./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3309365159 <...> Warning: Permanently added '10.128.0.7' (ED25519) to the list of known hosts. execve("./syz-executor3309365159", ["./syz-executor3309365159"], 0x7ffca30213b0 /* 10 vars */) = 0 brk(NULL) = 0x55555a521000 brk(0x55555a521d00) = 0x55555a521d00 arch_prctl(ARCH_SET_FS, 0x55555a521380) = 0 set_tid_address(0x55555a521650) = 5217 set_robust_list(0x55555a521660, 24) = 0 rseq(0x55555a521ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3309365159", 4096) = 28 getrandom("\x55\xe2\x6d\x2d\x3a\xee\x1d\x44", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55555a521d00 brk(0x55555a542d00) = 0x55555a542d00 brk(0x55555a543000) = 0x55555a543000 mprotect(0x7f4acab1a000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 openat(AT_FDCWD, "/proc/self/make-it-fail", O_WRONLY) = 3 close(3) = 0 openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_WRONLY) = 3 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3 write(3, "0", 1) = 1 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5218 attached [pid 5218] set_robust_list(0x55555a521660, 24 [pid 5217] <... clone resumed>, child_tidptr=0x55555a521650) = 5218 [pid 5218] <... set_robust_list resumed>) = 0 [pid 5218] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5217] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5220 attached ./strace-static-x86_64: Process 5219 attached , child_tidptr=0x55555a521650) = 5219 [pid 5220] set_robust_list(0x55555a521660, 24 [pid 5219] set_robust_list(0x55555a521660, 24 [pid 5218] <... clone resumed>, child_tidptr=0x55555a521650) = 5220 [pid 5217] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5220] <... set_robust_list resumed>) = 0 [pid 5219] <... set_robust_list resumed>) = 0 [pid 5220] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 5221 attached [pid 5219] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5221] set_robust_list(0x55555a521660, 24 [pid 5220] <... prctl resumed>) = 0 [pid 5221] <... set_robust_list resumed>) = 0 [pid 5220] setpgid(0, 0 [pid 5217] <... clone resumed>, child_tidptr=0x55555a521650) = 5221 [pid 5221] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5220] <... setpgid resumed>) = 0 [pid 5220] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 5223 attached ./strace-static-x86_64: Process 5222 attached [pid 5217] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5220] <... openat resumed>) = 3 [pid 5222] set_robust_list(0x55555a521660, 24 [pid 5221] <... clone resumed>, child_tidptr=0x55555a521650) = 5223 [pid 5220] write(3, "1000", 4./strace-static-x86_64: Process 5224 attached [pid 5223] set_robust_list(0x55555a521660, 24 [pid 5222] <... set_robust_list resumed>) = 0 [pid 5220] <... write resumed>) = 4 [pid 5219] <... clone resumed>, child_tidptr=0x55555a521650) = 5222 [pid 5217] <... clone resumed>, child_tidptr=0x55555a521650) = 5224 [pid 5224] set_robust_list(0x55555a521660, 24 [pid 5223] <... set_robust_list resumed>) = 0 [pid 5222] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5220] close(3 [pid 5217] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5224] <... set_robust_list resumed>) = 0 [pid 5223] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5222] <... prctl resumed>) = 0 [pid 5220] <... close resumed>) = 0 ./strace-static-x86_64: Process 5225 attached [pid 5224] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5217] <... clone resumed>, child_tidptr=0x55555a521650) = 5225 [pid 5225] set_robust_list(0x55555a521660, 24) = 0 ./strace-static-x86_64: Process 5226 attached [pid 5225] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5223] <... prctl resumed>) = 0 [pid 5222] setpgid(0, 0 [pid 5220] write(1, "executing program\n", 18executing program [pid 5226] set_robust_list(0x55555a521660, 24 [pid 5224] <... clone resumed>, child_tidptr=0x55555a521650) = 5226 [pid 5223] setpgid(0, 0 [pid 5222] <... setpgid resumed>) = 0 [pid 5220] <... write resumed>) = 18 ./strace-static-x86_64: Process 5227 attached [pid 5226] <... set_robust_list resumed>) = 0 [pid 5222] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5227] set_robust_list(0x55555a521660, 24 [pid 5220] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5226] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5225] <... clone resumed>, child_tidptr=0x55555a521650) = 5227 [pid 5223] <... setpgid resumed>) = 0 [pid 5222] <... openat resumed>) = 3 [pid 5220] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5227] <... set_robust_list resumed>) = 0 [pid 5227] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5223] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5227] <... prctl resumed>) = 0 [pid 5226] <... prctl resumed>) = 0 [pid 5222] write(3, "1000", 4 [pid 5220] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5227] setpgid(0, 0 [pid 5226] setpgid(0, 0 [pid 5223] <... openat resumed>) = 3 [pid 5222] <... write resumed>) = 4 [pid 5227] <... setpgid resumed>) = 0 [pid 5227] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5222] close(3 [pid 5220] <... bpf resumed>) = 3 [pid 5222] <... close resumed>) = 0 [pid 5227] <... openat resumed>) = 3 [pid 5226] <... setpgid resumed>) = 0 executing program [pid 5223] write(3, "1000", 4 [pid 5222] write(1, "executing program\n", 18 [pid 5227] write(3, "1000", 4 [pid 5220] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5226] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5223] <... write resumed>) = 4 [pid 5222] <... write resumed>) = 18 [pid 5227] <... write resumed>) = 4 [pid 5223] close(3 [pid 5222] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5227] close(3 [pid 5223] <... close resumed>) = 0 [pid 5227] <... close resumed>) = 0 executing program executing program [pid 5227] write(1, "executing program\n", 18 [pid 5223] write(1, "executing program\n", 18 [pid 5222] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5227] <... write resumed>) = 18 [pid 5227] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148) = -1 EFAULT (Bad address) [pid 5226] <... openat resumed>) = 3 [pid 5223] <... write resumed>) = 18 [pid 5222] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5220] <... bpf resumed>) = 4 [pid 5227] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5226] write(3, "1000", 4 [pid 5223] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5226] <... write resumed>) = 4 [pid 5222] <... bpf resumed>) = 3 [pid 5227] <... bpf resumed>) = 3 [pid 5220] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5226] close(3 [pid 5223] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5220] <... socket resumed>) = 5 [pid 5222] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5227] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5226] <... close resumed>) = 0 [pid 5223] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5220] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5227] <... bpf resumed>) = 4 executing program [pid 5226] write(1, "executing program\n", 18 [pid 5223] <... bpf resumed>) = 3 [pid 5222] <... bpf resumed>) = 4 [pid 5220] <... openat resumed>) = 6 [pid 5227] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5226] <... write resumed>) = 18 [pid 5227] <... socket resumed>) = 5 [pid 5226] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5223] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5222] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5227] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5226] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5223] <... bpf resumed>) = 4 [pid 5222] <... socket resumed>) = 5 [pid 5220] write(6, "6", 1 [pid 5226] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5223] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5222] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5220] <... write resumed>) = 1 [pid 5227] <... openat resumed>) = 6 [ 71.251455][ T5220] FAULT_INJECTION: forcing a failure. [ 71.251455][ T5220] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 71.252026][ T5220] [ 71.252035][ T5220] ====================================================== [ 71.252043][ T5220] WARNING: possible circular locking dependency detected [ 71.252055][ T5220] 6.11.0-syzkaller-11993-g3efc57369a0c #0 Not tainted [ 71.252066][ T5220] ------------------------------------------------------ [ 71.252073][ T5220] syz-executor330/5220 is trying to acquire lock: [ 71.252083][ T5220] ffffffff8e813320 (console_owner){-...}-{0:0}, at: console_flush_all+0x1a3/0xeb0 [ 71.252162][ T5220] [ 71.252162][ T5220] but task is already holding lock: [ 71.252169][ T5220] ffff8880b873ea58 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140 [ 71.252219][ T5220] [ 71.252219][ T5220] which lock already depends on the new lock. [ 71.252219][ T5220] [ 71.252225][ T5220] [ 71.252225][ T5220] the existing dependency chain (in reverse order) is: [ 71.252232][ T5220] [ 71.252232][ T5220] -> #5 (&rq->__lock){-.-.}-{2:2}: [ 71.252266][ T5220] lock_acquire+0x1ed/0x550 [ 71.252297][ T5220] _raw_spin_lock_nested+0x31/0x40 [ 71.252332][ T5220] raw_spin_rq_lock_nested+0x2a/0x140 [ 71.252358][ T5220] task_rq_lock+0xc6/0x360 [ 71.252382][ T5220] cgroup_move_task+0x92/0x2d0 [ 71.252405][ T5220] css_set_move_task+0x72e/0x950 [ 71.252421][ T5220] cgroup_post_fork+0x256/0x880 [ 71.252437][ T5220] copy_process+0x39e9/0x3d50 [ 71.252457][ T5220] kernel_clone+0x223/0x880 [ 71.252478][ T5220] user_mode_thread+0x132/0x1a0 [ 71.252505][ T5220] rest_init+0x23/0x300 [ 71.252523][ T5220] start_kernel+0x47f/0x500 [ 71.252542][ T5220] x86_64_start_reservations+0x2a/0x30 [ 71.252557][ T5220] x86_64_start_kernel+0x9f/0xa0 [ 71.252571][ T5220] common_startup_64+0x13e/0x147 [ 71.252588][ T5220] [ 71.252588][ T5220] -> #4 (&p->pi_lock){-.-.}-{2:2}: [ 71.252609][ T5220] lock_acquire+0x1ed/0x550 [ 71.252630][ T5220] _raw_spin_lock_irqsave+0xd5/0x120 [ 71.252650][ T5220] try_to_wake_up+0xb0/0x1480 [ 71.252663][ T5220] create_worker+0x507/0x720 [ 71.252679][ T5220] workqueue_init+0x520/0x8a0 [ 71.252692][ T5220] kernel_init_freeable+0x3fe/0x5d0 [ 71.252713][ T5220] kernel_init+0x1d/0x2b0 [ 71.252729][ T5220] ret_from_fork+0x4b/0x80 [ 71.252751][ T5220] ret_from_fork_asm+0x1a/0x30 [ 71.252772][ T5220] [ 71.252772][ T5220] -> #3 (&pool->lock){-.-.}-{2:2}: [ 71.252791][ T5220] lock_acquire+0x1ed/0x550 [ 71.252813][ T5220] _raw_spin_lock+0x2e/0x40 [ 71.252831][ T5220] __queue_work+0x759/0xf50 [ 71.252852][ T5220] queue_work_on+0x1c2/0x380 [ 71.252872][ T5220] rpm_suspend+0xe70/0x1730 [ 71.252897][ T5220] __pm_runtime_idle+0x131/0x1a0 [ 71.252918][ T5220] __device_attach+0x3e5/0x520 [ 71.252931][ T5220] bus_probe_device+0x189/0x260 [ 71.252950][ T5220] device_add+0x856/0xbf0 [ 71.252961][ T5220] serial_base_port_add+0x2b6/0x3f0 [ 71.252983][ T5220] serial_core_register_port+0x377/0x2870 [ 71.252999][ T5220] serial8250_register_8250_port+0x1545/0x1ec0 [ 71.253014][ T5220] serial_pnp_probe+0x4f9/0x9d0 [ 71.253029][ T5220] pnp_device_probe+0x2ba/0x460 [ 71.253048][ T5220] really_probe+0x2b8/0xad0 [ 71.253062][ T5220] __driver_probe_device+0x1a2/0x390 [ 71.253076][ T5220] driver_probe_device+0x50/0x430 [ 71.253091][ T5220] __driver_attach+0x45f/0x710 [ 71.253105][ T5220] bus_for_each_dev+0x239/0x2b0 [ 71.253123][ T5220] bus_add_driver+0x346/0x670 [ 71.253142][ T5220] driver_register+0x23a/0x320 [ 71.253158][ T5220] serial8250_init+0xc1/0x1c0 [ 71.253171][ T5220] do_one_initcall+0x248/0x880 [ 71.253204][ T5220] do_initcall_level+0x157/0x210 [ 71.253224][ T5220] do_initcalls+0x3f/0x80 [ 71.253248][ T5220] kernel_init_freeable+0x435/0x5d0 [ 71.253269][ T5220] kernel_init+0x1d/0x2b0 [ 71.253285][ T5220] ret_from_fork+0x4b/0x80 [ 71.253306][ T5220] ret_from_fork_asm+0x1a/0x30 [ 71.253326][ T5220] [ 71.253326][ T5220] -> #2 (&dev->power.lock){-.-.}-{2:2}: [ 71.253345][ T5220] lock_acquire+0x1ed/0x550 [ 71.253366][ T5220] _raw_spin_lock_irqsave+0xd5/0x120 [ 71.253386][ T5220] __pm_runtime_resume+0x112/0x180 [ 71.253406][ T5220] __uart_start+0x17c/0x450 [ 71.253422][ T5220] uart_write+0x280/0xa40 [ 71.253437][ T5220] n_tty_write+0xd62/0x1230 [ 71.253458][ T5220] file_tty_write+0x546/0x9b0 [ 71.253474][ T5220] vfs_write+0xa6d/0xc90 [ 71.253491][ T5220] ksys_write+0x183/0x2b0 [ 71.253509][ T5220] do_syscall_64+0xf3/0x230 [ 71.253523][ T5220] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 71.253546][ T5220] [ 71.253546][ T5220] -> #1 (&port_lock_key){-.-.}-{2:2}: [ 71.253566][ T5220] lock_acquire+0x1ed/0x550 [ 71.253587][ T5220] _raw_spin_lock_irqsave+0xd5/0x120 [ 71.253606][ T5220] serial8250_console_write+0x1a7/0x1ed0 [ 71.253625][ T5220] console_flush_all+0x86b/0xeb0 [ 71.253643][ T5220] console_unlock+0x14f/0x3b0 [ 71.253659][ T5220] vprintk_emit+0x730/0xa10 [ 71.253675][ T5220] _printk+0xd5/0x120 [ 71.253686][ T5220] register_console+0xbf5/0xfd0 [ 71.253704][ T5220] univ8250_console_init+0x52/0x90 [ 71.253716][ T5220] console_init+0x1b8/0x6f0 [ 71.253735][ T5220] start_kernel+0x2d8/0x500 [ 71.253754][ T5220] x86_64_start_reservations+0x2a/0x30 [ 71.253768][ T5220] x86_64_start_kernel+0x9f/0xa0 [ 71.253782][ T5220] common_startup_64+0x13e/0x147 [ 71.253798][ T5220] [ 71.253798][ T5220] -> #0 (console_owner){-...}-{0:0}: [ 71.253816][ T5220] validate_chain+0x18ef/0x5920 [ 71.253832][ T5220] __lock_acquire+0x1384/0x2050 [ 71.253853][ T5220] lock_acquire+0x1ed/0x550 [ 71.253874][ T5220] console_flush_all+0x7f8/0xeb0 [ 71.253892][ T5220] console_unlock+0x14f/0x3b0 [ 71.253907][ T5220] vprintk_emit+0x730/0xa10 [ 71.253923][ T5220] _printk+0xd5/0x120 [ 71.253934][ T5220] should_fail_ex+0x391/0x4e0 [ 71.253955][ T5220] strncpy_from_user+0x36/0x250 [ 71.253975][ T5220] strncpy_from_user_nofault+0x71/0x140 [ 71.253991][ T5220] bpf_probe_read_compat_str+0xe9/0x180 [ 71.254013][ T5220] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 71.254028][ T5220] bpf_trace_run4+0x334/0x590 [ 71.254044][ T5220] __traceiter_sched_switch+0x98/0xd0 [ 71.254059][ T5220] __schedule+0x22f8/0x4ae0 [ 71.254079][ T5220] schedule+0x14b/0x320 [ 71.254098][ T5220] ptrace_stop+0x5b4/0x940 [ 71.254114][ T5220] ptrace_notify+0x255/0x380 [ 71.254131][ T5220] syscall_trace_enter+0x5d/0x150 [ 71.254153][ T5220] do_syscall_64+0xcc/0x230 [ 71.254167][ T5220] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 71.254189][ T5220] [ 71.254189][ T5220] other info that might help us debug this: [ 71.254189][ T5220] [ 71.254194][ T5220] Chain exists of: [ 71.254194][ T5220] console_owner --> &p->pi_lock --> &rq->__lock [ 71.254194][ T5220] [ 71.254216][ T5220] Possible unsafe locking scenario: [ 71.254216][ T5220] [ 71.254220][ T5220] CPU0 CPU1 [ 71.254224][ T5220] ---- ---- [ 71.254228][ T5220] lock(&rq->__lock); [ 71.254237][ T5220] lock(&p->pi_lock); [ 71.254252][ T5220] lock(&rq->__lock); [ 71.254263][ T5220] lock(console_owner); [ 71.254272][ T5220] [ 71.254272][ T5220] *** DEADLOCK *** [ 71.254272][ T5220] [ 71.254276][ T5220] 4 locks held by syz-executor330/5220: [ 71.254284][ T5220] #0: ffff8880b873ea58 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140 [ 71.254324][ T5220] #1: ffffffff8e937da0 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run4+0x244/0x590 [ 71.254360][ T5220] #2: ffffffff8e813380 (console_lock){+.+.}-{0:0}, at: _printk+0xd5/0x120 [ 71.254392][ T5220] #3: ffffffff8e812f90 (console_srcu){....}-{0:0}, at: console_flush_all+0x1a3/0xeb0 [ 71.254430][ T5220] [ 71.254430][ T5220] stack backtrace: [ 71.254443][ T5220] CPU: 1 UID: 0 PID: 5220 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 71.254463][ T5220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 71.254477][ T5220] Call Trace: [ 71.254483][ T5220] [ 71.254491][ T5220] dump_stack_lvl+0x241/0x360 [ 71.254513][ T5220] ? __pfx_dump_stack_lvl+0x10/0x10 [ 71.254528][ T5220] ? __pfx__printk+0x10/0x10 [ 71.254546][ T5220] print_circular_bug+0x13a/0x1b0 [ 71.254565][ T5220] check_noncircular+0x36a/0x4a0 [ 71.254593][ T5220] ? __pfx_check_noncircular+0x10/0x10 [ 71.254616][ T5220] ? lockdep_lock+0x123/0x2b0 [ 71.254646][ T5220] ? add_lock_to_list+0x1e8/0x2f0 [ 71.254672][ T5220] validate_chain+0x18ef/0x5920 [ 71.254706][ T5220] ? __pfx_validate_chain+0x10/0x10 [ 71.254725][ T5220] ? sprintf+0xda/0x120 [ 71.254745][ T5220] ? vsnprintf+0x1cc3/0x1da0 [ 71.254768][ T5220] ? info_print_prefix+0x204/0x310 [ 71.254792][ T5220] ? mark_lock+0x9a/0x360 [ 71.254808][ T5220] __lock_acquire+0x1384/0x2050 [ 71.254837][ T5220] lock_acquire+0x1ed/0x550 [ 71.254858][ T5220] ? console_flush_all+0x1a3/0xeb0 [ 71.254881][ T5220] ? __pfx_lock_acquire+0x10/0x10 [ 71.254903][ T5220] ? __pfx_lock_release+0x10/0x10 [ 71.254925][ T5220] ? do_raw_spin_lock+0x14f/0x370 [ 71.254947][ T5220] ? do_raw_spin_unlock+0x13c/0x8b0 [ 71.254967][ T5220] ? console_flush_all+0x511/0xeb0 [ 71.254986][ T5220] ? console_flush_all+0x1a3/0xeb0 [ 71.255006][ T5220] console_flush_all+0x7f8/0xeb0 [ 71.255025][ T5220] ? console_flush_all+0x1a3/0xeb0 [ 71.255046][ T5220] ? console_flush_all+0x1a3/0xeb0 [ 71.255068][ T5220] ? __pfx_console_flush_all+0x10/0x10 [ 71.255088][ T5220] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 71.255109][ T5220] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 71.255133][ T5220] ? this_cpu_in_panic+0x4f/0x80 [ 71.255149][ T5220] ? is_printk_legacy_deferred+0x43/0x50 [ 71.255171][ T5220] ? printk_get_console_flush_type+0x1fe/0x4f0 [ 71.255192][ T5220] console_unlock+0x14f/0x3b0 [ 71.255218][ T5220] ? __pfx_console_unlock+0x10/0x10 [ 71.255251][ T5220] ? this_cpu_in_panic+0x4f/0x80 [ 71.255273][ T5220] ? is_printk_legacy_deferred+0x43/0x50 [ 71.255305][ T5220] ? printk_get_console_flush_type+0x1fe/0x4f0 [ 71.255326][ T5220] vprintk_emit+0x730/0xa10 [ 71.255344][ T5220] ? __pfx_vprintk_emit+0x10/0x10 [ 71.255362][ T5220] ? __bad_area_nosemaphore+0x118/0x770 [ 71.255388][ T5220] _printk+0xd5/0x120 [ 71.255403][ T5220] ? __pfx__printk+0x10/0x10 [ 71.255420][ T5220] should_fail_ex+0x391/0x4e0 [ 71.255444][ T5220] strncpy_from_user+0x36/0x250 [ 71.255467][ T5220] strncpy_from_user_nofault+0x71/0x140 [ 71.255485][ T5220] bpf_probe_read_compat_str+0xe9/0x180 [ 71.255511][ T5220] ? bpf_trace_run4+0x244/0x590 [ 71.255528][ T5220] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 71.255540][ T5220] bpf_trace_run4+0x334/0x590 [ 71.255557][ T5220] ? psi_group_change+0xb88/0x11c0 [ 71.255577][ T5220] ? __pfx_bpf_trace_run4+0x10/0x10 [ 71.255598][ T5220] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 71.255615][ T5220] __traceiter_sched_switch+0x98/0xd0 [ 71.255633][ T5220] __schedule+0x22f8/0x4ae0 [ 71.255661][ T5220] ? __pfx___schedule+0x10/0x10 [ 71.255683][ T5220] ? __pfx_lock_release+0x10/0x10 [ 71.255706][ T5220] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 71.255730][ T5220] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 71.255755][ T5220] ? schedule+0x90/0x320 [ 71.255775][ T5220] schedule+0x14b/0x320 [ 71.255796][ T5220] ptrace_stop+0x5b4/0x940 [ 71.255818][ T5220] ptrace_notify+0x255/0x380 [ 71.255837][ T5220] ? __pfx_ptrace_notify+0x10/0x10 [ 71.255857][ T5220] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 71.255881][ T5220] ? do_syscall_64+0x100/0x230 [ 71.255897][ T5220] syscall_trace_enter+0x5d/0x150 [ 71.255921][ T5220] do_syscall_64+0xcc/0x230 [ 71.255936][ T5220] ? clear_bhb_loop+0x35/0x90 [ 71.255951][ T5220] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 71.255979][ T5220] RIP: 0033:0x7f4acaaaea99 [ 71.255991][ T5220] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 71.256009][ T5220] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 71.256024][ T5220] RAX: ffffffffffffffda RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [ 71.256035][ T5220] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 71.256045][ T5220] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 71.256054][ T5220] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 71.256063][ T5220] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 71.256078][ T5220] [ 72.494704][ T5220] CPU: 1 UID: 0 PID: 5220 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 72.505482][ T5220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 72.515538][ T5220] Call Trace: [ 72.518816][ T5220] [ 72.521745][ T5220] dump_stack_lvl+0x241/0x360 [ 72.526435][ T5220] ? __pfx_dump_stack_lvl+0x10/0x10 [ 72.531629][ T5220] ? __pfx__printk+0x10/0x10 [ 72.536223][ T5220] should_fail_ex+0x3b0/0x4e0 [ 72.540918][ T5220] strncpy_from_user+0x36/0x250 [ 72.545804][ T5220] strncpy_from_user_nofault+0x71/0x140 [ 72.551360][ T5220] bpf_probe_read_compat_str+0xe9/0x180 [ 72.556914][ T5220] ? bpf_trace_run4+0x244/0x590 [ 72.561784][ T5220] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 72.567275][ T5220] bpf_trace_run4+0x334/0x590 [ 72.572040][ T5220] ? psi_group_change+0xb88/0x11c0 [ 72.577157][ T5220] ? __pfx_bpf_trace_run4+0x10/0x10 [ 72.582451][ T5220] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 72.588536][ T5220] __traceiter_sched_switch+0x98/0xd0 [ 72.593910][ T5220] __schedule+0x22f8/0x4ae0 [ 72.598439][ T5220] ? __pfx___schedule+0x10/0x10 [ 72.603307][ T5220] ? __pfx_lock_release+0x10/0x10 [ 72.608334][ T5220] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 72.614322][ T5220] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 72.620655][ T5220] ? schedule+0x90/0x320 [ 72.624907][ T5220] schedule+0x14b/0x320 [ 72.629088][ T5220] ptrace_stop+0x5b4/0x940 [ 72.633509][ T5220] ptrace_notify+0x255/0x380 [ 72.638128][ T5220] ? __pfx_ptrace_notify+0x10/0x10 [ 72.643248][ T5220] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 72.649580][ T5220] ? do_syscall_64+0x100/0x230 [ 72.654342][ T5220] syscall_trace_enter+0x5d/0x150 [ 72.659374][ T5220] do_syscall_64+0xcc/0x230 [ 72.663872][ T5220] ? clear_bhb_loop+0x35/0x90 [ 72.668545][ T5220] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 72.674440][ T5220] RIP: 0033:0x7f4acaaaea99 [ 72.678856][ T5220] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 72.698658][ T5220] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [pid 5227] write(6, "6", 1 [pid 5226] <... bpf resumed>) = 3 [pid 5223] <... socket resumed>) = 5 [ 72.707070][ T5220] RAX: ffffffffffffffda RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [ 72.715039][ T5220] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 72.723001][ T5220] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 72.730968][ T5220] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 72.738936][ T5220] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 72.746914][ T5220] [ 72.752984][ T5220] Zero length message leads to an empty skb [ 72.759435][ T5227] FAULT_INJECTION: forcing a failure. [ 72.759435][ T5227] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 72.772481][ T5227] CPU: 0 UID: 0 PID: 5227 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 72.783234][ T5227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 72.793284][ T5227] Call Trace: [ 72.796568][ T5227] [ 72.799493][ T5227] dump_stack_lvl+0x241/0x360 [ 72.804196][ T5227] ? __pfx_dump_stack_lvl+0x10/0x10 [ 72.809394][ T5227] ? __pfx__printk+0x10/0x10 [ 72.813980][ T5227] ? bpf_trace_run4+0x244/0x590 [ 72.818848][ T5227] ? rcu_is_watching+0x15/0xb0 [ 72.823609][ T5227] ? bpf_trace_run4+0x244/0x590 [ 72.828457][ T5227] ? lock_acquire+0xe3/0x550 [ 72.833081][ T5227] should_fail_ex+0x3b0/0x4e0 [ 72.837767][ T5227] strncpy_from_user+0x36/0x250 [ 72.842708][ T5227] strncpy_from_user_nofault+0x71/0x140 [ 72.848249][ T5227] bpf_probe_read_compat_str+0xe9/0x180 [ 72.853799][ T5227] ? bpf_trace_run4+0x244/0x590 [ 72.858647][ T5227] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 72.864184][ T5227] bpf_trace_run4+0x334/0x590 [ 72.868879][ T5227] ? psi_group_change+0xb88/0x11c0 [ 72.874008][ T5227] ? __pfx_bpf_trace_run4+0x10/0x10 [ 72.879314][ T5227] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 72.885394][ T5227] __traceiter_sched_switch+0x98/0xd0 [ 72.890767][ T5227] __schedule+0x22f8/0x4ae0 [ 72.895276][ T5227] ? schedule+0x90/0x320 [ 72.899528][ T5227] ? schedule+0x90/0x320 [ 72.903770][ T5227] ? lock_release+0xbf/0xa30 [ 72.908387][ T5227] ? __pfx___schedule+0x10/0x10 [ 72.913259][ T5227] ? __pfx_lock_release+0x10/0x10 [ 72.918376][ T5227] ? _raw_spin_lock_irq+0xdf/0x120 [ 72.923578][ T5227] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 72.929910][ T5227] ? schedule+0x90/0x320 [ 72.934178][ T5227] schedule+0x14b/0x320 [ 72.938341][ T5227] ptrace_stop+0x5b4/0x940 [ 72.942777][ T5227] ptrace_notify+0x255/0x380 [ 72.947368][ T5227] ? __pfx_ptrace_notify+0x10/0x10 [ 72.952480][ T5227] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 72.958809][ T5227] ? rcu_is_watching+0x15/0xb0 [ 72.963568][ T5227] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 72.969896][ T5227] ? rcu_is_watching+0x15/0xb0 [ 72.974659][ T5227] syscall_trace_enter+0x5d/0x150 [ 72.979688][ T5227] do_syscall_64+0xcc/0x230 [ 72.984187][ T5227] ? clear_bhb_loop+0x35/0x90 [ 72.988868][ T5227] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 72.994766][ T5227] RIP: 0033:0x7f4acaaaea99 [ 72.999178][ T5227] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 73.018776][ T5227] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 73.027188][ T5227] RAX: ffffffffffffffda RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [ 73.035172][ T5227] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 73.043136][ T5227] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 73.051100][ T5227] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [pid 5222] <... openat resumed>) = 6 [pid 5220] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5227] <... write resumed>) = 1 [pid 5226] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5223] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5222] write(6, "6", 1 [pid 5227] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5226] <... bpf resumed>) = 4 [pid 5220] <... sendmsg resumed>) = -1 ENODATA (No data available) [pid 5227] <... sendmsg resumed>) = -1 ENODATA (No data available) [pid 5226] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5223] <... openat resumed>) = 6 [pid 5222] <... write resumed>) = 1 [ 73.059086][ T5227] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 73.067074][ T5227] [ 73.078156][ T5222] FAULT_INJECTION: forcing a failure. [ 73.078156][ T5222] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 73.091229][ T5222] CPU: 0 UID: 0 PID: 5222 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 73.102017][ T5222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 73.112133][ T5222] Call Trace: [ 73.115409][ T5222] [ 73.118339][ T5222] dump_stack_lvl+0x241/0x360 [ 73.123020][ T5222] ? __pfx_dump_stack_lvl+0x10/0x10 [ 73.128227][ T5222] ? __pfx__printk+0x10/0x10 [ 73.132831][ T5222] ? bpf_trace_run4+0x244/0x590 [ 73.137771][ T5222] ? rcu_is_watching+0x15/0xb0 [ 73.142534][ T5222] ? bpf_trace_run4+0x244/0x590 [ 73.147390][ T5222] ? lock_acquire+0xe3/0x550 [ 73.152001][ T5222] should_fail_ex+0x3b0/0x4e0 [ 73.156690][ T5222] strncpy_from_user+0x36/0x250 [ 73.161581][ T5222] strncpy_from_user_nofault+0x71/0x140 [ 73.167128][ T5222] bpf_probe_read_compat_str+0xe9/0x180 [ 73.172703][ T5222] ? bpf_trace_run4+0x244/0x590 [ 73.177554][ T5222] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 73.183026][ T5222] bpf_trace_run4+0x334/0x590 [ 73.187711][ T5222] ? psi_group_change+0xb88/0x11c0 [ 73.192827][ T5222] ? __pfx_bpf_trace_run4+0x10/0x10 [ 73.198053][ T5222] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 73.204134][ T5222] __traceiter_sched_switch+0x98/0xd0 [ 73.209509][ T5222] __schedule+0x22f8/0x4ae0 [ 73.214021][ T5222] ? schedule+0x90/0x320 [ 73.218275][ T5222] ? schedule+0x90/0x320 [ 73.222529][ T5222] ? lock_release+0xbf/0xa30 [ 73.227233][ T5222] ? __pfx___schedule+0x10/0x10 [ 73.232091][ T5222] ? __pfx_lock_release+0x10/0x10 [ 73.237171][ T5222] ? _raw_spin_lock_irq+0xdf/0x120 [ 73.242379][ T5222] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 73.248718][ T5222] ? schedule+0x90/0x320 [ 73.252976][ T5222] schedule+0x14b/0x320 [ 73.257143][ T5222] ptrace_stop+0x5b4/0x940 [ 73.261563][ T5222] ptrace_notify+0x255/0x380 [ 73.266164][ T5222] ? __pfx_ptrace_notify+0x10/0x10 [ 73.271363][ T5222] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 73.277694][ T5222] ? rcu_is_watching+0x15/0xb0 [ 73.282581][ T5222] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 73.288910][ T5222] ? rcu_is_watching+0x15/0xb0 [ 73.293672][ T5222] syscall_trace_enter+0x5d/0x150 [ 73.298701][ T5222] do_syscall_64+0xcc/0x230 [ 73.303305][ T5222] ? clear_bhb_loop+0x35/0x90 [ 73.307982][ T5222] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 73.313966][ T5222] RIP: 0033:0x7f4acaaaea99 [ 73.318378][ T5222] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 73.338001][ T5222] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 73.346416][ T5222] RAX: ffffffffffffffda RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [ 73.354381][ T5222] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [pid 5220] exit_group(0 [pid 5227] exit_group(0 [pid 5226] <... socket resumed>) = 5 [pid 5223] write(6, "6", 1 [pid 5222] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5220] <... exit_group resumed>) = ? [pid 5227] <... exit_group resumed>) = ? [pid 5226] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5223] <... write resumed>) = 1 [ 73.362366][ T5222] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 73.370330][ T5222] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 73.378297][ T5222] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 73.386285][ T5222] [ 73.397962][ T5223] FAULT_INJECTION: forcing a failure. [ 73.397962][ T5223] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 73.411113][ T5223] CPU: 1 UID: 0 PID: 5223 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 73.421875][ T5223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 73.431938][ T5223] Call Trace: [ 73.435366][ T5223] [ 73.438320][ T5223] dump_stack_lvl+0x241/0x360 [ 73.443045][ T5223] ? __pfx_dump_stack_lvl+0x10/0x10 [ 73.448251][ T5223] ? __pfx__printk+0x10/0x10 [ 73.452845][ T5223] ? bpf_trace_run4+0x244/0x590 [ 73.457738][ T5223] ? rcu_is_watching+0x15/0xb0 [ 73.462508][ T5223] ? bpf_trace_run4+0x244/0x590 [ 73.467361][ T5223] ? lock_acquire+0xe3/0x550 [ 73.471960][ T5223] should_fail_ex+0x3b0/0x4e0 [ 73.476645][ T5223] strncpy_from_user+0x36/0x250 [ 73.481712][ T5223] strncpy_from_user_nofault+0x71/0x140 [ 73.487261][ T5223] bpf_probe_read_compat_str+0xe9/0x180 [ 73.492812][ T5223] ? bpf_trace_run4+0x244/0x590 [ 73.497751][ T5223] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 73.503220][ T5223] bpf_trace_run4+0x334/0x590 [ 73.507941][ T5223] ? psi_group_change+0xb88/0x11c0 [ 73.513087][ T5223] ? __pfx_bpf_trace_run4+0x10/0x10 [ 73.518324][ T5223] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 73.524416][ T5223] __traceiter_sched_switch+0x98/0xd0 [ 73.529890][ T5223] __schedule+0x22f8/0x4ae0 [ 73.534416][ T5223] ? schedule+0x90/0x320 [ 73.538671][ T5223] ? schedule+0x90/0x320 [ 73.542945][ T5223] ? lock_release+0xbf/0xa30 [ 73.547550][ T5223] ? __pfx___schedule+0x10/0x10 [ 73.552418][ T5223] ? __pfx_lock_release+0x10/0x10 [ 73.557468][ T5223] ? _raw_spin_lock_irq+0xdf/0x120 [ 73.562590][ T5223] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 73.568932][ T5223] ? schedule+0x90/0x320 [ 73.573361][ T5223] schedule+0x14b/0x320 [ 73.577534][ T5223] ptrace_stop+0x5b4/0x940 [ 73.581989][ T5223] ptrace_notify+0x255/0x380 [ 73.586608][ T5223] ? __pfx_ptrace_notify+0x10/0x10 [ 73.591776][ T5223] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 73.598142][ T5223] ? rcu_is_watching+0x15/0xb0 [ 73.602926][ T5223] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 73.609278][ T5223] ? rcu_is_watching+0x15/0xb0 [ 73.614056][ T5223] syscall_trace_enter+0x5d/0x150 [ 73.619105][ T5223] do_syscall_64+0xcc/0x230 [ 73.623626][ T5223] ? clear_bhb_loop+0x35/0x90 [ 73.628314][ T5223] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 73.634240][ T5223] RIP: 0033:0x7f4acaaaea99 [ 73.638670][ T5223] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 73.658372][ T5223] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [pid 5222] <... sendmsg resumed>) = -1 ENODATA (No data available) [pid 5220] +++ exited with 0 +++ [pid 5227] +++ exited with 0 +++ [pid 5226] <... openat resumed>) = 6 [pid 5223] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5222] exit_group(0 [pid 5226] write(6, "6", 1 [pid 5218] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5220, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} --- [pid 5226] <... write resumed>) = 1 [ 73.666814][ T5223] RAX: ffffffffffffffda RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [ 73.674814][ T5223] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 73.682791][ T5223] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 73.690764][ T5223] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 73.698754][ T5223] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 73.706752][ T5223] [ 73.714401][ T5226] FAULT_INJECTION: forcing a failure. [ 73.714401][ T5226] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 73.727555][ T5226] CPU: 0 UID: 0 PID: 5226 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 73.738401][ T5226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 73.748588][ T5226] Call Trace: [ 73.751872][ T5226] [ 73.754800][ T5226] dump_stack_lvl+0x241/0x360 [ 73.759482][ T5226] ? __pfx_dump_stack_lvl+0x10/0x10 [ 73.764678][ T5226] ? __pfx__printk+0x10/0x10 [ 73.769261][ T5226] ? bpf_trace_run4+0x244/0x590 [ 73.774108][ T5226] ? rcu_is_watching+0x15/0xb0 [ 73.778868][ T5226] ? bpf_trace_run4+0x244/0x590 [ 73.783738][ T5226] ? lock_acquire+0xe3/0x550 [ 73.788352][ T5226] should_fail_ex+0x3b0/0x4e0 [ 73.793063][ T5226] strncpy_from_user+0x36/0x250 [ 73.797930][ T5226] strncpy_from_user_nofault+0x71/0x140 [ 73.803502][ T5226] bpf_probe_read_compat_str+0xe9/0x180 [ 73.809151][ T5226] ? bpf_trace_run4+0x244/0x590 [ 73.814076][ T5226] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 73.819545][ T5226] bpf_trace_run4+0x334/0x590 [ 73.824226][ T5226] ? psi_group_change+0xb88/0x11c0 [ 73.829342][ T5226] ? __pfx_bpf_trace_run4+0x10/0x10 [ 73.834557][ T5226] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 73.840644][ T5226] __traceiter_sched_switch+0x98/0xd0 [ 73.846045][ T5226] __schedule+0x22f8/0x4ae0 [ 73.850569][ T5226] ? schedule+0x90/0x320 [ 73.854840][ T5226] ? schedule+0x90/0x320 [ 73.859260][ T5226] ? lock_release+0xbf/0xa30 [ 73.863941][ T5226] ? __pfx___schedule+0x10/0x10 [ 73.868797][ T5226] ? __pfx_lock_release+0x10/0x10 [ 73.873867][ T5226] ? _raw_spin_lock_irq+0xdf/0x120 [ 73.879014][ T5226] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 73.885375][ T5226] ? schedule+0x90/0x320 [ 73.889632][ T5226] schedule+0x14b/0x320 [ 73.893795][ T5226] ptrace_stop+0x5b4/0x940 [ 73.898232][ T5226] ptrace_notify+0x255/0x380 [ 73.902857][ T5226] ? __pfx_ptrace_notify+0x10/0x10 [ 73.907996][ T5226] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 73.914330][ T5226] ? rcu_is_watching+0x15/0xb0 [ 73.919093][ T5226] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 73.925448][ T5226] ? rcu_is_watching+0x15/0xb0 [ 73.930213][ T5226] syscall_trace_enter+0x5d/0x150 [ 73.935272][ T5226] do_syscall_64+0xcc/0x230 [ 73.939774][ T5226] ? clear_bhb_loop+0x35/0x90 [ 73.944450][ T5226] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 73.950371][ T5226] RIP: 0033:0x7f4acaaaea99 [ 73.954795][ T5226] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 73.974485][ T5226] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 73.982899][ T5226] RAX: ffffffffffffffda RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [ 73.990866][ T5226] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 73.998834][ T5226] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 74.006820][ T5226] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [pid 5223] <... sendmsg resumed>) = -1 ENODATA (No data available) [pid 5222] <... exit_group resumed>) = ? [pid 5218] restart_syscall(<... resuming interrupted clone ...> [pid 5226] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5225] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5227, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5223] exit_group(0) = ? [pid 5226] <... sendmsg resumed>) = -1 ENODATA (No data available) [pid 5223] +++ exited with 0 +++ [pid 5218] <... restart_syscall resumed>) = 0 [pid 5226] exit_group(0) = ? [pid 5221] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5223, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5221] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5218] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5228 attached [pid 5228] set_robust_list(0x55555a521660, 24 [pid 5218] <... clone resumed>, child_tidptr=0x55555a521650) = 5228 [pid 5228] <... set_robust_list resumed>) = 0 [pid 5228] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5221] <... clone resumed>, child_tidptr=0x55555a521650) = 5229 ./strace-static-x86_64: Process 5229 attached [pid 5228] <... prctl resumed>) = 0 [pid 5229] set_robust_list(0x55555a521660, 24 [pid 5228] setpgid(0, 0) = 0 [pid 5229] <... set_robust_list resumed>) = 0 [pid 5226] +++ exited with 0 +++ [pid 5222] +++ exited with 0 +++ [pid 5229] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5228] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5224] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5226, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5219] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5222, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5229] <... prctl resumed>) = 0 [pid 5228] <... openat resumed>) = 3 [pid 5229] setpgid(0, 0) = 0 [pid 5229] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5228] write(3, "1000", 4 [pid 5219] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5228] <... write resumed>) = 4 [pid 5225] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5229] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5231 attached ./strace-static-x86_64: Process 5230 attached [pid 5229] write(3, "1000", 4 [pid 5228] close(3 [pid 5224] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5232 attached [pid 5231] set_robust_list(0x55555a521660, 24 [pid 5230] set_robust_list(0x55555a521660, 24 [pid 5229] <... write resumed>) = 4 [pid 5228] <... close resumed>) = 0 [pid 5225] <... clone resumed>, child_tidptr=0x55555a521650) = 5231 [pid 5219] <... clone resumed>, child_tidptr=0x55555a521650) = 5230 executing program [pid 5231] <... set_robust_list resumed>) = 0 [pid 5230] <... set_robust_list resumed>) = 0 [pid 5228] write(1, "executing program\n", 18 [pid 5232] set_robust_list(0x55555a521660, 24 [pid 5231] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5229] close(3 [pid 5228] <... write resumed>) = 18 [pid 5232] <... set_robust_list resumed>) = 0 [pid 5230] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5229] <... close resumed>) = 0 [pid 5228] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5232] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5231] <... prctl resumed>) = 0 executing program [pid 5230] <... prctl resumed>) = 0 [pid 5229] write(1, "executing program\n", 18 [pid 5228] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5224] <... clone resumed>, child_tidptr=0x55555a521650) = 5232 [pid 5232] <... prctl resumed>) = 0 [pid 5231] setpgid(0, 0 [pid 5229] <... write resumed>) = 18 [pid 5231] <... setpgid resumed>) = 0 [pid 5230] setpgid(0, 0 [pid 5232] setpgid(0, 0 [pid 5231] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5230] <... setpgid resumed>) = 0 [pid 5229] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5228] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5232] <... setpgid resumed>) = 0 [pid 5231] <... openat resumed>) = 3 [pid 5230] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5229] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5228] <... bpf resumed>) = 3 [pid 5232] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [ 74.014785][ T5226] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 74.022758][ T5226] [pid 5229] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5232] <... openat resumed>) = 3 [pid 5232] write(3, "1000", 4 [pid 5231] write(3, "1000", 4 [pid 5230] <... openat resumed>) = 3 [pid 5229] <... bpf resumed>) = 3 [pid 5228] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5232] <... write resumed>) = 4 [pid 5231] <... write resumed>) = 4 [pid 5230] write(3, "1000", 4 [pid 5231] close(3 [pid 5230] <... write resumed>) = 4 [pid 5232] close(3 [pid 5231] <... close resumed>) = 0 [pid 5230] close(3 [pid 5228] <... bpf resumed>) = 4 executing program [pid 5232] <... close resumed>) = 0 [pid 5231] write(1, "executing program\n", 18 [pid 5230] <... close resumed>) = 0 [pid 5229] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16executing program [pid 5232] write(1, "executing program\n", 18 [pid 5231] <... write resumed>) = 18 [pid 5230] write(1, "executing program\n", 18 [pid 5229] <... bpf resumed>) = 4 [pid 5228] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERICexecuting program [pid 5232] <... write resumed>) = 18 [pid 5231] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5230] <... write resumed>) = 18 [pid 5228] <... socket resumed>) = 5 [pid 5232] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5231] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5230] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5229] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5228] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5231] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5230] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5229] <... socket resumed>) = 5 [pid 5232] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5230] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5229] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5228] <... openat resumed>) = 6 [pid 5232] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5231] <... bpf resumed>) = 3 [pid 5230] <... bpf resumed>) = 3 [pid 5229] <... openat resumed>) = 6 [pid 5232] <... bpf resumed>) = 3 [pid 5231] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5230] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5231] <... bpf resumed>) = 4 [pid 5230] <... bpf resumed>) = 4 [pid 5229] write(6, "6", 1 [pid 5228] write(6, "6", 1 [pid 5231] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [ 74.091224][ T5229] FAULT_INJECTION: forcing a failure. [ 74.091224][ T5229] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 74.104322][ T5229] CPU: 0 UID: 0 PID: 5229 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 74.115099][ T5229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 74.125149][ T5229] Call Trace: [ 74.128424][ T5229] [ 74.131614][ T5229] dump_stack_lvl+0x241/0x360 [ 74.136298][ T5229] ? __pfx_dump_stack_lvl+0x10/0x10 [ 74.141493][ T5229] ? __pfx__printk+0x10/0x10 [ 74.146094][ T5229] ? bpf_trace_run4+0x244/0x590 [ 74.150975][ T5229] ? rcu_is_watching+0x15/0xb0 [ 74.155776][ T5229] ? bpf_trace_run4+0x244/0x590 [ 74.160728][ T5229] ? lock_acquire+0xe3/0x550 [ 74.165341][ T5229] should_fail_ex+0x3b0/0x4e0 [ 74.170044][ T5229] strncpy_from_user+0x36/0x250 [ 74.174921][ T5229] strncpy_from_user_nofault+0x71/0x140 [ 74.180509][ T5229] bpf_probe_read_compat_str+0xe9/0x180 [ 74.186071][ T5229] ? bpf_trace_run4+0x244/0x590 [ 74.190955][ T5229] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 74.196419][ T5229] bpf_trace_run4+0x334/0x590 [ 74.201145][ T5229] ? psi_group_change+0xb88/0x11c0 [ 74.206260][ T5229] ? __pfx_bpf_trace_run4+0x10/0x10 [ 74.211476][ T5229] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 74.217552][ T5229] __traceiter_sched_switch+0x98/0xd0 [ 74.222942][ T5229] __schedule+0x22f8/0x4ae0 [ 74.227475][ T5229] ? schedule+0x90/0x320 [ 74.231720][ T5229] ? schedule+0x90/0x320 [ 74.235986][ T5229] ? lock_release+0xbf/0xa30 [ 74.240580][ T5229] ? __pfx___schedule+0x10/0x10 [ 74.245521][ T5229] ? __pfx_lock_release+0x10/0x10 [ 74.250721][ T5229] ? _raw_spin_lock_irq+0xdf/0x120 [ 74.255835][ T5229] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 74.262340][ T5229] ? schedule+0x90/0x320 [ 74.266599][ T5229] schedule+0x14b/0x320 [ 74.270885][ T5229] ptrace_stop+0x5b4/0x940 [ 74.275321][ T5229] ptrace_notify+0x255/0x380 [ 74.279931][ T5229] ? __pfx_ptrace_notify+0x10/0x10 [ 74.285054][ T5229] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 74.291385][ T5229] ? rcu_is_watching+0x15/0xb0 [ 74.296167][ T5229] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 74.302524][ T5229] ? rcu_is_watching+0x15/0xb0 [ 74.307284][ T5229] syscall_trace_enter+0x5d/0x150 [ 74.312323][ T5229] do_syscall_64+0xcc/0x230 [ 74.316847][ T5229] ? clear_bhb_loop+0x35/0x90 [ 74.321523][ T5229] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.327423][ T5229] RIP: 0033:0x7f4acaaaea99 [ 74.331853][ T5229] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 74.351459][ T5229] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 74.359909][ T5229] RAX: ffffffffffffffda RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [ 74.367878][ T5229] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 74.375854][ T5229] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 74.383836][ T5229] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [pid 5232] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5231] <... socket resumed>) = 5 [pid 5230] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5229] <... write resumed>) = 1 [pid 5228] <... write resumed>) = 1 [pid 5231] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5230] <... socket resumed>) = 5 [ 74.391818][ T5229] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 74.399795][ T5229] [ 74.405059][ T5228] FAULT_INJECTION: forcing a failure. [ 74.405059][ T5228] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 74.418151][ T5228] CPU: 0 UID: 0 PID: 5228 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 74.428935][ T5228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 74.439072][ T5228] Call Trace: [ 74.442347][ T5228] [ 74.445273][ T5228] dump_stack_lvl+0x241/0x360 [ 74.450000][ T5228] ? __pfx_dump_stack_lvl+0x10/0x10 [ 74.455235][ T5228] ? __pfx__printk+0x10/0x10 [ 74.459838][ T5228] ? bpf_trace_run4+0x244/0x590 [ 74.464695][ T5228] ? rcu_is_watching+0x15/0xb0 [ 74.469461][ T5228] ? bpf_trace_run4+0x244/0x590 [ 74.474313][ T5228] ? lock_acquire+0xe3/0x550 [ 74.478910][ T5228] should_fail_ex+0x3b0/0x4e0 [ 74.483594][ T5228] strncpy_from_user+0x36/0x250 [ 74.488446][ T5228] strncpy_from_user_nofault+0x71/0x140 [ 74.494009][ T5228] bpf_probe_read_compat_str+0xe9/0x180 [ 74.499571][ T5228] ? bpf_trace_run4+0x244/0x590 [ 74.504442][ T5228] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 74.509988][ T5228] bpf_trace_run4+0x334/0x590 [ 74.514677][ T5228] ? psi_group_change+0xb88/0x11c0 [ 74.519797][ T5228] ? __pfx_bpf_trace_run4+0x10/0x10 [ 74.525002][ T5228] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 74.531070][ T5228] __traceiter_sched_switch+0x98/0xd0 [ 74.536441][ T5228] __schedule+0x22f8/0x4ae0 [ 74.540949][ T5228] ? schedule+0x90/0x320 [ 74.545216][ T5228] ? schedule+0x90/0x320 [ 74.549462][ T5228] ? lock_release+0xbf/0xa30 [ 74.554058][ T5228] ? __pfx___schedule+0x10/0x10 [ 74.558920][ T5228] ? __pfx_lock_release+0x10/0x10 [ 74.563951][ T5228] ? _raw_spin_lock_irq+0xdf/0x120 [ 74.569080][ T5228] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 74.575435][ T5228] ? schedule+0x90/0x320 [ 74.579678][ T5228] schedule+0x14b/0x320 [ 74.583836][ T5228] ptrace_stop+0x5b4/0x940 [ 74.588252][ T5228] ptrace_notify+0x255/0x380 [ 74.592841][ T5228] ? __pfx_ptrace_notify+0x10/0x10 [ 74.597952][ T5228] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 74.604302][ T5228] ? rcu_is_watching+0x15/0xb0 [ 74.609062][ T5228] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 74.615394][ T5228] ? rcu_is_watching+0x15/0xb0 [ 74.620177][ T5228] syscall_trace_enter+0x5d/0x150 [ 74.625206][ T5228] do_syscall_64+0xcc/0x230 [ 74.629708][ T5228] ? clear_bhb_loop+0x35/0x90 [ 74.634380][ T5228] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.640275][ T5228] RIP: 0033:0x7f4acaaaea99 [ 74.644685][ T5228] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 74.664306][ T5228] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 74.672725][ T5228] RAX: ffffffffffffffda RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [ 74.680694][ T5228] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [pid 5229] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5231] <... openat resumed>) = 6 [ 74.688785][ T5228] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 74.696779][ T5228] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 74.704771][ T5228] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 74.712840][ T5228] [ 74.722058][ T5231] FAULT_INJECTION: forcing a failure. [ 74.722058][ T5231] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 74.735319][ T5231] CPU: 1 UID: 0 PID: 5231 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 74.746082][ T5231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 74.756141][ T5231] Call Trace: [ 74.759418][ T5231] [ 74.762348][ T5231] dump_stack_lvl+0x241/0x360 [ 74.767034][ T5231] ? __pfx_dump_stack_lvl+0x10/0x10 [ 74.772661][ T5231] ? __pfx__printk+0x10/0x10 [ 74.777245][ T5231] ? bpf_trace_run4+0x244/0x590 [ 74.782093][ T5231] ? rcu_is_watching+0x15/0xb0 [ 74.786958][ T5231] ? bpf_trace_run4+0x244/0x590 [ 74.791815][ T5231] ? lock_acquire+0xe3/0x550 [ 74.796416][ T5231] should_fail_ex+0x3b0/0x4e0 [ 74.801116][ T5231] strncpy_from_user+0x36/0x250 [ 74.805980][ T5231] ? trace_pelt_se_tp+0x3d/0x140 [ 74.810936][ T5231] strncpy_from_user_nofault+0x71/0x140 [ 74.816490][ T5231] bpf_probe_read_compat_str+0xe9/0x180 [ 74.822045][ T5231] ? bpf_trace_run4+0x244/0x590 [ 74.826904][ T5231] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 74.832373][ T5231] bpf_trace_run4+0x334/0x590 [ 74.837244][ T5231] ? psi_group_change+0xb88/0x11c0 [ 74.842462][ T5231] ? __pfx_bpf_trace_run4+0x10/0x10 [ 74.847662][ T5231] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 74.853987][ T5231] __traceiter_sched_switch+0x98/0xd0 [ 74.859470][ T5231] __schedule+0x22f8/0x4ae0 [ 74.863986][ T5231] ? schedule+0x90/0x320 [ 74.868264][ T5231] ? schedule+0x90/0x320 [ 74.872507][ T5231] ? lock_release+0xbf/0xa30 [ 74.877126][ T5231] ? __pfx___schedule+0x10/0x10 [ 74.881979][ T5231] ? __pfx_lock_release+0x10/0x10 [ 74.887011][ T5231] ? _raw_spin_lock_irq+0xdf/0x120 [ 74.892162][ T5231] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 74.898496][ T5231] ? schedule+0x90/0x320 [ 74.902756][ T5231] schedule+0x14b/0x320 [ 74.906928][ T5231] ptrace_stop+0x5b4/0x940 [ 74.911355][ T5231] ptrace_notify+0x255/0x380 [ 74.915966][ T5231] ? __pfx_ptrace_notify+0x10/0x10 [ 74.921086][ T5231] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 74.927420][ T5231] ? rcu_is_watching+0x15/0xb0 [ 74.932182][ T5231] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 74.938524][ T5231] ? rcu_is_watching+0x15/0xb0 [ 74.943287][ T5231] syscall_trace_enter+0x5d/0x150 [ 74.948317][ T5231] do_syscall_64+0xcc/0x230 [ 74.952819][ T5231] ? clear_bhb_loop+0x35/0x90 [ 74.957493][ T5231] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.963414][ T5231] RIP: 0033:0x7f4acaaaea99 [ 74.967823][ T5231] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [pid 5230] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5232] <... bpf resumed>) = 4 [pid 5231] write(6, "6", 1 [pid 5230] <... openat resumed>) = 6 [pid 5229] <... sendmsg resumed>) = -1 ENODATA (No data available) [pid 5228] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5231] <... write resumed>) = 1 [ 74.987428][ T5231] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 74.995843][ T5231] RAX: ffffffffffffffda RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [ 75.003914][ T5231] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 75.011898][ T5231] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 75.019957][ T5231] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 75.027923][ T5231] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 75.035894][ T5231] [ 75.042773][ T5230] FAULT_INJECTION: forcing a failure. [ 75.042773][ T5230] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 75.055846][ T5230] CPU: 1 UID: 0 PID: 5230 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 75.066605][ T5230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 75.076655][ T5230] Call Trace: [ 75.079941][ T5230] [ 75.082883][ T5230] dump_stack_lvl+0x241/0x360 [ 75.087567][ T5230] ? __pfx_dump_stack_lvl+0x10/0x10 [ 75.092759][ T5230] ? __pfx__printk+0x10/0x10 [ 75.097343][ T5230] ? bpf_trace_run4+0x244/0x590 [ 75.102190][ T5230] ? rcu_is_watching+0x15/0xb0 [ 75.106959][ T5230] ? bpf_trace_run4+0x244/0x590 [ 75.111809][ T5230] ? lock_acquire+0xe3/0x550 [ 75.116422][ T5230] should_fail_ex+0x3b0/0x4e0 [ 75.121123][ T5230] strncpy_from_user+0x36/0x250 [ 75.125977][ T5230] strncpy_from_user_nofault+0x71/0x140 [ 75.131524][ T5230] bpf_probe_read_compat_str+0xe9/0x180 [ 75.137091][ T5230] ? bpf_trace_run4+0x244/0x590 [ 75.141938][ T5230] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 75.147389][ T5230] bpf_trace_run4+0x334/0x590 [ 75.152085][ T5230] ? psi_group_change+0xb88/0x11c0 [ 75.157217][ T5230] ? __pfx_bpf_trace_run4+0x10/0x10 [ 75.162473][ T5230] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 75.168724][ T5230] __traceiter_sched_switch+0x98/0xd0 [ 75.174212][ T5230] __schedule+0x22f8/0x4ae0 [ 75.178728][ T5230] ? schedule+0x90/0x320 [ 75.182992][ T5230] ? schedule+0x90/0x320 [ 75.187250][ T5230] ? lock_release+0xbf/0xa30 [ 75.191863][ T5230] ? __pfx___schedule+0x10/0x10 [ 75.196716][ T5230] ? __pfx_lock_release+0x10/0x10 [ 75.201854][ T5230] ? _raw_spin_lock_irq+0xdf/0x120 [ 75.206973][ T5230] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 75.213310][ T5230] ? schedule+0x90/0x320 [ 75.217578][ T5230] schedule+0x14b/0x320 [ 75.221758][ T5230] ptrace_stop+0x5b4/0x940 [ 75.226176][ T5230] ptrace_notify+0x255/0x380 [ 75.230773][ T5230] ? __pfx_ptrace_notify+0x10/0x10 [ 75.235885][ T5230] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 75.242237][ T5230] ? rcu_is_watching+0x15/0xb0 [ 75.247002][ T5230] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 75.253331][ T5230] ? rcu_is_watching+0x15/0xb0 [ 75.258090][ T5230] syscall_trace_enter+0x5d/0x150 [ 75.263120][ T5230] do_syscall_64+0xcc/0x230 [ 75.267616][ T5230] ? clear_bhb_loop+0x35/0x90 [ 75.272307][ T5230] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.278221][ T5230] RIP: 0033:0x7f4acaaaea99 [ 75.282652][ T5230] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 75.302269][ T5230] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 75.310679][ T5230] RAX: ffffffffffffffda RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [ 75.318651][ T5230] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 75.326617][ T5230] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 75.334600][ T5230] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [pid 5230] write(6, "6", 1 [pid 5232] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5231] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5230] <... write resumed>) = 1 [pid 5229] exit_group(0 [pid 5228] <... sendmsg resumed>) = -1 ENODATA (No data available) [pid 5232] <... socket resumed>) = 5 [pid 5231] <... sendmsg resumed>) = -1 ENODATA (No data available) [pid 5230] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5229] <... exit_group resumed>) = ? [pid 5228] exit_group(0 [pid 5232] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5231] exit_group(0 [pid 5230] <... sendmsg resumed>) = -1 ENODATA (No data available) [pid 5229] +++ exited with 0 +++ [pid 5228] <... exit_group resumed>) = ? [pid 5232] <... openat resumed>) = 6 [pid 5231] <... exit_group resumed>) = ? [pid 5230] exit_group(0 [pid 5228] +++ exited with 0 +++ [pid 5232] write(6, "6", 1 [pid 5230] <... exit_group resumed>) = ? [pid 5221] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5229, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5218] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5228, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5221] restart_syscall(<... resuming interrupted clone ...> [pid 5218] restart_syscall(<... resuming interrupted clone ...> [pid 5232] <... write resumed>) = 1 [pid 5231] +++ exited with 0 +++ [pid 5232] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0executing program [pid 5225] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5231, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} --- [pid 5221] <... restart_syscall resumed>) = 0 [pid 5218] <... restart_syscall resumed>) = 0 [pid 5218] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5233 attached [pid 5233] set_robust_list(0x55555a521660, 24 [pid 5218] <... clone resumed>, child_tidptr=0x55555a521650) = 5233 [pid 5233] <... set_robust_list resumed>) = 0 [pid 5233] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5233] setpgid(0, 0) = 0 [pid 5233] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5233] write(3, "1000", 4) = 4 [pid 5233] close(3) = 0 [pid 5233] write(1, "executing program\n", 18) = 18 [pid 5233] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148) = -1 EFAULT (Bad address) [pid 5233] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148) = 3 [pid 5233] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5225] restart_syscall(<... resuming interrupted clone ...>) = 0 [ 75.342582][ T5230] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 75.350550][ T5230] [ 75.361160][ T5232] FAULT_INJECTION: forcing a failure. [ 75.361160][ T5232] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 75.374692][ T5232] CPU: 1 UID: 0 PID: 5232 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 75.385514][ T5232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 75.395583][ T5232] Call Trace: [ 75.398866][ T5232] [ 75.401803][ T5232] dump_stack_lvl+0x241/0x360 [ 75.406494][ T5232] ? __pfx_dump_stack_lvl+0x10/0x10 [ 75.411732][ T5232] ? __pfx__printk+0x10/0x10 [ 75.416426][ T5232] ? __pfx_lock_release+0x10/0x10 [ 75.421489][ T5232] should_fail_ex+0x3b0/0x4e0 [ 75.426183][ T5232] _copy_from_user+0x2f/0xe0 [ 75.430791][ T5232] copy_msghdr_from_user+0xae/0x680 [ 75.436026][ T5232] ? lock_acquire+0xe3/0x550 [ 75.440634][ T5232] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 75.446542][ T5232] ? do_raw_spin_lock+0x14f/0x370 [ 75.451604][ T5232] __sys_sendmsg+0x22d/0x380 [ 75.456205][ T5232] ? __pfx___sys_sendmsg+0x10/0x10 [ 75.461329][ T5232] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 75.467677][ T5232] ? _raw_spin_unlock_irq+0x2e/0x50 [ 75.472895][ T5232] ? ptrace_notify+0x279/0x380 [ 75.477677][ T5232] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 75.484017][ T5232] ? rcu_is_watching+0x15/0xb0 [ 75.488796][ T5232] do_syscall_64+0xf3/0x230 [ 75.493306][ T5232] ? clear_bhb_loop+0x35/0x90 [ 75.497994][ T5232] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.503918][ T5232] RIP: 0033:0x7f4acaaaea99 [ 75.508349][ T5232] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 75.528055][ T5232] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 75.536482][ T5232] RAX: ffffffffffffffda RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [pid 5225] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5230] +++ exited with 0 +++ [pid 5225] <... clone resumed>, child_tidptr=0x55555a521650) = 5234 [pid 5233] <... bpf resumed>) = 4 [pid 5233] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5221] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5219] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5230, si_uid=0, si_status=0, si_utime=0, si_stime=19 /* 0.19 s */} --- [pid 5233] <... socket resumed>) = 5 [pid 5233] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6 [pid 5219] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5233] write(6, "6", 1) = 1 ./strace-static-x86_64: Process 5236 attached ./strace-static-x86_64: Process 5235 attached [pid 5233] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5232] <... sendmsg resumed>) = -1 EFAULT (Bad address) [pid 5221] <... clone resumed>, child_tidptr=0x55555a521650) = 5235 [ 75.544464][ T5232] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 75.552443][ T5232] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 75.560430][ T5232] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 75.568415][ T5232] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 75.576484][ T5232] [ 75.586590][ T5233] FAULT_INJECTION: forcing a failure. [ 75.586590][ T5233] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 75.599662][ T5233] CPU: 0 UID: 0 PID: 5233 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 75.610420][ T5233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 75.620560][ T5233] Call Trace: [ 75.623835][ T5233] [ 75.626761][ T5233] dump_stack_lvl+0x241/0x360 [ 75.631443][ T5233] ? __pfx_dump_stack_lvl+0x10/0x10 [ 75.636638][ T5233] ? __pfx__printk+0x10/0x10 [ 75.641226][ T5233] ? bpf_trace_run4+0x244/0x590 [ 75.646077][ T5233] ? rcu_is_watching+0x15/0xb0 [ 75.650864][ T5233] ? bpf_trace_run4+0x244/0x590 [ 75.655711][ T5233] ? lock_acquire+0xe3/0x550 [ 75.660324][ T5233] should_fail_ex+0x3b0/0x4e0 [ 75.665028][ T5233] strncpy_from_user+0x36/0x250 [ 75.669894][ T5233] ? trace_pelt_se_tp+0x3d/0x140 [ 75.674865][ T5233] strncpy_from_user_nofault+0x71/0x140 [ 75.680424][ T5233] bpf_probe_read_compat_str+0xe9/0x180 [ 75.686007][ T5233] ? bpf_trace_run4+0x244/0x590 [ 75.690864][ T5233] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 75.696325][ T5233] bpf_trace_run4+0x334/0x590 [ 75.701007][ T5233] ? psi_group_change+0xb88/0x11c0 [ 75.706139][ T5233] ? __pfx_bpf_trace_run4+0x10/0x10 [ 75.711347][ T5233] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 75.717585][ T5233] __traceiter_sched_switch+0x98/0xd0 [ 75.722991][ T5233] __schedule+0x22f8/0x4ae0 [ 75.727517][ T5233] ? schedule+0x90/0x320 [ 75.731777][ T5233] ? schedule+0x90/0x320 [ 75.736124][ T5233] ? lock_release+0xbf/0xa30 [ 75.740739][ T5233] ? __pfx___schedule+0x10/0x10 [ 75.745599][ T5233] ? __pfx_lock_release+0x10/0x10 [ 75.750661][ T5233] ? _raw_spin_lock_irq+0xdf/0x120 [ 75.755775][ T5233] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 75.762114][ T5233] ? schedule+0x90/0x320 [ 75.766361][ T5233] schedule+0x14b/0x320 [ 75.770538][ T5233] ptrace_stop+0x5b4/0x940 [ 75.774959][ T5233] ptrace_notify+0x255/0x380 [ 75.779724][ T5233] ? __pfx_ptrace_notify+0x10/0x10 [ 75.784845][ T5233] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 75.791175][ T5233] syscall_exit_work+0xc6/0x190 [ 75.796020][ T5233] syscall_exit_to_user_mode+0x279/0x370 [ 75.801648][ T5233] do_syscall_64+0x100/0x230 [ 75.806252][ T5233] ? clear_bhb_loop+0x35/0x90 [ 75.810944][ T5233] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.816851][ T5233] RIP: 0033:0x7f4acaaaea99 [ 75.821265][ T5233] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [pid 5235] set_robust_list(0x55555a521660, 24 [pid 5236] set_robust_list(0x55555a521660, 24 [pid 5235] <... set_robust_list resumed>) = 0 [pid 5233] <... sendmsg resumed>) = -1 ENODATA (No data available) [ 75.841051][ T5233] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 75.849484][ T5233] RAX: ffffffffffffffc3 RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [ 75.857453][ T5233] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 75.865526][ T5233] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 75.873519][ T5233] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 75.881495][ T5233] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 75.889563][ T5233] [ 75.903834][ T5235] FAULT_INJECTION: forcing a failure. [ 75.903834][ T5235] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 75.917020][ T5235] CPU: 1 UID: 0 PID: 5235 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 75.927782][ T5235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 75.937835][ T5235] Call Trace: [ 75.941109][ T5235] [ 75.944036][ T5235] dump_stack_lvl+0x241/0x360 [ 75.948733][ T5235] ? __pfx_dump_stack_lvl+0x10/0x10 [ 75.953936][ T5235] ? __pfx__printk+0x10/0x10 [ 75.958532][ T5235] ? bpf_trace_run4+0x244/0x590 [ 75.963469][ T5235] ? rcu_is_watching+0x15/0xb0 [ 75.968253][ T5235] ? bpf_trace_run4+0x244/0x590 [ 75.973101][ T5235] ? lock_acquire+0xe3/0x550 [ 75.977697][ T5235] should_fail_ex+0x3b0/0x4e0 [ 75.982397][ T5235] strncpy_from_user+0x36/0x250 [ 75.987254][ T5235] strncpy_from_user_nofault+0x71/0x140 [ 75.992889][ T5235] bpf_probe_read_compat_str+0xe9/0x180 [ 75.998451][ T5235] ? bpf_trace_run4+0x244/0x590 [ 76.003297][ T5235] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 76.008840][ T5235] bpf_trace_run4+0x334/0x590 [ 76.013515][ T5235] ? psi_group_change+0xb88/0x11c0 [ 76.018655][ T5235] ? __pfx_bpf_trace_run4+0x10/0x10 [ 76.023872][ T5235] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 76.029961][ T5235] __traceiter_sched_switch+0x98/0xd0 [ 76.035354][ T5235] __schedule+0x22f8/0x4ae0 [ 76.039876][ T5235] ? schedule+0x90/0x320 [ 76.044128][ T5235] ? schedule+0x90/0x320 [ 76.048415][ T5235] ? lock_release+0xbf/0xa30 [ 76.053014][ T5235] ? __pfx___schedule+0x10/0x10 [ 76.057873][ T5235] ? __pfx_lock_release+0x10/0x10 [ 76.062904][ T5235] ? _raw_spin_lock_irq+0xdf/0x120 [ 76.068104][ T5235] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 76.074440][ T5235] ? schedule+0x90/0x320 [ 76.078685][ T5235] schedule+0x14b/0x320 [ 76.082948][ T5235] ptrace_stop+0x5b4/0x940 [ 76.087391][ T5235] ptrace_notify+0x255/0x380 [ 76.092005][ T5235] ? __pfx_ptrace_notify+0x10/0x10 [ 76.097151][ T5235] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 76.103502][ T5235] syscall_exit_work+0xc6/0x190 [ 76.108369][ T5235] syscall_exit_to_user_mode+0x279/0x370 [ 76.114087][ T5235] do_syscall_64+0x100/0x230 [ 76.118677][ T5235] ? clear_bhb_loop+0x35/0x90 [ 76.123351][ T5235] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.129249][ T5235] RIP: 0033:0x7f4acaaaea99 [ 76.133660][ T5235] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [pid 5232] exit_group(0executing program executing program [pid 5219] <... clone resumed>, child_tidptr=0x55555a521650) = 5236 ./strace-static-x86_64: Process 5234 attached [pid 5236] <... set_robust_list resumed>) = 0 [pid 5235] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5233] exit_group(0 [pid 5236] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5235] <... prctl resumed>) = 0 [pid 5236] <... prctl resumed>) = 0 [pid 5235] setpgid(0, 0 [pid 5234] set_robust_list(0x55555a521660, 24 [pid 5233] <... exit_group resumed>) = ? [pid 5236] setpgid(0, 0 [pid 5235] <... setpgid resumed>) = 0 [pid 5235] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5235] write(3, "1000", 4) = 4 [pid 5235] close(3) = 0 [pid 5235] write(1, "executing program\n", 18) = 18 [pid 5235] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5236] <... setpgid resumed>) = 0 [pid 5235] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5234] <... set_robust_list resumed>) = 0 [pid 5233] +++ exited with 0 +++ [pid 5236] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5235] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5218] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5233, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5236] <... openat resumed>) = 3 [pid 5235] <... bpf resumed>) = 3 [pid 5234] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5218] restart_syscall(<... resuming interrupted clone ...> [pid 5236] write(3, "1000", 4 [pid 5235] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5234] <... prctl resumed>) = 0 [pid 5236] <... write resumed>) = 4 [pid 5235] <... bpf resumed>) = 4 [pid 5236] close(3 [pid 5235] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5234] setpgid(0, 0 [pid 5236] <... close resumed>) = 0 [pid 5235] <... socket resumed>) = 5 [pid 5234] <... setpgid resumed>) = 0 [pid 5236] write(1, "executing program\n", 18 [pid 5235] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5236] <... write resumed>) = 18 [pid 5235] <... openat resumed>) = 6 [pid 5234] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5232] <... exit_group resumed>) = ? [pid 5236] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5235] write(6, "6", 1) = 1 [pid 5234] <... openat resumed>) = 3 [pid 5236] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5235] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5234] write(3, "1000", 4 [pid 5236] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5235] <... sendmsg resumed>) = -1 ENODATA (No data available) [pid 5218] <... restart_syscall resumed>) = 0 [pid 5235] exit_group(0 [pid 5234] <... write resumed>) = 4 [pid 5235] <... exit_group resumed>) = ? [pid 5234] close(3 [pid 5236] <... bpf resumed>) = 3 [pid 5234] <... close resumed>) = 0 [pid 5218] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLDexecuting program ./strace-static-x86_64: Process 5237 attached [pid 5236] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5234] write(1, "executing program\n", 18 [pid 5237] set_robust_list(0x55555a521660, 24 [pid 5218] <... clone resumed>, child_tidptr=0x55555a521650) = 5237 [pid 5237] <... set_robust_list resumed>) = 0 [pid 5237] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5234] <... write resumed>) = 18 [pid 5237] <... prctl resumed>) = 0 [pid 5237] setpgid(0, 0) = 0 [pid 5237] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5234] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5237] <... openat resumed>) = 3 [pid 5237] write(3, "1000", 4) = 4 [pid 5237] close(3) = 0 [pid 5237] write(1, "executing program\n", 18executing program ) = 18 [pid 5234] <... bpf resumed>) = -1 EFAULT (Bad address) [ 76.153267][ T5235] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 76.161679][ T5235] RAX: ffffffffffffffc3 RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [ 76.169646][ T5235] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 76.177636][ T5235] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 76.186300][ T5235] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 76.194287][ T5235] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 76.202353][ T5235] [pid 5237] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5235] +++ exited with 0 +++ [pid 5234] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5232] +++ exited with 0 +++ [pid 5237] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5224] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5232, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5221] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5235, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5224] restart_syscall(<... resuming interrupted clone ...> [pid 5237] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5234] <... bpf resumed>) = 3 [pid 5221] restart_syscall(<... resuming interrupted clone ...> [pid 5234] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5237] <... bpf resumed>) = 3 [pid 5237] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5221] <... restart_syscall resumed>) = 0 [pid 5221] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5238 attached , child_tidptr=0x55555a521650) = 5238 [pid 5238] set_robust_list(0x55555a521660, 24 [pid 5224] <... restart_syscall resumed>) = 0 [pid 5238] <... set_robust_list resumed>) = 0 [pid 5238] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5224] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5238] setpgid(0, 0) = 0 ./strace-static-x86_64: Process 5239 attached [pid 5238] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5236] <... bpf resumed>) = 4 [pid 5239] set_robust_list(0x55555a521660, 24 [pid 5237] <... bpf resumed>) = 4 [pid 5234] <... bpf resumed>) = 4 [pid 5236] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5239] <... set_robust_list resumed>) = 0 [pid 5237] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5234] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5238] <... openat resumed>) = 3 [pid 5238] write(3, "1000", 4 [pid 5236] <... socket resumed>) = 5 [pid 5238] <... write resumed>) = 4 [pid 5238] close(3) = 0 executing program [pid 5238] write(1, "executing program\n", 18 [pid 5236] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5238] <... write resumed>) = 18 [pid 5237] <... socket resumed>) = 5 [pid 5234] <... socket resumed>) = 5 [pid 5239] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5238] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5239] <... prctl resumed>) = 0 [pid 5237] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5236] <... openat resumed>) = 6 [pid 5234] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5224] <... clone resumed>, child_tidptr=0x55555a521650) = 5239 [pid 5239] setpgid(0, 0 [pid 5238] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5237] <... openat resumed>) = 6 [pid 5236] write(6, "6", 1 [pid 5234] <... openat resumed>) = 6 [pid 5239] <... setpgid resumed>) = 0 [pid 5238] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5237] write(6, "6", 1 [pid 5236] <... write resumed>) = 1 [ 76.242748][ T5236] FAULT_INJECTION: forcing a failure. [ 76.242748][ T5236] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 76.255847][ T5236] CPU: 0 UID: 0 PID: 5236 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 76.266607][ T5236] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 76.276684][ T5236] Call Trace: [ 76.279965][ T5236] [ 76.282892][ T5236] dump_stack_lvl+0x241/0x360 [ 76.287573][ T5236] ? __pfx_dump_stack_lvl+0x10/0x10 [ 76.292780][ T5236] ? __pfx__printk+0x10/0x10 [ 76.297397][ T5236] ? bpf_trace_run4+0x244/0x590 [ 76.302250][ T5236] ? rcu_is_watching+0x15/0xb0 [ 76.307014][ T5236] ? bpf_trace_run4+0x244/0x590 [ 76.311863][ T5236] ? lock_acquire+0xe3/0x550 [ 76.316565][ T5236] should_fail_ex+0x3b0/0x4e0 [ 76.321250][ T5236] strncpy_from_user+0x36/0x250 [ 76.326123][ T5236] strncpy_from_user_nofault+0x71/0x140 [ 76.331672][ T5236] bpf_probe_read_compat_str+0xe9/0x180 [ 76.337234][ T5236] ? bpf_trace_run4+0x244/0x590 [ 76.342101][ T5236] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 76.347566][ T5236] bpf_trace_run4+0x334/0x590 [ 76.352253][ T5236] ? psi_group_change+0xb88/0x11c0 [ 76.357377][ T5236] ? __pfx_bpf_trace_run4+0x10/0x10 [ 76.362588][ T5236] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 76.368666][ T5236] __traceiter_sched_switch+0x98/0xd0 [ 76.374051][ T5236] __schedule+0x22f8/0x4ae0 [ 76.378576][ T5236] ? schedule+0x90/0x320 [ 76.382832][ T5236] ? schedule+0x90/0x320 [ 76.387092][ T5236] ? lock_release+0xbf/0xa30 [ 76.391697][ T5236] ? __pfx___schedule+0x10/0x10 [ 76.396588][ T5236] ? __pfx_lock_release+0x10/0x10 [ 76.401628][ T5236] ? _raw_spin_lock_irq+0xdf/0x120 [ 76.406842][ T5236] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 76.413197][ T5236] ? schedule+0x90/0x320 [ 76.417451][ T5236] schedule+0x14b/0x320 [ 76.421620][ T5236] ptrace_stop+0x5b4/0x940 [ 76.426052][ T5236] ptrace_notify+0x255/0x380 [ 76.430679][ T5236] ? __pfx_ptrace_notify+0x10/0x10 [ 76.435816][ T5236] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 76.442162][ T5236] ? rcu_is_watching+0x15/0xb0 [ 76.446934][ T5236] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 76.453279][ T5236] ? rcu_is_watching+0x15/0xb0 [ 76.458076][ T5236] syscall_trace_enter+0x5d/0x150 [ 76.463113][ T5236] do_syscall_64+0xcc/0x230 [ 76.467624][ T5236] ? clear_bhb_loop+0x35/0x90 [ 76.472306][ T5236] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.478233][ T5236] RIP: 0033:0x7f4acaaaea99 [ 76.482659][ T5236] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 76.502284][ T5236] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 76.511229][ T5236] RAX: ffffffffffffffda RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [ 76.519296][ T5236] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 76.527273][ T5236] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 76.535273][ T5236] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [pid 5234] write(6, "6", 1 [pid 5239] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5238] <... bpf resumed>) = 3 [pid 5237] <... write resumed>) = 1 [ 76.543253][ T5236] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 76.551240][ T5236] [ 76.558235][ T5237] FAULT_INJECTION: forcing a failure. [ 76.558235][ T5237] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 76.571314][ T5237] CPU: 0 UID: 0 PID: 5237 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 76.582086][ T5237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 76.592191][ T5237] Call Trace: [ 76.595483][ T5237] [ 76.598417][ T5237] dump_stack_lvl+0x241/0x360 [ 76.603096][ T5237] ? __pfx_dump_stack_lvl+0x10/0x10 [ 76.608394][ T5237] ? __pfx__printk+0x10/0x10 [ 76.612980][ T5237] ? bpf_trace_run4+0x244/0x590 [ 76.617836][ T5237] ? rcu_is_watching+0x15/0xb0 [ 76.622598][ T5237] ? bpf_trace_run4+0x244/0x590 [ 76.627558][ T5237] ? lock_acquire+0xe3/0x550 [ 76.632177][ T5237] should_fail_ex+0x3b0/0x4e0 [ 76.636878][ T5237] strncpy_from_user+0x36/0x250 [ 76.641750][ T5237] strncpy_from_user_nofault+0x71/0x140 [ 76.647472][ T5237] bpf_probe_read_compat_str+0xe9/0x180 [ 76.653110][ T5237] ? bpf_trace_run4+0x244/0x590 [ 76.657965][ T5237] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 76.663419][ T5237] bpf_trace_run4+0x334/0x590 [ 76.668111][ T5237] ? psi_group_change+0xb88/0x11c0 [ 76.673236][ T5237] ? __pfx_bpf_trace_run4+0x10/0x10 [ 76.678466][ T5237] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 76.684543][ T5237] __traceiter_sched_switch+0x98/0xd0 [ 76.689926][ T5237] __schedule+0x22f8/0x4ae0 [ 76.694484][ T5237] ? schedule+0x90/0x320 [ 76.698759][ T5237] ? schedule+0x90/0x320 [ 76.703006][ T5237] ? lock_release+0xbf/0xa30 [ 76.707614][ T5237] ? __pfx___schedule+0x10/0x10 [ 76.712502][ T5237] ? __pfx_lock_release+0x10/0x10 [ 76.717548][ T5237] ? _raw_spin_lock_irq+0xdf/0x120 [ 76.722674][ T5237] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 76.729019][ T5237] ? schedule+0x90/0x320 [ 76.733270][ T5237] schedule+0x14b/0x320 [ 76.737441][ T5237] ptrace_stop+0x5b4/0x940 [ 76.741870][ T5237] ptrace_notify+0x255/0x380 [ 76.746469][ T5237] ? __pfx_ptrace_notify+0x10/0x10 [ 76.751591][ T5237] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 76.757930][ T5237] ? rcu_is_watching+0x15/0xb0 [ 76.762699][ T5237] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 76.769133][ T5237] ? rcu_is_watching+0x15/0xb0 [ 76.773999][ T5237] syscall_trace_enter+0x5d/0x150 [ 76.779035][ T5237] do_syscall_64+0xcc/0x230 [ 76.783572][ T5237] ? clear_bhb_loop+0x35/0x90 [ 76.788259][ T5237] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.794164][ T5237] RIP: 0033:0x7f4acaaaea99 [ 76.798588][ T5237] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 76.818390][ T5237] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 76.826827][ T5237] RAX: ffffffffffffffda RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [ 76.834919][ T5237] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [pid 5236] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5234] <... write resumed>) = 1 [ 76.842898][ T5237] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 76.850874][ T5237] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 76.858941][ T5237] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 76.866923][ T5237] [ 76.873093][ T5234] FAULT_INJECTION: forcing a failure. [ 76.873093][ T5234] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 76.886154][ T5234] CPU: 0 UID: 0 PID: 5234 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 76.896914][ T5234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 76.906981][ T5234] Call Trace: [ 76.910283][ T5234] [ 76.913224][ T5234] dump_stack_lvl+0x241/0x360 [ 76.917922][ T5234] ? __pfx_dump_stack_lvl+0x10/0x10 [ 76.923315][ T5234] ? __pfx__printk+0x10/0x10 [ 76.927937][ T5234] ? bpf_trace_run4+0x244/0x590 [ 76.932796][ T5234] ? rcu_is_watching+0x15/0xb0 [ 76.937560][ T5234] ? bpf_trace_run4+0x244/0x590 [ 76.942436][ T5234] ? lock_acquire+0xe3/0x550 [ 76.947035][ T5234] should_fail_ex+0x3b0/0x4e0 [ 76.951741][ T5234] strncpy_from_user+0x36/0x250 [ 76.956599][ T5234] strncpy_from_user_nofault+0x71/0x140 [ 76.962169][ T5234] bpf_probe_read_compat_str+0xe9/0x180 [ 76.967722][ T5234] ? bpf_trace_run4+0x244/0x590 [ 76.972571][ T5234] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 76.978122][ T5234] bpf_trace_run4+0x334/0x590 [ 76.982812][ T5234] ? psi_group_change+0xb88/0x11c0 [ 76.987937][ T5234] ? __pfx_bpf_trace_run4+0x10/0x10 [ 76.993277][ T5234] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 76.999350][ T5234] __traceiter_sched_switch+0x98/0xd0 [ 77.004730][ T5234] __schedule+0x22f8/0x4ae0 [ 77.009252][ T5234] ? schedule+0x90/0x320 [ 77.013506][ T5234] ? schedule+0x90/0x320 [ 77.017758][ T5234] ? lock_release+0xbf/0xa30 [ 77.022362][ T5234] ? __pfx___schedule+0x10/0x10 [ 77.027227][ T5234] ? __pfx_lock_release+0x10/0x10 [ 77.032265][ T5234] ? _raw_spin_lock_irq+0xdf/0x120 [ 77.037390][ T5234] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 77.043738][ T5234] ? schedule+0x90/0x320 [ 77.047991][ T5234] schedule+0x14b/0x320 [ 77.052331][ T5234] ptrace_stop+0x5b4/0x940 [ 77.056784][ T5234] ptrace_notify+0x255/0x380 [ 77.061384][ T5234] ? __pfx_ptrace_notify+0x10/0x10 [ 77.066504][ T5234] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 77.072845][ T5234] ? rcu_is_watching+0x15/0xb0 [ 77.077616][ T5234] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 77.084044][ T5234] ? rcu_is_watching+0x15/0xb0 [ 77.088827][ T5234] syscall_trace_enter+0x5d/0x150 [ 77.093907][ T5234] do_syscall_64+0xcc/0x230 [ 77.098431][ T5234] ? clear_bhb_loop+0x35/0x90 [ 77.103116][ T5234] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 77.109125][ T5234] RIP: 0033:0x7f4acaaaea99 [ 77.113556][ T5234] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 77.133341][ T5234] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [pid 5239] <... openat resumed>) = 3 [pid 5238] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5237] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5236] <... sendmsg resumed>) = -1 ENODATA (No data available) [pid 5234] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5239] write(3, "1000", 4 [pid 5237] <... sendmsg resumed>) = -1 ENODATA (No data available) [pid 5236] exit_group(0 [pid 5234] <... sendmsg resumed>) = -1 ENODATA (No data available) [pid 5239] <... write resumed>) = 4 [pid 5237] exit_group(0 [pid 5236] <... exit_group resumed>) = ? [pid 5234] exit_group(0 [pid 5239] close(3 [pid 5238] <... bpf resumed>) = 4 [pid 5237] <... exit_group resumed>) = ? [pid 5236] +++ exited with 0 +++ [pid 5234] <... exit_group resumed>) = ? [pid 5239] <... close resumed>) = 0 executing program [pid 5238] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5237] +++ exited with 0 +++ [pid 5239] write(1, "executing program\n", 18 [pid 5219] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5236, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5218] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5237, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5239] <... write resumed>) = 18 [pid 5238] <... socket resumed>) = 5 [pid 5239] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148) = -1 EFAULT (Bad address) [pid 5238] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5239] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148) = 3 [pid 5238] <... openat resumed>) = 6 [pid 5239] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5238] write(6, "6", 1) = 1 [pid 5239] <... bpf resumed>) = 4 [pid 5238] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5234] +++ exited with 0 +++ [ 77.141763][ T5234] RAX: ffffffffffffffda RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [ 77.149760][ T5234] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 77.157742][ T5234] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 77.165717][ T5234] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 77.173713][ T5234] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 77.181806][ T5234] [ 77.207320][ T5238] FAULT_INJECTION: forcing a failure. [ 77.207320][ T5238] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 77.220428][ T5238] CPU: 0 UID: 0 PID: 5238 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 77.231291][ T5238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 77.241446][ T5238] Call Trace: [ 77.244729][ T5238] [ 77.247658][ T5238] dump_stack_lvl+0x241/0x360 [ 77.252344][ T5238] ? __pfx_dump_stack_lvl+0x10/0x10 [ 77.257629][ T5238] ? __pfx__printk+0x10/0x10 [ 77.262228][ T5238] ? bpf_trace_run4+0x244/0x590 [ 77.267076][ T5238] ? rcu_is_watching+0x15/0xb0 [ 77.271883][ T5238] ? bpf_trace_run4+0x244/0x590 [ 77.276919][ T5238] ? lock_acquire+0xe3/0x550 [ 77.281558][ T5238] should_fail_ex+0x3b0/0x4e0 [ 77.286255][ T5238] strncpy_from_user+0x36/0x250 [ 77.291121][ T5238] strncpy_from_user_nofault+0x71/0x140 [ 77.296698][ T5238] bpf_probe_read_compat_str+0xe9/0x180 [ 77.302253][ T5238] ? bpf_trace_run4+0x244/0x590 [ 77.307101][ T5238] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 77.312556][ T5238] bpf_trace_run4+0x334/0x590 [ 77.317235][ T5238] ? psi_group_change+0xb88/0x11c0 [ 77.322347][ T5238] ? __pfx_bpf_trace_run4+0x10/0x10 [ 77.327545][ T5238] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 77.333609][ T5238] __traceiter_sched_switch+0x98/0xd0 [ 77.338980][ T5238] __schedule+0x22f8/0x4ae0 [ 77.343491][ T5238] ? schedule+0x90/0x320 [ 77.347737][ T5238] ? schedule+0x90/0x320 [ 77.351991][ T5238] ? lock_release+0xbf/0xa30 [ 77.356586][ T5238] ? __pfx___schedule+0x10/0x10 [ 77.361447][ T5238] ? __pfx_lock_release+0x10/0x10 [ 77.366477][ T5238] ? _raw_spin_lock_irq+0xdf/0x120 [ 77.371625][ T5238] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 77.377976][ T5238] ? schedule+0x90/0x320 [ 77.382259][ T5238] schedule+0x14b/0x320 [ 77.386437][ T5238] ptrace_stop+0x5b4/0x940 [ 77.390869][ T5238] ptrace_notify+0x255/0x380 [ 77.395492][ T5238] ? __pfx_ptrace_notify+0x10/0x10 [ 77.400633][ T5238] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 77.406972][ T5238] syscall_exit_work+0xc6/0x190 [ 77.411906][ T5238] syscall_exit_to_user_mode+0x279/0x370 [ 77.417597][ T5238] do_syscall_64+0x100/0x230 [ 77.422222][ T5238] ? clear_bhb_loop+0x35/0x90 [ 77.426896][ T5238] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 77.432796][ T5238] RIP: 0033:0x7f4acaaaea99 [ 77.437210][ T5238] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [pid 5239] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 5 [pid 5238] <... sendmsg resumed>) = -1 ENODATA (No data available) [pid 5239] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5238] exit_group(0 [pid 5225] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5234, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5239] <... openat resumed>) = 6 [pid 5238] <... exit_group resumed>) = ? [pid 5239] write(6, "6", 1 [pid 5219] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5218] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5240 attached [pid 5239] <... write resumed>) = 1 [pid 5225] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5241 attached [pid 5240] set_robust_list(0x55555a521660, 24 [pid 5239] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5219] <... clone resumed>, child_tidptr=0x55555a521650) = 5241 ./strace-static-x86_64: Process 5242 attached [pid 5241] set_robust_list(0x55555a521660, 24 [pid 5240] <... set_robust_list resumed>) = 0 [pid 5239] <... sendmsg resumed>) = -1 ENODATA (No data available) [pid 5242] set_robust_list(0x55555a521660, 24 [pid 5241] <... set_robust_list resumed>) = 0 [ 77.456831][ T5238] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 77.465240][ T5238] RAX: ffffffffffffffc3 RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [ 77.473237][ T5238] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 77.481208][ T5238] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 77.489173][ T5238] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 77.497155][ T5238] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 77.505129][ T5238] [pid 5240] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5225] <... clone resumed>, child_tidptr=0x55555a521650) = 5242 [pid 5218] <... clone resumed>, child_tidptr=0x55555a521650) = 5240 [pid 5242] <... set_robust_list resumed>) = 0 [pid 5241] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5240] <... prctl resumed>) = 0 [pid 5242] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5241] <... prctl resumed>) = 0 [pid 5240] setpgid(0, 0 [pid 5241] setpgid(0, 0 [pid 5240] <... setpgid resumed>) = 0 [pid 5241] <... setpgid resumed>) = 0 [pid 5240] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5241] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5240] <... openat resumed>) = 3 [pid 5242] <... prctl resumed>) = 0 [pid 5241] <... openat resumed>) = 3 [ 77.517620][ T5239] FAULT_INJECTION: forcing a failure. [ 77.517620][ T5239] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 77.531190][ T5239] CPU: 1 UID: 0 PID: 5239 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 77.542080][ T5239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 77.552151][ T5239] Call Trace: [ 77.555438][ T5239] [ 77.558373][ T5239] dump_stack_lvl+0x241/0x360 [ 77.563062][ T5239] ? __pfx_dump_stack_lvl+0x10/0x10 [ 77.568267][ T5239] ? __pfx__printk+0x10/0x10 [ 77.572869][ T5239] should_fail_ex+0x3b0/0x4e0 [ 77.577574][ T5239] prepare_alloc_pages+0x1da/0x5d0 [ 77.582716][ T5239] __alloc_pages_noprof+0x166/0x6c0 [ 77.587930][ T5239] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 77.593760][ T5239] ? rcu_is_watching+0x15/0xb0 [ 77.598560][ T5239] ? page_ext_get+0x20/0x2a0 [ 77.603170][ T5239] ? rcu_read_lock_held+0xa/0x50 [ 77.608116][ T5239] alloc_pages_mpol_noprof+0x3e8/0x680 [ 77.613594][ T5239] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 77.619678][ T5239] ? rcu_is_watching+0x15/0xb0 [ 77.624456][ T5239] vma_alloc_folio_noprof+0x12e/0x230 [ 77.629856][ T5239] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 77.635755][ T5239] ? lock_acquire+0xe3/0x550 [ 77.640360][ T5239] ? do_raw_spin_unlock+0x13c/0x8b0 [ 77.645600][ T5239] folio_prealloc+0x31/0x170 [ 77.650232][ T5239] do_wp_page+0x11c4/0x52d0 [ 77.654774][ T5239] ? __pfx_do_wp_page+0x10/0x10 [ 77.659648][ T5239] ? lock_acquire+0xe3/0x550 [ 77.664262][ T5239] ? __pfx_lock_acquire+0x10/0x10 [ 77.669311][ T5239] ? do_raw_spin_lock+0x14f/0x370 [ 77.674378][ T5239] ? rcu_is_watching+0x15/0xb0 [ 77.679189][ T5239] handle_pte_fault+0x10e3/0x6800 [ 77.684243][ T5239] ? __pfx_handle_pte_fault+0x10/0x10 [ 77.689721][ T5239] ? lock_release+0xbf/0xa30 [ 77.694415][ T5239] ? memcg_rstat_updated+0x7b/0x2f0 [ 77.699621][ T5239] ? __pfx_lock_release+0x10/0x10 [ 77.704666][ T5239] ? __count_memcg_events+0x189/0x290 [ 77.710056][ T5239] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 77.716486][ T5239] ? lock_acquire+0xe3/0x550 [ 77.721094][ T5239] ? rcu_is_watching+0x15/0xb0 [ 77.725870][ T5239] ? lock_acquire+0xe3/0x550 [ 77.730477][ T5239] ? __pfx_lock_acquire+0x10/0x10 [ 77.735512][ T5239] ? lock_acquire+0xe3/0x550 [ 77.740115][ T5239] handle_mm_fault+0x1053/0x1ad0 [ 77.745070][ T5239] ? __pfx_handle_mm_fault+0x10/0x10 [ 77.750379][ T5239] ? lock_vma_under_rcu+0x602/0x790 [ 77.755591][ T5239] ? lock_vma_under_rcu+0x1dd/0x790 [ 77.760863][ T5239] ? rcu_is_watching+0x15/0xb0 [ 77.765739][ T5239] exc_page_fault+0x459/0x8c0 [ 77.770432][ T5239] asm_exc_page_fault+0x26/0x30 [ 77.775299][ T5239] RIP: 0033:0x7f4acaa7d340 [ 77.779722][ T5239] Code: 84 dd fe ff ff 4c 89 e7 e8 ad ed 00 00 e9 d0 fe ff ff 0f 1f 84 00 00 00 00 00 49 8b 06 48 89 45 00 48 85 c0 0f 85 85 00 00 00 05 a9 3e 0a 00 01 31 c0 87 05 79 3a 0a 00 83 f8 01 0f 8f 84 00 [ 77.799421][ T5239] RSP: 002b:00007ffdb963ee50 EFLAGS: 00010246 [ 77.805525][ T5239] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000004 [pid 5242] setpgid(0, 0 [pid 5240] write(3, "1000", 4 [pid 5242] <... setpgid resumed>) = 0 [pid 5241] write(3, "1000", 4 [pid 5240] <... write resumed>) = 4 [pid 5242] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5241] <... write resumed>) = 4 [pid 5240] close(3 [pid 5242] <... openat resumed>) = 3 [pid 5241] close(3 [pid 5240] <... close resumed>) = 0 [pid 5240] write(1, "executing program\n", 18executing program [pid 5242] write(3, "1000", 4 [pid 5241] <... close resumed>) = 0 [pid 5242] <... write resumed>) = 4 [pid 5241] write(1, "executing program\n", 18 [pid 5240] <... write resumed>) = 18 executing program [pid 5242] close(3 [pid 5241] <... write resumed>) = 18 [pid 5240] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148executing program [pid 5242] <... close resumed>) = 0 [pid 5241] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5240] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5240] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5241] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5241] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5239] exit_group(0 [pid 5242] write(1, "executing program\n", 18 [pid 5239] <... exit_group resumed>) = ? [pid 5242] <... write resumed>) = 18 [pid 5242] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148) = -1 EFAULT (Bad address) [pid 5242] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148) = 3 [pid 5241] <... bpf resumed>) = 3 [pid 5240] <... bpf resumed>) = 3 [pid 5239] +++ exited with 0 +++ [pid 5238] +++ exited with 0 +++ [pid 5242] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5241] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5240] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5224] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5239, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} --- [pid 5221] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5238, si_uid=0, si_status=0, si_utime=0, si_stime=31 /* 0.31 s */} --- [pid 5221] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5242] <... bpf resumed>) = 4 [pid 5241] <... bpf resumed>) = 4 [pid 5240] <... bpf resumed>) = 4 ./strace-static-x86_64: Process 5244 attached [pid 5242] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5241] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5240] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5221] <... clone resumed>, child_tidptr=0x55555a521650) = 5244 [pid 5242] <... socket resumed>) = 5 [pid 5240] <... socket resumed>) = 5 [pid 5224] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5245 attached [pid 5244] set_robust_list(0x55555a521660, 24 [pid 5242] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5241] <... socket resumed>) = 5 [pid 5240] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5244] <... set_robust_list resumed>) = 0 [pid 5224] <... clone resumed>, child_tidptr=0x55555a521650) = 5245 [pid 5245] set_robust_list(0x55555a521660, 24 [pid 5244] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5242] <... openat resumed>) = 6 [pid 5241] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5240] <... openat resumed>) = 6 [pid 5245] <... set_robust_list resumed>) = 0 [pid 5242] write(6, "6", 1 [pid 5245] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5244] <... prctl resumed>) = 0 [pid 5242] <... write resumed>) = 1 [pid 5241] <... openat resumed>) = 6 [ 77.813504][ T5239] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00007f4acab1fad8 [ 77.821481][ T5239] RBP: 00007f4acab1e118 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 77.829457][ T5239] R10: 0000000000000001 R11: 0000000000000246 R12: 00007f4acab20dc8 [ 77.837434][ T5239] R13: 0000000000000000 R14: 00007f4acab20de0 R15: 00007f4acaa761d0 [ 77.845507][ T5239] [ 77.849743][ T5239] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 77.889581][ T5242] FAULT_INJECTION: forcing a failure. [ 77.889581][ T5242] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 77.902676][ T5242] CPU: 0 UID: 0 PID: 5242 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 77.913545][ T5242] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 77.923684][ T5242] Call Trace: [ 77.926979][ T5242] [ 77.929904][ T5242] dump_stack_lvl+0x241/0x360 [ 77.934588][ T5242] ? __pfx_dump_stack_lvl+0x10/0x10 [ 77.939803][ T5242] ? __pfx__printk+0x10/0x10 [ 77.944391][ T5242] ? bpf_trace_run4+0x244/0x590 [ 77.949259][ T5242] ? rcu_is_watching+0x15/0xb0 [ 77.954021][ T5242] ? bpf_trace_run4+0x244/0x590 [ 77.958868][ T5242] ? lock_acquire+0xe3/0x550 [ 77.963473][ T5242] should_fail_ex+0x3b0/0x4e0 [ 77.968177][ T5242] strncpy_from_user+0x36/0x250 [ 77.973034][ T5242] strncpy_from_user_nofault+0x71/0x140 [ 77.978582][ T5242] bpf_probe_read_compat_str+0xe9/0x180 [ 77.984235][ T5242] ? bpf_trace_run4+0x244/0x590 [ 77.989090][ T5242] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 77.994552][ T5242] bpf_trace_run4+0x334/0x590 [ 77.999239][ T5242] ? psi_group_change+0xb88/0x11c0 [ 78.004361][ T5242] ? __pfx_bpf_trace_run4+0x10/0x10 [ 78.009571][ T5242] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 78.015658][ T5242] __traceiter_sched_switch+0x98/0xd0 [ 78.021042][ T5242] __schedule+0x22f8/0x4ae0 [ 78.025564][ T5242] ? schedule+0x90/0x320 [ 78.029822][ T5242] ? schedule+0x90/0x320 [ 78.034100][ T5242] ? lock_release+0xbf/0xa30 [ 78.038714][ T5242] ? __pfx___schedule+0x10/0x10 [ 78.043580][ T5242] ? __pfx_lock_release+0x10/0x10 [ 78.048618][ T5242] ? _raw_spin_lock_irq+0xdf/0x120 [ 78.053740][ T5242] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 78.060083][ T5242] ? schedule+0x90/0x320 [ 78.064337][ T5242] schedule+0x14b/0x320 [ 78.068505][ T5242] ptrace_stop+0x5b4/0x940 [ 78.072935][ T5242] ptrace_notify+0x255/0x380 [ 78.077538][ T5242] ? __pfx_ptrace_notify+0x10/0x10 [ 78.082692][ T5242] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 78.089033][ T5242] ? rcu_is_watching+0x15/0xb0 [ 78.093801][ T5242] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 78.100143][ T5242] ? rcu_is_watching+0x15/0xb0 [ 78.104953][ T5242] syscall_trace_enter+0x5d/0x150 [ 78.109992][ T5242] do_syscall_64+0xcc/0x230 [ 78.114504][ T5242] ? clear_bhb_loop+0x35/0x90 [ 78.119271][ T5242] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 78.125188][ T5242] RIP: 0033:0x7f4acaaaea99 [ 78.129608][ T5242] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 78.149394][ T5242] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 78.157818][ T5242] RAX: ffffffffffffffda RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [ 78.165796][ T5242] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 78.173769][ T5242] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 78.181756][ T5242] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [pid 5240] write(6, "6", 1 [pid 5245] <... prctl resumed>) = 0 [ 78.189816][ T5242] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 78.197794][ T5242] [ 78.204372][ T5240] FAULT_INJECTION: forcing a failure. [ 78.204372][ T5240] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 78.217862][ T5240] CPU: 1 UID: 0 PID: 5240 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 78.228614][ T5240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 78.238661][ T5240] Call Trace: [ 78.241939][ T5240] [ 78.244864][ T5240] dump_stack_lvl+0x241/0x360 [ 78.249554][ T5240] ? __pfx_dump_stack_lvl+0x10/0x10 [ 78.254746][ T5240] ? __pfx__printk+0x10/0x10 [ 78.259330][ T5240] ? bpf_trace_run4+0x244/0x590 [ 78.264268][ T5240] ? rcu_is_watching+0x15/0xb0 [ 78.269044][ T5240] ? bpf_trace_run4+0x244/0x590 [ 78.273894][ T5240] ? lock_acquire+0xe3/0x550 [ 78.278494][ T5240] should_fail_ex+0x3b0/0x4e0 [ 78.283175][ T5240] strncpy_from_user+0x36/0x250 [ 78.288027][ T5240] strncpy_from_user_nofault+0x71/0x140 [ 78.293568][ T5240] bpf_probe_read_compat_str+0xe9/0x180 [ 78.299116][ T5240] ? bpf_trace_run4+0x244/0x590 [ 78.303962][ T5240] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 78.309501][ T5240] bpf_trace_run4+0x334/0x590 [ 78.314191][ T5240] ? psi_group_change+0xb88/0x11c0 [ 78.319301][ T5240] ? __pfx_bpf_trace_run4+0x10/0x10 [ 78.324500][ T5240] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 78.330562][ T5240] __traceiter_sched_switch+0x98/0xd0 [ 78.335935][ T5240] __schedule+0x22f8/0x4ae0 [ 78.340461][ T5240] ? schedule+0x90/0x320 [ 78.344792][ T5240] ? schedule+0x90/0x320 [ 78.349032][ T5240] ? lock_release+0xbf/0xa30 [ 78.353657][ T5240] ? __pfx___schedule+0x10/0x10 [ 78.358541][ T5240] ? __pfx_lock_release+0x10/0x10 [ 78.363585][ T5240] ? _raw_spin_lock_irq+0xdf/0x120 [ 78.368697][ T5240] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 78.375027][ T5240] ? schedule+0x90/0x320 [ 78.379271][ T5240] schedule+0x14b/0x320 [ 78.383429][ T5240] ptrace_stop+0x5b4/0x940 [ 78.387846][ T5240] ptrace_notify+0x255/0x380 [ 78.392454][ T5240] ? __pfx_ptrace_notify+0x10/0x10 [ 78.397576][ T5240] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 78.404077][ T5240] ? rcu_is_watching+0x15/0xb0 [ 78.408930][ T5240] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 78.415369][ T5240] ? rcu_is_watching+0x15/0xb0 [ 78.420217][ T5240] syscall_trace_enter+0x5d/0x150 [ 78.425242][ T5240] do_syscall_64+0xcc/0x230 [ 78.429737][ T5240] ? clear_bhb_loop+0x35/0x90 [ 78.434420][ T5240] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 78.440313][ T5240] RIP: 0033:0x7f4acaaaea99 [ 78.444733][ T5240] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 78.464450][ T5240] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 78.472859][ T5240] RAX: ffffffffffffffda RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [ 78.480832][ T5240] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [pid 5244] setpgid(0, 0 [pid 5242] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5241] write(6, "6", 1 [pid 5240] <... write resumed>) = 1 [pid 5245] setpgid(0, 0 [pid 5244] <... setpgid resumed>) = 0 [pid 5242] <... sendmsg resumed>) = -1 ENODATA (No data available) [ 78.488796][ T5240] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 78.496846][ T5240] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 78.504810][ T5240] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 78.512898][ T5240] [ 78.520544][ T5241] FAULT_INJECTION: forcing a failure. [ 78.520544][ T5241] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 78.533695][ T5241] CPU: 1 UID: 0 PID: 5241 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 78.544451][ T5241] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 78.554498][ T5241] Call Trace: [ 78.557776][ T5241] [ 78.560703][ T5241] dump_stack_lvl+0x241/0x360 [ 78.565388][ T5241] ? __pfx_dump_stack_lvl+0x10/0x10 [ 78.570603][ T5241] ? __pfx__printk+0x10/0x10 [ 78.575188][ T5241] ? bpf_trace_run4+0x244/0x590 [ 78.580038][ T5241] ? rcu_is_watching+0x15/0xb0 [ 78.584799][ T5241] ? bpf_trace_run4+0x244/0x590 [ 78.589647][ T5241] ? lock_acquire+0xe3/0x550 [ 78.594265][ T5241] should_fail_ex+0x3b0/0x4e0 [ 78.598948][ T5241] strncpy_from_user+0x36/0x250 [ 78.603812][ T5241] strncpy_from_user_nofault+0x71/0x140 [ 78.609358][ T5241] bpf_probe_read_compat_str+0xe9/0x180 [ 78.614918][ T5241] ? bpf_trace_run4+0x244/0x590 [ 78.619779][ T5241] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 78.625404][ T5241] bpf_trace_run4+0x334/0x590 [ 78.630199][ T5241] ? psi_group_change+0xb88/0x11c0 [ 78.635311][ T5241] ? __pfx_bpf_trace_run4+0x10/0x10 [ 78.640519][ T5241] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 78.646591][ T5241] __traceiter_sched_switch+0x98/0xd0 [ 78.651962][ T5241] __schedule+0x22f8/0x4ae0 [ 78.656471][ T5241] ? schedule+0x90/0x320 [ 78.660749][ T5241] ? schedule+0x90/0x320 [ 78.664996][ T5241] ? lock_release+0xbf/0xa30 [ 78.669614][ T5241] ? __pfx___schedule+0x10/0x10 [ 78.674499][ T5241] ? __pfx_lock_release+0x10/0x10 [ 78.679687][ T5241] ? _raw_spin_lock_irq+0xdf/0x120 [ 78.684820][ T5241] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 78.691330][ T5241] ? schedule+0x90/0x320 [ 78.695575][ T5241] schedule+0x14b/0x320 [ 78.699826][ T5241] ptrace_stop+0x5b4/0x940 [ 78.704244][ T5241] ptrace_notify+0x255/0x380 [ 78.708836][ T5241] ? __pfx_ptrace_notify+0x10/0x10 [ 78.713980][ T5241] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 78.720414][ T5241] ? rcu_is_watching+0x15/0xb0 [ 78.725189][ T5241] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 78.731632][ T5241] ? rcu_is_watching+0x15/0xb0 [ 78.736395][ T5241] syscall_trace_enter+0x5d/0x150 [ 78.741452][ T5241] do_syscall_64+0xcc/0x230 [ 78.745976][ T5241] ? clear_bhb_loop+0x35/0x90 [ 78.750656][ T5241] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 78.756758][ T5241] RIP: 0033:0x7f4acaaaea99 [ 78.761179][ T5241] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 78.780854][ T5241] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [pid 5241] <... write resumed>) = 1 [pid 5240] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5245] <... setpgid resumed>) = 0 [pid 5242] exit_group(0 [pid 5240] <... sendmsg resumed>) = -1 ENODATA (No data available) [pid 5245] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5244] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5242] <... exit_group resumed>) = ? [pid 5241] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5245] <... openat resumed>) = 3 [pid 5244] <... openat resumed>) = 3 [pid 5242] +++ exited with 0 +++ [pid 5240] exit_group(0 [pid 5241] <... sendmsg resumed>) = -1 ENODATA (No data available) [pid 5240] <... exit_group resumed>) = ? [pid 5244] write(3, "1000", 4 [pid 5245] write(3, "1000", 4 [pid 5225] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5242, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5245] <... write resumed>) = 4 [pid 5225] restart_syscall(<... resuming interrupted clone ...> [pid 5245] close(3) = 0 executing program [pid 5245] write(1, "executing program\n", 18 [pid 5244] <... write resumed>) = 4 [pid 5241] exit_group(0 [pid 5225] <... restart_syscall resumed>) = 0 [pid 5244] close(3 [pid 5245] <... write resumed>) = 18 [pid 5244] <... close resumed>) = 0 [pid 5241] <... exit_group resumed>) = ? [pid 5245] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 executing program [pid 5244] write(1, "executing program\n", 18) = 18 [pid 5244] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5245] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5244] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5225] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5245] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5244] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148./strace-static-x86_64: Process 5246 attached [pid 5245] <... bpf resumed>) = 3 [pid 5241] +++ exited with 0 +++ [pid 5240] +++ exited with 0 +++ [pid 5219] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5241, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5245] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5219] restart_syscall(<... resuming interrupted clone ...> [pid 5244] <... bpf resumed>) = 3 [pid 5225] <... clone resumed>, child_tidptr=0x55555a521650) = 5246 [pid 5246] set_robust_list(0x55555a521660, 24 [pid 5244] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5219] <... restart_syscall resumed>) = 0 [pid 5218] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5240, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5246] <... set_robust_list resumed>) = 0 [pid 5218] restart_syscall(<... resuming interrupted clone ...> [pid 5246] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5218] <... restart_syscall resumed>) = 0 [pid 5246] <... prctl resumed>) = 0 [pid 5219] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] setpgid(0, 0./strace-static-x86_64: Process 5247 attached ) = 0 [ 78.789355][ T5241] RAX: ffffffffffffffda RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [ 78.797327][ T5241] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 78.805296][ T5241] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 78.813262][ T5241] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 78.821231][ T5241] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 78.829293][ T5241] [pid 5218] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5219] <... clone resumed>, child_tidptr=0x55555a521650) = 5247 ./strace-static-x86_64: Process 5248 attached [pid 5247] set_robust_list(0x55555a521660, 24 [pid 5246] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5245] <... bpf resumed>) = 4 [pid 5244] <... bpf resumed>) = 4 [pid 5248] set_robust_list(0x55555a521660, 24 [pid 5247] <... set_robust_list resumed>) = 0 [pid 5246] <... openat resumed>) = 3 [pid 5245] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5244] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5218] <... clone resumed>, child_tidptr=0x55555a521650) = 5248 [pid 5248] <... set_robust_list resumed>) = 0 [pid 5247] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5248] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5245] <... socket resumed>) = 5 [pid 5248] <... prctl resumed>) = 0 [pid 5247] <... prctl resumed>) = 0 [pid 5246] write(3, "1000", 4 [pid 5245] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5248] setpgid(0, 0 [pid 5247] setpgid(0, 0 [pid 5246] <... write resumed>) = 4 [pid 5245] <... openat resumed>) = 6 [pid 5244] <... socket resumed>) = 5 [pid 5247] <... setpgid resumed>) = 0 [pid 5248] <... setpgid resumed>) = 0 [pid 5244] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5248] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5247] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] close(3 [pid 5248] <... openat resumed>) = 3 [pid 5247] <... openat resumed>) = 3 [pid 5246] <... close resumed>) = 0 [pid 5245] write(6, "6", 1 [pid 5244] <... openat resumed>) = 6 executing program [pid 5248] write(3, "1000", 4 [pid 5246] write(1, "executing program\n", 18 [pid 5245] <... write resumed>) = 1 [pid 5248] <... write resumed>) = 4 [pid 5247] write(3, "1000", 4 [pid 5246] <... write resumed>) = 18 [ 78.885826][ T5245] FAULT_INJECTION: forcing a failure. [ 78.885826][ T5245] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 78.899184][ T5245] CPU: 0 UID: 0 PID: 5245 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 78.909959][ T5245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 78.920032][ T5245] Call Trace: [ 78.923395][ T5245] [ 78.926346][ T5245] dump_stack_lvl+0x241/0x360 [ 78.931043][ T5245] ? __pfx_dump_stack_lvl+0x10/0x10 [ 78.936254][ T5245] ? __pfx__printk+0x10/0x10 [ 78.940853][ T5245] ? bpf_trace_run4+0x244/0x590 [ 78.945725][ T5245] ? rcu_is_watching+0x15/0xb0 [ 78.950502][ T5245] ? bpf_trace_run4+0x244/0x590 [ 78.955365][ T5245] ? lock_acquire+0xe3/0x550 [ 78.960063][ T5245] should_fail_ex+0x3b0/0x4e0 [ 78.964763][ T5245] strncpy_from_user+0x36/0x250 [ 78.969629][ T5245] strncpy_from_user_nofault+0x71/0x140 [ 78.975182][ T5245] bpf_probe_read_compat_str+0xe9/0x180 [ 78.980743][ T5245] ? bpf_trace_run4+0x244/0x590 [ 78.985600][ T5245] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 78.991112][ T5245] bpf_trace_run4+0x334/0x590 [ 78.995827][ T5245] ? psi_group_change+0xb88/0x11c0 [ 79.000956][ T5245] ? __pfx_bpf_trace_run4+0x10/0x10 [ 79.006253][ T5245] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 79.012330][ T5245] __traceiter_sched_switch+0x98/0xd0 [ 79.017712][ T5245] __schedule+0x22f8/0x4ae0 [ 79.022230][ T5245] ? schedule+0x90/0x320 [ 79.026482][ T5245] ? schedule+0x90/0x320 [ 79.030859][ T5245] ? lock_release+0xbf/0xa30 [ 79.035470][ T5245] ? __pfx___schedule+0x10/0x10 [ 79.040334][ T5245] ? __pfx_lock_release+0x10/0x10 [ 79.045373][ T5245] ? _raw_spin_lock_irq+0xdf/0x120 [ 79.050496][ T5245] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 79.056854][ T5245] ? schedule+0x90/0x320 [ 79.061108][ T5245] schedule+0x14b/0x320 [ 79.065280][ T5245] ptrace_stop+0x5b4/0x940 [ 79.069714][ T5245] ptrace_notify+0x255/0x380 [ 79.074314][ T5245] ? __pfx_ptrace_notify+0x10/0x10 [ 79.079458][ T5245] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 79.085801][ T5245] syscall_exit_work+0xc6/0x190 [ 79.090657][ T5245] syscall_exit_to_user_mode+0x279/0x370 [ 79.096300][ T5245] do_syscall_64+0x100/0x230 [ 79.100897][ T5245] ? clear_bhb_loop+0x35/0x90 [ 79.105579][ T5245] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 79.111490][ T5245] RIP: 0033:0x7f4acaaaea99 [ 79.115998][ T5245] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [pid 5245] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5248] close(3 [pid 5247] <... write resumed>) = 4 [pid 5246] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5245] <... sendmsg resumed>) = -1 ENODATA (No data available) [pid 5244] write(6, "6", 1 [pid 5248] <... close resumed>) = 0 [pid 5247] close(3 [pid 5246] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5245] exit_group(0 [pid 5244] <... write resumed>) = 1 [pid 5248] write(1, "executing program\n", 18executing program [pid 5247] <... close resumed>) = 0 [ 79.135701][ T5245] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 79.144123][ T5245] RAX: ffffffffffffffc3 RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [ 79.152186][ T5245] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 79.160182][ T5245] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 79.168161][ T5245] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 79.176148][ T5245] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 79.184237][ T5245] [ 79.195215][ T5244] FAULT_INJECTION: forcing a failure. [ 79.195215][ T5244] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 79.208389][ T5244] CPU: 1 UID: 0 PID: 5244 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 79.219151][ T5244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 79.229223][ T5244] Call Trace: [ 79.232532][ T5244] [ 79.235482][ T5244] dump_stack_lvl+0x241/0x360 [ 79.240171][ T5244] ? __pfx_dump_stack_lvl+0x10/0x10 [ 79.245366][ T5244] ? __pfx__printk+0x10/0x10 [ 79.249972][ T5244] ? bpf_trace_run4+0x244/0x590 [ 79.254847][ T5244] ? rcu_is_watching+0x15/0xb0 [ 79.259631][ T5244] ? bpf_trace_run4+0x244/0x590 [ 79.264486][ T5244] ? lock_acquire+0xe3/0x550 [ 79.269110][ T5244] should_fail_ex+0x3b0/0x4e0 [ 79.273804][ T5244] strncpy_from_user+0x36/0x250 [ 79.278680][ T5244] strncpy_from_user_nofault+0x71/0x140 [ 79.284236][ T5244] bpf_probe_read_compat_str+0xe9/0x180 [ 79.289800][ T5244] ? bpf_trace_run4+0x244/0x590 [ 79.294741][ T5244] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 79.300196][ T5244] bpf_trace_run4+0x334/0x590 [ 79.304872][ T5244] ? psi_group_change+0xb88/0x11c0 [ 79.310005][ T5244] ? __pfx_bpf_trace_run4+0x10/0x10 [ 79.315205][ T5244] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 79.321359][ T5244] __traceiter_sched_switch+0x98/0xd0 [ 79.326731][ T5244] __schedule+0x22f8/0x4ae0 [ 79.331262][ T5244] ? schedule+0x90/0x320 [ 79.335519][ T5244] ? schedule+0x90/0x320 [ 79.339776][ T5244] ? lock_release+0xbf/0xa30 [ 79.344434][ T5244] ? __pfx___schedule+0x10/0x10 [ 79.349388][ T5244] ? __pfx_lock_release+0x10/0x10 [ 79.354426][ T5244] ? _raw_spin_lock_irq+0xdf/0x120 [ 79.359637][ T5244] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 79.365976][ T5244] ? schedule+0x90/0x320 [ 79.370224][ T5244] schedule+0x14b/0x320 [ 79.374415][ T5244] ptrace_stop+0x5b4/0x940 [ 79.378834][ T5244] ptrace_notify+0x255/0x380 [ 79.383427][ T5244] ? __pfx_ptrace_notify+0x10/0x10 [ 79.388646][ T5244] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 79.395032][ T5244] syscall_exit_work+0xc6/0x190 [ 79.399886][ T5244] syscall_exit_to_user_mode+0x279/0x370 [ 79.405523][ T5244] do_syscall_64+0x100/0x230 [ 79.410140][ T5244] ? clear_bhb_loop+0x35/0x90 [ 79.414856][ T5244] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 79.420775][ T5244] RIP: 0033:0x7f4acaaaea99 [ 79.425200][ T5244] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [pid 5246] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5245] <... exit_group resumed>) = ? [pid 5244] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5248] <... write resumed>) = 18 executing program [pid 5247] write(1, "executing program\n", 18 [pid 5246] <... bpf resumed>) = 3 [pid 5245] +++ exited with 0 +++ [pid 5244] <... sendmsg resumed>) = -1 ENODATA (No data available) [pid 5248] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5247] <... write resumed>) = 18 [pid 5246] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5244] exit_group(0 [pid 5248] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5247] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5246] <... bpf resumed>) = 4 [pid 5224] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5245, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5248] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5247] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5246] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5244] <... exit_group resumed>) = ? [pid 5224] restart_syscall(<... resuming interrupted clone ...> [pid 5248] <... bpf resumed>) = 3 [pid 5247] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5246] <... socket resumed>) = 5 [pid 5246] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5247] <... bpf resumed>) = 3 [pid 5246] <... openat resumed>) = 6 [pid 5248] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [ 79.444826][ T5244] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 79.453286][ T5244] RAX: ffffffffffffffc3 RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [ 79.461280][ T5244] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 79.469263][ T5244] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 79.477285][ T5244] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 79.485260][ T5244] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 79.493253][ T5244] [pid 5247] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5246] write(6, "6", 1 [pid 5248] <... bpf resumed>) = 4 [pid 5247] <... bpf resumed>) = 4 [pid 5246] <... write resumed>) = 1 [ 79.508032][ T5246] FAULT_INJECTION: forcing a failure. [ 79.508032][ T5246] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 79.521205][ T5246] CPU: 0 UID: 0 PID: 5246 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 79.532012][ T5246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 79.542070][ T5246] Call Trace: [ 79.545344][ T5246] [ 79.548292][ T5246] dump_stack_lvl+0x241/0x360 [ 79.552979][ T5246] ? __pfx_dump_stack_lvl+0x10/0x10 [ 79.558260][ T5246] ? __pfx__printk+0x10/0x10 [ 79.562845][ T5246] ? bpf_trace_run4+0x244/0x590 [ 79.567707][ T5246] ? rcu_is_watching+0x15/0xb0 [ 79.572480][ T5246] ? bpf_trace_run4+0x244/0x590 [ 79.577416][ T5246] ? lock_acquire+0xe3/0x550 [ 79.582128][ T5246] should_fail_ex+0x3b0/0x4e0 [ 79.586820][ T5246] strncpy_from_user+0x36/0x250 [ 79.591860][ T5246] strncpy_from_user_nofault+0x71/0x140 [ 79.597412][ T5246] bpf_probe_read_compat_str+0xe9/0x180 [ 79.602984][ T5246] ? bpf_trace_run4+0x244/0x590 [ 79.607870][ T5246] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 79.613368][ T5246] bpf_trace_run4+0x334/0x590 [ 79.618146][ T5246] ? psi_group_change+0xb88/0x11c0 [ 79.623265][ T5246] ? __pfx_bpf_trace_run4+0x10/0x10 [ 79.628475][ T5246] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 79.634544][ T5246] __traceiter_sched_switch+0x98/0xd0 [ 79.639944][ T5246] __schedule+0x22f8/0x4ae0 [ 79.644452][ T5246] ? schedule+0x90/0x320 [ 79.648696][ T5246] ? schedule+0x90/0x320 [ 79.652936][ T5246] ? lock_release+0xbf/0xa30 [ 79.657526][ T5246] ? __pfx___schedule+0x10/0x10 [ 79.662401][ T5246] ? __pfx_lock_release+0x10/0x10 [ 79.667425][ T5246] ? _raw_spin_lock_irq+0xdf/0x120 [ 79.672537][ T5246] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 79.678865][ T5246] ? schedule+0x90/0x320 [ 79.683119][ T5246] schedule+0x14b/0x320 [ 79.687643][ T5246] ptrace_stop+0x5b4/0x940 [ 79.692105][ T5246] ptrace_notify+0x255/0x380 [ 79.696712][ T5246] ? __pfx_ptrace_notify+0x10/0x10 [ 79.701841][ T5246] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 79.708168][ T5246] ? rcu_is_watching+0x15/0xb0 [ 79.712928][ T5246] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 79.719264][ T5246] ? rcu_is_watching+0x15/0xb0 [ 79.724036][ T5246] syscall_trace_enter+0x5d/0x150 [ 79.729507][ T5246] do_syscall_64+0xcc/0x230 [ 79.734011][ T5246] ? clear_bhb_loop+0x35/0x90 [ 79.738682][ T5246] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 79.744577][ T5246] RIP: 0033:0x7f4acaaaea99 [ 79.748994][ T5246] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 79.768693][ T5246] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 79.777102][ T5246] RAX: ffffffffffffffda RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [ 79.785065][ T5246] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 79.793042][ T5246] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 79.801006][ T5246] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [pid 5248] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5247] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5246] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5244] +++ exited with 0 +++ [pid 5224] <... restart_syscall resumed>) = 0 [pid 5248] <... socket resumed>) = 5 [pid 5247] <... socket resumed>) = 5 [pid 5246] <... sendmsg resumed>) = -1 ENODATA (No data available) [pid 5248] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5247] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5246] exit_group(0 [pid 5221] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5244, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5248] <... openat resumed>) = 6 [pid 5247] <... openat resumed>) = 6 [pid 5246] <... exit_group resumed>) = ? [pid 5224] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5249 attached [pid 5247] write(6, "6", 1 [pid 5246] +++ exited with 0 +++ [pid 5248] write(6, "6", 1 [pid 5247] <... write resumed>) = 1 [pid 5225] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5246, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5224] <... clone resumed>, child_tidptr=0x55555a521650) = 5249 [pid 5249] set_robust_list(0x55555a521660, 24 [pid 5248] <... write resumed>) = 1 [ 79.808969][ T5246] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 79.816938][ T5246] [ 79.829652][ T5247] FAULT_INJECTION: forcing a failure. [ 79.829652][ T5247] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 79.829675][ T5248] FAULT_INJECTION: forcing a failure. [ 79.829675][ T5248] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 79.842704][ T5247] CPU: 1 UID: 0 PID: 5247 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 79.866476][ T5247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 79.876621][ T5247] Call Trace: [ 79.879909][ T5247] [ 79.882845][ T5247] dump_stack_lvl+0x241/0x360 [ 79.887532][ T5247] ? __pfx_dump_stack_lvl+0x10/0x10 [ 79.892759][ T5247] ? __pfx__printk+0x10/0x10 [ 79.897373][ T5247] ? trace_pelt_se_tp+0x3d/0x140 [ 79.902344][ T5247] ? bpf_trace_run4+0x244/0x590 [ 79.907208][ T5247] ? rcu_is_watching+0x15/0xb0 [ 79.911983][ T5247] ? bpf_trace_run4+0x244/0x590 [ 79.916841][ T5247] ? lock_acquire+0xe3/0x550 [ 79.921453][ T5247] should_fail_ex+0x3b0/0x4e0 [ 79.926157][ T5247] strncpy_from_user+0x36/0x250 [ 79.931021][ T5247] strncpy_from_user_nofault+0x71/0x140 [ 79.936581][ T5247] bpf_probe_read_compat_str+0xe9/0x180 [ 79.942254][ T5247] ? bpf_trace_run4+0x244/0x590 [ 79.947133][ T5247] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 79.952597][ T5247] bpf_trace_run4+0x334/0x590 [ 79.957286][ T5247] ? psi_group_change+0xb88/0x11c0 [ 79.962408][ T5247] ? __pfx_bpf_trace_run4+0x10/0x10 [ 79.967633][ T5247] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 79.973880][ T5247] __traceiter_sched_switch+0x98/0xd0 [ 79.979264][ T5247] __schedule+0x22f8/0x4ae0 [ 79.983786][ T5247] ? schedule+0x90/0x320 [ 79.988043][ T5247] ? schedule+0x90/0x320 [ 79.992296][ T5247] ? lock_release+0xbf/0xa30 [ 79.996904][ T5247] ? __pfx___schedule+0x10/0x10 [ 80.001854][ T5247] ? __pfx_lock_release+0x10/0x10 [ 80.006891][ T5247] ? _raw_spin_lock_irq+0xdf/0x120 [ 80.012010][ T5247] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 80.018354][ T5247] ? schedule+0x90/0x320 [ 80.022630][ T5247] schedule+0x14b/0x320 [ 80.026805][ T5247] ptrace_stop+0x5b4/0x940 [ 80.031320][ T5247] ptrace_notify+0x255/0x380 [ 80.036010][ T5247] ? __pfx_ptrace_notify+0x10/0x10 [ 80.041135][ T5247] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 80.047481][ T5247] syscall_exit_work+0xc6/0x190 [ 80.052337][ T5247] syscall_exit_to_user_mode+0x279/0x370 [ 80.057976][ T5247] do_syscall_64+0x100/0x230 [ 80.062573][ T5247] ? clear_bhb_loop+0x35/0x90 [ 80.067259][ T5247] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 80.073166][ T5247] RIP: 0033:0x7f4acaaaea99 [ 80.077588][ T5247] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 80.097288][ T5247] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 80.105724][ T5247] RAX: ffffffffffffffc3 RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [ 80.113705][ T5247] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 80.121707][ T5247] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 80.129689][ T5247] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 80.137663][ T5247] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 80.145650][ T5247] [ 80.148681][ T5248] CPU: 0 UID: 0 PID: 5248 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 80.159460][ T5248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 80.169515][ T5248] Call Trace: [ 80.172808][ T5248] [ 80.175731][ T5248] dump_stack_lvl+0x241/0x360 [ 80.180405][ T5248] ? __pfx_dump_stack_lvl+0x10/0x10 [ 80.185636][ T5248] ? __pfx__printk+0x10/0x10 [ 80.190237][ T5248] ? bpf_trace_run4+0x244/0x590 [ 80.195189][ T5248] ? rcu_is_watching+0x15/0xb0 [ 80.199965][ T5248] ? bpf_trace_run4+0x244/0x590 [ 80.204809][ T5248] ? lock_acquire+0xe3/0x550 [ 80.209421][ T5248] should_fail_ex+0x3b0/0x4e0 [ 80.214113][ T5248] strncpy_from_user+0x36/0x250 [ 80.218973][ T5248] strncpy_from_user_nofault+0x71/0x140 [ 80.224515][ T5248] bpf_probe_read_compat_str+0xe9/0x180 [ 80.230067][ T5248] ? bpf_trace_run4+0x244/0x590 [ 80.234912][ T5248] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 80.240373][ T5248] bpf_trace_run4+0x334/0x590 [ 80.245049][ T5248] ? psi_group_change+0xb88/0x11c0 [ 80.250174][ T5248] ? __pfx_bpf_trace_run4+0x10/0x10 [ 80.255377][ T5248] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 80.261440][ T5248] __traceiter_sched_switch+0x98/0xd0 [ 80.266807][ T5248] __schedule+0x22f8/0x4ae0 [ 80.271314][ T5248] ? schedule+0x90/0x320 [ 80.275554][ T5248] ? schedule+0x90/0x320 [ 80.279796][ T5248] ? lock_release+0xbf/0xa30 [ 80.284385][ T5248] ? __pfx___schedule+0x10/0x10 [ 80.289239][ T5248] ? __pfx_lock_release+0x10/0x10 [ 80.294259][ T5248] ? _raw_spin_lock_irq+0xdf/0x120 [ 80.299367][ T5248] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 80.305719][ T5248] ? schedule+0x90/0x320 [ 80.309963][ T5248] schedule+0x14b/0x320 [ 80.314117][ T5248] ptrace_stop+0x5b4/0x940 [ 80.318535][ T5248] ptrace_notify+0x255/0x380 [ 80.323123][ T5248] ? __pfx_ptrace_notify+0x10/0x10 [ 80.328234][ T5248] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 80.334562][ T5248] syscall_exit_work+0xc6/0x190 [ 80.339404][ T5248] syscall_exit_to_user_mode+0x279/0x370 [ 80.345039][ T5248] do_syscall_64+0x100/0x230 [ 80.349623][ T5248] ? clear_bhb_loop+0x35/0x90 [ 80.354467][ T5248] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 80.360379][ T5248] RIP: 0033:0x7f4acaaaea99 [ 80.364797][ T5248] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 80.384504][ T5248] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 80.392956][ T5248] RAX: ffffffffffffffc3 RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [ 80.401024][ T5248] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [pid 5247] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5225] restart_syscall(<... resuming interrupted clone ...> [pid 5248] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5249] <... set_robust_list resumed>) = 0 [pid 5248] <... sendmsg resumed>) = -1 ENODATA (No data available) [pid 5247] <... sendmsg resumed>) = -1 ENODATA (No data available) [pid 5249] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5248] exit_group(0 [pid 5249] <... prctl resumed>) = 0 [pid 5247] exit_group(0 [pid 5249] setpgid(0, 0 [pid 5248] <... exit_group resumed>) = ? [pid 5249] <... setpgid resumed>) = 0 [pid 5247] <... exit_group resumed>) = ? [pid 5249] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5249] write(3, "1000", 4) = 4 [pid 5249] close(3) = 0 [pid 5249] write(1, "executing program\n", 18executing program ) = 18 [pid 5249] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148) = -1 EFAULT (Bad address) [pid 5249] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5248] +++ exited with 0 +++ [pid 5249] <... bpf resumed>) = 3 [pid 5249] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16) = 4 [pid 5218] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5248, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5249] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5225] <... restart_syscall resumed>) = 0 [pid 5221] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5249] <... socket resumed>) = 5 [pid 5218] restart_syscall(<... resuming interrupted clone ...> [pid 5249] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6 [pid 5249] write(6, "6", 1./strace-static-x86_64: Process 5250 attached ) = 1 [pid 5225] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5221] <... clone resumed>, child_tidptr=0x55555a521650) = 5250 [pid 5218] <... restart_syscall resumed>) = 0 [pid 5250] set_robust_list(0x55555a521660, 24 [ 80.409186][ T5248] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 80.417237][ T5248] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 80.425288][ T5248] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 80.433276][ T5248] [pid 5249] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0) = -1 ENODATA (No data available) ./strace-static-x86_64: Process 5251 attached [pid 5250] <... set_robust_list resumed>) = 0 [pid 5251] set_robust_list(0x55555a521660, 24 [pid 5250] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5247] +++ exited with 0 +++ [pid 5225] <... clone resumed>, child_tidptr=0x55555a521650) = 5251 [pid 5251] <... set_robust_list resumed>) = 0 [pid 5250] <... prctl resumed>) = 0 [pid 5251] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5250] setpgid(0, 0 [pid 5219] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5247, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5218] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5251] <... prctl resumed>) = 0 [pid 5250] <... setpgid resumed>) = 0 [pid 5219] restart_syscall(<... resuming interrupted clone ...> [pid 5251] setpgid(0, 0 [pid 5250] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5251] <... setpgid resumed>) = 0 [pid 5250] <... openat resumed>) = 3 [pid 5218] <... clone resumed>, child_tidptr=0x55555a521650) = 5252 [pid 5251] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5250] write(3, "1000", 4 [pid 5251] <... openat resumed>) = 3 [pid 5250] <... write resumed>) = 4 [pid 5251] write(3, "1000", 4 [pid 5250] close(3 [pid 5251] <... write resumed>) = 4 [pid 5250] <... close resumed>) = 0 [pid 5219] <... restart_syscall resumed>) = 0 [pid 5219] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555a521650) = 5253 [pid 5251] close(3) = 0 [pid 5251] write(1, "executing program\n", 18executing program ) = 18 [pid 5251] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148) = -1 EFAULT (Bad address) [pid 5251] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148) = 3 [ 80.457890][ T5249] FAULT_INJECTION: forcing a failure. [ 80.457890][ T5249] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 80.471853][ T5249] CPU: 0 UID: 0 PID: 5249 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 80.482658][ T5249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 80.492734][ T5249] Call Trace: [ 80.496043][ T5249] [ 80.499003][ T5249] dump_stack_lvl+0x241/0x360 [ 80.503711][ T5249] ? __pfx_dump_stack_lvl+0x10/0x10 [ 80.509094][ T5249] ? __pfx__printk+0x10/0x10 [ 80.513694][ T5249] should_fail_ex+0x3b0/0x4e0 [ 80.518383][ T5249] prepare_alloc_pages+0x1da/0x5d0 [ 80.523529][ T5249] __alloc_pages_noprof+0x166/0x6c0 [ 80.528740][ T5249] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 80.534477][ T5249] ? lock_acquire+0xe3/0x550 [ 80.539107][ T5249] alloc_pages_mpol_noprof+0x3e8/0x680 [ 80.544672][ T5249] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 80.551463][ T5249] ? rcu_is_watching+0x15/0xb0 [ 80.556252][ T5249] vma_alloc_folio_noprof+0x12e/0x230 [ 80.561656][ T5249] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 80.567564][ T5249] ? lock_acquire+0xe3/0x550 [ 80.572173][ T5249] ? do_raw_spin_unlock+0x13c/0x8b0 [ 80.577390][ T5249] folio_prealloc+0x31/0x170 [ 80.581996][ T5249] do_wp_page+0x11c4/0x52d0 [ 80.586518][ T5249] ? __pfx_do_wp_page+0x10/0x10 [ 80.591370][ T5249] ? lock_acquire+0xe3/0x550 [ 80.595975][ T5249] ? __pfx_lock_acquire+0x10/0x10 [ 80.601032][ T5249] ? do_raw_spin_lock+0x14f/0x370 [ 80.606068][ T5249] ? rcu_is_watching+0x15/0xb0 [ 80.610840][ T5249] handle_pte_fault+0x10e3/0x6800 [ 80.615896][ T5249] ? __pfx_handle_pte_fault+0x10/0x10 [ 80.621280][ T5249] ? lock_release+0xbf/0xa30 [ 80.625888][ T5249] ? memcg_rstat_updated+0x7b/0x2f0 [ 80.631090][ T5249] ? __pfx_lock_release+0x10/0x10 [ 80.636138][ T5249] ? __count_memcg_events+0x189/0x290 [ 80.641515][ T5249] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 80.647942][ T5249] ? lock_acquire+0xe3/0x550 [ 80.652548][ T5249] ? rcu_is_watching+0x15/0xb0 [ 80.657336][ T5249] ? lock_acquire+0xe3/0x550 [ 80.661950][ T5249] ? __pfx_lock_acquire+0x10/0x10 [ 80.666983][ T5249] ? lock_acquire+0xe3/0x550 [ 80.671588][ T5249] handle_mm_fault+0x1053/0x1ad0 [ 80.676547][ T5249] ? __pfx_handle_mm_fault+0x10/0x10 [ 80.681834][ T5249] ? lock_vma_under_rcu+0x602/0x790 [ 80.687038][ T5249] ? lock_vma_under_rcu+0x1dd/0x790 [ 80.692246][ T5249] ? rcu_is_watching+0x15/0xb0 [ 80.697015][ T5249] exc_page_fault+0x459/0x8c0 [ 80.701712][ T5249] asm_exc_page_fault+0x26/0x30 [ 80.706576][ T5249] RIP: 0033:0x7f4acaa7d340 [ 80.710997][ T5249] Code: 84 dd fe ff ff 4c 89 e7 e8 ad ed 00 00 e9 d0 fe ff ff 0f 1f 84 00 00 00 00 00 49 8b 06 48 89 45 00 48 85 c0 0f 85 85 00 00 00 05 a9 3e 0a 00 01 31 c0 87 05 79 3a 0a 00 83 f8 01 0f 8f 84 00 [ 80.730806][ T5249] RSP: 002b:00007ffdb963ee50 EFLAGS: 00010246 [ 80.736888][ T5249] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000004 [ 80.744864][ T5249] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00007f4acab1fad8 [pid 5251] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16./strace-static-x86_64: Process 5253 attached ./strace-static-x86_64: Process 5252 attached executing program [pid 5250] write(1, "executing program\n", 18) = 18 [pid 5253] set_robust_list(0x55555a521660, 24 [pid 5252] set_robust_list(0x55555a521660, 24 [pid 5251] <... bpf resumed>) = 4 [pid 5250] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5252] <... set_robust_list resumed>) = 0 [pid 5251] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5253] <... set_robust_list resumed>) = 0 [pid 5252] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5251] <... socket resumed>) = 5 [pid 5250] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5253] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5252] <... prctl resumed>) = 0 [pid 5251] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5252] setpgid(0, 0 [pid 5251] <... openat resumed>) = 6 [pid 5250] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5251] write(6, "6", 1) = 1 [ 80.752850][ T5249] RBP: 00007f4acab1e118 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 80.760856][ T5249] R10: 0000000000000001 R11: 0000000000000246 R12: 00007f4acab20dc8 [ 80.768829][ T5249] R13: 0000000000000000 R14: 00007f4acab20de0 R15: 00007f4acaa761d0 [ 80.776809][ T5249] [ 80.787581][ T5251] FAULT_INJECTION: forcing a failure. [ 80.787581][ T5251] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 80.800677][ T5251] CPU: 0 UID: 0 PID: 5251 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 80.811437][ T5251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 80.821579][ T5251] Call Trace: [ 80.824971][ T5251] [ 80.827998][ T5251] dump_stack_lvl+0x241/0x360 [ 80.832674][ T5251] ? __pfx_dump_stack_lvl+0x10/0x10 [ 80.837882][ T5251] ? __pfx__printk+0x10/0x10 [ 80.842466][ T5251] ? bpf_trace_run4+0x244/0x590 [ 80.847312][ T5251] ? rcu_is_watching+0x15/0xb0 [ 80.852092][ T5251] ? bpf_trace_run4+0x244/0x590 [ 80.857037][ T5251] ? lock_acquire+0xe3/0x550 [ 80.861637][ T5251] should_fail_ex+0x3b0/0x4e0 [ 80.866332][ T5251] strncpy_from_user+0x36/0x250 [ 80.871285][ T5251] strncpy_from_user_nofault+0x71/0x140 [ 80.876846][ T5251] bpf_probe_read_compat_str+0xe9/0x180 [ 80.882408][ T5251] ? bpf_trace_run4+0x244/0x590 [ 80.887285][ T5251] bpf_prog_e42f6260c1b72fb3+0x3e/0x40 [ 80.892735][ T5251] bpf_trace_run4+0x334/0x590 [ 80.897408][ T5251] ? psi_group_change+0xb88/0x11c0 [ 80.902539][ T5251] ? __pfx_bpf_trace_run4+0x10/0x10 [ 80.907843][ T5251] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 80.913906][ T5251] __traceiter_sched_switch+0x98/0xd0 [ 80.919275][ T5251] __schedule+0x22f8/0x4ae0 [ 80.923796][ T5251] ? schedule+0x90/0x320 [ 80.928053][ T5251] ? schedule+0x90/0x320 [ 80.932293][ T5251] ? lock_release+0xbf/0xa30 [ 80.936900][ T5251] ? __pfx___schedule+0x10/0x10 [ 80.941760][ T5251] ? __pfx_lock_release+0x10/0x10 [ 80.946783][ T5251] ? _raw_spin_lock_irq+0xdf/0x120 [ 80.951893][ T5251] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 80.958260][ T5251] ? schedule+0x90/0x320 [ 80.962503][ T5251] schedule+0x14b/0x320 [ 80.966662][ T5251] ptrace_stop+0x5b4/0x940 [ 80.971098][ T5251] ptrace_notify+0x255/0x380 [ 80.975686][ T5251] ? __pfx_ptrace_notify+0x10/0x10 [ 80.980795][ T5251] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 80.987124][ T5251] syscall_exit_work+0xc6/0x190 [ 80.991988][ T5251] syscall_exit_to_user_mode+0x279/0x370 [ 80.997633][ T5251] do_syscall_64+0x100/0x230 [ 81.002216][ T5251] ? clear_bhb_loop+0x35/0x90 [ 81.006887][ T5251] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 81.012782][ T5251] RIP: 0033:0x7f4acaaaea99 [ 81.017194][ T5251] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 81.036796][ T5251] RSP: 002b:00007ffdb963eea8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 81.045208][ T5251] RAX: ffffffffffffffc3 RBX: 00007ffdb963eec0 RCX: 00007f4acaaaea99 [pid 5251] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0 [pid 5253] <... prctl resumed>) = 0 [pid 5252] <... setpgid resumed>) = 0 [pid 5251] <... sendmsg resumed>) = -1 ENODATA (No data available) [pid 5250] <... bpf resumed>) = 3 [pid 5253] setpgid(0, 0 [pid 5252] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5251] exit_group(0 [pid 5253] <... setpgid resumed>) = 0 [pid 5252] <... openat resumed>) = 3 [pid 5251] <... exit_group resumed>) = ? [pid 5253] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5252] write(3, "1000", 4 [pid 5251] +++ exited with 0 +++ [pid 5249] exit_group(0 [pid 5250] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5253] <... openat resumed>) = 3 [pid 5252] <... write resumed>) = 4 [pid 5253] write(3, "1000", 4 [pid 5252] close(3 [pid 5253] <... write resumed>) = 4 [pid 5252] <... close resumed>) = 0 [pid 5253] close(3executing program [pid 5252] write(1, "executing program\n", 18 [pid 5253] <... close resumed>) = 0 [pid 5252] <... write resumed>) = 18 executing program [pid 5253] write(1, "executing program\n", 18 [pid 5252] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5253] <... write resumed>) = 18 [pid 5252] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5249] <... exit_group resumed>) = ? [pid 5253] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5252] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5253] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5252] <... bpf resumed>) = 3 [pid 5250] <... bpf resumed>) = 4 [pid 5253] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=11, insns=0x20000180, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=0, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5252] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5225] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5251, si_uid=0, si_status=0, si_utime=0, si_stime=28 /* 0.28 s */} --- [pid 5253] <... bpf resumed>) = 3 [pid 5250] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5253] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="sched_switch", prog_fd=3}}, 16 [pid 5250] <... socket resumed>) = 5 [pid 5250] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5225] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5250] <... openat resumed>) = 6 [pid 5250] write(6, "6", 1) = 1 ./strace-static-x86_64: Process 5254 attached [pid 5250] sendmsg(5, {msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, 0) = -1 ENODATA (No data available) [pid 5254] set_robust_list(0x55555a521660, 24) = 0 [pid 5254] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5225] <... clone resumed>, child_tidptr=0x55555a521650) = 5254 [pid 5254] <... prctl resumed>) = 0 [pid 5254] setpgid(0, 0) = 0 [ 81.053190][ T5251] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 81.061154][ T5251] RBP: 0000000000000001 R08: 00007ffdb963ec47 R09: 0000000000000140 [ 81.069120][ T5251] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 81.077086][ T5251] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 81.085055][ T5251] [ 81.088261][ T5249] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [pid 5254] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [ 81.105561][ T5250] FAULT_INJECTION: forcing a failure. [ 81.105561][ T5250] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 81.120042][ T5250] CPU: 0 UID: 0 PID: 5250 Comm: syz-executor330 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 81.130845][ T5250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 81.140905][ T5250] Call Trace: [ 81.144201][ T5250] [ 81.147147][ T5250] dump_stack_lvl+0x241/0x360 [ 81.151830][ T5250] ? __pfx_dump_stack_lvl+0x10/0x10 [ 81.157027][ T5250] ? __pfx__printk+0x10/0x10 [ 81.161615][ T5250] should_fail_ex+0x3b0/0x4e0 [ 81.166298][ T5250] prepare_alloc_pages+0x1da/0x5d0 [ 81.171414][ T5250] __alloc_pages_noprof+0x166/0x6c0 [ 81.176626][ T5250] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 81.182364][ T5250] ? rcu_is_watching+0x15/0xb0 [ 81.187132][ T5250] ? page_ext_get+0x20/0x2a0 [ 81.191722][ T5250] ? rcu_read_lock_held+0xa/0x50 [ 81.196748][ T5250] alloc_pages_mpol_noprof+0x3e8/0x680 [ 81.202213][ T5250] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 81.208456][ T5250] ? rcu_is_watching+0x15/0xb0 [ 81.213220][ T5250] vma_alloc_folio_noprof+0x12e/0x230 [ 81.218711][ T5250] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 81.224697][ T5250] ? lock_acquire+0xe3/0x550 [ 81.229299][ T5250] ? do_raw_spin_unlock+0x13c/0x8b0 [ 81.234596][ T5250] folio_prealloc+0x31/0x170 [ 81.239204][ T5250] do_wp_page+0x11c4/0x52d0 [ 81.243719][ T5250] ? __pfx_do_wp_page+0x10/0x10 [ 81.248574][ T5250] ? lock_acquire+0xe3/0x550 [ 81.253178][ T5250] ? __pfx_lock_acquire+0x10/0x10