./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1686946923 <...> Warning: Permanently added '10.128.1.30' (ED25519) to the list of known hosts. execve("./syz-executor1686946923", ["./syz-executor1686946923"], 0x7ffd45334cb0 /* 10 vars */) = 0 brk(NULL) = 0x55555a75b000 brk(0x55555a75bd00) = 0x55555a75bd00 arch_prctl(ARCH_SET_FS, 0x55555a75b380) = 0 set_tid_address(0x55555a75b650) = 290 set_robust_list(0x55555a75b660, 24) = 0 rseq(0x55555a75bca0, 0x20, 0, 0x53053053) = -1 ENOSYS (Function not implemented) prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1686946923", 4096) = 28 getrandom("\x2d\x1b\xe8\x62\x53\xdb\x6f\x3b", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55555a75bd00 brk(0x55555a77cd00) = 0x55555a77cd00 brk(0x55555a77d000) = 0x55555a77d000 mprotect(0x7f774fa34000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 openat(AT_FDCWD, "/proc/self/make-it-fail", O_WRONLY) = 3 close(3) = 0 openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_WRONLY) = 3 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3 write(3, "0", 1) = 1 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555a75b650) = 291 ./strace-static-x86_64: Process 291 attached [pid 290] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 291] set_robust_list(0x55555a75b660, 24) = 0 [pid 290] <... clone resumed>, child_tidptr=0x55555a75b650) = 292 [pid 290] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 291] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 290] <... clone resumed>, child_tidptr=0x55555a75b650) = 293 [pid 290] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555a75b650) = 294 [pid 290] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 292 attached ./strace-static-x86_64: Process 293 attached [pid 291] <... clone resumed>, child_tidptr=0x55555a75b650) = 295 [pid 290] <... clone resumed>, child_tidptr=0x55555a75b650) = 296 [pid 292] set_robust_list(0x55555a75b660, 24) = 0 ./strace-static-x86_64: Process 295 attached [pid 295] set_robust_list(0x55555a75b660, 24) = 0 [pid 295] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 292] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 295] <... prctl resumed>) = 0 [pid 295] setpgid(0, 0) = 0 [pid 295] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXECexecuting program ) = 3 [pid 295] write(3, "1000", 4) = 4 [pid 295] close(3) = 0 [pid 295] write(1, "executing program\n", 18) = 18 [pid 295] perf_event_open( [pid 292] <... clone resumed>, child_tidptr=0x55555a75b650) = 297 [pid 293] set_robust_list(0x55555a75b660, 24./strace-static-x86_64: Process 297 attached ./strace-static-x86_64: Process 296 attached ./strace-static-x86_64: Process 294 attached ) = 0 [pid 297] set_robust_list(0x55555a75b660, 24 [pid 296] set_robust_list(0x55555a75b660, 24 [pid 295] <... perf_event_open resumed>{type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=354, sample_period=0, sample_type=PERF_SAMPLE_TID|PERF_SAMPLE_DATA_SRC, read_format=0, precise_ip=0 /* arbitrary skid */, ...}, 0, 0, -1, PERF_FLAG_FD_OUTPUT) = 3 [pid 294] set_robust_list(0x55555a75b660, 24 [pid 293] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 297] <... set_robust_list resumed>) = 0 [pid 296] <... set_robust_list resumed>) = 0 [pid 294] <... set_robust_list resumed>) = 0 [pid 297] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 294] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 297] <... prctl resumed>) = 0 [pid 297] setpgid(0, 0) = 0 [pid 297] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 296] <... clone resumed>, child_tidptr=0x55555a75b650) = 300 [pid 294] <... clone resumed>, child_tidptr=0x55555a75b650) = 299 [pid 293] <... clone resumed>, child_tidptr=0x55555a75b650) = 298 [pid 297] write(3, "1000", 4) = 4 [pid 297] close(3) = 0 executing program [pid 297] write(1, "executing program\n", 18) = 18 [ 78.310823][ T28] audit: type=1400 audit(1747375056.630:64): avc: denied { execmem } for pid=290 comm="syz-executor168" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 78.334937][ T28] audit: type=1400 audit(1747375056.660:65): avc: denied { open } for pid=295 comm="syz-executor168" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [pid 297] perf_event_open({type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=354, sample_period=0, sample_type=PERF_SAMPLE_TID|PERF_SAMPLE_DATA_SRC, read_format=0, precise_ip=0 /* arbitrary skid */, ...}, 0, 0, -1, PERF_FLAG_FD_OUTPUT) = 3 [pid 297] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000300, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144./strace-static-x86_64: Process 299 attached ./strace-static-x86_64: Process 300 attached ./strace-static-x86_64: Process 298 attached [pid 295] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000300, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 299] set_robust_list(0x55555a75b660, 24 [pid 300] set_robust_list(0x55555a75b660, 24 [pid 298] set_robust_list(0x55555a75b660, 24 [pid 300] <... set_robust_list resumed>) = 0 [pid 299] <... set_robust_list resumed>) = 0 [pid 298] <... set_robust_list resumed>) = 0 [ 78.355232][ T28] audit: type=1400 audit(1747375056.660:66): avc: denied { perfmon } for pid=295 comm="syz-executor168" capability=38 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 78.376633][ T28] audit: type=1400 audit(1747375056.660:67): avc: denied { kernel } for pid=295 comm="syz-executor168" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [pid 300] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 299] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 298] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 300] <... prctl resumed>) = 0 [pid 299] <... prctl resumed>) = 0 [pid 298] <... prctl resumed>) = 0 [pid 300] setpgid(0, 0) = 0 [pid 299] setpgid(0, 0 [pid 298] setpgid(0, 0 [pid 300] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 299] <... setpgid resumed>) = 0 [pid 298] <... setpgid resumed>) = 0 [pid 300] <... openat resumed>) = 3 [pid 299] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 298] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 300] write(3, "1000", 4 [pid 299] <... openat resumed>) = 3 [pid 300] <... write resumed>) = 4 [pid 299] write(3, "1000", 4 [pid 298] <... openat resumed>) = 3 [pid 295] <... bpf resumed>) = 4 [pid 300] close(3 [pid 299] <... write resumed>) = 4 [pid 298] write(3, "1000", 4 [pid 295] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="percpu_alloc_percpu", prog_fd=4}}, 16 [pid 300] <... close resumed>) = 0 [pid 299] close(3 [pid 298] <... write resumed>) = 4 [pid 297] <... bpf resumed>) = 4 [pid 297] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="percpu_alloc_percpu", prog_fd=4}}, 16executing program executing program [pid 300] write(1, "executing program\n", 18 [pid 299] <... close resumed>) = 0 [pid 298] close(3 [pid 300] <... write resumed>) = 18 [pid 299] write(1, "executing program\n", 18 [pid 295] <... bpf resumed>) = 5 [pid 298] <... close resumed>) = 0 [pid 297] <... bpf resumed>) = 5 [pid 300] perf_event_open( [pid 299] <... write resumed>) = 18 [pid 295] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 298] write(1, "executing program\n", 18 [pid 297] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWRexecuting program [pid 300] <... perf_event_open resumed>{type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=354, sample_period=0, sample_type=PERF_SAMPLE_TID|PERF_SAMPLE_DATA_SRC, read_format=0, precise_ip=0 /* arbitrary skid */, ...}, 0, 0, -1, PERF_FLAG_FD_OUTPUT) = 3 [pid 299] perf_event_open( [pid 295] <... openat resumed>) = 6 [pid 300] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000300, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 298] <... write resumed>) = 18 [pid 299] <... perf_event_open resumed>{type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=354, sample_period=0, sample_type=PERF_SAMPLE_TID|PERF_SAMPLE_DATA_SRC, read_format=0, precise_ip=0 /* arbitrary skid */, ...}, 0, 0, -1, PERF_FLAG_FD_OUTPUT) = 3 [pid 297] <... openat resumed>) = 6 [pid 295] write(6, "1", 1 [pid 298] perf_event_open( [pid 300] <... bpf resumed>) = 4 [pid 299] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000300, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 298] <... perf_event_open resumed>{type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=354, sample_period=0, sample_type=PERF_SAMPLE_TID|PERF_SAMPLE_DATA_SRC, read_format=0, precise_ip=0 /* arbitrary skid */, ...}, 0, 0, -1, PERF_FLAG_FD_OUTPUT) = 3 [pid 295] <... write resumed>) = 1 [pid 300] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="percpu_alloc_percpu", prog_fd=4}}, 16 [pid 297] write(6, "1", 1 [pid 298] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000300, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 299] <... bpf resumed>) = 4 [pid 298] <... bpf resumed>) = 4 [pid 295] close(3 [pid 300] <... bpf resumed>) = 5 [pid 298] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="percpu_alloc_percpu", prog_fd=4}}, 16 [pid 295] <... close resumed>) = 0 [ 78.396849][ T28] audit: type=1400 audit(1747375056.680:68): avc: denied { bpf } for pid=297 comm="syz-executor168" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 78.418178][ T28] audit: type=1400 audit(1747375056.680:69): avc: denied { prog_load } for pid=297 comm="syz-executor168" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 78.440072][ T28] audit: type=1400 audit(1747375056.760:70): avc: denied { prog_run } for pid=295 comm="syz-executor168" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [pid 299] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="percpu_alloc_percpu", prog_fd=4}}, 16 [pid 298] <... bpf resumed>) = 5 [pid 298] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6 [pid 298] write(6, "1", 1) = 1 [pid 298] close(3) = 0 [ 78.463663][ T295] FAULT_INJECTION: forcing a failure. [ 78.463663][ T295] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 78.464351][ T298] FAULT_INJECTION: forcing a failure. [ 78.464351][ T298] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 78.477406][ T295] CPU: 1 PID: 295 Comm: syz-executor168 Not tainted 6.1.134-syzkaller-00015-g218e2bd24587 #0 [ 78.491444][ T297] FAULT_INJECTION: forcing a failure. [ 78.491444][ T297] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 78.500716][ T295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 78.500743][ T295] Call Trace: [ 78.500750][ T295] [ 78.530273][ T295] __dump_stack+0x21/0x24 [ 78.534637][ T295] dump_stack_lvl+0xee/0x150 [ 78.539264][ T295] ? __cfi_dump_stack_lvl+0x8/0x8 [ 78.544305][ T295] dump_stack+0x15/0x24 [ 78.548550][ T295] should_fail_ex+0x3d4/0x520 [ 78.553518][ T295] should_fail_alloc_page+0x61/0x90 [ 78.558746][ T295] prepare_alloc_pages+0x148/0x5f0 [ 78.563880][ T295] ? __alloc_pages_bulk+0x9c0/0x9c0 [ 78.569092][ T295] ? __kasan_record_aux_stack+0xb6/0xc0 [ 78.574649][ T295] __alloc_pages+0x115/0x3a0 [ 78.579333][ T295] ? __cfi___alloc_pages+0x10/0x10 [ 78.584448][ T295] ? __kasan_check_write+0x14/0x20 [ 78.589650][ T295] ? _raw_spin_lock+0x8e/0xe0 [ 78.594352][ T295] ? __cfi__raw_spin_lock+0x10/0x10 [ 78.599642][ T295] ? __this_cpu_preempt_check+0x13/0x20 [ 78.605192][ T295] __folio_alloc+0x12/0x40 [ 78.609615][ T295] wp_page_copy+0x280/0x15b0 [pid 300] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 299] <... bpf resumed>) = 5 [pid 297] <... write resumed>) = 1 [pid 297] close(3) = 0 [ 78.614216][ T295] ? __this_cpu_preempt_check+0x13/0x20 [ 78.619838][ T295] ? __cfi___perf_event_task_sched_in+0x10/0x10 [ 78.626258][ T295] ? fault_dirty_shared_page+0x310/0x310 [ 78.632004][ T295] ? _raw_spin_unlock+0x4c/0x70 [ 78.636859][ T295] ? finish_task_switch+0x16b/0x7b0 [ 78.642161][ T295] ? vm_normal_page+0x99/0x200 [ 78.646941][ T295] do_wp_page+0x9f2/0xfc0 [ 78.651372][ T295] handle_mm_fault+0x10e4/0x2640 [ 78.656320][ T295] ? __cfi_handle_mm_fault+0x10/0x10 [ 78.661624][ T295] ? lock_vma_under_rcu+0x3eb/0x4d0 [ 78.666867][ T295] ? __this_cpu_preempt_check+0x13/0x20 [ 78.672412][ T295] ? xfd_validate_state+0x70/0x150 [ 78.677530][ T295] do_user_addr_fault+0x905/0x1050 [ 78.682659][ T295] exc_page_fault+0x51/0xb0 [ 78.687173][ T295] asm_exc_page_fault+0x27/0x30 [ 78.692235][ T295] RIP: 0033:0x7f774f9970e0 [ 78.696777][ T295] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 0d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 c0 3c 0a 00 0f 85 0f 02 00 00 4c 8d 25 b3 3c 0a 00 4c [ 78.716647][ T295] RSP: 002b:00007ffd5f039910 EFLAGS: 00010246 [ 78.722725][ T295] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001 [ 78.730886][ T295] RDX: 0000000000000001 RSI: 00007f774fa38110 RDI: 0000000000000000 [ 78.738865][ T295] RBP: 00007f774fa38110 R08: 00007ffd5f039707 R09: 0000000000000140 [ 78.746842][ T295] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 78.754918][ T295] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 78.762916][ T295] [ 78.766111][ T297] CPU: 0 PID: 297 Comm: syz-executor168 Not tainted 6.1.134-syzkaller-00015-g218e2bd24587 #0 [ 78.776273][ T297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 78.786417][ T297] Call Trace: [ 78.789707][ T297] [ 78.792701][ T297] __dump_stack+0x21/0x24 [ 78.797224][ T297] dump_stack_lvl+0xee/0x150 [ 78.801901][ T297] ? __cfi_dump_stack_lvl+0x8/0x8 [ 78.806920][ T297] ? resched_curr+0x10e/0x380 [ 78.811588][ T297] ? __cfi_resched_curr+0x10/0x10 [ 78.816612][ T297] dump_stack+0x15/0x24 [ 78.820777][ T297] should_fail_ex+0x3d4/0x520 [ 78.825451][ T297] should_fail_alloc_page+0x61/0x90 [ 78.830650][ T297] prepare_alloc_pages+0x148/0x5f0 [ 78.835759][ T297] ? __alloc_pages_bulk+0x9c0/0x9c0 [ 78.840961][ T297] __alloc_pages+0x115/0x3a0 [ 78.845549][ T297] ? __cfi___alloc_pages+0x10/0x10 [ 78.850658][ T297] ? __kasan_check_write+0x14/0x20 [ 78.855950][ T297] ? _raw_spin_lock+0x8e/0xe0 [ 78.860641][ T297] ? __cfi__raw_spin_lock+0x10/0x10 [ 78.865880][ T297] ? __this_cpu_preempt_check+0x13/0x20 [ 78.871423][ T297] __folio_alloc+0x12/0x40 [ 78.875994][ T297] wp_page_copy+0x280/0x15b0 [ 78.880665][ T297] ? __this_cpu_preempt_check+0x13/0x20 [ 78.886310][ T297] ? __cfi___perf_event_task_sched_in+0x10/0x10 [ 78.892554][ T297] ? fault_dirty_shared_page+0x310/0x310 [ 78.898383][ T297] ? _raw_spin_unlock+0x4c/0x70 [ 78.903412][ T297] ? finish_task_switch+0x16b/0x7b0 [ 78.908610][ T297] ? vm_normal_page+0x99/0x200 [ 78.913388][ T297] do_wp_page+0x9f2/0xfc0 [ 78.917720][ T297] handle_mm_fault+0x10e4/0x2640 [ 78.922695][ T297] ? __cfi_handle_mm_fault+0x10/0x10 [ 78.927981][ T297] ? lock_vma_under_rcu+0x3eb/0x4d0 [ 78.933190][ T297] ? __this_cpu_preempt_check+0x13/0x20 [ 78.938741][ T297] ? xfd_validate_state+0x70/0x150 [ 78.943942][ T297] do_user_addr_fault+0x905/0x1050 [ 78.949062][ T297] exc_page_fault+0x51/0xb0 [ 78.953586][ T297] asm_exc_page_fault+0x27/0x30 [ 78.958448][ T297] RIP: 0033:0x7f774f9970e0 [ 78.962855][ T297] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 0d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 c0 3c 0a 00 0f 85 0f 02 00 00 4c 8d 25 b3 3c 0a 00 4c [ 78.982552][ T297] RSP: 002b:00007ffd5f039910 EFLAGS: 00010246 [ 78.988624][ T297] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001 [ 78.996603][ T297] RDX: 0000000000000001 RSI: 00007f774fa38110 RDI: 0000000000000000 [ 79.004655][ T297] RBP: 00007f774fa38110 R08: 00007ffd5f039707 R09: 0000000000000140 [ 79.012627][ T297] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 79.020595][ T297] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 79.028568][ T297] [ 79.031782][ T298] CPU: 0 PID: 298 Comm: syz-executor168 Not tainted 6.1.134-syzkaller-00015-g218e2bd24587 #0 [ 79.033116][ T300] FAULT_INJECTION: forcing a failure. [ 79.033116][ T300] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 79.041944][ T298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 79.041958][ T298] Call Trace: [ 79.041964][ T298] [ 79.041970][ T298] __dump_stack+0x21/0x24 [ 79.042001][ T298] dump_stack_lvl+0xee/0x150 [ 79.055445][ T299] FAULT_INJECTION: forcing a failure. [ 79.055445][ T299] name failslab, interval 1, probability 0, space 0, times 1 [ 79.065357][ T298] ? __cfi_dump_stack_lvl+0x8/0x8 [ 79.065396][ T298] ? __cfi_enqueue_task_fair+0x10/0x10 [ 79.103824][ T298] dump_stack+0x15/0x24 [ 79.108004][ T298] should_fail_ex+0x3d4/0x520 [ 79.112721][ T298] should_fail_alloc_page+0x61/0x90 [ 79.117922][ T298] prepare_alloc_pages+0x148/0x5f0 [ 79.123037][ T298] ? __alloc_pages_bulk+0x9c0/0x9c0 [ 79.128267][ T298] __alloc_pages+0x115/0x3a0 [ 79.132857][ T298] ? __cfi___alloc_pages+0x10/0x10 [ 79.138058][ T298] ? __kasan_check_write+0x14/0x20 [ 79.143172][ T298] ? _raw_spin_lock+0x8e/0xe0 [ 79.147938][ T298] ? __cfi__raw_spin_lock+0x10/0x10 [ 79.153158][ T298] ? __this_cpu_preempt_check+0x13/0x20 [ 79.158711][ T298] __folio_alloc+0x12/0x40 [ 79.163130][ T298] wp_page_copy+0x280/0x15b0 [ 79.167729][ T298] ? __this_cpu_preempt_check+0x13/0x20 [ 79.173289][ T298] ? __cfi___perf_event_task_sched_in+0x10/0x10 [ 79.179528][ T298] ? fault_dirty_shared_page+0x310/0x310 [ 79.185203][ T298] ? _raw_spin_unlock+0x4c/0x70 [ 79.190085][ T298] ? finish_task_switch+0x16b/0x7b0 [ 79.195305][ T298] ? vm_normal_page+0x99/0x200 [ 79.200172][ T298] do_wp_page+0x9f2/0xfc0 [ 79.204513][ T298] handle_mm_fault+0x10e4/0x2640 [ 79.209460][ T298] ? __cfi_handle_mm_fault+0x10/0x10 [ 79.214746][ T298] ? lock_vma_under_rcu+0x3eb/0x4d0 [ 79.219956][ T298] ? __this_cpu_preempt_check+0x13/0x20 [ 79.225515][ T298] ? xfd_validate_state+0x70/0x150 [ 79.230631][ T298] do_user_addr_fault+0x905/0x1050 [ 79.235760][ T298] exc_page_fault+0x51/0xb0 [ 79.240434][ T298] asm_exc_page_fault+0x27/0x30 [ 79.245288][ T298] RIP: 0033:0x7f774f9970e0 [ 79.249707][ T298] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 0d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 c0 3c 0a 00 0f 85 0f 02 00 00 4c 8d 25 b3 3c 0a 00 4c [ 79.269839][ T298] RSP: 002b:00007ffd5f039910 EFLAGS: 00010246 [ 79.275995][ T298] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001 [ 79.284048][ T298] RDX: 0000000000000001 RSI: 00007f774fa38110 RDI: 0000000000000000 [ 79.292018][ T298] RBP: 00007f774fa38110 R08: 00007ffd5f039707 R09: 0000000000000140 [ 79.299985][ T298] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 79.307948][ T298] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [pid 300] <... openat resumed>) = 6 [pid 299] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 300] write(6, "1", 1 [pid 299] <... openat resumed>) = 6 [pid 300] <... write resumed>) = 1 [pid 299] write(6, "1", 1 [pid 300] close(3 [pid 299] <... write resumed>) = 1 [pid 300] <... close resumed>) = 0 [ 79.315920][ T298] [ 79.319028][ T300] CPU: 1 PID: 300 Comm: syz-executor168 Not tainted 6.1.134-syzkaller-00015-g218e2bd24587 #0 [ 79.319852][ T295] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 79.329192][ T300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 79.329208][ T300] Call Trace: [ 79.329214][ T300] [ 79.329221][ T300] __dump_stack+0x21/0x24 [ 79.329252][ T300] dump_stack_lvl+0xee/0x150 [ 79.329277][ T300] ? __cfi_dump_stack_lvl+0x8/0x8 [ 79.329301][ T300] ? __cfi_enqueue_task_fair+0x10/0x10 [ 79.337095][ T297] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 79.346791][ T300] dump_stack+0x15/0x24 [ 79.346825][ T300] should_fail_ex+0x3d4/0x520 [ 79.350231][ T298] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 79.353034][ T300] should_fail_alloc_page+0x61/0x90 [ 79.402266][ T300] prepare_alloc_pages+0x148/0x5f0 [ 79.407392][ T300] ? __alloc_pages_bulk+0x9c0/0x9c0 [ 79.412686][ T300] __alloc_pages+0x115/0x3a0 [ 79.417275][ T300] ? __cfi___alloc_pages+0x10/0x10 [ 79.422470][ T300] ? __kasan_check_write+0x14/0x20 [ 79.427583][ T300] ? _raw_spin_lock+0x8e/0xe0 [ 79.432274][ T300] ? __cfi__raw_spin_lock+0x10/0x10 [ 79.437493][ T300] ? __this_cpu_preempt_check+0x13/0x20 [ 79.443041][ T300] __folio_alloc+0x12/0x40 [ 79.447457][ T300] wp_page_copy+0x280/0x15b0 [ 79.452160][ T300] ? __this_cpu_preempt_check+0x13/0x20 [ 79.457743][ T300] ? __cfi___perf_event_task_sched_in+0x10/0x10 [ 79.463978][ T300] ? fault_dirty_shared_page+0x310/0x310 [ 79.470056][ T300] ? _raw_spin_unlock+0x4c/0x70 [ 79.474922][ T300] ? finish_task_switch+0x16b/0x7b0 [ 79.480140][ T300] ? vm_normal_page+0x99/0x200 [ 79.485162][ T300] do_wp_page+0x9f2/0xfc0 [ 79.489499][ T300] handle_mm_fault+0x10e4/0x2640 [ 79.494443][ T300] ? __cfi_handle_mm_fault+0x10/0x10 [ 79.499728][ T300] ? lock_vma_under_rcu+0x3eb/0x4d0 [ 79.504935][ T300] ? __this_cpu_preempt_check+0x13/0x20 [ 79.510475][ T300] ? xfd_validate_state+0x70/0x150 [ 79.515594][ T300] do_user_addr_fault+0x905/0x1050 [ 79.520713][ T300] exc_page_fault+0x51/0xb0 [ 79.525386][ T300] asm_exc_page_fault+0x27/0x30 [ 79.530418][ T300] RIP: 0033:0x7f774f9970e0 [ 79.534830][ T300] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 0d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 c0 3c 0a 00 0f 85 0f 02 00 00 4c 8d 25 b3 3c 0a 00 4c [ 79.554436][ T300] RSP: 002b:00007ffd5f039910 EFLAGS: 00010246 [ 79.560585][ T300] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001 [ 79.568553][ T300] RDX: 0000000000000001 RSI: 00007f774fa38110 RDI: 0000000000000000 [ 79.576516][ T300] RBP: 00007f774fa38110 R08: 00007ffd5f039707 R09: 0000000000000140 [ 79.584479][ T300] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 79.592442][ T300] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 79.600410][ T300] [ 79.603662][ T299] CPU: 0 PID: 299 Comm: syz-executor168 Not tainted 6.1.134-syzkaller-00015-g218e2bd24587 #0 [pid 299] close(3 [pid 298] exit_group(0 [pid 297] exit_group(0 [pid 295] exit_group(0 [pid 300] exit_group(0) = ? [pid 298] <... exit_group resumed>) = ? [pid 297] <... exit_group resumed>) = ? [pid 295] <... exit_group resumed>) = ? [ 79.613254][ T300] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 79.613842][ T299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 79.631504][ T299] Call Trace: [ 79.634786][ T299] [ 79.637803][ T299] __dump_stack+0x21/0x24 [ 79.642147][ T299] dump_stack_lvl+0xee/0x150 [ 79.646846][ T299] ? __cfi_dump_stack_lvl+0x8/0x8 [ 79.651889][ T299] dump_stack+0x15/0x24 [ 79.656061][ T299] should_fail_ex+0x3d4/0x520 [ 79.660754][ T299] __should_failslab+0xac/0xf0 [ 79.665658][ T299] ? tracepoint_probe_unregister+0x1e6/0x8b0 [ 79.671638][ T299] should_failslab+0x9/0x20 [ 79.676245][ T299] __kmem_cache_alloc_node+0x3d/0x2c0 [ 79.681714][ T299] ? __cfi_mutex_lock+0x10/0x10 [ 79.686680][ T299] ? tracepoint_probe_unregister+0x1e6/0x8b0 [ 79.692676][ T299] __kmalloc+0xa1/0x1e0 [ 79.696834][ T299] ? __kasan_check_write+0x14/0x20 [ 79.701973][ T299] ? __cfi_perf_trace_percpu_alloc_percpu+0x10/0x10 [ 79.708613][ T299] tracepoint_probe_unregister+0x1e6/0x8b0 [ 79.714442][ T299] trace_event_reg+0x21c/0x260 [ 79.719216][ T299] perf_trace_event_unreg+0xcc/0x1c0 [ 79.724499][ T299] perf_trace_destroy+0xbe/0x180 [ 79.729698][ T299] tp_perf_event_destroy+0x15/0x20 [ 79.734922][ T299] ? __cfi_tp_perf_event_destroy+0x10/0x10 [ 79.740753][ T299] _free_event+0x9cd/0xce0 [ 79.745283][ T299] perf_event_release_kernel+0x819/0x8a0 [ 79.750923][ T299] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 79.757021][ T299] ? __cfi_perf_event_release_kernel+0x10/0x10 [ 79.763214][ T299] perf_release+0x3b/0x40 [ 79.767548][ T299] ? __cfi_perf_release+0x10/0x10 [ 79.772707][ T299] __fput+0x1fc/0x8f0 [ 79.776775][ T299] ____fput+0x15/0x20 [ 79.780752][ T299] task_work_run+0x1db/0x240 [ 79.785343][ T299] ? __cfi_task_work_run+0x10/0x10 [ 79.790535][ T299] ? task_work_add+0x2b1/0x330 [ 79.795302][ T299] ptrace_notify+0x221/0x250 [ 79.799986][ T299] ? __cfi_ptrace_notify+0x10/0x10 [ 79.805138][ T299] ? fput+0x15b/0x1a0 [ 79.809120][ T299] ? filp_close+0x111/0x160 [ 79.813633][ T299] ? close_fd+0x28b/0x300 [ 79.817964][ T299] syscall_exit_work+0x84/0x140 [ 79.822812][ T299] syscall_exit_to_user_mode_prepare+0x1c/0x20 [ 79.828969][ T299] syscall_exit_to_user_mode+0xd/0x30 [ 79.834367][ T299] do_syscall_64+0x58/0xa0 [ 79.838806][ T299] ? clear_bhb_loop+0x15/0x70 [ 79.843485][ T299] ? clear_bhb_loop+0x15/0x70 [ 79.848161][ T299] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 79.854053][ T299] RIP: 0033:0x7f774f9c8999 [ 79.858517][ T299] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 79.878117][ T299] RSP: 002b:00007ffd5f039968 EFLAGS: 00000246 ORIG_RAX: 0000000000000003 [ 79.886527][ T299] RAX: 0000000000000000 RBX: 00007ffd5f039980 RCX: 00007f774f9c8999 [ 79.894494][ T299] RDX: 00007f774f9c7bd0 RSI: 00007ffd5f039980 RDI: 0000000000000003 [ 79.902462][ T299] RBP: 0000000000000001 R08: 00007ffd5f039707 R09: 0000000000000140 [ 79.910642][ T299] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [pid 300] +++ exited with 0 +++ [pid 298] +++ exited with 0 +++ [pid 297] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=300, si_uid=0, si_status=0, si_utime=0, si_stime=16} --- [pid 293] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=298, si_uid=0, si_status=0, si_utime=0, si_stime=15} --- [pid 292] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=297, si_uid=0, si_status=0, si_utime=0, si_stime=26} --- [pid 296] restart_syscall(<... resuming interrupted clone ...> [pid 293] restart_syscall(<... resuming interrupted clone ...> [pid 292] restart_syscall(<... resuming interrupted clone ...> [pid 299] <... close resumed>) = 0 [pid 295] +++ exited with 0 +++ [pid 299] exit_group(0 [pid 291] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=295, si_uid=0, si_status=0, si_utime=0, si_stime=5} --- [pid 299] <... exit_group resumed>) = ? [pid 291] restart_syscall(<... resuming interrupted clone ...> [pid 296] <... restart_syscall resumed>) = 0 [pid 293] <... restart_syscall resumed>) = 0 [pid 292] <... restart_syscall resumed>) = 0 [pid 291] <... restart_syscall resumed>) = 0 [pid 299] +++ exited with 0 +++ [pid 294] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=299, si_uid=0, si_status=0, si_utime=0, si_stime=16} --- [pid 291] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 301 attached [pid 301] set_robust_list(0x55555a75b660, 24 [pid 291] <... clone resumed>, child_tidptr=0x55555a75b650) = 301 [pid 301] <... set_robust_list resumed>) = 0 [pid 301] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 296] <... clone resumed>, child_tidptr=0x55555a75b650) = 302 [pid 293] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 292] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 301] <... prctl resumed>) = 0 [pid 301] setpgid(0, 0) = 0 executing program [pid 301] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 301] write(3, "1000", 4) = 4 [pid 301] close(3) = 0 [pid 301] write(1, "executing program\n", 18) = 18 [pid 301] perf_event_open( [pid 294] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 292] <... clone resumed>, child_tidptr=0x55555a75b650) = 303 ./strace-static-x86_64: Process 302 attached [pid 302] set_robust_list(0x55555a75b660, 24) = 0 [pid 302] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 302] setpgid(0, 0) = 0 [pid 293] <... clone resumed>, child_tidptr=0x55555a75b650) = 304 [pid 294] <... clone resumed>, child_tidptr=0x55555a75b650) = 305 [pid 302] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 304 attached ) = 3 [pid 302] write(3, "1000", 4) = 4 [pid 302] close(3) = 0 executing program [pid 302] write(1, "executing program\n", 18) = 18 [pid 302] perf_event_open(./strace-static-x86_64: Process 305 attached [pid 304] set_robust_list(0x55555a75b660, 24./strace-static-x86_64: Process 303 attached ) = 0 [pid 303] set_robust_list(0x55555a75b660, 24) = 0 [pid 303] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 304] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 303] <... prctl resumed>) = 0 [pid 303] setpgid(0, 0) = 0 [pid 305] set_robust_list(0x55555a75b660, 24 [pid 304] <... prctl resumed>) = 0 [pid 305] <... set_robust_list resumed>) = 0 [pid 303] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 304] setpgid(0, 0 [pid 305] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 305] setpgid(0, 0 [pid 304] <... setpgid resumed>) = 0 [pid 305] <... setpgid resumed>) = 0 [pid 305] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 305] write(3, "1000", 4) = 4 executing program [pid 305] close(3) = 0 [pid 305] write(1, "executing program\n", 18) = 18 [pid 305] perf_event_open( [pid 303] <... openat resumed>) = 3 [pid 303] write(3, "1000", 4) = 4 executing program [pid 303] close(3) = 0 [pid 303] write(1, "executing program\n", 18) = 18 [pid 303] perf_event_open( [pid 304] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 304] write(3, "1000", 4) = 4 [pid 304] close(3executing program ) = 0 [pid 304] write(1, "executing program\n", 18) = 18 [pid 304] perf_event_open( [pid 301] <... perf_event_open resumed>{type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=354, sample_period=0, sample_type=PERF_SAMPLE_TID|PERF_SAMPLE_DATA_SRC, read_format=0, precise_ip=0 /* arbitrary skid */, ...}, 0, 0, -1, PERF_FLAG_FD_OUTPUT) = 3 [pid 301] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000300, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 302] <... perf_event_open resumed>{type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=354, sample_period=0, sample_type=PERF_SAMPLE_TID|PERF_SAMPLE_DATA_SRC, read_format=0, precise_ip=0 /* arbitrary skid */, ...}, 0, 0, -1, PERF_FLAG_FD_OUTPUT) = 3 [pid 305] <... perf_event_open resumed>{type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=354, sample_period=0, sample_type=PERF_SAMPLE_TID|PERF_SAMPLE_DATA_SRC, read_format=0, precise_ip=0 /* arbitrary skid */, ...}, 0, 0, -1, PERF_FLAG_FD_OUTPUT) = 3 [pid 305] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000300, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 301] <... bpf resumed>) = 4 [pid 302] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000300, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 301] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="percpu_alloc_percpu", prog_fd=4}}, 16 [pid 305] <... bpf resumed>) = 4 [pid 301] <... bpf resumed>) = 5 [pid 305] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="percpu_alloc_percpu", prog_fd=4}}, 16) = 5 [pid 305] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6 [pid 305] write(6, "1", 1) = 1 [pid 305] close(3 [pid 303] <... perf_event_open resumed>{type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=354, sample_period=0, sample_type=PERF_SAMPLE_TID|PERF_SAMPLE_DATA_SRC, read_format=0, precise_ip=0 /* arbitrary skid */, ...}, 0, 0, -1, PERF_FLAG_FD_OUTPUT) = 3 [pid 304] <... perf_event_open resumed>{type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=354, sample_period=0, sample_type=PERF_SAMPLE_TID|PERF_SAMPLE_DATA_SRC, read_format=0, precise_ip=0 /* arbitrary skid */, ...}, 0, 0, -1, PERF_FLAG_FD_OUTPUT) = 3 [pid 304] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000300, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4 [pid 302] <... bpf resumed>) = 4 [pid 301] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 303] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000300, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 305] <... close resumed>) = 0 [pid 304] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="percpu_alloc_percpu", prog_fd=4}}, 16 [pid 303] <... bpf resumed>) = 4 [pid 302] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="percpu_alloc_percpu", prog_fd=4}}, 16 [pid 301] <... openat resumed>) = 6 [pid 303] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="percpu_alloc_percpu", prog_fd=4}}, 16 [pid 301] write(6, "1", 1 [pid 303] <... bpf resumed>) = 5 [pid 301] <... write resumed>) = 1 [pid 303] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [ 79.918620][ T299] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 79.926667][ T299] [ 79.953266][ T305] FAULT_INJECTION: forcing a failure. [ 79.953266][ T305] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [pid 301] close(3 [pid 303] <... openat resumed>) = 6 [pid 302] <... bpf resumed>) = 5 [pid 301] <... close resumed>) = 0 [pid 304] <... bpf resumed>) = 5 [pid 303] write(6, "1", 1 [pid 302] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 304] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 303] <... write resumed>) = 1 [pid 302] <... openat resumed>) = 6 [pid 304] <... openat resumed>) = 6 [pid 303] close(3 [pid 302] write(6, "1", 1 [pid 304] write(6, "1", 1 [pid 303] <... close resumed>) = 0 [pid 302] <... write resumed>) = 1 [pid 304] <... write resumed>) = 1 [pid 302] close(3 [pid 304] close(3 [pid 302] <... close resumed>) = 0 [ 79.956293][ T301] FAULT_INJECTION: forcing a failure. [ 79.956293][ T301] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 79.966593][ T305] CPU: 1 PID: 305 Comm: syz-executor168 Not tainted 6.1.134-syzkaller-00015-g218e2bd24587 #0 [ 79.966619][ T305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 79.966630][ T305] Call Trace: [ 79.966636][ T305] [ 79.966643][ T305] __dump_stack+0x21/0x24 [ 79.982859][ T303] FAULT_INJECTION: forcing a failure. [ 79.982859][ T303] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 79.990255][ T305] dump_stack_lvl+0xee/0x150 [ 79.990289][ T305] ? __cfi_dump_stack_lvl+0x8/0x8 [ 79.990315][ T305] ? __cfi_enqueue_task_fair+0x10/0x10 [ 79.990345][ T305] dump_stack+0x15/0x24 [ 79.990369][ T305] should_fail_ex+0x3d4/0x520 [ 80.001458][ T304] FAULT_INJECTION: forcing a failure. [ 80.001458][ T304] name failslab, interval 1, probability 0, space 0, times 0 [ 80.003730][ T305] should_fail_alloc_page+0x61/0x90 [ 80.008673][ T302] FAULT_INJECTION: forcing a failure. [ 80.008673][ T302] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 80.011070][ T305] prepare_alloc_pages+0x148/0x5f0 [ 80.084607][ T305] ? __alloc_pages_bulk+0x9c0/0x9c0 [ 80.089918][ T305] __alloc_pages+0x115/0x3a0 [ 80.094532][ T305] ? __cfi___alloc_pages+0x10/0x10 [ 80.099744][ T305] ? __kasan_check_write+0x14/0x20 [ 80.104874][ T305] ? _raw_spin_lock+0x8e/0xe0 [ 80.109559][ T305] ? __cfi__raw_spin_lock+0x10/0x10 [ 80.114936][ T305] ? __this_cpu_preempt_check+0x13/0x20 [ 80.120488][ T305] __folio_alloc+0x12/0x40 [ 80.125013][ T305] wp_page_copy+0x280/0x15b0 [ 80.129607][ T305] ? __this_cpu_preempt_check+0x13/0x20 [ 80.135153][ T305] ? __cfi___perf_event_task_sched_in+0x10/0x10 [ 80.141424][ T305] ? fault_dirty_shared_page+0x310/0x310 [ 80.147093][ T305] ? _raw_spin_unlock+0x4c/0x70 [ 80.151954][ T305] ? finish_task_switch+0x16b/0x7b0 [ 80.157166][ T305] ? vm_normal_page+0x99/0x200 [ 80.161931][ T305] do_wp_page+0x9f2/0xfc0 [ 80.166264][ T305] handle_mm_fault+0x10e4/0x2640 [ 80.171283][ T305] ? __cfi_handle_mm_fault+0x10/0x10 [ 80.176570][ T305] ? lock_vma_under_rcu+0x3eb/0x4d0 [ 80.181774][ T305] ? __this_cpu_preempt_check+0x13/0x20 [ 80.187329][ T305] ? xfd_validate_state+0x70/0x150 [ 80.192436][ T305] do_user_addr_fault+0x905/0x1050 [ 80.197672][ T305] exc_page_fault+0x51/0xb0 [ 80.202191][ T305] asm_exc_page_fault+0x27/0x30 [ 80.207067][ T305] RIP: 0033:0x7f774f9970e0 [ 80.211480][ T305] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 0d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 c0 3c 0a 00 0f 85 0f 02 00 00 4c 8d 25 b3 3c 0a 00 4c [ 80.231179][ T305] RSP: 002b:00007ffd5f039910 EFLAGS: 00010246 [ 80.237250][ T305] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001 [ 80.245309][ T305] RDX: 0000000000000001 RSI: 00007f774fa38110 RDI: 0000000000000000 [ 80.253290][ T305] RBP: 00007f774fa38110 R08: 00007ffd5f039707 R09: 0000000000000140 [ 80.261285][ T305] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 80.269348][ T305] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 80.277321][ T305] [ 80.280617][ T302] CPU: 0 PID: 302 Comm: syz-executor168 Not tainted 6.1.134-syzkaller-00015-g218e2bd24587 #0 [ 80.283343][ T305] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 80.290958][ T302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 80.290981][ T302] Call Trace: [ 80.290987][ T302] [ 80.290995][ T302] __dump_stack+0x21/0x24 [ 80.291028][ T302] dump_stack_lvl+0xee/0x150 [ 80.291052][ T302] ? __cfi_dump_stack_lvl+0x8/0x8 [ 80.291079][ T302] dump_stack+0x15/0x24 [ 80.332887][ T302] should_fail_ex+0x3d4/0x520 [ 80.337573][ T302] should_fail_alloc_page+0x61/0x90 [ 80.342773][ T302] prepare_alloc_pages+0x148/0x5f0 [ 80.347977][ T302] ? __alloc_pages_bulk+0x9c0/0x9c0 [ 80.353350][ T302] ? __kasan_record_aux_stack+0xb6/0xc0 [ 80.358906][ T302] ? call_rcu+0xd4/0xf90 [ 80.363595][ T302] __alloc_pages+0x115/0x3a0 [ 80.368273][ T302] ? __cfi___alloc_pages+0x10/0x10 [ 80.373387][ T302] ? __kasan_check_write+0x14/0x20 [ 80.378514][ T302] ? _raw_spin_lock+0x8e/0xe0 [ 80.383305][ T302] ? __cfi__raw_spin_lock+0x10/0x10 [ 80.388514][ T302] ? sched_clock_cpu+0x6e/0x250 [ 80.393372][ T302] __folio_alloc+0x12/0x40 [ 80.397793][ T302] wp_page_copy+0x280/0x15b0 [ 80.402416][ T302] ? __this_cpu_preempt_check+0x13/0x20 [ 80.408059][ T302] ? __cfi___perf_event_task_sched_in+0x10/0x10 [ 80.414297][ T302] ? fault_dirty_shared_page+0x310/0x310 [ 80.419966][ T302] ? _raw_spin_unlock+0x4c/0x70 [ 80.424823][ T302] ? finish_task_switch+0x16b/0x7b0 [ 80.430119][ T302] ? vm_normal_page+0x99/0x200 [ 80.434991][ T302] do_wp_page+0x9f2/0xfc0 [ 80.439416][ T302] handle_mm_fault+0x10e4/0x2640 [ 80.444370][ T302] ? __cfi_handle_mm_fault+0x10/0x10 [ 80.449751][ T302] ? lock_vma_under_rcu+0x3eb/0x4d0 [ 80.454960][ T302] ? do_user_addr_fault+0x1cc/0x1050 [ 80.460341][ T302] do_user_addr_fault+0x905/0x1050 [ 80.465495][ T302] exc_page_fault+0x51/0xb0 [ 80.470003][ T302] asm_exc_page_fault+0x27/0x30 [ 80.474861][ T302] RIP: 0033:0x7f774f9970e0 [ 80.479458][ T302] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 0d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 c0 3c 0a 00 0f 85 0f 02 00 00 4c 8d 25 b3 3c 0a 00 4c [ 80.499065][ T302] RSP: 002b:00007ffd5f039910 EFLAGS: 00010246 [ 80.505269][ T302] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001 [ 80.513295][ T302] RDX: 0000000000000001 RSI: 00007f774fa38110 RDI: 0000000000000000 [pid 305] exit_group(0) = ? [ 80.521439][ T302] RBP: 00007f774fa38110 R08: 00007ffd5f039707 R09: 0000000000000140 [ 80.529430][ T302] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 80.537418][ T302] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 80.545394][ T302] [ 80.548415][ T303] CPU: 1 PID: 303 Comm: syz-executor168 Not tainted 6.1.134-syzkaller-00015-g218e2bd24587 #0 [ 80.550914][ T302] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 80.558668][ T303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 80.558683][ T303] Call Trace: [ 80.558689][ T303] [ 80.558697][ T303] __dump_stack+0x21/0x24 [ 80.586797][ T303] dump_stack_lvl+0xee/0x150 [ 80.591392][ T303] ? __cfi_dump_stack_lvl+0x8/0x8 [ 80.596429][ T303] dump_stack+0x15/0x24 [ 80.600590][ T303] should_fail_ex+0x3d4/0x520 [ 80.605375][ T303] should_fail_alloc_page+0x61/0x90 [ 80.610577][ T303] prepare_alloc_pages+0x148/0x5f0 [ 80.615688][ T303] ? __alloc_pages_bulk+0x9c0/0x9c0 [ 80.620889][ T303] ? __kasan_record_aux_stack+0xb6/0xc0 [ 80.626434][ T303] ? call_rcu+0xd4/0xf90 [ 80.630686][ T303] ? ____fput+0x15/0x20 [ 80.634838][ T303] __alloc_pages+0x115/0x3a0 [ 80.639518][ T303] ? __cfi___alloc_pages+0x10/0x10 [ 80.644670][ T303] ? __kasan_check_write+0x14/0x20 [ 80.649797][ T303] ? _raw_spin_lock+0x8e/0xe0 [ 80.654478][ T303] ? __cfi__raw_spin_lock+0x10/0x10 [ 80.659674][ T303] ? __this_cpu_preempt_check+0x13/0x20 [ 80.665230][ T303] __folio_alloc+0x12/0x40 [ 80.669656][ T303] wp_page_copy+0x280/0x15b0 [ 80.674252][ T303] ? __this_cpu_preempt_check+0x13/0x20 [ 80.679807][ T303] ? __cfi___perf_event_task_sched_in+0x10/0x10 [ 80.686040][ T303] ? fault_dirty_shared_page+0x310/0x310 [ 80.691674][ T303] ? _raw_spin_unlock+0x4c/0x70 [ 80.696522][ T303] ? finish_task_switch+0x16b/0x7b0 [ 80.701718][ T303] ? vm_normal_page+0x99/0x200 [ 80.706492][ T303] do_wp_page+0x9f2/0xfc0 [ 80.710831][ T303] handle_mm_fault+0x10e4/0x2640 [ 80.715771][ T303] ? __cfi_handle_mm_fault+0x10/0x10 [ 80.721061][ T303] ? lock_vma_under_rcu+0x3eb/0x4d0 [ 80.726261][ T303] ? __this_cpu_preempt_check+0x13/0x20 [ 80.731934][ T303] ? xfd_validate_state+0x70/0x150 [ 80.737064][ T303] do_user_addr_fault+0x905/0x1050 [ 80.742284][ T303] exc_page_fault+0x51/0xb0 [ 80.746809][ T303] asm_exc_page_fault+0x27/0x30 [ 80.751663][ T303] RIP: 0033:0x7f774f9970e0 [ 80.756073][ T303] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 0d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 c0 3c 0a 00 0f 85 0f 02 00 00 4c 8d 25 b3 3c 0a 00 4c [ 80.775671][ T303] RSP: 002b:00007ffd5f039910 EFLAGS: 00010246 [ 80.781755][ T303] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001 [ 80.789718][ T303] RDX: 0000000000000001 RSI: 00007f774fa38110 RDI: 0000000000000000 [ 80.797951][ T303] RBP: 00007f774fa38110 R08: 00007ffd5f039707 R09: 0000000000000140 [ 80.805944][ T303] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 80.813910][ T303] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [pid 302] exit_group(0) = ? [ 80.821876][ T303] [ 80.825108][ T301] CPU: 1 PID: 301 Comm: syz-executor168 Not tainted 6.1.134-syzkaller-00015-g218e2bd24587 #0 [ 80.835269][ T301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 80.845548][ T301] Call Trace: [ 80.848828][ T301] [ 80.851766][ T301] __dump_stack+0x21/0x24 [ 80.856108][ T301] dump_stack_lvl+0xee/0x150 [ 80.860717][ T301] ? __cfi_dump_stack_lvl+0x8/0x8 [ 80.865770][ T301] dump_stack+0x15/0x24 [ 80.870027][ T301] should_fail_ex+0x3d4/0x520 [ 80.874811][ T301] should_fail_alloc_page+0x61/0x90 [ 80.880020][ T301] prepare_alloc_pages+0x148/0x5f0 [ 80.885222][ T301] ? __alloc_pages_bulk+0x9c0/0x9c0 [ 80.890424][ T301] ? __kasan_record_aux_stack+0xb6/0xc0 [ 80.895974][ T301] ? call_rcu+0xd4/0xf90 [ 80.900218][ T301] ? ____fput+0x15/0x20 [ 80.904394][ T301] __alloc_pages+0x115/0x3a0 [ 80.908987][ T301] ? __cfi___alloc_pages+0x10/0x10 [ 80.914116][ T301] ? __kasan_check_write+0x14/0x20 [ 80.919234][ T301] ? _raw_spin_lock+0x8e/0xe0 [ 80.923919][ T301] ? __cfi__raw_spin_lock+0x10/0x10 [ 80.929212][ T301] ? __this_cpu_preempt_check+0x13/0x20 [ 80.934772][ T301] __folio_alloc+0x12/0x40 [ 80.939295][ T301] wp_page_copy+0x280/0x15b0 [ 80.943997][ T301] ? __this_cpu_preempt_check+0x13/0x20 [ 80.949667][ T301] ? __cfi___perf_event_task_sched_in+0x10/0x10 [ 80.956083][ T301] ? fault_dirty_shared_page+0x310/0x310 [ 80.961729][ T301] ? _raw_spin_unlock+0x4c/0x70 [ 80.966680][ T301] ? finish_task_switch+0x16b/0x7b0 [ 80.972054][ T301] ? vm_normal_page+0x99/0x200 [ 80.976913][ T301] do_wp_page+0x9f2/0xfc0 [ 80.981359][ T301] handle_mm_fault+0x10e4/0x2640 [ 80.986396][ T301] ? __cfi_handle_mm_fault+0x10/0x10 [ 80.991687][ T301] ? lock_vma_under_rcu+0x3eb/0x4d0 [ 80.996905][ T301] ? __this_cpu_preempt_check+0x13/0x20 [ 81.002453][ T301] ? xfd_validate_state+0x70/0x150 [ 81.007571][ T301] do_user_addr_fault+0x905/0x1050 [ 81.012691][ T301] exc_page_fault+0x51/0xb0 [ 81.017229][ T301] asm_exc_page_fault+0x27/0x30 [ 81.022178][ T301] RIP: 0033:0x7f774f9970e0 [ 81.026640][ T301] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 0d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 c0 3c 0a 00 0f 85 0f 02 00 00 4c 8d 25 b3 3c 0a 00 4c [ 81.046330][ T301] RSP: 002b:00007ffd5f039910 EFLAGS: 00010246 [ 81.052405][ T301] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001 [ 81.060400][ T301] RDX: 0000000000000001 RSI: 00007f774fa38110 RDI: 0000000000000000 [ 81.068370][ T301] RBP: 00007f774fa38110 R08: 00007ffd5f039707 R09: 0000000000000140 [ 81.076341][ T301] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 81.084317][ T301] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 81.092295][ T301] [ 81.095806][ T301] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 81.097550][ T304] CPU: 0 PID: 304 Comm: syz-executor168 Not tainted 6.1.134-syzkaller-00015-g218e2bd24587 #0 [ 81.103525][ T303] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 81.113403][ T304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 81.113416][ T304] Call Trace: [ 81.113421][ T304] [ 81.113429][ T304] __dump_stack+0x21/0x24 [ 81.113460][ T304] dump_stack_lvl+0xee/0x150 [ 81.146105][ T304] ? __cfi_dump_stack_lvl+0x8/0x8 [ 81.151325][ T304] dump_stack+0x15/0x24 [ 81.155485][ T304] should_fail_ex+0x3d4/0x520 [ 81.160338][ T304] __should_failslab+0xac/0xf0 [ 81.165098][ T304] ? tracepoint_probe_unregister+0x1e6/0x8b0 [ 81.171086][ T304] should_failslab+0x9/0x20 [ 81.175616][ T304] __kmem_cache_alloc_node+0x3d/0x2c0 [ 81.181145][ T304] ? __cfi_mutex_lock+0x10/0x10 [ 81.186002][ T304] ? tracepoint_probe_unregister+0x1e6/0x8b0 [ 81.192061][ T304] __kmalloc+0xa1/0x1e0 [ 81.196216][ T304] ? __kasan_check_write+0x14/0x20 [ 81.201420][ T304] ? __cfi_perf_trace_percpu_alloc_percpu+0x10/0x10 [ 81.208014][ T304] tracepoint_probe_unregister+0x1e6/0x8b0 [ 81.213819][ T304] trace_event_reg+0x21c/0x260 [ 81.218590][ T304] perf_trace_event_unreg+0xcc/0x1c0 [ 81.223891][ T304] perf_trace_destroy+0xbe/0x180 [ 81.228931][ T304] tp_perf_event_destroy+0x15/0x20 [ 81.234084][ T304] ? __cfi_tp_perf_event_destroy+0x10/0x10 [ 81.239914][ T304] _free_event+0x9cd/0xce0 [ 81.244355][ T304] perf_event_release_kernel+0x819/0x8a0 [ 81.249985][ T304] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 81.256061][ T304] ? __cfi_perf_event_release_kernel+0x10/0x10 [ 81.262228][ T304] perf_release+0x3b/0x40 [ 81.266552][ T304] ? __cfi_perf_release+0x10/0x10 [ 81.271574][ T304] __fput+0x1fc/0x8f0 [ 81.275557][ T304] ____fput+0x15/0x20 [ 81.279533][ T304] task_work_run+0x1db/0x240 [ 81.284171][ T304] ? __cfi_task_work_run+0x10/0x10 [ 81.289280][ T304] ? task_work_add+0x2b1/0x330 [ 81.295631][ T304] ptrace_notify+0x221/0x250 [ 81.300246][ T304] ? __cfi_ptrace_notify+0x10/0x10 [ 81.305554][ T304] ? fput+0x15b/0x1a0 [ 81.309549][ T304] ? filp_close+0x111/0x160 [ 81.314138][ T304] ? close_fd+0x28b/0x300 [ 81.318470][ T304] syscall_exit_work+0x84/0x140 [ 81.323320][ T304] syscall_exit_to_user_mode_prepare+0x1c/0x20 [ 81.329471][ T304] syscall_exit_to_user_mode+0xd/0x30 [ 81.334857][ T304] do_syscall_64+0x58/0xa0 [ 81.339275][ T304] ? clear_bhb_loop+0x15/0x70 [ 81.343946][ T304] ? clear_bhb_loop+0x15/0x70 [ 81.348615][ T304] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 81.354511][ T304] RIP: 0033:0x7f774f9c8999 [ 81.358938][ T304] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 81.378539][ T304] RSP: 002b:00007ffd5f039968 EFLAGS: 00000246 ORIG_RAX: 0000000000000003 [ 81.386955][ T304] RAX: 0000000000000000 RBX: 00007ffd5f039980 RCX: 00007f774f9c8999 [ 81.394926][ T304] RDX: 00007f774f9c7bd0 RSI: 00007ffd5f039980 RDI: 0000000000000003 [ 81.402889][ T304] RBP: 0000000000000001 R08: 00007ffd5f039707 R09: 0000000000000140 [ 81.410940][ T304] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 81.418907][ T304] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [pid 303] exit_group(0 [pid 301] exit_group(0 [pid 303] <... exit_group resumed>) = ? [pid 301] <... exit_group resumed>) = ? [pid 305] +++ exited with 0 +++ [pid 302] +++ exited with 0 +++ [pid 301] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=302, si_uid=0, si_status=0, si_utime=0, si_stime=4} --- [pid 294] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=305, si_uid=0, si_status=0, si_utime=0, si_stime=3} --- [pid 291] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=301, si_uid=0, si_status=0, si_utime=0, si_stime=11} --- [pid 296] restart_syscall(<... resuming interrupted clone ...> [pid 294] restart_syscall(<... resuming interrupted clone ...> [pid 291] restart_syscall(<... resuming interrupted clone ...> [pid 294] <... restart_syscall resumed>) = 0 [pid 296] <... restart_syscall resumed>) = 0 [pid 291] <... restart_syscall resumed>) = 0 [pid 291] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 294] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 296] <... clone resumed>, child_tidptr=0x55555a75b650) = 312 ./strace-static-x86_64: Process 311 attached [pid 311] set_robust_list(0x55555a75b660, 24) = 0 [pid 291] <... clone resumed>, child_tidptr=0x55555a75b650) = 311 [pid 311] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 294] <... clone resumed>, child_tidptr=0x55555a75b650) = 313 [pid 311] <... prctl resumed>) = 0 [pid 311] setpgid(0, 0) = 0 [pid 311] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 312 attached ) = 3 [pid 311] write(3, "1000", 4) = 4 [pid 311] close(3) = 0 executing program [pid 311] write(1, "executing program\n", 18) = 18 [pid 311] perf_event_open(./strace-static-x86_64: Process 313 attached [pid 313] set_robust_list(0x55555a75b660, 24) = 0 [pid 313] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 313] setpgid(0, 0) = 0 [pid 313] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 313] write(3, "1000", 4) = 4 [pid 313] close(3) = 0 [pid 313] write(1, "executing program\n", 18executing program ) = 18 [pid 313] perf_event_open( [pid 312] set_robust_list(0x55555a75b660, 24) = 0 [pid 312] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 312] setpgid(0, 0) = 0 [pid 312] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 312] write(3, "1000", 4) = 4 [pid 312] close(3executing program ) = 0 [pid 312] write(1, "executing program\n", 18) = 18 [pid 312] perf_event_open( [pid 304] <... close resumed>) = 0 [pid 304] exit_group(0 [pid 303] +++ exited with 0 +++ [pid 304] <... exit_group resumed>) = ? [pid 292] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=303, si_uid=0, si_status=0, si_utime=0, si_stime=10} --- [pid 313] <... perf_event_open resumed>{type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=354, sample_period=0, sample_type=PERF_SAMPLE_TID|PERF_SAMPLE_DATA_SRC, read_format=0, precise_ip=0 /* arbitrary skid */, ...}, 0, 0, -1, PERF_FLAG_FD_OUTPUT) = 3 [pid 312] <... perf_event_open resumed>{type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=354, sample_period=0, sample_type=PERF_SAMPLE_TID|PERF_SAMPLE_DATA_SRC, read_format=0, precise_ip=0 /* arbitrary skid */, ...}, 0, 0, -1, PERF_FLAG_FD_OUTPUT) = 3 [pid 311] <... perf_event_open resumed>{type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=354, sample_period=0, sample_type=PERF_SAMPLE_TID|PERF_SAMPLE_DATA_SRC, read_format=0, precise_ip=0 /* arbitrary skid */, ...}, 0, 0, -1, PERF_FLAG_FD_OUTPUT) = 3 [pid 292] restart_syscall(<... resuming interrupted clone ...> [pid 313] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000300, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 312] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000300, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 311] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000300, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 312] <... bpf resumed>) = 4 [pid 313] <... bpf resumed>) = 4 [pid 312] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="percpu_alloc_percpu", prog_fd=4}}, 16 [pid 313] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="percpu_alloc_percpu", prog_fd=4}}, 16 [pid 311] <... bpf resumed>) = 4 [pid 311] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="percpu_alloc_percpu", prog_fd=4}}, 16 [pid 292] <... restart_syscall resumed>) = 0 [pid 292] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555a75b650) = 314 ./strace-static-x86_64: Process 314 attached [pid 314] set_robust_list(0x55555a75b660, 24) = 0 [pid 314] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 314] setpgid(0, 0) = 0 [pid 314] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 314] write(3, "1000", 4) = 4 [pid 314] close(3) = 0 executing program [pid 314] write(1, "executing program\n", 18) = 18 [pid 314] perf_event_open({type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=354, sample_period=0, sample_type=PERF_SAMPLE_TID|PERF_SAMPLE_DATA_SRC, read_format=0, precise_ip=0 /* arbitrary skid */, ...}, 0, 0, -1, PERF_FLAG_FD_OUTPUT) = 3 [pid 314] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000300, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4 [ 81.426965][ T304] [pid 314] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="percpu_alloc_percpu", prog_fd=4}}, 16 [pid 304] +++ exited with 0 +++ [pid 293] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=304, si_uid=0, si_status=0, si_utime=0, si_stime=44} --- [pid 312] <... bpf resumed>) = 5 [pid 293] restart_syscall(<... resuming interrupted clone ...> [pid 313] <... bpf resumed>) = 5 [pid 311] <... bpf resumed>) = 5 [pid 311] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6 [pid 312] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 311] write(6, "1", 1 [pid 312] <... openat resumed>) = 6 [pid 311] <... write resumed>) = 1 [pid 311] close(3) = 0 [pid 314] <... bpf resumed>) = 5 [pid 313] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 312] write(6, "1", 1 [pid 314] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 313] <... openat resumed>) = 6 [pid 312] <... write resumed>) = 1 [pid 312] close(3) = 0 [pid 314] <... openat resumed>) = 6 [pid 293] <... restart_syscall resumed>) = 0 [pid 313] write(6, "1", 1 [pid 314] write(6, "1", 1 [pid 313] <... write resumed>) = 1 [pid 314] <... write resumed>) = 1 [pid 313] close(3 [pid 314] close(3 [pid 313] <... close resumed>) = 0 [ 81.480541][ T311] FAULT_INJECTION: forcing a failure. [ 81.480541][ T311] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 81.481672][ T312] FAULT_INJECTION: forcing a failure. [ 81.481672][ T312] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 81.494199][ T311] CPU: 0 PID: 311 Comm: syz-executor168 Not tainted 6.1.134-syzkaller-00015-g218e2bd24587 #0 [ 81.509277][ T314] FAULT_INJECTION: forcing a failure. [ 81.509277][ T314] name failslab, interval 1, probability 0, space 0, times 0 [ 81.517334][ T311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 81.517350][ T311] Call Trace: [ 81.517356][ T311] [ 81.517364][ T311] __dump_stack+0x21/0x24 [ 81.530508][ T313] FAULT_INJECTION: forcing a failure. [ 81.530508][ T313] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 81.540325][ T311] dump_stack_lvl+0xee/0x150 [ 81.540357][ T311] ? __cfi_dump_stack_lvl+0x8/0x8 [ 81.540380][ T311] ? resched_curr+0x10e/0x380 [ 81.540399][ T311] ? __cfi_resched_curr+0x10/0x10 [ 81.540417][ T311] dump_stack+0x15/0x24 [ 81.587911][ T311] should_fail_ex+0x3d4/0x520 [ 81.592604][ T311] should_fail_alloc_page+0x61/0x90 [ 81.597808][ T311] prepare_alloc_pages+0x148/0x5f0 [ 81.603007][ T311] ? __alloc_pages_bulk+0x9c0/0x9c0 [ 81.608210][ T311] __alloc_pages+0x115/0x3a0 [ 81.612809][ T311] ? __cfi___alloc_pages+0x10/0x10 [ 81.618028][ T311] ? __kasan_check_write+0x14/0x20 [ 81.623146][ T311] ? _raw_spin_lock+0x8e/0xe0 [ 81.627913][ T311] ? __cfi__raw_spin_lock+0x10/0x10 [ 81.633201][ T311] ? __this_cpu_preempt_check+0x13/0x20 [ 81.638753][ T311] __folio_alloc+0x12/0x40 [ 81.643267][ T311] wp_page_copy+0x280/0x15b0 [ 81.647864][ T311] ? __this_cpu_preempt_check+0x13/0x20 [ 81.653597][ T311] ? __cfi___perf_event_task_sched_in+0x10/0x10 [ 81.660037][ T311] ? fault_dirty_shared_page+0x310/0x310 [ 81.665773][ T311] ? _raw_spin_unlock+0x4c/0x70 [ 81.670628][ T311] ? finish_task_switch+0x16b/0x7b0 [ 81.675838][ T311] ? vm_normal_page+0x99/0x200 [ 81.680696][ T311] do_wp_page+0x9f2/0xfc0 [ 81.685053][ T311] handle_mm_fault+0x10e4/0x2640 [ 81.690013][ T311] ? __cfi_handle_mm_fault+0x10/0x10 [ 81.695312][ T311] ? lock_vma_under_rcu+0x3eb/0x4d0 [ 81.700535][ T311] ? __this_cpu_preempt_check+0x13/0x20 [ 81.706173][ T311] ? xfd_validate_state+0x70/0x150 [ 81.711381][ T311] do_user_addr_fault+0x905/0x1050 [ 81.716510][ T311] exc_page_fault+0x51/0xb0 [ 81.721021][ T311] asm_exc_page_fault+0x27/0x30 [ 81.725904][ T311] RIP: 0033:0x7f774f9970e0 [ 81.730408][ T311] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 0d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 c0 3c 0a 00 0f 85 0f 02 00 00 4c 8d 25 b3 3c 0a 00 4c [ 81.750024][ T311] RSP: 002b:00007ffd5f039910 EFLAGS: 00010246 [ 81.756184][ T311] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001 [ 81.764180][ T311] RDX: 0000000000000001 RSI: 00007f774fa38110 RDI: 0000000000000000 [ 81.772155][ T311] RBP: 00007f774fa38110 R08: 00007ffd5f039707 R09: 0000000000000140 [ 81.780129][ T311] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 81.788107][ T311] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 81.796214][ T311] [ 81.799241][ T313] CPU: 1 PID: 313 Comm: syz-executor168 Not tainted 6.1.134-syzkaller-00015-g218e2bd24587 #0 [ 81.800207][ T311] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 81.809402][ T313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 81.809415][ T313] Call Trace: [ 81.809420][ T313] [ 81.809434][ T313] __dump_stack+0x21/0x24 [ 81.837549][ T313] dump_stack_lvl+0xee/0x150 [ 81.842238][ T313] ? __cfi_dump_stack_lvl+0x8/0x8 [ 81.847266][ T313] ? resched_curr+0x10e/0x380 [ 81.851942][ T313] ? __cfi_resched_curr+0x10/0x10 [ 81.856964][ T313] dump_stack+0x15/0x24 [ 81.861121][ T313] should_fail_ex+0x3d4/0x520 [ 81.865800][ T313] should_fail_alloc_page+0x61/0x90 [ 81.871174][ T313] prepare_alloc_pages+0x148/0x5f0 [ 81.876807][ T313] ? __alloc_pages_bulk+0x9c0/0x9c0 [ 81.882010][ T313] __alloc_pages+0x115/0x3a0 [ 81.886787][ T313] ? __cfi___alloc_pages+0x10/0x10 [ 81.892095][ T313] ? __kasan_check_write+0x14/0x20 [ 81.897220][ T313] ? _raw_spin_lock+0x8e/0xe0 [ 81.901917][ T313] ? __cfi__raw_spin_lock+0x10/0x10 [ 81.907120][ T313] ? __this_cpu_preempt_check+0x13/0x20 [ 81.912666][ T313] __folio_alloc+0x12/0x40 [ 81.917084][ T313] wp_page_copy+0x280/0x15b0 [ 81.921684][ T313] ? __this_cpu_preempt_check+0x13/0x20 [ 81.927231][ T313] ? __cfi___perf_event_task_sched_in+0x10/0x10 [ 81.933478][ T313] ? fault_dirty_shared_page+0x310/0x310 [ 81.939206][ T313] ? _raw_spin_unlock+0x4c/0x70 [ 81.944059][ T313] ? finish_task_switch+0x16b/0x7b0 [ 81.949266][ T313] ? vm_normal_page+0x99/0x200 [ 81.954295][ T313] do_wp_page+0x9f2/0xfc0 [ 81.958638][ T313] handle_mm_fault+0x10e4/0x2640 [ 81.963668][ T313] ? __cfi_handle_mm_fault+0x10/0x10 [ 81.968950][ T313] ? lock_vma_under_rcu+0x3eb/0x4d0 [ 81.974238][ T313] ? __this_cpu_preempt_check+0x13/0x20 [ 81.979782][ T313] ? xfd_validate_state+0x70/0x150 [ 81.984891][ T313] do_user_addr_fault+0x905/0x1050 [ 81.990005][ T313] exc_page_fault+0x51/0xb0 [ 81.994502][ T313] asm_exc_page_fault+0x27/0x30 [ 81.999352][ T313] RIP: 0033:0x7f774f9970e0 [ 82.003829][ T313] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 0d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 c0 3c 0a 00 0f 85 0f 02 00 00 4c 8d 25 b3 3c 0a 00 4c [ 82.024909][ T313] RSP: 002b:00007ffd5f039910 EFLAGS: 00010246 [pid 311] exit_group(0) = ? [ 82.031097][ T313] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001 [ 82.039156][ T313] RDX: 0000000000000001 RSI: 00007f774fa38110 RDI: 0000000000000000 [ 82.047138][ T313] RBP: 00007f774fa38110 R08: 00007ffd5f039707 R09: 0000000000000140 [ 82.055128][ T313] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 82.063214][ T313] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 82.071219][ T313] [ 82.075282][ T312] CPU: 1 PID: 312 Comm: syz-executor168 Not tainted 6.1.134-syzkaller-00015-g218e2bd24587 #0 [ 82.085557][ T312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 82.095626][ T312] Call Trace: [ 82.098911][ T312] [ 82.101844][ T312] __dump_stack+0x21/0x24 [ 82.106190][ T312] dump_stack_lvl+0xee/0x150 [ 82.110880][ T312] ? __cfi_dump_stack_lvl+0x8/0x8 [ 82.115922][ T312] ? resched_curr+0x10e/0x380 [ 82.120611][ T312] ? __cfi_resched_curr+0x10/0x10 [ 82.125648][ T312] dump_stack+0x15/0x24 [ 82.129917][ T312] should_fail_ex+0x3d4/0x520 [ 82.134607][ T312] should_fail_alloc_page+0x61/0x90 [ 82.139813][ T312] prepare_alloc_pages+0x148/0x5f0 [ 82.145026][ T312] ? __alloc_pages_bulk+0x9c0/0x9c0 [ 82.150230][ T312] __alloc_pages+0x115/0x3a0 [ 82.154850][ T312] ? __cfi___alloc_pages+0x10/0x10 [ 82.159977][ T312] ? __kasan_check_write+0x14/0x20 [ 82.165093][ T312] ? _raw_spin_lock+0x8e/0xe0 [ 82.169772][ T312] ? __cfi__raw_spin_lock+0x10/0x10 [ 82.174971][ T312] ? __this_cpu_preempt_check+0x13/0x20 [ 82.180520][ T312] __folio_alloc+0x12/0x40 [ 82.185141][ T312] wp_page_copy+0x280/0x15b0 [ 82.189735][ T312] ? __this_cpu_preempt_check+0x13/0x20 [ 82.195277][ T312] ? __cfi___perf_event_task_sched_in+0x10/0x10 [ 82.201539][ T312] ? fault_dirty_shared_page+0x310/0x310 [ 82.207201][ T312] ? _raw_spin_unlock+0x4c/0x70 [ 82.212141][ T312] ? finish_task_switch+0x16b/0x7b0 [ 82.217440][ T312] ? vm_normal_page+0x99/0x200 [ 82.222205][ T312] do_wp_page+0x9f2/0xfc0 [ 82.226572][ T312] handle_mm_fault+0x10e4/0x2640 [ 82.231603][ T312] ? __cfi_handle_mm_fault+0x10/0x10 [ 82.236896][ T312] ? lock_vma_under_rcu+0x3eb/0x4d0 [ 82.242145][ T312] ? __this_cpu_preempt_check+0x13/0x20 [ 82.247862][ T312] ? xfd_validate_state+0x70/0x150 [ 82.252976][ T312] do_user_addr_fault+0x905/0x1050 [ 82.258093][ T312] exc_page_fault+0x51/0xb0 [ 82.262615][ T312] asm_exc_page_fault+0x27/0x30 [ 82.267468][ T312] RIP: 0033:0x7f774f9970e0 [ 82.271883][ T312] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 0d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 c0 3c 0a 00 0f 85 0f 02 00 00 4c 8d 25 b3 3c 0a 00 4c [ 82.291676][ T312] RSP: 002b:00007ffd5f039910 EFLAGS: 00010246 [ 82.297768][ T312] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001 [ 82.305817][ T312] RDX: 0000000000000001 RSI: 00007f774fa38110 RDI: 0000000000000000 [ 82.313801][ T312] RBP: 00007f774fa38110 R08: 00007ffd5f039707 R09: 0000000000000140 [ 82.321853][ T312] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [pid 293] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555a75b650) = 315 [ 82.329823][ T312] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 82.337794][ T312] [ 82.341606][ T313] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 82.342868][ T314] CPU: 1 PID: 314 Comm: syz-executor168 Not tainted 6.1.134-syzkaller-00015-g218e2bd24587 #0 [ 82.359211][ T314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 82.369270][ T314] Call Trace: [ 82.372545][ T314] [ 82.375491][ T314] __dump_stack+0x21/0x24 [ 82.379825][ T314] dump_stack_lvl+0xee/0x150 [ 82.384422][ T314] ? __cfi_dump_stack_lvl+0x8/0x8 [ 82.389535][ T314] dump_stack+0x15/0x24 [ 82.393692][ T314] should_fail_ex+0x3d4/0x520 [ 82.398394][ T314] __should_failslab+0xac/0xf0 [ 82.403152][ T314] ? tracepoint_probe_unregister+0x1e6/0x8b0 [ 82.409138][ T314] should_failslab+0x9/0x20 [ 82.413648][ T314] __kmem_cache_alloc_node+0x3d/0x2c0 [ 82.419541][ T314] ? __cfi_mutex_lock+0x10/0x10 [ 82.424543][ T314] ? tracepoint_probe_unregister+0x1e6/0x8b0 [ 82.430604][ T314] __kmalloc+0xa1/0x1e0 [ 82.434777][ T314] ? __kasan_check_write+0x14/0x20 [ 82.439891][ T314] ? __cfi_perf_trace_percpu_alloc_percpu+0x10/0x10 [ 82.446483][ T314] tracepoint_probe_unregister+0x1e6/0x8b0 [ 82.452302][ T314] trace_event_reg+0x21c/0x260 [ 82.457093][ T314] perf_trace_event_unreg+0xcc/0x1c0 [ 82.462400][ T314] perf_trace_destroy+0xbe/0x180 [ 82.467343][ T314] tp_perf_event_destroy+0x15/0x20 [ 82.473488][ T314] ? __cfi_tp_perf_event_destroy+0x10/0x10 [ 82.479290][ T314] _free_event+0x9cd/0xce0 [ 82.483711][ T314] perf_event_release_kernel+0x819/0x8a0 [ 82.489716][ T314] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 82.495801][ T314] ? __cfi_perf_event_release_kernel+0x10/0x10 [ 82.502005][ T314] perf_release+0x3b/0x40 [ 82.506352][ T314] ? __cfi_perf_release+0x10/0x10 [ 82.511484][ T314] __fput+0x1fc/0x8f0 [ 82.515487][ T314] ____fput+0x15/0x20 [ 82.519468][ T314] task_work_run+0x1db/0x240 [ 82.524085][ T314] ? __cfi_task_work_run+0x10/0x10 [ 82.529198][ T314] ? task_work_add+0x2b1/0x330 [ 82.533968][ T314] ptrace_notify+0x221/0x250 [ 82.538595][ T314] ? __cfi_ptrace_notify+0x10/0x10 [ 82.543796][ T314] ? fput+0x15b/0x1a0 [ 82.547777][ T314] ? filp_close+0x111/0x160 [ 82.552290][ T314] ? close_fd+0x28b/0x300 [ 82.556625][ T314] syscall_exit_work+0x84/0x140 [ 82.561558][ T314] syscall_exit_to_user_mode_prepare+0x1c/0x20 [ 82.567981][ T314] syscall_exit_to_user_mode+0xd/0x30 [ 82.573351][ T314] do_syscall_64+0x58/0xa0 [ 82.577764][ T314] ? clear_bhb_loop+0x15/0x70 [ 82.582428][ T314] ? clear_bhb_loop+0x15/0x70 [ 82.587109][ T314] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 82.593096][ T314] RIP: 0033:0x7f774f9c8999 [ 82.597528][ T314] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 82.617308][ T314] RSP: 002b:00007ffd5f039968 EFLAGS: 00000246 ORIG_RAX: 0000000000000003 [ 82.625722][ T314] RAX: 0000000000000000 RBX: 00007ffd5f039980 RCX: 00007f774f9c8999 ./strace-static-x86_64: Process 315 attached [pid 313] exit_group(0 [pid 312] exit_group(0 [pid 315] set_robust_list(0x55555a75b660, 24 [pid 313] <... exit_group resumed>) = ? [pid 312] <... exit_group resumed>) = ? [pid 311] +++ exited with 0 +++ [pid 315] <... set_robust_list resumed>) = 0 [pid 313] +++ exited with 0 +++ [pid 291] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=311, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- [pid 315] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 294] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=313, si_uid=0, si_status=0, si_utime=0, si_stime=11} --- [pid 315] <... prctl resumed>) = 0 [pid 294] restart_syscall(<... resuming interrupted clone ...> [pid 315] setpgid(0, 0) = 0 [pid 315] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 315] write(3, "1000", 4) = 4 [pid 315] close(3) = 0 executing program [pid 315] write(1, "executing program\n", 18) = 18 [pid 315] perf_event_open( [pid 294] <... restart_syscall resumed>) = 0 [pid 294] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555a75b650) = 317 ./strace-static-x86_64: Process 317 attached [pid 317] set_robust_list(0x55555a75b660, 24) = 0 [pid 317] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 317] setpgid(0, 0) = 0 [pid 317] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 317] write(3, "1000", 4) = 4 [pid 317] close(3executing program ) = 0 [pid 317] write(1, "executing program\n", 18) = 18 [pid 317] perf_event_open( [pid 291] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555a75b650) = 318 ./strace-static-x86_64: Process 318 attached [pid 318] set_robust_list(0x55555a75b660, 24) = 0 [pid 318] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 318] setpgid(0, 0) = 0 [pid 318] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 318] write(3, "1000", 4) = 4 [pid 318] close(3) = 0 executing program [pid 318] write(1, "executing program\n", 18) = 18 [pid 318] perf_event_open( [pid 314] <... close resumed>) = 0 [pid 312] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=312, si_uid=0, si_status=0, si_utime=0, si_stime=9} --- [pid 296] restart_syscall(<... resuming interrupted clone ...> [pid 314] exit_group(0 [pid 317] <... perf_event_open resumed>{type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=354, sample_period=0, sample_type=PERF_SAMPLE_TID|PERF_SAMPLE_DATA_SRC, read_format=0, precise_ip=0 /* arbitrary skid */, ...}, 0, 0, -1, PERF_FLAG_FD_OUTPUT) = 3 [pid 315] <... perf_event_open resumed>{type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=354, sample_period=0, sample_type=PERF_SAMPLE_TID|PERF_SAMPLE_DATA_SRC, read_format=0, precise_ip=0 /* arbitrary skid */, ...}, 0, 0, -1, PERF_FLAG_FD_OUTPUT) = 3 [pid 314] <... exit_group resumed>) = ? [pid 315] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000300, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 317] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000300, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 296] <... restart_syscall resumed>) = 0 [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 315] <... bpf resumed>) = 4 [pid 296] <... clone resumed>, child_tidptr=0x55555a75b650) = 319 [pid 315] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="percpu_alloc_percpu", prog_fd=4}}, 16 [pid 318] <... perf_event_open resumed>{type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=354, sample_period=0, sample_type=PERF_SAMPLE_TID|PERF_SAMPLE_DATA_SRC, read_format=0, precise_ip=0 /* arbitrary skid */, ...}, 0, 0, -1, PERF_FLAG_FD_OUTPUT) = 3 [pid 318] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000300, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144./strace-static-x86_64: Process 319 attached [pid 319] set_robust_list(0x55555a75b660, 24) = 0 [pid 319] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 319] setpgid(0, 0) = 0 [pid 319] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 317] <... bpf resumed>) = 4 [pid 317] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="percpu_alloc_percpu", prog_fd=4}}, 16 [pid 319] <... openat resumed>) = 3 [pid 319] write(3, "1000", 4 [pid 318] <... bpf resumed>) = 4 [pid 319] <... write resumed>) = 4 [pid 318] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="percpu_alloc_percpu", prog_fd=4}}, 16 [pid 319] close(3executing program ) = 0 [pid 319] write(1, "executing program\n", 18) = 18 [pid 319] perf_event_open({type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=354, sample_period=0, sample_type=PERF_SAMPLE_TID|PERF_SAMPLE_DATA_SRC, read_format=0, precise_ip=0 /* arbitrary skid */, ...}, 0, 0, -1, PERF_FLAG_FD_OUTPUT) = 3 [pid 319] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000300, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4 [ 82.633690][ T314] RDX: 00007f774f9c7bd0 RSI: 00007ffd5f039980 RDI: 0000000000000003 [ 82.641656][ T314] RBP: 0000000000000001 R08: 00007ffd5f039707 R09: 0000000000000140 [ 82.649620][ T314] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 82.657588][ T314] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 82.665736][ T314] [pid 319] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="percpu_alloc_percpu", prog_fd=4}}, 16 [pid 314] +++ exited with 0 +++ [pid 315] <... bpf resumed>) = 5 [pid 292] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=314, si_uid=0, si_status=0, si_utime=0, si_stime=24} --- [pid 315] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 292] restart_syscall(<... resuming interrupted clone ...> [pid 317] <... bpf resumed>) = 5 [pid 318] <... bpf resumed>) = 5 [pid 318] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6 [pid 315] <... openat resumed>) = 6 [pid 318] write(6, "1", 1 [pid 315] write(6, "1", 1 [pid 318] <... write resumed>) = 1 [pid 315] <... write resumed>) = 1 [pid 318] close(3) = 0 [ 82.720017][ T318] FAULT_INJECTION: forcing a failure. [ 82.720017][ T318] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 82.720660][ T315] FAULT_INJECTION: forcing a failure. [ 82.720660][ T315] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 82.733506][ T318] CPU: 1 PID: 318 Comm: syz-executor168 Not tainted 6.1.134-syzkaller-00015-g218e2bd24587 #0 [ 82.748965][ T317] FAULT_INJECTION: forcing a failure. [pid 315] close(3 [pid 319] <... bpf resumed>) = 5 [pid 317] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 315] <... close resumed>) = 0 [pid 292] <... restart_syscall resumed>) = 0 [pid 292] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555a75b650) = 320 [pid 317] <... openat resumed>) = 6 [pid 317] write(6, "1", 1) = 1 [pid 317] close(3) = 0 [pid 319] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6 [pid 319] write(6, "1", 1) = 1 [ 82.748965][ T317] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 82.757327][ T318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 82.772351][ T319] FAULT_INJECTION: forcing a failure. [ 82.772351][ T319] name failslab, interval 1, probability 0, space 0, times 0 [ 82.780559][ T318] Call Trace: [ 82.780568][ T318] [ 82.780575][ T318] __dump_stack+0x21/0x24 [ 82.780606][ T318] dump_stack_lvl+0xee/0x150 [ 82.808277][ T318] ? __cfi_dump_stack_lvl+0x8/0x8 [ 82.813407][ T318] dump_stack+0x15/0x24 [ 82.817572][ T318] should_fail_ex+0x3d4/0x520 [ 82.822259][ T318] should_fail_alloc_page+0x61/0x90 [ 82.827550][ T318] prepare_alloc_pages+0x148/0x5f0 [ 82.832667][ T318] ? __alloc_pages_bulk+0x9c0/0x9c0 [ 82.837887][ T318] ? __kasan_record_aux_stack+0xb6/0xc0 [ 82.843683][ T318] __alloc_pages+0x115/0x3a0 [ 82.848400][ T318] ? __cfi___alloc_pages+0x10/0x10 [ 82.853618][ T318] ? __kasan_check_write+0x14/0x20 [ 82.858913][ T318] ? _raw_spin_lock+0x8e/0xe0 [ 82.863685][ T318] ? __cfi__raw_spin_lock+0x10/0x10 [ 82.868993][ T318] ? __this_cpu_preempt_check+0x13/0x20 [ 82.874829][ T318] __folio_alloc+0x12/0x40 [ 82.879371][ T318] wp_page_copy+0x280/0x15b0 [ 82.884248][ T318] ? __this_cpu_preempt_check+0x13/0x20 [ 82.889818][ T318] ? __cfi___perf_event_task_sched_in+0x10/0x10 [ 82.896173][ T318] ? fault_dirty_shared_page+0x310/0x310 [ 82.901835][ T318] ? _raw_spin_unlock+0x4c/0x70 [ 82.906717][ T318] ? finish_task_switch+0x16b/0x7b0 [ 82.912548][ T318] ? vm_normal_page+0x99/0x200 [ 82.917332][ T318] do_wp_page+0x9f2/0xfc0 [ 82.921705][ T318] handle_mm_fault+0x10e4/0x2640 [ 82.926655][ T318] ? __cfi_handle_mm_fault+0x10/0x10 [ 82.931951][ T318] ? lock_vma_under_rcu+0x3eb/0x4d0 [ 82.937252][ T318] ? __this_cpu_preempt_check+0x13/0x20 [ 82.942841][ T318] ? xfd_validate_state+0x70/0x150 [ 82.947962][ T318] do_user_addr_fault+0x905/0x1050 [ 82.953285][ T318] exc_page_fault+0x51/0xb0 [ 82.958079][ T318] asm_exc_page_fault+0x27/0x30 [ 82.962950][ T318] RIP: 0033:0x7f774f9970e0 [ 82.967591][ T318] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 0d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 c0 3c 0a 00 0f 85 0f 02 00 00 4c 8d 25 b3 3c 0a 00 4c [ 82.987558][ T318] RSP: 002b:00007ffd5f039910 EFLAGS: 00010246 [ 82.993641][ T318] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001 [ 83.001613][ T318] RDX: 0000000000000001 RSI: 00007f774fa38110 RDI: 0000000000000000 [ 83.009658][ T318] RBP: 00007f774fa38110 R08: 00007ffd5f039707 R09: 0000000000000140 [ 83.017805][ T318] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 83.025790][ T318] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 83.033863][ T318] [ 83.036895][ T319] CPU: 0 PID: 319 Comm: syz-executor168 Not tainted 6.1.134-syzkaller-00015-g218e2bd24587 #0 [ 83.047152][ T319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 83.057210][ T319] Call Trace: [ 83.060669][ T319] [ 83.063683][ T319] __dump_stack+0x21/0x24 [ 83.068021][ T319] dump_stack_lvl+0xee/0x150 [ 83.072616][ T319] ? __cfi_dump_stack_lvl+0x8/0x8 [ 83.077650][ T319] dump_stack+0x15/0x24 [ 83.081808][ T319] should_fail_ex+0x3d4/0x520 [ 83.086496][ T319] __should_failslab+0xac/0xf0 [ 83.091255][ T319] ? tracepoint_probe_unregister+0x1e6/0x8b0 [ 83.097594][ T319] should_failslab+0x9/0x20 [ 83.102107][ T319] __kmem_cache_alloc_node+0x3d/0x2c0 [ 83.107634][ T319] ? __cfi_mutex_lock+0x10/0x10 [ 83.112519][ T319] ? tracepoint_probe_unregister+0x1e6/0x8b0 [ 83.118635][ T319] __kmalloc+0xa1/0x1e0 [ 83.122833][ T319] ? __kasan_check_write+0x14/0x20 [ 83.128060][ T319] ? __cfi_perf_trace_percpu_alloc_percpu+0x10/0x10 [ 83.134764][ T319] tracepoint_probe_unregister+0x1e6/0x8b0 [ 83.140633][ T319] trace_event_reg+0x21c/0x260 [ 83.145417][ T319] perf_trace_event_unreg+0xcc/0x1c0 [ 83.150717][ T319] perf_trace_destroy+0xbe/0x180 [ 83.156115][ T319] tp_perf_event_destroy+0x15/0x20 [ 83.161222][ T319] ? __cfi_tp_perf_event_destroy+0x10/0x10 [ 83.167025][ T319] _free_event+0x9cd/0xce0 [pid 319] close(3executing program ./strace-static-x86_64: Process 320 attached [pid 318] exit_group(0 [pid 320] set_robust_list(0x55555a75b660, 24 [pid 318] <... exit_group resumed>) = ? [pid 320] <... set_robust_list resumed>) = 0 [pid 320] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 320] setpgid(0, 0) = 0 [pid 320] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 320] write(3, "1000", 4) = 4 [pid 320] close(3) = 0 [pid 320] write(1, "executing program\n", 18) = 18 [ 83.171451][ T319] perf_event_release_kernel+0x819/0x8a0 [ 83.177114][ T319] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 83.183194][ T319] ? __cfi_perf_event_release_kernel+0x10/0x10 [ 83.189352][ T319] perf_release+0x3b/0x40 [ 83.193767][ T319] ? __cfi_perf_release+0x10/0x10 [ 83.198789][ T319] __fput+0x1fc/0x8f0 [ 83.202774][ T319] ____fput+0x15/0x20 [ 83.206754][ T319] task_work_run+0x1db/0x240 [ 83.211353][ T319] ? __cfi_task_work_run+0x10/0x10 [ 83.216572][ T319] ? task_work_add+0x2b1/0x330 [ 83.221342][ T319] ptrace_notify+0x221/0x250 [ 83.225945][ T319] ? __cfi_ptrace_notify+0x10/0x10 [ 83.231062][ T319] ? fput+0x15b/0x1a0 [ 83.235052][ T319] ? filp_close+0x111/0x160 [ 83.239560][ T319] ? close_fd+0x28b/0x300 [ 83.244190][ T319] syscall_exit_work+0x84/0x140 [ 83.249042][ T319] syscall_exit_to_user_mode_prepare+0x1c/0x20 [ 83.255281][ T319] syscall_exit_to_user_mode+0xd/0x30 [ 83.260658][ T319] do_syscall_64+0x58/0xa0 [ 83.265079][ T319] ? clear_bhb_loop+0x15/0x70 [ 83.269755][ T319] ? clear_bhb_loop+0x15/0x70 [ 83.274525][ T319] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 83.280431][ T319] RIP: 0033:0x7f774f9c8999 [ 83.284931][ T319] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 83.304621][ T319] RSP: 002b:00007ffd5f039968 EFLAGS: 00000246 ORIG_RAX: 0000000000000003 [ 83.313039][ T319] RAX: 0000000000000000 RBX: 00007ffd5f039980 RCX: 00007f774f9c8999 [ 83.321095][ T319] RDX: 00007f774f9c7bd0 RSI: 00007ffd5f039980 RDI: 0000000000000003 [ 83.329064][ T319] RBP: 0000000000000001 R08: 00007ffd5f039707 R09: 0000000000000140 [ 83.337033][ T319] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 83.345177][ T319] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 83.353160][ T319] [ 83.356184][ T315] CPU: 1 PID: 315 Comm: syz-executor168 Not tainted 6.1.134-syzkaller-00015-g218e2bd24587 #0 [ 83.366527][ T315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 83.376764][ T315] Call Trace: [ 83.380251][ T315] [ 83.383205][ T315] __dump_stack+0x21/0x24 [ 83.387826][ T315] dump_stack_lvl+0xee/0x150 [ 83.392590][ T315] ? __cfi_dump_stack_lvl+0x8/0x8 [ 83.397735][ T315] ? __cfi_enqueue_task_fair+0x10/0x10 [ 83.403208][ T315] dump_stack+0x15/0x24 [ 83.407366][ T315] should_fail_ex+0x3d4/0x520 [ 83.412082][ T315] should_fail_alloc_page+0x61/0x90 [ 83.417294][ T315] prepare_alloc_pages+0x148/0x5f0 [ 83.422492][ T315] ? __alloc_pages_bulk+0x9c0/0x9c0 [ 83.427696][ T315] __alloc_pages+0x115/0x3a0 [ 83.432480][ T315] ? __cfi___alloc_pages+0x10/0x10 [ 83.437590][ T315] ? __kasan_check_write+0x14/0x20 [ 83.442719][ T315] ? _raw_spin_lock+0x8e/0xe0 [ 83.447504][ T315] ? __cfi__raw_spin_lock+0x10/0x10 [ 83.452794][ T315] ? __this_cpu_preempt_check+0x13/0x20 [ 83.458428][ T315] __folio_alloc+0x12/0x40 [ 83.462869][ T315] wp_page_copy+0x280/0x15b0 [ 83.467464][ T315] ? __this_cpu_preempt_check+0x13/0x20 [ 83.473008][ T315] ? __cfi___perf_event_task_sched_in+0x10/0x10 [ 83.479242][ T315] ? fault_dirty_shared_page+0x310/0x310 [ 83.484888][ T315] ? _raw_spin_unlock+0x4c/0x70 [ 83.489837][ T315] ? finish_task_switch+0x16b/0x7b0 [ 83.495035][ T315] ? vm_normal_page+0x99/0x200 [ 83.499894][ T315] do_wp_page+0x9f2/0xfc0 [ 83.504230][ T315] handle_mm_fault+0x10e4/0x2640 [ 83.509175][ T315] ? __cfi_handle_mm_fault+0x10/0x10 [ 83.514458][ T315] ? lock_vma_under_rcu+0x3eb/0x4d0 [ 83.519680][ T315] ? __this_cpu_preempt_check+0x13/0x20 [ 83.525308][ T315] ? xfd_validate_state+0x70/0x150 [ 83.530419][ T315] do_user_addr_fault+0x905/0x1050 [ 83.535559][ T315] exc_page_fault+0x51/0xb0 [ 83.540587][ T315] asm_exc_page_fault+0x27/0x30 [ 83.545630][ T315] RIP: 0033:0x7f774f9970e0 [ 83.550040][ T315] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 0d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 c0 3c 0a 00 0f 85 0f 02 00 00 4c 8d 25 b3 3c 0a 00 4c [ 83.569667][ T315] RSP: 002b:00007ffd5f039910 EFLAGS: 00010246 [ 83.575933][ T315] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001 [ 83.584071][ T315] RDX: 0000000000000001 RSI: 00007f774fa38110 RDI: 0000000000000000 [ 83.592154][ T315] RBP: 00007f774fa38110 R08: 00007ffd5f039707 R09: 0000000000000140 [ 83.600148][ T315] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 83.608112][ T315] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 83.616133][ T315] [ 83.619285][ T317] CPU: 0 PID: 317 Comm: syz-executor168 Not tainted 6.1.134-syzkaller-00015-g218e2bd24587 #0 [ 83.629454][ T317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 83.639506][ T317] Call Trace: [ 83.642806][ T317] [ 83.645828][ T317] __dump_stack+0x21/0x24 [ 83.650167][ T317] dump_stack_lvl+0xee/0x150 [ 83.655193][ T317] ? __cfi_dump_stack_lvl+0x8/0x8 [ 83.660413][ T317] ? __cfi_enqueue_task_fair+0x10/0x10 [ 83.665968][ T317] dump_stack+0x15/0x24 [ 83.670123][ T317] should_fail_ex+0x3d4/0x520 [ 83.674800][ T317] should_fail_alloc_page+0x61/0x90 [ 83.680013][ T317] prepare_alloc_pages+0x148/0x5f0 [ 83.685143][ T317] ? __alloc_pages_bulk+0x9c0/0x9c0 [ 83.690439][ T317] __alloc_pages+0x115/0x3a0 [ 83.695034][ T317] ? __cfi___alloc_pages+0x10/0x10 [ 83.700253][ T317] ? __kasan_check_write+0x14/0x20 [ 83.705377][ T317] ? _raw_spin_lock+0x8e/0xe0 [ 83.710144][ T317] ? __cfi__raw_spin_lock+0x10/0x10 [ 83.715377][ T317] ? __this_cpu_preempt_check+0x13/0x20 [ 83.720941][ T317] __folio_alloc+0x12/0x40 [ 83.725396][ T317] wp_page_copy+0x280/0x15b0 [ 83.729995][ T317] ? __this_cpu_preempt_check+0x13/0x20 [ 83.735542][ T317] ? __cfi___perf_event_task_sched_in+0x10/0x10 [ 83.741802][ T317] ? fault_dirty_shared_page+0x310/0x310 [ 83.747556][ T317] ? _raw_spin_unlock+0x4c/0x70 [ 83.752414][ T317] ? finish_task_switch+0x16b/0x7b0 [ 83.757612][ T317] ? vm_normal_page+0x99/0x200 [ 83.762379][ T317] do_wp_page+0x9f2/0xfc0 [ 83.766809][ T317] handle_mm_fault+0x10e4/0x2640 [ 83.771776][ T317] ? __cfi_handle_mm_fault+0x10/0x10 [ 83.777102][ T317] ? lock_vma_under_rcu+0x3eb/0x4d0 [ 83.782311][ T317] ? __this_cpu_preempt_check+0x13/0x20 [ 83.787859][ T317] ? xfd_validate_state+0x70/0x150 [ 83.792996][ T317] do_user_addr_fault+0x905/0x1050 [ 83.798121][ T317] exc_page_fault+0x51/0xb0 [ 83.802621][ T317] asm_exc_page_fault+0x27/0x30 [ 83.807482][ T317] RIP: 0033:0x7f774f9970e0 [ 83.811917][ T317] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 0d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 c0 3c 0a 00 0f 85 0f 02 00 00 4c 8d 25 b3 3c 0a 00 4c [ 83.831602][ T317] RSP: 002b:00007ffd5f039910 EFLAGS: 00010246 [ 83.837686][ T317] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001 [ 83.845652][ T317] RDX: 0000000000000001 RSI: 00007f774fa38110 RDI: 0000000000000000 [ 83.853711][ T317] RBP: 00007f774fa38110 R08: 00007ffd5f039707 R09: 0000000000000140 [ 83.862026][ T317] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [pid 320] perf_event_open( [pid 317] exit_group(0) = ? [pid 318] +++ exited with 0 +++ [pid 317] +++ exited with 0 +++ [pid 291] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=318, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- [pid 291] restart_syscall(<... resuming interrupted clone ...> [pid 294] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=317, si_uid=0, si_status=0, si_utime=0, si_stime=17} --- [pid 294] restart_syscall(<... resuming interrupted clone ...> [pid 315] exit_group(0) = ? [pid 291] <... restart_syscall resumed>) = 0 [pid 291] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 294] <... restart_syscall resumed>) = 0 [pid 294] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555a75b650) = 322 ./strace-static-x86_64: Process 321 attached ./strace-static-x86_64: Process 322 attached [pid 321] set_robust_list(0x55555a75b660, 24 [pid 291] <... clone resumed>, child_tidptr=0x55555a75b650) = 321 [pid 321] <... set_robust_list resumed>) = 0 [pid 322] set_robust_list(0x55555a75b660, 24 [pid 321] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 322] <... set_robust_list resumed>) = 0 [pid 321] <... prctl resumed>) = 0 [pid 321] setpgid(0, 0) = 0 [pid 321] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 322] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 321] <... openat resumed>) = 3 [pid 321] write(3, "1000", 4 [pid 322] setpgid(0, 0 [pid 321] <... write resumed>) = 4 [pid 320] <... perf_event_open resumed>{type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=354, sample_period=0, sample_type=PERF_SAMPLE_TID|PERF_SAMPLE_DATA_SRC, read_format=0, precise_ip=0 /* arbitrary skid */, ...}, 0, 0, -1, PERF_FLAG_FD_OUTPUT) = 3 [pid 319] <... close resumed>) = 0 [pid 315] +++ exited with 0 +++ [pid 293] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=315, si_uid=0, si_status=0, si_utime=0, si_stime=36} --- executing program [pid 320] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000300, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 321] close(3 [pid 322] <... setpgid resumed>) = 0 [pid 319] exit_group(0 [pid 321] <... close resumed>) = 0 [pid 321] write(1, "executing program\n", 18) = 18 [pid 321] perf_event_open( [pid 320] <... bpf resumed>) = 4 [pid 320] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="percpu_alloc_percpu", prog_fd=4}}, 16 [pid 293] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 320] <... bpf resumed>) = 5 [pid 320] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6 [pid 320] write(6, "1", 1) = 1 [pid 320] close(3) = 0 [pid 293] <... clone resumed>, child_tidptr=0x55555a75b650) = 323 ./strace-static-x86_64: Process 323 attached [pid 321] <... perf_event_open resumed>{type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=354, sample_period=0, sample_type=PERF_SAMPLE_TID|PERF_SAMPLE_DATA_SRC, read_format=0, precise_ip=0 /* arbitrary skid */, ...}, 0, 0, -1, PERF_FLAG_FD_OUTPUT) = 3 [pid 322] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 319] <... exit_group resumed>) = ? [pid 319] +++ exited with 0 +++ [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=319, si_uid=0, si_status=0, si_utime=0, si_stime=6} --- [pid 296] restart_syscall(<... resuming interrupted clone ...> [pid 323] set_robust_list(0x55555a75b660, 24 [pid 322] <... openat resumed>) = 3 [pid 323] <... set_robust_list resumed>) = 0 [pid 323] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 323] setpgid(0, 0 [pid 322] write(3, "1000", 4) = 4 [pid 322] close(3 [pid 323] <... setpgid resumed>) = 0 executing program [pid 322] <... close resumed>) = 0 [pid 323] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 322] write(1, "executing program\n", 18) = 18 [pid 322] perf_event_open( [pid 323] <... openat resumed>) = 3 [pid 322] <... perf_event_open resumed>{type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=354, sample_period=0, sample_type=PERF_SAMPLE_TID|PERF_SAMPLE_DATA_SRC, read_format=0, precise_ip=0 /* arbitrary skid */, ...}, 0, 0, -1, PERF_FLAG_FD_OUTPUT) = 3 [pid 323] write(3, "1000", 4) = 4 executing program [pid 323] close(3) = 0 [pid 323] write(1, "executing program\n", 18 [pid 322] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000300, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 323] <... write resumed>) = 18 [pid 322] <... bpf resumed>) = 4 [pid 323] perf_event_open( [pid 321] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000300, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 296] <... restart_syscall resumed>) = 0 [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555a75b650) = 324 [pid 323] <... perf_event_open resumed>{type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=354, sample_period=0, sample_type=PERF_SAMPLE_TID|PERF_SAMPLE_DATA_SRC, read_format=0, precise_ip=0 /* arbitrary skid */, ...}, 0, 0, -1, PERF_FLAG_FD_OUTPUT) = 3 [pid 323] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000300, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 321] <... bpf resumed>) = 4 [pid 323] <... bpf resumed>) = 4 [ 83.870524][ T317] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 83.878606][ T317] [ 83.908669][ T320] FAULT_INJECTION: forcing a failure. [ 83.908669][ T320] name fail_page_alloc, interval 1, probability 0, space 0, times 0 executing program [pid 323] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="percpu_alloc_percpu", prog_fd=4}}, 16 [pid 321] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="percpu_alloc_percpu", prog_fd=4}}, 16 [pid 322] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="percpu_alloc_percpu", prog_fd=4}}, 16./strace-static-x86_64: Process 324 attached [pid 324] set_robust_list(0x55555a75b660, 24) = 0 [pid 324] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 324] setpgid(0, 0) = 0 [pid 324] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 324] write(3, "1000", 4) = 4 [pid 324] close(3) = 0 [pid 324] write(1, "executing program\n", 18) = 18 [pid 324] perf_event_open({type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=354, sample_period=0, sample_type=PERF_SAMPLE_TID|PERF_SAMPLE_DATA_SRC, read_format=0, precise_ip=0 /* arbitrary skid */, ...}, 0, 0, -1, PERF_FLAG_FD_OUTPUT) = 3 [pid 324] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000300, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4 [pid 324] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="percpu_alloc_percpu", prog_fd=4}}, 16) = 5 [pid 324] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6 [pid 324] write(6, "1", 1) = 1 [pid 324] close(3) = 0 [pid 323] <... bpf resumed>) = 5 [pid 323] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6 [pid 323] write(6, "1", 1) = 1 [pid 323] close(3) = 0 [ 83.922104][ T320] CPU: 1 PID: 320 Comm: syz-executor168 Not tainted 6.1.134-syzkaller-00015-g218e2bd24587 #0 [ 83.926384][ T324] FAULT_INJECTION: forcing a failure. [ 83.926384][ T324] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 83.932329][ T320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 83.932344][ T320] Call Trace: [ 83.932350][ T320] [ 83.932358][ T320] __dump_stack+0x21/0x24 [ 83.932389][ T320] dump_stack_lvl+0xee/0x150 [ 83.971044][ T323] FAULT_INJECTION: forcing a failure. [ 83.971044][ T323] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 83.971752][ T320] ? __cfi_dump_stack_lvl+0x8/0x8 [ 83.971786][ T320] ? __cfi_enqueue_task_fair+0x10/0x10 [ 83.995931][ T320] dump_stack+0x15/0x24 [ 84.000635][ T320] should_fail_ex+0x3d4/0x520 [ 84.005320][ T320] should_fail_alloc_page+0x61/0x90 [ 84.010522][ T320] prepare_alloc_pages+0x148/0x5f0 [ 84.015640][ T320] ? __alloc_pages_bulk+0x9c0/0x9c0 [ 84.020955][ T320] __alloc_pages+0x115/0x3a0 [ 84.025676][ T320] ? __cfi___alloc_pages+0x10/0x10 [ 84.030882][ T320] ? __kasan_check_write+0x14/0x20 [ 84.036014][ T320] ? _raw_spin_lock+0x8e/0xe0 [ 84.040715][ T320] ? __cfi__raw_spin_lock+0x10/0x10 [ 84.045926][ T320] ? sched_clock_cpu+0x6e/0x250 [ 84.050787][ T320] __folio_alloc+0x12/0x40 [ 84.055210][ T320] wp_page_copy+0x280/0x15b0 [ 84.059821][ T320] ? __this_cpu_preempt_check+0x13/0x20 [ 84.065387][ T320] ? __cfi___perf_event_task_sched_in+0x10/0x10 [pid 322] <... bpf resumed>) = 5 [pid 322] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6 [pid 322] write(6, "1", 1) = 1 [pid 322] close(3) = 0 [ 84.071642][ T320] ? fault_dirty_shared_page+0x310/0x310 [ 84.077467][ T320] ? __kasan_check_write+0x14/0x20 [ 84.081170][ T322] FAULT_INJECTION: forcing a failure. [ 84.081170][ T322] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 84.082625][ T320] ? finish_task_switch+0x209/0x7b0 [ 84.082657][ T320] ? vm_normal_page+0x99/0x200 [ 84.082681][ T320] do_wp_page+0x9f2/0xfc0 [ 84.082710][ T320] handle_mm_fault+0x10e4/0x2640 [ 84.082740][ T320] ? __cfi_handle_mm_fault+0x10/0x10 [ 84.120568][ T320] ? lock_vma_under_rcu+0x3eb/0x4d0 [ 84.125966][ T320] ? __this_cpu_preempt_check+0x13/0x20 [ 84.132324][ T320] ? xfd_validate_state+0x70/0x150 [ 84.137492][ T320] do_user_addr_fault+0x905/0x1050 [ 84.142637][ T320] exc_page_fault+0x51/0xb0 [ 84.147318][ T320] asm_exc_page_fault+0x27/0x30 [ 84.152191][ T320] RIP: 0033:0x7f774f9970e0 [ 84.156626][ T320] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 0d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 c0 3c 0a 00 0f 85 0f 02 00 00 4c 8d 25 b3 3c 0a 00 4c [ 84.176766][ T320] RSP: 002b:00007ffd5f039910 EFLAGS: 00010246 [ 84.182844][ T320] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001 [ 84.190990][ T320] RDX: 0000000000000001 RSI: 00007f774fa38110 RDI: 0000000000000000 [ 84.199093][ T320] RBP: 00007f774fa38110 R08: 00007ffd5f039707 R09: 0000000000000140 [ 84.207068][ T320] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 84.215047][ T320] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 84.223292][ T320] [ 84.226399][ T324] CPU: 0 PID: 324 Comm: syz-executor168 Not tainted 6.1.134-syzkaller-00015-g218e2bd24587 #0 [ 84.236561][ T324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 84.246617][ T324] Call Trace: [ 84.249988][ T324] [ 84.252918][ T324] __dump_stack+0x21/0x24 [ 84.257260][ T324] dump_stack_lvl+0xee/0x150 [ 84.261861][ T324] ? __cfi_dump_stack_lvl+0x8/0x8 [ 84.267069][ T324] ? resched_curr+0x10e/0x380 [ 84.271831][ T324] ? __cfi_resched_curr+0x10/0x10 [ 84.276853][ T324] dump_stack+0x15/0x24 [ 84.281015][ T324] should_fail_ex+0x3d4/0x520 [ 84.285696][ T324] should_fail_alloc_page+0x61/0x90 [ 84.290908][ T324] prepare_alloc_pages+0x148/0x5f0 [ 84.296020][ T324] ? __alloc_pages_bulk+0x9c0/0x9c0 [ 84.301306][ T324] __alloc_pages+0x115/0x3a0 [ 84.305899][ T324] ? __cfi___alloc_pages+0x10/0x10 [ 84.310605][ T321] FAULT_INJECTION: forcing a failure. [ 84.310605][ T321] name failslab, interval 1, probability 0, space 0, times 0 [ 84.311012][ T324] ? __kasan_check_write+0x14/0x20 [ 84.328688][ T324] ? _raw_spin_lock+0x8e/0xe0 [ 84.333389][ T324] ? __cfi__raw_spin_lock+0x10/0x10 [ 84.338649][ T324] ? __this_cpu_preempt_check+0x13/0x20 [ 84.344569][ T324] __folio_alloc+0x12/0x40 [ 84.349089][ T324] wp_page_copy+0x280/0x15b0 [ 84.353695][ T324] ? __this_cpu_preempt_check+0x13/0x20 [ 84.359283][ T324] ? __cfi___perf_event_task_sched_in+0x10/0x10 [ 84.365530][ T324] ? fault_dirty_shared_page+0x310/0x310 [ 84.371172][ T324] ? _raw_spin_unlock+0x4c/0x70 [ 84.376125][ T324] ? finish_task_switch+0x16b/0x7b0 [ 84.381392][ T324] ? vm_normal_page+0x99/0x200 [ 84.386274][ T324] do_wp_page+0x9f2/0xfc0 [ 84.390628][ T324] handle_mm_fault+0x10e4/0x2640 [ 84.395674][ T324] ? __cfi_handle_mm_fault+0x10/0x10 [ 84.400968][ T324] ? lock_vma_under_rcu+0x3eb/0x4d0 [ 84.406183][ T324] ? __this_cpu_preempt_check+0x13/0x20 [ 84.411732][ T324] ? xfd_validate_state+0x70/0x150 [ 84.416860][ T324] do_user_addr_fault+0x905/0x1050 [ 84.421979][ T324] exc_page_fault+0x51/0xb0 [ 84.426481][ T324] asm_exc_page_fault+0x27/0x30 [ 84.431423][ T324] RIP: 0033:0x7f774f9970e0 [ 84.435853][ T324] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 0d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 c0 3c 0a 00 0f 85 0f 02 00 00 4c 8d 25 b3 3c 0a 00 4c [ 84.455640][ T324] RSP: 002b:00007ffd5f039910 EFLAGS: 00010246 [ 84.461703][ T324] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001 [ 84.469678][ T324] RDX: 0000000000000001 RSI: 00007f774fa38110 RDI: 0000000000000000 executing program [pid 321] <... bpf resumed>) = 5 [pid 320] exit_group(0 [pid 321] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 320] <... exit_group resumed>) = ? [pid 321] <... openat resumed>) = 6 [pid 320] +++ exited with 0 +++ [pid 321] write(6, "1", 1) = 1 [pid 292] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=320, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- [pid 321] close(3 [pid 292] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 292] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555a75b650) = 325 ./strace-static-x86_64: Process 325 attached [pid 325] set_robust_list(0x55555a75b660, 24) = 0 [pid 325] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 325] setpgid(0, 0) = 0 [pid 325] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 325] write(3, "1000", 4) = 4 [pid 325] close(3) = 0 [pid 325] write(1, "executing program\n", 18) = 18 [ 84.477789][ T324] RBP: 00007f774fa38110 R08: 00007ffd5f039707 R09: 0000000000000140 [ 84.485777][ T324] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 84.493746][ T324] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 84.501895][ T324] [ 84.504987][ T321] CPU: 1 PID: 321 Comm: syz-executor168 Not tainted 6.1.134-syzkaller-00015-g218e2bd24587 #0 [ 84.515417][ T321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 84.525658][ T321] Call Trace: [ 84.529033][ T321] [ 84.531976][ T321] __dump_stack+0x21/0x24 [ 84.536406][ T321] dump_stack_lvl+0xee/0x150 [ 84.541056][ T321] ? __cfi_dump_stack_lvl+0x8/0x8 [ 84.546184][ T321] dump_stack+0x15/0x24 [ 84.550491][ T321] should_fail_ex+0x3d4/0x520 [ 84.555605][ T321] __should_failslab+0xac/0xf0 [ 84.560386][ T321] ? tracepoint_probe_unregister+0x1e6/0x8b0 [ 84.566475][ T321] should_failslab+0x9/0x20 [ 84.571178][ T321] __kmem_cache_alloc_node+0x3d/0x2c0 [ 84.576786][ T321] ? __cfi_mutex_lock+0x10/0x10 [ 84.581843][ T321] ? tracepoint_probe_unregister+0x1e6/0x8b0 [ 84.588098][ T321] __kmalloc+0xa1/0x1e0 [ 84.592387][ T321] ? __kasan_check_write+0x14/0x20 [ 84.597521][ T321] ? __cfi_perf_trace_percpu_alloc_percpu+0x10/0x10 [ 84.604221][ T321] tracepoint_probe_unregister+0x1e6/0x8b0 [ 84.610064][ T321] trace_event_reg+0x21c/0x260 [ 84.614925][ T321] perf_trace_event_unreg+0xcc/0x1c0 [ 84.620302][ T321] perf_trace_destroy+0xbe/0x180 [ 84.625248][ T321] tp_perf_event_destroy+0x15/0x20 [ 84.630379][ T321] ? __cfi_tp_perf_event_destroy+0x10/0x10 [ 84.636195][ T321] _free_event+0x9cd/0xce0 [ 84.640715][ T321] perf_event_release_kernel+0x819/0x8a0 [ 84.646349][ T321] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 84.652544][ T321] ? __cfi_perf_event_release_kernel+0x10/0x10 [ 84.658703][ T321] perf_release+0x3b/0x40 [ 84.663034][ T321] ? __cfi_perf_release+0x10/0x10 [ 84.668216][ T321] __fput+0x1fc/0x8f0 [ 84.672215][ T321] ____fput+0x15/0x20 [ 84.676222][ T321] task_work_run+0x1db/0x240 [ 84.680815][ T321] ? __cfi_task_work_run+0x10/0x10 [ 84.686480][ T321] ? task_work_add+0x2b1/0x330 [ 84.691246][ T321] ptrace_notify+0x221/0x250 [ 84.695843][ T321] ? __cfi_ptrace_notify+0x10/0x10 [ 84.701057][ T321] ? fput+0x15b/0x1a0 [ 84.705142][ T321] ? filp_close+0x111/0x160 [ 84.709754][ T321] ? close_fd+0x28b/0x300 [ 84.714272][ T321] syscall_exit_work+0x84/0x140 [ 84.719128][ T321] syscall_exit_to_user_mode_prepare+0x1c/0x20 [ 84.725376][ T321] syscall_exit_to_user_mode+0xd/0x30 [ 84.730843][ T321] do_syscall_64+0x58/0xa0 [ 84.735269][ T321] ? clear_bhb_loop+0x15/0x70 [ 84.739950][ T321] ? clear_bhb_loop+0x15/0x70 [ 84.744635][ T321] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 84.750548][ T321] RIP: 0033:0x7f774f9c8999 [ 84.754964][ T321] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 84.774680][ T321] RSP: 002b:00007ffd5f039968 EFLAGS: 00000246 ORIG_RAX: 0000000000000003 [ 84.783104][ T321] RAX: 0000000000000000 RBX: 00007ffd5f039980 RCX: 00007f774f9c8999 [ 84.791081][ T321] RDX: 00007f774f9c7bd0 RSI: 00007ffd5f039980 RDI: 0000000000000003 [ 84.799060][ T321] RBP: 0000000000000001 R08: 00007ffd5f039707 R09: 0000000000000140 [ 84.807120][ T321] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 84.815090][ T321] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 84.823068][ T321] [ 84.826090][ T323] CPU: 0 PID: 323 Comm: syz-executor168 Not tainted 6.1.134-syzkaller-00015-g218e2bd24587 #0 [ 84.836435][ T323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 84.846489][ T323] Call Trace: [ 84.849784][ T323] [ 84.852813][ T323] __dump_stack+0x21/0x24 [ 84.857151][ T323] dump_stack_lvl+0xee/0x150 [ 84.861742][ T323] ? __cfi_dump_stack_lvl+0x8/0x8 [ 84.866764][ T323] ? resched_curr+0x10e/0x380 [ 84.871435][ T323] ? __cfi_resched_curr+0x10/0x10 [ 84.876451][ T323] dump_stack+0x15/0x24 [ 84.880603][ T323] should_fail_ex+0x3d4/0x520 [ 84.885276][ T323] should_fail_alloc_page+0x61/0x90 [ 84.890483][ T323] prepare_alloc_pages+0x148/0x5f0 [ 84.895705][ T323] ? __alloc_pages_bulk+0x9c0/0x9c0 [ 84.901103][ T323] __alloc_pages+0x115/0x3a0 [ 84.905719][ T323] ? __cfi___alloc_pages+0x10/0x10 [ 84.910870][ T323] ? __kasan_check_write+0x14/0x20 [ 84.916003][ T323] ? _raw_spin_lock+0x8e/0xe0 [ 84.920697][ T323] ? __cfi__raw_spin_lock+0x10/0x10 [ 84.925930][ T323] ? __this_cpu_preempt_check+0x13/0x20 [ 84.931486][ T323] __folio_alloc+0x12/0x40 [ 84.935915][ T323] wp_page_copy+0x280/0x15b0 [ 84.940544][ T323] ? __this_cpu_preempt_check+0x13/0x20 [ 84.946098][ T323] ? __cfi___perf_event_task_sched_in+0x10/0x10 [ 84.952348][ T323] ? fault_dirty_shared_page+0x310/0x310 [ 84.958028][ T323] ? irqentry_exit+0x37/0x40 [ 84.962618][ T323] ? common_interrupt+0x70/0xe0 [ 84.967483][ T323] ? vm_normal_page+0x99/0x200 [ 84.972244][ T323] do_wp_page+0x9f2/0xfc0 [ 84.976577][ T323] handle_mm_fault+0x10e4/0x2640 [ 84.981605][ T323] ? __cfi_handle_mm_fault+0x10/0x10 [ 84.986976][ T323] ? lock_vma_under_rcu+0x3eb/0x4d0 [ 84.992176][ T323] ? __this_cpu_preempt_check+0x13/0x20 [ 84.997811][ T323] ? xfd_validate_state+0x70/0x150 [ 85.002929][ T323] do_user_addr_fault+0x905/0x1050 [ 85.008158][ T323] exc_page_fault+0x51/0xb0 [ 85.012658][ T323] asm_exc_page_fault+0x27/0x30 [ 85.017508][ T323] RIP: 0033:0x7f774f9970e0 [ 85.021917][ T323] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 0d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 c0 3c 0a 00 0f 85 0f 02 00 00 4c 8d 25 b3 3c 0a 00 4c [ 85.041878][ T323] RSP: 002b:00007ffd5f039910 EFLAGS: 00010246 [ 85.047947][ T323] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001 [ 85.056190][ T323] RDX: 0000000000000001 RSI: 00007f774fa38110 RDI: 0000000000000000 [ 85.064202][ T323] RBP: 00007f774fa38110 R08: 00007ffd5f039707 R09: 0000000000000140 [ 85.072431][ T323] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 85.080396][ T323] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 85.088376][ T323] [ 85.092486][ T322] CPU: 0 PID: 322 Comm: syz-executor168 Not tainted 6.1.134-syzkaller-00015-g218e2bd24587 #0 [ 85.102674][ T322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 85.112840][ T322] Call Trace: [ 85.116123][ T322] [ 85.119051][ T322] __dump_stack+0x21/0x24 [ 85.123615][ T322] dump_stack_lvl+0xee/0x150 [ 85.128207][ T322] ? __cfi_dump_stack_lvl+0x8/0x8 [ 85.133266][ T322] ? resched_curr+0x10e/0x380 [ 85.137948][ T322] ? __cfi_resched_curr+0x10/0x10 [ 85.142974][ T322] dump_stack+0x15/0x24 [ 85.147135][ T322] should_fail_ex+0x3d4/0x520 [ 85.151835][ T322] should_fail_alloc_page+0x61/0x90 [ 85.157040][ T322] prepare_alloc_pages+0x148/0x5f0 [ 85.162169][ T322] ? __alloc_pages_bulk+0x9c0/0x9c0 [ 85.167365][ T322] __alloc_pages+0x115/0x3a0 [ 85.171956][ T322] ? __cfi___alloc_pages+0x10/0x10 [ 85.177063][ T322] ? __kasan_check_write+0x14/0x20 [ 85.182273][ T322] ? _raw_spin_lock+0x8e/0xe0 [ 85.187055][ T322] ? __cfi__raw_spin_lock+0x10/0x10 [ 85.192468][ T322] ? __this_cpu_preempt_check+0x13/0x20 [ 85.198035][ T322] __folio_alloc+0x12/0x40 [ 85.202471][ T322] wp_page_copy+0x280/0x15b0 [ 85.207137][ T322] ? __this_cpu_preempt_check+0x13/0x20 [ 85.212686][ T322] ? __cfi___perf_event_task_sched_in+0x10/0x10 [ 85.218928][ T322] ? fault_dirty_shared_page+0x310/0x310 [ 85.224568][ T322] ? _raw_spin_unlock+0x4c/0x70 [ 85.229447][ T322] ? finish_task_switch+0x16b/0x7b0 [ 85.234735][ T322] ? vm_normal_page+0x99/0x200 [ 85.239496][ T322] do_wp_page+0x9f2/0xfc0 [ 85.243846][ T322] handle_mm_fault+0x10e4/0x2640 [ 85.248787][ T322] ? __cfi_handle_mm_fault+0x10/0x10 [ 85.254156][ T322] ? lock_vma_under_rcu+0x3eb/0x4d0 [ 85.259361][ T322] ? __this_cpu_preempt_check+0x13/0x20 [ 85.264928][ T322] ? xfd_validate_state+0x70/0x150 [ 85.270042][ T322] do_user_addr_fault+0x905/0x1050 [ 85.275248][ T322] exc_page_fault+0x51/0xb0 [ 85.279845][ T322] asm_exc_page_fault+0x27/0x30 [ 85.284698][ T322] RIP: 0033:0x7f774f9970e0 [ 85.289147][ T322] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 0d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 c0 3c 0a 00 0f 85 0f 02 00 00 4c 8d 25 b3 3c 0a 00 4c [ 85.308777][ T322] RSP: 002b:00007ffd5f039910 EFLAGS: 00010246 [ 85.314840][ T322] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001 [ 85.322811][ T322] RDX: 0000000000000001 RSI: 00007f774fa38110 RDI: 0000000000000000 [pid 325] perf_event_open( [pid 321] <... close resumed>) = 0 [ 85.330867][ T322] RBP: 00007f774fa38110 R08: 00007ffd5f039707 R09: 0000000000000140 [ 85.338831][ T322] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 85.346813][ T322] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 85.355137][ T322] [ 85.358998][ T324] pagefault_out_of_memory: 5 callbacks suppressed [ 85.359011][ T324] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 85.373633][ T322] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [pid 322] exit_group(0) = ? [pid 322] +++ exited with 0 +++ [pid 324] exit_group(0) = ? [pid 324] +++ exited with 0 +++ [pid 323] exit_group(0) = ? [pid 296] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=324, si_uid=0, si_status=0, si_utime=0, si_stime=15} --- [pid 296] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555a75b650) = 327 ./strace-static-x86_64: Process 327 attached [pid 327] set_robust_list(0x55555a75b660, 24) = 0 [pid 327] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 327] setpgid(0, 0) = 0 [pid 327] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 327] write(3, "1000", 4) = 4 [pid 327] close(3) = 0 [pid 327] write(1, "executing program\n", 18executing program ) = 18 [pid 327] perf_event_open( [pid 294] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=322, si_uid=0, si_status=0, si_utime=0, si_stime=22} --- [pid 294] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555a75b650) = 328 ./strace-static-x86_64: Process 328 attached [pid 328] set_robust_list(0x55555a75b660, 24) = 0 [pid 328] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 328] setpgid(0, 0) = 0 [pid 328] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 328] write(3, "1000", 4) = 4 [pid 328] close(3) = 0 [pid 328] write(1, "executing program\n", 18executing program ) = 18 [pid 328] perf_event_open( [pid 321] exit_group(0) = ? [ 85.373737][ T325] CFI failure at __traceiter_percpu_alloc_percpu+0xb3/0x110 (target: 0xffffc90000ec79c8; expected type: 0x42e72b63) [ 85.381372][ T323] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 85.393433][ T325] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 85.407004][ T325] CPU: 1 PID: 325 Comm: syz-executor168 Not tainted 6.1.134-syzkaller-00015-g218e2bd24587 #0 [ 85.417266][ T325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 85.427531][ T325] RIP: 0010:__traceiter_percpu_alloc_percpu+0xb3/0x110 [ 85.434424][ T325] Code: d4 44 89 e9 4c 8b 45 c0 4c 8b 4d b8 8b 45 30 50 ff 75 28 ff 75 20 8b 45 18 50 ff 75 10 41 ba 9d d4 18 bd 45 03 54 24 fc 74 02 <0f> 0b 41 ff d4 48 83 c4 28 48 83 c3 18 48 89 d8 48 c1 e8 03 42 80 [ 85.454315][ T325] RSP: 0018:ffffc90000ec79c8 EFLAGS: 00010a17 [ 85.460423][ T325] RAX: 000000000000fa48 RBX: ffff88810bdbae10 RCX: 0000000000000000 [ 85.468412][ T325] RDX: 0000000000000000 RSI: ffffffff81a47214 RDI: ffffffff87053360 [ 85.476381][ T325] RBP: ffffc90000ec7a38 R08: 0000000000000008 R09: 0000000000000008 [ 85.484476][ T325] R10: 0000000062593ba9 R11: 1ffffffff0ee43fd R12: ffffffff81710320 [ 85.492454][ T325] R13: 0000000000000000 R14: ffff88810bdbae10 R15: dffffc0000000000 [ 85.500442][ T325] FS: 000055555a75b380(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 85.509431][ T325] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 85.516019][ T325] CR2: 000020000000018c CR3: 0000000126912000 CR4: 00000000003506a0 [ 85.523995][ T325] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 85.531966][ T325] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 85.539930][ T325] Call Trace: [ 85.543204][ T325] [ 85.546135][ T325] ? __alloc_percpu+0x24/0x30 [ 85.550818][ T325] ? __alloc_percpu+0x24/0x30 [ 85.555501][ T325] pcpu_alloc+0x1566/0x16b0 [ 85.560018][ T325] __alloc_percpu+0x24/0x30 [ 85.564616][ T325] perf_trace_event_init+0x227/0x960 [ 85.569990][ T325] ? __kasan_slab_alloc+0x72/0x80 [ 85.575024][ T325] perf_trace_init+0x240/0x2e0 [ 85.579823][ T325] perf_tp_event_init+0x8e/0x120 [ 85.584777][ T325] perf_try_init_event+0x15b/0x450 [ 85.589907][ T325] perf_event_alloc+0x10f7/0x1970 [ 85.594938][ T325] __se_sys_perf_event_open+0x6c5/0x1b80 [ 85.600586][ T325] ? ptrace_stop+0x6ce/0x8b0 [ 85.605207][ T325] ? __x64_sys_perf_event_open+0xd0/0xd0 [ 85.610836][ T325] ? do_user_addr_fault+0x9ac/0x1050 [ 85.616126][ T325] __x64_sys_perf_event_open+0xbf/0xd0 [ 85.621625][ T325] x64_sys_call+0x385/0x9a0 [ 85.626126][ T325] do_syscall_64+0x4c/0xa0 [ 85.630548][ T325] ? clear_bhb_loop+0x15/0x70 [ 85.635224][ T325] ? clear_bhb_loop+0x15/0x70 [ 85.639898][ T325] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 85.645879][ T325] RIP: 0033:0x7f774f9c8999 [ 85.650289][ T325] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 85.669887][ T325] RSP: 002b:00007ffd5f039968 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 85.678391][ T325] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f774f9c8999 [ 85.686365][ T325] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000180 [ 85.694334][ T325] RBP: 0000000000000000 R08: 0000000000000002 R09: 0000000000000140 [ 85.702354][ T325] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 85.710317][ T325] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 85.718293][ T325] [ 85.721314][ T325] Modules linked in: [ 85.725287][ T325] ---[ end trace 0000000000000000 ]--- [ 85.730766][ T325] RIP: 0010:__traceiter_percpu_alloc_percpu+0xb3/0x110 [ 85.737688][ T325] Code: d4 44 89 e9 4c 8b 45 c0 4c 8b 4d b8 8b 45 30 50 ff 75 28 ff 75 20 8b 45 18 50 ff 75 10 41 ba 9d d4 18 bd 45 03 54 24 fc 74 02 <0f> 0b 41 ff d4 48 83 c4 28 48 83 c3 18 48 89 d8 48 c1 e8 03 42 80 [ 85.757341][ T325] RSP: 0018:ffffc90000ec79c8 EFLAGS: 00010a17 [ 85.763442][ T325] RAX: 000000000000fa48 RBX: ffff88810bdbae10 RCX: 0000000000000000 [ 85.771442][ T325] RDX: 0000000000000000 RSI: ffffffff81a47214 RDI: ffffffff87053360 [ 85.779447][ T325] RBP: ffffc90000ec7a38 R08: 0000000000000008 R09: 0000000000000008 [ 85.787413][ T325] R10: 0000000062593ba9 R11: 1ffffffff0ee43fd R12: ffffffff81710320 [ 85.795425][ T325] R13: 0000000000000000 R14: ffff88810bdbae10 R15: dffffc0000000000 [ 85.803519][ T325] FS: 000055555a75b380(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 85.812484][ T325] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 85.819107][ T325] CR2: 000020000000018c CR3: 0000000126912000 CR4: 00000000003506a0 [ 85.827168][ T325] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 85.835326][ T325] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 85.843340][ T325] Kernel panic - not syncing: Fatal exception [ 85.849717][ T325] Kernel Offset: disabled [ 85.854104][ T325] Rebooting in 86400 seconds..