./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4053262600

<...>
Warning: Permanently added '10.128.1.4' (ED25519) to the list of known hosts.
execve("./syz-executor4053262600", ["./syz-executor4053262600"], 0x7fff60143000 /* 10 vars */) = 0
brk(NULL)                               = 0x55558eec6000
brk(0x55558eec6d00)                     = 0x55558eec6d00
arch_prctl(ARCH_SET_FS, 0x55558eec6380) = 0
set_tid_address(0x55558eec6650)         = 5094
set_robust_list(0x55558eec6660, 24)     = 0
rseq(0x55558eec6ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor4053262600", 4096) = 28
getrandom("\x30\x59\x1d\x9a\x19\x85\x67\x05", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x55558eec6d00
brk(0x55558eee7d00)                     = 0x55558eee7d00
brk(0x55558eee8000)                     = 0x55558eee8000
mprotect(0x7fb37e21d000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
mkdir("/syzcgroup", 0777)               = 0
mkdir("/syzcgroup/unified", 0777)       = 0
mount("none", "/syzcgroup/unified", "cgroup2", 0, NULL) = 0
chmod("/syzcgroup/unified", 0777)       = 0
openat(AT_FDCWD, "/syzcgroup/unified/cgroup.subtree_control", O_WRONLY) = 3
write(3, "+cpu", 4)                     = 4
write(3, "+io", 3)                      = 3
write(3, "+pids", 5)                    = 5
close(3)                                = 0
mkdir("/syzcgroup/net", 0777)           = 0
mount("none", "/syzcgroup/net", "cgroup", 0, "net") = -1 EINVAL (Invalid argument)
mount("none", "/syzcgroup/net", "cgroup", 0, "net_prio") = 0
umount2("/syzcgroup/net", 0)            = 0
mount("none", "/syzcgroup/net", "cgroup", 0, "devices") = 0
umount2("/syzcgroup/net", 0)            = 0
mount("none", "/syzcgroup/net", "cgroup", 0, "blkio") = 0
umount2("/syzcgroup/net", 0)            = 0
mount("none", "/syzcgroup/net", "cgroup", 0, "freezer") = 0
umount2("/syzcgroup/net", 0)            = 0
[   73.825906][ T5094] cgroup: Unknown subsys name 'net'
mount("none", "/syzcgroup/net", "cgroup", 0, "net_prio,devices,blkio,freezer") = ? ERESTARTNOINTR (To be restarted)
mount("none", "/syzcgroup/net", "cgroup", 0, "net_prio,devices,blkio,freezer") = ? ERESTARTNOINTR (To be restarted)
mount("none", "/syzcgroup/net", "cgroup", 0, "net_prio,devices,blkio,freezer") = ? ERESTARTNOINTR (To be restarted)
mount("none", "/syzcgroup/net", "cgroup", 0, "net_prio,devices,blkio,freezer") = ? ERESTARTNOINTR (To be restarted)
mount("none", "/syzcgroup/net", "cgroup", 0, "net_prio,devices,blkio,freezer") = 0
chmod("/syzcgroup/net", 0777)           = 0
mkdir("/syzcgroup/cpu", 0777)           = 0
mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuset") = 0
umount2("/syzcgroup/cpu", 0)            = 0
mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuacct") = 0
umount2("/syzcgroup/cpu", 0)            = 0
mount("none", "/syzcgroup/cpu", "cgroup", 0, "hugetlb") = 0
umount2("/syzcgroup/cpu", 0)            = 0
mount("none", "/syzcgroup/cpu", "cgroup", 0, "rlimit") = -1 EINVAL (Invalid argument)
mount("none", "/syzcgroup/cpu", "cgroup", 0, "memory") = 0
umount2("/syzcgroup/cpu", 0)            = 0
mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuset,cpuacct,hugetlb,memory") = ? ERESTARTNOINTR (To be restarted)
[   73.997972][ T5094] cgroup: Unknown subsys name 'rlimit'
mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuset,cpuacct,hugetlb,memory") = ? ERESTARTNOINTR (To be restarted)
mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuset,cpuacct,hugetlb,memory") = ? ERESTARTNOINTR (To be restarted)
mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuset,cpuacct,hugetlb,memory") = ? ERESTARTNOINTR (To be restarted)
mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuset,cpuacct,hugetlb,memory") = 0
chmod("/syzcgroup/cpu", 0777)           = 0
openat(AT_FDCWD, "/syzcgroup/cpu/cgroup.clone_children", O_WRONLY|O_CLOEXEC) = 3
write(3, "1", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/syzcgroup/cpu/cpuset.memory_pressure_enabled", O_WRONLY|O_CLOEXEC) = 3
write(3, "1", 1)                        = 1
close(3)                                = 0
mkdir("./syzkaller.1mkRji", 0700)       = 0
chmod("./syzkaller.1mkRji", 0777)       = 0
chdir("./syzkaller.1mkRji")             = 0
unshare(CLONE_NEWPID)                   = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5095 attached
 <unfinished ...>
[pid  5095] set_robust_list(0x55558eec6660, 24 <unfinished ...>
[pid  5094] <... clone resumed>, child_tidptr=0x55558eec6650) = 5095
[pid  5095] <... set_robust_list resumed>) = 0
[pid  5095] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy)
[pid  5095] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5095] setsid()                    = 1
[pid  5095] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0
[pid  5095] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0
[pid  5095] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0
[pid  5095] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0
[pid  5095] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0
[pid  5095] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0
[pid  5095] unshare(CLONE_NEWNS)        = 0
[pid  5095] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0
[pid  5095] unshare(CLONE_NEWIPC)       = 0
[pid  5095] unshare(CLONE_NEWCGROUP)    = 0
[pid  5095] unshare(CLONE_NEWUTS)       = 0
[pid  5095] unshare(CLONE_SYSVSEM)      = 0
[pid  5095] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5095] write(3, "16777216", 8)     = 8
[pid  5095] close(3)                    = 0
[pid  5095] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3
[pid  5095] write(3, "536870912", 9)    = 9
[pid  5095] close(3)                    = 0
[pid  5095] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5095] write(3, "1024", 4)         = 4
[pid  5095] close(3)                    = 0
[pid  5095] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5095] write(3, "8192", 4)         = 4
[pid  5095] close(3)                    = 0
[pid  5095] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5095] write(3, "1024", 4)         = 4
[pid  5095] close(3)                    = 0
[pid  5095] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3
[pid  5095] write(3, "1024", 4)         = 4
[pid  5095] close(3)                    = 0
[pid  5095] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3
[pid  5095] write(3, "1024 1048576 500 1024", 21) = 21
[pid  5095] close(3)                    = 0
[pid  5095] getpid()                    = 1
[pid  5095] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5095] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5095] unshare(CLONE_NEWNET)       = 0
[pid  5095] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3
[pid  5095] write(3, "0 65535", 7)      = 7
[pid  5095] close(3)                    = 0
[pid  5095] mkdir("/dev/binderfs", 0777) = 0
[pid  5095] mount("binder", "/dev/binderfs", "binder", 0, NULL) = 0
[pid  5095] getpid()                    = 1
[pid  5095] mkdir("/syzcgroup/unified/syz0", 0777) = 0
[pid  5095] openat(AT_FDCWD, "/syzcgroup/unified/syz0/pids.max", O_WRONLY|O_CLOEXEC) = 3
[pid  5095] write(3, "32", 2)           = 2
[pid  5095] close(3)                    = 0
[pid  5095] openat(AT_FDCWD, "/syzcgroup/unified/syz0/cgroup.procs", O_WRONLY|O_CLOEXEC) = 3
[pid  5095] write(3, "1", 1)            = 1
[pid  5095] close(3)                    = 0
[pid  5095] mkdir("/syzcgroup/cpu/syz0", 0777) = 0
[pid  5095] openat(AT_FDCWD, "/syzcgroup/cpu/syz0/cgroup.procs", O_WRONLY|O_CLOEXEC) = 3
[pid  5095] write(3, "1", 1)            = 1
[pid  5095] close(3)                    = 0
[pid  5095] openat(AT_FDCWD, "/syzcgroup/cpu/syz0/memory.soft_limit_in_bytes", O_WRONLY|O_CLOEXEC) = 3
[pid  5095] write(3, "313524224", 9)    = 9
[pid  5095] close(3)                    = 0
[pid  5095] openat(AT_FDCWD, "/syzcgroup/cpu/syz0/memory.limit_in_bytes", O_WRONLY|O_CLOEXEC) = 3
[pid  5095] write(3, "314572800", 9)    = 9
[pid  5095] close(3)                    = 0
[pid  5095] mkdir("/syzcgroup/net/syz0", 0777) = 0
[pid  5095] openat(AT_FDCWD, "/syzcgroup/net/syz0/cgroup.procs", O_WRONLY|O_CLOEXEC) = 3
[pid  5095] write(3, "1", 1)            = 1
[pid  5095] close(3)                    = 0
[pid  5095] mkdir("./0", 0777)          = 0
[pid  5095] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5098 attached
, child_tidptr=0x55558eec6650) = 2
[pid  5098] set_robust_list(0x55558eec6660, 24) = 0
[pid  5098] chdir("./0")                = 0
[pid  5098] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5098] setpgid(0, 0)               = 0
[pid  5098] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid  5098] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid  5098] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid  5098] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5098] write(3, "1000", 4)         = 4
[pid  5098] close(3)                    = 0
[pid  5098] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5098] write(1, "executing program\n", 18) = 18
[   75.770964][ T5098] ------------[ cut here ]------------
[   75.776469][ T5098] UBSAN: shift-out-of-bounds in mm/vmscan.c:4715:21
[   75.783151][ T5098] shift exponent -1 is negative
[   75.788601][ T5098] CPU: 1 PID: 5098 Comm: syz-executor405 Not tainted 6.10.0-rc1-next-20240528-syzkaller #0
[   75.798622][ T5098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[   75.808690][ T5098] Call Trace:
[   75.811972][ T5098]  <TASK>
[   75.814902][ T5098]  dump_stack_lvl+0x241/0x360
[   75.819605][ T5098]  ? __pfx_dump_stack_lvl+0x10/0x10
[   75.824801][ T5098]  ? __pfx__printk+0x10/0x10
[   75.829403][ T5098]  ? __lock_acquire+0x1346/0x1fd0
[   75.834444][ T5098]  __ubsan_handle_shift_out_of_bounds+0x3c8/0x420
[   75.840886][ T5098]  try_to_shrink_lruvec+0xa99/0xbb0
[   75.846107][ T5098]  ? __pfx_try_to_shrink_lruvec+0x10/0x10
[   75.851829][ T5098]  ? blk_start_plug+0x70/0x1b0
[   75.856600][ T5098]  shrink_lruvec+0x554/0x3070
[   75.861280][ T5098]  ? __lock_acquire+0x1346/0x1fd0
[   75.866319][ T5098]  ? mark_lock+0x9a/0x350
[   75.870654][ T5098]  ? mark_lock+0x9a/0x350
[   75.874988][ T5098]  ? __lock_acquire+0x1346/0x1fd0
[   75.880018][ T5098]  ? __pfx_shrink_lruvec+0x10/0x10
[   75.885163][ T5098]  ? __pfx___might_resched+0x10/0x10
[   75.890452][ T5098]  ? mem_cgroup_iter+0x3a/0x560
[   75.895315][ T5098]  ? mem_cgroup_iter+0x3e9/0x560
[   75.900253][ T5098]  ? mem_cgroup_iter+0x3a/0x560
[   75.905106][ T5098]  shrink_node+0xb17/0x4150
[   75.909635][ T5098]  ? __pfx_shrink_node+0x10/0x10
[   75.914574][ T5098]  ? __pfx_queue_work_on+0x10/0x10
[   75.919685][ T5098]  ? do_raw_spin_unlock+0x13c/0x8b0
[   75.924884][ T5098]  ? _raw_spin_unlock+0x28/0x50
[   75.929738][ T5098]  do_try_to_free_pages+0x789/0x1cb0
[   75.935046][ T5098]  ? __pfx_do_try_to_free_pages+0x10/0x10
[   75.940877][ T5098]  try_to_free_mem_cgroup_pages+0x48f/0xb10
[   75.946782][ T5098]  ? do_raw_spin_unlock+0x13c/0x8b0
[   75.951988][ T5098]  ? __pfx_try_to_free_mem_cgroup_pages+0x10/0x10
[   75.958418][ T5098]  ? cgroup_file_notify+0x111/0x190
[   75.963629][ T5098]  try_charge_memcg+0x704/0x1850
[   75.968584][ T5098]  ? __pfx_try_charge_memcg+0x10/0x10
[   75.973957][ T5098]  ? get_mem_cgroup_from_objcg+0x19/0x150
[   75.979681][ T5098]  ? __pfx_lock_release+0x10/0x10
[   75.984715][ T5098]  ? memcg_account_kmem+0x1bc/0x1e0
[   75.989969][ T5098]  ? get_mem_cgroup_from_objcg+0x19/0x150
[   75.995733][ T5098]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[   76.001561][ T5098]  __memcg_kmem_charge_page+0xe2/0x250
[   76.007051][ T5098]  __alloc_pages_noprof+0x28c/0x6c0
[   76.012253][ T5098]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   76.017983][ T5098]  ? bpf_map_area_alloc+0xfc/0x120
[   76.023101][ T5098]  bpf_ringbuf_alloc+0xcb/0x420
[   76.027955][ T5098]  ringbuf_map_alloc+0x1d7/0x2f0
[   76.032900][ T5098]  map_create+0x90c/0x1200
[   76.037323][ T5098]  ? security_bpf+0x87/0xb0
[   76.041830][ T5098]  __sys_bpf+0x6d1/0x810
[   76.046078][ T5098]  ? __pfx___sys_bpf+0x10/0x10
[   76.050855][ T5098]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   76.057202][ T5098]  ? exc_page_fault+0x590/0x8c0
[   76.062062][ T5098]  __x64_sys_bpf+0x7c/0x90
[   76.066491][ T5098]  do_syscall_64+0xf3/0x230
[   76.071024][ T5098]  ? clear_bhb_loop+0x35/0x90
[   76.075736][ T5098]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.081636][ T5098] RIP: 0033:0x7fb37e1a9a19
[   76.086058][ T5098] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   76.105669][ T5098] RSP: 002b:00007ffe988e0e78 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   76.114083][ T5098] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fb37e1a9a19
[   76.122056][ T5098] RDX: 0000000000000048 RSI: 00000000200002c0 RDI: 0000000000000000
[   76.130031][ T5098] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   76.137998][ T5098] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb37e1f3036
[   76.145973][ T5098] R13: 00007ffe988e0eb0 R14: 00007ffe988e0ef0 R15: 0000000000000000
[   76.153954][ T5098]  </TASK>
[   76.157801][ T5098] ---[ end trace ]---
[   76.162083][ T5098] Kernel panic - not syncing: UBSAN: panic_on_warn set ...
[   76.169311][ T5098] CPU: 1 PID: 5098 Comm: syz-executor405 Not tainted 6.10.0-rc1-next-20240528-syzkaller #0
[   76.179295][ T5098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[   76.189352][ T5098] Call Trace:
[   76.192660][ T5098]  <TASK>
[   76.195590][ T5098]  dump_stack_lvl+0x241/0x360
[   76.200374][ T5098]  ? __pfx_dump_stack_lvl+0x10/0x10
[   76.205605][ T5098]  ? __pfx__printk+0x10/0x10
[   76.210210][ T5098]  ? vprintk_emit+0x631/0x770
[   76.214903][ T5098]  ? vscnprintf+0x5d/0x90
[   76.219242][ T5098]  panic+0x349/0x860
[   76.223153][ T5098]  ? check_panic_on_warn+0x21/0xb0
[   76.228276][ T5098]  ? __pfx_panic+0x10/0x10
[   76.232701][ T5098]  ? _printk+0xd5/0x120
[   76.236904][ T5098]  ? __pfx__printk+0x10/0x10
[   76.241536][ T5098]  check_panic_on_warn+0x86/0xb0
[   76.246487][ T5098]  __ubsan_handle_shift_out_of_bounds+0x3e7/0x420
[   76.252927][ T5098]  try_to_shrink_lruvec+0xa99/0xbb0
[   76.258141][ T5098]  ? __pfx_try_to_shrink_lruvec+0x10/0x10
[   76.263865][ T5098]  ? blk_start_plug+0x70/0x1b0
[   76.268655][ T5098]  shrink_lruvec+0x554/0x3070
[   76.273342][ T5098]  ? __lock_acquire+0x1346/0x1fd0
[   76.278381][ T5098]  ? mark_lock+0x9a/0x350
[   76.282723][ T5098]  ? mark_lock+0x9a/0x350
[   76.287064][ T5098]  ? __lock_acquire+0x1346/0x1fd0
[   76.292099][ T5098]  ? __pfx_shrink_lruvec+0x10/0x10
[   76.297244][ T5098]  ? __pfx___might_resched+0x10/0x10
[   76.302539][ T5098]  ? mem_cgroup_iter+0x3a/0x560
[   76.307402][ T5098]  ? mem_cgroup_iter+0x3e9/0x560
[   76.312342][ T5098]  ? mem_cgroup_iter+0x3a/0x560
[   76.317207][ T5098]  shrink_node+0xb17/0x4150
[   76.321831][ T5098]  ? __pfx_shrink_node+0x10/0x10
[   76.326773][ T5098]  ? __pfx_queue_work_on+0x10/0x10
[   76.331903][ T5098]  ? do_raw_spin_unlock+0x13c/0x8b0
[   76.337109][ T5098]  ? _raw_spin_unlock+0x28/0x50
[   76.342008][ T5098]  do_try_to_free_pages+0x789/0x1cb0
[   76.347335][ T5098]  ? __pfx_do_try_to_free_pages+0x10/0x10
[   76.353082][ T5098]  try_to_free_mem_cgroup_pages+0x48f/0xb10
[   76.359014][ T5098]  ? do_raw_spin_unlock+0x13c/0x8b0
[   76.364226][ T5098]  ? __pfx_try_to_free_mem_cgroup_pages+0x10/0x10
[   76.370695][ T5098]  ? cgroup_file_notify+0x111/0x190
[   76.375996][ T5098]  try_charge_memcg+0x704/0x1850
[   76.380955][ T5098]  ? __pfx_try_charge_memcg+0x10/0x10
[   76.386348][ T5098]  ? get_mem_cgroup_from_objcg+0x19/0x150
[   76.392090][ T5098]  ? __pfx_lock_release+0x10/0x10
[   76.397253][ T5098]  ? memcg_account_kmem+0x1bc/0x1e0
[   76.402463][ T5098]  ? get_mem_cgroup_from_objcg+0x19/0x150
[   76.408192][ T5098]  ? get_mem_cgroup_from_objcg+0x13b/0x150
[   76.414024][ T5098]  __memcg_kmem_charge_page+0xe2/0x250
[   76.419510][ T5098]  __alloc_pages_noprof+0x28c/0x6c0
[   76.424714][ T5098]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   76.430452][ T5098]  ? bpf_map_area_alloc+0xfc/0x120
[   76.435574][ T5098]  bpf_ringbuf_alloc+0xcb/0x420
[   76.440436][ T5098]  ringbuf_map_alloc+0x1d7/0x2f0
[   76.445399][ T5098]  map_create+0x90c/0x1200
[   76.449821][ T5098]  ? security_bpf+0x87/0xb0
[   76.454330][ T5098]  __sys_bpf+0x6d1/0x810
[   76.458574][ T5098]  ? __pfx___sys_bpf+0x10/0x10
[   76.463357][ T5098]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   76.469708][ T5098]  ? exc_page_fault+0x590/0x8c0
[   76.474578][ T5098]  __x64_sys_bpf+0x7c/0x90
[   76.479014][ T5098]  do_syscall_64+0xf3/0x230
[   76.483532][ T5098]  ? clear_bhb_loop+0x35/0x90
[   76.488217][ T5098]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.494119][ T5098] RIP: 0033:0x7fb37e1a9a19
[   76.498542][ T5098] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   76.518168][ T5098] RSP: 002b:00007ffe988e0e78 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   76.526598][ T5098] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fb37e1a9a19
[   76.534587][ T5098] RDX: 0000000000000048 RSI: 00000000200002c0 RDI: 0000000000000000
[   76.542567][ T5098] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   76.550545][ T5098] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb37e1f3036
[   76.558521][ T5098] R13: 00007ffe988e0eb0 R14: 00007ffe988e0ef0 R15: 0000000000000000
[   76.566615][ T5098]  </TASK>
[   76.569974][ T5098] Kernel Offset: disabled
[   76.574340][ T5098] Rebooting in 86400 seconds..