ? proc_fail_nth_read+0x220/0x220 [ 1051.207125][T11478] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1051.212074][T11478] ? vfs_write+0x9af/0x1050 [ 1051.216417][T11478] ? vmacache_update+0xb7/0x120 [ 1051.221104][T11478] kernel_clone+0x22d/0x990 [ 1051.225443][T11478] ? file_end_write+0x1b0/0x1b0 [ 1051.230130][T11478] ? __kasan_check_write+0x14/0x20 [ 1051.235076][T11478] ? create_io_thread+0x1e0/0x1e0 [ 1051.239937][T11478] ? __mutex_lock_slowpath+0x10/0x10 [ 1051.245061][T11478] __x64_sys_clone+0x289/0x310 [ 1051.249662][T11478] ? __do_sys_vfork+0x130/0x130 [ 1051.254358][T11478] ? debug_smp_processor_id+0x17/0x20 [ 1051.259558][T11478] do_syscall_64+0x44/0xd0 [ 1051.263809][T11478] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1051.269536][T11478] RIP: 0033:0x7f0bd76b80d9 [ 1051.273807][T11478] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1051.293405][T11478] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1051.301646][T11478] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1051.309458][T11478] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1051.317271][T11478] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1051.325083][T11478] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 14:45:19 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 46) 14:45:19 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000040)={&(0x7f0000000000)='./file0\x00'}, 0x10) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000040)={&(0x7f0000000000)='./file0\x00'}, 0x10) (async) 14:45:19 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000380)=0x3) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000000440)={&(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000280)="e8eb2b5c0af2a77c002eca7fa9f831f26887886aceda315800ae5d8477b90202eff44c92e06318b13e9e87c0a3dd16a05f257e1a24230935b6932629729782c2d3870e9063bf", 0x46}], 0x1}, 0x800) socketpair(0x2c, 0x80000, 0x7, &(0x7f0000000000)) 14:45:19 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f00000012c0)={&(0x7f0000000040)="f0ce9ebf5ce4d80b0fb1345fbc1dcd673169fbbdcdab872c9fcaf331dcea5473fa015d62f6e7d1cf55c4bcafddf205edf6b21eb2c3b52b67acc62a907c60f0de8f5c99f38d372f8828404f86118ccb960994baa940e0632c68bd68d968d50c9dc30a232a8e87c9a53ffa33914f6ef3098e9cdcd1be76b680a6204fc6b37a34c6031b2b34b9295e5ac69c081b064e318382824539e728e01b1704b2bd742a11d8cc19dd81", &(0x7f0000000100)=""/98, &(0x7f0000000180)="63c197929c4a840ac002681afee52e2c263bd78d5019e97ee64bf6661765111a2309635f2957dec150f718ef5e133f67997f28a94993a276ed07f84f30e348c2d892333814d812f02838ef4923331c97457bda95473ca5f0032f5a9fc5f553c90dce9a19a0fcd95c06f84ba6f07e87dbf6b612af5107d2c9f67efe69217183f3f6a0bf0a067cadbf1a0688e4680c2f0f30b7e5f14a2f733628e9a66d9f87aaaa5d81245b370cb30fc261bc27f49cea32dafca5d32c0d62582eb3cf9b91de4866cfa677214fd6a594697ad98892939fe7977537b6d8200d", &(0x7f00000002c0)="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", 0x2e02, 0x1}, 0x38) 14:45:19 executing program 5: syz_clone(0x80000, 0x0, 0x1b, 0x0, 0x0, 0x0) 14:45:19 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400001, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:19 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.group_wait_time\x00', 0x0, 0x0) openat$cgroup_int(r1, &(0x7f0000000040)='cgroup.max.descendants\x00', 0x2, 0x0) 14:45:19 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000380)=0x3) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)) socketpair(0x2c, 0x80000, 0x7, &(0x7f0000000000)) 14:45:19 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1004000, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:19 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000040)={&(0x7f0000000000)='./file0\x00'}, 0x10) [ 1051.332894][T11478] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1051.340707][T11478] 14:45:19 executing program 5: syz_clone(0x80000, 0x0, 0x1b, 0x0, 0x0, 0x0) 14:45:19 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1051.401860][T11501] FAULT_INJECTION: forcing a failure. [ 1051.401860][T11501] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1051.430368][T11501] CPU: 1 PID: 11501 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1051.440440][T11501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1051.450337][T11501] Call Trace: [ 1051.453469][T11501] [ 1051.456248][T11501] dump_stack_lvl+0x151/0x1b7 [ 1051.460748][T11501] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1051.466044][T11501] dump_stack+0x15/0x17 [ 1051.470037][T11501] should_fail+0x3c0/0x510 [ 1051.474291][T11501] should_fail_alloc_page+0x58/0x70 [ 1051.479327][T11501] __alloc_pages+0x1de/0x7c0 [ 1051.483753][T11501] ? __count_vm_events+0x30/0x30 [ 1051.488619][T11501] ? __this_cpu_preempt_check+0x13/0x20 [ 1051.493995][T11501] ? __mod_node_page_state+0xac/0xf0 [ 1051.499114][T11501] pte_alloc_one+0x73/0x1b0 [ 1051.503459][T11501] ? pfn_modify_allowed+0x2e0/0x2e0 [ 1051.508491][T11501] __pte_alloc+0x86/0x350 [ 1051.512662][T11501] ? free_pgtables+0x210/0x210 [ 1051.517257][T11501] ? _raw_spin_lock+0xa3/0x1b0 [ 1051.521856][T11501] ? _raw_spin_trylock_bh+0x1d0/0x1d0 [ 1051.527065][T11501] ? __kernel_text_address+0x9a/0x110 [ 1051.532273][T11501] copy_pte_range+0x1b1f/0x20b0 [ 1051.536961][T11501] ? __kunmap_atomic+0x80/0x80 [ 1051.541646][T11501] ? __kasan_slab_alloc+0xc4/0xe0 [ 1051.546515][T11501] ? __kasan_slab_alloc+0xb2/0xe0 [ 1051.551369][T11501] ? kmem_cache_alloc+0x189/0x2f0 [ 1051.556232][T11501] ? vm_area_dup+0x26/0x1d0 [ 1051.560567][T11501] ? dup_mmap+0x6b8/0xea0 [ 1051.564993][T11501] ? dup_mm+0x91/0x330 [ 1051.568900][T11501] ? copy_mm+0x108/0x1b0 [ 1051.573030][T11501] ? copy_process+0x1295/0x3250 [ 1051.577667][T11501] ? kernel_clone+0x22d/0x990 [ 1051.582269][T11501] ? __x64_sys_clone+0x289/0x310 [ 1051.587041][T11501] ? do_syscall_64+0x44/0xd0 [ 1051.591473][T11501] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1051.597375][T11501] copy_page_range+0xc1e/0x1090 [ 1051.602076][T11501] ? pfn_valid+0x1e0/0x1e0 [ 1051.606317][T11501] dup_mmap+0x99f/0xea0 [ 1051.610309][T11501] ? __delayed_free_task+0x20/0x20 [ 1051.615262][T11501] ? mm_init+0x807/0x960 [ 1051.619336][T11501] dup_mm+0x91/0x330 [ 1051.623065][T11501] copy_mm+0x108/0x1b0 [ 1051.626971][T11501] copy_process+0x1295/0x3250 [ 1051.631488][T11501] ? proc_fail_nth_write+0x213/0x290 [ 1051.636606][T11501] ? proc_fail_nth_read+0x220/0x220 [ 1051.641645][T11501] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1051.646587][T11501] ? vfs_write+0x9af/0x1050 [ 1051.650941][T11501] ? vmacache_update+0xb7/0x120 [ 1051.655613][T11501] kernel_clone+0x22d/0x990 [ 1051.659957][T11501] ? file_end_write+0x1b0/0x1b0 [ 1051.664640][T11501] ? __kasan_check_write+0x14/0x20 [ 1051.669587][T11501] ? create_io_thread+0x1e0/0x1e0 [ 1051.674450][T11501] ? __mutex_lock_slowpath+0x10/0x10 [ 1051.679574][T11501] __x64_sys_clone+0x289/0x310 [ 1051.684175][T11501] ? __do_sys_vfork+0x130/0x130 [ 1051.688860][T11501] ? debug_smp_processor_id+0x17/0x20 [ 1051.694067][T11501] do_syscall_64+0x44/0xd0 [ 1051.698318][T11501] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1051.704052][T11501] RIP: 0033:0x7f0bd76b80d9 [ 1051.708390][T11501] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1051.727833][T11501] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1051.736102][T11501] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1051.743977][T11501] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 14:45:20 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 47) 14:45:20 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.group_wait_time\x00', 0x0, 0x0) openat$cgroup_int(r1, &(0x7f0000000040)='cgroup.max.descendants\x00', 0x2, 0x0) 14:45:20 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000001140), 0x8) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000001180)='\x00') sendmsg$tipc(0xffffffffffffffff, &(0x7f0000001100)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)="0744a9583716ba241aab2ed280338fca82df6700adc76ca3f9184108898321a8e209689903e2f209fe90125963e962b79c5cfafab0158ad4e951177910676048323ef3a26d0f622ae4c14d92be5f53052b6ad30ba8ceac6498e5fbbafcf856f4c7a9930c4fd53a8593d0fcf3dbbe0ead18d94c3491b862573c9a6c284b7adf31fac8dbc25a650e46794d19a67fcfb08dcf", 0x91}], 0x1, &(0x7f0000000100)="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", 0x1000, 0x81}, 0x80) 14:45:20 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000380)=0x3) socketpair(0x2c, 0x80000, 0x7, &(0x7f0000000000)) 14:45:20 executing program 5: syz_clone(0x80000, 0x0, 0x1b, 0x0, 0x0, 0x0) syz_clone(0x80000, 0x0, 0x1b, 0x0, 0x0, 0x0) (async) 14:45:20 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1051.751788][T11501] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1051.759601][T11501] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1051.767420][T11501] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1051.775230][T11501] 14:45:20 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:20 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.group_wait_time\x00', 0x0, 0x0) (async) openat$cgroup_int(r1, &(0x7f0000000040)='cgroup.max.descendants\x00', 0x2, 0x0) 14:45:20 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) socketpair(0x2c, 0x80000, 0x7, &(0x7f0000000000)) 14:45:20 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000001140), 0x8) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000001180)='\x00') (async) sendmsg$tipc(0xffffffffffffffff, &(0x7f0000001100)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)="0744a9583716ba241aab2ed280338fca82df6700adc76ca3f9184108898321a8e209689903e2f209fe90125963e962b79c5cfafab0158ad4e951177910676048323ef3a26d0f622ae4c14d92be5f53052b6ad30ba8ceac6498e5fbbafcf856f4c7a9930c4fd53a8593d0fcf3dbbe0ead18d94c3491b862573c9a6c284b7adf31fac8dbc25a650e46794d19a67fcfb08dcf", 0x91}], 0x1, &(0x7f0000000100)="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", 0x1000, 0x81}, 0x80) 14:45:20 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) r1 = openat$cgroup(r0, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0) openat$cgroup_ro(r1, &(0x7f0000000080)='blkio.throttle.io_service_bytes_recursive\x00', 0x0, 0x0) [ 1051.806581][T11513] FAULT_INJECTION: forcing a failure. [ 1051.806581][T11513] name fail_page_alloc, interval 1, probability 0, space 0, times 0 14:45:20 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1051.848764][T11513] CPU: 1 PID: 11513 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1051.858835][T11513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1051.868735][T11513] Call Trace: [ 1051.871852][T11513] [ 1051.874636][T11513] dump_stack_lvl+0x151/0x1b7 [ 1051.879160][T11513] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1051.884445][T11513] ? stack_trace_save+0x1f0/0x1f0 [ 1051.889310][T11513] ? __kernel_text_address+0x9a/0x110 [ 1051.894528][T11513] dump_stack+0x15/0x17 [ 1051.898504][T11513] should_fail+0x3c0/0x510 [ 1051.902759][T11513] should_fail_alloc_page+0x58/0x70 [ 1051.907798][T11513] __alloc_pages+0x1de/0x7c0 [ 1051.912311][T11513] ? stack_trace_save+0x12d/0x1f0 [ 1051.917174][T11513] ? stack_trace_snprint+0x100/0x100 [ 1051.922391][T11513] ? __count_vm_events+0x30/0x30 [ 1051.927156][T11513] ? __kasan_slab_alloc+0xc4/0xe0 [ 1051.932014][T11513] ? __kasan_slab_alloc+0xb2/0xe0 [ 1051.936877][T11513] ? kmem_cache_alloc+0x189/0x2f0 [ 1051.941740][T11513] ? anon_vma_fork+0x1b9/0x4f0 [ 1051.946336][T11513] get_zeroed_page+0x19/0x40 [ 1051.950763][T11513] __pud_alloc+0x8b/0x260 [ 1051.954932][T11513] ? do_handle_mm_fault+0x2370/0x2370 [ 1051.960136][T11513] copy_page_range+0xd9e/0x1090 [ 1051.964829][T11513] ? pfn_valid+0x1e0/0x1e0 [ 1051.969080][T11513] dup_mmap+0x99f/0xea0 [ 1051.973071][T11513] ? __delayed_free_task+0x20/0x20 [ 1051.978026][T11513] ? mm_init+0x807/0x960 [ 1051.982103][T11513] dup_mm+0x91/0x330 [ 1051.985835][T11513] copy_mm+0x108/0x1b0 [ 1051.989736][T11513] copy_process+0x1295/0x3250 [ 1051.994258][T11513] ? proc_fail_nth_write+0x213/0x290 [ 1051.999372][T11513] ? proc_fail_nth_read+0x220/0x220 [ 1052.004408][T11513] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1052.009356][T11513] ? vfs_write+0x9af/0x1050 [ 1052.013690][T11513] ? vmacache_update+0xb7/0x120 [ 1052.018489][T11513] kernel_clone+0x22d/0x990 [ 1052.022847][T11513] ? file_end_write+0x1b0/0x1b0 [ 1052.027503][T11513] ? __kasan_check_write+0x14/0x20 [ 1052.032451][T11513] ? create_io_thread+0x1e0/0x1e0 [ 1052.037303][T11513] ? __mutex_lock_slowpath+0x10/0x10 [ 1052.042429][T11513] __x64_sys_clone+0x289/0x310 [ 1052.047022][T11513] ? __do_sys_vfork+0x130/0x130 [ 1052.051712][T11513] ? debug_smp_processor_id+0x17/0x20 [ 1052.056919][T11513] do_syscall_64+0x44/0xd0 [ 1052.061171][T11513] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1052.067774][T11513] RIP: 0033:0x7f0bd76b80d9 [ 1052.072026][T11513] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1052.091468][T11513] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 14:45:20 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 48) 14:45:20 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) socketpair(0x2c, 0x80000, 0x7, &(0x7f0000000000)) 14:45:20 executing program 5: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0xa, &(0x7f00000001c0)=@raw=[@func={0x85, 0x0, 0x1, 0x0, 0x5}, @call={0x85, 0x0, 0x0, 0x93}, @exit, @jmp={0x5, 0x1, 0x9, 0x6, 0x2, 0xfffffffffffffff4, 0x10}, @btf_id={0x18, 0x4, 0x3, 0x0, 0x3}, @func={0x85, 0x0, 0x1, 0x0, 0x4}, @generic={0x6, 0x4, 0x5, 0xfff8, 0x8}, @exit, @jmp={0x5, 0x0, 0x2, 0x4, 0x3, 0x50}], &(0x7f0000000240)='syzkaller\x00', 0x1, 0x5, &(0x7f0000000280)=""/5, 0x41100, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000002c0)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x9, 0x3, 0xffffffff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000340)=[0x1, r0]}, 0x80) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x101000, &(0x7f0000000000)="90a7f8962bdf0ebc6841", 0xa, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)="caedf82d64e854a95b150b885d70f57ae62bb8fa42f103b64cb3f153005f995fd886a184039cdc0f6f37e0a3bfcc5937fd6b0254a43386400d0df6ab265d63c7bb313987134fd8920d3ab712915eba254e05bcd0c04807718a5905f689cb951620aa8fb02654a294cfe7ae8965e1c78d23137040f7c76e7a671e66bb0fc7d7928faa8be77f9959e7b57b5be94a63e56ce8078dc755498a8115ad25fc814df0fa8104be9a296bf051afc5f697149ffa5366ab0915edce7dac745fbde2cf61c03ac955d607c9a039be019adf09afedb39ae596bc3032753756c8") 14:45:20 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) r1 = openat$cgroup(r0, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0) openat$cgroup_ro(r1, &(0x7f0000000080)='blkio.throttle.io_service_bytes_recursive\x00', 0x0, 0x0) 14:45:20 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:20 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000001140), 0x8) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000001180)='\x00') (async, rerun: 64) sendmsg$tipc(0xffffffffffffffff, &(0x7f0000001100)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)="0744a9583716ba241aab2ed280338fca82df6700adc76ca3f9184108898321a8e209689903e2f209fe90125963e962b79c5cfafab0158ad4e951177910676048323ef3a26d0f622ae4c14d92be5f53052b6ad30ba8ceac6498e5fbbafcf856f4c7a9930c4fd53a8593d0fcf3dbbe0ead18d94c3491b862573c9a6c284b7adf31fac8dbc25a650e46794d19a67fcfb08dcf", 0x91}], 0x1, &(0x7f0000000100)="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", 0x1000, 0x81}, 0x80) (rerun: 64) [ 1052.099710][T11513] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1052.107526][T11513] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1052.115363][T11513] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1052.123155][T11513] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1052.130955][T11513] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1052.138950][T11513] 14:45:20 executing program 5: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0xa, &(0x7f00000001c0)=@raw=[@func={0x85, 0x0, 0x1, 0x0, 0x5}, @call={0x85, 0x0, 0x0, 0x93}, @exit, @jmp={0x5, 0x1, 0x9, 0x6, 0x2, 0xfffffffffffffff4, 0x10}, @btf_id={0x18, 0x4, 0x3, 0x0, 0x3}, @func={0x85, 0x0, 0x1, 0x0, 0x4}, @generic={0x6, 0x4, 0x5, 0xfff8, 0x8}, @exit, @jmp={0x5, 0x0, 0x2, 0x4, 0x3, 0x50}], &(0x7f0000000240)='syzkaller\x00', 0x1, 0x5, &(0x7f0000000280)=""/5, 0x41100, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000002c0)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x9, 0x3, 0xffffffff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000340)=[0x1, r0]}, 0x80) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x101000, &(0x7f0000000000)="90a7f8962bdf0ebc6841", 0xa, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)="caedf82d64e854a95b150b885d70f57ae62bb8fa42f103b64cb3f153005f995fd886a184039cdc0f6f37e0a3bfcc5937fd6b0254a43386400d0df6ab265d63c7bb313987134fd8920d3ab712915eba254e05bcd0c04807718a5905f689cb951620aa8fb02654a294cfe7ae8965e1c78d23137040f7c76e7a671e66bb0fc7d7928faa8be77f9959e7b57b5be94a63e56ce8078dc755498a8115ad25fc814df0fa8104be9a296bf051afc5f697149ffa5366ab0915edce7dac745fbde2cf61c03ac955d607c9a039be019adf09afedb39ae596bc3032753756c8") 14:45:20 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) r1 = openat$cgroup(r0, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0) openat$cgroup_ro(r1, &(0x7f0000000080)='blkio.throttle.io_service_bytes_recursive\x00', 0x0, 0x0) 14:45:20 executing program 1: socketpair(0x2c, 0x80000, 0x7, &(0x7f0000000000)) 14:45:20 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:20 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000200)=@bpf_lsm={0x1d, 0x5, &(0x7f0000000040)=ANY=[@ANYRES8=r0], &(0x7f0000000080)='GPL\x00', 0x4, 0x5e, &(0x7f00000000c0)=""/94, 0x0, 0x1b, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000140)={0x5, 0x2}, 0x8, 0x10, &(0x7f0000000180)={0x1, 0x2, 0x0, 0xf0fe}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[0xffffffffffffffff]}, 0x80) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000280)={&(0x7f0000000000)='./file0\x00', r1}, 0x10) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff}) setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000300)=r1, 0x4) 14:45:20 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1052.267243][T11569] FAULT_INJECTION: forcing a failure. [ 1052.267243][T11569] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1052.280406][T11569] CPU: 0 PID: 11569 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1052.290460][T11569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1052.300371][T11569] Call Trace: [ 1052.303473][T11569] [ 1052.306252][T11569] dump_stack_lvl+0x151/0x1b7 [ 1052.310764][T11569] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1052.316061][T11569] dump_stack+0x15/0x17 [ 1052.320050][T11569] should_fail+0x3c0/0x510 [ 1052.324313][T11569] should_fail_alloc_page+0x58/0x70 [ 1052.329348][T11569] __alloc_pages+0x1de/0x7c0 [ 1052.333768][T11569] ? __count_vm_events+0x30/0x30 [ 1052.338546][T11569] ? dup_mm+0x91/0x330 [ 1052.342449][T11569] ? copy_mm+0x108/0x1b0 [ 1052.346525][T11569] ? copy_process+0x1295/0x3250 [ 1052.351212][T11569] ? kernel_clone+0x22d/0x990 [ 1052.355727][T11569] ? __x64_sys_clone+0x289/0x310 [ 1052.360501][T11569] pte_alloc_one+0x73/0x1b0 [ 1052.364842][T11569] ? pfn_modify_allowed+0x2e0/0x2e0 [ 1052.369872][T11569] ? __kasan_check_write+0x14/0x20 [ 1052.374823][T11569] ? __set_page_owner+0x2ee/0x310 [ 1052.379689][T11569] __pte_alloc+0x86/0x350 [ 1052.383886][T11569] ? post_alloc_hook+0x1ab/0x1b0 [ 1052.388620][T11569] ? free_pgtables+0x210/0x210 [ 1052.393221][T11569] ? get_page_from_freelist+0x38b/0x400 [ 1052.398604][T11569] copy_pte_range+0x1b1f/0x20b0 [ 1052.403466][T11569] ? __kunmap_atomic+0x80/0x80 [ 1052.408152][T11569] ? __pud_alloc+0x260/0x260 [ 1052.412577][T11569] ? __pud_alloc+0x218/0x260 [ 1052.417004][T11569] ? do_handle_mm_fault+0x2370/0x2370 [ 1052.422219][T11569] copy_page_range+0xc1e/0x1090 [ 1052.426903][T11569] ? pfn_valid+0x1e0/0x1e0 [ 1052.431156][T11569] dup_mmap+0x99f/0xea0 [ 1052.435154][T11569] ? __delayed_free_task+0x20/0x20 [ 1052.440091][T11569] ? mm_init+0x807/0x960 [ 1052.444173][T11569] dup_mm+0x91/0x330 [ 1052.447906][T11569] copy_mm+0x108/0x1b0 [ 1052.451812][T11569] copy_process+0x1295/0x3250 [ 1052.456324][T11569] ? proc_fail_nth_write+0x213/0x290 [ 1052.461447][T11569] ? proc_fail_nth_read+0x220/0x220 [ 1052.466504][T11569] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1052.471427][T11569] ? vfs_write+0x9af/0x1050 [ 1052.475782][T11569] ? vmacache_update+0xb7/0x120 [ 1052.480457][T11569] kernel_clone+0x22d/0x990 [ 1052.484802][T11569] ? file_end_write+0x1b0/0x1b0 [ 1052.489489][T11569] ? __kasan_check_write+0x14/0x20 [ 1052.494430][T11569] ? create_io_thread+0x1e0/0x1e0 [ 1052.499295][T11569] ? __mutex_lock_slowpath+0x10/0x10 [ 1052.504414][T11569] __x64_sys_clone+0x289/0x310 [ 1052.509109][T11569] ? __do_sys_vfork+0x130/0x130 [ 1052.513792][T11569] ? debug_smp_processor_id+0x17/0x20 [ 1052.519000][T11569] do_syscall_64+0x44/0xd0 [ 1052.523249][T11569] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1052.528976][T11569] RIP: 0033:0x7f0bd76b80d9 [ 1052.533232][T11569] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1052.552687][T11569] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 14:45:21 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 49) 14:45:21 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@bloom_filter={0x1e, 0x62ea, 0xffff, 0x6, 0x400, 0x1, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x2, 0x1, 0x5}, 0x48) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r2}, 0x14) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000100)={@map=r1, r2, 0x20, 0x9}, 0x14) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) openat$cgroup_pressure(r0, &(0x7f0000000040)='cpu.pressure\x00', 0x2, 0x0) 14:45:21 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000200)=@bpf_lsm={0x1d, 0x5, &(0x7f0000000040)=ANY=[@ANYRES8=r0], &(0x7f0000000080)='GPL\x00', 0x4, 0x5e, &(0x7f00000000c0)=""/94, 0x0, 0x1b, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000140)={0x5, 0x2}, 0x8, 0x10, &(0x7f0000000180)={0x1, 0x2, 0x0, 0xf0fe}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[0xffffffffffffffff]}, 0x80) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000280)={&(0x7f0000000000)='./file0\x00', r1}, 0x10) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff}) setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000300)=r1, 0x4) 14:45:21 executing program 1: socketpair(0x0, 0x80000, 0x7, &(0x7f0000000000)) 14:45:21 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:21 executing program 5: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0xa, &(0x7f00000001c0)=@raw=[@func={0x85, 0x0, 0x1, 0x0, 0x5}, @call={0x85, 0x0, 0x0, 0x93}, @exit, @jmp={0x5, 0x1, 0x9, 0x6, 0x2, 0xfffffffffffffff4, 0x10}, @btf_id={0x18, 0x4, 0x3, 0x0, 0x3}, @func={0x85, 0x0, 0x1, 0x0, 0x4}, @generic={0x6, 0x4, 0x5, 0xfff8, 0x8}, @exit, @jmp={0x5, 0x0, 0x2, 0x4, 0x3, 0x50}], &(0x7f0000000240)='syzkaller\x00', 0x1, 0x5, &(0x7f0000000280)=""/5, 0x41100, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000002c0)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x9, 0x3, 0xffffffff}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000340)=[0x1, r0]}, 0x80) (async) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) (async) syz_clone(0x101000, &(0x7f0000000000)="90a7f8962bdf0ebc6841", 0xa, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)="caedf82d64e854a95b150b885d70f57ae62bb8fa42f103b64cb3f153005f995fd886a184039cdc0f6f37e0a3bfcc5937fd6b0254a43386400d0df6ab265d63c7bb313987134fd8920d3ab712915eba254e05bcd0c04807718a5905f689cb951620aa8fb02654a294cfe7ae8965e1c78d23137040f7c76e7a671e66bb0fc7d7928faa8be77f9959e7b57b5be94a63e56ce8078dc755498a8115ad25fc814df0fa8104be9a296bf051afc5f697149ffa5366ab0915edce7dac745fbde2cf61c03ac955d607c9a039be019adf09afedb39ae596bc3032753756c8") 14:45:21 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:21 executing program 1: socketpair(0x0, 0x80000, 0x7, &(0x7f0000000000)) 14:45:21 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000200)=@bpf_lsm={0x1d, 0x5, &(0x7f0000000040)=ANY=[@ANYRES8=r0], &(0x7f0000000080)='GPL\x00', 0x4, 0x5e, &(0x7f00000000c0)=""/94, 0x0, 0x1b, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000140)={0x5, 0x2}, 0x8, 0x10, &(0x7f0000000180)={0x1, 0x2, 0x0, 0xf0fe}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[0xffffffffffffffff]}, 0x80) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000280)={&(0x7f0000000000)='./file0\x00', r1}, 0x10) (async) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff}) setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000300)=r1, 0x4) 14:45:21 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@bloom_filter={0x1e, 0x62ea, 0xffff, 0x6, 0x400, 0x1, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x2, 0x1, 0x5}, 0x48) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r2}, 0x14) (async) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000100)={@map=r1, r2, 0x20, 0x9}, 0x14) (async, rerun: 32) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (rerun: 32) openat$cgroup_pressure(r0, &(0x7f0000000040)='cpu.pressure\x00', 0x2, 0x0) [ 1052.560921][T11569] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1052.568817][T11569] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1052.576662][T11569] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1052.584528][T11569] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1052.592342][T11569] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1052.600245][T11569] 14:45:21 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400001, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:21 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@bloom_filter={0x1e, 0x62ea, 0xffff, 0x6, 0x400, 0x1, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x2, 0x1, 0x5}, 0x48) (async) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r2}, 0x14) (async) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000100)={@map=r1, r2, 0x20, 0x9}, 0x14) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) openat$cgroup_pressure(r0, &(0x7f0000000040)='cpu.pressure\x00', 0x2, 0x0) 14:45:21 executing program 5: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x40a842, 0x0) ioctl$TUNSETVNETLE(r0, 0x400454dc, &(0x7f0000000000)=0x1) syz_clone(0x28800400, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1052.647706][T11592] FAULT_INJECTION: forcing a failure. [ 1052.647706][T11592] name failslab, interval 1, probability 0, space 0, times 0 [ 1052.666501][T11592] CPU: 1 PID: 11592 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1052.676582][T11592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1052.686469][T11592] Call Trace: [ 1052.689589][T11592] [ 1052.692368][T11592] dump_stack_lvl+0x151/0x1b7 [ 1052.697037][T11592] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1052.702350][T11592] dump_stack+0x15/0x17 [ 1052.706340][T11592] should_fail+0x3c0/0x510 [ 1052.710571][T11592] __should_failslab+0x9f/0xe0 [ 1052.715171][T11592] should_failslab+0x9/0x20 [ 1052.719533][T11592] kmem_cache_alloc+0x4f/0x2f0 [ 1052.724121][T11592] ? vm_area_dup+0x26/0x1d0 [ 1052.728645][T11592] vm_area_dup+0x26/0x1d0 [ 1052.733083][T11592] dup_mmap+0x6b8/0xea0 [ 1052.737190][T11592] ? __delayed_free_task+0x20/0x20 [ 1052.742213][T11592] ? mm_init+0x807/0x960 [ 1052.746277][T11592] dup_mm+0x91/0x330 [ 1052.750017][T11592] copy_mm+0x108/0x1b0 [ 1052.754091][T11592] copy_process+0x1295/0x3250 [ 1052.758604][T11592] ? proc_fail_nth_write+0x213/0x290 [ 1052.763754][T11592] ? proc_fail_nth_read+0x220/0x220 [ 1052.768758][T11592] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1052.773711][T11592] ? vfs_write+0x9af/0x1050 [ 1052.778043][T11592] ? vmacache_update+0xb7/0x120 [ 1052.782731][T11592] kernel_clone+0x22d/0x990 [ 1052.787095][T11592] ? file_end_write+0x1b0/0x1b0 [ 1052.791759][T11592] ? __kasan_check_write+0x14/0x20 [ 1052.796708][T11592] ? create_io_thread+0x1e0/0x1e0 [ 1052.801570][T11592] ? __mutex_lock_slowpath+0x10/0x10 [ 1052.806785][T11592] __x64_sys_clone+0x289/0x310 [ 1052.811965][T11592] ? __do_sys_vfork+0x130/0x130 [ 1052.816652][T11592] ? debug_smp_processor_id+0x17/0x20 [ 1052.821858][T11592] do_syscall_64+0x44/0xd0 [ 1052.826125][T11592] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1052.831839][T11592] RIP: 0033:0x7f0bd76b80d9 [ 1052.836093][T11592] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1052.855579][T11592] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1052.863780][T11592] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1052.871591][T11592] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1052.879402][T11592] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1052.887222][T11592] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 14:45:21 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 50) 14:45:21 executing program 5: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x40a842, 0x0) ioctl$TUNSETVNETLE(r0, 0x400454dc, &(0x7f0000000000)=0x1) syz_clone(0x28800400, 0x0, 0x0, 0x0, 0x0, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x40a842, 0x0) (async) ioctl$TUNSETVNETLE(r0, 0x400454dc, &(0x7f0000000000)=0x1) (async) syz_clone(0x28800400, 0x0, 0x0, 0x0, 0x0, 0x0) (async) 14:45:21 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1004000, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:21 executing program 1: socketpair(0x0, 0x80000, 0x7, &(0x7f0000000000)) 14:45:21 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x103) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='blkio.bfq.time\x00', 0x0, 0x0) write$cgroup_devices(r2, &(0x7f00000004c0)={'b', ' *:* ', 'w\x00'}, 0x8) recvmsg(r0, &(0x7f0000000480)={&(0x7f0000000040)=@tipc=@name, 0x80, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/241, 0xf1}, {&(0x7f00000001c0)=""/234, 0xea}, {&(0x7f00000002c0)}, {&(0x7f0000000300)=""/227, 0xe3}], 0x4, &(0x7f0000000440)=""/48, 0x30}, 0x40000003) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)) 14:45:21 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x103) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='blkio.bfq.time\x00', 0x0, 0x0) write$cgroup_devices(r2, &(0x7f00000004c0)={'b', ' *:* ', 'w\x00'}, 0x8) (async) recvmsg(r0, &(0x7f0000000480)={&(0x7f0000000040)=@tipc=@name, 0x80, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/241, 0xf1}, {&(0x7f00000001c0)=""/234, 0xea}, {&(0x7f00000002c0)}, {&(0x7f0000000300)=""/227, 0xe3}], 0x4, &(0x7f0000000440)=""/48, 0x30}, 0x40000003) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)) 14:45:21 executing program 3: ioctl$TUNDETACHFILTER(0xffffffffffffffff, 0x401054d6, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000040), 0x4) 14:45:21 executing program 1: socketpair(0x2c, 0x0, 0x7, &(0x7f0000000000)) [ 1052.895294][T11592] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1052.903110][T11592] 14:45:21 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x103) (async) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='blkio.bfq.time\x00', 0x0, 0x0) write$cgroup_devices(r2, &(0x7f00000004c0)={'b', ' *:* ', 'w\x00'}, 0x8) (async) recvmsg(r0, &(0x7f0000000480)={&(0x7f0000000040)=@tipc=@name, 0x80, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/241, 0xf1}, {&(0x7f00000001c0)=""/234, 0xea}, {&(0x7f00000002c0)}, {&(0x7f0000000300)=""/227, 0xe3}], 0x4, &(0x7f0000000440)=""/48, 0x30}, 0x40000003) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)) 14:45:21 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:21 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:21 executing program 4: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000300)={r0, &(0x7f0000000100)="cf9882938cf0762d8cff7369166d6ed2d836768eaf00cb98ceccf9bcd54f6ea5cfcb321b926f8b62e233beeda8a1e37240609ce502817d95f7aa5d449b53c69ee36b1cb9416442e2fb1d5a385c745d9c6d9b1af88bff97d295e6845ae677894579d6ea973fad9a712e53b25d827b75b2aff0ceb7b0799576e128e344858344d41c51cffe8d2b24c7c46a96678c84ab7daa7ac84daac67e96c7be48180cbd2f4b2b7f5ed198a3b50f313fa57acbd833f5e3830f9f48aa0f2769618123984f0b2d6d16b84e1574c9aa8d50d1ceb282685760f84be9c058e9790efa72014d88a32d566c95b8009907e8a6c511e484b4ab27", &(0x7f0000000200)=""/215}, 0x20) perf_event_open$cgroup(&(0x7f0000000080)={0x3, 0x80, 0x9, 0x3, 0x4, 0x0, 0x0, 0x8, 0x48000, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x9, 0x1, @perf_bp={&(0x7f0000000040), 0x3}, 0x808, 0x7, 0x8, 0x5, 0x6, 0x0, 0x9, 0x0, 0xe6}, r0, 0x10, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r2, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) ioctl$TUNSETVNETHDRSZ(r1, 0x400454d8, &(0x7f0000000000)=0x6) [ 1052.944311][T11620] FAULT_INJECTION: forcing a failure. [ 1052.944311][T11620] name failslab, interval 1, probability 0, space 0, times 0 [ 1052.959115][T11620] CPU: 1 PID: 11620 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1052.969183][T11620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1052.979101][T11620] Call Trace: [ 1052.982210][T11620] [ 1052.984978][T11620] dump_stack_lvl+0x151/0x1b7 [ 1052.989495][T11620] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1052.994888][T11620] dump_stack+0x15/0x17 [ 1052.998865][T11620] should_fail+0x3c0/0x510 [ 1053.003292][T11620] __should_failslab+0x9f/0xe0 [ 1053.008004][T11620] should_failslab+0x9/0x20 [ 1053.012339][T11620] kmem_cache_alloc+0x4f/0x2f0 [ 1053.016949][T11620] ? vm_area_dup+0x26/0x1d0 [ 1053.021282][T11620] vm_area_dup+0x26/0x1d0 [ 1053.025449][T11620] dup_mmap+0x6b8/0xea0 [ 1053.029440][T11620] ? __delayed_free_task+0x20/0x20 [ 1053.034396][T11620] ? mm_init+0x807/0x960 [ 1053.038486][T11620] dup_mm+0x91/0x330 [ 1053.042219][T11620] copy_mm+0x108/0x1b0 [ 1053.046112][T11620] copy_process+0x1295/0x3250 [ 1053.050625][T11620] ? proc_fail_nth_write+0x213/0x290 [ 1053.055863][T11620] ? proc_fail_nth_read+0x220/0x220 [ 1053.061342][T11620] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1053.066271][T11620] ? vfs_write+0x9af/0x1050 [ 1053.070606][T11620] ? vmacache_update+0xb7/0x120 [ 1053.075299][T11620] kernel_clone+0x22d/0x990 [ 1053.079717][T11620] ? file_end_write+0x1b0/0x1b0 [ 1053.084403][T11620] ? __kasan_check_write+0x14/0x20 [ 1053.089364][T11620] ? create_io_thread+0x1e0/0x1e0 [ 1053.094221][T11620] ? __mutex_lock_slowpath+0x10/0x10 [ 1053.099341][T11620] __x64_sys_clone+0x289/0x310 [ 1053.103936][T11620] ? __do_sys_vfork+0x130/0x130 [ 1053.108631][T11620] ? debug_smp_processor_id+0x17/0x20 [ 1053.113830][T11620] do_syscall_64+0x44/0xd0 [ 1053.118083][T11620] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1053.123810][T11620] RIP: 0033:0x7f0bd76b80d9 [ 1053.128065][T11620] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1053.147507][T11620] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1053.155751][T11620] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1053.163564][T11620] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1053.171376][T11620] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1053.179191][T11620] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1053.187002][T11620] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 14:45:21 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 51) 14:45:21 executing program 4: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000300)={r0, &(0x7f0000000100)="cf9882938cf0762d8cff7369166d6ed2d836768eaf00cb98ceccf9bcd54f6ea5cfcb321b926f8b62e233beeda8a1e37240609ce502817d95f7aa5d449b53c69ee36b1cb9416442e2fb1d5a385c745d9c6d9b1af88bff97d295e6845ae677894579d6ea973fad9a712e53b25d827b75b2aff0ceb7b0799576e128e344858344d41c51cffe8d2b24c7c46a96678c84ab7daa7ac84daac67e96c7be48180cbd2f4b2b7f5ed198a3b50f313fa57acbd833f5e3830f9f48aa0f2769618123984f0b2d6d16b84e1574c9aa8d50d1ceb282685760f84be9c058e9790efa72014d88a32d566c95b8009907e8a6c511e484b4ab27", &(0x7f0000000200)=""/215}, 0x20) (async) perf_event_open$cgroup(&(0x7f0000000080)={0x3, 0x80, 0x9, 0x3, 0x4, 0x0, 0x0, 0x8, 0x48000, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x9, 0x1, @perf_bp={&(0x7f0000000040), 0x3}, 0x808, 0x7, 0x8, 0x5, 0x6, 0x0, 0x9, 0x0, 0xe6}, r0, 0x10, 0xffffffffffffffff, 0x0) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r2, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) ioctl$TUNSETVNETHDRSZ(r1, 0x400454d8, &(0x7f0000000000)=0x6) 14:45:21 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:21 executing program 5: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x40a842, 0x0) ioctl$TUNSETVNETLE(r0, 0x400454dc, &(0x7f0000000000)=0x1) (async) syz_clone(0x28800400, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:21 executing program 1: socketpair(0x2c, 0x0, 0x0, &(0x7f0000000000)) 14:45:21 executing program 3: ioctl$TUNDETACHFILTER(0xffffffffffffffff, 0x401054d6, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000040), 0x4) ioctl$TUNDETACHFILTER(0xffffffffffffffff, 0x401054d6, 0x0) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000040), 0x4) (async) 14:45:21 executing program 1: socketpair(0x2c, 0x0, 0x0, 0x0) 14:45:21 executing program 4: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000300)={r0, &(0x7f0000000100)="cf9882938cf0762d8cff7369166d6ed2d836768eaf00cb98ceccf9bcd54f6ea5cfcb321b926f8b62e233beeda8a1e37240609ce502817d95f7aa5d449b53c69ee36b1cb9416442e2fb1d5a385c745d9c6d9b1af88bff97d295e6845ae677894579d6ea973fad9a712e53b25d827b75b2aff0ceb7b0799576e128e344858344d41c51cffe8d2b24c7c46a96678c84ab7daa7ac84daac67e96c7be48180cbd2f4b2b7f5ed198a3b50f313fa57acbd833f5e3830f9f48aa0f2769618123984f0b2d6d16b84e1574c9aa8d50d1ceb282685760f84be9c058e9790efa72014d88a32d566c95b8009907e8a6c511e484b4ab27", &(0x7f0000000200)=""/215}, 0x20) (async) perf_event_open$cgroup(&(0x7f0000000080)={0x3, 0x80, 0x9, 0x3, 0x4, 0x0, 0x0, 0x8, 0x48000, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x9, 0x1, @perf_bp={&(0x7f0000000040), 0x3}, 0x808, 0x7, 0x8, 0x5, 0x6, 0x0, 0x9, 0x0, 0xe6}, r0, 0x10, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r2, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) ioctl$TUNSETVNETHDRSZ(r1, 0x400454d8, &(0x7f0000000000)=0x6) 14:45:21 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1053.194920][T11620] 14:45:21 executing program 5: openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x0, 0x0) syz_clone(0x24820480, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:21 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'pim6reg0\x00', 0x1}) 14:45:21 executing program 3: ioctl$TUNDETACHFILTER(0xffffffffffffffff, 0x401054d6, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000040), 0x4) [ 1053.233946][T11655] FAULT_INJECTION: forcing a failure. [ 1053.233946][T11655] name failslab, interval 1, probability 0, space 0, times 0 [ 1053.266356][T11655] CPU: 1 PID: 11655 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1053.276728][T11655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1053.286627][T11655] Call Trace: [ 1053.289744][T11655] [ 1053.292524][T11655] dump_stack_lvl+0x151/0x1b7 [ 1053.297038][T11655] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1053.302334][T11655] dump_stack+0x15/0x17 [ 1053.306345][T11655] should_fail+0x3c0/0x510 [ 1053.310577][T11655] __should_failslab+0x9f/0xe0 [ 1053.315177][T11655] should_failslab+0x9/0x20 [ 1053.319517][T11655] kmem_cache_alloc+0x4f/0x2f0 [ 1053.324117][T11655] ? vm_area_dup+0x26/0x1d0 [ 1053.328459][T11655] vm_area_dup+0x26/0x1d0 [ 1053.332640][T11655] dup_mmap+0x6b8/0xea0 [ 1053.336621][T11655] ? __delayed_free_task+0x20/0x20 [ 1053.341568][T11655] ? mm_init+0x807/0x960 [ 1053.345649][T11655] dup_mm+0x91/0x330 [ 1053.349386][T11655] copy_mm+0x108/0x1b0 [ 1053.353290][T11655] copy_process+0x1295/0x3250 [ 1053.357807][T11655] ? proc_fail_nth_write+0x213/0x290 [ 1053.362927][T11655] ? proc_fail_nth_read+0x220/0x220 [ 1053.367966][T11655] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1053.372902][T11655] ? vfs_write+0x9af/0x1050 [ 1053.377249][T11655] ? vmacache_update+0xb7/0x120 [ 1053.381929][T11655] kernel_clone+0x22d/0x990 [ 1053.386272][T11655] ? file_end_write+0x1b0/0x1b0 [ 1053.390961][T11655] ? __kasan_check_write+0x14/0x20 [ 1053.396130][T11655] ? create_io_thread+0x1e0/0x1e0 [ 1053.400978][T11655] ? __mutex_lock_slowpath+0x10/0x10 [ 1053.406099][T11655] __x64_sys_clone+0x289/0x310 [ 1053.410704][T11655] ? __do_sys_vfork+0x130/0x130 [ 1053.415395][T11655] ? debug_smp_processor_id+0x17/0x20 [ 1053.420595][T11655] do_syscall_64+0x44/0xd0 [ 1053.424845][T11655] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1053.430580][T11655] RIP: 0033:0x7f0bd76b80d9 [ 1053.434831][T11655] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1053.454272][T11655] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1053.462521][T11655] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1053.470333][T11655] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 14:45:22 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 52) 14:45:22 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:22 executing program 1: socketpair(0x2c, 0x0, 0x0, 0x0) 14:45:22 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) openat$cgroup_devices(r1, &(0x7f0000000080)='devices.allow\x00', 0x2, 0x0) 14:45:22 executing program 5: openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x0, 0x0) syz_clone(0x24820480, 0x0, 0x0, 0x0, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x0, 0x0) (async) syz_clone(0x24820480, 0x0, 0x0, 0x0, 0x0, 0x0) (async) 14:45:22 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) openat$cgroup_devices(r1, &(0x7f0000000080)='devices.allow\x00', 0x2, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) (async) openat$cgroup_devices(r1, &(0x7f0000000080)='devices.allow\x00', 0x2, 0x0) (async) 14:45:22 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) (async, rerun: 32) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'pim6reg0\x00', 0x1}) (rerun: 32) 14:45:22 executing program 1: socketpair(0x2c, 0x0, 0x0, 0x0) 14:45:22 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1053.478140][T11655] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1053.485968][T11655] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1053.493773][T11655] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1053.501585][T11655] 14:45:22 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) openat$cgroup_devices(r1, &(0x7f0000000080)='devices.allow\x00', 0x2, 0x0) 14:45:22 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'pim6reg0\x00', 0x1}) 14:45:22 executing program 5: openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x0, 0x0) syz_clone(0x24820480, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1053.534654][T11688] FAULT_INJECTION: forcing a failure. [ 1053.534654][T11688] name failslab, interval 1, probability 0, space 0, times 0 [ 1053.556601][T11688] CPU: 0 PID: 11688 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1053.566674][T11688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1053.576566][T11688] Call Trace: [ 1053.579689][T11688] [ 1053.582468][T11688] dump_stack_lvl+0x151/0x1b7 [ 1053.587152][T11688] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1053.592451][T11688] dump_stack+0x15/0x17 [ 1053.596442][T11688] should_fail+0x3c0/0x510 [ 1053.600698][T11688] __should_failslab+0x9f/0xe0 [ 1053.605294][T11688] should_failslab+0x9/0x20 [ 1053.609633][T11688] kmem_cache_alloc+0x4f/0x2f0 [ 1053.614239][T11688] ? vm_area_dup+0x26/0x1d0 [ 1053.618578][T11688] vm_area_dup+0x26/0x1d0 [ 1053.622743][T11688] dup_mmap+0x6b8/0xea0 [ 1053.626734][T11688] ? __delayed_free_task+0x20/0x20 [ 1053.631682][T11688] ? mm_init+0x807/0x960 [ 1053.635761][T11688] dup_mm+0x91/0x330 [ 1053.639690][T11688] copy_mm+0x108/0x1b0 [ 1053.643578][T11688] copy_process+0x1295/0x3250 [ 1053.648094][T11688] ? proc_fail_nth_write+0x213/0x290 [ 1053.653209][T11688] ? proc_fail_nth_read+0x220/0x220 [ 1053.658242][T11688] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1053.663187][T11688] ? vfs_write+0x9af/0x1050 [ 1053.667528][T11688] ? vmacache_update+0xb7/0x120 [ 1053.672225][T11688] kernel_clone+0x22d/0x990 [ 1053.676560][T11688] ? file_end_write+0x1b0/0x1b0 [ 1053.681244][T11688] ? __kasan_check_write+0x14/0x20 [ 1053.686193][T11688] ? create_io_thread+0x1e0/0x1e0 [ 1053.691056][T11688] ? __mutex_lock_slowpath+0x10/0x10 [ 1053.696180][T11688] __x64_sys_clone+0x289/0x310 [ 1053.700807][T11688] ? __do_sys_vfork+0x130/0x130 [ 1053.705549][T11688] ? debug_smp_processor_id+0x17/0x20 [ 1053.710755][T11688] do_syscall_64+0x44/0xd0 [ 1053.715006][T11688] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1053.720740][T11688] RIP: 0033:0x7f0bd76b80d9 [ 1053.724989][T11688] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1053.744433][T11688] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1053.752685][T11688] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1053.760495][T11688] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1053.768302][T11688] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1053.776114][T11688] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 14:45:22 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 53) 14:45:22 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x10}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:22 executing program 5: syz_clone(0x2a70a00, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:22 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:22 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'pim6reg0\x00', 0x1}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) (async) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) (async) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'pim6reg0\x00', 0x1}) (async) 14:45:22 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:22 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) [ 1053.783927][T11688] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1053.791740][T11688] [ 1053.813432][T11710] FAULT_INJECTION: forcing a failure. [ 1053.813432][T11710] name failslab, interval 1, probability 0, space 0, times 0 14:45:22 executing program 5: syz_clone(0x2a70a00, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:22 executing program 5: syz_clone(0x2a70a00, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x2a70a00, 0x0, 0x0, 0x0, 0x0, 0x0) (async) 14:45:22 executing program 5: openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x4801, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETSNDBUF(r0, 0x400454d4, &(0x7f0000000080)=0x7fff) ioctl$TUNSETFILTEREBPF(r0, 0x800454e1, 0x0) ioctl$TUNSETSNDBUF(r0, 0x400454d4, &(0x7f0000000040)=0x402) syz_clone(0x18068200, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1053.832678][T11710] CPU: 0 PID: 11710 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1053.842748][T11710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1053.852644][T11710] Call Trace: [ 1053.855782][T11710] [ 1053.858543][T11710] dump_stack_lvl+0x151/0x1b7 [ 1053.863060][T11710] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1053.868350][T11710] dump_stack+0x15/0x17 [ 1053.872344][T11710] should_fail+0x3c0/0x510 [ 1053.876599][T11710] __should_failslab+0x9f/0xe0 [ 1053.881292][T11710] should_failslab+0x9/0x20 [ 1053.885621][T11710] kmem_cache_alloc+0x4f/0x2f0 [ 1053.890219][T11710] ? vm_area_dup+0x26/0x1d0 [ 1053.894574][T11710] vm_area_dup+0x26/0x1d0 [ 1053.898739][T11710] dup_mmap+0x6b8/0xea0 [ 1053.902719][T11710] ? __delayed_free_task+0x20/0x20 [ 1053.907697][T11710] ? mm_init+0x807/0x960 [ 1053.911747][T11710] dup_mm+0x91/0x330 [ 1053.915481][T11710] copy_mm+0x108/0x1b0 [ 1053.919383][T11710] copy_process+0x1295/0x3250 [ 1053.923902][T11710] ? proc_fail_nth_write+0x213/0x290 [ 1053.929024][T11710] ? proc_fail_nth_read+0x220/0x220 [ 1053.934054][T11710] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1053.938999][T11710] ? vfs_write+0x9af/0x1050 [ 1053.943339][T11710] ? vmacache_update+0xb7/0x120 [ 1053.948026][T11710] kernel_clone+0x22d/0x990 [ 1053.952375][T11710] ? file_end_write+0x1b0/0x1b0 [ 1053.957055][T11710] ? __kasan_check_write+0x14/0x20 [ 1053.962007][T11710] ? create_io_thread+0x1e0/0x1e0 [ 1053.966866][T11710] ? __mutex_lock_slowpath+0x10/0x10 [ 1053.971987][T11710] __x64_sys_clone+0x289/0x310 [ 1053.976588][T11710] ? __do_sys_vfork+0x130/0x130 [ 1053.981277][T11710] ? debug_smp_processor_id+0x17/0x20 [ 1053.986480][T11710] do_syscall_64+0x44/0xd0 [ 1053.990738][T11710] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1053.996463][T11710] RIP: 0033:0x7f0bd76b80d9 [ 1054.000718][T11710] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1054.020169][T11710] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1054.028404][T11710] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 14:45:22 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'pim6reg0\x00', 0x1}) 14:45:22 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:22 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x400001}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:22 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 54) 14:45:22 executing program 5: openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x4801, 0x0) (async, rerun: 64) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) (rerun: 64) ioctl$TUNSETSNDBUF(r0, 0x400454d4, &(0x7f0000000080)=0x7fff) ioctl$TUNSETFILTEREBPF(r0, 0x800454e1, 0x0) (async) ioctl$TUNSETSNDBUF(r0, 0x400454d4, &(0x7f0000000040)=0x402) (async, rerun: 32) syz_clone(0x18068200, 0x0, 0x0, 0x0, 0x0, 0x0) (rerun: 32) [ 1054.036216][T11710] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1054.044029][T11710] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1054.052014][T11710] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1054.059913][T11710] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1054.067725][T11710] 14:45:22 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r2}, 0x14) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000040)={@map=r1, r2, 0x24, 0x4}, 0x14) [ 1054.092920][T11740] FAULT_INJECTION: forcing a failure. [ 1054.092920][T11740] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1054.106133][T11740] CPU: 1 PID: 11740 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1054.116105][T11740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1054.125994][T11740] Call Trace: [ 1054.129113][T11740] [ 1054.131894][T11740] dump_stack_lvl+0x151/0x1b7 [ 1054.136447][T11740] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1054.141700][T11740] dump_stack+0x15/0x17 [ 1054.145700][T11740] should_fail+0x3c0/0x510 [ 1054.149950][T11740] should_fail_alloc_page+0x58/0x70 [ 1054.154982][T11740] __alloc_pages+0x1de/0x7c0 [ 1054.159423][T11740] ? __count_vm_events+0x30/0x30 [ 1054.164186][T11740] ? __this_cpu_preempt_check+0x13/0x20 [ 1054.169601][T11740] ? __mod_node_page_state+0xac/0xf0 [ 1054.174693][T11740] pte_alloc_one+0x73/0x1b0 [ 1054.179026][T11740] ? pfn_modify_allowed+0x2e0/0x2e0 [ 1054.184060][T11740] __pte_alloc+0x86/0x350 [ 1054.188245][T11740] ? free_pgtables+0x210/0x210 [ 1054.192824][T11740] ? _raw_spin_lock+0xa3/0x1b0 [ 1054.197427][T11740] ? _raw_spin_trylock_bh+0x1d0/0x1d0 [ 1054.202636][T11740] ? __kernel_text_address+0x9a/0x110 [ 1054.207841][T11740] copy_pte_range+0x1b1f/0x20b0 [ 1054.212687][T11740] ? __kunmap_atomic+0x80/0x80 [ 1054.217227][T11740] ? __kasan_slab_alloc+0xc4/0xe0 [ 1054.222078][T11740] ? __kasan_slab_alloc+0xb2/0xe0 [ 1054.226937][T11740] ? kmem_cache_alloc+0x189/0x2f0 [ 1054.231797][T11740] ? vm_area_dup+0x26/0x1d0 [ 1054.236144][T11740] ? dup_mmap+0x6b8/0xea0 [ 1054.240307][T11740] ? dup_mm+0x91/0x330 [ 1054.244647][T11740] ? copy_mm+0x108/0x1b0 [ 1054.248724][T11740] ? copy_process+0x1295/0x3250 [ 1054.253416][T11740] ? kernel_clone+0x22d/0x990 [ 1054.257924][T11740] ? __x64_sys_clone+0x289/0x310 [ 1054.263144][T11740] ? do_syscall_64+0x44/0xd0 [ 1054.267560][T11740] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1054.273638][T11740] copy_page_range+0xc1e/0x1090 [ 1054.278454][T11740] ? pfn_valid+0x1e0/0x1e0 [ 1054.282708][T11740] dup_mmap+0x99f/0xea0 [ 1054.286781][T11740] ? __delayed_free_task+0x20/0x20 [ 1054.291816][T11740] ? mm_init+0x807/0x960 [ 1054.295892][T11740] dup_mm+0x91/0x330 [ 1054.299627][T11740] copy_mm+0x108/0x1b0 [ 1054.303531][T11740] copy_process+0x1295/0x3250 [ 1054.308046][T11740] ? proc_fail_nth_write+0x213/0x290 [ 1054.313167][T11740] ? proc_fail_nth_read+0x220/0x220 [ 1054.318202][T11740] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1054.323147][T11740] ? vfs_write+0x9af/0x1050 [ 1054.327488][T11740] ? vmacache_update+0xb7/0x120 [ 1054.332179][T11740] kernel_clone+0x22d/0x990 [ 1054.336523][T11740] ? file_end_write+0x1b0/0x1b0 [ 1054.341204][T11740] ? __kasan_check_write+0x14/0x20 [ 1054.346151][T11740] ? create_io_thread+0x1e0/0x1e0 [ 1054.351075][T11740] ? __mutex_lock_slowpath+0x10/0x10 [ 1054.356135][T11740] __x64_sys_clone+0x289/0x310 [ 1054.360745][T11740] ? __do_sys_vfork+0x130/0x130 [ 1054.365516][T11740] ? debug_smp_processor_id+0x17/0x20 [ 1054.370716][T11740] do_syscall_64+0x44/0xd0 [ 1054.374976][T11740] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1054.380699][T11740] RIP: 0033:0x7f0bd76b80d9 [ 1054.384955][T11740] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1054.404658][T11740] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1054.413422][T11740] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1054.421231][T11740] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1054.429046][T11740] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1054.436858][T11740] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 14:45:22 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000002c0), 0x444900, 0x0) ioctl$TUNDETACHFILTER(r2, 0x401054d6, 0x0) r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='pids.current\x00', 0x0, 0x0) ioctl$TUNSETVNETLE(r3, 0x400454dc, &(0x7f0000000080)) ioctl$TUNSETNOCSUM(0xffffffffffffffff, 0x400454c8, 0x0) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x18000, 0x0) ioctl$TUNGETVNETBE(r4, 0x800454df, &(0x7f0000000280)=0x1) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000001c0)={0xffffffffffffffff, 0x0, 0x13, 0x5a, &(0x7f0000000000)="b9a4e917e720ab9751e34376466de696757868", &(0x7f0000000300)=""/90, 0xe4, 0x0, 0x3c, 0xc0, &(0x7f00000000c0)="c28a4585f43f1e7237b94508000000b3b340aa261e5e8c12794f5e4b9a554bd5fc48fd5d0bbbed3494000000007e4a42ce62d218daf4d9248bc0ac68", &(0x7f0000000100)="7d95a7d68e80dd586eae3a94ee238bd56f8bf2d99994b50c09015f02dae87dfb4251c153c7154414e873168057e17b79408ef9c228a6145df7b200d7409d2d2d8ba3d6599907976c22c42ed598370151eb6b66b8ad7feb0a89e5273aa91c9f066f17f042249024f41fa0f9fd73182870bbed1ad9d4bbb7f1a9014a71fad6302b1e8ce14f169e888936f54ef99e98738949ef6aedf7bcc7709e980b24aab6178a662a1d0e9dbab703302be61ccb0bc8b9f9aa0f79d35b228745dc268b0bffe3aa", 0x1, 0x101}, 0x48) 14:45:22 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1004000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:22 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r2}, 0x14) (async) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000040)={@map=r1, r2, 0x24, 0x4}, 0x14) 14:45:22 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 55) 14:45:22 executing program 5: openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x4801, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETSNDBUF(r0, 0x400454d4, &(0x7f0000000080)=0x7fff) (async, rerun: 32) ioctl$TUNSETFILTEREBPF(r0, 0x800454e1, 0x0) (async, rerun: 32) ioctl$TUNSETSNDBUF(r0, 0x400454d4, &(0x7f0000000040)=0x402) syz_clone(0x18068200, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:23 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000002c0), 0x444900, 0x0) ioctl$TUNDETACHFILTER(r2, 0x401054d6, 0x0) r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='pids.current\x00', 0x0, 0x0) ioctl$TUNSETVNETLE(r3, 0x400454dc, &(0x7f0000000080)) ioctl$TUNSETNOCSUM(0xffffffffffffffff, 0x400454c8, 0x0) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x18000, 0x0) ioctl$TUNGETVNETBE(r4, 0x800454df, &(0x7f0000000280)=0x1) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000001c0)={0xffffffffffffffff, 0x0, 0x13, 0x5a, &(0x7f0000000000)="b9a4e917e720ab9751e34376466de696757868", &(0x7f0000000300)=""/90, 0xe4, 0x0, 0x3c, 0xc0, &(0x7f00000000c0)="c28a4585f43f1e7237b94508000000b3b340aa261e5e8c12794f5e4b9a554bd5fc48fd5d0bbbed3494000000007e4a42ce62d218daf4d9248bc0ac68", &(0x7f0000000100)="7d95a7d68e80dd586eae3a94ee238bd56f8bf2d99994b50c09015f02dae87dfb4251c153c7154414e873168057e17b79408ef9c228a6145df7b200d7409d2d2d8ba3d6599907976c22c42ed598370151eb6b66b8ad7feb0a89e5273aa91c9f066f17f042249024f41fa0f9fd73182870bbed1ad9d4bbb7f1a9014a71fad6302b1e8ce14f169e888936f54ef99e98738949ef6aedf7bcc7709e980b24aab6178a662a1d0e9dbab703302be61ccb0bc8b9f9aa0f79d35b228745dc268b0bffe3aa", 0x1, 0x101}, 0x48) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) (async) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) (async) openat$tun(0xffffffffffffff9c, &(0x7f00000002c0), 0x444900, 0x0) (async) ioctl$TUNDETACHFILTER(r2, 0x401054d6, 0x0) (async) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='pids.current\x00', 0x0, 0x0) (async) ioctl$TUNSETVNETLE(r3, 0x400454dc, &(0x7f0000000080)) (async) ioctl$TUNSETNOCSUM(0xffffffffffffffff, 0x400454c8, 0x0) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x18000, 0x0) (async) ioctl$TUNGETVNETBE(r4, 0x800454df, &(0x7f0000000280)=0x1) (async) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000001c0)={0xffffffffffffffff, 0x0, 0x13, 0x5a, &(0x7f0000000000)="b9a4e917e720ab9751e34376466de696757868", &(0x7f0000000300)=""/90, 0xe4, 0x0, 0x3c, 0xc0, &(0x7f00000000c0)="c28a4585f43f1e7237b94508000000b3b340aa261e5e8c12794f5e4b9a554bd5fc48fd5d0bbbed3494000000007e4a42ce62d218daf4d9248bc0ac68", &(0x7f0000000100)="7d95a7d68e80dd586eae3a94ee238bd56f8bf2d99994b50c09015f02dae87dfb4251c153c7154414e873168057e17b79408ef9c228a6145df7b200d7409d2d2d8ba3d6599907976c22c42ed598370151eb6b66b8ad7feb0a89e5273aa91c9f066f17f042249024f41fa0f9fd73182870bbed1ad9d4bbb7f1a9014a71fad6302b1e8ce14f169e888936f54ef99e98738949ef6aedf7bcc7709e980b24aab6178a662a1d0e9dbab703302be61ccb0bc8b9f9aa0f79d35b228745dc268b0bffe3aa", 0x1, 0x101}, 0x48) (async) [ 1054.444689][T11740] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1054.452480][T11740] [ 1054.479833][T11756] FAULT_INJECTION: forcing a failure. [ 1054.479833][T11756] name failslab, interval 1, probability 0, space 0, times 0 [ 1054.494920][T11756] CPU: 1 PID: 11756 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1054.505244][T11756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1054.515138][T11756] Call Trace: [ 1054.518277][T11756] [ 1054.521042][T11756] dump_stack_lvl+0x151/0x1b7 [ 1054.526075][T11756] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1054.531374][T11756] dump_stack+0x15/0x17 [ 1054.535362][T11756] should_fail+0x3c0/0x510 [ 1054.539617][T11756] __should_failslab+0x9f/0xe0 [ 1054.544217][T11756] should_failslab+0x9/0x20 [ 1054.548558][T11756] kmem_cache_alloc+0x4f/0x2f0 [ 1054.553156][T11756] ? anon_vma_clone+0xa1/0x4f0 [ 1054.557843][T11756] anon_vma_clone+0xa1/0x4f0 [ 1054.562269][T11756] anon_vma_fork+0x91/0x4f0 [ 1054.566612][T11756] ? anon_vma_name+0x43/0x70 [ 1054.571054][T11756] dup_mmap+0x750/0xea0 [ 1054.575031][T11756] ? __delayed_free_task+0x20/0x20 [ 1054.579980][T11756] ? mm_init+0x807/0x960 [ 1054.584156][T11756] dup_mm+0x91/0x330 [ 1054.587890][T11756] copy_mm+0x108/0x1b0 [ 1054.591796][T11756] copy_process+0x1295/0x3250 [ 1054.596324][T11756] ? proc_fail_nth_write+0x213/0x290 [ 1054.601436][T11756] ? proc_fail_nth_read+0x220/0x220 [ 1054.606493][T11756] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1054.611415][T11756] ? vfs_write+0x9af/0x1050 [ 1054.615751][T11756] ? vmacache_update+0xb7/0x120 [ 1054.620438][T11756] kernel_clone+0x22d/0x990 [ 1054.624780][T11756] ? file_end_write+0x1b0/0x1b0 [ 1054.629469][T11756] ? __kasan_check_write+0x14/0x20 [ 1054.634416][T11756] ? create_io_thread+0x1e0/0x1e0 [ 1054.639288][T11756] ? __mutex_lock_slowpath+0x10/0x10 [ 1054.644400][T11756] __x64_sys_clone+0x289/0x310 [ 1054.649526][T11756] ? __do_sys_vfork+0x130/0x130 [ 1054.654206][T11756] ? debug_smp_processor_id+0x17/0x20 [ 1054.659425][T11756] do_syscall_64+0x44/0xd0 [ 1054.663666][T11756] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1054.669397][T11756] RIP: 0033:0x7f0bd76b80d9 [ 1054.673653][T11756] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 14:45:23 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000002c0), 0x444900, 0x0) ioctl$TUNDETACHFILTER(r2, 0x401054d6, 0x0) r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='pids.current\x00', 0x0, 0x0) ioctl$TUNSETVNETLE(r3, 0x400454dc, &(0x7f0000000080)) ioctl$TUNSETNOCSUM(0xffffffffffffffff, 0x400454c8, 0x0) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x18000, 0x0) ioctl$TUNGETVNETBE(r4, 0x800454df, &(0x7f0000000280)=0x1) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000001c0)={0xffffffffffffffff, 0x0, 0x13, 0x5a, &(0x7f0000000000)="b9a4e917e720ab9751e34376466de696757868", &(0x7f0000000300)=""/90, 0xe4, 0x0, 0x3c, 0xc0, &(0x7f00000000c0)="c28a4585f43f1e7237b94508000000b3b340aa261e5e8c12794f5e4b9a554bd5fc48fd5d0bbbed3494000000007e4a42ce62d218daf4d9248bc0ac68", &(0x7f0000000100)="7d95a7d68e80dd586eae3a94ee238bd56f8bf2d99994b50c09015f02dae87dfb4251c153c7154414e873168057e17b79408ef9c228a6145df7b200d7409d2d2d8ba3d6599907976c22c42ed598370151eb6b66b8ad7feb0a89e5273aa91c9f066f17f042249024f41fa0f9fd73182870bbed1ad9d4bbb7f1a9014a71fad6302b1e8ce14f169e888936f54ef99e98738949ef6aedf7bcc7709e980b24aab6178a662a1d0e9dbab703302be61ccb0bc8b9f9aa0f79d35b228745dc268b0bffe3aa", 0x1, 0x101}, 0x48) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) (async) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) (async) openat$tun(0xffffffffffffff9c, &(0x7f00000002c0), 0x444900, 0x0) (async) ioctl$TUNDETACHFILTER(r2, 0x401054d6, 0x0) (async) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='pids.current\x00', 0x0, 0x0) (async) ioctl$TUNSETVNETLE(r3, 0x400454dc, &(0x7f0000000080)) (async) ioctl$TUNSETNOCSUM(0xffffffffffffffff, 0x400454c8, 0x0) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x18000, 0x0) (async) ioctl$TUNGETVNETBE(r4, 0x800454df, &(0x7f0000000280)=0x1) (async) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000001c0)={0xffffffffffffffff, 0x0, 0x13, 0x5a, &(0x7f0000000000)="b9a4e917e720ab9751e34376466de696757868", &(0x7f0000000300)=""/90, 0xe4, 0x0, 0x3c, 0xc0, &(0x7f00000000c0)="c28a4585f43f1e7237b94508000000b3b340aa261e5e8c12794f5e4b9a554bd5fc48fd5d0bbbed3494000000007e4a42ce62d218daf4d9248bc0ac68", &(0x7f0000000100)="7d95a7d68e80dd586eae3a94ee238bd56f8bf2d99994b50c09015f02dae87dfb4251c153c7154414e873168057e17b79408ef9c228a6145df7b200d7409d2d2d8ba3d6599907976c22c42ed598370151eb6b66b8ad7feb0a89e5273aa91c9f066f17f042249024f41fa0f9fd73182870bbed1ad9d4bbb7f1a9014a71fad6302b1e8ce14f169e888936f54ef99e98738949ef6aedf7bcc7709e980b24aab6178a662a1d0e9dbab703302be61ccb0bc8b9f9aa0f79d35b228745dc268b0bffe3aa", 0x1, 0x101}, 0x48) (async) 14:45:23 executing program 5: syz_clone(0x1800700, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair(0x2b, 0x4, 0x7, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000002a00)={&(0x7f0000000340), 0x6e, &(0x7f0000002800)=[{&(0x7f00000003c0)=""/70, 0x46}, {&(0x7f0000000440)=""/40, 0x28}, {&(0x7f0000000480)=""/26, 0x1a}, {&(0x7f00000004c0)=""/244, 0xf4}, {&(0x7f00000005c0)=""/175, 0xaf}, {&(0x7f0000000680)=""/226, 0xe2}, {&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000001780)=""/100, 0x64}, {&(0x7f0000001800)=""/4096, 0x1000}], 0x9, &(0x7f00000028c0)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x108}, 0x22) recvmsg$unix(r0, &(0x7f0000000300)={&(0x7f0000000040), 0x6e, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/220, 0xdc}], 0x1, &(0x7f0000000200)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xe0}, 0x141) r2 = openat$cgroup_procs(r1, &(0x7f0000002a40)='tasks\x00', 0x2, 0x0) r3 = gettid() syz_open_procfs$namespace(r3, 0x0) write$cgroup_pid(r2, &(0x7f0000002a80)=r3, 0x12) 14:45:23 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:23 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'pim6reg0\x00', 0x1}) 14:45:23 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r2}, 0x14) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000040)={@map=r1, r2, 0x24, 0x4}, 0x14) [ 1054.693175][T11756] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1054.701421][T11756] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1054.709253][T11756] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1054.718089][T11756] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1054.725988][T11756] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1054.733912][T11756] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1054.742953][T11756] 14:45:23 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 56) 14:45:23 executing program 5: syz_clone(0x1800700, 0x0, 0x0, 0x0, 0x0, 0x0) (async) socketpair(0x2b, 0x4, 0x7, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000002a00)={&(0x7f0000000340), 0x6e, &(0x7f0000002800)=[{&(0x7f00000003c0)=""/70, 0x46}, {&(0x7f0000000440)=""/40, 0x28}, {&(0x7f0000000480)=""/26, 0x1a}, {&(0x7f00000004c0)=""/244, 0xf4}, {&(0x7f00000005c0)=""/175, 0xaf}, {&(0x7f0000000680)=""/226, 0xe2}, {&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000001780)=""/100, 0x64}, {&(0x7f0000001800)=""/4096, 0x1000}], 0x9, &(0x7f00000028c0)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x108}, 0x22) recvmsg$unix(r0, &(0x7f0000000300)={&(0x7f0000000040), 0x6e, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/220, 0xdc}], 0x1, &(0x7f0000000200)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xe0}, 0x141) r2 = openat$cgroup_procs(r1, &(0x7f0000002a40)='tasks\x00', 0x2, 0x0) (async) r3 = gettid() syz_open_procfs$namespace(r3, 0x0) write$cgroup_pid(r2, &(0x7f0000002a80)=r3, 0x12) 14:45:23 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:23 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:23 executing program 5: syz_clone(0x1800700, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair(0x2b, 0x4, 0x7, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000002a00)={&(0x7f0000000340), 0x6e, &(0x7f0000002800)=[{&(0x7f00000003c0)=""/70, 0x46}, {&(0x7f0000000440)=""/40, 0x28}, {&(0x7f0000000480)=""/26, 0x1a}, {&(0x7f00000004c0)=""/244, 0xf4}, {&(0x7f00000005c0)=""/175, 0xaf}, {&(0x7f0000000680)=""/226, 0xe2}, {&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000001780)=""/100, 0x64}, {&(0x7f0000001800)=""/4096, 0x1000}], 0x9, &(0x7f00000028c0)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x108}, 0x22) recvmsg$unix(r0, &(0x7f0000000300)={&(0x7f0000000040), 0x6e, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/220, 0xdc}], 0x1, &(0x7f0000000200)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xe0}, 0x141) (async) r2 = openat$cgroup_procs(r1, &(0x7f0000002a40)='tasks\x00', 0x2, 0x0) (async, rerun: 64) r3 = gettid() (rerun: 64) syz_open_procfs$namespace(r3, 0x0) write$cgroup_pid(r2, &(0x7f0000002a80)=r3, 0x12) 14:45:23 executing program 4: bpf$MAP_CREATE(0x0, &(0x7f00000011c0)=@base={0x0, 0x0, 0x0, 0x0, 0x86, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x3}, 0x48) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)='cpuset.memory_migrate\x00', 0x2, 0x0) 14:45:23 executing program 3: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x64, 0x4b, 0x0, 0x3f, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x6, 0x1, @perf_config_ext={0x72b7, 0x1}, 0x1400, 0x4, 0x814, 0x4, 0x2, 0x64, 0x8, 0x0, 0xffff0001, 0x0, 0x7f}, r0, 0x5, r1, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xe, 0x0, 0x4, 0x0, 0x200, 0x1, 0xffff, '\x00', 0x0, r0, 0x3, 0x5, 0x40}, 0x48) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) 14:45:23 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x10000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1054.795677][T11801] FAULT_INJECTION: forcing a failure. [ 1054.795677][T11801] name failslab, interval 1, probability 0, space 0, times 0 [ 1054.821346][T11801] CPU: 0 PID: 11801 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1054.831529][T11801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1054.841443][T11801] Call Trace: [ 1054.844543][T11801] [ 1054.847412][T11801] dump_stack_lvl+0x151/0x1b7 [ 1054.852009][T11801] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1054.857304][T11801] dump_stack+0x15/0x17 [ 1054.861328][T11801] should_fail+0x3c0/0x510 [ 1054.865559][T11801] __should_failslab+0x9f/0xe0 [ 1054.870149][T11801] should_failslab+0x9/0x20 [ 1054.874607][T11801] kmem_cache_alloc+0x4f/0x2f0 [ 1054.879213][T11801] ? vm_area_dup+0x26/0x1d0 [ 1054.883545][T11801] vm_area_dup+0x26/0x1d0 [ 1054.887709][T11801] dup_mmap+0x6b8/0xea0 [ 1054.891700][T11801] ? __delayed_free_task+0x20/0x20 [ 1054.896721][T11801] ? mm_init+0x807/0x960 [ 1054.900754][T11801] dup_mm+0x91/0x330 [ 1054.904462][T11801] copy_mm+0x108/0x1b0 [ 1054.908366][T11801] copy_process+0x1295/0x3250 [ 1054.912903][T11801] ? proc_fail_nth_write+0x213/0x290 [ 1054.918087][T11801] ? proc_fail_nth_read+0x220/0x220 [ 1054.923557][T11801] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1054.928510][T11801] ? vfs_write+0x9af/0x1050 [ 1054.932848][T11801] ? vmacache_update+0xb7/0x120 [ 1054.937551][T11801] kernel_clone+0x22d/0x990 [ 1054.941961][T11801] ? file_end_write+0x1b0/0x1b0 [ 1054.946650][T11801] ? __kasan_check_write+0x14/0x20 [ 1054.951592][T11801] ? create_io_thread+0x1e0/0x1e0 [ 1054.956469][T11801] ? __mutex_lock_slowpath+0x10/0x10 [ 1054.961584][T11801] __x64_sys_clone+0x289/0x310 [ 1054.966190][T11801] ? __do_sys_vfork+0x130/0x130 [ 1054.970861][T11801] ? debug_smp_processor_id+0x17/0x20 [ 1054.976074][T11801] do_syscall_64+0x44/0xd0 [ 1054.980324][T11801] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1054.986051][T11801] RIP: 0033:0x7f0bd76b80d9 [ 1054.990313][T11801] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1055.009919][T11801] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1055.018264][T11801] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1055.026079][T11801] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1055.033971][T11801] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 14:45:23 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x20000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:23 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'pim6reg0\x00', 0x1}) 14:45:23 executing program 4: bpf$MAP_CREATE(0x0, &(0x7f00000011c0)=@base={0x0, 0x0, 0x0, 0x0, 0x86, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x3}, 0x48) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)='cpuset.memory_migrate\x00', 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000011c0)=@base={0x0, 0x0, 0x0, 0x0, 0x86, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x3}, 0x48) (async) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000002fc0)) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)='cpuset.memory_migrate\x00', 0x2, 0x0) (async) 14:45:23 executing program 3: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) (async, rerun: 32) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (rerun: 32) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async, rerun: 32) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (rerun: 32) perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x64, 0x4b, 0x0, 0x3f, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x6, 0x1, @perf_config_ext={0x72b7, 0x1}, 0x1400, 0x4, 0x814, 0x4, 0x2, 0x64, 0x8, 0x0, 0xffff0001, 0x0, 0x7f}, r0, 0x5, r1, 0x0) (async) bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xe, 0x0, 0x4, 0x0, 0x200, 0x1, 0xffff, '\x00', 0x0, r0, 0x3, 0x5, 0x40}, 0x48) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) 14:45:23 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 57) 14:45:23 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x40000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:23 executing program 3: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x64, 0x4b, 0x0, 0x3f, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x6, 0x1, @perf_config_ext={0x72b7, 0x1}, 0x1400, 0x4, 0x814, 0x4, 0x2, 0x64, 0x8, 0x0, 0xffff0001, 0x0, 0x7f}, r0, 0x5, r1, 0x0) (async) bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xe, 0x0, 0x4, 0x0, 0x200, 0x1, 0xffff, '\x00', 0x0, r0, 0x3, 0x5, 0x40}, 0x48) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) 14:45:23 executing program 4: bpf$MAP_CREATE(0x0, &(0x7f00000011c0)=@base={0x0, 0x0, 0x0, 0x0, 0x86, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x3}, 0x48) (async) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)='cpuset.memory_migrate\x00', 0x2, 0x0) 14:45:23 executing program 5: syz_clone(0x5c12cc00, 0x0, 0x0, 0x0, 0x0, 0x0) gettid() 14:45:23 executing program 5: syz_clone(0x5c12cc00, 0x0, 0x0, 0x0, 0x0, 0x0) gettid() syz_clone(0x5c12cc00, 0x0, 0x0, 0x0, 0x0, 0x0) (async) gettid() (async) [ 1055.042052][T11801] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1055.049865][T11801] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1055.057766][T11801] 14:45:23 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x200000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:23 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = gettid() openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x50007, 0x0) write$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000100)='FROZEN\x00', 0x7) recvmsg$unix(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000140)=""/43, 0x2b}], 0x1, &(0x7f00000001c0)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x130}, 0x40002000) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000080), 0x4) syz_open_procfs$namespace(r1, 0x0) write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000000)=r1, 0x12) write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000040)=r1, 0x12) r7 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r7, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r7, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0xb, 0x3, &(0x7f00000004c0)=@raw=[@exit, @btf_id={0x18, 0xb, 0x3, 0x0, 0x5}], &(0x7f0000000500)='syzkaller\x00', 0x2, 0xb, &(0x7f0000000540)=""/11, 0x41000, 0x2, '\x00', 0x0, 0xf, r2, 0x8, &(0x7f0000000580)={0x4, 0x5}, 0x8, 0x10, &(0x7f00000005c0)={0x4, 0x4, 0x7fffffff, 0x8}, 0x10, 0xffffffffffffffff}, 0x80) r9 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000740)={r3, r3, 0x1e}, 0x10) ioctl$TUNGETFEATURES(r9, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r9, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r10 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r10, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r10, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r11 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r11, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r11, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r12 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r12, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r12, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000006c0)=@bpf_tracing={0x1a, 0x5, &(0x7f0000000340)=@raw=[@map_val={0x18, 0x0, 0x2, 0x0, r7, 0x0, 0x0, 0x0, 0x4}, @map_idx={0x18, 0x0, 0x5, 0x0, 0xa}, @exit], &(0x7f0000000380)='GPL\x00', 0x0, 0x57, &(0x7f00000003c0)=""/87, 0x40f00, 0x0, '\x00', 0x0, 0x18, r6, 0x8, &(0x7f0000000440)={0xa, 0x5}, 0x8, 0x10, &(0x7f0000000480)={0x0, 0x3, 0x3ff, 0x2}, 0x10, 0xc8f8, r8, 0x0, &(0x7f0000000680)=[r4, r9, r10, r5, r11, r12]}, 0x80) 14:45:23 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000080)='cgroup.threads\x00', 0x2, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) r2 = openat$cgroup(r1, &(0x7f00000000c0)='syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000100)={@cgroup=r2, 0xffffffffffffffff, 0x0, 0x3}, 0x14) 14:45:23 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1055.112892][T11845] FAULT_INJECTION: forcing a failure. [ 1055.112892][T11845] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1055.128323][T11845] CPU: 0 PID: 11845 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1055.138394][T11845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1055.148291][T11845] Call Trace: [ 1055.151412][T11845] [ 1055.154204][T11845] dump_stack_lvl+0x151/0x1b7 [ 1055.158738][T11845] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1055.163993][T11845] dump_stack+0x15/0x17 [ 1055.167988][T11845] should_fail+0x3c0/0x510 [ 1055.172238][T11845] should_fail_alloc_page+0x58/0x70 [ 1055.177278][T11845] __alloc_pages+0x1de/0x7c0 [ 1055.181700][T11845] ? __count_vm_events+0x30/0x30 [ 1055.186472][T11845] ? __this_cpu_preempt_check+0x13/0x20 [ 1055.191859][T11845] ? __mod_node_page_state+0xac/0xf0 [ 1055.196976][T11845] pte_alloc_one+0x73/0x1b0 [ 1055.201508][T11845] ? pfn_modify_allowed+0x2e0/0x2e0 [ 1055.206526][T11845] __pte_alloc+0x86/0x350 [ 1055.210695][T11845] ? free_pgtables+0x210/0x210 [ 1055.215288][T11845] ? _raw_spin_lock+0xa3/0x1b0 [ 1055.219913][T11845] ? _raw_spin_trylock_bh+0x1d0/0x1d0 [ 1055.225100][T11845] ? __kernel_text_address+0x9a/0x110 [ 1055.230313][T11845] copy_pte_range+0x1b1f/0x20b0 [ 1055.234996][T11845] ? __kunmap_atomic+0x80/0x80 [ 1055.239599][T11845] ? __kasan_slab_alloc+0xc4/0xe0 [ 1055.244713][T11845] ? __kasan_slab_alloc+0xb2/0xe0 [ 1055.249575][T11845] ? kmem_cache_alloc+0x189/0x2f0 [ 1055.254436][T11845] ? vm_area_dup+0x26/0x1d0 [ 1055.258775][T11845] ? dup_mmap+0x6b8/0xea0 [ 1055.262941][T11845] ? dup_mm+0x91/0x330 [ 1055.266846][T11845] ? copy_mm+0x108/0x1b0 [ 1055.270926][T11845] ? copy_process+0x1295/0x3250 [ 1055.275616][T11845] ? kernel_clone+0x22d/0x990 [ 1055.280128][T11845] ? __x64_sys_clone+0x289/0x310 [ 1055.284901][T11845] ? do_syscall_64+0x44/0xd0 [ 1055.289333][T11845] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1055.295236][T11845] copy_page_range+0xc1e/0x1090 [ 1055.299925][T11845] ? pfn_valid+0x1e0/0x1e0 [ 1055.304358][T11845] dup_mmap+0x99f/0xea0 [ 1055.308358][T11845] ? __delayed_free_task+0x20/0x20 [ 1055.313324][T11845] ? mm_init+0x807/0x960 [ 1055.317369][T11845] dup_mm+0x91/0x330 [ 1055.321101][T11845] copy_mm+0x108/0x1b0 [ 1055.325007][T11845] copy_process+0x1295/0x3250 [ 1055.329521][T11845] ? proc_fail_nth_write+0x213/0x290 [ 1055.334638][T11845] ? proc_fail_nth_read+0x220/0x220 [ 1055.339678][T11845] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1055.344625][T11845] ? vfs_write+0x9af/0x1050 [ 1055.348968][T11845] ? vmacache_update+0xb7/0x120 [ 1055.353739][T11845] kernel_clone+0x22d/0x990 [ 1055.358074][T11845] ? file_end_write+0x1b0/0x1b0 [ 1055.362762][T11845] ? __kasan_check_write+0x14/0x20 [ 1055.367870][T11845] ? create_io_thread+0x1e0/0x1e0 [ 1055.372734][T11845] ? __mutex_lock_slowpath+0x10/0x10 [ 1055.377847][T11845] __x64_sys_clone+0x289/0x310 [ 1055.382449][T11845] ? __do_sys_vfork+0x130/0x130 [ 1055.387140][T11845] ? debug_smp_processor_id+0x17/0x20 [ 1055.392360][T11845] do_syscall_64+0x44/0xd0 [ 1055.396599][T11845] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1055.402325][T11845] RIP: 0033:0x7f0bd76b80d9 [ 1055.406577][T11845] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1055.426152][T11845] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1055.434388][T11845] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1055.442209][T11845] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1055.450013][T11845] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 14:45:24 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={'pim6reg0\x00', 0x1}) 14:45:24 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000001000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:24 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) (async) openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000080)='cgroup.threads\x00', 0x2, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) r2 = openat$cgroup(r1, &(0x7f00000000c0)='syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000100)={@cgroup=r2, 0xffffffffffffffff, 0x0, 0x3}, 0x14) 14:45:24 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 58) 14:45:24 executing program 5: syz_clone(0x5c12cc00, 0x0, 0x0, 0x0, 0x0, 0x0) gettid() syz_clone(0x5c12cc00, 0x0, 0x0, 0x0, 0x0, 0x0) (async) gettid() (async) 14:45:24 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) (async) openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000080)='cgroup.threads\x00', 0x2, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) r2 = openat$cgroup(r1, &(0x7f00000000c0)='syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000100)={@cgroup=r2, 0xffffffffffffffff, 0x0, 0x3}, 0x14) 14:45:24 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={'pim6reg0\x00', 0x1}) 14:45:24 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2000000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:24 executing program 5: socketpair(0x1e, 0x2, 0xfffffc01, &(0x7f0000000000)) syz_clone(0xca2c6600, 0x0, 0x39, 0x0, 0x0, 0x0) [ 1055.457910][T11845] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1055.465812][T11845] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1055.473727][T11845] [ 1055.515224][T11878] FAULT_INJECTION: forcing a failure. [ 1055.515224][T11878] name failslab, interval 1, probability 0, space 0, times 0 [ 1055.531747][T11878] CPU: 1 PID: 11878 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1055.541823][T11878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1055.551892][T11878] Call Trace: [ 1055.555010][T11878] [ 1055.557793][T11878] dump_stack_lvl+0x151/0x1b7 [ 1055.562298][T11878] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1055.567600][T11878] dump_stack+0x15/0x17 [ 1055.571597][T11878] should_fail+0x3c0/0x510 [ 1055.576025][T11878] __should_failslab+0x9f/0xe0 [ 1055.580625][T11878] should_failslab+0x9/0x20 [ 1055.584955][T11878] kmem_cache_alloc+0x4f/0x2f0 [ 1055.589557][T11878] ? anon_vma_fork+0x1b9/0x4f0 [ 1055.594160][T11878] anon_vma_fork+0x1b9/0x4f0 [ 1055.598585][T11878] dup_mmap+0x750/0xea0 [ 1055.602579][T11878] ? __delayed_free_task+0x20/0x20 [ 1055.607523][T11878] ? mm_init+0x807/0x960 [ 1055.611600][T11878] dup_mm+0x91/0x330 [ 1055.615334][T11878] copy_mm+0x108/0x1b0 [ 1055.619239][T11878] copy_process+0x1295/0x3250 [ 1055.623756][T11878] ? proc_fail_nth_write+0x213/0x290 [ 1055.628876][T11878] ? proc_fail_nth_read+0x220/0x220 [ 1055.633919][T11878] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1055.639115][T11878] ? vfs_write+0x9af/0x1050 [ 1055.643457][T11878] ? vmacache_update+0xb7/0x120 [ 1055.648145][T11878] kernel_clone+0x22d/0x990 [ 1055.652483][T11878] ? file_end_write+0x1b0/0x1b0 [ 1055.657170][T11878] ? __kasan_check_write+0x14/0x20 [ 1055.662122][T11878] ? create_io_thread+0x1e0/0x1e0 [ 1055.666981][T11878] ? __mutex_lock_slowpath+0x10/0x10 [ 1055.672110][T11878] __x64_sys_clone+0x289/0x310 [ 1055.676708][T11878] ? __do_sys_vfork+0x130/0x130 [ 1055.681389][T11878] ? debug_smp_processor_id+0x17/0x20 [ 1055.686597][T11878] do_syscall_64+0x44/0xd0 [ 1055.690853][T11878] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1055.696576][T11878] RIP: 0033:0x7f0bd76b80d9 [ 1055.700836][T11878] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1055.720363][T11878] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1055.728608][T11878] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1055.736424][T11878] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1055.744234][T11878] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1055.752133][T11878] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1055.759944][T11878] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1055.767758][T11878] 14:45:24 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = gettid() (async) openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x50007, 0x0) write$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000100)='FROZEN\x00', 0x7) (async) recvmsg$unix(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000140)=""/43, 0x2b}], 0x1, &(0x7f00000001c0)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x130}, 0x40002000) (async) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000080), 0x4) (async, rerun: 32) syz_open_procfs$namespace(r1, 0x0) (async, rerun: 32) write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000000)=r1, 0x12) write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000040)=r1, 0x12) (async) r7 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r7, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r7, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0xb, 0x3, &(0x7f00000004c0)=@raw=[@exit, @btf_id={0x18, 0xb, 0x3, 0x0, 0x5}], &(0x7f0000000500)='syzkaller\x00', 0x2, 0xb, &(0x7f0000000540)=""/11, 0x41000, 0x2, '\x00', 0x0, 0xf, r2, 0x8, &(0x7f0000000580)={0x4, 0x5}, 0x8, 0x10, &(0x7f00000005c0)={0x4, 0x4, 0x7fffffff, 0x8}, 0x10, 0xffffffffffffffff}, 0x80) (async) r9 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000740)={r3, r3, 0x1e}, 0x10) (async, rerun: 64) ioctl$TUNGETFEATURES(r9, 0x800454cf, &(0x7f0000000040)) (async, rerun: 64) openat$cgroup_ro(r9, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) r10 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r10, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r10, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) r11 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r11, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r11, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async, rerun: 64) r12 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (rerun: 64) ioctl$TUNGETFEATURES(r12, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r12, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000006c0)=@bpf_tracing={0x1a, 0x5, &(0x7f0000000340)=@raw=[@map_val={0x18, 0x0, 0x2, 0x0, r7, 0x0, 0x0, 0x0, 0x4}, @map_idx={0x18, 0x0, 0x5, 0x0, 0xa}, @exit], &(0x7f0000000380)='GPL\x00', 0x0, 0x57, &(0x7f00000003c0)=""/87, 0x40f00, 0x0, '\x00', 0x0, 0x18, r6, 0x8, &(0x7f0000000440)={0xa, 0x5}, 0x8, 0x10, &(0x7f0000000480)={0x0, 0x3, 0x3ff, 0x2}, 0x10, 0xc8f8, r8, 0x0, &(0x7f0000000680)=[r4, r9, r10, r5, r11, r12]}, 0x80) 14:45:24 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4000000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:24 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r1}, 0x14) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000000c0)={@map=0x1, 0xffffffffffffffff, 0x1f, 0x7, r1}, 0x14) openat$cgroup_pressure(r0, &(0x7f0000000080)='cpu.pressure\x00', 0x2, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r2, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r3}, 0x14) setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000100)=r3, 0x4) 14:45:24 executing program 5: socketpair(0x1e, 0x2, 0xfffffc01, &(0x7f0000000000)) syz_clone(0xca2c6600, 0x0, 0x39, 0x0, 0x0, 0x0) 14:45:24 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={'pim6reg0\x00', 0x1}) 14:45:24 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 59) 14:45:24 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000000000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:24 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r1}, 0x14) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000000c0)={@map=0x1, 0xffffffffffffffff, 0x1f, 0x7, r1}, 0x14) openat$cgroup_pressure(r0, &(0x7f0000000080)='cpu.pressure\x00', 0x2, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r2, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r3}, 0x14) setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000100)=r3, 0x4) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) (async) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r1}, 0x14) (async) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000000c0)={@map=0x1, 0xffffffffffffffff, 0x1f, 0x7, r1}, 0x14) (async) openat$cgroup_pressure(r0, &(0x7f0000000080)='cpu.pressure\x00', 0x2, 0x0) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) recvmsg$unix(r2, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) (async) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r3}, 0x14) (async) setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000100)=r3, 0x4) (async) 14:45:24 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg0\x00', 0x1}) 14:45:24 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r1}, 0x14) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000000c0)={@map=0x1, 0xffffffffffffffff, 0x1f, 0x7, r1}, 0x14) openat$cgroup_pressure(r0, &(0x7f0000000080)='cpu.pressure\x00', 0x2, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r2, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r3}, 0x14) setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000100)=r3, 0x4) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) (async) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r1}, 0x14) (async) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000000c0)={@map=0x1, 0xffffffffffffffff, 0x1f, 0x7, r1}, 0x14) (async) openat$cgroup_pressure(r0, &(0x7f0000000080)='cpu.pressure\x00', 0x2, 0x0) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) recvmsg$unix(r2, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) (async) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r3}, 0x14) (async) setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000100)=r3, 0x4) (async) 14:45:24 executing program 5: socketpair(0x1e, 0x2, 0xfffffc01, &(0x7f0000000000)) syz_clone(0xca2c6600, 0x0, 0x39, 0x0, 0x0, 0x0) socketpair(0x1e, 0x2, 0xfffffc01, &(0x7f0000000000)) (async) syz_clone(0xca2c6600, 0x0, 0x39, 0x0, 0x0, 0x0) (async) 14:45:24 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x10000010000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1055.991356][T11896] FAULT_INJECTION: forcing a failure. [ 1055.991356][T11896] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1056.016905][T11896] CPU: 0 PID: 11896 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1056.027074][T11896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1056.037043][T11896] Call Trace: [ 1056.040174][T11896] [ 1056.042942][T11896] dump_stack_lvl+0x151/0x1b7 [ 1056.047458][T11896] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1056.052754][T11896] dump_stack+0x15/0x17 [ 1056.056860][T11896] should_fail+0x3c0/0x510 [ 1056.061084][T11896] should_fail_alloc_page+0x58/0x70 [ 1056.066120][T11896] __alloc_pages+0x1de/0x7c0 [ 1056.070549][T11896] ? __count_vm_events+0x30/0x30 [ 1056.075320][T11896] ? __this_cpu_preempt_check+0x13/0x20 [ 1056.080714][T11896] ? __mod_node_page_state+0xac/0xf0 [ 1056.085824][T11896] pte_alloc_one+0x73/0x1b0 [ 1056.090170][T11896] ? pfn_modify_allowed+0x2e0/0x2e0 [ 1056.095214][T11896] __pte_alloc+0x86/0x350 [ 1056.099365][T11896] ? free_pgtables+0x210/0x210 [ 1056.104048][T11896] ? _raw_spin_lock+0xa3/0x1b0 [ 1056.108648][T11896] ? _raw_spin_trylock_bh+0x1d0/0x1d0 [ 1056.113855][T11896] ? __kernel_text_address+0x9a/0x110 [ 1056.119065][T11896] copy_pte_range+0x1b1f/0x20b0 [ 1056.123774][T11896] ? __kunmap_atomic+0x80/0x80 [ 1056.128483][T11896] ? __kasan_slab_alloc+0xc4/0xe0 [ 1056.133322][T11896] ? __kasan_slab_alloc+0xb2/0xe0 [ 1056.138371][T11896] ? kmem_cache_alloc+0x189/0x2f0 [ 1056.143391][T11896] ? vm_area_dup+0x26/0x1d0 [ 1056.148599][T11896] ? dup_mmap+0x6b8/0xea0 [ 1056.152778][T11896] ? dup_mm+0x91/0x330 [ 1056.156726][T11896] ? copy_mm+0x108/0x1b0 [ 1056.160751][T11896] ? copy_process+0x1295/0x3250 [ 1056.165466][T11896] ? kernel_clone+0x22d/0x990 [ 1056.169951][T11896] ? __x64_sys_clone+0x289/0x310 [ 1056.174748][T11896] ? do_syscall_64+0x44/0xd0 [ 1056.179158][T11896] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1056.185432][T11896] copy_page_range+0xc1e/0x1090 [ 1056.190407][T11896] ? pfn_valid+0x1e0/0x1e0 [ 1056.194666][T11896] dup_mmap+0x99f/0xea0 [ 1056.198650][T11896] ? __delayed_free_task+0x20/0x20 [ 1056.203597][T11896] ? mm_init+0x807/0x960 [ 1056.207679][T11896] dup_mm+0x91/0x330 [ 1056.211407][T11896] copy_mm+0x108/0x1b0 [ 1056.215314][T11896] copy_process+0x1295/0x3250 [ 1056.219836][T11896] ? proc_fail_nth_write+0x213/0x290 [ 1056.224949][T11896] ? proc_fail_nth_read+0x220/0x220 [ 1056.229983][T11896] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1056.234934][T11896] ? vfs_write+0x9af/0x1050 [ 1056.239286][T11896] ? vmacache_update+0xb7/0x120 [ 1056.243959][T11896] kernel_clone+0x22d/0x990 [ 1056.248386][T11896] ? file_end_write+0x1b0/0x1b0 [ 1056.253073][T11896] ? __kasan_check_write+0x14/0x20 [ 1056.258021][T11896] ? create_io_thread+0x1e0/0x1e0 [ 1056.263097][T11896] ? __mutex_lock_slowpath+0x10/0x10 [ 1056.268208][T11896] __x64_sys_clone+0x289/0x310 [ 1056.272812][T11896] ? __do_sys_vfork+0x130/0x130 [ 1056.277500][T11896] ? debug_smp_processor_id+0x17/0x20 [ 1056.282709][T11896] do_syscall_64+0x44/0xd0 [ 1056.286969][T11896] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1056.292698][T11896] RIP: 0033:0x7f0bd76b80d9 [ 1056.296950][T11896] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1056.316477][T11896] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1056.324717][T11896] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1056.332532][T11896] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1056.340344][T11896] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1056.348155][T11896] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1056.356142][T11896] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1056.363952][T11896] 14:45:25 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) r1 = gettid() (async) openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x50007, 0x0) write$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000100)='FROZEN\x00', 0x7) (async) recvmsg$unix(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000140)=""/43, 0x2b}], 0x1, &(0x7f00000001c0)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x130}, 0x40002000) (async) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000080), 0x4) (async) syz_open_procfs$namespace(r1, 0x0) write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000000)=r1, 0x12) (async) write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000040)=r1, 0x12) (async) r7 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r7, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r7, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0xb, 0x3, &(0x7f00000004c0)=@raw=[@exit, @btf_id={0x18, 0xb, 0x3, 0x0, 0x5}], &(0x7f0000000500)='syzkaller\x00', 0x2, 0xb, &(0x7f0000000540)=""/11, 0x41000, 0x2, '\x00', 0x0, 0xf, r2, 0x8, &(0x7f0000000580)={0x4, 0x5}, 0x8, 0x10, &(0x7f00000005c0)={0x4, 0x4, 0x7fffffff, 0x8}, 0x10, 0xffffffffffffffff}, 0x80) (async) r9 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000740)={r3, r3, 0x1e}, 0x10) ioctl$TUNGETFEATURES(r9, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r9, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) r10 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r10, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r10, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) r11 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r11, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r11, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) r12 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r12, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r12, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000006c0)=@bpf_tracing={0x1a, 0x5, &(0x7f0000000340)=@raw=[@map_val={0x18, 0x0, 0x2, 0x0, r7, 0x0, 0x0, 0x0, 0x4}, @map_idx={0x18, 0x0, 0x5, 0x0, 0xa}, @exit], &(0x7f0000000380)='GPL\x00', 0x0, 0x57, &(0x7f00000003c0)=""/87, 0x40f00, 0x0, '\x00', 0x0, 0x18, r6, 0x8, &(0x7f0000000440)={0xa, 0x5}, 0x8, 0x10, &(0x7f0000000480)={0x0, 0x3, 0x3ff, 0x2}, 0x10, 0xc8f8, r8, 0x0, &(0x7f0000000680)=[r4, r9, r10, r5, r11, r12]}, 0x80) 14:45:25 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) r1 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000040)={0x0, 0x3, 0x18}, 0xc) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r2}, 0x14) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={@map=r1, r2, 0x28}, 0x10) 14:45:25 executing program 5: r0 = syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x40020000, &(0x7f0000000180)="37bcbe3e11fdd146854efef08c80475bc5cd863f77bef61b519b4ce11b5b2ef23e17e6bece64df6a9471492e3f5d2c6e32d194491ac26722bade57d411bacd6164ad36661eff9c32a1337a0484d68d57462f84d153c4b4e5bb8f5619bdaeaf10dc24ca6317c11b1469c13ce548a2c42b6d7ef29109b45dd9b2e6c9cfcbcd8f0a8f5a3c7999eba647d0fdd6fcfc4e43dbae72e8140e6555ab2a8a8259dba3578f18d015a16eeee38bc16f82bcd6b14fbbac6ec761acc5583cba5d148c2ba4c542236ffd971fd356f26668f796db431f6ca89f48e1", 0xd4, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000300)="930b4f0b71002ea2047f86387cd15b1661b269207ea15b42051c3fbd63ad04a261a13fc5b6ef42d74620981bc6d4c6a05adb2ae9d18ae728307acd739e2faf83414d988079d0e58dc8b084b5b7c18510e90c0f283d185be99d1e30baf3c6884aa192cdbfbb2f1e7aa5f773782b8202824bca44290b5b3f2d0e64f32fcddfb9c695fe385a1ed84f33dbb80e01dfafd5f399f4a74c13d51c06f42ee7be50c7265d633aea28ed242bb43471ffc54c02b39a3a7db2c499836db358a1743b64458672ffb55958c0303c") r1 = perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x2, 0x1, 0x80, 0xff, 0x0, 0x6, 0x4100, 0x9, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x8001, 0x4, @perf_config_ext={0x2e1f26c5, 0x6}, 0xc0000, 0x8, 0x7, 0x0, 0x8, 0x6, 0x16a, 0x0, 0x5, 0x0, 0x1}, r0, 0x5, 0xffffffffffffffff, 0x8) ioctl$PERF_EVENT_IOC_REFRESH(0xffffffffffffffff, 0x2402, 0x7) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x80) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r0, r1, 0x0, 0x6, &(0x7f0000000100)='.V,#^\x00'}, 0x30) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={r0, r1, 0x0, 0x6, &(0x7f0000000080)='.V,#^\x00'}, 0x30) 14:45:25 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x40000100000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:25 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 60) 14:45:25 executing program 1: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg0\x00', 0x1}) 14:45:25 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) r1 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000040)={0x0, 0x3, 0x18}, 0xc) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r2}, 0x14) (async) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={@map=r1, r2, 0x28}, 0x10) 14:45:25 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x400000000000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1056.830527][T11941] FAULT_INJECTION: forcing a failure. [ 1056.830527][T11941] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1056.851245][T11941] CPU: 0 PID: 11941 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1056.861600][T11941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1056.871485][T11941] Call Trace: [ 1056.874957][T11941] [ 1056.877727][T11941] dump_stack_lvl+0x151/0x1b7 [ 1056.882244][T11941] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1056.887571][T11941] ? __switch_to+0x617/0x1170 [ 1056.892053][T11941] ? native_set_ldt+0x360/0x360 [ 1056.896749][T11941] dump_stack+0x15/0x17 [ 1056.900736][T11941] should_fail+0x3c0/0x510 [ 1056.905093][T11941] should_fail_alloc_page+0x58/0x70 [ 1056.910125][T11941] __alloc_pages+0x1de/0x7c0 [ 1056.914534][T11941] ? __count_vm_events+0x30/0x30 [ 1056.919322][T11941] ? __this_cpu_preempt_check+0x13/0x20 [ 1056.924691][T11941] pte_alloc_one+0x73/0x1b0 14:45:25 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) r1 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000040)={0x0, 0x3, 0x18}, 0xc) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r2}, 0x14) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={@map=r1, r2, 0x28}, 0x10) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000040)={0x0, 0x3, 0x18}, 0xc) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) (async) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r2}, 0x14) (async) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={@map=r1, r2, 0x28}, 0x10) (async) 14:45:25 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000000000000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:25 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffbb}, 0x20) 14:45:25 executing program 5: r0 = syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x40020000, &(0x7f0000000180)="37bcbe3e11fdd146854efef08c80475bc5cd863f77bef61b519b4ce11b5b2ef23e17e6bece64df6a9471492e3f5d2c6e32d194491ac26722bade57d411bacd6164ad36661eff9c32a1337a0484d68d57462f84d153c4b4e5bb8f5619bdaeaf10dc24ca6317c11b1469c13ce548a2c42b6d7ef29109b45dd9b2e6c9cfcbcd8f0a8f5a3c7999eba647d0fdd6fcfc4e43dbae72e8140e6555ab2a8a8259dba3578f18d015a16eeee38bc16f82bcd6b14fbbac6ec761acc5583cba5d148c2ba4c542236ffd971fd356f26668f796db431f6ca89f48e1", 0xd4, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000300)="930b4f0b71002ea2047f86387cd15b1661b269207ea15b42051c3fbd63ad04a261a13fc5b6ef42d74620981bc6d4c6a05adb2ae9d18ae728307acd739e2faf83414d988079d0e58dc8b084b5b7c18510e90c0f283d185be99d1e30baf3c6884aa192cdbfbb2f1e7aa5f773782b8202824bca44290b5b3f2d0e64f32fcddfb9c695fe385a1ed84f33dbb80e01dfafd5f399f4a74c13d51c06f42ee7be50c7265d633aea28ed242bb43471ffc54c02b39a3a7db2c499836db358a1743b64458672ffb55958c0303c") r1 = perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x2, 0x1, 0x80, 0xff, 0x0, 0x6, 0x4100, 0x9, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x8001, 0x4, @perf_config_ext={0x2e1f26c5, 0x6}, 0xc0000, 0x8, 0x7, 0x0, 0x8, 0x6, 0x16a, 0x0, 0x5, 0x0, 0x1}, r0, 0x5, 0xffffffffffffffff, 0x8) ioctl$PERF_EVENT_IOC_REFRESH(0xffffffffffffffff, 0x2402, 0x7) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x80) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r0, r1, 0x0, 0x6, &(0x7f0000000100)='.V,#^\x00'}, 0x30) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={r0, r1, 0x0, 0x6, &(0x7f0000000080)='.V,#^\x00'}, 0x30) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) (async) syz_clone(0x40020000, &(0x7f0000000180)="37bcbe3e11fdd146854efef08c80475bc5cd863f77bef61b519b4ce11b5b2ef23e17e6bece64df6a9471492e3f5d2c6e32d194491ac26722bade57d411bacd6164ad36661eff9c32a1337a0484d68d57462f84d153c4b4e5bb8f5619bdaeaf10dc24ca6317c11b1469c13ce548a2c42b6d7ef29109b45dd9b2e6c9cfcbcd8f0a8f5a3c7999eba647d0fdd6fcfc4e43dbae72e8140e6555ab2a8a8259dba3578f18d015a16eeee38bc16f82bcd6b14fbbac6ec761acc5583cba5d148c2ba4c542236ffd971fd356f26668f796db431f6ca89f48e1", 0xd4, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000300)="930b4f0b71002ea2047f86387cd15b1661b269207ea15b42051c3fbd63ad04a261a13fc5b6ef42d74620981bc6d4c6a05adb2ae9d18ae728307acd739e2faf83414d988079d0e58dc8b084b5b7c18510e90c0f283d185be99d1e30baf3c6884aa192cdbfbb2f1e7aa5f773782b8202824bca44290b5b3f2d0e64f32fcddfb9c695fe385a1ed84f33dbb80e01dfafd5f399f4a74c13d51c06f42ee7be50c7265d633aea28ed242bb43471ffc54c02b39a3a7db2c499836db358a1743b64458672ffb55958c0303c") (async) perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x2, 0x1, 0x80, 0xff, 0x0, 0x6, 0x4100, 0x9, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x8001, 0x4, @perf_config_ext={0x2e1f26c5, 0x6}, 0xc0000, 0x8, 0x7, 0x0, 0x8, 0x6, 0x16a, 0x0, 0x5, 0x0, 0x1}, r0, 0x5, 0xffffffffffffffff, 0x8) (async) ioctl$PERF_EVENT_IOC_REFRESH(0xffffffffffffffff, 0x2402, 0x7) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x80) (async) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r0, r1, 0x0, 0x6, &(0x7f0000000100)='.V,#^\x00'}, 0x30) (async) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={r0, r1, 0x0, 0x6, &(0x7f0000000080)='.V,#^\x00'}, 0x30) (async) [ 1056.929032][T11941] ? pfn_modify_allowed+0x2e0/0x2e0 [ 1056.934077][T11941] ? preempt_schedule+0xd9/0xe0 [ 1056.939132][T11941] ? preempt_schedule_common+0xcb/0x100 [ 1056.944508][T11941] __pte_alloc+0x86/0x350 [ 1056.948675][T11941] ? free_pgtables+0x210/0x210 [ 1056.953288][T11941] ? _raw_spin_lock+0xa3/0x1b0 [ 1056.957962][T11941] ? _raw_spin_trylock_bh+0x1d0/0x1d0 [ 1056.963177][T11941] ? preempt_schedule_thunk+0x16/0x18 [ 1056.968379][T11941] copy_pte_range+0x1b1f/0x20b0 [ 1056.973089][T11941] ? __kunmap_atomic+0x80/0x80 [ 1056.977665][T11941] ? __kasan_slab_alloc+0xc4/0xe0 [ 1056.982552][T11941] ? __kasan_slab_alloc+0xb2/0xe0 [ 1056.987385][T11941] ? kmem_cache_alloc+0x189/0x2f0 [ 1056.992246][T11941] ? vm_area_dup+0x26/0x1d0 [ 1056.996593][T11941] ? dup_mmap+0x6b8/0xea0 [ 1057.000756][T11941] ? dup_mm+0x91/0x330 [ 1057.004660][T11941] ? copy_mm+0x108/0x1b0 [ 1057.008738][T11941] ? copy_process+0x1295/0x3250 [ 1057.013424][T11941] ? kernel_clone+0x22d/0x990 [ 1057.017945][T11941] ? __x64_sys_clone+0x289/0x310 [ 1057.022717][T11941] ? do_syscall_64+0x44/0xd0 [ 1057.027142][T11941] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1057.033044][T11941] copy_page_range+0xc1e/0x1090 [ 1057.038085][T11941] ? pfn_valid+0x1e0/0x1e0 [ 1057.042339][T11941] dup_mmap+0x99f/0xea0 [ 1057.046332][T11941] ? __delayed_free_task+0x20/0x20 [ 1057.051277][T11941] ? mm_init+0x807/0x960 [ 1057.055363][T11941] dup_mm+0x91/0x330 [ 1057.059106][T11941] copy_mm+0x108/0x1b0 [ 1057.062999][T11941] copy_process+0x1295/0x3250 [ 1057.067600][T11941] ? proc_fail_nth_write+0x213/0x290 [ 1057.072719][T11941] ? proc_fail_nth_read+0x220/0x220 [ 1057.077751][T11941] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1057.082703][T11941] ? vfs_write+0x9af/0x1050 [ 1057.087039][T11941] ? vmacache_update+0xb7/0x120 [ 1057.091724][T11941] kernel_clone+0x22d/0x990 [ 1057.096065][T11941] ? file_end_write+0x1b0/0x1b0 [ 1057.100752][T11941] ? __kasan_check_write+0x14/0x20 [ 1057.105699][T11941] ? create_io_thread+0x1e0/0x1e0 [ 1057.110563][T11941] ? __mutex_lock_slowpath+0x10/0x10 [ 1057.115684][T11941] __x64_sys_clone+0x289/0x310 [ 1057.120285][T11941] ? __do_sys_vfork+0x130/0x130 [ 1057.124968][T11941] ? debug_smp_processor_id+0x17/0x20 [ 1057.130177][T11941] do_syscall_64+0x44/0xd0 [ 1057.134432][T11941] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1057.140160][T11941] RIP: 0033:0x7f0bd76b80d9 [ 1057.144414][T11941] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1057.163857][T11941] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1057.172102][T11941] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 14:45:25 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x40002122) openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x4, 0x0) 14:45:25 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffbb}, 0x20) 14:45:25 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4000000000000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:25 executing program 5: r0 = syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x40020000, &(0x7f0000000180)="37bcbe3e11fdd146854efef08c80475bc5cd863f77bef61b519b4ce11b5b2ef23e17e6bece64df6a9471492e3f5d2c6e32d194491ac26722bade57d411bacd6164ad36661eff9c32a1337a0484d68d57462f84d153c4b4e5bb8f5619bdaeaf10dc24ca6317c11b1469c13ce548a2c42b6d7ef29109b45dd9b2e6c9cfcbcd8f0a8f5a3c7999eba647d0fdd6fcfc4e43dbae72e8140e6555ab2a8a8259dba3578f18d015a16eeee38bc16f82bcd6b14fbbac6ec761acc5583cba5d148c2ba4c542236ffd971fd356f26668f796db431f6ca89f48e1", 0xd4, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000300)="930b4f0b71002ea2047f86387cd15b1661b269207ea15b42051c3fbd63ad04a261a13fc5b6ef42d74620981bc6d4c6a05adb2ae9d18ae728307acd739e2faf83414d988079d0e58dc8b084b5b7c18510e90c0f283d185be99d1e30baf3c6884aa192cdbfbb2f1e7aa5f773782b8202824bca44290b5b3f2d0e64f32fcddfb9c695fe385a1ed84f33dbb80e01dfafd5f399f4a74c13d51c06f42ee7be50c7265d633aea28ed242bb43471ffc54c02b39a3a7db2c499836db358a1743b64458672ffb55958c0303c") (async) r1 = perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x2, 0x1, 0x80, 0xff, 0x0, 0x6, 0x4100, 0x9, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x8001, 0x4, @perf_config_ext={0x2e1f26c5, 0x6}, 0xc0000, 0x8, 0x7, 0x0, 0x8, 0x6, 0x16a, 0x0, 0x5, 0x0, 0x1}, r0, 0x5, 0xffffffffffffffff, 0x8) (async) ioctl$PERF_EVENT_IOC_REFRESH(0xffffffffffffffff, 0x2402, 0x7) (async) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x80) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r0, r1, 0x0, 0x6, &(0x7f0000000100)='.V,#^\x00'}, 0x30) (async) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={r0, r1, 0x0, 0x6, &(0x7f0000000080)='.V,#^\x00'}, 0x30) 14:45:25 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 61) 14:45:25 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffbb}, 0x20) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffbb}, 0x20) (async) 14:45:25 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:25 executing program 1: r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg0\x00', 0x1}) [ 1057.179929][T11941] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1057.187724][T11941] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1057.195538][T11941] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1057.203525][T11941] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1057.211342][T11941] 14:45:25 executing program 1: r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg0\x00', 0x1}) 14:45:25 executing program 5: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) gettid() getpid() openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r1 = syz_clone(0x590e0100, &(0x7f0000000000)="256d2155518a54f3a1e60eb6dbdf274f93338f9864070815272428bd54d45d536cc45b1d0ba59452af7f66ed2d105a68805d8ddbd1f5920e", 0x38, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)="ed16a95e6a914256458045c8c5a1e4407d2f8d038717c1574651dab242a53a6a2e4503984913a7eded0a7c8af175caed8fa24835926a") syz_open_procfs$namespace(r1, &(0x7f0000000140)='ns/time\x00') write$cgroup_pid(r0, &(0x7f0000000100)=r1, 0x12) 14:45:25 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:25 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r1}, 0x14) ioctl$TUNSETFILTEREBPF(0xffffffffffffffff, 0x800454e1, &(0x7f0000000380)=r1) r2 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000500), 0x4) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000400)='device_pm_callback_start\x00', r2}, 0x10) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={0xffffffffffffffff, 0x0, 0x44, 0x74, &(0x7f0000000040)="110debe483e27f89c860b401bae92e2627d1b400a0cdaae193230442ffbe8c1aa87e8982385ad319a086d3e76bb9fd6e2b7f20c14365e7aa479e8736c1f1451e521e5956", &(0x7f00000000c0)=""/116, 0xfff, 0x0, 0xb7, 0xa0, &(0x7f0000000140)="097cc96869fc32cf64910e2ee604f1410ceba94baad321c9b07d2986d3bdfda845c666756755c51ac47fc925eb8ebd14a307154d057b481e1592f3d4ede9248a69e8243eb72ff6080aa27f59e9b55ac7f8959014f2323fd664699ff746ec1b6f4177f180205ad6ceb8dfcfffb4c86188b8ec2791ba28f571a47533e02bc65cb3d4b2c6617c011fc044faaab7a90a99784f17c88ac433c140be7e0f27a5c7c686e3314542563005dc8bf1511c7233822179aae71f94d9eb", &(0x7f00000002c0)="0e832220ef3fc707dd35d839fd936708f05b2754ecec4b23337547e430dd2ea52ad00d79ee4967108372c8673ab678894d269a8d6735aed387c77c207174748c89b8e9ece56327e6e846feda5c29bc9f2e52b68a9003a9cda7ad58581a94454fc33121f7c10e2904148d62287383d4685c845be17f7474ff16a74298788d862b06f2cc6b22247eb3f45e721330bb9d91bcaacf3c7e9a4f8c626f8d923e7cc041", 0x1, 0x2}, 0x48) [ 1057.266489][T12005] FAULT_INJECTION: forcing a failure. [ 1057.266489][T12005] name failslab, interval 1, probability 0, space 0, times 0 [ 1057.290394][T12005] CPU: 0 PID: 12005 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1057.300500][T12005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1057.310374][T12005] Call Trace: [ 1057.313503][T12005] [ 1057.316277][T12005] dump_stack_lvl+0x151/0x1b7 [ 1057.320791][T12005] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1057.326096][T12005] dump_stack+0x15/0x17 [ 1057.330078][T12005] should_fail+0x3c0/0x510 [ 1057.334342][T12005] __should_failslab+0x9f/0xe0 [ 1057.338933][T12005] should_failslab+0x9/0x20 [ 1057.343365][T12005] kmem_cache_alloc+0x4f/0x2f0 [ 1057.348057][T12005] ? vm_area_dup+0x26/0x1d0 [ 1057.352648][T12005] ? __kasan_check_read+0x11/0x20 [ 1057.357521][T12005] vm_area_dup+0x26/0x1d0 [ 1057.361675][T12005] dup_mmap+0x6b8/0xea0 [ 1057.365671][T12005] ? __delayed_free_task+0x20/0x20 [ 1057.370615][T12005] ? mm_init+0x807/0x960 [ 1057.374694][T12005] dup_mm+0x91/0x330 [ 1057.378424][T12005] copy_mm+0x108/0x1b0 [ 1057.382336][T12005] copy_process+0x1295/0x3250 [ 1057.386933][T12005] ? proc_fail_nth_write+0x213/0x290 [ 1057.392058][T12005] ? proc_fail_nth_read+0x220/0x220 [ 1057.397090][T12005] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1057.402146][T12005] ? vfs_write+0x9af/0x1050 [ 1057.406481][T12005] ? vmacache_update+0xb7/0x120 [ 1057.411184][T12005] kernel_clone+0x22d/0x990 [ 1057.415528][T12005] ? file_end_write+0x1b0/0x1b0 [ 1057.420196][T12005] ? __kasan_check_write+0x14/0x20 [ 1057.425152][T12005] ? create_io_thread+0x1e0/0x1e0 [ 1057.430011][T12005] ? __mutex_lock_slowpath+0x10/0x10 [ 1057.435127][T12005] __x64_sys_clone+0x289/0x310 [ 1057.439730][T12005] ? __do_sys_vfork+0x130/0x130 [ 1057.444415][T12005] ? debug_smp_processor_id+0x17/0x20 [ 1057.449632][T12005] do_syscall_64+0x44/0xd0 [ 1057.453878][T12005] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1057.459618][T12005] RIP: 0033:0x7f0bd76b80d9 [ 1057.463948][T12005] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1057.483430][T12005] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1057.492173][T12005] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1057.499967][T12005] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1057.507775][T12005] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1057.515854][T12005] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1057.524270][T12005] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1057.532087][T12005] 14:45:26 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x40002122) (async, rerun: 32) openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x4, 0x0) (rerun: 32) 14:45:26 executing program 1: r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg0\x00', 0x1}) 14:45:26 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x10}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:26 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r1}, 0x14) (async) ioctl$TUNSETFILTEREBPF(0xffffffffffffffff, 0x800454e1, &(0x7f0000000380)=r1) r2 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000500), 0x4) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000400)='device_pm_callback_start\x00', r2}, 0x10) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={0xffffffffffffffff, 0x0, 0x44, 0x74, &(0x7f0000000040)="110debe483e27f89c860b401bae92e2627d1b400a0cdaae193230442ffbe8c1aa87e8982385ad319a086d3e76bb9fd6e2b7f20c14365e7aa479e8736c1f1451e521e5956", &(0x7f00000000c0)=""/116, 0xfff, 0x0, 0xb7, 0xa0, &(0x7f0000000140)="097cc96869fc32cf64910e2ee604f1410ceba94baad321c9b07d2986d3bdfda845c666756755c51ac47fc925eb8ebd14a307154d057b481e1592f3d4ede9248a69e8243eb72ff6080aa27f59e9b55ac7f8959014f2323fd664699ff746ec1b6f4177f180205ad6ceb8dfcfffb4c86188b8ec2791ba28f571a47533e02bc65cb3d4b2c6617c011fc044faaab7a90a99784f17c88ac433c140be7e0f27a5c7c686e3314542563005dc8bf1511c7233822179aae71f94d9eb", &(0x7f00000002c0)="0e832220ef3fc707dd35d839fd936708f05b2754ecec4b23337547e430dd2ea52ad00d79ee4967108372c8673ab678894d269a8d6735aed387c77c207174748c89b8e9ece56327e6e846feda5c29bc9f2e52b68a9003a9cda7ad58581a94454fc33121f7c10e2904148d62287383d4685c845be17f7474ff16a74298788d862b06f2cc6b22247eb3f45e721330bb9d91bcaacf3c7e9a4f8c626f8d923e7cc041", 0x1, 0x2}, 0x48) 14:45:26 executing program 5: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) (async, rerun: 32) r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (rerun: 32) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) gettid() (async) getpid() (async) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r1 = syz_clone(0x590e0100, &(0x7f0000000000)="256d2155518a54f3a1e60eb6dbdf274f93338f9864070815272428bd54d45d536cc45b1d0ba59452af7f66ed2d105a68805d8ddbd1f5920e", 0x38, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)="ed16a95e6a914256458045c8c5a1e4407d2f8d038717c1574651dab242a53a6a2e4503984913a7eded0a7c8af175caed8fa24835926a") syz_open_procfs$namespace(r1, &(0x7f0000000140)='ns/time\x00') (async) write$cgroup_pid(r0, &(0x7f0000000100)=r1, 0x12) 14:45:26 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 62) 14:45:26 executing program 1: openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={'pim6reg0\x00', 0x1}) 14:45:26 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:26 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r1}, 0x14) (async) ioctl$TUNSETFILTEREBPF(0xffffffffffffffff, 0x800454e1, &(0x7f0000000380)=r1) (async) r2 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000500), 0x4) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000400)='device_pm_callback_start\x00', r2}, 0x10) (async, rerun: 32) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={0xffffffffffffffff, 0x0, 0x44, 0x74, &(0x7f0000000040)="110debe483e27f89c860b401bae92e2627d1b400a0cdaae193230442ffbe8c1aa87e8982385ad319a086d3e76bb9fd6e2b7f20c14365e7aa479e8736c1f1451e521e5956", &(0x7f00000000c0)=""/116, 0xfff, 0x0, 0xb7, 0xa0, &(0x7f0000000140)="097cc96869fc32cf64910e2ee604f1410ceba94baad321c9b07d2986d3bdfda845c666756755c51ac47fc925eb8ebd14a307154d057b481e1592f3d4ede9248a69e8243eb72ff6080aa27f59e9b55ac7f8959014f2323fd664699ff746ec1b6f4177f180205ad6ceb8dfcfffb4c86188b8ec2791ba28f571a47533e02bc65cb3d4b2c6617c011fc044faaab7a90a99784f17c88ac433c140be7e0f27a5c7c686e3314542563005dc8bf1511c7233822179aae71f94d9eb", &(0x7f00000002c0)="0e832220ef3fc707dd35d839fd936708f05b2754ecec4b23337547e430dd2ea52ad00d79ee4967108372c8673ab678894d269a8d6735aed387c77c207174748c89b8e9ece56327e6e846feda5c29bc9f2e52b68a9003a9cda7ad58581a94454fc33121f7c10e2904148d62287383d4685c845be17f7474ff16a74298788d862b06f2cc6b22247eb3f45e721330bb9d91bcaacf3c7e9a4f8c626f8d923e7cc041", 0x1, 0x2}, 0x48) (rerun: 32) [ 1058.074027][T12026] FAULT_INJECTION: forcing a failure. [ 1058.074027][T12026] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1058.097185][T12026] CPU: 1 PID: 12026 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1058.107264][T12026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1058.117189][T12026] Call Trace: [ 1058.120295][T12026] [ 1058.123060][T12026] dump_stack_lvl+0x151/0x1b7 [ 1058.127690][T12026] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1058.132960][T12026] dump_stack+0x15/0x17 [ 1058.136946][T12026] should_fail+0x3c0/0x510 [ 1058.141210][T12026] should_fail_alloc_page+0x58/0x70 [ 1058.146237][T12026] __alloc_pages+0x1de/0x7c0 [ 1058.150665][T12026] ? __count_vm_events+0x30/0x30 [ 1058.155443][T12026] ? __this_cpu_preempt_check+0x13/0x20 [ 1058.160838][T12026] ? __mod_node_page_state+0xac/0xf0 [ 1058.165945][T12026] pte_alloc_one+0x73/0x1b0 [ 1058.170278][T12026] ? pfn_modify_allowed+0x2e0/0x2e0 [ 1058.175313][T12026] __pte_alloc+0x86/0x350 [ 1058.179477][T12026] ? free_pgtables+0x210/0x210 [ 1058.184339][T12026] ? _raw_spin_lock+0xa3/0x1b0 [ 1058.188939][T12026] ? _raw_spin_trylock_bh+0x1d0/0x1d0 [ 1058.194169][T12026] ? __kernel_text_address+0x9a/0x110 [ 1058.199444][T12026] copy_pte_range+0x1b1f/0x20b0 [ 1058.204146][T12026] ? __kunmap_atomic+0x80/0x80 [ 1058.209004][T12026] ? __kasan_slab_alloc+0xc4/0xe0 [ 1058.214466][T12026] ? __kasan_slab_alloc+0xb2/0xe0 [ 1058.219316][T12026] ? kmem_cache_alloc+0x189/0x2f0 [ 1058.224178][T12026] ? vm_area_dup+0x26/0x1d0 [ 1058.228517][T12026] ? dup_mmap+0x6b8/0xea0 [ 1058.232682][T12026] ? dup_mm+0x91/0x330 [ 1058.236684][T12026] ? copy_mm+0x108/0x1b0 [ 1058.240755][T12026] ? copy_process+0x1295/0x3250 [ 1058.245446][T12026] ? kernel_clone+0x22d/0x990 [ 1058.249967][T12026] ? __x64_sys_clone+0x289/0x310 [ 1058.254731][T12026] ? do_syscall_64+0x44/0xd0 [ 1058.259161][T12026] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1058.265075][T12026] copy_page_range+0xc1e/0x1090 [ 1058.269753][T12026] ? pfn_valid+0x1e0/0x1e0 [ 1058.274002][T12026] dup_mmap+0x99f/0xea0 [ 1058.277995][T12026] ? __delayed_free_task+0x20/0x20 [ 1058.282940][T12026] ? mm_init+0x807/0x960 [ 1058.287021][T12026] dup_mm+0x91/0x330 [ 1058.290751][T12026] copy_mm+0x108/0x1b0 [ 1058.294656][T12026] copy_process+0x1295/0x3250 [ 1058.299171][T12026] ? proc_fail_nth_write+0x213/0x290 [ 1058.304294][T12026] ? proc_fail_nth_read+0x220/0x220 [ 1058.309328][T12026] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1058.314273][T12026] ? vfs_write+0x9af/0x1050 [ 1058.318618][T12026] ? vmacache_update+0xb7/0x120 [ 1058.323304][T12026] kernel_clone+0x22d/0x990 [ 1058.327740][T12026] ? file_end_write+0x1b0/0x1b0 [ 1058.332432][T12026] ? __kasan_check_write+0x14/0x20 [ 1058.337379][T12026] ? create_io_thread+0x1e0/0x1e0 [ 1058.342237][T12026] ? __mutex_lock_slowpath+0x10/0x10 [ 1058.347365][T12026] __x64_sys_clone+0x289/0x310 [ 1058.351959][T12026] ? __do_sys_vfork+0x130/0x130 [ 1058.356733][T12026] ? debug_smp_processor_id+0x17/0x20 [ 1058.361938][T12026] do_syscall_64+0x44/0xd0 [ 1058.366195][T12026] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1058.371919][T12026] RIP: 0033:0x7f0bd76b80d9 [ 1058.376172][T12026] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1058.395617][T12026] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1058.403863][T12026] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1058.411671][T12026] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 14:45:26 executing program 5: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) (async) r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) gettid() (async) getpid() (async) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) r1 = syz_clone(0x590e0100, &(0x7f0000000000)="256d2155518a54f3a1e60eb6dbdf274f93338f9864070815272428bd54d45d536cc45b1d0ba59452af7f66ed2d105a68805d8ddbd1f5920e", 0x38, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)="ed16a95e6a914256458045c8c5a1e4407d2f8d038717c1574651dab242a53a6a2e4503984913a7eded0a7c8af175caed8fa24835926a") syz_open_procfs$namespace(r1, &(0x7f0000000140)='ns/time\x00') (async) write$cgroup_pid(r0, &(0x7f0000000100)=r1, 0x12) 14:45:26 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x400001}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:26 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0xffffffff, 0x0}, 0x20) [ 1058.419484][T12026] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1058.427385][T12026] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1058.435199][T12026] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1058.443102][T12026] 14:45:27 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x40002122) openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x4, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) recvmsg$unix(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x40002122) (async) openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x4, 0x0) (async) 14:45:27 executing program 1: openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={'pim6reg0\x00', 0x1}) 14:45:27 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1004000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:27 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 63) 14:45:27 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0xffffffff, 0x0}, 0x20) 14:45:27 executing program 5: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) ioctl$TUNSETVNETLE(0xffffffffffffffff, 0x400454dc, &(0x7f0000000280)=0x1) recvmsg$unix(r0, &(0x7f0000000240)={&(0x7f0000000000)=@abs, 0x6e, &(0x7f00000001c0)=[{&(0x7f0000000080)=""/255, 0xff}, {&(0x7f0000000180)=""/32, 0x20}], 0x2, &(0x7f0000000200)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}, 0x20) 14:45:27 executing program 1: openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={'pim6reg0\x00', 0x1}) 14:45:27 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:27 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:27 executing program 1: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, 0x0) 14:45:27 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x8000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:27 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x10000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1058.926998][T12060] FAULT_INJECTION: forcing a failure. [ 1058.926998][T12060] name failslab, interval 1, probability 0, space 0, times 0 [ 1058.942089][T12060] CPU: 1 PID: 12060 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1058.952160][T12060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1058.962053][T12060] Call Trace: [ 1058.965176][T12060] [ 1058.967955][T12060] dump_stack_lvl+0x151/0x1b7 [ 1058.972468][T12060] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1058.977767][T12060] dump_stack+0x15/0x17 [ 1058.981760][T12060] should_fail+0x3c0/0x510 [ 1058.986005][T12060] __should_failslab+0x9f/0xe0 [ 1058.990615][T12060] should_failslab+0x9/0x20 [ 1058.994948][T12060] kmem_cache_alloc+0x4f/0x2f0 [ 1058.999547][T12060] ? anon_vma_clone+0xa1/0x4f0 [ 1059.004145][T12060] anon_vma_clone+0xa1/0x4f0 [ 1059.008570][T12060] anon_vma_fork+0x91/0x4f0 [ 1059.012910][T12060] ? anon_vma_name+0x43/0x70 [ 1059.017369][T12060] dup_mmap+0x750/0xea0 [ 1059.021334][T12060] ? __delayed_free_task+0x20/0x20 [ 1059.026278][T12060] ? mm_init+0x807/0x960 [ 1059.030361][T12060] dup_mm+0x91/0x330 [ 1059.034088][T12060] copy_mm+0x108/0x1b0 [ 1059.037995][T12060] copy_process+0x1295/0x3250 [ 1059.042510][T12060] ? proc_fail_nth_write+0x213/0x290 [ 1059.047630][T12060] ? proc_fail_nth_read+0x220/0x220 [ 1059.053009][T12060] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1059.057962][T12060] ? vfs_write+0x9af/0x1050 [ 1059.062302][T12060] ? vmacache_update+0xb7/0x120 [ 1059.066984][T12060] kernel_clone+0x22d/0x990 [ 1059.071326][T12060] ? file_end_write+0x1b0/0x1b0 [ 1059.076011][T12060] ? __kasan_check_write+0x14/0x20 [ 1059.080961][T12060] ? create_io_thread+0x1e0/0x1e0 [ 1059.085825][T12060] ? __mutex_lock_slowpath+0x10/0x10 [ 1059.090961][T12060] __x64_sys_clone+0x289/0x310 [ 1059.095550][T12060] ? __do_sys_vfork+0x130/0x130 [ 1059.100230][T12060] ? debug_smp_processor_id+0x17/0x20 [ 1059.105489][T12060] do_syscall_64+0x44/0xd0 [ 1059.109692][T12060] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1059.115420][T12060] RIP: 0033:0x7f0bd76b80d9 [ 1059.119680][T12060] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1059.139114][T12060] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1059.147363][T12060] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1059.155172][T12060] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1059.162984][T12060] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1059.170796][T12060] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1059.178607][T12060] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1059.186428][T12060] 14:45:28 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x100) 14:45:28 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x20000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:28 executing program 1: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, 0x0) 14:45:28 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0xffffffff, 0x0}, 0x20) 14:45:28 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 64) 14:45:28 executing program 5: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) (async) ioctl$TUNSETVNETLE(0xffffffffffffffff, 0x400454dc, &(0x7f0000000280)=0x1) recvmsg$unix(r0, &(0x7f0000000240)={&(0x7f0000000000)=@abs, 0x6e, &(0x7f00000001c0)=[{&(0x7f0000000080)=""/255, 0xff}, {&(0x7f0000000180)=""/32, 0x20}], 0x2, &(0x7f0000000200)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}, 0x20) 14:45:28 executing program 1: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, 0x0) 14:45:28 executing program 3: r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000400)=ANY=[@ANYBLOB="9feb01001800000000000000880000000e040000000001000006000000010011040100008800eae677892b8a49e73450000000040000000400000010000b030000000f0000a4753e540000000007000000000400000004000004000400000f0000000200000031fc000800000000030000000104000004000000050000000e0a0000080000000200000001000000070000000000000205000000005f2e61000000000c000000000000002c435f7900c80c12f5c8c3afcfd5"], &(0x7f00000001c0)=""/99, 0xa6, 0x63, 0x1}, 0x20) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0xc, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, [@ldst={0x1, 0x0, 0x0, 0x5, 0x3, 0xfffffffffffffffe, 0x8}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x5}, @btf_id={0x18, 0x9, 0x3, 0x0, 0x4}, @generic={0x6, 0x9, 0xe, 0x6, 0xfffff001}, @exit, @generic={0x5, 0x2, 0x5, 0x400, 0x401}, @alu={0x4, 0x1, 0x2, 0x0, 0x5, 0xfffffffffffffff8, 0x1}, @call={0x85, 0x0, 0x0, 0x19}]}, &(0x7f0000000080)='syzkaller\x00', 0x8, 0x1b, &(0x7f00000000c0)=""/27, 0x41000, 0x3, '\x00', 0x0, 0x25, r0, 0x8, &(0x7f00000002c0)={0xa, 0x4}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0xb, 0xfffffeff, 0x8001}, 0x10}, 0x80) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r1, 0x12, 0x0, 0x0, 0x0}, 0x20) openat$cgroup_int(r1, &(0x7f0000000100)='cpuset.cpu_exclusive\x00', 0x2, 0x0) 14:45:28 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x40000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:28 executing program 1: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg0\x00'}) 14:45:28 executing program 1: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg0\x00'}) 14:45:28 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x200000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1059.797211][T12094] FAULT_INJECTION: forcing a failure. [ 1059.797211][T12094] name failslab, interval 1, probability 0, space 0, times 0 [ 1059.809878][T12094] CPU: 1 PID: 12094 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1059.819929][T12094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1059.829824][T12094] Call Trace: [ 1059.832952][T12094] [ 1059.835731][T12094] dump_stack_lvl+0x151/0x1b7 [ 1059.840245][T12094] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1059.845537][T12094] dump_stack+0x15/0x17 [ 1059.849532][T12094] should_fail+0x3c0/0x510 [ 1059.853780][T12094] __should_failslab+0x9f/0xe0 [ 1059.858383][T12094] should_failslab+0x9/0x20 [ 1059.862806][T12094] kmem_cache_alloc+0x4f/0x2f0 [ 1059.867408][T12094] ? vm_area_dup+0x26/0x1d0 [ 1059.871749][T12094] vm_area_dup+0x26/0x1d0 [ 1059.875922][T12094] dup_mmap+0x6b8/0xea0 [ 1059.879903][T12094] ? __delayed_free_task+0x20/0x20 [ 1059.884850][T12094] ? mm_init+0x807/0x960 [ 1059.888946][T12094] dup_mm+0x91/0x330 [ 1059.892663][T12094] copy_mm+0x108/0x1b0 [ 1059.896567][T12094] copy_process+0x1295/0x3250 [ 1059.901084][T12094] ? proc_fail_nth_write+0x213/0x290 [ 1059.906202][T12094] ? proc_fail_nth_read+0x220/0x220 [ 1059.911242][T12094] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1059.916184][T12094] ? vfs_write+0x9af/0x1050 [ 1059.920526][T12094] ? vmacache_update+0xb7/0x120 [ 1059.925213][T12094] kernel_clone+0x22d/0x990 [ 1059.929562][T12094] ? file_end_write+0x1b0/0x1b0 [ 1059.934239][T12094] ? __kasan_check_write+0x14/0x20 [ 1059.939188][T12094] ? create_io_thread+0x1e0/0x1e0 [ 1059.944133][T12094] ? __mutex_lock_slowpath+0x10/0x10 [ 1059.949257][T12094] __x64_sys_clone+0x289/0x310 [ 1059.953855][T12094] ? __do_sys_vfork+0x130/0x130 [ 1059.958541][T12094] ? debug_smp_processor_id+0x17/0x20 [ 1059.963758][T12094] do_syscall_64+0x44/0xd0 [ 1059.968032][T12094] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1059.973732][T12094] RIP: 0033:0x7f0bd76b80d9 [ 1059.978003][T12094] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1059.998128][T12094] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1060.006635][T12094] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1060.014446][T12094] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1060.022262][T12094] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1060.030069][T12094] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1060.037885][T12094] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1060.045696][T12094] 14:45:29 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x100) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x100) (async) 14:45:29 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x800000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:29 executing program 1: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg0\x00'}) 14:45:29 executing program 3: r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000400)=ANY=[@ANYBLOB="9feb01001800000000000000880000000e040000000001000006000000010011040100008800eae677892b8a49e73450000000040000000400000010000b030000000f0000a4753e540000000007000000000400000004000004000400000f0000000200000031fc000800000000030000000104000004000000050000000e0a0000080000000200000001000000070000000000000205000000005f2e61000000000c000000000000002c435f7900c80c12f5c8c3afcfd5"], &(0x7f00000001c0)=""/99, 0xa6, 0x63, 0x1}, 0x20) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0xc, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, [@ldst={0x1, 0x0, 0x0, 0x5, 0x3, 0xfffffffffffffffe, 0x8}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x5}, @btf_id={0x18, 0x9, 0x3, 0x0, 0x4}, @generic={0x6, 0x9, 0xe, 0x6, 0xfffff001}, @exit, @generic={0x5, 0x2, 0x5, 0x400, 0x401}, @alu={0x4, 0x1, 0x2, 0x0, 0x5, 0xfffffffffffffff8, 0x1}, @call={0x85, 0x0, 0x0, 0x19}]}, &(0x7f0000000080)='syzkaller\x00', 0x8, 0x1b, &(0x7f00000000c0)=""/27, 0x41000, 0x3, '\x00', 0x0, 0x25, r0, 0x8, &(0x7f00000002c0)={0xa, 0x4}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0xb, 0xfffffeff, 0x8001}, 0x10}, 0x80) (async, rerun: 64) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (rerun: 64) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r1, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) openat$cgroup_int(r1, &(0x7f0000000100)='cpuset.cpu_exclusive\x00', 0x2, 0x0) 14:45:29 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 65) 14:45:29 executing program 5: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) (async) ioctl$TUNSETVNETLE(0xffffffffffffffff, 0x400454dc, &(0x7f0000000280)=0x1) recvmsg$unix(r0, &(0x7f0000000240)={&(0x7f0000000000)=@abs, 0x6e, &(0x7f00000001c0)=[{&(0x7f0000000080)=""/255, 0xff}, {&(0x7f0000000180)=""/32, 0x20}], 0x2, &(0x7f0000000200)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}, 0x20) 14:45:29 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1000001000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:29 executing program 3: r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000400)=ANY=[@ANYBLOB="9feb01001800000000000000880000000e040000000001000006000000010011040100008800eae677892b8a49e73450000000040000000400000010000b030000000f0000a4753e540000000007000000000400000004000004000400000f0000000200000031fc000800000000030000000104000004000000050000000e0a0000080000000200000001000000070000000000000205000000005f2e61000000000c000000000000002c435f7900c80c12f5c8c3afcfd5"], &(0x7f00000001c0)=""/99, 0xa6, 0x63, 0x1}, 0x20) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0xc, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, [@ldst={0x1, 0x0, 0x0, 0x5, 0x3, 0xfffffffffffffffe, 0x8}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x5}, @btf_id={0x18, 0x9, 0x3, 0x0, 0x4}, @generic={0x6, 0x9, 0xe, 0x6, 0xfffff001}, @exit, @generic={0x5, 0x2, 0x5, 0x400, 0x401}, @alu={0x4, 0x1, 0x2, 0x0, 0x5, 0xfffffffffffffff8, 0x1}, @call={0x85, 0x0, 0x0, 0x19}]}, &(0x7f0000000080)='syzkaller\x00', 0x8, 0x1b, &(0x7f00000000c0)=""/27, 0x41000, 0x3, '\x00', 0x0, 0x25, r0, 0x8, &(0x7f00000002c0)={0xa, 0x4}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0xb, 0xfffffeff, 0x8001}, 0x10}, 0x80) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r1, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) openat$cgroup_int(r1, &(0x7f0000000100)='cpuset.cpu_exclusive\x00', 0x2, 0x0) 14:45:29 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:29 executing program 3: bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000f80)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000ec0)='6'}, 0x48) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:29 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:29 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1000000000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1060.641691][T12113] FAULT_INJECTION: forcing a failure. [ 1060.641691][T12113] name failslab, interval 1, probability 0, space 0, times 0 [ 1060.658158][T12113] CPU: 0 PID: 12113 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1060.668227][T12113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1060.678121][T12113] Call Trace: [ 1060.681242][T12113] [ 1060.684022][T12113] dump_stack_lvl+0x151/0x1b7 [ 1060.688541][T12113] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1060.693829][T12113] dump_stack+0x15/0x17 [ 1060.697818][T12113] should_fail+0x3c0/0x510 [ 1060.702072][T12113] __should_failslab+0x9f/0xe0 [ 1060.706669][T12113] should_failslab+0x9/0x20 [ 1060.711020][T12113] kmem_cache_alloc+0x4f/0x2f0 [ 1060.715623][T12113] ? vm_area_dup+0x26/0x1d0 [ 1060.719952][T12113] vm_area_dup+0x26/0x1d0 [ 1060.724128][T12113] dup_mmap+0x6b8/0xea0 [ 1060.728112][T12113] ? __delayed_free_task+0x20/0x20 [ 1060.733056][T12113] ? mm_init+0x807/0x960 [ 1060.737137][T12113] dup_mm+0x91/0x330 [ 1060.740873][T12113] copy_mm+0x108/0x1b0 [ 1060.744777][T12113] copy_process+0x1295/0x3250 [ 1060.749303][T12113] ? proc_fail_nth_write+0x213/0x290 [ 1060.754415][T12113] ? proc_fail_nth_read+0x220/0x220 [ 1060.759446][T12113] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1060.764394][T12113] ? vfs_write+0x9af/0x1050 [ 1060.769340][T12113] ? vmacache_update+0xb7/0x120 [ 1060.774038][T12113] kernel_clone+0x22d/0x990 [ 1060.778366][T12113] ? file_end_write+0x1b0/0x1b0 [ 1060.783065][T12113] ? __kasan_check_write+0x14/0x20 [ 1060.788003][T12113] ? create_io_thread+0x1e0/0x1e0 [ 1060.792878][T12113] ? __mutex_lock_slowpath+0x10/0x10 [ 1060.797988][T12113] __x64_sys_clone+0x289/0x310 [ 1060.802587][T12113] ? __do_sys_vfork+0x130/0x130 [ 1060.807271][T12113] ? debug_smp_processor_id+0x17/0x20 [ 1060.812482][T12113] do_syscall_64+0x44/0xd0 [ 1060.816741][T12113] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1060.822465][T12113] RIP: 0033:0x7f0bd76b80d9 [ 1060.826727][T12113] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1060.846161][T12113] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1060.854403][T12113] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1060.862653][T12113] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1060.870463][T12113] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1060.878269][T12113] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1060.886083][T12113] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1060.893951][T12113] 14:45:30 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x100) 14:45:30 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x10000010000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:30 executing program 3: bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000f80)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000ec0)='6'}, 0x48) (async) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:30 executing program 1: syz_clone(0x1800700, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair(0x2b, 0x4, 0x7, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000002a00)={&(0x7f0000000340), 0x6e, &(0x7f0000002800)=[{&(0x7f00000003c0)=""/70, 0x46}, {&(0x7f0000000440)=""/40, 0x28}, {&(0x7f0000000480)=""/26, 0x1a}, {&(0x7f00000004c0)=""/244, 0xf4}, {&(0x7f00000005c0)=""/175, 0xaf}, {&(0x7f0000000680)=""/226, 0xe2}, {&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000001780)=""/100, 0x64}, {&(0x7f0000001800)=""/4096, 0x1000}], 0x9, &(0x7f00000028c0)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x108}, 0x22) recvmsg$unix(r0, &(0x7f0000000300)={&(0x7f0000000040), 0x6e, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/220, 0xdc}], 0x1, &(0x7f0000000200)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xe0}, 0x141) r2 = openat$cgroup_procs(r1, &(0x7f0000002a40)='tasks\x00', 0x2, 0x0) r3 = gettid() syz_open_procfs$namespace(r3, 0x0) write$cgroup_pid(r2, &(0x7f0000002a80)=r3, 0x12) 14:45:30 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 66) 14:45:30 executing program 5: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$TUNGETFILTER(0xffffffffffffffff, 0x801054db, &(0x7f0000000080)=""/234) r0 = gettid() syz_open_procfs$namespace(r0, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={r0, r1, 0x0, 0x6, &(0x7f0000000000)='\xea\xc1*$$\x00'}, 0x30) 14:45:30 executing program 3: bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000f80)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000ec0)='6'}, 0x48) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000f80)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000ec0)='6'}, 0x48) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) 14:45:30 executing program 1: openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x4801, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETSNDBUF(r0, 0x400454d4, &(0x7f0000000080)=0x7fff) ioctl$TUNSETFILTEREBPF(r0, 0x800454e1, 0x0) ioctl$TUNSETSNDBUF(r0, 0x400454d4, &(0x7f0000000040)=0x402) syz_clone(0x18068200, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:30 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) openat$cgroup_subtree(r0, &(0x7f0000000380), 0x2, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000003c0)='./cgroup/syz0\x00', 0x200002, 0x0) openat$cgroup_ro(r1, &(0x7f0000000400)='net_prio.prioidx\x00', 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x3b, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xc506}, [@func={0x85, 0x0, 0x1, 0x0, 0xffffffffffffffff}]}, &(0x7f0000000080)='syzkaller\x00', 0x7, 0xd2, &(0x7f00000000c0)=""/210, 0x41000, 0x4, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x0, 0x1}, 0x8, 0x10, &(0x7f0000000200)={0x5, 0x7, 0x8000, 0x9}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, 0x1, 0x1, 0xffffffffffffffff, 0x1, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0x1]}, 0x80) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000340)={r2, 0xffffffffffffffff, 0xa}, 0x10) 14:45:30 executing program 1: openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x0, 0x0) syz_clone(0x24820480, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:30 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) openat$cgroup_subtree(r0, &(0x7f0000000380), 0x2, 0x0) (async, rerun: 32) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000003c0)='./cgroup/syz0\x00', 0x200002, 0x0) (rerun: 32) openat$cgroup_ro(r1, &(0x7f0000000400)='net_prio.prioidx\x00', 0x0, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x3b, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xc506}, [@func={0x85, 0x0, 0x1, 0x0, 0xffffffffffffffff}]}, &(0x7f0000000080)='syzkaller\x00', 0x7, 0xd2, &(0x7f00000000c0)=""/210, 0x41000, 0x4, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x0, 0x1}, 0x8, 0x10, &(0x7f0000000200)={0x5, 0x7, 0x8000, 0x9}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, 0x1, 0x1, 0xffffffffffffffff, 0x1, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0x1]}, 0x80) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000340)={r2, 0xffffffffffffffff, 0xa}, 0x10) [ 1061.492964][T12148] FAULT_INJECTION: forcing a failure. [ 1061.492964][T12148] name failslab, interval 1, probability 0, space 0, times 0 [ 1061.508997][T12148] CPU: 1 PID: 12148 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1061.519418][T12148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1061.529321][T12148] Call Trace: [ 1061.532440][T12148] [ 1061.535213][T12148] dump_stack_lvl+0x151/0x1b7 14:45:30 executing program 1: openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x0, 0x0) syz_clone(0x24820480, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1061.539735][T12148] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1061.545024][T12148] dump_stack+0x15/0x17 [ 1061.549017][T12148] should_fail+0x3c0/0x510 [ 1061.553279][T12148] __should_failslab+0x9f/0xe0 [ 1061.557881][T12148] should_failslab+0x9/0x20 [ 1061.562213][T12148] kmem_cache_alloc+0x4f/0x2f0 [ 1061.566811][T12148] ? vm_area_dup+0x26/0x1d0 [ 1061.571257][T12148] ? __kasan_check_read+0x11/0x20 [ 1061.576598][T12148] vm_area_dup+0x26/0x1d0 [ 1061.580818][T12148] dup_mmap+0x6b8/0xea0 [ 1061.584754][T12148] ? __delayed_free_task+0x20/0x20 [ 1061.589700][T12148] ? mm_init+0x807/0x960 [ 1061.593781][T12148] dup_mm+0x91/0x330 [ 1061.597512][T12148] copy_mm+0x108/0x1b0 [ 1061.601508][T12148] copy_process+0x1295/0x3250 [ 1061.606021][T12148] ? proc_fail_nth_write+0x213/0x290 [ 1061.611398][T12148] ? proc_fail_nth_read+0x220/0x220 [ 1061.616447][T12148] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1061.621433][T12148] ? vfs_write+0x9af/0x1050 [ 1061.625906][T12148] ? vmacache_update+0xb7/0x120 [ 1061.630601][T12148] kernel_clone+0x22d/0x990 [ 1061.635192][T12148] ? file_end_write+0x1b0/0x1b0 [ 1061.639900][T12148] ? __kasan_check_write+0x14/0x20 [ 1061.644833][T12148] ? create_io_thread+0x1e0/0x1e0 [ 1061.649707][T12148] ? __mutex_lock_slowpath+0x10/0x10 [ 1061.656644][T12148] __x64_sys_clone+0x289/0x310 [ 1061.661243][T12148] ? __do_sys_vfork+0x130/0x130 [ 1061.665922][T12148] ? debug_smp_processor_id+0x17/0x20 [ 1061.671229][T12148] do_syscall_64+0x44/0xd0 [ 1061.675478][T12148] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1061.681206][T12148] RIP: 0033:0x7f0bd76b80d9 [ 1061.685455][T12148] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1061.705424][T12148] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1061.713664][T12148] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1061.721562][T12148] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1061.729382][T12148] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1061.737183][T12148] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1061.744999][T12148] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1061.752821][T12148] 14:45:30 executing program 1: openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x0, 0x0) syz_clone(0x24820480, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:30 executing program 5: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) (async) ioctl$TUNGETFILTER(0xffffffffffffffff, 0x801054db, &(0x7f0000000080)=""/234) (async) r0 = gettid() syz_open_procfs$namespace(r0, 0x0) (async) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={r0, r1, 0x0, 0x6, &(0x7f0000000000)='\xea\xc1*$$\x00'}, 0x30) 14:45:30 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) openat$cgroup_subtree(r0, &(0x7f0000000380), 0x2, 0x0) (async, rerun: 64) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000003c0)='./cgroup/syz0\x00', 0x200002, 0x0) (rerun: 64) openat$cgroup_ro(r1, &(0x7f0000000400)='net_prio.prioidx\x00', 0x0, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x3b, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xc506}, [@func={0x85, 0x0, 0x1, 0x0, 0xffffffffffffffff}]}, &(0x7f0000000080)='syzkaller\x00', 0x7, 0xd2, &(0x7f00000000c0)=""/210, 0x41000, 0x4, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x0, 0x1}, 0x8, 0x10, &(0x7f0000000200)={0x5, 0x7, 0x8000, 0x9}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, &(0x7f0000000240)=[0xffffffffffffffff, 0x1, 0x1, 0xffffffffffffffff, 0x1, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0x1]}, 0x80) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000340)={r2, 0xffffffffffffffff, 0xa}, 0x10) 14:45:30 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x40000100000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:30 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000000c0)={0xffffffffffffffff, 0x58, &(0x7f0000000040)}, 0x10) 14:45:30 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 67) 14:45:30 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000000c0)={0xffffffffffffffff, 0x58, &(0x7f0000000040)}, 0x10) 14:45:30 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x400000000000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:30 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000000c0)={0xffffffffffffffff, 0x58, &(0x7f0000000040)}, 0x10) 14:45:30 executing program 1: syz_clone(0x24820480, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:30 executing program 5: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) (async) ioctl$TUNGETFILTER(0xffffffffffffffff, 0x801054db, &(0x7f0000000080)=""/234) (async) r0 = gettid() syz_open_procfs$namespace(r0, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={r0, r1, 0x0, 0x6, &(0x7f0000000000)='\xea\xc1*$$\x00'}, 0x30) 14:45:30 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz1\x00', 0x200002, 0x0) ioctl$TUNGETFEATURES(0xffffffffffffffff, 0x800454cf, &(0x7f0000000040)) openat$cgroup_freezer_state(r0, &(0x7f0000000000), 0x2, 0x0) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={0xffffffffffffffff, 0x12, 0x1, 0xfffffffe, 0x0}, 0x20) 14:45:30 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1000000000000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:30 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz1\x00', 0x200002, 0x0) ioctl$TUNGETFEATURES(0xffffffffffffffff, 0x800454cf, &(0x7f0000000040)) (async, rerun: 64) openat$cgroup_freezer_state(r0, &(0x7f0000000000), 0x2, 0x0) (async, rerun: 64) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={0xffffffffffffffff, 0x12, 0x1, 0xfffffffe, 0x0}, 0x20) [ 1062.351109][T12188] FAULT_INJECTION: forcing a failure. [ 1062.351109][T12188] name failslab, interval 1, probability 0, space 0, times 0 [ 1062.372421][T12188] CPU: 1 PID: 12188 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1062.383301][T12188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1062.393196][T12188] Call Trace: [ 1062.396413][T12188] [ 1062.399212][T12188] dump_stack_lvl+0x151/0x1b7 [ 1062.403802][T12188] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1062.409173][T12188] dump_stack+0x15/0x17 [ 1062.413158][T12188] should_fail+0x3c0/0x510 [ 1062.417408][T12188] __should_failslab+0x9f/0xe0 [ 1062.422016][T12188] should_failslab+0x9/0x20 [ 1062.426351][T12188] kmem_cache_alloc+0x4f/0x2f0 [ 1062.430951][T12188] ? vm_area_dup+0x26/0x1d0 [ 1062.435310][T12188] ? __kasan_check_read+0x11/0x20 [ 1062.440161][T12188] vm_area_dup+0x26/0x1d0 [ 1062.444581][T12188] dup_mmap+0x6b8/0xea0 [ 1062.448576][T12188] ? __delayed_free_task+0x20/0x20 [ 1062.453519][T12188] ? mm_init+0x807/0x960 [ 1062.457719][T12188] dup_mm+0x91/0x330 [ 1062.461546][T12188] copy_mm+0x108/0x1b0 [ 1062.465443][T12188] copy_process+0x1295/0x3250 [ 1062.470056][T12188] ? proc_fail_nth_write+0x213/0x290 [ 1062.475772][T12188] ? proc_fail_nth_read+0x220/0x220 [ 1062.480806][T12188] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1062.485752][T12188] ? vfs_write+0x9af/0x1050 [ 1062.490089][T12188] ? vmacache_update+0xb7/0x120 [ 1062.494780][T12188] kernel_clone+0x22d/0x990 [ 1062.499118][T12188] ? file_end_write+0x1b0/0x1b0 [ 1062.503804][T12188] ? __kasan_check_write+0x14/0x20 [ 1062.508753][T12188] ? create_io_thread+0x1e0/0x1e0 [ 1062.513976][T12188] ? __mutex_lock_slowpath+0x10/0x10 [ 1062.519275][T12188] __x64_sys_clone+0x289/0x310 [ 1062.523979][T12188] ? __do_sys_vfork+0x130/0x130 [ 1062.528825][T12188] ? debug_smp_processor_id+0x17/0x20 [ 1062.534033][T12188] do_syscall_64+0x44/0xd0 [ 1062.538306][T12188] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1062.544561][T12188] RIP: 0033:0x7f0bd76b80d9 [ 1062.548947][T12188] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1062.568881][T12188] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1062.577316][T12188] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1062.585374][T12188] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1062.593265][T12188] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 14:45:31 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 68) 14:45:31 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz1\x00', 0x200002, 0x0) ioctl$TUNGETFEATURES(0xffffffffffffffff, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_freezer_state(r0, &(0x7f0000000000), 0x2, 0x0) (async) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={0xffffffffffffffff, 0x12, 0x1, 0xfffffffe, 0x0}, 0x20) 14:45:31 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:31 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000180)={'pimreg0\x00', 0x1}) ioctl$TUNSETCARRIER(r1, 0x400454e2, &(0x7f00000000c0)) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000140)) r3 = openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r4, 0x800454e1, 0x0) ioctl$TUNSETSNDBUF(r4, 0x400454d4, &(0x7f0000000080)=0x2) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x0) r5 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r5, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r5, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000100)={r3, r5, 0x14}, 0x10) 14:45:31 executing program 1: syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:31 executing program 5: syz_clone(0xb8ae700, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = gettid() getpid() syz_open_procfs$namespace(r0, 0x0) write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000000)=r0, 0x12) 14:45:31 executing program 5: syz_clone(0xb8ae700, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = gettid() getpid() syz_open_procfs$namespace(r0, 0x0) write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000000)=r0, 0x12) syz_clone(0xb8ae700, 0x0, 0x0, 0x0, 0x0, 0x0) (async) gettid() (async) getpid() (async) syz_open_procfs$namespace(r0, 0x0) (async) write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000000)=r0, 0x12) (async) [ 1062.601085][T12188] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1062.608896][T12188] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1062.616706][T12188] [ 1062.635125][T12219] FAULT_INJECTION: forcing a failure. [ 1062.635125][T12219] name failslab, interval 1, probability 0, space 0, times 0 14:45:31 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:31 executing program 3: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f00000000c0)={r1, 0x1e, 0x1, 0x0, 0x0, 0xffffffffffffff84}, 0xfffffff3) 14:45:31 executing program 3: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f00000000c0)={r1, 0x1e, 0x1, 0x0, 0x0, 0xffffffffffffff84}, 0xfffffff3) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f00000000c0)={r1, 0x1e, 0x1, 0x0, 0x0, 0xffffffffffffff84}, 0xfffffff3) (async) 14:45:31 executing program 3: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f00000000c0)={r1, 0x1e, 0x1, 0x0, 0x0, 0xffffffffffffff84}, 0xfffffff3) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r0, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f00000000c0)={r1, 0x1e, 0x1, 0x0, 0x0, 0xffffffffffffff84}, 0xfffffff3) (async) 14:45:31 executing program 1: syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1062.649917][T12219] CPU: 1 PID: 12219 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1062.661803][T12219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1062.671919][T12219] Call Trace: [ 1062.675027][T12219] [ 1062.677805][T12219] dump_stack_lvl+0x151/0x1b7 [ 1062.682319][T12219] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1062.687613][T12219] ? do_syscall_64+0x44/0xd0 [ 1062.692043][T12219] dump_stack+0x15/0x17 [ 1062.696032][T12219] should_fail+0x3c0/0x510 [ 1062.700282][T12219] __should_failslab+0x9f/0xe0 [ 1062.704891][T12219] should_failslab+0x9/0x20 [ 1062.709228][T12219] kmem_cache_alloc+0x4f/0x2f0 [ 1062.713831][T12219] ? anon_vma_clone+0xa1/0x4f0 [ 1062.718448][T12219] anon_vma_clone+0xa1/0x4f0 [ 1062.722940][T12219] anon_vma_fork+0x91/0x4f0 [ 1062.727392][T12219] ? anon_vma_name+0x43/0x70 [ 1062.731809][T12219] dup_mmap+0x750/0xea0 [ 1062.735785][T12219] ? __delayed_free_task+0x20/0x20 [ 1062.740733][T12219] ? mm_init+0x807/0x960 [ 1062.744812][T12219] dup_mm+0x91/0x330 [ 1062.748541][T12219] copy_mm+0x108/0x1b0 [ 1062.752448][T12219] copy_process+0x1295/0x3250 [ 1062.756968][T12219] ? proc_fail_nth_write+0x213/0x290 [ 1062.762079][T12219] ? proc_fail_nth_read+0x220/0x220 [ 1062.767115][T12219] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1062.772062][T12219] ? vfs_write+0x9af/0x1050 [ 1062.776415][T12219] ? vmacache_update+0xb7/0x120 [ 1062.781160][T12219] kernel_clone+0x22d/0x990 [ 1062.785438][T12219] ? file_end_write+0x1b0/0x1b0 [ 1062.790118][T12219] ? __kasan_check_write+0x14/0x20 [ 1062.795068][T12219] ? create_io_thread+0x1e0/0x1e0 [ 1062.799944][T12219] ? __mutex_lock_slowpath+0x10/0x10 [ 1062.805054][T12219] __x64_sys_clone+0x289/0x310 [ 1062.809652][T12219] ? __do_sys_vfork+0x130/0x130 [ 1062.814423][T12219] ? debug_smp_processor_id+0x17/0x20 [ 1062.819631][T12219] do_syscall_64+0x44/0xd0 [ 1062.825105][T12219] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1062.830830][T12219] RIP: 0033:0x7f0bd76b80d9 [ 1062.835092][T12219] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1062.854698][T12219] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1062.862942][T12219] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1062.870843][T12219] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1062.878653][T12219] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1062.888636][T12219] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 14:45:31 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 69) 14:45:31 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={r0, 0x3, 0x0, 0xffff, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x8}, 0x20) 14:45:31 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1062.896446][T12219] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1062.904355][T12219] [ 1062.924513][T12268] FAULT_INJECTION: forcing a failure. [ 1062.924513][T12268] name failslab, interval 1, probability 0, space 0, times 0 [ 1062.937360][T12268] CPU: 1 PID: 12268 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1062.947836][T12268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1062.958079][T12268] Call Trace: [ 1062.961209][T12268] [ 1062.965821][T12268] dump_stack_lvl+0x151/0x1b7 [ 1062.970452][T12268] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1062.975759][T12268] dump_stack+0x15/0x17 [ 1062.979854][T12268] should_fail+0x3c0/0x510 [ 1062.984469][T12268] __should_failslab+0x9f/0xe0 [ 1062.989068][T12268] should_failslab+0x9/0x20 [ 1062.993400][T12268] kmem_cache_alloc+0x4f/0x2f0 [ 1062.998002][T12268] ? anon_vma_clone+0xa1/0x4f0 [ 1063.002605][T12268] anon_vma_clone+0xa1/0x4f0 [ 1063.007027][T12268] anon_vma_fork+0x91/0x4f0 [ 1063.011377][T12268] ? anon_vma_name+0x43/0x70 [ 1063.015783][T12268] dup_mmap+0x750/0xea0 [ 1063.019782][T12268] ? __delayed_free_task+0x20/0x20 [ 1063.024899][T12268] ? mm_init+0x807/0x960 [ 1063.029502][T12268] dup_mm+0x91/0x330 [ 1063.033315][T12268] copy_mm+0x108/0x1b0 [ 1063.037244][T12268] copy_process+0x1295/0x3250 [ 1063.041827][T12268] ? proc_fail_nth_write+0x213/0x290 [ 1063.047124][T12268] ? proc_fail_nth_read+0x220/0x220 [ 1063.052762][T12268] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1063.057705][T12268] ? vfs_write+0x9af/0x1050 [ 1063.062060][T12268] ? vmacache_update+0xb7/0x120 [ 1063.066741][T12268] kernel_clone+0x22d/0x990 [ 1063.071170][T12268] ? file_end_write+0x1b0/0x1b0 [ 1063.076285][T12268] ? __kasan_check_write+0x14/0x20 [ 1063.081241][T12268] ? create_io_thread+0x1e0/0x1e0 [ 1063.086106][T12268] ? __mutex_lock_slowpath+0x10/0x10 [ 1063.091209][T12268] __x64_sys_clone+0x289/0x310 [ 1063.095985][T12268] ? __do_sys_vfork+0x130/0x130 [ 1063.100679][T12268] ? debug_smp_processor_id+0x17/0x20 [ 1063.106243][T12268] do_syscall_64+0x44/0xd0 [ 1063.110485][T12268] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1063.116295][T12268] RIP: 0033:0x7f0bd76b80d9 [ 1063.120638][T12268] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1063.140267][T12268] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1063.148509][T12268] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1063.156830][T12268] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1063.164645][T12268] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 14:45:31 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000180)={'pimreg0\x00', 0x1}) (async, rerun: 32) ioctl$TUNSETCARRIER(r1, 0x400454e2, &(0x7f00000000c0)) (rerun: 32) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000140)) (async, rerun: 64) r3 = openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (rerun: 64) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r4, 0x800454e1, 0x0) (async, rerun: 32) ioctl$TUNSETSNDBUF(r4, 0x400454d4, &(0x7f0000000080)=0x2) (async, rerun: 32) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x0) (async) r5 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r5, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r5, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000100)={r3, r5, 0x14}, 0x10) 14:45:31 executing program 5: syz_clone(0xb8ae700, 0x0, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64) r0 = gettid() (rerun: 64) getpid() (async) syz_open_procfs$namespace(r0, 0x0) (async) write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000000)=r0, 0x12) 14:45:31 executing program 1: syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:31 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={r0, 0x3, 0x0, 0xffff, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x8}, 0x20) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={r0, 0x3, 0x0, 0xffff, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x8}, 0x20) (async) 14:45:31 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:31 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 70) 14:45:31 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={r0, 0x3, 0x0, 0xffff, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x8}, 0x20) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={r0, 0x3, 0x0, 0xffff, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x8}, 0x20) (async) 14:45:31 executing program 5: syz_clone(0x29800700, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x5e, 0xff, 0x9, 0x9, 0x0, 0x4, 0x4080, 0xe, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x9c, 0x1, @perf_config_ext={0x8, 0xa484}, 0x0, 0xffffffffffffffff, 0x2, 0x6, 0x81, 0x50a, 0x0, 0x0, 0x1, 0x0, 0x1}, 0xffffffffffffffff, 0x7, 0xffffffffffffffff, 0xa) [ 1063.172889][T12268] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1063.180698][T12268] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1063.188514][T12268] [ 1063.208693][T12272] FAULT_INJECTION: forcing a failure. [ 1063.208693][T12272] name failslab, interval 1, probability 0, space 0, times 0 14:45:31 executing program 5: syz_clone(0x29800700, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x5e, 0xff, 0x9, 0x9, 0x0, 0x4, 0x4080, 0xe, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x9c, 0x1, @perf_config_ext={0x8, 0xa484}, 0x0, 0xffffffffffffffff, 0x2, 0x6, 0x81, 0x50a, 0x0, 0x0, 0x1, 0x0, 0x1}, 0xffffffffffffffff, 0x7, 0xffffffffffffffff, 0xa) syz_clone(0x29800700, 0x0, 0x0, 0x0, 0x0, 0x0) (async) perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x5e, 0xff, 0x9, 0x9, 0x0, 0x4, 0x4080, 0xe, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x9c, 0x1, @perf_config_ext={0x8, 0xa484}, 0x0, 0xffffffffffffffff, 0x2, 0x6, 0x81, 0x50a, 0x0, 0x0, 0x1, 0x0, 0x1}, 0xffffffffffffffff, 0x7, 0xffffffffffffffff, 0xa) (async) 14:45:31 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4000}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:31 executing program 5: syz_clone(0x29800700, 0x0, 0x0, 0x0, 0x0, 0x0) (async) perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x5e, 0xff, 0x9, 0x9, 0x0, 0x4, 0x4080, 0xe, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x9c, 0x1, @perf_config_ext={0x8, 0xa484}, 0x0, 0xffffffffffffffff, 0x2, 0x6, 0x81, 0x50a, 0x0, 0x0, 0x1, 0x0, 0x1}, 0xffffffffffffffff, 0x7, 0xffffffffffffffff, 0xa) [ 1063.225353][T12272] CPU: 1 PID: 12272 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1063.235414][T12272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1063.245312][T12272] Call Trace: [ 1063.248453][T12272] [ 1063.251211][T12272] dump_stack_lvl+0x151/0x1b7 [ 1063.255725][T12272] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1063.261020][T12272] ? vma_interval_tree_augment_rotate+0x210/0x210 [ 1063.267270][T12272] dump_stack+0x15/0x17 [ 1063.271262][T12272] should_fail+0x3c0/0x510 14:45:31 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x400001}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1063.275515][T12272] __should_failslab+0x9f/0xe0 [ 1063.280111][T12272] should_failslab+0x9/0x20 [ 1063.284453][T12272] kmem_cache_alloc+0x4f/0x2f0 [ 1063.289053][T12272] ? anon_vma_fork+0xf7/0x4f0 [ 1063.293917][T12272] anon_vma_fork+0xf7/0x4f0 [ 1063.298256][T12272] ? anon_vma_name+0x43/0x70 [ 1063.302697][T12272] dup_mmap+0x750/0xea0 [ 1063.306669][T12272] ? __delayed_free_task+0x20/0x20 [ 1063.311622][T12272] ? mm_init+0x807/0x960 [ 1063.315698][T12272] dup_mm+0x91/0x330 [ 1063.319435][T12272] copy_mm+0x108/0x1b0 [ 1063.323339][T12272] copy_process+0x1295/0x3250 [ 1063.327849][T12272] ? proc_fail_nth_write+0x213/0x290 [ 1063.332969][T12272] ? proc_fail_nth_read+0x220/0x220 [ 1063.338003][T12272] ? __sanitizer_cov_trace_pc+0x43/0x60 [ 1063.343457][T12272] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1063.348334][T12272] ? vfs_write+0x9af/0x1050 [ 1063.352677][T12272] ? vmacache_update+0xb7/0x120 [ 1063.357361][T12272] kernel_clone+0x22d/0x990 [ 1063.361700][T12272] ? file_end_write+0x1b0/0x1b0 [ 1063.366391][T12272] ? __kasan_check_write+0x14/0x20 [ 1063.371336][T12272] ? create_io_thread+0x1e0/0x1e0 [ 1063.376197][T12272] ? __mutex_lock_slowpath+0x10/0x10 [ 1063.381315][T12272] __x64_sys_clone+0x289/0x310 [ 1063.385919][T12272] ? __do_sys_vfork+0x130/0x130 [ 1063.390606][T12272] ? fpregs_restore_userregs+0x1f0/0x3a0 [ 1063.396072][T12272] ? switch_fpu_return+0xe/0x10 [ 1063.400776][T12272] do_syscall_64+0x44/0xd0 [ 1063.405011][T12272] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1063.410748][T12272] RIP: 0033:0x7f0bd76b80d9 [ 1063.415017][T12272] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1063.434441][T12272] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1063.442683][T12272] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1063.450503][T12272] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1063.458320][T12272] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1063.466381][T12272] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1063.474192][T12272] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1063.482023][T12272] [ 1063.485733][T12272] ================================================================== [ 1063.493605][T12272] BUG: KASAN: use-after-free in vm_area_free+0x7e/0x230 [ 1063.500371][T12272] Write of size 4 at addr ffff8881560f5748 by task syz-executor.0/12272 [ 1063.508537][T12272] [ 1063.510697][T12272] CPU: 1 PID: 12272 Comm: syz-executor.0 Not tainted 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1063.520766][T12272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1063.530664][T12272] Call Trace: [ 1063.533791][T12272] [ 1063.536653][T12272] dump_stack_lvl+0x151/0x1b7 [ 1063.541167][T12272] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1063.546466][T12272] ? panic+0x727/0x727 [ 1063.550365][T12272] ? slab_free_freelist_hook+0xc9/0x1a0 [ 1063.555748][T12272] print_address_description+0x87/0x3d0 [ 1063.561131][T12272] kasan_report+0x1a6/0x1f0 [ 1063.565475][T12272] ? vm_area_free+0x7e/0x230 [ 1063.569896][T12272] ? vm_area_free+0x7e/0x230 [ 1063.574335][T12272] kasan_check_range+0x2aa/0x2e0 [ 1063.579104][T12272] __kasan_check_write+0x14/0x20 [ 1063.584050][T12272] vm_area_free+0x7e/0x230 [ 1063.588385][T12272] dup_mmap+0xbcd/0xea0 [ 1063.592465][T12272] ? __delayed_free_task+0x20/0x20 [ 1063.597413][T12272] ? mm_init+0x807/0x960 [ 1063.601499][T12272] dup_mm+0x91/0x330 [ 1063.605321][T12272] copy_mm+0x108/0x1b0 [ 1063.609227][T12272] copy_process+0x1295/0x3250 [ 1063.613742][T12272] ? proc_fail_nth_write+0x213/0x290 [ 1063.618859][T12272] ? proc_fail_nth_read+0x220/0x220 [ 1063.623885][T12272] ? __sanitizer_cov_trace_pc+0x43/0x60 [ 1063.629364][T12272] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1063.634309][T12272] ? vfs_write+0x9af/0x1050 [ 1063.638638][T12272] ? vmacache_update+0xb7/0x120 [ 1063.643678][T12272] kernel_clone+0x22d/0x990 [ 1063.648189][T12272] ? file_end_write+0x1b0/0x1b0 [ 1063.652883][T12272] ? __kasan_check_write+0x14/0x20 [ 1063.657914][T12272] ? create_io_thread+0x1e0/0x1e0 [ 1063.663121][T12272] ? __mutex_lock_slowpath+0x10/0x10 [ 1063.668400][T12272] __x64_sys_clone+0x289/0x310 [ 1063.673101][T12272] ? __do_sys_vfork+0x130/0x130 [ 1063.677788][T12272] ? fpregs_restore_userregs+0x1f0/0x3a0 [ 1063.684571][T12272] ? switch_fpu_return+0xe/0x10 [ 1063.689422][T12272] do_syscall_64+0x44/0xd0 [ 1063.693720][T12272] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1063.699503][T12272] RIP: 0033:0x7f0bd76b80d9 [ 1063.703749][T12272] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1063.724128][T12272] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1063.732357][T12272] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1063.740628][T12272] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1063.748707][T12272] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1063.756514][T12272] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1063.764924][T12272] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1063.772742][T12272] [ 1063.775626][T12272] [ 1063.778286][T12272] Allocated by task 12268: [ 1063.783080][T12272] __kasan_slab_alloc+0xb2/0xe0 [ 1063.787751][T12272] kmem_cache_alloc+0x189/0x2f0 [ 1063.792771][T12272] vm_area_dup+0x26/0x1d0 [ 1063.796868][T12272] dup_mmap+0x6b8/0xea0 [ 1063.800862][T12272] dup_mm+0x91/0x330 [ 1063.804591][T12272] copy_mm+0x108/0x1b0 [ 1063.808505][T12272] copy_process+0x1295/0x3250 [ 1063.813011][T12272] kernel_clone+0x22d/0x990 [ 1063.817353][T12272] __x64_sys_clone+0x289/0x310 [ 1063.821979][T12272] do_syscall_64+0x44/0xd0 [ 1063.826295][T12272] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1063.832106][T12272] [ 1063.834282][T12272] Freed by task 12269: [ 1063.838182][T12272] kasan_set_track+0x4c/0x70 [ 1063.842878][T12272] kasan_set_free_info+0x23/0x40 [ 1063.847999][T12272] ____kasan_slab_free+0x126/0x160 [ 1063.852948][T12272] __kasan_slab_free+0x11/0x20 [ 1063.857538][T12272] slab_free_freelist_hook+0xc9/0x1a0 [ 1063.863009][T12272] kmem_cache_free+0x11a/0x2e0 [ 1063.867616][T12272] vm_area_free+0x1ae/0x230 [ 1063.872223][T12272] exit_mmap+0x5dd/0x7a0 [ 1063.876403][T12272] __mmput+0x95/0x300 [ 1063.880214][T12272] mmput+0x50/0x60 [ 1063.883763][T12272] exit_mm+0x50d/0x760 [ 1063.887666][T12272] do_exit+0x63c/0x24d0 [ 1063.891653][T12272] __ia32_sys_exit+0x0/0x40 [ 1063.895990][T12272] do_syscall_64+0x44/0xd0 [ 1063.900505][T12272] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1063.906233][T12272] [ 1063.908406][T12272] The buggy address belongs to the object at ffff8881560f56f0 [ 1063.908406][T12272] which belongs to the cache vm_area_struct of size 232 [ 1063.922551][T12272] The buggy address is located 88 bytes inside of [ 1063.922551][T12272] 232-byte region [ffff8881560f56f0, ffff8881560f57d8) [ 1063.937488][T12272] The buggy address belongs to the page: [ 1063.942974][T12272] page:ffffea0005583d40 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1560f5 [ 1063.953033][T12272] flags: 0x4000000000000200(slab|zone=1) [ 1063.958499][T12272] raw: 4000000000000200 0000000000000000 dead000000000122 ffff888100275680 [ 1063.967349][T12272] raw: 0000000000000000 00000000000d000d 00000001ffffffff 0000000000000000 [ 1063.975766][T12272] page dumped because: kasan: bad access detected [ 1063.982365][T12272] page_owner tracks the page as allocated [ 1063.987918][T12272] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x112cc0(GFP_USER|__GFP_NOWARN|__GFP_NORETRY), pid 12268, ts 1062923852085, free_ts 1062911642277 [ 1064.004168][T12272] post_alloc_hook+0x1ab/0x1b0 [ 1064.008750][T12272] get_page_from_freelist+0x38b/0x400 [ 1064.013960][T12272] __alloc_pages+0x3a8/0x7c0 [ 1064.018386][T12272] allocate_slab+0x62/0x580 [ 1064.022727][T12272] ___slab_alloc+0x2e2/0x6f0 [ 1064.027152][T12272] __slab_alloc+0x4a/0x90 [ 1064.031318][T12272] kmem_cache_alloc+0x205/0x2f0 [ 1064.036013][T12272] vm_area_dup+0x26/0x1d0 [ 1064.040184][T12272] dup_mmap+0x6b8/0xea0 [ 1064.044164][T12272] dup_mm+0x91/0x330 [ 1064.047895][T12272] copy_mm+0x108/0x1b0 [ 1064.052150][T12272] copy_process+0x1295/0x3250 [ 1064.056748][T12272] kernel_clone+0x22d/0x990 [ 1064.061090][T12272] __x64_sys_clone+0x289/0x310 [ 1064.065689][T12272] do_syscall_64+0x44/0xd0 [ 1064.069942][T12272] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1064.075757][T12272] page last free stack trace: [ 1064.080555][T12272] free_pcp_prepare+0x448/0x450 [ 1064.085238][T12272] free_unref_page_list+0x16a/0xad0 [ 1064.090601][T12272] release_pages+0xf3e/0xf90 [ 1064.095028][T12272] free_pages_and_swap_cache+0x97/0xb0 [ 1064.100323][T12272] tlb_flush_mmu+0x860/0xa00 [ 1064.104757][T12272] tlb_finish_mmu+0xd2/0x1f0 [ 1064.109183][T12272] exit_mmap+0x46e/0x7a0 [ 1064.113255][T12272] __mmput+0x95/0x300 [ 1064.117075][T12272] mmput+0x50/0x60 [ 1064.120634][T12272] exit_mm+0x50d/0x760 [ 1064.124543][T12272] do_exit+0x63c/0x24d0 [ 1064.128535][T12272] __ia32_sys_exit+0x0/0x40 [ 1064.132871][T12272] do_syscall_64+0x44/0xd0 [ 1064.137126][T12272] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1064.143399][T12272] [ 1064.145735][T12272] Memory state around the buggy address: [ 1064.151283][T12272] ffff8881560f5600: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 1064.159109][T12272] ffff8881560f5680: fb fb fb fb fb fb fc fc fc fc fc fc fc fc fa fb [ 1064.167439][T12272] >ffff8881560f5700: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb 14:45:32 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000180)={'pimreg0\x00', 0x1}) ioctl$TUNSETCARRIER(r1, 0x400454e2, &(0x7f00000000c0)) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000140)) r3 = openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r4, 0x800454e1, 0x0) ioctl$TUNSETSNDBUF(r4, 0x400454d4, &(0x7f0000000080)=0x2) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x0) r5 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r5, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r5, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000100)={r3, r5, 0x14}, 0x10) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async) openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) (async) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) (async) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000180)={'pimreg0\x00', 0x1}) (async) ioctl$TUNSETCARRIER(r1, 0x400454e2, &(0x7f00000000c0)) (async) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000140)) (async) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) (async) ioctl$TUNSETFILTEREBPF(r4, 0x800454e1, 0x0) (async) ioctl$TUNSETSNDBUF(r4, 0x400454d4, &(0x7f0000000080)=0x2) (async) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) ioctl$TUNGETFEATURES(r5, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r5, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000100)={r3, r5, 0x14}, 0x10) (async) 14:45:32 executing program 3: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={r0, 0x14, 0x0, 0x1, 0x0, 0x2c}, 0x20) openat$cgroup_type(r0, &(0x7f00000000c0), 0x2, 0x0) 14:45:32 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1004000}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:32 executing program 5: ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:32 executing program 1: syz_clone(0x29800700, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x5e, 0xff, 0x9, 0x9, 0x0, 0x4, 0x4080, 0xe, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x9c, 0x1, @perf_config_ext={0x8, 0xa484}, 0x0, 0xffffffffffffffff, 0x2, 0x6, 0x81, 0x50a, 0x0, 0x0, 0x1, 0x0, 0x1}, 0xffffffffffffffff, 0x7, 0xffffffffffffffff, 0xa) 14:45:32 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 71) [ 1064.175350][T12272] ^ [ 1064.181674][T12272] ffff8881560f5780: fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc fc [ 1064.189590][T12272] ffff8881560f5800: fc fc fc 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 1064.197923][T12272] ================================================================== [ 1064.205808][T12272] Disabling lock debugging due to kernel taint 14:45:32 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2000000}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:32 executing program 3: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={r0, 0x14, 0x0, 0x1, 0x0, 0x2c}, 0x20) (async, rerun: 32) openat$cgroup_type(r0, &(0x7f00000000c0), 0x2, 0x0) (rerun: 32) [ 1064.237541][T12309] FAULT_INJECTION: forcing a failure. [ 1064.237541][T12309] name failslab, interval 1, probability 0, space 0, times 0 14:45:32 executing program 3: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={r0, 0x14, 0x0, 0x1, 0x0, 0x2c}, 0x20) openat$cgroup_type(r0, &(0x7f00000000c0), 0x2, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={r0, 0x14, 0x0, 0x1, 0x0, 0x2c}, 0x20) (async) openat$cgroup_type(r0, &(0x7f00000000c0), 0x2, 0x0) (async) 14:45:32 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4000000}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:32 executing program 5: ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:32 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8000000}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1064.278185][T12309] CPU: 1 PID: 12309 Comm: syz-executor.0 Tainted: G B 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1064.289649][T12309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1064.299547][T12309] Call Trace: [ 1064.302663][T12309] [ 1064.305455][T12309] dump_stack_lvl+0x151/0x1b7 [ 1064.309953][T12309] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1064.315255][T12309] dump_stack+0x15/0x17 [ 1064.319242][T12309] should_fail+0x3c0/0x510 [ 1064.323494][T12309] __should_failslab+0x9f/0xe0 [ 1064.328100][T12309] should_failslab+0x9/0x20 [ 1064.332447][T12309] kmem_cache_alloc+0x4f/0x2f0 [ 1064.337031][T12309] ? anon_vma_fork+0x1b9/0x4f0 [ 1064.341804][T12309] anon_vma_fork+0x1b9/0x4f0 [ 1064.346232][T12309] dup_mmap+0x750/0xea0 [ 1064.350485][T12309] ? __delayed_free_task+0x20/0x20 [ 1064.355433][T12309] ? mm_init+0x807/0x960 [ 1064.359510][T12309] dup_mm+0x91/0x330 [ 1064.363504][T12309] copy_mm+0x108/0x1b0 [ 1064.367410][T12309] copy_process+0x1295/0x3250 [ 1064.372188][T12309] ? proc_fail_nth_write+0x213/0x290 [ 1064.377316][T12309] ? proc_fail_nth_read+0x220/0x220 [ 1064.382353][T12309] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1064.387293][T12309] ? vfs_write+0x9af/0x1050 [ 1064.391630][T12309] ? vmacache_update+0xb7/0x120 [ 1064.396324][T12309] kernel_clone+0x22d/0x990 [ 1064.400654][T12309] ? file_end_write+0x1b0/0x1b0 [ 1064.405346][T12309] ? __kasan_check_write+0x14/0x20 [ 1064.410294][T12309] ? create_io_thread+0x1e0/0x1e0 [ 1064.415151][T12309] ? __mutex_lock_slowpath+0x10/0x10 [ 1064.420280][T12309] __x64_sys_clone+0x289/0x310 [ 1064.424872][T12309] ? __do_sys_vfork+0x130/0x130 [ 1064.429560][T12309] ? debug_smp_processor_id+0x17/0x20 [ 1064.434770][T12309] do_syscall_64+0x44/0xd0 [ 1064.439285][T12309] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1064.445013][T12309] RIP: 0033:0x7f0bd76b80d9 [ 1064.449300][T12309] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1064.468711][T12309] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 14:45:33 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:33 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000180)={'pimreg0\x00', 0x1}) ioctl$TUNSETCARRIER(r1, 0x400454e2, &(0x7f00000000c0)) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000140)) r3 = openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r4, 0x800454e1, 0x0) ioctl$TUNSETSNDBUF(r4, 0x400454d4, &(0x7f0000000080)=0x2) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x0) r5 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r5, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r5, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000100)={r3, r5, 0x14}, 0x10) 14:45:33 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10000000}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:33 executing program 5: ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0) (async) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) (async) 14:45:33 executing program 4: r0 = perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x7f, 0x1, 0x3, 0x0, 0x7, 0x8, 0x4, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, @perf_bp={&(0x7f0000000000), 0x4}, 0x200c, 0x1, 0x6, 0x6, 0x84, 0x9db, 0x100, 0x0, 0x3ff, 0x0, 0x1}, 0x0, 0xf, 0xffffffffffffffff, 0x4) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) write$cgroup_devices(r2, &(0x7f00000000c0)={'b', ' *:* ', 'wm\x00'}, 0x9) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:33 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 72) 14:45:33 executing program 4: r0 = perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x7f, 0x1, 0x3, 0x0, 0x7, 0x8, 0x4, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, @perf_bp={&(0x7f0000000000), 0x4}, 0x200c, 0x1, 0x6, 0x6, 0x84, 0x9db, 0x100, 0x0, 0x3ff, 0x0, 0x1}, 0x0, 0xf, 0xffffffffffffffff, 0x4) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) (async) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) (async, rerun: 64) openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (rerun: 64) write$cgroup_devices(r2, &(0x7f00000000c0)={'b', ' *:* ', 'wm\x00'}, 0x9) (async) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) [ 1064.476953][T12309] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1064.484766][T12309] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1064.492578][T12309] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1064.500390][T12309] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1064.508232][T12309] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1064.516011][T12309] 14:45:33 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x20000000}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:33 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) [ 1064.557739][T12356] FAULT_INJECTION: forcing a failure. [ 1064.557739][T12356] name failslab, interval 1, probability 0, space 0, times 0 [ 1064.576177][T12356] CPU: 1 PID: 12356 Comm: syz-executor.0 Tainted: G B 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1064.587637][T12356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1064.597535][T12356] Call Trace: [ 1064.600660][T12356] [ 1064.603439][T12356] dump_stack_lvl+0x151/0x1b7 14:45:33 executing program 4: r0 = perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x7f, 0x1, 0x3, 0x0, 0x7, 0x8, 0x4, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, @perf_bp={&(0x7f0000000000), 0x4}, 0x200c, 0x1, 0x6, 0x6, 0x84, 0x9db, 0x100, 0x0, 0x3ff, 0x0, 0x1}, 0x0, 0xf, 0xffffffffffffffff, 0x4) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x2) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) (async) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r2, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) write$cgroup_devices(r2, &(0x7f00000000c0)={'b', ' *:* ', 'wm\x00'}, 0x9) (async) recvmsg$unix(r1, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:33 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x40000000}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:33 executing program 5: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x400454d0, 0x4) 14:45:33 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) [ 1064.607948][T12356] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1064.613274][T12356] dump_stack+0x15/0x17 [ 1064.617232][T12356] should_fail+0x3c0/0x510 [ 1064.621489][T12356] __should_failslab+0x9f/0xe0 [ 1064.626107][T12356] should_failslab+0x9/0x20 [ 1064.630425][T12356] kmem_cache_alloc+0x4f/0x2f0 [ 1064.635113][T12356] ? anon_vma_fork+0x1b9/0x4f0 [ 1064.639889][T12356] anon_vma_fork+0x1b9/0x4f0 [ 1064.644312][T12356] dup_mmap+0x750/0xea0 [ 1064.648334][T12356] ? __delayed_free_task+0x20/0x20 [ 1064.653258][T12356] ? mm_init+0x807/0x960 [ 1064.657521][T12356] dup_mm+0x91/0x330 [ 1064.661239][T12356] copy_mm+0x108/0x1b0 [ 1064.665151][T12356] copy_process+0x1295/0x3250 [ 1064.669658][T12356] ? proc_fail_nth_write+0x213/0x290 [ 1064.674781][T12356] ? proc_fail_nth_read+0x220/0x220 [ 1064.679818][T12356] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1064.684778][T12356] ? vfs_write+0x9af/0x1050 [ 1064.689364][T12356] ? vmacache_update+0xb7/0x120 [ 1064.694046][T12356] kernel_clone+0x22d/0x990 [ 1064.698757][T12356] ? file_end_write+0x1b0/0x1b0 [ 1064.703433][T12356] ? __kasan_check_write+0x14/0x20 [ 1064.708636][T12356] ? create_io_thread+0x1e0/0x1e0 [ 1064.713498][T12356] ? __mutex_lock_slowpath+0x10/0x10 [ 1064.718618][T12356] __x64_sys_clone+0x289/0x310 [ 1064.723226][T12356] ? __do_sys_vfork+0x130/0x130 [ 1064.727906][T12356] ? debug_smp_processor_id+0x17/0x20 [ 1064.733125][T12356] do_syscall_64+0x44/0xd0 [ 1064.737368][T12356] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1064.743362][T12356] RIP: 0033:0x7f0bd76b80d9 [ 1064.747609][T12356] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1064.767225][T12356] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1064.775471][T12356] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1064.783298][T12356] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1064.791114][T12356] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1064.798905][T12356] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 14:45:33 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000180)={'pimreg0\x00', 0x1}) ioctl$TUNSETCARRIER(r1, 0x400454e2, &(0x7f00000000c0)) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000140)) r3 = openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r4, 0x800454e1, 0x0) ioctl$TUNSETSNDBUF(r4, 0x400454d4, &(0x7f0000000080)=0x2) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x0) r5 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r5, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r5, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000100)={r3, r5, 0x14}, 0x10) 14:45:33 executing program 5: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) (async) ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x400454d0, 0x4) 14:45:33 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x8, 0x0, 0xfffffffffffffeb2}, 0xffffffffffffff90) 14:45:33 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x200000000}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:33 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:33 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 73) [ 1064.806715][T12356] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1064.814536][T12356] [ 1064.840118][T12388] FAULT_INJECTION: forcing a failure. [ 1064.840118][T12388] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1064.853329][T12388] CPU: 0 PID: 12388 Comm: syz-executor.0 Tainted: G B 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1064.864788][T12388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1064.874678][T12388] Call Trace: [ 1064.877806][T12388] [ 1064.880579][T12388] dump_stack_lvl+0x151/0x1b7 [ 1064.885092][T12388] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1064.890406][T12388] dump_stack+0x15/0x17 [ 1064.894378][T12388] should_fail+0x3c0/0x510 [ 1064.898633][T12388] should_fail_alloc_page+0x58/0x70 [ 1064.903677][T12388] __alloc_pages+0x1de/0x7c0 [ 1064.908098][T12388] ? __count_vm_events+0x30/0x30 [ 1064.912957][T12388] pte_alloc_one+0x73/0x1b0 [ 1064.917293][T12388] ? pfn_modify_allowed+0x2e0/0x2e0 [ 1064.922330][T12388] __pte_alloc+0x86/0x350 [ 1064.926505][T12388] ? is_module_text_address+0xe1/0x140 [ 1064.931791][T12388] ? free_pgtables+0x210/0x210 [ 1064.936389][T12388] ? __kernel_text_address+0x9a/0x110 [ 1064.941600][T12388] ? unwind_get_return_address+0x4c/0x90 [ 1064.947069][T12388] copy_pte_range+0x1b1f/0x20b0 [ 1064.951754][T12388] ? stack_trace_save+0x12d/0x1f0 [ 1064.956627][T12388] ? anon_vma_clone+0xa1/0x4f0 [ 1064.961216][T12388] ? __kunmap_atomic+0x80/0x80 [ 1064.965814][T12388] ? dup_mmap+0x750/0xea0 [ 1064.969985][T12388] ? dup_mm+0x91/0x330 [ 1064.973886][T12388] ? copy_mm+0x108/0x1b0 [ 1064.977965][T12388] ? copy_process+0x1295/0x3250 [ 1064.982653][T12388] ? kernel_clone+0x22d/0x990 [ 1064.987167][T12388] ? __x64_sys_clone+0x289/0x310 [ 1064.991943][T12388] ? do_syscall_64+0x44/0xd0 [ 1064.996367][T12388] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1065.002279][T12388] copy_page_range+0xc1e/0x1090 [ 1065.006959][T12388] ? pfn_valid+0x1e0/0x1e0 [ 1065.011212][T12388] dup_mmap+0x99f/0xea0 [ 1065.015209][T12388] ? __delayed_free_task+0x20/0x20 [ 1065.020149][T12388] ? mm_init+0x807/0x960 [ 1065.024231][T12388] dup_mm+0x91/0x330 [ 1065.027970][T12388] copy_mm+0x108/0x1b0 [ 1065.031871][T12388] copy_process+0x1295/0x3250 [ 1065.036384][T12388] ? proc_fail_nth_write+0x213/0x290 [ 1065.041503][T12388] ? proc_fail_nth_read+0x220/0x220 [ 1065.046541][T12388] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1065.051488][T12388] ? vfs_write+0x9af/0x1050 [ 1065.055834][T12388] ? vmacache_update+0xb7/0x120 [ 1065.060523][T12388] kernel_clone+0x22d/0x990 [ 1065.064860][T12388] ? file_end_write+0x1b0/0x1b0 [ 1065.069543][T12388] ? __kasan_check_write+0x14/0x20 [ 1065.074491][T12388] ? create_io_thread+0x1e0/0x1e0 [ 1065.079535][T12388] ? __mutex_lock_slowpath+0x10/0x10 [ 1065.084660][T12388] __x64_sys_clone+0x289/0x310 [ 1065.089245][T12388] ? __do_sys_vfork+0x130/0x130 [ 1065.093939][T12388] ? debug_smp_processor_id+0x17/0x20 [ 1065.099141][T12388] do_syscall_64+0x44/0xd0 [ 1065.103394][T12388] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1065.109136][T12388] RIP: 0033:0x7f0bd76b80d9 [ 1065.113375][T12388] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1065.132817][T12388] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1065.141062][T12388] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1065.149050][T12388] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 14:45:33 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x800000000}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:33 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:33 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x8, 0x0, 0xfffffffffffffeb2}, 0xffffffffffffff90) 14:45:33 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1000001000}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:33 executing program 5: syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) (async) ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x400454d0, 0x4) 14:45:33 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) [ 1065.156863][T12388] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1065.164687][T12388] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1065.172487][T12388] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1065.180308][T12388] 14:45:33 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000180)={'pimreg0\x00', 0x1}) ioctl$TUNSETCARRIER(r1, 0x400454e2, &(0x7f00000000c0)) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000140)) r3 = openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r4, 0x800454e1, 0x0) ioctl$TUNSETSNDBUF(r4, 0x400454d4, &(0x7f0000000080)=0x2) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x0) r5 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r5, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r5, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000100)={r3, r5, 0x14}, 0x10) 14:45:33 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x8, 0x0, 0xfffffffffffffeb2}, 0xffffffffffffff90) 14:45:33 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNGETVNETBE(0xffffffffffffffff, 0x800454df, &(0x7f0000000000)) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:33 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2000000000}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:33 executing program 5: syz_clone(0xcc0edd00, 0x0, 0xffffffffffffff79, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x5, 0x80, 0xfd, 0x3f, 0x0, 0x7f, 0x0, 0x9, 0x4000, 0x5c3821cb4bc7ab3e, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f66218b2836f879, @perf_config_ext={0x200, 0xfffffffffffffff8}, 0x100, 0x6, 0x1, 0x4, 0x10000, 0xffff0001, 0x100, 0x0, 0x2, 0x0, 0xffffffffffffffff}, 0x0, 0xd, 0xffffffffffffffff, 0x8) syz_clone(0x80000000, &(0x7f0000000000)="01d2d5a8e1bfa373ec3523c458b0eeef6d87de13dc1903790e813d7c55573a6074b55df5d1ff4e2c11a174816aad592aa081557c72a8f7568cba5379ea0f41d1d7e1e8c536dd589eee07dbb9c851b5815af6a094b0", 0x55, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100)="a0380f2982cd6ecd2b0791820c18cc116ebb02fcf9be1b42554551c681838b19f88ee13b6b59289849832ef610350acb2192b7b4c57912cc44f776e1e5652eb8d72efb12b660f45eadea59f8dc33c17258907b74") 14:45:33 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 74) 14:45:33 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r3 = openat$cgroup_ro(r2, &(0x7f00000000c0)='freezer.state\x00', 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000140)={r3, 0x12, 0x1, 0xffc, &(0x7f0000000180)=[0x0, 0x0, 0x0], 0x3}, 0x20) r4 = openat$cgroup(r1, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f00000001c0)={r0, 0x6, 0x0, 0x7fff, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5}, 0x20) openat$cgroup_freezer_state(r4, &(0x7f0000000080), 0x2, 0x0) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r5}, 0x14) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000240)={r5, 0xe0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000000000c1, &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f00000002c0), &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f00000002c0)=[{}, {}], 0xffffffffffffff55, 0x10, &(0x7f0000000380), &(0x7f0000000200), 0x8, 0x10, 0x8, 0x8, &(0x7f00000003c0)}}, 0x10) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:33 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) (async) ioctl$TUNGETVNETBE(0xffffffffffffffff, 0x800454df, &(0x7f0000000000)) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:33 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4000000000}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:33 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1000000000000}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:33 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async) r2 = openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r3 = openat$cgroup_ro(r2, &(0x7f00000000c0)='freezer.state\x00', 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000140)={r3, 0x12, 0x1, 0xffc, &(0x7f0000000180)=[0x0, 0x0, 0x0], 0x3}, 0x20) r4 = openat$cgroup(r1, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f00000001c0)={r0, 0x6, 0x0, 0x7fff, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5}, 0x20) (async) openat$cgroup_freezer_state(r4, &(0x7f0000000080), 0x2, 0x0) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r5}, 0x14) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000240)={r5, 0xe0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000000000c1, &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f00000002c0), &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f00000002c0)=[{}, {}], 0xffffffffffffff55, 0x10, &(0x7f0000000380), &(0x7f0000000200), 0x8, 0x10, 0x8, 0x8, &(0x7f00000003c0)}}, 0x10) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:33 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNGETVNETBE(0xffffffffffffffff, 0x800454df, &(0x7f0000000000)) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) [ 1065.245316][T12413] FAULT_INJECTION: forcing a failure. [ 1065.245316][T12413] name failslab, interval 1, probability 0, space 0, times 0 [ 1065.278317][T12413] CPU: 1 PID: 12413 Comm: syz-executor.0 Tainted: G B 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1065.289782][T12413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1065.299687][T12413] Call Trace: [ 1065.302976][T12413] [ 1065.305751][T12413] dump_stack_lvl+0x151/0x1b7 [ 1065.310263][T12413] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1065.315558][T12413] dump_stack+0x15/0x17 [ 1065.319550][T12413] should_fail+0x3c0/0x510 [ 1065.323803][T12413] __should_failslab+0x9f/0xe0 [ 1065.328402][T12413] should_failslab+0x9/0x20 [ 1065.332744][T12413] kmem_cache_alloc+0x4f/0x2f0 [ 1065.337342][T12413] ? vm_area_dup+0x26/0x1d0 [ 1065.341683][T12413] ? __kasan_check_read+0x11/0x20 [ 1065.346546][T12413] vm_area_dup+0x26/0x1d0 [ 1065.350709][T12413] dup_mmap+0x6b8/0xea0 [ 1065.354704][T12413] ? __delayed_free_task+0x20/0x20 [ 1065.359648][T12413] ? mm_init+0x807/0x960 [ 1065.363728][T12413] dup_mm+0x91/0x330 [ 1065.367460][T12413] copy_mm+0x108/0x1b0 [ 1065.371371][T12413] copy_process+0x1295/0x3250 [ 1065.375883][T12413] ? proc_fail_nth_write+0x213/0x290 [ 1065.381435][T12413] ? proc_fail_nth_read+0x220/0x220 [ 1065.386471][T12413] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1065.391418][T12413] ? vfs_write+0x9af/0x1050 [ 1065.395756][T12413] ? vmacache_update+0xb7/0x120 [ 1065.400447][T12413] kernel_clone+0x22d/0x990 [ 1065.404788][T12413] ? file_end_write+0x1b0/0x1b0 [ 1065.409473][T12413] ? __kasan_check_write+0x14/0x20 [ 1065.414432][T12413] ? create_io_thread+0x1e0/0x1e0 [ 1065.419284][T12413] ? __mutex_lock_slowpath+0x10/0x10 [ 1065.424410][T12413] __x64_sys_clone+0x289/0x310 [ 1065.429007][T12413] ? __do_sys_vfork+0x130/0x130 [ 1065.433692][T12413] ? debug_smp_processor_id+0x17/0x20 [ 1065.439170][T12413] do_syscall_64+0x44/0xd0 [ 1065.443504][T12413] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1065.449241][T12413] RIP: 0033:0x7f0bd76b80d9 [ 1065.453488][T12413] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1065.473540][T12413] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1065.481785][T12413] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 14:45:34 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000180)={'pimreg0\x00', 0x1}) ioctl$TUNSETCARRIER(r1, 0x400454e2, &(0x7f00000000c0)) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000140)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r3, 0x800454e1, 0x0) ioctl$TUNSETSNDBUF(r3, 0x400454d4, &(0x7f0000000080)=0x2) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x0) r4 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r4, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r4, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) 14:45:34 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000000)=""/176, 0xb0}, {&(0x7f00000000c0)=""/182, 0xb6}, {&(0x7f0000000180)=""/220, 0xdc}, {&(0x7f0000000280)=""/134, 0x86}, {&(0x7f0000000340)=""/206, 0xce}, {&(0x7f0000000440)=""/168, 0xa8}, {&(0x7f0000000500)=""/26, 0x1a}, {&(0x7f0000000540)=""/187, 0xbb}], 0x8, &(0x7f0000000680)=""/1, 0x1}, 0x40002101) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:34 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r3 = openat$cgroup_ro(r2, &(0x7f00000000c0)='freezer.state\x00', 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000140)={r3, 0x12, 0x1, 0xffc, &(0x7f0000000180)=[0x0, 0x0, 0x0], 0x3}, 0x20) r4 = openat$cgroup(r1, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f00000001c0)={r0, 0x6, 0x0, 0x7fff, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5}, 0x20) openat$cgroup_freezer_state(r4, &(0x7f0000000080), 0x2, 0x0) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r5}, 0x14) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000240)={r5, 0xe0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000000000c1, &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f00000002c0), &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f00000002c0)=[{}, {}], 0xffffffffffffff55, 0x10, &(0x7f0000000380), &(0x7f0000000200), 0x8, 0x10, 0x8, 0x8, &(0x7f00000003c0)}}, 0x10) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) openat$cgroup_ro(r2, &(0x7f00000000c0)='freezer.state\x00', 0x0, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000140)={r3, 0x12, 0x1, 0xffc, &(0x7f0000000180)=[0x0, 0x0, 0x0], 0x3}, 0x20) (async) openat$cgroup(r1, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f00000001c0)={r0, 0x6, 0x0, 0x7fff, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5}, 0x20) (async) openat$cgroup_freezer_state(r4, &(0x7f0000000080), 0x2, 0x0) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) (async) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r5}, 0x14) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000240)={r5, 0xe0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000000000c1, &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f00000002c0), &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f00000002c0)=[{}, {}], 0xffffffffffffff55, 0x10, &(0x7f0000000380), &(0x7f0000000200), 0x8, 0x10, 0x8, 0x8, &(0x7f00000003c0)}}, 0x10) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) 14:45:34 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10000010000000}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:34 executing program 5: syz_clone(0xcc0edd00, 0x0, 0xffffffffffffff79, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x5, 0x80, 0xfd, 0x3f, 0x0, 0x7f, 0x0, 0x9, 0x4000, 0x5c3821cb4bc7ab3e, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f66218b2836f879, @perf_config_ext={0x200, 0xfffffffffffffff8}, 0x100, 0x6, 0x1, 0x4, 0x10000, 0xffff0001, 0x100, 0x0, 0x2, 0x0, 0xffffffffffffffff}, 0x0, 0xd, 0xffffffffffffffff, 0x8) (async) syz_clone(0x80000000, &(0x7f0000000000)="01d2d5a8e1bfa373ec3523c458b0eeef6d87de13dc1903790e813d7c55573a6074b55df5d1ff4e2c11a174816aad592aa081557c72a8f7568cba5379ea0f41d1d7e1e8c536dd589eee07dbb9c851b5815af6a094b0", 0x55, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100)="a0380f2982cd6ecd2b0791820c18cc116ebb02fcf9be1b42554551c681838b19f88ee13b6b59289849832ef610350acb2192b7b4c57912cc44f776e1e5652eb8d72efb12b660f45eadea59f8dc33c17258907b74") 14:45:34 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 75) [ 1065.489601][T12413] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1065.497410][T12413] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1065.505319][T12413] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1065.513125][T12413] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1065.520942][T12413] 14:45:34 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x40000100000000}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:34 executing program 3: socketpair(0x18, 0x0, 0x7f, &(0x7f0000000000)) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000000c0)={r1, &(0x7f00000002c0)="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"}, 0x20) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x3, 0x0}, 0x20) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r2, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000040), 0x4) openat$cgroup_subtree(r0, &(0x7f0000000100), 0x2, 0x0) socketpair(0x22, 0x1, 0x0, &(0x7f0000000080)) 14:45:34 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000000)=""/176, 0xb0}, {&(0x7f00000000c0)=""/182, 0xb6}, {&(0x7f0000000180)=""/220, 0xdc}, {&(0x7f0000000280)=""/134, 0x86}, {&(0x7f0000000340)=""/206, 0xce}, {&(0x7f0000000440)=""/168, 0xa8}, {&(0x7f0000000500)=""/26, 0x1a}, {&(0x7f0000000540)=""/187, 0xbb}], 0x8, &(0x7f0000000680)=""/1, 0x1}, 0x40002101) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:34 executing program 3: socketpair(0x18, 0x0, 0x7f, &(0x7f0000000000)) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000000c0)={r1, &(0x7f00000002c0)="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"}, 0x20) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x3, 0x0}, 0x20) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r2, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000040), 0x4) openat$cgroup_subtree(r0, &(0x7f0000000100), 0x2, 0x0) socketpair(0x22, 0x1, 0x0, &(0x7f0000000080)) socketpair(0x18, 0x0, 0x7f, &(0x7f0000000000)) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) (async) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000000c0)={r1, &(0x7f00000002c0)="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"}, 0x20) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x3, 0x0}, 0x20) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) recvmsg$unix(r2, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) (async) setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000040), 0x4) (async) openat$cgroup_subtree(r0, &(0x7f0000000100), 0x2, 0x0) (async) socketpair(0x22, 0x1, 0x0, &(0x7f0000000080)) (async) 14:45:34 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x400000000000000}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:34 executing program 5: syz_clone(0xcc0edd00, 0x0, 0xffffffffffffff79, 0x0, 0x0, 0x0) (async) perf_event_open(&(0x7f0000000180)={0x5, 0x80, 0xfd, 0x3f, 0x0, 0x7f, 0x0, 0x9, 0x4000, 0x5c3821cb4bc7ab3e, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f66218b2836f879, @perf_config_ext={0x200, 0xfffffffffffffff8}, 0x100, 0x6, 0x1, 0x4, 0x10000, 0xffff0001, 0x100, 0x0, 0x2, 0x0, 0xffffffffffffffff}, 0x0, 0xd, 0xffffffffffffffff, 0x8) (async) syz_clone(0x80000000, &(0x7f0000000000)="01d2d5a8e1bfa373ec3523c458b0eeef6d87de13dc1903790e813d7c55573a6074b55df5d1ff4e2c11a174816aad592aa081557c72a8f7568cba5379ea0f41d1d7e1e8c536dd589eee07dbb9c851b5815af6a094b0", 0x55, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100)="a0380f2982cd6ecd2b0791820c18cc116ebb02fcf9be1b42554551c681838b19f88ee13b6b59289849832ef610350acb2192b7b4c57912cc44f776e1e5652eb8d72efb12b660f45eadea59f8dc33c17258907b74") [ 1065.566485][T12462] FAULT_INJECTION: forcing a failure. [ 1065.566485][T12462] name failslab, interval 1, probability 0, space 0, times 0 [ 1065.610379][T12462] CPU: 1 PID: 12462 Comm: syz-executor.0 Tainted: G B 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1065.621845][T12462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1065.631743][T12462] Call Trace: [ 1065.634862][T12462] [ 1065.637643][T12462] dump_stack_lvl+0x151/0x1b7 [ 1065.642160][T12462] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1065.647456][T12462] dump_stack+0x15/0x17 [ 1065.651529][T12462] should_fail+0x3c0/0x510 [ 1065.655798][T12462] __should_failslab+0x9f/0xe0 [ 1065.660383][T12462] should_failslab+0x9/0x20 [ 1065.664725][T12462] kmem_cache_alloc+0x4f/0x2f0 [ 1065.669325][T12462] ? anon_vma_clone+0xa1/0x4f0 [ 1065.673925][T12462] anon_vma_clone+0xa1/0x4f0 [ 1065.678352][T12462] anon_vma_fork+0x91/0x4f0 [ 1065.682689][T12462] ? anon_vma_name+0x43/0x70 [ 1065.687120][T12462] dup_mmap+0x750/0xea0 [ 1065.691117][T12462] ? __delayed_free_task+0x20/0x20 [ 1065.696058][T12462] ? mm_init+0x807/0x960 [ 1065.700139][T12462] dup_mm+0x91/0x330 [ 1065.703871][T12462] copy_mm+0x108/0x1b0 [ 1065.707777][T12462] copy_process+0x1295/0x3250 [ 1065.712291][T12462] ? proc_fail_nth_write+0x213/0x290 [ 1065.717413][T12462] ? proc_fail_nth_read+0x220/0x220 [ 1065.722446][T12462] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1065.727392][T12462] ? vfs_write+0x9af/0x1050 [ 1065.731735][T12462] ? vmacache_update+0xb7/0x120 [ 1065.736421][T12462] kernel_clone+0x22d/0x990 [ 1065.740759][T12462] ? file_end_write+0x1b0/0x1b0 [ 1065.745448][T12462] ? __kasan_check_write+0x14/0x20 [ 1065.750408][T12462] ? create_io_thread+0x1e0/0x1e0 [ 1065.755346][T12462] ? __mutex_lock_slowpath+0x10/0x10 [ 1065.760553][T12462] __x64_sys_clone+0x289/0x310 [ 1065.765170][T12462] ? __do_sys_vfork+0x130/0x130 [ 1065.769841][T12462] ? debug_smp_processor_id+0x17/0x20 [ 1065.775894][T12462] do_syscall_64+0x44/0xd0 [ 1065.780176][T12462] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1065.786083][T12462] RIP: 0033:0x7f0bd76b80d9 [ 1065.790410][T12462] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1065.810118][T12462] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1065.818728][T12462] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1065.826521][T12462] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1065.834332][T12462] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1065.842406][T12462] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1065.850218][T12462] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1065.858210][T12462] 14:45:34 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000180)={'pimreg0\x00', 0x1}) ioctl$TUNSETCARRIER(r1, 0x400454e2, &(0x7f00000000c0)) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000140)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r3, 0x800454e1, 0x0) ioctl$TUNSETSNDBUF(r3, 0x400454d4, &(0x7f0000000080)=0x2) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x0) r4 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r4, 0x800454cf, &(0x7f0000000040)) 14:45:34 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000000)=""/176, 0xb0}, {&(0x7f00000000c0)=""/182, 0xb6}, {&(0x7f0000000180)=""/220, 0xdc}, {&(0x7f0000000280)=""/134, 0x86}, {&(0x7f0000000340)=""/206, 0xce}, {&(0x7f0000000440)=""/168, 0xa8}, {&(0x7f0000000500)=""/26, 0x1a}, {&(0x7f0000000540)=""/187, 0xbb}], 0x8, &(0x7f0000000680)=""/1, 0x1}, 0x40002101) (async) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) 14:45:34 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1000000000000000}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:34 executing program 3: socketpair(0x18, 0x0, 0x7f, &(0x7f0000000000)) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) (async) bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000000c0)={r1, &(0x7f00000002c0)="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"}, 0x20) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x3, 0x0}, 0x20) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r2, &(0x7f0000003380)={0x0, 0x0, 0x0}, 0x40000023) (async, rerun: 64) setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000040), 0x4) (async, rerun: 64) openat$cgroup_subtree(r0, &(0x7f0000000100), 0x2, 0x0) (async, rerun: 64) socketpair(0x22, 0x1, 0x0, &(0x7f0000000080)) (rerun: 64) 14:45:34 executing program 5: r0 = syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000000)=r0, 0x12) r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000040)=0xffffffffffffffff, 0x4) bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x1, 0x200, 0x57, 0x404, 0xffffffffffffffff, 0x65f, '\x00', 0x0, r1, 0x6, 0x0, 0x1}, 0x48) 14:45:34 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 76) 14:45:34 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) 14:45:34 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4000000000000000}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:34 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) 14:45:34 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x2}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1065.917084][T12501] FAULT_INJECTION: forcing a failure. [ 1065.917084][T12501] name failslab, interval 1, probability 0, space 0, times 0 [ 1065.948418][T12501] CPU: 1 PID: 12501 Comm: syz-executor.0 Tainted: G B 5.15.76-syzkaller-00628-g92f701cae0bc #0 14:45:34 executing program 5: r0 = syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000000)=r0, 0x12) (async) r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000040)=0xffffffffffffffff, 0x4) bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x1, 0x200, 0x57, 0x404, 0xffffffffffffffff, 0x65f, '\x00', 0x0, r1, 0x6, 0x0, 0x1}, 0x48) 14:45:34 executing program 5: r0 = syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000000)=r0, 0x12) r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000040)=0xffffffffffffffff, 0x4) bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x1, 0x200, 0x57, 0x404, 0xffffffffffffffff, 0x65f, '\x00', 0x0, r1, 0x6, 0x0, 0x1}, 0x48) [ 1065.959885][T12501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1065.970218][T12501] Call Trace: [ 1065.973345][T12501] [ 1065.976115][T12501] dump_stack_lvl+0x151/0x1b7 [ 1065.980633][T12501] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1065.985934][T12501] dump_stack+0x15/0x17 [ 1065.989920][T12501] should_fail+0x3c0/0x510 [ 1065.994168][T12501] __should_failslab+0x9f/0xe0 [ 1065.998768][T12501] should_failslab+0x9/0x20 [ 1066.003112][T12501] kmem_cache_alloc+0x4f/0x2f0 [ 1066.007712][T12501] ? anon_vma_clone+0xa1/0x4f0 [ 1066.012315][T12501] anon_vma_clone+0xa1/0x4f0 [ 1066.016738][T12501] anon_vma_fork+0x91/0x4f0 [ 1066.021086][T12501] ? anon_vma_name+0x43/0x70 [ 1066.025506][T12501] dup_mmap+0x750/0xea0 [ 1066.029498][T12501] ? __delayed_free_task+0x20/0x20 [ 1066.034442][T12501] ? mm_init+0x807/0x960 [ 1066.038523][T12501] dup_mm+0x91/0x330 [ 1066.042429][T12501] copy_mm+0x108/0x1b0 [ 1066.046336][T12501] copy_process+0x1295/0x3250 [ 1066.050851][T12501] ? proc_fail_nth_write+0x213/0x290 [ 1066.055971][T12501] ? proc_fail_nth_read+0x220/0x220 [ 1066.061011][T12501] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1066.065954][T12501] ? vfs_write+0x9af/0x1050 [ 1066.070291][T12501] ? vmacache_update+0xb7/0x120 [ 1066.074980][T12501] kernel_clone+0x22d/0x990 [ 1066.079322][T12501] ? file_end_write+0x1b0/0x1b0 [ 1066.084001][T12501] ? __kasan_check_write+0x14/0x20 [ 1066.088949][T12501] ? create_io_thread+0x1e0/0x1e0 [ 1066.093811][T12501] ? __mutex_lock_slowpath+0x10/0x10 [ 1066.098930][T12501] __x64_sys_clone+0x289/0x310 [ 1066.103530][T12501] ? __do_sys_vfork+0x130/0x130 [ 1066.108218][T12501] ? debug_smp_processor_id+0x17/0x20 [ 1066.113427][T12501] do_syscall_64+0x44/0xd0 [ 1066.117677][T12501] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1066.123408][T12501] RIP: 0033:0x7f0bd76b80d9 [ 1066.127663][T12501] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1066.147104][T12501] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1066.155352][T12501] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 14:45:34 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000180)={'pimreg0\x00', 0x1}) ioctl$TUNSETCARRIER(r1, 0x400454e2, &(0x7f00000000c0)) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000140)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r3, 0x800454e1, 0x0) ioctl$TUNSETSNDBUF(r3, 0x400454d4, &(0x7f0000000080)=0x2) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) 14:45:34 executing program 5: bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000080)={&(0x7f0000000040)='./file0\x00'}, 0x10) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x20}, 0x10) socketpair(0x27, 0x2, 0x800, &(0x7f0000000000)) 14:45:34 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) (async) 14:45:34 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x4}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:34 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) (async) [ 1066.163161][T12501] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1066.170975][T12501] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1066.178875][T12501] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1066.186863][T12501] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1066.194682][T12501] 14:45:34 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 77) [ 1066.294285][T12540] FAULT_INJECTION: forcing a failure. [ 1066.294285][T12540] name failslab, interval 1, probability 0, space 0, times 0 [ 1066.307179][T12540] CPU: 0 PID: 12540 Comm: syz-executor.0 Tainted: G B 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1066.318628][T12540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1066.328525][T12540] Call Trace: [ 1066.331644][T12540] [ 1066.334421][T12540] dump_stack_lvl+0x151/0x1b7 [ 1066.338935][T12540] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1066.344229][T12540] ? vma_interval_tree_augment_rotate+0x210/0x210 [ 1066.350479][T12540] dump_stack+0x15/0x17 [ 1066.354477][T12540] should_fail+0x3c0/0x510 [ 1066.358726][T12540] __should_failslab+0x9f/0xe0 [ 1066.363325][T12540] should_failslab+0x9/0x20 [ 1066.367665][T12540] kmem_cache_alloc+0x4f/0x2f0 [ 1066.372278][T12540] ? anon_vma_fork+0xf7/0x4f0 [ 1066.376778][T12540] anon_vma_fork+0xf7/0x4f0 [ 1066.381119][T12540] ? anon_vma_name+0x4c/0x70 [ 1066.385544][T12540] dup_mmap+0x750/0xea0 [ 1066.389540][T12540] ? __delayed_free_task+0x20/0x20 [ 1066.394486][T12540] ? mm_init+0x807/0x960 [ 1066.398565][T12540] dup_mm+0x91/0x330 [ 1066.402296][T12540] copy_mm+0x108/0x1b0 [ 1066.406202][T12540] copy_process+0x1295/0x3250 [ 1066.410806][T12540] ? proc_fail_nth_write+0x213/0x290 [ 1066.415918][T12540] ? proc_fail_nth_read+0x220/0x220 [ 1066.420957][T12540] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1066.425903][T12540] ? vfs_write+0x9af/0x1050 [ 1066.430241][T12540] ? vmacache_update+0xb7/0x120 [ 1066.434928][T12540] kernel_clone+0x22d/0x990 [ 1066.439273][T12540] ? file_end_write+0x1b0/0x1b0 [ 1066.443956][T12540] ? __kasan_check_write+0x14/0x20 [ 1066.448938][T12540] ? create_io_thread+0x1e0/0x1e0 [ 1066.453768][T12540] ? __mutex_lock_slowpath+0x10/0x10 [ 1066.458887][T12540] __x64_sys_clone+0x289/0x310 [ 1066.463490][T12540] ? __do_sys_vfork+0x130/0x130 [ 1066.468179][T12540] ? debug_smp_processor_id+0x17/0x20 [ 1066.473403][T12540] do_syscall_64+0x44/0xd0 [ 1066.477636][T12540] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1066.483366][T12540] RIP: 0033:0x7f0bd76b80d9 [ 1066.487620][T12540] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1066.507069][T12540] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1066.515306][T12540] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1066.523119][T12540] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1066.530931][T12540] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1066.538739][T12540] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1066.546553][T12540] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1066.554365][T12540] 14:45:35 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) 14:45:35 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x10}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:35 executing program 5: bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000080)={&(0x7f0000000040)='./file0\x00'}, 0x10) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x20}, 0x10) socketpair(0x27, 0x2, 0x800, &(0x7f0000000000)) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000080)={&(0x7f0000000040)='./file0\x00'}, 0x10) (async) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) (async) bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x20}, 0x10) (async) socketpair(0x27, 0x2, 0x800, &(0x7f0000000000)) (async) 14:45:35 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={r0, 0x1d, 0x1, 0x6, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x9}, 0x20) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000100)={r0, 0x22, 0x1, 0x1, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], 0x4}, 0x20) openat$cgroup_pressure(r0, &(0x7f0000000140)='io.pressure\x00', 0x2, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:35 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000180)={'pimreg0\x00', 0x1}) ioctl$TUNSETCARRIER(r1, 0x400454e2, &(0x7f00000000c0)) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000140)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r3, 0x800454e1, 0x0) ioctl$TUNSETSNDBUF(r3, 0x400454d4, &(0x7f0000000080)=0x2) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x0) 14:45:35 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 78) 14:45:35 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x4000}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1067.041615][T12546] FAULT_INJECTION: forcing a failure. [ 1067.041615][T12546] name failslab, interval 1, probability 0, space 0, times 0 [ 1067.056658][T12546] CPU: 0 PID: 12546 Comm: syz-executor.0 Tainted: G B 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1067.068209][T12546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1067.078098][T12546] Call Trace: [ 1067.081220][T12546] [ 1067.083997][T12546] dump_stack_lvl+0x151/0x1b7 [ 1067.088510][T12546] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1067.093806][T12546] ? vma_interval_tree_augment_rotate+0x210/0x210 [ 1067.100057][T12546] dump_stack+0x15/0x17 [ 1067.104048][T12546] should_fail+0x3c0/0x510 [ 1067.108309][T12546] __should_failslab+0x9f/0xe0 [ 1067.112901][T12546] should_failslab+0x9/0x20 [ 1067.117247][T12546] kmem_cache_alloc+0x4f/0x2f0 [ 1067.121849][T12546] ? anon_vma_fork+0xf7/0x4f0 [ 1067.126356][T12546] anon_vma_fork+0xf7/0x4f0 [ 1067.130712][T12546] ? anon_vma_name+0x43/0x70 [ 1067.135123][T12546] dup_mmap+0x750/0xea0 [ 1067.139115][T12546] ? __delayed_free_task+0x20/0x20 [ 1067.144064][T12546] ? mm_init+0x807/0x960 [ 1067.148143][T12546] dup_mm+0x91/0x330 [ 1067.151885][T12546] copy_mm+0x108/0x1b0 [ 1067.155780][T12546] copy_process+0x1295/0x3250 [ 1067.160301][T12546] ? proc_fail_nth_write+0x213/0x290 [ 1067.165504][T12546] ? proc_fail_nth_read+0x220/0x220 [ 1067.170537][T12546] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1067.175483][T12546] ? vfs_write+0x9af/0x1050 [ 1067.179827][T12546] ? vmacache_update+0xb7/0x120 [ 1067.184512][T12546] kernel_clone+0x22d/0x990 [ 1067.188852][T12546] ? file_end_write+0x1b0/0x1b0 [ 1067.193540][T12546] ? __kasan_check_write+0x14/0x20 [ 1067.198488][T12546] ? create_io_thread+0x1e0/0x1e0 [ 1067.203359][T12546] ? __mutex_lock_slowpath+0x10/0x10 [ 1067.208476][T12546] __x64_sys_clone+0x289/0x310 [ 1067.213069][T12546] ? __do_sys_vfork+0x130/0x130 [ 1067.217760][T12546] ? debug_smp_processor_id+0x17/0x20 [ 1067.222962][T12546] do_syscall_64+0x44/0xd0 [ 1067.227218][T12546] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1067.232945][T12546] RIP: 0033:0x7f0bd76b80d9 [ 1067.237201][T12546] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1067.256642][T12546] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1067.264889][T12546] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1067.272701][T12546] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1067.280510][T12546] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 14:45:35 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={r0, 0x1d, 0x1, 0x6, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x9}, 0x20) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000100)={r0, 0x22, 0x1, 0x1, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], 0x4}, 0x20) openat$cgroup_pressure(r0, &(0x7f0000000140)='io.pressure\x00', 0x2, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={r0, 0x1d, 0x1, 0x6, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x9}, 0x20) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000100)={r0, 0x22, 0x1, 0x1, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], 0x4}, 0x20) (async) openat$cgroup_pressure(r0, &(0x7f0000000140)='io.pressure\x00', 0x2, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) (async) 14:45:35 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x400001}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:35 executing program 5: bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000080)={&(0x7f0000000040)='./file0\x00'}, 0x10) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x20}, 0x10) socketpair(0x27, 0x2, 0x800, &(0x7f0000000000)) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000080)={&(0x7f0000000040)='./file0\x00'}, 0x10) (async) syz_clone(0x9800700, 0x0, 0x0, 0x0, 0x0, 0x0) (async) bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x20}, 0x10) (async) socketpair(0x27, 0x2, 0x800, &(0x7f0000000000)) (async) 14:45:35 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 79) 14:45:35 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1004000}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1067.288325][T12546] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1067.296134][T12546] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1067.303955][T12546] [ 1067.341907][T12575] FAULT_INJECTION: forcing a failure. [ 1067.341907][T12575] name failslab, interval 1, probability 0, space 0, times 0 [ 1067.354405][T12575] CPU: 1 PID: 12575 Comm: syz-executor.0 Tainted: G B 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1067.365776][T12575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1067.375676][T12575] Call Trace: [ 1067.378795][T12575] [ 1067.381571][T12575] dump_stack_lvl+0x151/0x1b7 [ 1067.386084][T12575] ? bfq_pos_tree_add_move+0x43e/0x43e [ 1067.391382][T12575] dump_stack+0x15/0x17 [ 1067.395374][T12575] should_fail+0x3c0/0x510 [ 1067.399626][T12575] __should_failslab+0x9f/0xe0 [ 1067.404225][T12575] should_failslab+0x9/0x20 [ 1067.408565][T12575] kmem_cache_alloc+0x4f/0x2f0 [ 1067.413165][T12575] ? anon_vma_fork+0x1b9/0x4f0 [ 1067.417764][T12575] anon_vma_fork+0x1b9/0x4f0 [ 1067.422198][T12575] dup_mmap+0x750/0xea0 [ 1067.426186][T12575] ? __delayed_free_task+0x20/0x20 [ 1067.431134][T12575] ? mm_init+0x807/0x960 [ 1067.435214][T12575] dup_mm+0x91/0x330 [ 1067.438944][T12575] copy_mm+0x108/0x1b0 [ 1067.442851][T12575] copy_process+0x1295/0x3250 [ 1067.447396][T12575] ? proc_fail_nth_write+0x213/0x290 [ 1067.452485][T12575] ? proc_fail_nth_read+0x220/0x220 [ 1067.457521][T12575] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 1067.462471][T12575] ? vfs_write+0x9af/0x1050 [ 1067.466809][T12575] ? vmacache_update+0xb7/0x120 [ 1067.471499][T12575] kernel_clone+0x22d/0x990 [ 1067.475838][T12575] ? file_end_write+0x1b0/0x1b0 [ 1067.480614][T12575] ? __kasan_check_write+0x14/0x20 [ 1067.485557][T12575] ? create_io_thread+0x1e0/0x1e0 [ 1067.490417][T12575] ? __mutex_lock_slowpath+0x10/0x10 [ 1067.495541][T12575] __x64_sys_clone+0x289/0x310 [ 1067.500139][T12575] ? __do_sys_vfork+0x130/0x130 [ 1067.504825][T12575] ? debug_smp_processor_id+0x17/0x20 [ 1067.510035][T12575] do_syscall_64+0x44/0xd0 [ 1067.514289][T12575] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1067.520015][T12575] RIP: 0033:0x7f0bd76b80d9 [ 1067.524271][T12575] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1067.543712][T12575] RSP: 002b:00007f0bd642b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1067.551956][T12575] RAX: ffffffffffffffda RBX: 00007f0bd77d7f80 RCX: 00007f0bd76b80d9 [ 1067.559772][T12575] RDX: 0000000020000240 RSI: 0000000000000000 RDI: 0000000000009000 [ 1067.567582][T12575] RBP: 00007f0bd642b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1067.575396][T12575] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002 [ 1067.583228][T12575] R13: 00007ffd0b413a8f R14: 00007f0bd642b300 R15: 0000000000022000 [ 1067.591019][T12575] 14:45:36 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)) (async) recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) (async) 14:45:36 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000003380)={0x0, 0xfffffffffffffeef, 0x0, 0xfffffffffffffd89}, 0x0) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040)) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000180)={'pimreg0\x00', 0x1}) ioctl$TUNSETCARRIER(r1, 0x400454e2, &(0x7f00000000c0)) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000140)) openat$cgroup_ro(r1, &(0x7f0000001380)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r3, 0x800454e1, 0x0) ioctl$TUNSETSNDBUF(r3, 0x400454d4, &(0x7f0000000080)=0x2) 14:45:36 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x2000000}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:36 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={r0, 0x1d, 0x1, 0x6, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x9}, 0x20) (async, rerun: 32) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000100)={r0, 0x22, 0x1, 0x1, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], 0x4}, 0x20) (async, rerun: 32) openat$cgroup_pressure(r0, &(0x7f0000000140)='io.pressure\x00', 0x2, 0x0) (async) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) 14:45:36 executing program 5: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x1c86620f2269e5c6, 0x0) ioctl$TUNSETFILTEREBPF(r0, 0x800454e1, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, 0x0) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='blkio.bfq.group_wait_time\x00', 0x0, 0x0) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r3, 0x800454e1, 0x0) ioctl$TUNSETSTEERINGEBPF(r3, 0x800454e0, &(0x7f0000000080)=r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) recvmsg$unix(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)=""/172, 0xac}, {&(0x7f00000001c0)=""/248, 0xf8}, {&(0x7f00000002c0)=""/98, 0x62}, {&(0x7f0000001180)=""/4096, 0x1000}], 0x4, &(0x7f0000000380)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0x98}, 0x20010160) ioctl$TUNGETFILTER(r0, 0x801054db, &(0x7f0000000000)=""/58) syz_clone(0x90042800, 0x0, 0x0, 0x0, 0x0, 0x0) 14:45:36 executing program 0: syz_clone(0x9000, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x0) (fail_nth: 80) 14:45:36 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x4000000}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:36 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x8000000}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:36 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x10000000}, r0, 0x0, 0xffffffffffffffff, 0x0) 14:45:36 executing program 3: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={r0, 0x12, 0x0, 0x0, 0x0}, 0x20) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r1}, 0x14) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000ac0)={r1, 0xe0, &(0x7f00000009c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000000800)=[0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4, &(0x7f0000000840)=[0x0, 0x0], &(0x7f0000000880)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f00000008c0)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000900), &(0x7f0000000940), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000980)}}, 0x10) r3 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000b80)={0x0, 0x8, 0x10}, 0xc) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000bc0)=@base={0x8, 0x7, 0x400, 0x7ff, 0x500, 0xffffffffffffffff, 0x4a30, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x3, 0x3}, 0x48) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000c80)=@bpf_lsm={0x1d, 0x7, &(0x7f0000000740)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x1b}, [@exit, @exit, @cb_func={0x18, 0x8, 0x4, 0x0, 0x4}]}, &(0x7f0000000780)='syzkaller\x00', 0xdcb23dd, 0xa, &(0x7f00000007c0)=""/10, 0x41000, 0x0, '\x00', r2, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000b00)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000000b40)={0x3, 0xf, 0x0, 0x7fffffff}, 0x10, 0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000c40)=[0x1, r3, r4, 0x1, 0xffffffffffffffff]}, 0x80) bpf$OBJ_PIN_PROG(0x6, &(0x7f00000001c0)={&(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', r1}, 0x10) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)}, 0x80) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000004c0)={@map, 0xffffffffffffffff, 0x0, 0x0, r5}, 0x14) r6 = bpf$ITER_CREATE(0x21, &(0x7f0000000200), 0x8) r7 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000240)={&(0x7f00000002c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00'}, 0x10) r8 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000640)='cgroup.freeze\x00', 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x8, &(0x7f0000000400)=@framed={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x5}, [@map_fd={0x18, 0x3, 0x1, 0x0, r6}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffc}, @map_fd={0x18, 0xb, 0x1, 0x0, r7}]}, &(0x7f0000000500)='syzkaller\x00', 0x2, 0x70, &(0x7f0000000540)=""/112, 0x41000, 0x1e, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000005c0)={0x2, 0x2}, 0x8, 0x10, &(0x7f0000000600)={0x4, 0x3, 0x6, 0x4}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000680)=[r8, 0xffffffffffffffff, 0x1, 0xffffffffffffffff]}, 0x80) r9 = openat$cgroup_ro(r0, &(0x7f0000000040)='memory.events.local\x00', 0x0, 0x0) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000080)={0xffffffffffffffff, r5, 0x0, r9}, 0x10) 14:45:36 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x20000000}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1067.887977][T12579] FAULT_INJECTION: forcing a failure. [ 1067.887977][T12579] name failslab, interval 1, probability 0, space 0, times 0 [ 1067.902206][T12579] CPU: 1 PID: 12579 Comm: syz-executor.0 Tainted: G B 5.15.76-syzkaller-00628-g92f701cae0bc #0 [ 1067.913654][T12579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 1067.923551][T12579] Call Trace: [ 1067.926671][T12579] [ 1067.929453][T12579] dump_stack_lvl+0x151/0x1b7 [ 1067.933972][T12579] ? bfq_pos_tree_add_move+0x43e/0x43e 14:45:36 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x40000000}, r0, 0x0, 0xffffffffffffffff, 0x0) [ 1067.939266][T12579] ? do_syscall_64+0x44/0xd0 [ 1067.943690][T12579] dump_stack+0x15/0x17 [ 1067.947799][T12579] should_fail+0x3c0/0x510 [ 1067.952033][T12579] __should_failslab+0x9f/0xe0 [ 1067.956621][T12579] should_failslab+0x9/0x20 [ 1067.960956][T12579] kmem_cache_alloc+0x4f/0x2f0 [ 1067.965558][T12579] ? anon_vma_clone+0xa1/0x4f0 [ 1067.970155][T12579] anon_vma_clone+0xa1/0x4f0 [ 1067.974585][T12579] anon_vma_fork+0x91/0x4f0 [ 1067.978920][T12579] ? anon_vma_name+0x4c/0x70 [ 1067.983366][T12579] dup_mmap+0x750/0xea0 [ 1067.987364][T12579] ? __delayed_free_task+0x20/0x20 [ 1067.992292][T12579] ? mm_init+0x807/0x960 [ 1067.996369][T12579] dup_mm+0x91/0x330 [ 1068.0001