./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor199008857
<...>
[ 3.383876][ T84] acpid (84) used greatest stack depth: 23344 bytes left
[ 3.595799][ T99] udevd[99]: starting version 3.2.11
[ 3.629923][ T100] udevd[100]: starting eudev-3.2.11
[ 4.854146][ T180] ssh-keygen (180) used greatest stack depth: 22096 bytes left
[ 13.588058][ T30] kauditd_printk_skb: 50 callbacks suppressed
[ 13.588067][ T30] audit: type=1400 audit(1695265806.482:61): avc: denied { transition } for pid=225 comm="sshd" path="/bin/sh" dev="sda1" ino=89 scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 13.594811][ T30] audit: type=1400 audit(1695265806.492:62): avc: denied { noatsecure } for pid=225 comm="sshd" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 13.600311][ T30] audit: type=1400 audit(1695265806.492:63): avc: denied { write } for pid=225 comm="sh" path="pipe:[898]" dev="pipefs" ino=898 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[ 13.604794][ T30] audit: type=1400 audit(1695265806.492:64): avc: denied { rlimitinh } for pid=225 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 13.610882][ T30] audit: type=1400 audit(1695265806.492:65): avc: denied { siginh } for pid=225 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
Warning: Permanently added '10.128.0.97' (ED25519) to the list of known hosts.
execve("./syz-executor199008857", ["./syz-executor199008857"], 0x7ffc60d4c100 /* 10 vars */) = 0
brk(NULL) = 0x555555cec000
brk(0x555555cece00) = 0x555555cece00
arch_prctl(ARCH_SET_FS, 0x555555cec480) = 0
set_tid_address(0x555555cec750) = 294
set_robust_list(0x555555cec760, 24) = 0
rseq(0x555555cecda0, 0x20, 0, 0x53053053) = -1 ENOSYS (Function not implemented)
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor199008857", 4096) = 27
getrandom("\x67\xc3\x25\x46\x62\xcd\x58\xda", 8, GRND_NONBLOCK) = 8
brk(NULL) = 0x555555cece00
brk(0x555555d0de00) = 0x555555d0de00
brk(0x555555d0e000) = 0x555555d0e000
mprotect(0x7fbab0da8000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1) = 1
close(3) = 0
rt_sigaction(SIGRTMIN, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGRT_1, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGSEGV, {sa_handler=0x7fbab0d02a50, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7fbab0d0af30}, NULL, 8) = 0
rt_sigaction(SIGBUS, {sa_handler=0x7fbab0d02a50, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7fbab0d0af30}, NULL, 8) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555cec750) = 295
./strace-static-x86_64: Process 295 attached
[pid 295] set_robust_list(0x555555cec760, 24) = 0
[pid 295] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 295] setpgid(0, 0) = 0
[pid 295] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 295] write(3, "1000", 4) = 4
[pid 295] close(3) = 0
[pid 295] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[ 21.977354][ T30] audit: type=1400 audit(1695265814.872:66): avc: denied { execmem } for pid=294 comm="syz-executor199" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 21.997029][ T30] audit: type=1400 audit(1695265814.872:67): avc: denied { integrity } for pid=294 comm="syz-executor199" lockdown_reason="debugfs access" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=lockdown permissive=1
[ 22.020860][ T30] audit: type=1400 audit(1695265814.882:68): avc: denied { prog_load } for pid=295 comm="syz-executor199" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[ 22.040176][ T30] audit: type=1400 audit(1695265814.882:69): avc: denied { bpf } for pid=295 comm="syz-executor199" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[pid 295] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 295] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 295] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 295] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 295] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = 0
[pid 295] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 295] write(6, "7", 1) = 1
[ 22.147543][ T30] audit: type=1400 audit(1695265815.042:70): avc: denied { perfmon } for pid=295 comm="syz-executor199" capability=38 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 22.169157][ T30] audit: type=1400 audit(1695265815.062:71): avc: denied { prog_run } for pid=295 comm="syz-executor199" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[ 22.173267][ T295] FAULT_INJECTION: forcing a failure.
[ 22.173267][ T295] name failslab, interval 1, probability 0, space 0, times 1
[ 22.188636][ T30] audit: type=1400 audit(1695265815.062:72): avc: denied { map_create } for pid=295 comm="syz-executor199" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[ 22.200636][ T295] CPU: 1 PID: 295 Comm: syz-executor199 Not tainted 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 22.219991][ T30] audit: type=1400 audit(1695265815.062:73): avc: denied { map_read map_write } for pid=295 comm="syz-executor199" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[ 22.230812][ T295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 22.230829][ T295] Call Trace:
[ 22.230835][ T295]
[ 22.230842][ T295] dump_stack_lvl+0x151/0x1b7
[ 22.271083][ T295] ? io_uring_drop_tctx_refs+0x190/0x190
[ 22.277526][ T295] dump_stack+0x15/0x17
[ 22.281492][ T295] should_fail+0x3c6/0x510
[ 22.285749][ T295] __should_failslab+0xa4/0xe0
[ 22.290347][ T295] should_failslab+0x9/0x20
[ 22.294684][ T295] slab_pre_alloc_hook+0x37/0xd0
[ 22.299467][ T295] kmem_cache_alloc_trace+0x48/0x210
[ 22.304578][ T295] ? sk_psock_skb_ingress_self+0x60/0x330
[ 22.310143][ T295] ? migrate_disable+0x190/0x190
[ 22.314908][ T295] sk_psock_skb_ingress_self+0x60/0x330
[ 22.320298][ T295] sk_psock_verdict_recv+0x66d/0x840
[ 22.325497][ T295] unix_read_sock+0x132/0x370
[ 22.330104][ T295] ? sk_psock_skb_redirect+0x440/0x440
[ 22.335402][ T295] ? unix_stream_splice_actor+0x120/0x120
[ 22.341464][ T295] ? _raw_spin_lock_irqsave+0xf9/0x210
[ 22.346762][ T295] ? unix_stream_splice_actor+0x120/0x120
[ 22.352315][ T295] sk_psock_verdict_data_ready+0x147/0x1a0
[ 22.357957][ T295] ? sk_psock_start_verdict+0xc0/0xc0
[ 22.363159][ T295] ? _raw_spin_lock+0xa4/0x1b0
[ 22.367765][ T295] ? _raw_spin_unlock_irqrestore+0x5c/0x80
[ 22.373590][ T295] ? skb_queue_tail+0xfb/0x120
[ 22.378280][ T295] unix_dgram_sendmsg+0x15fa/0x2090
[ 22.383317][ T295] ? unix_dgram_poll+0x710/0x710
[ 22.388210][ T295] ? __kasan_check_read+0x11/0x20
[ 22.393069][ T295] ? security_socket_sendmsg+0x82/0xb0
[ 22.398362][ T295] ? unix_dgram_poll+0x710/0x710
[ 22.403137][ T295] ____sys_sendmsg+0x59e/0x8f0
[ 22.407753][ T295] ? __sys_sendmsg_sock+0x40/0x40
[ 22.412596][ T295] ? kasan_set_track+0x5d/0x70
[ 22.417456][ T295] ? import_iovec+0xe5/0x120
[ 22.421885][ T295] ___sys_sendmsg+0x252/0x2e0
[ 22.426485][ T295] ? __sys_sendmsg+0x260/0x260
[ 22.431084][ T295] ? compat_start_thread+0x20/0x20
[ 22.436032][ T295] ? __kasan_check_read+0x11/0x20
[ 22.440890][ T295] ? __fdget+0x179/0x240
[ 22.444977][ T295] __sys_sendmmsg+0x2bf/0x530
[ 22.449496][ T295] ? __ia32_sys_sendmsg+0x90/0x90
[ 22.454359][ T295] ? __kasan_check_read+0x11/0x20
[ 22.459348][ T295] __x64_sys_sendmmsg+0xa0/0xb0
[ 22.464040][ T295] do_syscall_64+0x3d/0xb0
[ 22.468278][ T295] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 22.474335][ T295] RIP: 0033:0x7fbab0d353f9
[ 22.478577][ T295] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 22.498521][ T295] RSP: 002b:00007fffcff1f878 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 22.506960][ T295] RAX: ffffffffffffffda RBX: 00007fffcff1f880 RCX: 00007fbab0d353f9
[ 22.514853][ T295] RDX: 0000000000000001 RSI: 00000000200063c0 RDI: 0000000000000003
[ 22.522660][ T295] RBP: 0000000000000001 R08: 00007fffcff1f617 R09: 0000000000000037
[ 22.530481][ T295] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 22.538595][ T295] R13: 431bde82d7b634db R14: 00007fffcff1f8d0 R15: 0000000000000001
[ 22.546498][ T295]
[pid 295] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, msg_len=0}], 1, 0) = 1
[pid 295] exit_group(0) = ?
[ 22.551703][ T20] ==================================================================
[ 22.559971][ T20] BUG: KASAN: use-after-free in consume_skb+0x3c/0x250
[ 22.566794][ T20] Read of size 4 at addr ffff88811e81686c by task kworker/0:1/20
[ 22.574304][ T20]
[ 22.576657][ T20] CPU: 0 PID: 20 Comm: kworker/0:1 Not tainted 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 22.586282][ T20] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 22.596285][ T20] Workqueue: events bpf_map_free_deferred
[pid 295] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=295, si_uid=0, si_status=0, si_utime=0, si_stime=18} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555cec750) = 296
./strace-static-x86_64: Process 296 attached
[pid 296] set_robust_list(0x555555cec760, 24) = 0
[pid 296] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 296] setpgid(0, 0) = 0
[pid 296] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 296] write(3, "1000", 4) = 4
[pid 296] close(3) = 0
[pid 296] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[ 22.601915][ T20] Call Trace:
[ 22.605041][ T20]
[ 22.607830][ T20] dump_stack_lvl+0x151/0x1b7
[ 22.612331][ T20] ? io_uring_drop_tctx_refs+0x190/0x190
[ 22.617796][ T20] ? panic+0x751/0x751
[ 22.621809][ T20] print_address_description+0x87/0x3b0
[ 22.627177][ T20] kasan_report+0x179/0x1c0
[ 22.631512][ T20] ? consume_skb+0x3c/0x250
[ 22.635856][ T20] ? consume_skb+0x3c/0x250
[ 22.640191][ T20] kasan_check_range+0x293/0x2a0
[ 22.644964][ T20] __kasan_check_read+0x11/0x20
[ 22.649649][ T20] consume_skb+0x3c/0x250
[ 22.653904][ T20] __sk_msg_free+0x2dd/0x370
[ 22.658417][ T20] ? _raw_spin_unlock_irqrestore+0x5c/0x80
[ 22.664072][ T20] sk_psock_stop+0x44c/0x4d0
[ 22.668576][ T20] sk_psock_drop+0x219/0x310
[ 22.672999][ T20] sock_map_unref+0x48f/0x4d0
[ 22.677510][ T20] sock_map_free+0x137/0x2b0
[ 22.681946][ T20] bpf_map_free_deferred+0x10d/0x1e0
[ 22.687069][ T20] process_one_work+0x6bb/0xc10
[ 22.691744][ T20] worker_thread+0xad5/0x12a0
[ 22.696259][ T20] ? _raw_spin_lock+0x1b0/0x1b0
[ 22.700946][ T20] kthread+0x421/0x510
[ 22.704850][ T20] ? worker_clr_flags+0x180/0x180
[ 22.709721][ T20] ? kthread_blkcg+0xd0/0xd0
[ 22.714138][ T20] ret_from_fork+0x1f/0x30
[ 22.718483][ T20]
[ 22.721351][ T20]
[ 22.723512][ T20] Allocated by task 295:
[ 22.727592][ T20] __kasan_slab_alloc+0xb1/0xe0
[ 22.732633][ T20] slab_post_alloc_hook+0x53/0x2c0
[ 22.737673][ T20] kmem_cache_alloc+0xf5/0x200
[ 22.742256][ T20] skb_clone+0x1d1/0x360
[ 22.746337][ T20] sk_psock_verdict_recv+0x53/0x840
[ 22.751370][ T20] unix_read_sock+0x132/0x370
[ 22.755909][ T20] sk_psock_verdict_data_ready+0x147/0x1a0
[ 22.761838][ T20] unix_dgram_sendmsg+0x15fa/0x2090
[ 22.766868][ T20] ____sys_sendmsg+0x59e/0x8f0
[ 22.771507][ T20] ___sys_sendmsg+0x252/0x2e0
[ 22.775975][ T20] __sys_sendmmsg+0x2bf/0x530
[ 22.780489][ T20] __x64_sys_sendmmsg+0xa0/0xb0
[ 22.785279][ T20] do_syscall_64+0x3d/0xb0
[ 22.789522][ T20] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 22.795270][ T20]
[ 22.797422][ T20] Freed by task 39:
[ 22.801065][ T20] kasan_set_track+0x4b/0x70
[ 22.805503][ T20] kasan_set_free_info+0x23/0x40
[ 22.810266][ T20] ____kasan_slab_free+0x126/0x160
[ 22.815313][ T20] __kasan_slab_free+0x11/0x20
[ 22.819918][ T20] slab_free_freelist_hook+0xbd/0x190
[ 22.825150][ T20] kmem_cache_free+0x116/0x2e0
[ 22.829749][ T20] kfree_skbmem+0x104/0x170
[ 22.834090][ T20] kfree_skb+0xc2/0x360
[ 22.838053][ T20] sk_psock_backlog+0xc21/0xd90
[ 22.842828][ T20] process_one_work+0x6bb/0xc10
[ 22.847514][ T20] worker_thread+0xad5/0x12a0
[ 22.852034][ T20] kthread+0x421/0x510
[ 22.856035][ T20] ret_from_fork+0x1f/0x30
[ 22.860290][ T20]
[ 22.862453][ T20] The buggy address belongs to the object at ffff88811e816780
[ 22.862453][ T20] which belongs to the cache skbuff_head_cache of size 248
[ 22.876870][ T20] The buggy address is located 236 bytes inside of
[ 22.876870][ T20] 248-byte region [ffff88811e816780, ffff88811e816878)
[ 22.889983][ T20] The buggy address belongs to the page:
[ 22.895444][ T20] page:ffffea00047a0580 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x11e816
[ 22.905510][ T20] flags: 0x4000000000000200(slab|zone=1)
[ 22.910997][ T20] raw: 4000000000000200 0000000000000000 dead000000000122 ffff888100350900
[ 22.919419][ T20] raw: 0000000000000000 00000000000c000c 00000001ffffffff 0000000000000000
[ 22.927948][ T20] page dumped because: kasan: bad access detected
[ 22.934188][ T20] page_owner tracks the page as allocated
[ 22.939747][ T20] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12a20(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY), pid 295, ts 22173059276, free_ts 0
[ 22.954750][ T20] post_alloc_hook+0x1a3/0x1b0
[ 22.959515][ T20] prep_new_page+0x1b/0x110
[ 22.963919][ T20] get_page_from_freelist+0x3550/0x35d0
[ 22.969296][ T20] __alloc_pages+0x206/0x5e0
[ 22.973743][ T20] new_slab+0x9a/0x4e0
[ 22.977639][ T20] ___slab_alloc+0x39e/0x830
[ 22.982060][ T20] kmem_cache_alloc_bulk+0x104/0x360
[ 22.987267][ T20] napi_skb_cache_get+0x11f/0x1f0
[ 22.992136][ T20] __alloc_skb+0xd5/0x550
[ 22.996287][ T20] __napi_alloc_skb+0x167/0x2e0
[ 23.000993][ T20] page_to_skb+0x2a5/0xb40
[ 23.005226][ T20] receive_buf+0xed6/0x5720
[ 23.009566][ T20] virtnet_poll+0x628/0x1260
[ 23.014001][ T20] __napi_poll+0xc4/0x5a0
[ 23.018162][ T20] net_rx_action+0x47d/0xc50
[ 23.022587][ T20] __do_softirq+0x26d/0x5bf
[ 23.026936][ T20] page_owner free stack trace missing
[ 23.032131][ T20]
[ 23.034307][ T20] Memory state around the buggy address:
[ 23.039776][ T20] ffff88811e816700: fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc fc
[ 23.047682][ T20] ffff88811e816780: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 23.055582][ T20] >ffff88811e816800: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fc
[ 23.063476][ T20] ^
[ 23.071019][ T20] ffff88811e816880: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[ 23.078939][ T20] ffff88811e816900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 23.086817][ T20] ==================================================================
[ 23.095402][ T20] Disabling lock debugging due to kernel taint
[ 23.101541][ T20] ==================================================================
[ 23.109463][ T20] BUG: KASAN: double-free or invalid-free in kmem_cache_free+0x116/0x2e0
[ 23.117717][ T20]
[ 23.119879][ T20] CPU: 0 PID: 20 Comm: kworker/0:1 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 23.130987][ T20] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 23.140970][ T20] Workqueue: events bpf_map_free_deferred
[ 23.146529][ T20] Call Trace:
[ 23.149655][ T20]
[ 23.152436][ T20] dump_stack_lvl+0x151/0x1b7
[ 23.156940][ T20] ? io_uring_drop_tctx_refs+0x190/0x190
[ 23.162500][ T20] ? panic+0x751/0x751
[ 23.166405][ T20] ? kmem_cache_free+0x116/0x2e0
[ 23.171179][ T20] print_address_description+0x87/0x3b0
[ 23.176561][ T20] ? asm_sysvec_apic_timer_interrupt+0x1b/0x20
[ 23.182556][ T20] ? kmem_cache_free+0x116/0x2e0
[ 23.187322][ T20] ? kmem_cache_free+0x116/0x2e0
[ 23.192192][ T20] kasan_report_invalid_free+0x6b/0xa0
[ 23.197477][ T20] ____kasan_slab_free+0x13e/0x160
[ 23.202629][ T20] __kasan_slab_free+0x11/0x20
[ 23.207208][ T20] slab_free_freelist_hook+0xbd/0x190
[ 23.212878][ T20] ? kfree_skbmem+0x104/0x170
[ 23.217647][ T20] kmem_cache_free+0x116/0x2e0
[ 23.222259][ T20] kfree_skbmem+0x104/0x170
[ 23.226587][ T20] consume_skb+0xb4/0x250
[ 23.230845][ T20] __sk_msg_free+0x2dd/0x370
[ 23.235588][ T20] ? _raw_spin_unlock_irqrestore+0x5c/0x80
[ 23.241219][ T20] sk_psock_stop+0x44c/0x4d0
[ 23.245685][ T20] sk_psock_drop+0x219/0x310
[ 23.250084][ T20] sock_map_unref+0x48f/0x4d0
[ 23.254590][ T20] sock_map_free+0x137/0x2b0
[ 23.259012][ T20] bpf_map_free_deferred+0x10d/0x1e0
[ 23.264135][ T20] process_one_work+0x6bb/0xc10
[ 23.268915][ T20] worker_thread+0xad5/0x12a0
[ 23.273512][ T20] ? _raw_spin_lock+0x1b0/0x1b0
[ 23.278833][ T20] kthread+0x421/0x510
[ 23.282711][ T20] ? worker_clr_flags+0x180/0x180
[ 23.287698][ T20] ? kthread_blkcg+0xd0/0xd0
[ 23.292087][ T20] ret_from_fork+0x1f/0x30
[ 23.296345][ T20]
[ 23.299202][ T20]
[ 23.301373][ T20] Allocated by task 295:
[ 23.305453][ T20] __kasan_slab_alloc+0xb1/0xe0
[ 23.310141][ T20] slab_post_alloc_hook+0x53/0x2c0
[ 23.315258][ T20] kmem_cache_alloc+0xf5/0x200
[ 23.319952][ T20] skb_clone+0x1d1/0x360
[ 23.324031][ T20] sk_psock_verdict_recv+0x53/0x840
[ 23.329056][ T20] unix_read_sock+0x132/0x370
[ 23.333572][ T20] sk_psock_verdict_data_ready+0x147/0x1a0
[ 23.339474][ T20] unix_dgram_sendmsg+0x15fa/0x2090
[ 23.344507][ T20] ____sys_sendmsg+0x59e/0x8f0
[ 23.349443][ T20] ___sys_sendmsg+0x252/0x2e0
[ 23.354002][ T20] __sys_sendmmsg+0x2bf/0x530
[ 23.358482][ T20] __x64_sys_sendmmsg+0xa0/0xb0
[ 23.363252][ T20] do_syscall_64+0x3d/0xb0
[ 23.367616][ T20] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 23.373354][ T20]
[ 23.375502][ T20] Freed by task 39:
[ 23.379150][ T20] kasan_set_track+0x4b/0x70
[ 23.383563][ T20] kasan_set_free_info+0x23/0x40
[ 23.388341][ T20] ____kasan_slab_free+0x126/0x160
[ 23.393486][ T20] __kasan_slab_free+0x11/0x20
[ 23.398081][ T20] slab_free_freelist_hook+0xbd/0x190
[ 23.403359][ T20] kmem_cache_free+0x116/0x2e0
[ 23.407997][ T20] kfree_skbmem+0x104/0x170
[ 23.412308][ T20] kfree_skb+0xc2/0x360
[ 23.416475][ T20] sk_psock_backlog+0xc21/0xd90
[ 23.421154][ T20] process_one_work+0x6bb/0xc10
[ 23.425925][ T20] worker_thread+0xad5/0x12a0
[ 23.430535][ T20] kthread+0x421/0x510
[ 23.434441][ T20] ret_from_fork+0x1f/0x30
[ 23.438696][ T20]
[ 23.440887][ T20] The buggy address belongs to the object at ffff88811e816780
[ 23.440887][ T20] which belongs to the cache skbuff_head_cache of size 248
[ 23.455640][ T20] The buggy address is located 0 bytes inside of
[ 23.455640][ T20] 248-byte region [ffff88811e816780, ffff88811e816878)
[ 23.468550][ T20] The buggy address belongs to the page:
[ 23.474013][ T20] page:ffffea00047a0580 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x11e816
[ 23.484079][ T20] flags: 0x4000000000000200(slab|zone=1)
[ 23.489552][ T20] raw: 4000000000000200 0000000000000000 dead000000000122 ffff888100350900
[ 23.497970][ T20] raw: 0000000000000000 00000000000c000c 00000001ffffffff 0000000000000000
[ 23.506477][ T20] page dumped because: kasan: bad access detected
[ 23.512719][ T20] page_owner tracks the page as allocated
[ 23.518374][ T20] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12a20(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY), pid 295, ts 22173059276, free_ts 0
[ 23.533464][ T20] post_alloc_hook+0x1a3/0x1b0
[ 23.538060][ T20] prep_new_page+0x1b/0x110
[ 23.542411][ T20] get_page_from_freelist+0x3550/0x35d0
[ 23.547872][ T20] __alloc_pages+0x206/0x5e0
[ 23.552384][ T20] new_slab+0x9a/0x4e0
[ 23.556302][ T20] ___slab_alloc+0x39e/0x830
[ 23.560937][ T20] kmem_cache_alloc_bulk+0x104/0x360
[ 23.566180][ T20] napi_skb_cache_get+0x11f/0x1f0
[ 23.571048][ T20] __alloc_skb+0xd5/0x550
[ 23.575207][ T20] __napi_alloc_skb+0x167/0x2e0
[ 23.579995][ T20] page_to_skb+0x2a5/0xb40
[ 23.584239][ T20] receive_buf+0xed6/0x5720
[ 23.588586][ T20] virtnet_poll+0x628/0x1260
[ 23.593006][ T20] __napi_poll+0xc4/0x5a0
[ 23.597181][ T20] net_rx_action+0x47d/0xc50
[ 23.601602][ T20] __do_softirq+0x26d/0x5bf
[ 23.606029][ T20] page_owner free stack trace missing
[ 23.611327][ T20]
[ 23.613497][ T20] Memory state around the buggy address:
[ 23.619052][ T20] ffff88811e816680: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 23.627036][ T20] ffff88811e816700: fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc fc
[ 23.634969][ T20] >ffff88811e816780: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 23.642921][ T20] ^
[ 23.646823][ T20] ffff88811e816800: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fc
[pid 296] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 296] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 296] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 296] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 296] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 296] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 296] write(6, "7", 1) = 1
[pid 296] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 23.654727][ T20] ffff88811e816880: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[ 23.662624][ T20] ==================================================================
[ 23.677488][ T296] FAULT_INJECTION: forcing a failure.
[ 23.677488][ T296] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[ 23.691076][ T296] CPU: 1 PID: 296 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 23.702591][ T296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 23.712483][ T296] Call Trace:
[ 23.715666][ T296]
[ 23.718478][ T296] dump_stack_lvl+0x151/0x1b7
[ 23.722989][ T296] ? io_uring_drop_tctx_refs+0x190/0x190
[ 23.728536][ T296] dump_stack+0x15/0x17
[ 23.732530][ T296] should_fail+0x3c6/0x510
[ 23.736791][ T296] should_fail_alloc_page+0x5a/0x80
[ 23.742260][ T296] prepare_alloc_pages+0x15c/0x700
[ 23.747201][ T296] ? __alloc_pages+0x5e0/0x5e0
[ 23.752418][ T296] ? __alloc_pages_bulk+0xe60/0xe60
[ 23.757451][ T296] ? unlock_page_memcg+0x146/0x160
[ 23.762544][ T296] __alloc_pages+0x138/0x5e0
[ 23.766960][ T296] ? __kasan_check_write+0x14/0x20
[ 23.771913][ T296] ? prep_new_page+0x110/0x110
[ 23.776507][ T296] ? do_set_pte+0x3ca/0x7c0
[ 23.780860][ T296] wp_page_copy+0x1d4/0x1b00
[ 23.785271][ T296] ? __kasan_check_write+0x14/0x20
[ 23.790223][ T296] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 23.796037][ T296] ? __pte_map_lock+0x442/0x620
[ 23.800718][ T296] ? vm_normal_page+0x1e1/0x1f0
[ 23.805411][ T296] do_wp_page+0x6fa/0xb60
[ 23.809582][ T296] handle_pte_fault+0x72e/0x2340
[ 23.814347][ T296] ? update_load_avg+0x43a/0x1150
[ 23.819207][ T296] ? fault_around_bytes_set+0xc0/0xc0
[ 23.824427][ T296] do_handle_mm_fault+0x1fed/0x2330
[ 23.829449][ T296] ? numa_migrate_prep+0xe0/0xe0
[ 23.834228][ T296] ? __kasan_check_write+0x14/0x20
[ 23.839176][ T296] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 23.844122][ T296] ? _raw_spin_lock_irqsave+0x210/0x210
[ 23.849499][ T296] ? _raw_spin_unlock_irq+0x4e/0x70
[ 23.854625][ T296] ? down_read_trylock+0x1f9/0x300
[ 23.859683][ T296] ? __init_rwsem+0x1c0/0x1c0
[ 23.864183][ T296] ? debug_smp_processor_id+0x17/0x20
[ 23.869405][ T296] ? vmacache_update+0xb7/0x120
[ 23.874322][ T296] ? __find_vma+0x136/0x150
[ 23.878843][ T296] exc_page_fault+0x3b5/0x830
[ 23.883331][ T296] asm_exc_page_fault+0x27/0x30
[ 23.888011][ T296] RIP: 0033:0x7fbab0d0b520
[ 23.892272][ T296] Code: 84 dd fe ff ff 4c 89 e7 e8 5d 93 00 00 e9 d0 fe ff ff 0f 1f 84 00 00 00 00 00 49 8b 06 48 89 45 00 48 85 c0 0f 85 85 00 00 00 05 a9 3c 0a 00 01 31 c0 87 05 79 38 0a 00 83 f8 01 0f 8f 84 00
[ 23.912142][ T296] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 23.918041][ T296] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000004
[ 23.925870][ T296] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00007fbab0dadad8
[ 23.933663][ T296] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 23.941475][ T296] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbab0daeda8
[ 23.949287][ T296] R13: 0000000000000000 R14: 00007fbab0daedc0 R15: 00007fbab0d04030
[pid 296] exit_group(0) = ?
[pid 296] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=296, si_uid=0, si_status=0, si_utime=0, si_stime=107} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 298 attached
, child_tidptr=0x555555cec750) = 298
[pid 298] set_robust_list(0x555555cec760, 24) = 0
[pid 298] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 298] setpgid(0, 0) = 0
[pid 298] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 298] write(3, "1000", 4) = 4
[pid 298] close(3) = 0
[pid 298] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 298] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 298] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 298] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 298] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 298] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 298] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 298] write(6, "7", 1) = 1
[pid 298] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 23.957109][ T296]
[ 23.960230][ T296] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[ 23.975298][ T298] FAULT_INJECTION: forcing a failure.
[ 23.975298][ T298] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 23.988470][ T298] CPU: 0 PID: 298 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 24.000260][ T298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 24.010350][ T298] Call Trace:
[ 24.013469][ T298]
[ 24.016340][ T298] dump_stack_lvl+0x151/0x1b7
[ 24.020954][ T298] ? io_uring_drop_tctx_refs+0x190/0x190
[ 24.026405][ T298] dump_stack+0x15/0x17
[ 24.030695][ T298] should_fail+0x3c6/0x510
[ 24.034931][ T298] should_fail_alloc_page+0x5a/0x80
[ 24.039963][ T298] prepare_alloc_pages+0x15c/0x700
[ 24.044918][ T298] ? _raw_spin_unlock+0x4d/0x70
[ 24.049754][ T298] ? __alloc_pages_bulk+0xe60/0xe60
[ 24.054875][ T298] ? __schedule+0xcc6/0x1580
[ 24.059291][ T298] __alloc_pages+0x138/0x5e0
[ 24.063715][ T298] ? prep_new_page+0x110/0x110
[ 24.068359][ T298] ? preempt_schedule+0xd9/0xe0
[ 24.073003][ T298] wp_page_copy+0x1d4/0x1b00
[ 24.077431][ T298] ? __kasan_check_write+0x14/0x20
[ 24.082374][ T298] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 24.088278][ T298] ? __pte_map_lock+0x442/0x620
[ 24.092963][ T298] ? vm_normal_page+0x1e1/0x1f0
[ 24.097655][ T298] do_wp_page+0x6fa/0xb60
[ 24.101820][ T298] handle_pte_fault+0x72e/0x2340
[ 24.106595][ T298] ? fault_around_bytes_set+0xc0/0xc0
[ 24.111816][ T298] do_handle_mm_fault+0x1fed/0x2330
[ 24.116833][ T298] ? numa_migrate_prep+0xe0/0xe0
[ 24.121617][ T298] ? __kasan_check_write+0x14/0x20
[ 24.126551][ T298] ? switch_fpu_return+0x1ed/0x3d0
[ 24.131568][ T298] ? down_read_trylock+0x1f9/0x300
[ 24.136578][ T298] ? __init_rwsem+0x1c0/0x1c0
[ 24.141054][ T298] ? __kasan_check_read+0x11/0x20
[ 24.146045][ T298] ? vmacache_update+0xb7/0x120
[ 24.150726][ T298] ? __find_vma+0x136/0x150
[ 24.155061][ T298] exc_page_fault+0x3b5/0x830
[ 24.159572][ T298] asm_exc_page_fault+0x27/0x30
[ 24.164262][ T298] RIP: 0033:0x7fbab0d0b520
[ 24.168619][ T298] Code: 84 dd fe ff ff 4c 89 e7 e8 5d 93 00 00 e9 d0 fe ff ff 0f 1f 84 00 00 00 00 00 49 8b 06 48 89 45 00 48 85 c0 0f 85 85 00 00 00 05 a9 3c 0a 00 01 31 c0 87 05 79 38 0a 00 83 f8 01 0f 8f 84 00
[ 24.188129][ T298] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 24.194026][ T298] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000004
[pid 298] exit_group(0) = ?
[pid 298] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=298, si_uid=0, si_status=0, si_utime=0, si_stime=3} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 299 attached
[pid 299] set_robust_list(0x555555cec760, 24) = 0
[pid 294] <... clone resumed>, child_tidptr=0x555555cec750) = 299
[pid 299] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 299] setpgid(0, 0) = 0
[pid 299] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 299] write(3, "1000", 4) = 4
[pid 299] close(3) = 0
[pid 299] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 299] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 299] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 299] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 299] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 299] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 299] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 299] write(6, "7", 1) = 1
[pid 299] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 24.201838][ T298] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00007fbab0dadad8
[ 24.209739][ T298] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 24.217559][ T298] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbab0daeda8
[ 24.225372][ T298] R13: 0000000000000000 R14: 00007fbab0daedc0 R15: 00007fbab0d04030
[ 24.233398][ T298]
[ 24.236399][ T298] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[ 24.253334][ T299] FAULT_INJECTION: forcing a failure.
[ 24.253334][ T299] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 24.266697][ T299] CPU: 0 PID: 299 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 24.278667][ T299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 24.288830][ T299] Call Trace:
[ 24.291993][ T299]
[ 24.294914][ T299] dump_stack_lvl+0x151/0x1b7
[ 24.299536][ T299] ? io_uring_drop_tctx_refs+0x190/0x190
[ 24.305166][ T299] dump_stack+0x15/0x17
[ 24.309163][ T299] should_fail+0x3c6/0x510
[ 24.313690][ T299] should_fail_alloc_page+0x5a/0x80
[ 24.318725][ T299] prepare_alloc_pages+0x15c/0x700
[ 24.323669][ T299] ? __alloc_pages_bulk+0xe60/0xe60
[ 24.328793][ T299] ? __kasan_slab_free+0x11/0x20
[ 24.333649][ T299] ? slab_free_freelist_hook+0xbd/0x190
[ 24.339115][ T299] __alloc_pages+0x138/0x5e0
[ 24.343564][ T299] ? prep_new_page+0x110/0x110
[ 24.348138][ T299] ? unix_dgram_sendmsg+0xb5e/0x2090
[ 24.353259][ T299] ? put_pid+0xc3/0x110
[ 24.357256][ T299] ? unix_dgram_sendmsg+0xbe8/0x2090
[ 24.362375][ T299] wp_page_copy+0x200/0x1b00
[ 24.367235][ T299] ? __kasan_check_write+0x14/0x20
[ 24.372182][ T299] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 24.378016][ T299] ? ttwu_queue_wakelist+0x316/0x510
[ 24.383209][ T299] ? __pte_map_lock+0x442/0x620
[ 24.387890][ T299] do_wp_page+0x6fa/0xb60
[ 24.392092][ T299] handle_pte_fault+0x72e/0x2340
[ 24.396847][ T299] ? fault_around_bytes_set+0xc0/0xc0
[ 24.402045][ T299] do_handle_mm_fault+0x1fed/0x2330
[ 24.407080][ T299] ? numa_migrate_prep+0xe0/0xe0
[ 24.411858][ T299] ? __kasan_check_write+0x14/0x20
[ 24.416794][ T299] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 24.421835][ T299] ? _raw_spin_lock_irqsave+0x210/0x210
[ 24.427209][ T299] ? _raw_spin_unlock_irq+0x4e/0x70
[ 24.432244][ T299] ? down_read_trylock+0x1f9/0x300
[ 24.437189][ T299] ? __init_rwsem+0x1c0/0x1c0
[ 24.442021][ T299] ? vmacache_update+0xb7/0x120
[ 24.446702][ T299] ? __find_vma+0x136/0x150
[ 24.451042][ T299] exc_page_fault+0x3b5/0x830
[ 24.455675][ T299] asm_exc_page_fault+0x27/0x30
[ 24.460356][ T299] RIP: 0033:0x7fbab0d0b3b0
[ 24.464608][ T299] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 3d 0c 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 f0 39 0a 00 0f 85 0f 02 00 00 4c 8d 25 e3 39 0a 00 4c
[ 24.484238][ T299] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 24.490148][ T299] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[ 24.498160][ T299] RDX: 0000000000000001 RSI: 00007fbab0dac120 RDI: 0000000000000000
[pid 299] exit_group(0) = ?
[pid 299] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=299, si_uid=0, si_status=0, si_utime=0, si_stime=2} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 300 attached
, child_tidptr=0x555555cec750) = 300
[pid 300] set_robust_list(0x555555cec760, 24) = 0
[pid 300] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 300] setpgid(0, 0) = 0
[pid 300] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 300] write(3, "1000", 4) = 4
[pid 300] close(3) = 0
[pid 300] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 300] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 300] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 300] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 300] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 300] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 300] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 300] write(6, "7", 1) = 1
[pid 300] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 24.506288][ T299] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 24.514254][ T299] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffcff1f8bc
[ 24.522061][ T299] R13: 431bde82d7b634db R14: 00007fffcff1f8d0 R15: 0000000000000001
[ 24.529953][ T299]
[ 24.533026][ T299] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[ 24.549112][ T300] FAULT_INJECTION: forcing a failure.
[ 24.549112][ T300] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 24.562263][ T300] CPU: 0 PID: 300 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 24.573715][ T300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 24.583783][ T300] Call Trace:
[ 24.586908][ T300]
[ 24.589681][ T300] dump_stack_lvl+0x151/0x1b7
[ 24.594225][ T300] ? io_uring_drop_tctx_refs+0x190/0x190
[ 24.599675][ T300] dump_stack+0x15/0x17
[ 24.603963][ T300] should_fail+0x3c6/0x510
[ 24.608234][ T300] should_fail_alloc_page+0x5a/0x80
[ 24.613246][ T300] prepare_alloc_pages+0x15c/0x700
[ 24.618206][ T300] ? __this_cpu_preempt_check+0x13/0x20
[ 24.623832][ T300] ? __alloc_pages_bulk+0xe60/0xe60
[ 24.628855][ T300] ? unlock_page_memcg+0x146/0x160
[ 24.633780][ T300] __alloc_pages+0x138/0x5e0
[ 24.638205][ T300] ? __kasan_check_write+0x14/0x20
[ 24.643149][ T300] ? prep_new_page+0x110/0x110
[ 24.647836][ T300] ? do_set_pte+0x3ca/0x7c0
[ 24.652264][ T300] wp_page_copy+0x1d4/0x1b00
[ 24.656840][ T300] ? __kasan_check_write+0x14/0x20
[ 24.661894][ T300] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 24.667710][ T300] ? __pte_map_lock+0x442/0x620
[ 24.672705][ T300] ? vm_normal_page+0x1e1/0x1f0
[ 24.677397][ T300] do_wp_page+0x6fa/0xb60
[ 24.681646][ T300] handle_pte_fault+0x72e/0x2340
[ 24.686429][ T300] ? fault_around_bytes_set+0xc0/0xc0
[ 24.691619][ T300] do_handle_mm_fault+0x1fed/0x2330
[ 24.696656][ T300] ? numa_migrate_prep+0xe0/0xe0
[ 24.701425][ T300] ? __kasan_check_write+0x14/0x20
[ 24.706373][ T300] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 24.711754][ T300] ? _raw_spin_lock_irqsave+0x210/0x210
[ 24.717146][ T300] ? _raw_spin_unlock_irq+0x4e/0x70
[ 24.722435][ T300] ? down_read_trylock+0x1f9/0x300
[ 24.727372][ T300] ? __init_rwsem+0x1c0/0x1c0
[ 24.731904][ T300] ? debug_smp_processor_id+0x17/0x20
[ 24.737095][ T300] ? vmacache_update+0xb7/0x120
[ 24.741879][ T300] ? __find_vma+0x136/0x150
[ 24.746209][ T300] exc_page_fault+0x3b5/0x830
[ 24.750731][ T300] asm_exc_page_fault+0x27/0x30
[ 24.755593][ T300] RIP: 0033:0x7fbab0d0b520
[ 24.759835][ T300] Code: 84 dd fe ff ff 4c 89 e7 e8 5d 93 00 00 e9 d0 fe ff ff 0f 1f 84 00 00 00 00 00 49 8b 06 48 89 45 00 48 85 c0 0f 85 85 00 00 00 05 a9 3c 0a 00 01 31 c0 87 05 79 38 0a 00 83 f8 01 0f 8f 84 00
[ 24.779275][ T300] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 24.785188][ T300] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000004
[ 24.793075][ T300] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00007fbab0dadad8
[ 24.801160][ T300] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[pid 300] exit_group(0) = ?
[pid 300] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=300, si_uid=0, si_status=0, si_utime=0, si_stime=2} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555cec750) = 302
./strace-static-x86_64: Process 302 attached
[pid 302] set_robust_list(0x555555cec760, 24) = 0
[pid 302] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 302] setpgid(0, 0) = 0
[pid 302] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 302] write(3, "1000", 4) = 4
[pid 302] close(3) = 0
[pid 302] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 302] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 302] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 302] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 302] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 302] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 302] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 302] write(6, "7", 1) = 1
[pid 302] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 24.809653][ T300] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbab0daeda8
[ 24.817558][ T300] R13: 0000000000000000 R14: 00007fbab0daedc0 R15: 00007fbab0d04030
[ 24.825368][ T300]
[ 24.828451][ T300] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[ 24.842765][ T302] FAULT_INJECTION: forcing a failure.
[ 24.842765][ T302] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 24.856000][ T302] CPU: 0 PID: 302 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 24.867482][ T302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 24.877421][ T302] Call Trace:
[ 24.880564][ T302]
[ 24.883330][ T302] dump_stack_lvl+0x151/0x1b7
[ 24.887831][ T302] ? io_uring_drop_tctx_refs+0x190/0x190
[ 24.893306][ T302] dump_stack+0x15/0x17
[ 24.897380][ T302] should_fail+0x3c6/0x510
[ 24.901647][ T302] should_fail_alloc_page+0x5a/0x80
[ 24.906687][ T302] prepare_alloc_pages+0x15c/0x700
[ 24.911713][ T302] ? __alloc_pages+0x5e0/0x5e0
[ 24.916314][ T302] ? __alloc_pages_bulk+0xe60/0xe60
[ 24.921344][ T302] ? unlock_page_memcg+0x146/0x160
[ 24.926396][ T302] __alloc_pages+0x138/0x5e0
[ 24.930820][ T302] ? __kasan_check_write+0x14/0x20
[ 24.935790][ T302] ? prep_new_page+0x110/0x110
[ 24.940493][ T302] ? do_set_pte+0x3ca/0x7c0
[ 24.944893][ T302] wp_page_copy+0x1d4/0x1b00
[ 24.949311][ T302] ? __kasan_check_write+0x14/0x20
[ 24.954262][ T302] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 24.960107][ T302] ? __pte_map_lock+0x442/0x620
[ 24.964760][ T302] ? vm_normal_page+0x1e1/0x1f0
[ 24.969595][ T302] do_wp_page+0x6fa/0xb60
[ 24.974054][ T302] handle_pte_fault+0x72e/0x2340
[ 24.978820][ T302] ? fault_around_bytes_set+0xc0/0xc0
[ 24.984022][ T302] do_handle_mm_fault+0x1fed/0x2330
[ 24.989210][ T302] ? numa_migrate_prep+0xe0/0xe0
[ 24.994127][ T302] ? __kasan_check_write+0x14/0x20
[ 24.999082][ T302] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 25.004098][ T302] ? _raw_spin_lock_irqsave+0x210/0x210
[ 25.009488][ T302] ? _raw_spin_unlock_irq+0x4e/0x70
[ 25.014523][ T302] ? down_read_trylock+0x1f9/0x300
[ 25.019463][ T302] ? __init_rwsem+0x1c0/0x1c0
[ 25.023981][ T302] ? debug_smp_processor_id+0x17/0x20
[ 25.029962][ T302] ? vmacache_update+0xb7/0x120
[ 25.034748][ T302] ? __find_vma+0x136/0x150
[ 25.039077][ T302] exc_page_fault+0x3b5/0x830
[ 25.043592][ T302] asm_exc_page_fault+0x27/0x30
[ 25.048273][ T302] RIP: 0033:0x7fbab0d0b520
[ 25.052528][ T302] Code: 84 dd fe ff ff 4c 89 e7 e8 5d 93 00 00 e9 d0 fe ff ff 0f 1f 84 00 00 00 00 00 49 8b 06 48 89 45 00 48 85 c0 0f 85 85 00 00 00 05 a9 3c 0a 00 01 31 c0 87 05 79 38 0a 00 83 f8 01 0f 8f 84 00
[ 25.072408][ T302] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 25.078315][ T302] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000004
[ 25.086124][ T302] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00007fbab0dadad8
[ 25.093938][ T302] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 25.101866][ T302] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbab0daeda8
[pid 302] exit_group(0) = ?
[pid 302] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=302, si_uid=0, si_status=0, si_utime=0, si_stime=1} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 303 attached
[pid 303] set_robust_list(0x555555cec760, 24) = 0
[pid 294] <... clone resumed>, child_tidptr=0x555555cec750) = 303
[pid 303] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 303] setpgid(0, 0) = 0
[pid 303] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 303] write(3, "1000", 4) = 4
[pid 303] close(3) = 0
[pid 303] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 303] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 303] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 303] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 303] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 303] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 303] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 303] write(6, "7", 1) = 1
[pid 303] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 25.109840][ T302] R13: 0000000000000000 R14: 00007fbab0daedc0 R15: 00007fbab0d04030
[ 25.117669][ T302]
[ 25.121052][ T302] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[ 25.134923][ T303] FAULT_INJECTION: forcing a failure.
[ 25.134923][ T303] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 25.148127][ T303] CPU: 1 PID: 303 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 25.159678][ T303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 25.169573][ T303] Call Trace:
[ 25.172721][ T303]
[ 25.175479][ T303] dump_stack_lvl+0x151/0x1b7
[ 25.179997][ T303] ? io_uring_drop_tctx_refs+0x190/0x190
[ 25.185453][ T303] dump_stack+0x15/0x17
[ 25.189443][ T303] should_fail+0x3c6/0x510
[ 25.193695][ T303] should_fail_alloc_page+0x5a/0x80
[ 25.198727][ T303] prepare_alloc_pages+0x15c/0x700
[ 25.203676][ T303] ? __alloc_pages+0x5e0/0x5e0
[ 25.208288][ T303] ? __alloc_pages_bulk+0xe60/0xe60
[ 25.213309][ T303] ? unlock_page_memcg+0x146/0x160
[ 25.218262][ T303] __alloc_pages+0x138/0x5e0
[ 25.222681][ T303] ? __kasan_check_write+0x14/0x20
[ 25.227808][ T303] ? prep_new_page+0x110/0x110
[ 25.232413][ T303] ? do_set_pte+0x3ca/0x7c0
[ 25.236744][ T303] wp_page_copy+0x1d4/0x1b00
[ 25.241288][ T303] ? __kasan_check_write+0x14/0x20
[ 25.246202][ T303] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 25.252117][ T303] ? __pte_map_lock+0x442/0x620
[ 25.256791][ T303] ? vm_normal_page+0x1e1/0x1f0
[ 25.261520][ T303] do_wp_page+0x6fa/0xb60
[ 25.265739][ T303] handle_pte_fault+0x72e/0x2340
[ 25.270634][ T303] ? fault_around_bytes_set+0xc0/0xc0
[ 25.276218][ T303] do_handle_mm_fault+0x1fed/0x2330
[ 25.281346][ T303] ? numa_migrate_prep+0xe0/0xe0
[ 25.286116][ T303] ? __kasan_check_write+0x14/0x20
[ 25.291059][ T303] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 25.296099][ T303] ? _raw_spin_lock_irqsave+0x210/0x210
[ 25.301491][ T303] ? _raw_spin_unlock_irq+0x4e/0x70
[ 25.306511][ T303] ? down_read_trylock+0x1f9/0x300
[ 25.311454][ T303] ? __init_rwsem+0x1c0/0x1c0
[ 25.315991][ T303] ? debug_smp_processor_id+0x17/0x20
[ 25.321351][ T303] ? vmacache_update+0xb7/0x120
[ 25.326156][ T303] ? __find_vma+0x136/0x150
[ 25.330675][ T303] exc_page_fault+0x3b5/0x830
[ 25.335201][ T303] asm_exc_page_fault+0x27/0x30
[ 25.339960][ T303] RIP: 0033:0x7fbab0d0b520
[ 25.344421][ T303] Code: 84 dd fe ff ff 4c 89 e7 e8 5d 93 00 00 e9 d0 fe ff ff 0f 1f 84 00 00 00 00 00 49 8b 06 48 89 45 00 48 85 c0 0f 85 85 00 00 00 05 a9 3c 0a 00 01 31 c0 87 05 79 38 0a 00 83 f8 01 0f 8f 84 00
[ 25.363859][ T303] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 25.369858][ T303] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000004
[ 25.378012][ T303] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00007fbab0dadad8
[ 25.385826][ T303] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 25.393634][ T303] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbab0daeda8
[ 25.401447][ T303] R13: 0000000000000000 R14: 00007fbab0daedc0 R15: 00007fbab0d04030
[ 25.409275][ T303]
[pid 303] exit_group(0) = ?
[pid 303] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=303, si_uid=0, si_status=0, si_utime=0, si_stime=1} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555cec750) = 304
./strace-static-x86_64: Process 304 attached
[pid 304] set_robust_list(0x555555cec760, 24) = 0
[pid 304] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 304] setpgid(0, 0) = 0
[pid 304] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 304] write(3, "1000", 4) = 4
[pid 304] close(3) = 0
[pid 304] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 304] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 304] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 304] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 304] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 304] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 304] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 304] write(6, "7", 1) = 1
[pid 304] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 25.412486][ T303] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[ 25.425507][ T304] FAULT_INJECTION: forcing a failure.
[ 25.425507][ T304] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 25.438873][ T304] CPU: 0 PID: 304 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 25.450306][ T304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 25.460314][ T304] Call Trace:
[ 25.463436][ T304]
[ 25.466228][ T304] dump_stack_lvl+0x151/0x1b7
[ 25.470818][ T304] ? io_uring_drop_tctx_refs+0x190/0x190
[ 25.476293][ T304] dump_stack+0x15/0x17
[ 25.480270][ T304] should_fail+0x3c6/0x510
[ 25.485054][ T304] should_fail_alloc_page+0x5a/0x80
[ 25.490326][ T304] prepare_alloc_pages+0x15c/0x700
[ 25.495273][ T304] ? __alloc_pages+0x5e0/0x5e0
[ 25.499997][ T304] ? __alloc_pages_bulk+0xe60/0xe60
[ 25.505276][ T304] ? unlock_page_memcg+0x146/0x160
[ 25.510298][ T304] __alloc_pages+0x138/0x5e0
[ 25.514731][ T304] ? __kasan_check_write+0x14/0x20
[ 25.519788][ T304] ? prep_new_page+0x110/0x110
[ 25.524786][ T304] ? do_set_pte+0x3ca/0x7c0
[ 25.529125][ T304] wp_page_copy+0x1d4/0x1b00
[ 25.533862][ T304] ? __kasan_check_write+0x14/0x20
[ 25.539321][ T304] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 25.545135][ T304] ? __pte_map_lock+0x442/0x620
[ 25.549904][ T304] ? __kasan_check_write+0x14/0x20
[ 25.554852][ T304] ? vm_normal_page+0x1e1/0x1f0
[ 25.559628][ T304] do_wp_page+0x6fa/0xb60
[ 25.563792][ T304] handle_pte_fault+0x72e/0x2340
[ 25.568916][ T304] ? fault_around_bytes_set+0xc0/0xc0
[ 25.574188][ T304] do_handle_mm_fault+0x1fed/0x2330
[ 25.579155][ T304] ? numa_migrate_prep+0xe0/0xe0
[ 25.583976][ T304] ? __kasan_check_write+0x14/0x20
[ 25.588896][ T304] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 25.593821][ T304] ? _raw_spin_lock_irqsave+0x210/0x210
[ 25.599302][ T304] ? _raw_spin_unlock_irq+0x4e/0x70
[ 25.604339][ T304] ? down_read_trylock+0x1f9/0x300
[ 25.609294][ T304] ? __init_rwsem+0x1c0/0x1c0
[ 25.613894][ T304] ? debug_smp_processor_id+0x17/0x20
[ 25.619200][ T304] ? vmacache_update+0xb7/0x120
[ 25.623893][ T304] ? __find_vma+0x136/0x150
[ 25.628320][ T304] exc_page_fault+0x3b5/0x830
[ 25.632829][ T304] asm_exc_page_fault+0x27/0x30
[ 25.637524][ T304] RIP: 0033:0x7fbab0d0b520
[ 25.642287][ T304] Code: 84 dd fe ff ff 4c 89 e7 e8 5d 93 00 00 e9 d0 fe ff ff 0f 1f 84 00 00 00 00 00 49 8b 06 48 89 45 00 48 85 c0 0f 85 85 00 00 00 05 a9 3c 0a 00 01 31 c0 87 05 79 38 0a 00 83 f8 01 0f 8f 84 00
[ 25.662659][ T304] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 25.668660][ T304] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000004
[ 25.676817][ T304] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00007fbab0dadad8
[ 25.684771][ T304] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 25.692687][ T304] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbab0daeda8
[ 25.700595][ T304] R13: 0000000000000000 R14: 00007fbab0daedc0 R15: 00007fbab0d04030
[ 25.708390][ T304]
[pid 304] exit_group(0) = ?
[pid 304] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=304, si_uid=0, si_status=0, si_utime=0, si_stime=1} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555cec750) = 305
./strace-static-x86_64: Process 305 attached
[pid 305] set_robust_list(0x555555cec760, 24) = 0
[pid 305] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 305] setpgid(0, 0) = 0
[pid 305] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 305] write(3, "1000", 4) = 4
[pid 305] close(3) = 0
[pid 305] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 305] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 305] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 305] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 305] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 305] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 305] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 305] write(6, "7", 1) = 1
[pid 305] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 25.711404][ T304] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[ 25.728939][ T305] FAULT_INJECTION: forcing a failure.
[ 25.728939][ T305] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 25.742202][ T305] CPU: 0 PID: 305 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 25.753664][ T305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 25.763559][ T305] Call Trace:
[ 25.766678][ T305]
[ 25.769471][ T305] dump_stack_lvl+0x151/0x1b7
[ 25.773985][ T305] ? io_uring_drop_tctx_refs+0x190/0x190
[ 25.779841][ T305] dump_stack+0x15/0x17
[ 25.783831][ T305] should_fail+0x3c6/0x510
[ 25.788077][ T305] should_fail_alloc_page+0x5a/0x80
[ 25.793320][ T305] prepare_alloc_pages+0x15c/0x700
[ 25.798258][ T305] ? __alloc_pages+0x5e0/0x5e0
[ 25.803223][ T305] ? __alloc_pages_bulk+0xe60/0xe60
[ 25.808323][ T305] ? unlock_page_memcg+0x146/0x160
[ 25.813364][ T305] __alloc_pages+0x138/0x5e0
[ 25.817866][ T305] ? __kasan_check_write+0x14/0x20
[ 25.822826][ T305] ? prep_new_page+0x110/0x110
[ 25.827417][ T305] ? do_set_pte+0x3ca/0x7c0
[ 25.831757][ T305] wp_page_copy+0x1d4/0x1b00
[ 25.836271][ T305] ? __kasan_check_write+0x14/0x20
[ 25.841238][ T305] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 25.847207][ T305] ? __pte_map_lock+0x442/0x620
[ 25.851909][ T305] ? vm_normal_page+0x1e1/0x1f0
[ 25.856602][ T305] do_wp_page+0x6fa/0xb60
[ 25.860776][ T305] handle_pte_fault+0x72e/0x2340
[ 25.865532][ T305] ? fault_around_bytes_set+0xc0/0xc0
[ 25.870728][ T305] do_handle_mm_fault+0x1fed/0x2330
[ 25.875768][ T305] ? numa_migrate_prep+0xe0/0xe0
[ 25.880538][ T305] ? __kasan_check_write+0x14/0x20
[ 25.885496][ T305] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 25.890514][ T305] ? _raw_spin_lock_irqsave+0x210/0x210
[ 25.895910][ T305] ? _raw_spin_unlock_irq+0x4e/0x70
[ 25.900956][ T305] ? down_read_trylock+0x1f9/0x300
[ 25.905888][ T305] ? __init_rwsem+0x1c0/0x1c0
[ 25.910390][ T305] ? debug_smp_processor_id+0x17/0x20
[ 25.916045][ T305] ? vmacache_update+0xb7/0x120
[ 25.920743][ T305] ? __find_vma+0x136/0x150
[ 25.925064][ T305] exc_page_fault+0x3b5/0x830
[ 25.929758][ T305] asm_exc_page_fault+0x27/0x30
[ 25.934554][ T305] RIP: 0033:0x7fbab0d0b520
[ 25.938792][ T305] Code: 84 dd fe ff ff 4c 89 e7 e8 5d 93 00 00 e9 d0 fe ff ff 0f 1f 84 00 00 00 00 00 49 8b 06 48 89 45 00 48 85 c0 0f 85 85 00 00 00 05 a9 3c 0a 00 01 31 c0 87 05 79 38 0a 00 83 f8 01 0f 8f 84 00
[ 25.958318][ T305] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[pid 305] exit_group(0) = ?
[pid 305] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=305, si_uid=0, si_status=0, si_utime=0, si_stime=2} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555cec750) = 307
./strace-static-x86_64: Process 307 attached
[pid 307] set_robust_list(0x555555cec760, 24) = 0
[pid 307] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 307] setpgid(0, 0) = 0
[pid 307] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 307] write(3, "1000", 4) = 4
[pid 307] close(3) = 0
[pid 307] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 307] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 307] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 307] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 307] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 307] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 307] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 307] write(6, "7", 1) = 1
[pid 307] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 25.964294][ T305] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000004
[ 25.972113][ T305] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00007fbab0dadad8
[ 25.980023][ T305] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 25.987830][ T305] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbab0daeda8
[ 25.995634][ T305] R13: 0000000000000000 R14: 00007fbab0daedc0 R15: 00007fbab0d04030
[ 26.003451][ T305]
[ 26.006554][ T305] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[ 26.021665][ T307] FAULT_INJECTION: forcing a failure.
[ 26.021665][ T307] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 26.034825][ T307] CPU: 1 PID: 307 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 26.046342][ T307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 26.056339][ T307] Call Trace:
[ 26.059458][ T307]
[ 26.062225][ T307] dump_stack_lvl+0x151/0x1b7
[ 26.066735][ T307] ? io_uring_drop_tctx_refs+0x190/0x190
[ 26.072217][ T307] dump_stack+0x15/0x17
[ 26.076196][ T307] should_fail+0x3c6/0x510
[ 26.080455][ T307] should_fail_alloc_page+0x5a/0x80
[ 26.085484][ T307] prepare_alloc_pages+0x15c/0x700
[ 26.090521][ T307] ? __alloc_pages_bulk+0xe60/0xe60
[ 26.095551][ T307] ? __kasan_slab_free+0x11/0x20
[ 26.100341][ T307] __alloc_pages+0x138/0x5e0
[ 26.104756][ T307] ? prep_new_page+0x110/0x110
[ 26.109351][ T307] ? kvm_sched_clock_read+0x18/0x40
[ 26.114385][ T307] wp_page_copy+0x200/0x1b00
[ 26.118818][ T307] ? __kasan_check_write+0x14/0x20
[ 26.123929][ T307] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 26.129832][ T307] ? __pte_map_lock+0x442/0x620
[ 26.134516][ T307] ? __kasan_check_write+0x14/0x20
[ 26.139645][ T307] do_wp_page+0x6fa/0xb60
[ 26.144182][ T307] handle_pte_fault+0x72e/0x2340
[ 26.148952][ T307] ? fault_around_bytes_set+0xc0/0xc0
[ 26.154162][ T307] do_handle_mm_fault+0x1fed/0x2330
[ 26.159193][ T307] ? numa_migrate_prep+0xe0/0xe0
[ 26.163968][ T307] ? __kasan_check_write+0x14/0x20
[ 26.168909][ T307] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 26.173868][ T307] ? _raw_spin_lock_irqsave+0x210/0x210
[ 26.179267][ T307] ? _raw_spin_unlock_irq+0x4e/0x70
[ 26.184279][ T307] ? down_read_trylock+0x1f9/0x300
[ 26.189221][ T307] ? __init_rwsem+0x1c0/0x1c0
[ 26.193733][ T307] ? vmacache_update+0xb7/0x120
[ 26.198595][ T307] ? __find_vma+0x136/0x150
[ 26.202938][ T307] exc_page_fault+0x3b5/0x830
[ 26.207454][ T307] asm_exc_page_fault+0x27/0x30
[ 26.212134][ T307] RIP: 0033:0x7fbab0d0b3b0
[ 26.216438][ T307] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 3d 0c 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 f0 39 0a 00 0f 85 0f 02 00 00 4c 8d 25 e3 39 0a 00 4c
[ 26.236349][ T307] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 26.242249][ T307] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[ 26.250103][ T307] RDX: 0000000000000001 RSI: 00007fbab0dac120 RDI: 0000000000000000
[ 26.257973][ T307] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[pid 307] exit_group(0) = ?
[pid 307] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=307, si_uid=0, si_status=0, si_utime=0, si_stime=3} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555cec750) = 308
./strace-static-x86_64: Process 308 attached
[pid 308] set_robust_list(0x555555cec760, 24) = 0
[pid 308] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 308] setpgid(0, 0) = 0
[pid 308] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 308] write(3, "1000", 4) = 4
[pid 308] close(3) = 0
[pid 308] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 308] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 308] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 308] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 308] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 308] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 308] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 308] write(6, "7", 1) = 1
[pid 308] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 26.265778][ T307] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffcff1f8bc
[ 26.273590][ T307] R13: 431bde82d7b634db R14: 00007fffcff1f8d0 R15: 0000000000000001
[ 26.281410][ T307]
[ 26.284511][ T307] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[ 26.301216][ T308] FAULT_INJECTION: forcing a failure.
[ 26.301216][ T308] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 26.314468][ T308] CPU: 1 PID: 308 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 26.326328][ T308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 26.336237][ T308] Call Trace:
[ 26.339358][ T308]
[ 26.342247][ T308] dump_stack_lvl+0x151/0x1b7
[ 26.346825][ T308] ? io_uring_drop_tctx_refs+0x190/0x190
[ 26.352232][ T308] dump_stack+0x15/0x17
[ 26.356323][ T308] should_fail+0x3c6/0x510
[ 26.360564][ T308] should_fail_alloc_page+0x5a/0x80
[ 26.365691][ T308] prepare_alloc_pages+0x15c/0x700
[ 26.370643][ T308] ? __alloc_pages+0x5e0/0x5e0
[ 26.375337][ T308] ? __alloc_pages_bulk+0xe60/0xe60
[ 26.380553][ T308] ? unlock_page_memcg+0x146/0x160
[ 26.385502][ T308] __alloc_pages+0x138/0x5e0
[ 26.390199][ T308] ? __kasan_check_write+0x14/0x20
[ 26.395149][ T308] ? prep_new_page+0x110/0x110
[ 26.399994][ T308] ? do_set_pte+0x3ca/0x7c0
[ 26.404335][ T308] wp_page_copy+0x1d4/0x1b00
[ 26.408766][ T308] ? __kasan_check_write+0x14/0x20
[ 26.413727][ T308] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 26.419521][ T308] ? __pte_map_lock+0x442/0x620
[ 26.424209][ T308] ? vm_normal_page+0x1e1/0x1f0
[ 26.428893][ T308] do_wp_page+0x6fa/0xb60
[ 26.433213][ T308] handle_pte_fault+0x72e/0x2340
[ 26.438192][ T308] ? fault_around_bytes_set+0xc0/0xc0
[ 26.443550][ T308] do_handle_mm_fault+0x1fed/0x2330
[ 26.448748][ T308] ? numa_migrate_prep+0xe0/0xe0
[ 26.453535][ T308] ? __kasan_check_write+0x14/0x20
[ 26.458470][ T308] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 26.463411][ T308] ? _raw_spin_lock_irqsave+0x210/0x210
[ 26.468796][ T308] ? _raw_spin_unlock_irq+0x4e/0x70
[ 26.473835][ T308] ? down_read_trylock+0x1f9/0x300
[ 26.479418][ T308] ? __init_rwsem+0x1c0/0x1c0
[ 26.484032][ T308] ? debug_smp_processor_id+0x17/0x20
[ 26.489328][ T308] ? vmacache_update+0xb7/0x120
[ 26.494864][ T308] ? __find_vma+0x136/0x150
[ 26.499189][ T308] exc_page_fault+0x3b5/0x830
[ 26.503716][ T308] asm_exc_page_fault+0x27/0x30
[ 26.508391][ T308] RIP: 0033:0x7fbab0d0b520
[ 26.513159][ T308] Code: 84 dd fe ff ff 4c 89 e7 e8 5d 93 00 00 e9 d0 fe ff ff 0f 1f 84 00 00 00 00 00 49 8b 06 48 89 45 00 48 85 c0 0f 85 85 00 00 00 05 a9 3c 0a 00 01 31 c0 87 05 79 38 0a 00 83 f8 01 0f 8f 84 00
[ 26.533039][ T308] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 26.539030][ T308] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000004
[ 26.546840][ T308] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00007fbab0dadad8
[ 26.554774][ T308] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 26.562587][ T308] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbab0daeda8
[pid 308] exit_group(0) = ?
[pid 308] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=308, si_uid=0, si_status=0, si_utime=0, si_stime=1} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555cec750) = 309
./strace-static-x86_64: Process 309 attached
[pid 309] set_robust_list(0x555555cec760, 24) = 0
[pid 309] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 309] setpgid(0, 0) = 0
[pid 309] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 309] write(3, "1000", 4) = 4
[pid 309] close(3) = 0
[pid 309] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 309] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 309] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 309] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 309] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 309] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 309] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 309] write(6, "7", 1) = 1
[pid 309] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 26.570400][ T308] R13: 0000000000000000 R14: 00007fbab0daedc0 R15: 00007fbab0d04030
[ 26.578215][ T308]
[ 26.581168][ T308] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[ 26.597433][ T309] FAULT_INJECTION: forcing a failure.
[ 26.597433][ T309] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 26.610622][ T309] CPU: 1 PID: 309 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 26.621968][ T309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 26.631909][ T309] Call Trace:
[ 26.635254][ T309]
[ 26.638036][ T309] dump_stack_lvl+0x151/0x1b7
[ 26.642535][ T309] ? io_uring_drop_tctx_refs+0x190/0x190
[ 26.648034][ T309] dump_stack+0x15/0x17
[ 26.653476][ T309] should_fail+0x3c6/0x510
[ 26.657870][ T309] should_fail_alloc_page+0x5a/0x80
[ 26.662887][ T309] prepare_alloc_pages+0x15c/0x700
[ 26.667851][ T309] ? __alloc_pages+0x5e0/0x5e0
[ 26.672520][ T309] ? __alloc_pages_bulk+0xe60/0xe60
[ 26.677558][ T309] ? unlock_page_memcg+0x146/0x160
[ 26.682499][ T309] __alloc_pages+0x138/0x5e0
[ 26.686925][ T309] ? __kasan_check_write+0x14/0x20
[ 26.691959][ T309] ? prep_new_page+0x110/0x110
[ 26.696573][ T309] ? do_set_pte+0x3ca/0x7c0
[ 26.700900][ T309] wp_page_copy+0x1d4/0x1b00
[ 26.705364][ T309] ? __kasan_check_write+0x14/0x20
[ 26.710277][ T309] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 26.716279][ T309] ? __pte_map_lock+0x442/0x620
[ 26.721215][ T309] ? vm_normal_page+0x1e1/0x1f0
[ 26.726178][ T309] do_wp_page+0x6fa/0xb60
[ 26.730345][ T309] handle_pte_fault+0x72e/0x2340
[ 26.735204][ T309] ? update_load_avg+0x43a/0x1150
[ 26.740084][ T309] ? fault_around_bytes_set+0xc0/0xc0
[ 26.745279][ T309] do_handle_mm_fault+0x1fed/0x2330
[ 26.750317][ T309] ? numa_migrate_prep+0xe0/0xe0
[ 26.756207][ T309] ? __kasan_check_write+0x14/0x20
[ 26.761498][ T309] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 26.766501][ T309] ? _raw_spin_lock_irqsave+0x210/0x210
[ 26.771970][ T309] ? _raw_spin_unlock_irq+0x4e/0x70
[ 26.777433][ T309] ? down_read_trylock+0x1f9/0x300
[ 26.782374][ T309] ? __init_rwsem+0x1c0/0x1c0
[ 26.786888][ T309] ? debug_smp_processor_id+0x17/0x20
[ 26.792105][ T309] ? vmacache_update+0xb7/0x120
[ 26.796784][ T309] ? __find_vma+0x136/0x150
[ 26.801127][ T309] exc_page_fault+0x3b5/0x830
[ 26.805634][ T309] asm_exc_page_fault+0x27/0x30
[ 26.810321][ T309] RIP: 0033:0x7fbab0d0b520
[ 26.814610][ T309] Code: 84 dd fe ff ff 4c 89 e7 e8 5d 93 00 00 e9 d0 fe ff ff 0f 1f 84 00 00 00 00 00 49 8b 06 48 89 45 00 48 85 c0 0f 85 85 00 00 00 05 a9 3c 0a 00 01 31 c0 87 05 79 38 0a 00 83 f8 01 0f 8f 84 00
[ 26.834019][ T309] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 26.839921][ T309] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000004
[ 26.847926][ T309] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00007fbab0dadad8
[ 26.855739][ T309] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 26.863552][ T309] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbab0daeda8
[pid 309] exit_group(0) = ?
[pid 309] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=309, si_uid=0, si_status=0, si_utime=0, si_stime=1} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555cec750) = 310
./strace-static-x86_64: Process 310 attached
[pid 310] set_robust_list(0x555555cec760, 24) = 0
[pid 310] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 310] setpgid(0, 0) = 0
[pid 310] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 310] write(3, "1000", 4) = 4
[pid 310] close(3) = 0
[pid 310] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 310] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 310] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 310] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 310] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 310] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 310] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 310] write(6, "7", 1) = 1
[pid 310] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 26.871815][ T309] R13: 0000000000000000 R14: 00007fbab0daedc0 R15: 00007fbab0d04030
[ 26.879628][ T309]
[ 26.891077][ T310] FAULT_INJECTION: forcing a failure.
[ 26.891077][ T310] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 26.904187][ T310] CPU: 0 PID: 310 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 26.915543][ T310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 26.925460][ T310] Call Trace:
[ 26.928646][ T310]
[ 26.931424][ T310] dump_stack_lvl+0x151/0x1b7
[ 26.935938][ T310] ? io_uring_drop_tctx_refs+0x190/0x190
[ 26.941404][ T310] dump_stack+0x15/0x17
[ 26.945474][ T310] should_fail+0x3c6/0x510
[ 26.949668][ T310] should_fail_alloc_page+0x5a/0x80
[ 26.954683][ T310] prepare_alloc_pages+0x15c/0x700
[ 26.959850][ T310] ? __alloc_pages+0x5e0/0x5e0
[ 26.964440][ T310] ? __alloc_pages_bulk+0xe60/0xe60
[ 26.969458][ T310] ? unlock_page_memcg+0x146/0x160
[ 26.974405][ T310] __alloc_pages+0x138/0x5e0
[ 26.978857][ T310] ? __kasan_check_write+0x14/0x20
[ 26.983783][ T310] ? prep_new_page+0x110/0x110
[ 26.988379][ T310] ? do_set_pte+0x3ca/0x7c0
[ 26.992719][ T310] wp_page_copy+0x1d4/0x1b00
[ 26.997159][ T310] ? __kasan_check_write+0x14/0x20
[ 27.002099][ T310] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 27.007912][ T310] ? __pte_map_lock+0x442/0x620
[ 27.012594][ T310] ? vm_normal_page+0x1e1/0x1f0
[ 27.017281][ T310] do_wp_page+0x6fa/0xb60
[ 27.021450][ T310] handle_pte_fault+0x72e/0x2340
[ 27.026221][ T310] ? fault_around_bytes_set+0xc0/0xc0
[ 27.031431][ T310] do_handle_mm_fault+0x1fed/0x2330
[ 27.036465][ T310] ? numa_migrate_prep+0xe0/0xe0
[ 27.041239][ T310] ? __kasan_check_write+0x14/0x20
[ 27.046185][ T310] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 27.051138][ T310] ? _raw_spin_lock_irqsave+0x210/0x210
[ 27.056512][ T310] ? _raw_spin_unlock_irq+0x4e/0x70
[ 27.061546][ T310] ? down_read_trylock+0x1f9/0x300
[ 27.066580][ T310] ? __init_rwsem+0x1c0/0x1c0
[ 27.071090][ T310] ? debug_smp_processor_id+0x17/0x20
[ 27.076298][ T310] ? vmacache_update+0xb7/0x120
[ 27.081021][ T310] ? __find_vma+0x136/0x150
[ 27.085330][ T310] exc_page_fault+0x3b5/0x830
[ 27.089849][ T310] asm_exc_page_fault+0x27/0x30
[ 27.094634][ T310] RIP: 0033:0x7fbab0d0b520
[ 27.099168][ T310] Code: 84 dd fe ff ff 4c 89 e7 e8 5d 93 00 00 e9 d0 fe ff ff 0f 1f 84 00 00 00 00 00 49 8b 06 48 89 45 00 48 85 c0 0f 85 85 00 00 00 05 a9 3c 0a 00 01 31 c0 87 05 79 38 0a 00 83 f8 01 0f 8f 84 00
[ 27.118947][ T310] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[pid 310] exit_group(0) = ?
[pid 310] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=310, si_uid=0, si_status=0, si_utime=0, si_stime=1} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555cec750) = 312
./strace-static-x86_64: Process 312 attached
[pid 312] set_robust_list(0x555555cec760, 24) = 0
[pid 312] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 312] setpgid(0, 0) = 0
[pid 312] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 312] write(3, "1000", 4) = 4
[pid 312] close(3) = 0
[pid 312] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 312] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 312] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 312] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 312] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 312] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 312] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 312] write(6, "7", 1) = 1
[pid 312] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 27.124846][ T310] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000004
[ 27.132655][ T310] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00007fbab0dadad8
[ 27.140466][ T310] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 27.148286][ T310] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbab0daeda8
[ 27.156096][ T310] R13: 0000000000000000 R14: 00007fbab0daedc0 R15: 00007fbab0d04030
[ 27.163908][ T310]
[ 27.174249][ T312] FAULT_INJECTION: forcing a failure.
[ 27.174249][ T312] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 27.187516][ T312] CPU: 0 PID: 312 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 27.199133][ T312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 27.209030][ T312] Call Trace:
[ 27.212149][ T312]
[ 27.214924][ T312] dump_stack_lvl+0x151/0x1b7
[ 27.219522][ T312] ? io_uring_drop_tctx_refs+0x190/0x190
[ 27.225001][ T312] dump_stack+0x15/0x17
[ 27.229030][ T312] should_fail+0x3c6/0x510
[ 27.233241][ T312] should_fail_alloc_page+0x5a/0x80
[ 27.238282][ T312] prepare_alloc_pages+0x15c/0x700
[ 27.243230][ T312] ? __alloc_pages_bulk+0xe60/0xe60
[ 27.248253][ T312] ? __kasan_slab_free+0x11/0x20
[ 27.253054][ T312] ? slab_free_freelist_hook+0xbd/0x190
[ 27.258403][ T312] __alloc_pages+0x138/0x5e0
[ 27.262832][ T312] ? prep_new_page+0x110/0x110
[ 27.267430][ T312] ? unix_dgram_sendmsg+0xb5e/0x2090
[ 27.272557][ T312] ? put_pid+0xc3/0x110
[ 27.276718][ T312] ? unix_dgram_sendmsg+0xbe8/0x2090
[ 27.281845][ T312] wp_page_copy+0x200/0x1b00
[ 27.286265][ T312] ? __kasan_check_write+0x14/0x20
[ 27.291212][ T312] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 27.297025][ T312] ? native_sched_clock_from_tsc+0xb0/0x130
[ 27.302773][ T312] ? __pte_map_lock+0x442/0x620
[ 27.307442][ T312] do_wp_page+0x6fa/0xb60
[ 27.311608][ T312] handle_pte_fault+0x72e/0x2340
[ 27.316386][ T312] ? fault_around_bytes_set+0xc0/0xc0
[ 27.321588][ T312] do_handle_mm_fault+0x1fed/0x2330
[ 27.326625][ T312] ? numa_migrate_prep+0xe0/0xe0
[ 27.331397][ T312] ? __kasan_check_write+0x14/0x20
[ 27.336343][ T312] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 27.341291][ T312] ? _raw_spin_lock_irqsave+0x210/0x210
[ 27.346674][ T312] ? _raw_spin_unlock_irq+0x4e/0x70
[ 27.351706][ T312] ? down_read_trylock+0x1f9/0x300
[ 27.356652][ T312] ? __init_rwsem+0x1c0/0x1c0
[ 27.361164][ T312] ? vmacache_update+0xb7/0x120
[ 27.365859][ T312] ? __find_vma+0x136/0x150
[ 27.370543][ T312] exc_page_fault+0x3b5/0x830
[ 27.375070][ T312] asm_exc_page_fault+0x27/0x30
[ 27.379737][ T312] RIP: 0033:0x7fbab0d0b3b0
[ 27.383994][ T312] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 3d 0c 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 f0 39 0a 00 0f 85 0f 02 00 00 4c 8d 25 e3 39 0a 00 4c
[ 27.403435][ T312] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 27.409334][ T312] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[ 27.417149][ T312] RDX: 0000000000000001 RSI: 00007fbab0dac120 RDI: 0000000000000000
[pid 312] exit_group(0) = ?
[pid 312] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=312, si_uid=0, si_status=0, si_utime=0, si_stime=1} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555cec750) = 313
./strace-static-x86_64: Process 313 attached
[pid 313] set_robust_list(0x555555cec760, 24) = 0
[pid 313] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 313] setpgid(0, 0) = 0
[pid 313] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 313] write(3, "1000", 4) = 4
[pid 313] close(3) = 0
[pid 313] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 313] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 313] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 313] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 313] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 313] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 313] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 313] write(6, "7", 1) = 1
[pid 313] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 27.425052][ T312] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 27.432949][ T312] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffcff1f8bc
[ 27.440757][ T312] R13: 431bde82d7b634db R14: 00007fffcff1f8d0 R15: 0000000000000001
[ 27.448923][ T312]
[ 27.458905][ T313] FAULT_INJECTION: forcing a failure.
[ 27.458905][ T313] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 27.471958][ T313] CPU: 0 PID: 313 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 27.483483][ T313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 27.493374][ T313] Call Trace:
[ 27.496497][ T313]
[ 27.499277][ T313] dump_stack_lvl+0x151/0x1b7
[ 27.503792][ T313] ? io_uring_drop_tctx_refs+0x190/0x190
[ 27.509255][ T313] dump_stack+0x15/0x17
[ 27.513246][ T313] should_fail+0x3c6/0x510
[ 27.517516][ T313] should_fail_alloc_page+0x5a/0x80
[ 27.522804][ T313] prepare_alloc_pages+0x15c/0x700
[ 27.527744][ T313] ? __alloc_pages+0x5e0/0x5e0
[ 27.532350][ T313] ? __alloc_pages_bulk+0xe60/0xe60
[ 27.537485][ T313] ? unlock_page_memcg+0x146/0x160
[ 27.542502][ T313] __alloc_pages+0x138/0x5e0
[ 27.546924][ T313] ? __kasan_check_write+0x14/0x20
[ 27.551870][ T313] ? prep_new_page+0x110/0x110
[ 27.556472][ T313] ? do_set_pte+0x3ca/0x7c0
[ 27.560818][ T313] wp_page_copy+0x1d4/0x1b00
[ 27.565247][ T313] ? __kasan_check_write+0x14/0x20
[ 27.570188][ T313] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 27.576008][ T313] ? __pte_map_lock+0x442/0x620
[ 27.580716][ T313] ? vm_normal_page+0x1e1/0x1f0
[ 27.585376][ T313] do_wp_page+0x6fa/0xb60
[ 27.589540][ T313] handle_pte_fault+0x72e/0x2340
[ 27.594525][ T313] ? fault_around_bytes_set+0xc0/0xc0
[ 27.600399][ T313] do_handle_mm_fault+0x1fed/0x2330
[ 27.605421][ T313] ? numa_migrate_prep+0xe0/0xe0
[ 27.610198][ T313] ? __kasan_check_write+0x14/0x20
[ 27.615145][ T313] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 27.620088][ T313] ? _raw_spin_lock_irqsave+0x210/0x210
[ 27.625477][ T313] ? _raw_spin_unlock_irq+0x4e/0x70
[ 27.630502][ T313] ? down_read_trylock+0x1f9/0x300
[ 27.635450][ T313] ? __init_rwsem+0x1c0/0x1c0
[ 27.640056][ T313] ? debug_smp_processor_id+0x17/0x20
[ 27.645258][ T313] ? vmacache_update+0xb7/0x120
[ 27.650025][ T313] ? __find_vma+0x136/0x150
[ 27.654422][ T313] exc_page_fault+0x3b5/0x830
[ 27.658994][ T313] asm_exc_page_fault+0x27/0x30
[ 27.663880][ T313] RIP: 0033:0x7fbab0d0b520
[ 27.668110][ T313] Code: 84 dd fe ff ff 4c 89 e7 e8 5d 93 00 00 e9 d0 fe ff ff 0f 1f 84 00 00 00 00 00 49 8b 06 48 89 45 00 48 85 c0 0f 85 85 00 00 00 05 a9 3c 0a 00 01 31 c0 87 05 79 38 0a 00 83 f8 01 0f 8f 84 00
[ 27.688077][ T313] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 27.694056][ T313] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000004
[ 27.701878][ T313] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00007fbab0dadad8
[ 27.709681][ T313] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 27.717577][ T313] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbab0daeda8
[pid 313] exit_group(0) = ?
[pid 313] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=313, si_uid=0, si_status=0, si_utime=0, si_stime=1} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555cec750) = 314
./strace-static-x86_64: Process 314 attached
[pid 314] set_robust_list(0x555555cec760, 24) = 0
[pid 314] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 314] setpgid(0, 0) = 0
[pid 314] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 314] write(3, "1000", 4) = 4
[pid 314] close(3) = 0
[pid 314] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 314] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 314] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 314] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 314] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 314] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 314] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 314] write(6, "7", 1) = 1
[pid 314] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 27.725403][ T313] R13: 0000000000000000 R14: 00007fbab0daedc0 R15: 00007fbab0d04030
[ 27.733294][ T313]
[ 27.745469][ T314] FAULT_INJECTION: forcing a failure.
[ 27.745469][ T314] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 27.759197][ T314] CPU: 1 PID: 314 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 27.770923][ T314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 27.781175][ T314] Call Trace:
[ 27.784299][ T314]
[ 27.787037][ T314] dump_stack_lvl+0x151/0x1b7
[ 27.791649][ T314] ? io_uring_drop_tctx_refs+0x190/0x190
[ 27.797103][ T314] dump_stack+0x15/0x17
[ 27.801097][ T314] should_fail+0x3c6/0x510
[ 27.805525][ T314] should_fail_alloc_page+0x5a/0x80
[ 27.810588][ T314] prepare_alloc_pages+0x15c/0x700
[ 27.815509][ T314] ? __alloc_pages+0x5e0/0x5e0
[ 27.820197][ T314] ? __alloc_pages_bulk+0xe60/0xe60
[ 27.825235][ T314] ? unlock_page_memcg+0x146/0x160
[ 27.830176][ T314] __alloc_pages+0x138/0x5e0
[ 27.834611][ T314] ? __kasan_check_write+0x14/0x20
[ 27.839559][ T314] ? prep_new_page+0x110/0x110
[ 27.844328][ T314] ? do_set_pte+0x3ca/0x7c0
[ 27.848751][ T314] wp_page_copy+0x1d4/0x1b00
[ 27.853179][ T314] ? __kasan_check_write+0x14/0x20
[ 27.858296][ T314] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 27.864103][ T314] ? __pte_map_lock+0x442/0x620
[ 27.868787][ T314] ? vm_normal_page+0x1e1/0x1f0
[ 27.873599][ T314] do_wp_page+0x6fa/0xb60
[ 27.877752][ T314] handle_pte_fault+0x72e/0x2340
[ 27.882525][ T314] ? update_load_avg+0x43a/0x1150
[ 27.887396][ T314] ? fault_around_bytes_set+0xc0/0xc0
[ 27.892688][ T314] do_handle_mm_fault+0x1fed/0x2330
[ 27.897730][ T314] ? numa_migrate_prep+0xe0/0xe0
[ 27.902513][ T314] ? __kasan_check_write+0x14/0x20
[ 27.907520][ T314] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 27.912595][ T314] ? _raw_spin_lock_irqsave+0x210/0x210
[ 27.917969][ T314] ? _raw_spin_unlock_irq+0x4e/0x70
[ 27.923212][ T314] ? down_read_trylock+0x1f9/0x300
[ 27.928169][ T314] ? __init_rwsem+0x1c0/0x1c0
[ 27.932756][ T314] ? debug_smp_processor_id+0x17/0x20
[ 27.938139][ T314] ? vmacache_update+0xb7/0x120
[ 27.942924][ T314] ? __find_vma+0x136/0x150
[ 27.947263][ T314] exc_page_fault+0x3b5/0x830
[ 27.951779][ T314] asm_exc_page_fault+0x27/0x30
[ 27.956461][ T314] RIP: 0033:0x7fbab0d0b520
[ 27.960827][ T314] Code: 84 dd fe ff ff 4c 89 e7 e8 5d 93 00 00 e9 d0 fe ff ff 0f 1f 84 00 00 00 00 00 49 8b 06 48 89 45 00 48 85 c0 0f 85 85 00 00 00 05 a9 3c 0a 00 01 31 c0 87 05 79 38 0a 00 83 f8 01 0f 8f 84 00
[pid 314] exit_group(0) = ?
[pid 314] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=314, si_uid=0, si_status=0, si_utime=0, si_stime=2} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 315 attached
[pid 315] set_robust_list(0x555555cec760, 24) = 0
[pid 315] prctl(PR_SET_PDEATHSIG, SIGKILL
[pid 294] <... clone resumed>, child_tidptr=0x555555cec750) = 315
[pid 315] <... prctl resumed>) = 0
[pid 315] setpgid(0, 0) = 0
[pid 315] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 315] write(3, "1000", 4) = 4
[pid 315] close(3) = 0
[pid 315] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 315] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 315] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 315] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 315] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 315] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 315] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 315] write(6, "7", 1) = 1
[pid 315] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 27.980351][ T314] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 27.986254][ T314] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000004
[ 27.994060][ T314] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00007fbab0dadad8
[ 28.001871][ T314] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 28.009681][ T314] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbab0daeda8
[ 28.017500][ T314] R13: 0000000000000000 R14: 00007fbab0daedc0 R15: 00007fbab0d04030
[ 28.025316][ T314]
[ 28.035775][ T315] FAULT_INJECTION: forcing a failure.
[ 28.035775][ T315] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 28.049205][ T315] CPU: 1 PID: 315 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 28.060635][ T315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 28.070540][ T315] Call Trace:
[ 28.073651][ T315]
[ 28.076441][ T315] dump_stack_lvl+0x151/0x1b7
[ 28.081340][ T315] ? io_uring_drop_tctx_refs+0x190/0x190
[ 28.086806][ T315] dump_stack+0x15/0x17
[ 28.090799][ T315] should_fail+0x3c6/0x510
[ 28.095136][ T315] should_fail_alloc_page+0x5a/0x80
[ 28.100173][ T315] prepare_alloc_pages+0x15c/0x700
[ 28.105215][ T315] ? __alloc_pages_bulk+0xe60/0xe60
[ 28.110244][ T315] ? enqueue_task_fair+0xd61/0x29a0
[ 28.115292][ T315] __alloc_pages+0x138/0x5e0
[ 28.119794][ T315] ? prep_new_page+0x110/0x110
[ 28.124388][ T315] wp_page_copy+0x200/0x1b00
[ 28.128812][ T315] ? __kasan_check_write+0x14/0x20
[ 28.133770][ T315] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 28.139695][ T315] ? __pte_map_lock+0x442/0x620
[ 28.144364][ T315] do_wp_page+0x6fa/0xb60
[ 28.148612][ T315] handle_pte_fault+0x72e/0x2340
[ 28.153390][ T315] ? update_load_avg+0x43a/0x1150
[ 28.159182][ T315] ? fault_around_bytes_set+0xc0/0xc0
[ 28.164394][ T315] do_handle_mm_fault+0x1fed/0x2330
[ 28.169516][ T315] ? numa_migrate_prep+0xe0/0xe0
[ 28.174281][ T315] ? __kasan_check_write+0x14/0x20
[ 28.179277][ T315] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 28.184172][ T315] ? _raw_spin_lock_irqsave+0x210/0x210
[ 28.189564][ T315] ? _raw_spin_unlock_irq+0x4e/0x70
[ 28.194679][ T315] ? down_read_trylock+0x1f9/0x300
[ 28.199623][ T315] ? __init_rwsem+0x1c0/0x1c0
[ 28.204147][ T315] ? vmacache_update+0xb7/0x120
[ 28.208909][ T315] ? __find_vma+0x136/0x150
[ 28.213245][ T315] exc_page_fault+0x3b5/0x830
[ 28.217774][ T315] asm_exc_page_fault+0x27/0x30
[ 28.222631][ T315] RIP: 0033:0x7fbab0d0b3b0
[ 28.226874][ T315] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 3d 0c 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 f0 39 0a 00 0f 85 0f 02 00 00 4c 8d 25 e3 39 0a 00 4c
[ 28.246419][ T315] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 28.252408][ T315] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[ 28.260212][ T315] RDX: 0000000000000001 RSI: 00007fbab0dac120 RDI: 0000000000000000
[ 28.268026][ T315] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 28.275834][ T315] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffcff1f8bc
[pid 315] exit_group(0) = ?
[pid 315] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=315, si_uid=0, si_status=0, si_utime=0, si_stime=1} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 317 attached
[pid 317] set_robust_list(0x555555cec760, 24) = 0
[pid 317] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 317] setpgid(0, 0) = 0
[pid 317] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 294] <... clone resumed>, child_tidptr=0x555555cec750) = 317
[pid 317] write(3, "1000", 4) = 4
[pid 317] close(3) = 0
[pid 317] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 317] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 317] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 317] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 317] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 317] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 317] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 317] write(6, "7", 1) = 1
[pid 317] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 28.283654][ T315] R13: 431bde82d7b634db R14: 00007fffcff1f8d0 R15: 0000000000000001
[ 28.291491][ T315]
[ 28.302237][ T317] FAULT_INJECTION: forcing a failure.
[ 28.302237][ T317] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 28.315615][ T317] CPU: 1 PID: 317 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 28.327067][ T317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 28.336952][ T317] Call Trace:
[ 28.340113][ T317]
[ 28.342944][ T317] dump_stack_lvl+0x151/0x1b7
[ 28.347454][ T317] ? io_uring_drop_tctx_refs+0x190/0x190
[ 28.352923][ T317] dump_stack+0x15/0x17
[ 28.356916][ T317] should_fail+0x3c6/0x510
[ 28.361201][ T317] should_fail_alloc_page+0x5a/0x80
[ 28.366205][ T317] prepare_alloc_pages+0x15c/0x700
[ 28.371163][ T317] ? active_load_balance_cpu_stop+0xc50/0xc50
[ 28.377061][ T317] ? __alloc_pages_bulk+0xe60/0xe60
[ 28.382083][ T317] ? enqueue_task_fair+0x1f1d/0x29a0
[ 28.387205][ T317] __alloc_pages+0x138/0x5e0
[ 28.391632][ T317] ? prep_new_page+0x110/0x110
[ 28.396330][ T317] wp_page_copy+0x200/0x1b00
[ 28.400851][ T317] ? __kasan_check_write+0x14/0x20
[ 28.405781][ T317] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 28.411602][ T317] ? __pte_map_lock+0x442/0x620
[ 28.416294][ T317] do_wp_page+0x6fa/0xb60
[ 28.420453][ T317] handle_pte_fault+0x72e/0x2340
[ 28.425220][ T317] ? update_load_avg+0x43a/0x1150
[ 28.430357][ T317] ? fault_around_bytes_set+0xc0/0xc0
[ 28.435550][ T317] do_handle_mm_fault+0x1fed/0x2330
[ 28.440587][ T317] ? numa_migrate_prep+0xe0/0xe0
[ 28.445457][ T317] ? __kasan_check_write+0x14/0x20
[ 28.450509][ T317] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 28.456259][ T317] ? _raw_spin_lock_irqsave+0x210/0x210
[ 28.461610][ T317] ? _raw_spin_unlock_irq+0x4e/0x70
[ 28.466654][ T317] ? down_read_trylock+0x1f9/0x300
[ 28.471620][ T317] ? __init_rwsem+0x1c0/0x1c0
[ 28.476106][ T317] ? vmacache_update+0xb7/0x120
[ 28.480789][ T317] ? __find_vma+0x136/0x150
[ 28.485216][ T317] exc_page_fault+0x3b5/0x830
[ 28.489820][ T317] asm_exc_page_fault+0x27/0x30
[ 28.494588][ T317] RIP: 0033:0x7fbab0d0b3b0
[ 28.498842][ T317] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 3d 0c 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 f0 39 0a 00 0f 85 0f 02 00 00 4c 8d 25 e3 39 0a 00 4c
[ 28.518371][ T317] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 28.524271][ T317] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[ 28.532084][ T317] RDX: 0000000000000001 RSI: 00007fbab0dac120 RDI: 0000000000000000
[ 28.539894][ T317] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 28.547800][ T317] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffcff1f8bc
[ 28.555607][ T317] R13: 431bde82d7b634db R14: 00007fffcff1f8d0 R15: 0000000000000001
[ 28.563418][ T317]
[pid 317] exit_group(0) = ?
[pid 317] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=317, si_uid=0, si_status=0, si_utime=0, si_stime=1} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555cec750) = 318
./strace-static-x86_64: Process 318 attached
[pid 318] set_robust_list(0x555555cec760, 24) = 0
[pid 318] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 318] setpgid(0, 0) = 0
[pid 318] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 318] write(3, "1000", 4) = 4
[pid 318] close(3) = 0
[pid 318] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 318] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 318] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 318] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 318] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 318] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 318] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 318] write(6, "7", 1) = 1
[pid 318] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 28.567284][ T30] audit: type=1400 audit(1695265821.462:74): avc: denied { remove_name } for pid=82 comm="syslogd" name="messages" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 28.590180][ T30] audit: type=1400 audit(1695265821.462:75): avc: denied { rename } for pid=82 comm="syslogd" name="messages" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 28.614023][ T318] FAULT_INJECTION: forcing a failure.
[ 28.614023][ T318] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 28.627245][ T318] CPU: 1 PID: 318 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 28.639047][ T318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 28.649065][ T318] Call Trace:
[ 28.652188][ T318]
[ 28.654961][ T318] dump_stack_lvl+0x151/0x1b7
[ 28.659577][ T318] ? io_uring_drop_tctx_refs+0x190/0x190
[ 28.665315][ T318] dump_stack+0x15/0x17
[ 28.669460][ T318] should_fail+0x3c6/0x510
[ 28.673689][ T318] should_fail_alloc_page+0x5a/0x80
[ 28.678716][ T318] prepare_alloc_pages+0x15c/0x700
[ 28.683672][ T318] ? __alloc_pages+0x5e0/0x5e0
[ 28.688259][ T318] ? __alloc_pages_bulk+0xe60/0xe60
[ 28.693294][ T318] ? unlock_page_memcg+0x146/0x160
[ 28.698239][ T318] __alloc_pages+0x138/0x5e0
[ 28.702674][ T318] ? __kasan_check_write+0x14/0x20
[ 28.707616][ T318] ? prep_new_page+0x110/0x110
[ 28.712304][ T318] ? do_set_pte+0x3ca/0x7c0
[ 28.716641][ T318] wp_page_copy+0x1d4/0x1b00
[ 28.721067][ T318] ? __kasan_check_write+0x14/0x20
[ 28.726029][ T318] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 28.731857][ T318] ? __pte_map_lock+0x442/0x620
[ 28.736514][ T318] ? vm_normal_page+0x1e1/0x1f0
[ 28.741236][ T318] do_wp_page+0x6fa/0xb60
[ 28.745393][ T318] handle_pte_fault+0x72e/0x2340
[ 28.750313][ T318] ? update_load_avg+0x43a/0x1150
[ 28.755209][ T318] ? fault_around_bytes_set+0xc0/0xc0
[ 28.760491][ T318] do_handle_mm_fault+0x1fed/0x2330
[ 28.765512][ T318] ? numa_migrate_prep+0xe0/0xe0
[ 28.770289][ T318] ? __kasan_check_write+0x14/0x20
[ 28.775353][ T318] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 28.780430][ T318] ? _raw_spin_lock_irqsave+0x210/0x210
[ 28.785803][ T318] ? _raw_spin_unlock_irq+0x4e/0x70
[ 28.791418][ T318] ? down_read_trylock+0x1f9/0x300
[ 28.796714][ T318] ? __init_rwsem+0x1c0/0x1c0
[ 28.801229][ T318] ? debug_smp_processor_id+0x17/0x20
[ 28.806602][ T318] ? vmacache_update+0xb7/0x120
[ 28.811547][ T318] ? __find_vma+0x136/0x150
[ 28.815889][ T318] exc_page_fault+0x3b5/0x830
[ 28.820401][ T318] asm_exc_page_fault+0x27/0x30
[ 28.825174][ T318] RIP: 0033:0x7fbab0d0b520
[ 28.829427][ T318] Code: 84 dd fe ff ff 4c 89 e7 e8 5d 93 00 00 e9 d0 fe ff ff 0f 1f 84 00 00 00 00 00 49 8b 06 48 89 45 00 48 85 c0 0f 85 85 00 00 00 05 a9 3c 0a 00 01 31 c0 87 05 79 38 0a 00 83 f8 01 0f 8f 84 00
[ 28.848869][ T318] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 28.854765][ T318] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000004
[ 28.862577][ T318] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00007fbab0dadad8
[ 28.870389][ T318] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 28.878545][ T318] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbab0daeda8
[pid 318] exit_group(0) = ?
[pid 318] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=318, si_uid=0, si_status=0, si_utime=0, si_stime=2} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 319 attached
[pid 319] set_robust_list(0x555555cec760, 24) = 0
[pid 294] <... clone resumed>, child_tidptr=0x555555cec750) = 319
[pid 319] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 319] setpgid(0, 0) = 0
[pid 319] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 319] write(3, "1000", 4) = 4
[pid 319] close(3) = 0
[pid 319] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 319] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 319] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 319] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 319] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 319] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 319] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 319] write(6, "7", 1) = 1
[pid 319] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 28.886365][ T318] R13: 0000000000000000 R14: 00007fbab0daedc0 R15: 00007fbab0d04030
[ 28.894191][ T318]
[ 28.905985][ T319] FAULT_INJECTION: forcing a failure.
[ 28.905985][ T319] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 28.919729][ T319] CPU: 1 PID: 319 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 28.931250][ T319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 28.941226][ T319] Call Trace:
[ 28.944281][ T319]
[ 28.947046][ T319] dump_stack_lvl+0x151/0x1b7
[ 28.951588][ T319] ? io_uring_drop_tctx_refs+0x190/0x190
[ 28.957038][ T319] dump_stack+0x15/0x17
[ 28.961026][ T319] should_fail+0x3c6/0x510
[ 28.965281][ T319] should_fail_alloc_page+0x5a/0x80
[ 28.970393][ T319] prepare_alloc_pages+0x15c/0x700
[ 28.975456][ T319] ? __alloc_pages+0x5e0/0x5e0
[ 28.980170][ T319] ? __alloc_pages_bulk+0xe60/0xe60
[ 28.985196][ T319] ? unlock_page_memcg+0x146/0x160
[ 28.990141][ T319] __alloc_pages+0x138/0x5e0
[ 28.994582][ T319] ? __kasan_check_write+0x14/0x20
[ 28.999518][ T319] ? prep_new_page+0x110/0x110
[ 29.004288][ T319] ? do_set_pte+0x3ca/0x7c0
[ 29.008635][ T319] wp_page_copy+0x1d4/0x1b00
[ 29.013056][ T319] ? __kasan_check_write+0x14/0x20
[ 29.018011][ T319] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 29.023845][ T319] ? __pte_map_lock+0x442/0x620
[ 29.028505][ T319] ? vm_normal_page+0x1e1/0x1f0
[ 29.033202][ T319] do_wp_page+0x6fa/0xb60
[ 29.037392][ T319] handle_pte_fault+0x72e/0x2340
[ 29.042135][ T319] ? update_load_avg+0x43a/0x1150
[ 29.046989][ T319] ? fault_around_bytes_set+0xc0/0xc0
[ 29.052200][ T319] do_handle_mm_fault+0x1fed/0x2330
[ 29.057236][ T319] ? numa_migrate_prep+0xe0/0xe0
[ 29.062009][ T319] ? __kasan_check_write+0x14/0x20
[ 29.066950][ T319] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 29.071898][ T319] ? _raw_spin_lock_irqsave+0x210/0x210
[ 29.077393][ T319] ? _raw_spin_unlock_irq+0x4e/0x70
[ 29.082400][ T319] ? down_read_trylock+0x1f9/0x300
[ 29.087346][ T319] ? __init_rwsem+0x1c0/0x1c0
[ 29.091870][ T319] ? debug_smp_processor_id+0x17/0x20
[ 29.097070][ T319] ? vmacache_update+0xb7/0x120
[ 29.101757][ T319] ? __find_vma+0x136/0x150
[ 29.106105][ T319] exc_page_fault+0x3b5/0x830
[ 29.110623][ T319] asm_exc_page_fault+0x27/0x30
[ 29.115298][ T319] RIP: 0033:0x7fbab0d0b520
[ 29.119547][ T319] Code: 84 dd fe ff ff 4c 89 e7 e8 5d 93 00 00 e9 d0 fe ff ff 0f 1f 84 00 00 00 00 00 49 8b 06 48 89 45 00 48 85 c0 0f 85 85 00 00 00 05 a9 3c 0a 00 01 31 c0 87 05 79 38 0a 00 83 f8 01 0f 8f 84 00
[ 29.139242][ T319] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 29.145144][ T319] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000004
[ 29.153040][ T319] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00007fbab0dadad8
[ 29.160969][ T319] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 29.168975][ T319] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbab0daeda8
[ 29.176778][ T319] R13: 0000000000000000 R14: 00007fbab0daedc0 R15: 00007fbab0d04030
[ 29.184618][ T319]
[pid 319] exit_group(0) = ?
[pid 319] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=319, si_uid=0, si_status=0, si_utime=0, si_stime=3} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555cec750) = 320
./strace-static-x86_64: Process 320 attached
[pid 320] set_robust_list(0x555555cec760, 24) = 0
[pid 320] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 320] setpgid(0, 0) = 0
[pid 320] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 320] write(3, "1000", 4) = 4
[pid 320] close(3) = 0
[pid 320] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 320] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 320] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 320] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 320] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 320] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 320] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 320] write(6, "7", 1) = 1
[pid 320] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 29.187606][ T319] pagefault_out_of_memory: 8 callbacks suppressed
[ 29.187617][ T319] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[ 29.208359][ T320] FAULT_INJECTION: forcing a failure.
[ 29.208359][ T320] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 29.221499][ T320] CPU: 1 PID: 320 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 29.232930][ T320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 29.242837][ T320] Call Trace:
[ 29.245955][ T320]
[ 29.248815][ T320] dump_stack_lvl+0x151/0x1b7
[ 29.253466][ T320] ? io_uring_drop_tctx_refs+0x190/0x190
[ 29.258921][ T320] dump_stack+0x15/0x17
[ 29.262910][ T320] should_fail+0x3c6/0x510
[ 29.267165][ T320] should_fail_alloc_page+0x5a/0x80
[ 29.272196][ T320] prepare_alloc_pages+0x15c/0x700
[ 29.277260][ T320] ? __alloc_pages+0x5e0/0x5e0
[ 29.281849][ T320] ? __alloc_pages_bulk+0xe60/0xe60
[ 29.286885][ T320] ? unlock_page_memcg+0x146/0x160
[ 29.291839][ T320] __alloc_pages+0x138/0x5e0
[ 29.296257][ T320] ? __kasan_check_write+0x14/0x20
[ 29.301337][ T320] ? prep_new_page+0x110/0x110
[ 29.305942][ T320] ? do_set_pte+0x3ca/0x7c0
[ 29.310384][ T320] wp_page_copy+0x1d4/0x1b00
[ 29.314812][ T320] ? __kasan_check_write+0x14/0x20
[ 29.319869][ T320] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 29.325680][ T320] ? __pte_map_lock+0x442/0x620
[ 29.330379][ T320] ? vm_normal_page+0x1e1/0x1f0
[ 29.335052][ T320] do_wp_page+0x6fa/0xb60
[ 29.339220][ T320] handle_pte_fault+0x72e/0x2340
[ 29.344079][ T320] ? fault_around_bytes_set+0xc0/0xc0
[ 29.349293][ T320] do_handle_mm_fault+0x1fed/0x2330
[ 29.354330][ T320] ? numa_migrate_prep+0xe0/0xe0
[ 29.359152][ T320] ? __kasan_check_write+0x14/0x20
[ 29.364127][ T320] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 29.368991][ T320] ? _raw_spin_lock_irqsave+0x210/0x210
[ 29.374545][ T320] ? _raw_spin_unlock_irq+0x4e/0x70
[ 29.379999][ T320] ? down_read_trylock+0x1f9/0x300
[ 29.384953][ T320] ? __init_rwsem+0x1c0/0x1c0
[ 29.389695][ T320] ? debug_smp_processor_id+0x17/0x20
[ 29.394898][ T320] ? vmacache_update+0xb7/0x120
[ 29.399587][ T320] ? __find_vma+0x136/0x150
[ 29.404026][ T320] exc_page_fault+0x3b5/0x830
[ 29.408726][ T320] asm_exc_page_fault+0x27/0x30
[ 29.413411][ T320] RIP: 0033:0x7fbab0d0b520
[ 29.417649][ T320] Code: 84 dd fe ff ff 4c 89 e7 e8 5d 93 00 00 e9 d0 fe ff ff 0f 1f 84 00 00 00 00 00 49 8b 06 48 89 45 00 48 85 c0 0f 85 85 00 00 00 05 a9 3c 0a 00 01 31 c0 87 05 79 38 0a 00 83 f8 01 0f 8f 84 00
[ 29.437100][ T320] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 29.442991][ T320] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000004
[ 29.450817][ T320] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00007fbab0dadad8
[ 29.459174][ T320] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 29.466983][ T320] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbab0daeda8
[ 29.474823][ T320] R13: 0000000000000000 R14: 00007fbab0daedc0 R15: 00007fbab0d04030
[ 29.482606][ T320]
[pid 320] exit_group(0) = ?
[pid 320] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=320, si_uid=0, si_status=0, si_utime=0, si_stime=2} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555cec750) = 322
./strace-static-x86_64: Process 322 attached
[pid 322] set_robust_list(0x555555cec760, 24) = 0
[pid 322] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 322] setpgid(0, 0) = 0
[pid 322] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 322] write(3, "1000", 4) = 4
[pid 322] close(3) = 0
[pid 322] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 322] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 322] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 322] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 322] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 322] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 322] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 322] write(6, "7", 1) = 1
[pid 322] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 29.486712][ T320] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[ 29.499999][ T322] FAULT_INJECTION: forcing a failure.
[ 29.499999][ T322] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 29.513385][ T322] CPU: 0 PID: 322 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 29.524826][ T322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 29.534708][ T322] Call Trace:
[ 29.537846][ T322]
[ 29.540610][ T322] dump_stack_lvl+0x151/0x1b7
[ 29.545149][ T322] ? io_uring_drop_tctx_refs+0x190/0x190
[ 29.550713][ T322] dump_stack+0x15/0x17
[ 29.554669][ T322] should_fail+0x3c6/0x510
[ 29.558922][ T322] should_fail_alloc_page+0x5a/0x80
[ 29.563960][ T322] prepare_alloc_pages+0x15c/0x700
[ 29.568904][ T322] ? __alloc_pages+0x5e0/0x5e0
[ 29.573501][ T322] ? __alloc_pages_bulk+0xe60/0xe60
[ 29.578536][ T322] ? unlock_page_memcg+0x146/0x160
[ 29.583495][ T322] __alloc_pages+0x138/0x5e0
[ 29.588009][ T322] ? __kasan_check_write+0x14/0x20
[ 29.592945][ T322] ? prep_new_page+0x110/0x110
[ 29.597630][ T322] ? do_set_pte+0x3ca/0x7c0
[ 29.601979][ T322] wp_page_copy+0x1d4/0x1b00
[ 29.606400][ T322] ? __kasan_check_write+0x14/0x20
[ 29.611367][ T322] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 29.617161][ T322] ? __pte_map_lock+0x442/0x620
[ 29.621845][ T322] ? vm_normal_page+0x1e1/0x1f0
[ 29.626532][ T322] do_wp_page+0x6fa/0xb60
[ 29.630700][ T322] handle_pte_fault+0x72e/0x2340
[ 29.635505][ T322] ? update_load_avg+0x43a/0x1150
[ 29.640351][ T322] ? fault_around_bytes_set+0xc0/0xc0
[ 29.645771][ T322] do_handle_mm_fault+0x1fed/0x2330
[ 29.650808][ T322] ? numa_migrate_prep+0xe0/0xe0
[ 29.655842][ T322] ? __kasan_check_write+0x14/0x20
[ 29.660778][ T322] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 29.665717][ T322] ? _raw_spin_lock_irqsave+0x210/0x210
[ 29.671125][ T322] ? _raw_spin_unlock_irq+0x4e/0x70
[ 29.676301][ T322] ? down_read_trylock+0x1f9/0x300
[ 29.681326][ T322] ? __init_rwsem+0x1c0/0x1c0
[ 29.685848][ T322] ? debug_smp_processor_id+0x17/0x20
[ 29.691344][ T322] ? vmacache_update+0xb7/0x120
[ 29.696021][ T322] ? __find_vma+0x136/0x150
[ 29.700391][ T322] exc_page_fault+0x3b5/0x830
[ 29.705140][ T322] asm_exc_page_fault+0x27/0x30
[ 29.709855][ T322] RIP: 0033:0x7fbab0d0b520
[ 29.714081][ T322] Code: 84 dd fe ff ff 4c 89 e7 e8 5d 93 00 00 e9 d0 fe ff ff 0f 1f 84 00 00 00 00 00 49 8b 06 48 89 45 00 48 85 c0 0f 85 85 00 00 00 05 a9 3c 0a 00 01 31 c0 87 05 79 38 0a 00 83 f8 01 0f 8f 84 00
[ 29.733968][ T322] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[pid 322] exit_group(0) = ?
[pid 322] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=322, si_uid=0, si_status=0, si_utime=0, si_stime=3} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555cec750) = 323
./strace-static-x86_64: Process 323 attached
[pid 323] set_robust_list(0x555555cec760, 24) = 0
[pid 323] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 323] setpgid(0, 0) = 0
[pid 323] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 323] write(3, "1000", 4) = 4
[pid 323] close(3) = 0
[pid 323] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 323] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 323] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 323] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 323] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 323] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 323] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 323] write(6, "7", 1) = 1
[pid 323] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 29.739865][ T322] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000004
[ 29.747676][ T322] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00007fbab0dadad8
[ 29.755571][ T322] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 29.763390][ T322] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbab0daeda8
[ 29.771303][ T322] R13: 0000000000000000 R14: 00007fbab0daedc0 R15: 00007fbab0d04030
[ 29.779119][ T322]
[ 29.782248][ T322] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[ 29.798201][ T323] FAULT_INJECTION: forcing a failure.
[ 29.798201][ T323] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 29.811523][ T323] CPU: 1 PID: 323 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 29.822971][ T323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 29.832876][ T323] Call Trace:
[ 29.835993][ T323]
[ 29.838943][ T323] dump_stack_lvl+0x151/0x1b7
[ 29.843459][ T323] ? io_uring_drop_tctx_refs+0x190/0x190
[ 29.849028][ T323] dump_stack+0x15/0x17
[ 29.853003][ T323] should_fail+0x3c6/0x510
[ 29.857262][ T323] should_fail_alloc_page+0x5a/0x80
[ 29.862468][ T323] prepare_alloc_pages+0x15c/0x700
[ 29.867422][ T323] ? __alloc_pages_bulk+0xe60/0xe60
[ 29.872442][ T323] ? __kasan_slab_free+0x11/0x20
[ 29.877218][ T323] ? slab_free_freelist_hook+0xbd/0x190
[ 29.882600][ T323] __alloc_pages+0x138/0x5e0
[ 29.887026][ T323] ? prep_new_page+0x110/0x110
[ 29.891625][ T323] ? kvm_sched_clock_read+0x18/0x40
[ 29.896857][ T323] wp_page_copy+0x200/0x1b00
[ 29.901348][ T323] ? __kasan_check_write+0x14/0x20
[ 29.906410][ T323] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 29.912210][ T323] ? ttwu_queue_wakelist+0x316/0x510
[ 29.917314][ T323] ? __pte_map_lock+0x442/0x620
[ 29.922208][ T323] do_wp_page+0x6fa/0xb60
[ 29.926371][ T323] handle_pte_fault+0x72e/0x2340
[ 29.931145][ T323] ? fault_around_bytes_set+0xc0/0xc0
[ 29.936355][ T323] do_handle_mm_fault+0x1fed/0x2330
[ 29.941997][ T323] ? numa_migrate_prep+0xe0/0xe0
[ 29.946769][ T323] ? __kasan_check_write+0x14/0x20
[ 29.951714][ T323] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 29.956657][ T323] ? _raw_spin_lock_irqsave+0x210/0x210
[ 29.962520][ T323] ? _raw_spin_unlock_irq+0x4e/0x70
[ 29.967551][ T323] ? down_read_trylock+0x1f9/0x300
[ 29.972493][ T323] ? __init_rwsem+0x1c0/0x1c0
[ 29.977093][ T323] ? vmacache_update+0xb7/0x120
[ 29.981782][ T323] ? __find_vma+0x136/0x150
[ 29.986145][ T323] exc_page_fault+0x3b5/0x830
[ 29.990767][ T323] asm_exc_page_fault+0x27/0x30
[ 29.995450][ T323] RIP: 0033:0x7fbab0d0b3b0
[ 29.999866][ T323] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 3d 0c 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 f0 39 0a 00 0f 85 0f 02 00 00 4c 8d 25 e3 39 0a 00 4c
[ 30.019307][ T323] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 30.025317][ T323] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[ 30.033145][ T323] RDX: 0000000000000001 RSI: 00007fbab0dac120 RDI: 0000000000000000
[ 30.040942][ T323] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[pid 323] exit_group(0) = ?
[pid 323] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=323, si_uid=0, si_status=0, si_utime=0, si_stime=2} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555cec750) = 324
./strace-static-x86_64: Process 324 attached
[pid 324] set_robust_list(0x555555cec760, 24) = 0
[pid 324] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 324] setpgid(0, 0) = 0
[pid 324] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 324] write(3, "1000", 4) = 4
[pid 324] close(3) = 0
[pid 324] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 324] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 324] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 324] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 324] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 324] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 324] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 324] write(6, "7", 1) = 1
[pid 324] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 30.048753][ T323] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffcff1f8bc
[ 30.056644][ T323] R13: 431bde82d7b634db R14: 00007fffcff1f8d0 R15: 0000000000000001
[ 30.064548][ T323]
[ 30.067765][ T323] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[ 30.081797][ T324] FAULT_INJECTION: forcing a failure.
[ 30.081797][ T324] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 30.095190][ T324] CPU: 0 PID: 324 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 30.106732][ T324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 30.116624][ T324] Call Trace:
[ 30.119938][ T324]
[ 30.122716][ T324] dump_stack_lvl+0x151/0x1b7
[ 30.127234][ T324] ? io_uring_drop_tctx_refs+0x190/0x190
[ 30.132694][ T324] dump_stack+0x15/0x17
[ 30.136858][ T324] should_fail+0x3c6/0x510
[ 30.141217][ T324] should_fail_alloc_page+0x5a/0x80
[ 30.146264][ T324] prepare_alloc_pages+0x15c/0x700
[ 30.151310][ T324] ? active_load_balance_cpu_stop+0xc50/0xc50
[ 30.157191][ T324] ? __alloc_pages_bulk+0xe60/0xe60
[ 30.162222][ T324] ? enqueue_task_fair+0x1f1d/0x29a0
[ 30.167345][ T324] __alloc_pages+0x138/0x5e0
[ 30.171771][ T324] ? prep_new_page+0x110/0x110
[ 30.176813][ T324] wp_page_copy+0x200/0x1b00
[ 30.181493][ T324] ? __kasan_check_write+0x14/0x20
[ 30.186463][ T324] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 30.192256][ T324] ? __pte_map_lock+0x442/0x620
[ 30.196939][ T324] do_wp_page+0x6fa/0xb60
[ 30.201106][ T324] handle_pte_fault+0x72e/0x2340
[ 30.205880][ T324] ? update_load_avg+0x43a/0x1150
[ 30.210746][ T324] ? fault_around_bytes_set+0xc0/0xc0
[ 30.215946][ T324] do_handle_mm_fault+0x1fed/0x2330
[ 30.221011][ T324] ? numa_migrate_prep+0xe0/0xe0
[ 30.225759][ T324] ? __kasan_check_write+0x14/0x20
[ 30.230701][ T324] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 30.235652][ T324] ? _raw_spin_lock_irqsave+0x210/0x210
[ 30.241045][ T324] ? _raw_spin_unlock_irq+0x4e/0x70
[ 30.246064][ T324] ? down_read_trylock+0x1f9/0x300
[ 30.251025][ T324] ? __init_rwsem+0x1c0/0x1c0
[ 30.255649][ T324] ? vmacache_update+0xb7/0x120
[ 30.260420][ T324] ? __find_vma+0x136/0x150
[ 30.264752][ T324] exc_page_fault+0x3b5/0x830
[ 30.269378][ T324] asm_exc_page_fault+0x27/0x30
[ 30.274060][ T324] RIP: 0033:0x7fbab0d0b3b0
[ 30.278327][ T324] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 3d 0c 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 f0 39 0a 00 0f 85 0f 02 00 00 4c 8d 25 e3 39 0a 00 4c
[ 30.297776][ T324] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 30.303633][ T324] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[ 30.311450][ T324] RDX: 0000000000000001 RSI: 00007fbab0dac120 RDI: 0000000000000000
[ 30.319255][ T324] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 30.327069][ T324] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffcff1f8bc
[ 30.334876][ T324] R13: 431bde82d7b634db R14: 00007fffcff1f8d0 R15: 0000000000000001
[ 30.342698][ T324]
[pid 324] exit_group(0) = ?
[pid 324] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=324, si_uid=0, si_status=0, si_utime=0, si_stime=3} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555cec750) = 325
./strace-static-x86_64: Process 325 attached
[pid 325] set_robust_list(0x555555cec760, 24) = 0
[pid 325] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 325] setpgid(0, 0) = 0
[pid 325] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 325] write(3, "1000", 4) = 4
[pid 325] close(3) = 0
[pid 325] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 325] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 325] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 325] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 325] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 325] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 325] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 325] write(6, "7", 1) = 1
[pid 325] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 30.345805][ T324] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[ 30.360158][ T325] FAULT_INJECTION: forcing a failure.
[ 30.360158][ T325] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 30.373589][ T325] CPU: 1 PID: 325 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 30.385685][ T325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 30.395551][ T325] Call Trace:
[ 30.398676][ T325]
[ 30.402120][ T325] dump_stack_lvl+0x151/0x1b7
[ 30.406577][ T325] ? io_uring_drop_tctx_refs+0x190/0x190
[ 30.412052][ T325] dump_stack+0x15/0x17
[ 30.416040][ T325] should_fail+0x3c6/0x510
[ 30.420293][ T325] should_fail_alloc_page+0x5a/0x80
[ 30.425332][ T325] prepare_alloc_pages+0x15c/0x700
[ 30.430274][ T325] ? __alloc_pages+0x5e0/0x5e0
[ 30.434883][ T325] ? __alloc_pages_bulk+0xe60/0xe60
[ 30.439902][ T325] ? unlock_page_memcg+0x146/0x160
[ 30.444855][ T325] __alloc_pages+0x138/0x5e0
[ 30.449282][ T325] ? __kasan_check_write+0x14/0x20
[ 30.454585][ T325] ? prep_new_page+0x110/0x110
[ 30.459614][ T325] ? do_set_pte+0x3ca/0x7c0
[ 30.463962][ T325] wp_page_copy+0x1d4/0x1b00
[ 30.468388][ T325] ? __kasan_check_write+0x14/0x20
[ 30.473353][ T325] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 30.479142][ T325] ? __pte_map_lock+0x442/0x620
[ 30.483872][ T325] ? vm_normal_page+0x1e1/0x1f0
[ 30.488512][ T325] do_wp_page+0x6fa/0xb60
[ 30.492680][ T325] handle_pte_fault+0x72e/0x2340
[ 30.497460][ T325] ? common_interrupt+0x65/0xd0
[ 30.502138][ T325] ? asm_common_interrupt+0x27/0x40
[ 30.507175][ T325] ? fault_around_bytes_set+0xc0/0xc0
[ 30.512594][ T325] do_handle_mm_fault+0x1fed/0x2330
[ 30.517640][ T325] ? numa_migrate_prep+0xe0/0xe0
[ 30.522518][ T325] ? __kasan_check_read+0x11/0x20
[ 30.527379][ T325] ? preempt_schedule_irq+0xe7/0x140
[ 30.532610][ T325] ? irqentry_exit_cond_resched+0x2a/0x30
[ 30.538167][ T325] ? irqentry_exit+0x30/0x40
[ 30.542591][ T325] ? sysvec_reschedule_ipi+0x7d/0x150
[ 30.548056][ T325] ? asm_sysvec_reschedule_ipi+0x1b/0x20
[ 30.553516][ T325] ? vmacache_find+0x215/0x4d0
[ 30.558117][ T325] ? __sanitizer_cov_trace_pc+0x1/0x60
[ 30.563410][ T325] ? vmacache_update+0xb7/0x120
[ 30.568098][ T325] ? __find_vma+0x136/0x150
[ 30.572525][ T325] exc_page_fault+0x3b5/0x830
[ 30.577043][ T325] asm_exc_page_fault+0x27/0x30
[ 30.581724][ T325] RIP: 0033:0x7fbab0d0b520
[ 30.585977][ T325] Code: 84 dd fe ff ff 4c 89 e7 e8 5d 93 00 00 e9 d0 fe ff ff 0f 1f 84 00 00 00 00 00 49 8b 06 48 89 45 00 48 85 c0 0f 85 85 00 00 00 05 a9 3c 0a 00 01 31 c0 87 05 79 38 0a 00 83 f8 01 0f 8f 84 00
[ 30.605418][ T325] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 30.611324][ T325] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000004
[ 30.619160][ T325] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00007fbab0dadad8
[ 30.626944][ T325] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 30.634756][ T325] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbab0daeda8
[ 30.642565][ T325] R13: 0000000000000000 R14: 00007fbab0daedc0 R15: 00007fbab0d04030
[pid 325] exit_group(0) = ?
[pid 325] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=325, si_uid=0, si_status=0, si_utime=0, si_stime=3} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 327 attached
[pid 327] set_robust_list(0x555555cec760, 24) = 0
[pid 327] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 327] setpgid(0, 0
[pid 294] <... clone resumed>, child_tidptr=0x555555cec750) = 327
[pid 327] <... setpgid resumed>) = 0
[pid 327] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 327] write(3, "1000", 4) = 4
[pid 327] close(3) = 0
[pid 327] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 327] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 327] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 327] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 327] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 327] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 327] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 327] write(6, "7", 1) = 1
[pid 327] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 30.650390][ T325]
[ 30.653385][ T325] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[ 30.667359][ T327] FAULT_INJECTION: forcing a failure.
[ 30.667359][ T327] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 30.680594][ T327] CPU: 1 PID: 327 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 30.692026][ T327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 30.702007][ T327] Call Trace:
[ 30.705129][ T327]
[ 30.708065][ T327] dump_stack_lvl+0x151/0x1b7
[ 30.712567][ T327] ? io_uring_drop_tctx_refs+0x190/0x190
[ 30.718161][ T327] dump_stack+0x15/0x17
[ 30.722148][ T327] should_fail+0x3c6/0x510
[ 30.726399][ T327] should_fail_alloc_page+0x5a/0x80
[ 30.731517][ T327] prepare_alloc_pages+0x15c/0x700
[ 30.736471][ T327] ? __alloc_pages+0x5e0/0x5e0
[ 30.741075][ T327] ? __alloc_pages_bulk+0xe60/0xe60
[ 30.746101][ T327] ? unlock_page_memcg+0x146/0x160
[ 30.751242][ T327] __alloc_pages+0x138/0x5e0
[ 30.755661][ T327] ? __kasan_check_write+0x14/0x20
[ 30.760697][ T327] ? prep_new_page+0x110/0x110
[ 30.765295][ T327] ? do_set_pte+0x3ca/0x7c0
[ 30.769633][ T327] wp_page_copy+0x1d4/0x1b00
[ 30.774061][ T327] ? __kasan_check_write+0x14/0x20
[ 30.779039][ T327] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 30.784823][ T327] ? __pte_map_lock+0x442/0x620
[ 30.789595][ T327] ? vm_normal_page+0x1e1/0x1f0
[ 30.794294][ T327] do_wp_page+0x6fa/0xb60
[ 30.798545][ T327] handle_pte_fault+0x72e/0x2340
[ 30.803583][ T327] ? update_load_avg+0x43a/0x1150
[ 30.808439][ T327] ? fault_around_bytes_set+0xc0/0xc0
[ 30.813650][ T327] do_handle_mm_fault+0x1fed/0x2330
[ 30.818777][ T327] ? numa_migrate_prep+0xe0/0xe0
[ 30.823543][ T327] ? __kasan_check_write+0x14/0x20
[ 30.828636][ T327] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 30.833555][ T327] ? _raw_spin_lock_irqsave+0x210/0x210
[ 30.839021][ T327] ? _raw_spin_unlock_irq+0x4e/0x70
[ 30.844053][ T327] ? down_read_trylock+0x1f9/0x300
[ 30.848997][ T327] ? __init_rwsem+0x1c0/0x1c0
[ 30.853639][ T327] ? debug_smp_processor_id+0x17/0x20
[ 30.858965][ T327] ? vmacache_update+0xb7/0x120
[ 30.863637][ T327] ? __find_vma+0x136/0x150
[ 30.867975][ T327] exc_page_fault+0x3b5/0x830
[ 30.872487][ T327] asm_exc_page_fault+0x27/0x30
[ 30.877167][ T327] RIP: 0033:0x7fbab0d0b520
[ 30.881422][ T327] Code: 84 dd fe ff ff 4c 89 e7 e8 5d 93 00 00 e9 d0 fe ff ff 0f 1f 84 00 00 00 00 00 49 8b 06 48 89 45 00 48 85 c0 0f 85 85 00 00 00 05 a9 3c 0a 00 01 31 c0 87 05 79 38 0a 00 83 f8 01 0f 8f 84 00
[ 30.900864][ T327] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 30.906866][ T327] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000004
[ 30.915301][ T327] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00007fbab0dadad8
[ 30.923145][ T327] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 30.931200][ T327] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbab0daeda8
[ 30.939217][ T327] R13: 0000000000000000 R14: 00007fbab0daedc0 R15: 00007fbab0d04030
[ 30.947028][ T327]
[pid 327] exit_group(0) = ?
[pid 327] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=327, si_uid=0, si_status=0, si_utime=0, si_stime=1} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555cec750) = 328
./strace-static-x86_64: Process 328 attached
[pid 328] set_robust_list(0x555555cec760, 24) = 0
[pid 328] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 328] setpgid(0, 0) = 0
[pid 328] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 328] write(3, "1000", 4) = 4
[pid 328] close(3) = 0
[pid 328] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 328] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 328] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 328] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 328] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 328] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 328] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 328] write(6, "7", 1) = 1
[pid 328] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 30.950163][ T327] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[ 30.966326][ T328] FAULT_INJECTION: forcing a failure.
[ 30.966326][ T328] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 30.979401][ T328] CPU: 0 PID: 328 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 30.990796][ T328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 31.000686][ T328] Call Trace:
[ 31.003812][ T328]
[ 31.006589][ T328] dump_stack_lvl+0x151/0x1b7
[ 31.011101][ T328] ? io_uring_drop_tctx_refs+0x190/0x190
[ 31.016858][ T328] dump_stack+0x15/0x17
[ 31.020916][ T328] should_fail+0x3c6/0x510
[ 31.025179][ T328] should_fail_alloc_page+0x5a/0x80
[ 31.030204][ T328] prepare_alloc_pages+0x15c/0x700
[ 31.035160][ T328] ? __alloc_pages+0x5e0/0x5e0
[ 31.039753][ T328] ? __alloc_pages_bulk+0xe60/0xe60
[ 31.044793][ T328] ? unlock_page_memcg+0x146/0x160
[ 31.049759][ T328] __alloc_pages+0x138/0x5e0
[ 31.054162][ T328] ? __kasan_check_write+0x14/0x20
[ 31.059116][ T328] ? prep_new_page+0x110/0x110
[ 31.063706][ T328] ? do_set_pte+0x3ca/0x7c0
[ 31.068060][ T328] wp_page_copy+0x1d4/0x1b00
[ 31.072495][ T328] ? __kasan_check_write+0x14/0x20
[ 31.077416][ T328] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 31.083346][ T328] ? __pte_map_lock+0x442/0x620
[ 31.088032][ T328] ? vm_normal_page+0x1e1/0x1f0
[ 31.092710][ T328] do_wp_page+0x6fa/0xb60
[ 31.096893][ T328] handle_pte_fault+0x72e/0x2340
[ 31.101650][ T328] ? fault_around_bytes_set+0xc0/0xc0
[ 31.106855][ T328] do_handle_mm_fault+0x1fed/0x2330
[ 31.112082][ T328] ? numa_migrate_prep+0xe0/0xe0
[ 31.116858][ T328] ? __kasan_check_write+0x14/0x20
[ 31.121878][ T328] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 31.126823][ T328] ? _raw_spin_lock_irqsave+0x210/0x210
[ 31.132216][ T328] ? _raw_spin_unlock_irq+0x4e/0x70
[ 31.137245][ T328] ? down_read_trylock+0x1f9/0x300
[ 31.142200][ T328] ? __init_rwsem+0x1c0/0x1c0
[ 31.146706][ T328] ? debug_smp_processor_id+0x17/0x20
[ 31.151915][ T328] ? vmacache_update+0xb7/0x120
[ 31.156615][ T328] ? __find_vma+0x136/0x150
[ 31.160944][ T328] exc_page_fault+0x3b5/0x830
[ 31.165799][ T328] asm_exc_page_fault+0x27/0x30
[ 31.170482][ T328] RIP: 0033:0x7fbab0d0b520
[ 31.174732][ T328] Code: 84 dd fe ff ff 4c 89 e7 e8 5d 93 00 00 e9 d0 fe ff ff 0f 1f 84 00 00 00 00 00 49 8b 06 48 89 45 00 48 85 c0 0f 85 85 00 00 00 05 a9 3c 0a 00 01 31 c0 87 05 79 38 0a 00 83 f8 01 0f 8f 84 00
[ 31.194184][ T328] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[pid 328] exit_group(0) = ?
[pid 328] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=328, si_uid=0, si_status=0, si_utime=0, si_stime=2} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555cec750) = 329
./strace-static-x86_64: Process 329 attached
[pid 329] set_robust_list(0x555555cec760, 24) = 0
[pid 329] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 329] setpgid(0, 0) = 0
[pid 329] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 329] write(3, "1000", 4) = 4
[pid 329] close(3) = 0
[pid 329] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 329] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 329] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 329] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 329] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 329] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 329] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 329] write(6, "7", 1) = 1
[pid 329] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 31.200075][ T328] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000004
[ 31.207895][ T328] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00007fbab0dadad8
[ 31.215698][ T328] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 31.223508][ T328] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbab0daeda8
[ 31.231322][ T328] R13: 0000000000000000 R14: 00007fbab0daedc0 R15: 00007fbab0d04030
[ 31.239223][ T328]
[ 31.242691][ T328] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[ 31.256710][ T329] FAULT_INJECTION: forcing a failure.
[ 31.256710][ T329] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 31.270032][ T329] CPU: 1 PID: 329 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 31.281400][ T329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 31.291292][ T329] Call Trace:
[ 31.294514][ T329]
[ 31.297279][ T329] dump_stack_lvl+0x151/0x1b7
[ 31.301796][ T329] ? io_uring_drop_tctx_refs+0x190/0x190
[ 31.307253][ T329] dump_stack+0x15/0x17
[ 31.311247][ T329] should_fail+0x3c6/0x510
[ 31.315500][ T329] should_fail_alloc_page+0x5a/0x80
[ 31.320536][ T329] prepare_alloc_pages+0x15c/0x700
[ 31.325478][ T329] ? __alloc_pages_bulk+0xe60/0xe60
[ 31.330521][ T329] ? enqueue_task_fair+0xd61/0x29a0
[ 31.335571][ T329] __alloc_pages+0x138/0x5e0
[ 31.339983][ T329] ? prep_new_page+0x110/0x110
[ 31.344577][ T329] wp_page_copy+0x200/0x1b00
[ 31.349003][ T329] ? __kasan_check_write+0x14/0x20
[ 31.354035][ T329] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 31.359971][ T329] ? __pte_map_lock+0x442/0x620
[ 31.364674][ T329] do_wp_page+0x6fa/0xb60
[ 31.368820][ T329] handle_pte_fault+0x72e/0x2340
[ 31.373797][ T329] ? update_load_avg+0x43a/0x1150
[ 31.378728][ T329] ? fault_around_bytes_set+0xc0/0xc0
[ 31.383863][ T329] do_handle_mm_fault+0x1fed/0x2330
[ 31.388899][ T329] ? numa_migrate_prep+0xe0/0xe0
[ 31.393670][ T329] ? __kasan_check_write+0x14/0x20
[ 31.398856][ T329] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 31.403806][ T329] ? _raw_spin_lock_irqsave+0x210/0x210
[ 31.409187][ T329] ? _raw_spin_unlock_irq+0x4e/0x70
[ 31.414218][ T329] ? down_read_trylock+0x1f9/0x300
[ 31.419163][ T329] ? __init_rwsem+0x1c0/0x1c0
[ 31.423675][ T329] ? vmacache_update+0xb7/0x120
[ 31.428361][ T329] ? __find_vma+0x136/0x150
[ 31.432790][ T329] exc_page_fault+0x3b5/0x830
[ 31.437430][ T329] asm_exc_page_fault+0x27/0x30
[ 31.442086][ T329] RIP: 0033:0x7fbab0d0b3b0
[ 31.446342][ T329] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 3d 0c 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 f0 39 0a 00 0f 85 0f 02 00 00 4c 8d 25 e3 39 0a 00 4c
[ 31.466191][ T329] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 31.472093][ T329] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[ 31.479906][ T329] RDX: 0000000000000001 RSI: 00007fbab0dac120 RDI: 0000000000000000
[ 31.487919][ T329] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 31.495715][ T329] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffcff1f8bc
[pid 329] exit_group(0) = ?
[pid 329] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=329, si_uid=0, si_status=0, si_utime=0, si_stime=2} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555cec750) = 330
./strace-static-x86_64: Process 330 attached
[pid 330] set_robust_list(0x555555cec760, 24) = 0
[pid 330] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 330] setpgid(0, 0) = 0
[pid 330] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 330] write(3, "1000", 4) = 4
[pid 330] close(3) = 0
[pid 330] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 330] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 330] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 330] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 330] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 330] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 330] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 330] write(6, "7", 1) = 1
[pid 330] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 31.503629][ T329] R13: 431bde82d7b634db R14: 00007fffcff1f8d0 R15: 0000000000000001
[ 31.511450][ T329]
[ 31.514409][ T329] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[ 31.528394][ T330] FAULT_INJECTION: forcing a failure.
[ 31.528394][ T330] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 31.541683][ T330] CPU: 0 PID: 330 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 31.553220][ T330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 31.563123][ T330] Call Trace:
[ 31.566246][ T330]
[ 31.569012][ T330] dump_stack_lvl+0x151/0x1b7
[ 31.573625][ T330] ? io_uring_drop_tctx_refs+0x190/0x190
[ 31.579086][ T330] dump_stack+0x15/0x17
[ 31.583077][ T330] should_fail+0x3c6/0x510
[ 31.587330][ T330] should_fail_alloc_page+0x5a/0x80
[ 31.592363][ T330] prepare_alloc_pages+0x15c/0x700
[ 31.597310][ T330] ? __alloc_pages+0x5e0/0x5e0
[ 31.601912][ T330] ? __alloc_pages_bulk+0xe60/0xe60
[ 31.606950][ T330] ? unlock_page_memcg+0x146/0x160
[ 31.611907][ T330] __alloc_pages+0x138/0x5e0
[ 31.616320][ T330] ? __kasan_check_write+0x14/0x20
[ 31.621273][ T330] ? prep_new_page+0x110/0x110
[ 31.625867][ T330] ? do_set_pte+0x3ca/0x7c0
[ 31.630215][ T330] wp_page_copy+0x1d4/0x1b00
[ 31.634640][ T330] ? __kasan_check_write+0x14/0x20
[ 31.639578][ T330] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 31.645393][ T330] ? __pte_map_lock+0x442/0x620
[ 31.650078][ T330] ? vm_normal_page+0x1e1/0x1f0
[ 31.654766][ T330] do_wp_page+0x6fa/0xb60
[ 31.658934][ T330] handle_pte_fault+0x72e/0x2340
[ 31.663709][ T330] ? update_load_avg+0x43a/0x1150
[ 31.668741][ T330] ? fault_around_bytes_set+0xc0/0xc0
[ 31.673951][ T330] do_handle_mm_fault+0x1fed/0x2330
[ 31.679093][ T330] ? numa_migrate_prep+0xe0/0xe0
[ 31.683966][ T330] ? __kasan_check_write+0x14/0x20
[ 31.689006][ T330] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 31.693960][ T330] ? _raw_spin_lock_irqsave+0x210/0x210
[ 31.699332][ T330] ? _raw_spin_unlock_irq+0x4e/0x70
[ 31.704465][ T330] ? down_read_trylock+0x1f9/0x300
[ 31.709576][ T330] ? __init_rwsem+0x1c0/0x1c0
[ 31.714183][ T330] ? debug_smp_processor_id+0x17/0x20
[ 31.719387][ T330] ? vmacache_update+0xb7/0x120
[ 31.724068][ T330] ? __find_vma+0x136/0x150
[ 31.728432][ T330] exc_page_fault+0x3b5/0x830
[ 31.733360][ T330] asm_exc_page_fault+0x27/0x30
[ 31.738040][ T330] RIP: 0033:0x7fbab0d0b520
[ 31.742293][ T330] Code: 84 dd fe ff ff 4c 89 e7 e8 5d 93 00 00 e9 d0 fe ff ff 0f 1f 84 00 00 00 00 00 49 8b 06 48 89 45 00 48 85 c0 0f 85 85 00 00 00 05 a9 3c 0a 00 01 31 c0 87 05 79 38 0a 00 83 f8 01 0f 8f 84 00
[ 31.762172][ T330] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 31.768071][ T330] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000004
[ 31.776236][ T330] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00007fbab0dadad8
[ 31.784128][ T330] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 31.792285][ T330] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbab0daeda8
[ 31.800275][ T330] R13: 0000000000000000 R14: 00007fbab0daedc0 R15: 00007fbab0d04030
[pid 330] exit_group(0) = ?
[pid 330] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=330, si_uid=0, si_status=0, si_utime=0, si_stime=2} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555cec750) = 332
./strace-static-x86_64: Process 332 attached
[pid 332] set_robust_list(0x555555cec760, 24) = 0
[pid 332] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 332] setpgid(0, 0) = 0
[pid 332] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 332] write(3, "1000", 4) = 4
[pid 332] close(3) = 0
[pid 332] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 332] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 332] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 332] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 332] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 332] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 332] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 332] write(6, "7", 1) = 1
[pid 332] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 31.808116][ T330]
[ 31.812961][ T330] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[ 31.826045][ T332] FAULT_INJECTION: forcing a failure.
[ 31.826045][ T332] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 31.839370][ T332] CPU: 1 PID: 332 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 31.850812][ T332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 31.860797][ T332] Call Trace:
[ 31.864021][ T332]
[ 31.866784][ T332] dump_stack_lvl+0x151/0x1b7
[ 31.871405][ T332] ? io_uring_drop_tctx_refs+0x190/0x190
[ 31.876848][ T332] dump_stack+0x15/0x17
[ 31.880934][ T332] should_fail+0x3c6/0x510
[ 31.885187][ T332] should_fail_alloc_page+0x5a/0x80
[ 31.890213][ T332] prepare_alloc_pages+0x15c/0x700
[ 31.895162][ T332] ? __alloc_pages_bulk+0xe60/0xe60
[ 31.900194][ T332] ? enqueue_task_fair+0xd61/0x29a0
[ 31.905326][ T332] __alloc_pages+0x138/0x5e0
[ 31.909741][ T332] ? prep_new_page+0x110/0x110
[ 31.914635][ T332] wp_page_copy+0x200/0x1b00
[ 31.919036][ T332] ? __kasan_check_write+0x14/0x20
[ 31.923976][ T332] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 31.929792][ T332] ? __pte_map_lock+0x442/0x620
[ 31.934491][ T332] do_wp_page+0x6fa/0xb60
[ 31.938684][ T332] handle_pte_fault+0x72e/0x2340
[ 31.943425][ T332] ? update_load_avg+0x43a/0x1150
[ 31.948277][ T332] ? fault_around_bytes_set+0xc0/0xc0
[ 31.953593][ T332] do_handle_mm_fault+0x1fed/0x2330
[ 31.958802][ T332] ? numa_migrate_prep+0xe0/0xe0
[ 31.963565][ T332] ? __kasan_check_write+0x14/0x20
[ 31.968512][ T332] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 31.973450][ T332] ? _raw_spin_lock_irqsave+0x210/0x210
[ 31.979267][ T332] ? _raw_spin_unlock_irq+0x4e/0x70
[ 31.984427][ T332] ? down_read_trylock+0x1f9/0x300
[ 31.989359][ T332] ? __init_rwsem+0x1c0/0x1c0
[ 31.993875][ T332] ? vmacache_update+0xb7/0x120
[ 31.998560][ T332] ? __find_vma+0x136/0x150
[ 32.002906][ T332] exc_page_fault+0x3b5/0x830
[ 32.007416][ T332] asm_exc_page_fault+0x27/0x30
[ 32.012101][ T332] RIP: 0033:0x7fbab0d0b3b0
[ 32.016361][ T332] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 3d 0c 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 f0 39 0a 00 0f 85 0f 02 00 00 4c 8d 25 e3 39 0a 00 4c
[ 32.035883][ T332] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 32.041784][ T332] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[ 32.049591][ T332] RDX: 0000000000000001 RSI: 00007fbab0dac120 RDI: 0000000000000000
[pid 332] exit_group(0) = ?
[pid 332] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=332, si_uid=0, si_status=0, si_utime=0, si_stime=1} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 333 attached
[pid 333] set_robust_list(0x555555cec760, 24
[pid 294] <... clone resumed>, child_tidptr=0x555555cec750) = 333
[pid 333] <... set_robust_list resumed>) = 0
[pid 333] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 333] setpgid(0, 0) = 0
[pid 333] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 333] write(3, "1000", 4) = 4
[pid 333] close(3) = 0
[pid 333] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 333] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 333] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 333] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 333] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 333] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 333] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 333] write(6, "7", 1) = 1
[pid 333] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 32.057403][ T332] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 32.065216][ T332] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffcff1f8bc
[ 32.073136][ T332] R13: 431bde82d7b634db R14: 00007fffcff1f8d0 R15: 0000000000000001
[ 32.080964][ T332]
[ 32.091880][ T333] FAULT_INJECTION: forcing a failure.
[ 32.091880][ T333] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 32.105163][ T333] CPU: 1 PID: 333 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 32.116772][ T333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 32.126657][ T333] Call Trace:
[ 32.129789][ T333]
[ 32.132573][ T333] dump_stack_lvl+0x151/0x1b7
[ 32.137072][ T333] ? io_uring_drop_tctx_refs+0x190/0x190
[ 32.142587][ T333] dump_stack+0x15/0x17
[ 32.146534][ T333] should_fail+0x3c6/0x510
[ 32.150787][ T333] should_fail_alloc_page+0x5a/0x80
[ 32.155818][ T333] prepare_alloc_pages+0x15c/0x700
[ 32.160768][ T333] ? __alloc_pages+0x5e0/0x5e0
[ 32.165368][ T333] ? __alloc_pages_bulk+0xe60/0xe60
[ 32.170403][ T333] ? unlock_page_memcg+0x146/0x160
[ 32.175441][ T333] __alloc_pages+0x138/0x5e0
[ 32.179864][ T333] ? __kasan_check_write+0x14/0x20
[ 32.184807][ T333] ? prep_new_page+0x110/0x110
[ 32.189411][ T333] ? do_set_pte+0x3ca/0x7c0
[ 32.193748][ T333] wp_page_copy+0x1d4/0x1b00
[ 32.198175][ T333] ? __kasan_check_write+0x14/0x20
[ 32.203135][ T333] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 32.208935][ T333] ? __pte_map_lock+0x442/0x620
[ 32.213628][ T333] ? vm_normal_page+0x1e1/0x1f0
[ 32.218307][ T333] do_wp_page+0x6fa/0xb60
[ 32.222478][ T333] handle_pte_fault+0x72e/0x2340
[ 32.227255][ T333] ? fault_around_bytes_set+0xc0/0xc0
[ 32.232460][ T333] do_handle_mm_fault+0x1fed/0x2330
[ 32.237498][ T333] ? numa_migrate_prep+0xe0/0xe0
[ 32.242270][ T333] ? __kasan_check_write+0x14/0x20
[ 32.247219][ T333] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 32.252159][ T333] ? _raw_spin_lock_irqsave+0x210/0x210
[ 32.257546][ T333] ? _raw_spin_unlock_irq+0x4e/0x70
[ 32.262576][ T333] ? down_read_trylock+0x1f9/0x300
[ 32.267522][ T333] ? __init_rwsem+0x1c0/0x1c0
[ 32.272034][ T333] ? debug_smp_processor_id+0x17/0x20
[ 32.277425][ T333] ? vmacache_update+0xb7/0x120
[ 32.282107][ T333] ? __find_vma+0x136/0x150
[ 32.286446][ T333] exc_page_fault+0x3b5/0x830
[ 32.291058][ T333] asm_exc_page_fault+0x27/0x30
[ 32.295741][ T333] RIP: 0033:0x7fbab0d0b520
[ 32.299999][ T333] Code: 84 dd fe ff ff 4c 89 e7 e8 5d 93 00 00 e9 d0 fe ff ff 0f 1f 84 00 00 00 00 00 49 8b 06 48 89 45 00 48 85 c0 0f 85 85 00 00 00 05 a9 3c 0a 00 01 31 c0 87 05 79 38 0a 00 83 f8 01 0f 8f 84 00
[ 32.319437][ T333] RSP: 002b:00007fffcff1f850 EFLAGS: 00010246
[ 32.325333][ T333] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000004
[ 32.333135][ T333] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00007fbab0dadad8
[ 32.341234][ T333] RBP: 00007fbab0dac120 R08: 00007fffcff1f617 R09: 0000000000000037
[ 32.349137][ T333] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbab0daeda8
[pid 333] exit_group(0) = ?
[pid 333] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=333, si_uid=0, si_status=0, si_utime=0, si_stime=2} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555cec750) = 334
./strace-static-x86_64: Process 334 attached
[pid 334] set_robust_list(0x555555cec760, 24) = 0
[pid 334] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 334] setpgid(0, 0) = 0
[pid 334] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 334] write(3, "1000", 4) = 4
[pid 334] close(3) = 0
[pid 334] socket(AF_UNIX, SOCK_DGRAM, 0) = 3
[pid 334] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_SKB, insn_cnt=4, insns=0x20000540, license="GPL", log_level=4, log_size=64912, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 4
[pid 334] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=4, max_entries=18, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5
[pid 334] bpf(BPF_PROG_ATTACH, {target_fd=5, attach_bpf_fd=4, attach_type=BPF_SK_SKB_VERDICT, attach_flags=0}, 16) = 0
[pid 334] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000180, value=0x200000c0, flags=BPF_ANY}, 32) = 0
[pid 334] bind(3, {sa_family=AF_UNIX, sun_path="./file0"}, 110) = -1 EADDRINUSE (Address already in use)
[pid 334] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 334] write(6, "7", 1) = 1
[pid 334] sendmmsg(3, [{msg_hdr={msg_name={sa_family=AF_UNIX, sun_path="./file0"}, msg_namelen=110, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}], 1, 0) = -1 ECONNREFUSED (Connection refused)
[ 32.356945][ T333] R13: 0000000000000000 R14: 00007fbab0daedc0 R15: 00007fbab0d04030
[ 32.364771][ T333]
[ 32.374679][ T334] FAULT_INJECTION: forcing a failure.
[ 32.374679][ T334] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 32.387786][ T334] CPU: 0 PID: 334 Comm: syz-executor199 Tainted: G B 5.15.131-syzkaller-00653-gea586874d2f9 #0
[ 32.399161][ T334] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 32.409044][ T334] Call Trace:
[ 32.412161][ T334]
[ 32.414944][ T334] dump_stack_lvl+0x151/0x1b7
[ 32.419454][ T334] ? io_uring_drop_tctx_refs+0x190/0x190
[ 32.424925][ T334] dump_stack+0x15/0x17
[ 32.428915][ T334] should_fail+0x3c6/0x510
[ 32.433200][ T334] should_fail_alloc_page+0x5a/0x80
[ 32.438288][ T334] prepare_alloc_pages+0x15c/0x700
[ 32.443243][ T334] ? __alloc_pages+0x5e0/0x5e0
[ 32.447835][ T334] ? __alloc_pages_bulk+0xe60/0xe60
[ 32.452867][ T334] ? unlock_page_memcg+0x146/0x160
[ 32.457816][ T334] __alloc_pages+0x138/0x5e0
[ 32.462242][ T334] ? __kasan_check_write+0x14/0x20
[ 32.467192][ T334] ? prep_new_page+0x110/0x110
[ 32.472000][ T334] ? do_set_pte+0x3ca/0x7c0
[ 32.476342][ T334] wp_page_copy+0x1d4/0x1b00
[ 32.480768][ T334] ? __kasan_check_write+0x14/0x20
[ 32.485968][ T334] ? insert_page_into_pte_locked+0x4e0/0x4e0
[ 32.491792][ T334] ? __pte_map_lock+0x442/0x620
[ 32.496471][ T334] ? vm_normal_page+0x1e1/0x1f0
[ 32.501159][ T334] do_wp_page+0x6fa/0xb60
[ 32.505322][ T334] handle_pte_fault+0x72e/0x2340
[ 32.510343][ T334] ? update_load_avg+0x43a/0x1150
[ 32.515192][ T334] ? fault_around_bytes_set+0xc0/0xc0
[ 32.520395][ T334] do_handle_mm_fault+0x1fed/0x2330
[ 32.525429][ T334] ? numa_migrate_prep+0xe0/0xe0
[ 32.530201][ T334] ? __kasan_check_write+0x14/0x20
[ 32.535150][ T334] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 32.540102][ T334] ? _raw_spin_lock_irqsave+0x210/0x210
[ 32.545476][ T334] ? _raw_spin_unlock_irq+0x4e/0x70
[ 32.550535][ T334] ? down_read_trylock+0x1f9/0x300
[ 32.555471][ T334] ? __init_rwsem+0x1c0/0x1c0