bisecting fixing commit since b86ee2b7ae42b6b37a918b66236608e2cc325f59
building syzkaller on a7dab6385c1d95547a88e22577fb56fbcd5c37eb
testing commit b86ee2b7ae42b6b37a918b66236608e2cc325f59
compiler: gcc version 8.4.1 20210217 (GCC)
kernel signature: d94863e506cf6c067525d5b145493fac8ea43651c7277a2274fdfb35d6277525
run #0: crashed: unregister_netdevice: waiting for DEV to become free
run #1: crashed: unregister_netdevice: waiting for DEV to become free
run #2: crashed: unregister_netdevice: waiting for DEV to become free
run #3: crashed: unregister_netdevice: waiting for DEV to become free
run #4: OK
run #5: crashed: WARNING in bpf_prog_select_runtime
run #6: crashed: WARNING in bpf_prog_select_runtime
run #7: crashed: WARNING in bpf_prog_select_runtime
run #8: crashed: unregister_netdevice: waiting for DEV to become free
run #9: crashed: WARNING in bpf_prog_select_runtime
run #10: crashed: unregister_netdevice: waiting for DEV to become free
run #11: crashed: WARNING in bpf_prog_select_runtime
run #12: crashed: unregister_netdevice: waiting for DEV to become free
run #13: crashed: unregister_netdevice: waiting for DEV to become free
run #14: OK
run #15: crashed: unregister_netdevice: waiting for DEV to become free
run #16: crashed: unregister_netdevice: waiting for DEV to become free
run #17: crashed: unregister_netdevice: waiting for DEV to become free
run #18: crashed: unregister_netdevice: waiting for DEV to become free
run #19: crashed: unregister_netdevice: waiting for DEV to become free
testing current HEAD 74766a973637a02c32c04c1c6496e114e4855239
testing commit 74766a973637a02c32c04c1c6496e114e4855239
compiler: gcc version 8.4.1 20210217 (GCC)
kernel signature: b28e2749851fec5ba3a991cf5a76a7c56496e6f43a193087c8aa00ea25d69a14
run #0: crashed: WARNING in bpf_prog_select_runtime
run #1: crashed: unregister_netdevice: waiting for DEV to become free
run #2: crashed: WARNING in bpf_prog_select_runtime
run #3: crashed: WARNING in bpf_prog_select_runtime
run #4: crashed: unregister_netdevice: waiting for DEV to become free
run #5: crashed: unregister_netdevice: waiting for DEV to become free
run #6: crashed: WARNING in bpf_prog_select_runtime
run #7: crashed: unregister_netdevice: waiting for DEV to become free
run #8: crashed: WARNING in bpf_prog_select_runtime
run #9: crashed: unregister_netdevice: waiting for DEV to become free
revisions tested: 2, total time: 21m26.775675363s (build: 14m50.841834715s, test: 6m13.146165752s)
the crash still happens on HEAD
commit msg: Linux 4.14.275
crash: unregister_netdevice: waiting for DEV to become free
IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
can: request_module (can-proto-0) failed.
can: request_module (can-proto-0) failed.
can: request_module (can-proto-0) failed.
unregister_netdevice: waiting for ip6gre0 to become free. Usage count = -1
FAULT_INJECTION: forcing a failure.
name fail_page_alloc, interval 1, probability 0, space 0, times 1
CPU: 0 PID: 8304 Comm: syz-executor420 Not tainted 4.14.275-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:17 [inline]
 dump_stack+0x14b/0x1e7 lib/dump_stack.c:58
 fail_dump lib/fault-inject.c:51 [inline]
 should_fail.cold.2+0x105/0x144 lib/fault-inject.c:149
 should_fail_alloc_page mm/page_alloc.c:2898 [inline]
 prepare_alloc_pages mm/page_alloc.c:4131 [inline]
 __alloc_pages_nodemask+0x249/0x2740 mm/page_alloc.c:4179
 alloc_pages_current+0xd6/0x1b0 mm/mempolicy.c:2113
 alloc_pages include/linux/gfp.h:520 [inline]
 split_large_page arch/x86/mm/pageattr.c:758 [inline]
 __change_page_attr arch/x86/mm/pageattr.c:1285 [inline]
 __change_page_attr_set_clr+0x3a1/0x20b0 arch/x86/mm/pageattr.c:1393
 cpa_process_alias arch/x86/mm/pageattr.c:1345 [inline]
 __change_page_attr_set_clr+0x18e4/0x20b0 arch/x86/mm/pageattr.c:1400
 change_page_attr_set_clr+0x277/0x990 arch/x86/mm/pageattr.c:1489
 change_page_attr_clear arch/x86/mm/pageattr.c:1532 [inline]
 set_memory_ro+0x66/0x80 arch/x86/mm/pageattr.c:1761
 bpf_prog_lock_ro include/linux/filter.h:612 [inline]
 bpf_prog_select_runtime+0x13f/0x5e0 kernel/bpf/core.c:1507
 bpf_migrate_filter net/core/filter.c:1067 [inline]
 bpf_prepare_filter net/core/filter.c:1115 [inline]
 bpf_prepare_filter+0x79f/0xfe0 net/core/filter.c:1081
 bpf_prog_create_from_user+0x19d/0x270 net/core/filter.c:1209
 seccomp_prepare_filter kernel/seccomp.c:398 [inline]
 seccomp_prepare_user_filter kernel/seccomp.c:433 [inline]
 seccomp_set_mode_filter kernel/seccomp.c:877 [inline]
 do_seccomp+0x55f/0x1a60 kernel/seccomp.c:950
 SYSC_seccomp kernel/seccomp.c:964 [inline]
 SyS_seccomp+0x9/0x10 kernel/seccomp.c:961
 do_syscall_64+0x1c7/0x5b0 arch/x86/entry/common.c:292
 entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x7f7a1aad4659
RSP: 002b:00007fff587ee958 EFLAGS: 00000246 ORIG_RAX: 000000000000013d
RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f7a1aad4659
RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000000000001
RBP: 00007fff587ee960 R08: 0000000000000002 R09: 00007f7a1a003231
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
------------[ cut here ]------------
WARNING: CPU: 1 PID: 8304 at include/linux/filter.h:612 bpf_check_tail_call kernel/bpf/core.c:1461 [inline]
WARNING: CPU: 1 PID: 8304 at include/linux/filter.h:612 bpf_prog_select_runtime+0x3a0/0x5e0 kernel/bpf/core.c:1514