[ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 syzkaller login: [ 20.041593] random: crng init done [ 20.045358] random: 7 urandom warning(s) missed due to ratelimiting [ 27.718773] IPVS: ftp: loaded support on port[0] = 21 [ 28.143916] can: request_module (can-proto-0) failed. [ 29.160863] can: request_module (can-proto-0) failed. Warning: Permanently added '10.128.15.204' (ECDSA) to the list of known hosts. 2021/06/25 18:51:50 parsed 1 programs 2021/06/25 18:51:50 executed programs: 0 [ 36.816633] IPVS: ftp: loaded support on port[0] = 21 [ 36.821588] IPVS: ftp: loaded support on port[0] = 21 [ 36.855154] IPVS: ftp: loaded support on port[0] = 21 [ 36.890701] IPVS: ftp: loaded support on port[0] = 21 [ 36.894065] IPVS: ftp: loaded support on port[0] = 21 [ 36.912606] IPVS: ftp: loaded support on port[0] = 21 [ 37.043716] chnl_net:caif_netlink_parms(): no params data found [ 37.152301] chnl_net:caif_netlink_parms(): no params data found [ 37.163758] chnl_net:caif_netlink_parms(): no params data found [ 37.261049] chnl_net:caif_netlink_parms(): no params data found [ 37.316649] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.324483] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.332736] device bridge_slave_0 entered promiscuous mode [ 37.354752] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.361874] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.370013] device bridge_slave_0 entered promiscuous mode [ 37.384400] chnl_net:caif_netlink_parms(): no params data found [ 37.393392] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.400878] bridge0: port 2(bridge_slave_1) entered disabled state [ 37.408203] device bridge_slave_1 entered promiscuous mode [ 37.426857] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.435433] bridge0: port 2(bridge_slave_1) entered disabled state [ 37.443217] device bridge_slave_1 entered promiscuous mode [ 37.449833] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.456267] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.463748] device bridge_slave_0 entered promiscuous mode [ 37.490420] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.497011] bridge0: port 2(bridge_slave_1) entered disabled state [ 37.505370] device bridge_slave_1 entered promiscuous mode [ 37.514833] chnl_net:caif_netlink_parms(): no params data found [ 37.528883] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.535282] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.543507] device bridge_slave_0 entered promiscuous mode [ 37.570667] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 37.578619] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.585029] bridge0: port 2(bridge_slave_1) entered disabled state [ 37.593597] device bridge_slave_1 entered promiscuous mode [ 37.604245] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 37.613666] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 37.633884] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 37.658882] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 37.666632] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.674358] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.681796] device bridge_slave_0 entered promiscuous mode [ 37.693030] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.700700] bridge0: port 2(bridge_slave_1) entered disabled state [ 37.709101] device bridge_slave_1 entered promiscuous mode [ 37.724429] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 37.733434] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 37.741901] team0: Port device team_slave_0 added [ 37.747902] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 37.767511] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 37.775163] team0: Port device team_slave_0 added [ 37.782374] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 37.791115] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 37.799295] team0: Port device team_slave_1 added [ 37.816545] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 37.825275] team0: Port device team_slave_1 added [ 37.831428] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 37.842746] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 37.850517] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 37.858547] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 37.873285] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 37.881566] team0: Port device team_slave_0 added [ 37.887635] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 37.904631] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 37.912792] team0: Port device team_slave_0 added [ 37.923121] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.931239] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.939060] device bridge_slave_0 entered promiscuous mode [ 37.945503] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 37.953265] team0: Port device team_slave_1 added [ 37.959882] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 37.972454] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 37.980524] team0: Port device team_slave_1 added [ 38.019704] device hsr_slave_0 entered promiscuous mode [ 38.077336] device hsr_slave_1 entered promiscuous mode [ 38.127181] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.133557] bridge0: port 2(bridge_slave_1) entered disabled state [ 38.141589] device bridge_slave_1 entered promiscuous mode [ 38.148545] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 38.199302] device hsr_slave_0 entered promiscuous mode [ 38.247043] device hsr_slave_1 entered promiscuous mode [ 38.289477] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 38.301233] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 38.318387] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 38.326260] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 38.334161] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 38.342069] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 38.350019] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 38.357556] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 38.364986] team0: Port device team_slave_0 added [ 38.370803] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 38.379004] team0: Port device team_slave_1 added [ 38.394820] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 38.416373] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 38.433217] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 38.444154] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 38.480265] device hsr_slave_0 entered promiscuous mode [ 38.517210] device hsr_slave_1 entered promiscuous mode [ 38.577729] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 38.587449] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 38.595077] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 38.639051] device hsr_slave_0 entered promiscuous mode [ 38.676926] device hsr_slave_1 entered promiscuous mode [ 38.721947] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 38.729119] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 38.756020] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 38.789537] device hsr_slave_0 entered promiscuous mode [ 38.826952] device hsr_slave_1 entered promiscuous mode [ 38.877328] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 38.884412] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 38.892342] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 38.900309] team0: Port device team_slave_0 added [ 38.911708] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 38.923465] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 38.933516] team0: Port device team_slave_1 added [ 38.941066] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 38.952540] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 38.974872] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 38.983208] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 39.048373] device hsr_slave_0 entered promiscuous mode [ 39.096756] device hsr_slave_1 entered promiscuous mode [ 39.149334] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 39.158884] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 39.194783] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 39.218616] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.229841] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.244438] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.257448] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.268337] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.276487] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 39.284640] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 39.294723] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 39.302994] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 39.310677] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 39.318934] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 39.327738] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 39.335518] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 39.344428] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 39.353985] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 39.363456] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 39.372088] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 39.379450] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 39.386769] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 39.393759] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 39.401257] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 39.408739] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 39.423175] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 39.431680] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 39.439297] 8021q: adding VLAN 0 to HW filter on device team0 [ 39.446411] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 39.452482] 8021q: adding VLAN 0 to HW filter on device team0 [ 39.460101] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 39.466933] 8021q: adding VLAN 0 to HW filter on device team0 [ 39.474409] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 39.483796] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 39.492036] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 39.499276] 8021q: adding VLAN 0 to HW filter on device team0 [ 39.506970] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 39.513059] 8021q: adding VLAN 0 to HW filter on device team0 [ 39.521527] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 39.532063] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 39.541565] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 39.549047] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 39.557378] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 39.565048] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.571635] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.578787] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 39.587479] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 39.595295] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.601691] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.608523] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 39.616408] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 39.623929] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.630311] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.639634] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 39.650337] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 39.659695] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 39.668111] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 39.675404] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 39.684861] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 39.692321] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 39.701054] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 39.709206] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.715528] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.722801] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 39.731161] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 39.738965] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.745314] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.752313] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 39.760786] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 39.768495] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.774978] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.782920] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 39.792831] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 39.801411] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 39.813027] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.820270] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 39.827661] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 39.835385] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 39.843049] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.849645] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.857347] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 39.864994] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 39.873149] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 39.880784] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.887192] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.894727] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 39.904583] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 39.916101] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 39.923353] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 39.931691] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 39.942264] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 39.950157] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.956701] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.966647] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 39.974385] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 39.984339] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.990782] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.997874] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 40.007175] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 40.016570] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 40.024329] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 40.032344] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 40.040477] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 40.048656] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 40.059162] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 40.067019] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 40.074955] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 40.082976] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 40.091131] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 40.099550] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 40.107568] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 40.117036] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 40.125473] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 40.138273] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 40.147885] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 40.154840] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 40.163481] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 40.171510] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 40.180401] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 40.188987] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 40.197114] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.204476] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 40.212558] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.220937] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 40.229144] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 40.237359] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 40.245467] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 40.254785] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 40.262339] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 40.269577] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 40.277622] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 40.284908] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 40.291971] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 40.300209] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 40.308304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 40.316456] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 40.324027] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 40.332210] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 40.342140] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 40.350407] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 40.358725] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 40.364791] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 40.374105] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 40.382477] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 40.388967] 8021q: adding VLAN 0 to HW filter on device team0 [ 40.395212] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 40.404508] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 40.412116] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 40.420484] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 40.428318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 40.436558] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 40.444070] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.452853] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 40.463293] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 40.473543] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 40.485099] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 40.492617] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 40.503715] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 40.511511] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 40.521812] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.529505] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 40.537380] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.546214] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 40.556208] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 40.563775] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 40.571129] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 40.579356] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 40.592624] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 40.600462] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 40.608167] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 40.616063] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 40.623556] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 40.631584] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 40.640369] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 40.648480] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 40.658236] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 40.667765] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 40.674752] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 40.682147] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 40.689901] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.697545] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 40.705962] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 40.713782] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.720228] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.727455] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 40.734997] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.742961] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 40.750596] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.759271] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 40.770826] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 40.780140] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 40.788582] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 40.800880] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 40.807038] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 40.814753] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 40.821989] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 40.832796] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 40.839741] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 40.848638] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.857980] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 40.865586] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 40.873277] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.884816] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 40.892694] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 40.902077] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 40.912824] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 40.920908] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 40.929250] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 40.937001] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.943362] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.951699] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 40.961278] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 40.969685] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 40.976547] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 40.993325] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 41.017824] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 41.046244] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 41.059095] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 41.087712] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 41.101745] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 41.103297] FAULT_INJECTION: forcing a failure. [ 41.103297] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 41.122635] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 41.132145] FAULT_INJECTION: forcing a failure. [ 41.132145] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 41.136673] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 41.145046] FAULT_INJECTION: forcing a failure. [ 41.145046] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 41.155902] CPU: 1 PID: 6525 Comm: syz-executor.2 Not tainted 4.19.195-syzkaller #0 [ 41.170781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 41.180210] Call Trace: [ 41.182791] dump_stack+0x123/0x171 [ 41.186415] should_fail.cold.4+0x5/0xa [ 41.190374] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 41.195457] ? __lock_acquire+0x2698/0x4950 [ 41.199757] __alloc_pages_nodemask+0x1d5/0x710 [ 41.204416] ? __alloc_pages_slowpath+0x25c0/0x25c0 [ 41.209441] alloc_pages_current+0xd6/0x1b0 [ 41.213759] skb_page_frag_refill+0x20b/0x400 [ 41.218259] sk_page_frag_refill+0x46/0x1d0 [ 41.222715] sk_alloc_sg+0x108/0x7d0 [ 41.226502] ? lockdep_hardirqs_on+0x421/0x5c0 [ 41.231515] ? lock_sock_nested+0x82/0x100 [ 41.235755] alloc_encrypted_sg+0x81/0x100 [ 41.240053] tls_sw_sendpage+0x502/0xc00 [ 41.244134] ? tls_sw_sendmsg+0x1010/0x1010 [ 41.248446] ? pipe_lock+0x4f/0x60 [ 41.251997] inet_sendpage+0x122/0x600 [ 41.255887] ? kernel_sendpage+0xd0/0xd0 [ 41.260032] kernel_sendpage+0x60/0xd0 [ 41.263897] ? pipe_lock+0x4f/0x60 [ 41.267501] sock_sendpage+0x6d/0xd0 [ 41.271208] pipe_to_sendpage+0x212/0x430 [ 41.275342] ? generic_pipe_buf_nosteal+0x10/0x10 [ 41.280166] __splice_from_pipe+0x2cb/0x720 [ 41.284465] ? generic_pipe_buf_nosteal+0x10/0x10 [ 41.289286] ? generic_pipe_buf_nosteal+0x10/0x10 [ 41.294540] splice_from_pipe+0xbb/0x120 [ 41.298583] ? splice_shrink_spd+0xa0/0xa0 [ 41.302809] ? rw_verify_area+0xb8/0x2b0 [ 41.306859] generic_splice_sendpage+0x10/0x20 [ 41.311418] do_splice+0xa25/0x12b0 [ 41.315063] ? opipe_prep.part.13+0x320/0x320 [ 41.319555] ? __fget_light+0x174/0x1e0 [ 41.323535] __x64_sys_splice+0x248/0x300 [ 41.327762] do_syscall_64+0xd0/0x4e0 [ 41.331563] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 41.336747] RIP: 0033:0x460b89 [ 41.339917] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 41.358983] RSP: 002b:00007f8cf5e381a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 41.366677] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 0000000000460b89 [ 41.373936] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 41.381285] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 41.388875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 41.396146] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007f8cf5e386bc [ 41.416018] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 41.424128] FAULT_INJECTION: forcing a failure. [ 41.424128] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 41.431547] CPU: 1 PID: 6531 Comm: syz-executor.5 Not tainted 4.19.195-syzkaller #0 [ 41.443885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 41.453387] Call Trace: [ 41.455983] dump_stack+0x123/0x171 [ 41.459676] should_fail.cold.4+0x5/0xa [ 41.463643] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 41.468756] ? __lock_acquire+0x792/0x4950 [ 41.472993] __alloc_pages_nodemask+0x1d5/0x710 [ 41.477669] ? __alloc_pages_slowpath+0x25c0/0x25c0 [ 41.482690] ? __lock_acquire+0x792/0x4950 [ 41.486928] ? __lock_acquire+0x792/0x4950 [ 41.491250] alloc_pages_current+0xd6/0x1b0 [ 41.495563] skb_page_frag_refill+0x20b/0x400 [ 41.500130] sk_page_frag_refill+0x46/0x1d0 [ 41.504644] sk_alloc_sg+0x108/0x7d0 [ 41.508362] ? lockdep_hardirqs_on+0x421/0x5c0 [ 41.512947] ? lock_sock_nested+0x82/0x100 [ 41.517171] alloc_encrypted_sg+0x81/0x100 [ 41.521407] tls_sw_sendpage+0x502/0xc00 [ 41.525454] ? tls_sw_sendmsg+0x1010/0x1010 [ 41.529799] ? pipe_lock+0x4f/0x60 [ 41.533324] inet_sendpage+0x122/0x600 [ 41.537203] ? kernel_sendpage+0xd0/0xd0 [ 41.541255] kernel_sendpage+0x60/0xd0 [ 41.545130] ? pipe_lock+0x4f/0x60 [ 41.548654] sock_sendpage+0x6d/0xd0 [ 41.552355] pipe_to_sendpage+0x212/0x430 [ 41.556508] ? generic_pipe_buf_nosteal+0x10/0x10 [ 41.561354] __splice_from_pipe+0x2cb/0x720 [ 41.565926] ? generic_pipe_buf_nosteal+0x10/0x10 [ 41.570779] ? generic_pipe_buf_nosteal+0x10/0x10 [ 41.575620] splice_from_pipe+0xbb/0x120 [ 41.579693] ? splice_shrink_spd+0xa0/0xa0 [ 41.584144] ? rw_verify_area+0xb8/0x2b0 [ 41.588210] generic_splice_sendpage+0x10/0x20 [ 41.592779] do_splice+0xa25/0x12b0 [ 41.596433] ? opipe_prep.part.13+0x320/0x320 [ 41.600935] ? __fget_light+0x174/0x1e0 [ 41.604897] __x64_sys_splice+0x248/0x300 [ 41.609120] do_syscall_64+0xd0/0x4e0 [ 41.612904] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 41.618076] RIP: 0033:0x460b89 [ 41.621254] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 41.640235] RSP: 002b:00007f32ae5861a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 41.647943] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 0000000000460b89 [ 41.655200] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 41.662455] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 41.669728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 41.676998] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007f32ae5866bc [ 41.684271] CPU: 0 PID: 6548 Comm: syz-executor.1 Not tainted 4.19.195-syzkaller #0 [ 41.692080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 41.701318] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 41.701437] Call Trace: [ 41.710610] dump_stack+0x123/0x171 [ 41.714324] should_fail.cold.4+0x5/0xa [ 41.718295] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 41.723517] ? __lock_acquire+0x792/0x4950 [ 41.728021] __alloc_pages_nodemask+0x1d5/0x710 [ 41.732899] ? __alloc_pages_slowpath+0x25c0/0x25c0 [ 41.738091] ? __lock_acquire+0x792/0x4950 [ 41.742412] ? __lock_acquire+0x792/0x4950 [ 41.746754] alloc_pages_current+0xd6/0x1b0 [ 41.752129] skb_page_frag_refill+0x20b/0x400 [ 41.756990] sk_page_frag_refill+0x46/0x1d0 [ 41.761495] sk_alloc_sg+0x108/0x7d0 [ 41.765300] ? lockdep_hardirqs_on+0x421/0x5c0 [ 41.769896] ? lock_sock_nested+0x82/0x100 [ 41.774129] alloc_encrypted_sg+0x81/0x100 [ 41.778366] tls_sw_sendpage+0x502/0xc00 [ 41.782420] ? tls_sw_sendmsg+0x1010/0x1010 [ 41.786729] ? pipe_lock+0x4f/0x60 [ 41.790282] inet_sendpage+0x122/0x600 [ 41.794157] ? kernel_sendpage+0xd0/0xd0 [ 41.798199] kernel_sendpage+0x60/0xd0 [ 41.802375] ? pipe_lock+0x4f/0x60 [ 41.806728] sock_sendpage+0x6d/0xd0 [ 41.810690] pipe_to_sendpage+0x212/0x430 [ 41.815910] ? generic_pipe_buf_nosteal+0x10/0x10 [ 41.819198] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 41.821024] __splice_from_pipe+0x2cb/0x720 [ 41.832543] ? generic_pipe_buf_nosteal+0x10/0x10 [ 41.837419] ? generic_pipe_buf_nosteal+0x10/0x10 [ 41.842259] splice_from_pipe+0xbb/0x120 [ 41.846320] ? splice_shrink_spd+0xa0/0xa0 [ 41.850560] ? rw_verify_area+0xb8/0x2b0 [ 41.854901] generic_splice_sendpage+0x10/0x20 [ 41.859486] do_splice+0xa25/0x12b0 [ 41.863384] ? opipe_prep.part.13+0x320/0x320 [ 41.868351] ? __fget_light+0x174/0x1e0 [ 41.872331] __x64_sys_splice+0x248/0x300 [ 41.877440] do_syscall_64+0xd0/0x4e0 [ 41.881452] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 41.886637] RIP: 0033:0x460b89 [ 41.889828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 41.909015] RSP: 002b:00007f667dab91a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 41.916735] RAX: ffffffffffffffda RBX: 000000000052c050 RCX: 0000000000460b89 [ 41.924369] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 41.931621] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 2021/06/25 18:51:55 executed programs: 6 [ 41.938879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 41.946240] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007f667dab96bc [ 41.953710] CPU: 1 PID: 6528 Comm: syz-executor.0 Not tainted 4.19.195-syzkaller #0 [ 41.961517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 41.972203] Call Trace: [ 41.974884] dump_stack+0x123/0x171 [ 41.978807] should_fail.cold.4+0x5/0xa [ 41.983503] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 41.988709] ? __lock_acquire+0x792/0x4950 [ 41.993127] __alloc_pages_nodemask+0x1d5/0x710 [ 41.998146] ? __alloc_pages_slowpath+0x25c0/0x25c0 [ 42.003253] ? __lock_acquire+0x792/0x4950 [ 42.007651] ? __lock_acquire+0x792/0x4950 [ 42.011895] alloc_pages_current+0xd6/0x1b0 [ 42.016749] skb_page_frag_refill+0x20b/0x400 [ 42.021398] sk_page_frag_refill+0x46/0x1d0 [ 42.025809] sk_alloc_sg+0x108/0x7d0 [ 42.029519] ? lockdep_hardirqs_on+0x421/0x5c0 [ 42.034086] ? lock_sock_nested+0x82/0x100 [ 42.038732] alloc_encrypted_sg+0x81/0x100 [ 42.043677] tls_sw_sendpage+0x502/0xc00 [ 42.047849] ? tls_sw_sendmsg+0x1010/0x1010 [ 42.052867] ? pipe_lock+0x4f/0x60 [ 42.056677] inet_sendpage+0x122/0x600 [ 42.060662] ? kernel_sendpage+0xd0/0xd0 [ 42.065242] kernel_sendpage+0x60/0xd0 [ 42.069244] ? pipe_lock+0x4f/0x60 [ 42.072793] sock_sendpage+0x6d/0xd0 [ 42.076601] pipe_to_sendpage+0x212/0x430 [ 42.081250] ? generic_pipe_buf_nosteal+0x10/0x10 [ 42.086268] __splice_from_pipe+0x2cb/0x720 [ 42.090602] ? generic_pipe_buf_nosteal+0x10/0x10 [ 42.095433] ? generic_pipe_buf_nosteal+0x10/0x10 [ 42.100348] splice_from_pipe+0xbb/0x120 [ 42.104997] ? splice_shrink_spd+0xa0/0xa0 [ 42.109300] ? rw_verify_area+0xb8/0x2b0 [ 42.113367] generic_splice_sendpage+0x10/0x20 [ 42.117954] do_splice+0xa25/0x12b0 [ 42.121582] ? opipe_prep.part.13+0x320/0x320 [ 42.126067] ? __fget_light+0x174/0x1e0 [ 42.130021] __x64_sys_splice+0x248/0x300 [ 42.134162] do_syscall_64+0xd0/0x4e0 [ 42.137946] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 42.143114] RIP: 0033:0x460b89 [ 42.146285] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 42.165297] RSP: 002b:00007f51925d71a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 42.173083] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 0000000000460b89 [ 42.180418] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 42.187754] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 42.195105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 42.202352] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007f51925d76bc [ 42.213915] FAULT_INJECTION: forcing a failure. [ 42.213915] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 42.226630] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 42.234277] CPU: 0 PID: 6557 Comm: syz-executor.2 Not tainted 4.19.195-syzkaller #0 [ 42.242218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 42.251702] Call Trace: [ 42.254289] dump_stack+0x123/0x171 [ 42.258010] should_fail.cold.4+0x5/0xa [ 42.261995] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 42.267312] ? __lock_acquire+0x792/0x4950 [ 42.267992] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 42.271627] __alloc_pages_nodemask+0x1d5/0x710 [ 42.271637] ? __alloc_pages_slowpath+0x25c0/0x25c0 [ 42.271645] ? __lock_acquire+0x792/0x4950 [ 42.292678] ? __lock_acquire+0x792/0x4950 [ 42.296962] alloc_pages_current+0xd6/0x1b0 [ 42.301294] skb_page_frag_refill+0x20b/0x400 [ 42.305883] sk_page_frag_refill+0x46/0x1d0 [ 42.310299] sk_alloc_sg+0x108/0x7d0 [ 42.314016] ? lockdep_hardirqs_on+0x421/0x5c0 [ 42.318689] ? lock_sock_nested+0x82/0x100 [ 42.322972] alloc_encrypted_sg+0x81/0x100 [ 42.327311] tls_sw_sendpage+0x502/0xc00 [ 42.331480] ? tls_sw_sendmsg+0x1010/0x1010 [ 42.335893] ? pipe_lock+0x4f/0x60 [ 42.339545] inet_sendpage+0x122/0x600 [ 42.343441] ? kernel_sendpage+0xd0/0xd0 [ 42.347546] kernel_sendpage+0x60/0xd0 [ 42.351620] ? pipe_lock+0x4f/0x60 [ 42.355235] sock_sendpage+0x6d/0xd0 [ 42.359014] pipe_to_sendpage+0x212/0x430 [ 42.363411] ? generic_pipe_buf_nosteal+0x10/0x10 [ 42.368408] __splice_from_pipe+0x2cb/0x720 [ 42.372723] ? generic_pipe_buf_nosteal+0x10/0x10 [ 42.377632] ? generic_pipe_buf_nosteal+0x10/0x10 [ 42.382623] splice_from_pipe+0xbb/0x120 [ 42.386688] ? splice_shrink_spd+0xa0/0xa0 [ 42.390939] ? rw_verify_area+0xb8/0x2b0 [ 42.395004] generic_splice_sendpage+0x10/0x20 [ 42.400984] do_splice+0xa25/0x12b0 [ 42.405057] ? opipe_prep.part.13+0x320/0x320 [ 42.409685] ? __fget_light+0x174/0x1e0 [ 42.413711] __x64_sys_splice+0x248/0x300 [ 42.418203] do_syscall_64+0xd0/0x4e0 [ 42.422061] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 42.427323] RIP: 0033:0x460b89 [ 42.430641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 42.451148] RSP: 002b:00007f8cf5e171a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 42.460585] RAX: ffffffffffffffda RBX: 000000000052bfa8 RCX: 0000000000460b89 [ 42.468502] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 42.476201] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 42.483464] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 42.490721] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007f8cf5e176bc [ 42.514003] FAULT_INJECTION: forcing a failure. [ 42.514003] name failslab, interval 1, probability 0, space 0, times 1 [ 42.514940] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 42.533329] FAULT_INJECTION: forcing a failure. [ 42.533329] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 42.546607] FAULT_INJECTION: forcing a failure. [ 42.546607] name failslab, interval 1, probability 0, space 0, times 1 [ 42.547800] CPU: 0 PID: 6569 Comm: syz-executor.1 Not tainted 4.19.195-syzkaller #0 [ 42.567625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 42.577248] Call Trace: [ 42.580532] dump_stack+0x123/0x171 [ 42.584160] should_fail.cold.4+0x5/0xa [ 42.588138] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 42.593456] ? lock_downgrade+0x860/0x860 [ 42.597676] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 42.598031] ? ___might_sleep+0x16b/0x270 [ 42.598043] __should_failslab+0xba/0xf0 [ 42.598051] should_failslab+0x9/0x20 [ 42.598058] __kmalloc+0x2dd/0x770 [ 42.598066] ? tls_push_record+0xff/0x1600 [ 42.622390] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 42.625716] ? __sk_mem_schedule+0x5f/0xc0 [ 42.625727] tls_push_record+0xff/0x1600 [ 42.625743] tls_sw_sendpage+0x462/0xc00 [ 42.625759] ? tls_sw_sendmsg+0x1010/0x1010 [ 42.625767] ? pipe_lock+0x4f/0x60 [ 42.625780] inet_sendpage+0x122/0x600 [ 42.625788] ? kernel_sendpage+0xd0/0xd0 [ 42.625792] kernel_sendpage+0x60/0xd0 [ 42.625796] ? pipe_lock+0x4f/0x60 [ 42.625801] sock_sendpage+0x6d/0xd0 [ 42.625808] pipe_to_sendpage+0x212/0x430 [ 42.625815] ? generic_pipe_buf_nosteal+0x10/0x10 [ 42.625824] ? kasan_check_write+0x14/0x20 [ 42.625828] ? anon_pipe_buf_release+0x149/0x1f0 [ 42.625835] __splice_from_pipe+0x2cb/0x720 [ 42.625840] ? generic_pipe_buf_nosteal+0x10/0x10 [ 42.625848] ? generic_pipe_buf_nosteal+0x10/0x10 [ 42.625853] splice_from_pipe+0xbb/0x120 [ 42.625858] ? splice_shrink_spd+0xa0/0xa0 [ 42.625869] ? rw_verify_area+0xb8/0x2b0 [ 42.625876] generic_splice_sendpage+0x10/0x20 [ 42.625880] do_splice+0xa25/0x12b0 [ 42.625891] ? opipe_prep.part.13+0x320/0x320 [ 42.625899] ? __fget_light+0x174/0x1e0 [ 42.625906] __x64_sys_splice+0x248/0x300 [ 42.625916] do_syscall_64+0xd0/0x4e0 [ 42.625926] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 42.625931] RIP: 0033:0x460b89 [ 42.625938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 42.625941] RSP: 002b:00007f667dafb1a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 42.625947] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 0000000000460b89 [ 42.625950] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 42.625953] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 42.625956] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 42.625959] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007f667dafb6bc [ 42.632179] CPU: 0 PID: 6568 Comm: syz-executor.3 Not tainted 4.19.195-syzkaller #0 [ 42.661317] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 42.662994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 42.662998] Call Trace: [ 42.663013] dump_stack+0x123/0x171 [ 42.663025] should_fail.cold.4+0x5/0xa [ 42.663036] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 42.663045] ? __lock_acquire+0x792/0x4950 [ 42.663057] __alloc_pages_nodemask+0x1d5/0x710 [ 42.663065] ? __alloc_pages_slowpath+0x25c0/0x25c0 [ 42.663074] ? __lock_acquire+0x792/0x4950 [ 42.683880] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 42.683945] ? __lock_acquire+0x792/0x4950 [ 42.699707] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 42.703195] alloc_pages_current+0xd6/0x1b0 [ 42.703206] skb_page_frag_refill+0x20b/0x400 [ 42.703212] sk_page_frag_refill+0x46/0x1d0 [ 42.703218] sk_alloc_sg+0x108/0x7d0 [ 42.703225] ? lockdep_hardirqs_on+0x421/0x5c0 [ 42.703232] ? lock_sock_nested+0x82/0x100 [ 42.703241] alloc_encrypted_sg+0x81/0x100 [ 42.703248] tls_sw_sendpage+0x502/0xc00 [ 42.703264] ? tls_sw_sendmsg+0x1010/0x1010 [ 42.703271] ? pipe_lock+0x4f/0x60 [ 42.703283] inet_sendpage+0x122/0x600 [ 42.703291] ? kernel_sendpage+0xd0/0xd0 [ 42.703297] kernel_sendpage+0x60/0xd0 [ 42.723503] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 42.725912] ? pipe_lock+0x4f/0x60 [ 42.725922] sock_sendpage+0x6d/0xd0 [ 42.725931] pipe_to_sendpage+0x212/0x430 [ 42.725938] ? generic_pipe_buf_nosteal+0x10/0x10 [ 42.725951] __splice_from_pipe+0x2cb/0x720 [ 42.725957] ? generic_pipe_buf_nosteal+0x10/0x10 [ 42.725966] ? generic_pipe_buf_nosteal+0x10/0x10 [ 42.725971] splice_from_pipe+0xbb/0x120 [ 42.725977] ? splice_shrink_spd+0xa0/0xa0 [ 42.725987] ? rw_verify_area+0xb8/0x2b0 [ 42.725992] generic_splice_sendpage+0x10/0x20 [ 42.725997] do_splice+0xa25/0x12b0 [ 42.726007] ? opipe_prep.part.13+0x320/0x320 [ 42.726016] ? __fget_light+0x174/0x1e0 [ 42.726022] __x64_sys_splice+0x248/0x300 [ 42.726033] do_syscall_64+0xd0/0x4e0 [ 42.726041] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 42.726047] RIP: 0033:0x460b89 [ 42.726054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 42.726057] RSP: 002b:00007fb200c4f1a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 42.726063] RAX: ffffffffffffffda RBX: 000000000052bfa8 RCX: 0000000000460b89 [ 42.726066] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 42.726069] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 42.726071] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 42.726074] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007fb200c4f6bc [ 42.759119] CPU: 0 PID: 6560 Comm: syz-executor.5 Not tainted 4.19.195-syzkaller #0 [ 42.797545] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 42.798529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 42.811200] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 42.813412] Call Trace: [ 42.813426] dump_stack+0x123/0x171 [ 42.813438] should_fail.cold.4+0x5/0xa [ 42.813448] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 42.813456] ? lock_downgrade+0x860/0x860 [ 42.813464] ? ___might_sleep+0x16b/0x270 [ 42.813474] __should_failslab+0xba/0xf0 [ 42.813480] should_failslab+0x9/0x20 [ 42.813489] __kmalloc+0x2dd/0x770 [ 42.865705] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 42.870297] ? tls_push_record+0xff/0x1600 [ 42.870303] ? __sk_mem_schedule+0x5f/0xc0 [ 42.870309] tls_push_record+0xff/0x1600 [ 42.870325] tls_sw_sendpage+0x462/0xc00 [ 42.870340] ? tls_sw_sendmsg+0x1010/0x1010 [ 42.870348] ? pipe_lock+0x4f/0x60 [ 42.870359] inet_sendpage+0x122/0x600 [ 42.870372] ? kernel_sendpage+0xd0/0xd0 [ 42.870377] kernel_sendpage+0x60/0xd0 [ 42.870383] ? pipe_lock+0x4f/0x60 [ 42.905635] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 42.908667] sock_sendpage+0x6d/0xd0 [ 42.908679] pipe_to_sendpage+0x212/0x430 [ 42.908687] ? generic_pipe_buf_nosteal+0x10/0x10 [ 42.908698] ? kasan_check_write+0x14/0x20 [ 42.908705] ? anon_pipe_buf_release+0x149/0x1f0 [ 42.908713] __splice_from_pipe+0x2cb/0x720 [ 42.908719] ? generic_pipe_buf_nosteal+0x10/0x10 [ 42.908727] ? generic_pipe_buf_nosteal+0x10/0x10 [ 42.908732] splice_from_pipe+0xbb/0x120 [ 42.908739] ? splice_shrink_spd+0xa0/0xa0 [ 43.268438] ? rw_verify_area+0xb8/0x2b0 [ 43.272517] generic_splice_sendpage+0x10/0x20 [ 43.277090] do_splice+0xa25/0x12b0 [ 43.280720] ? opipe_prep.part.13+0x320/0x320 [ 43.285201] ? __fget_light+0x174/0x1e0 [ 43.289418] __x64_sys_splice+0x248/0x300 [ 43.293552] do_syscall_64+0xd0/0x4e0 [ 43.297343] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 43.302546] RIP: 0033:0x460b89 [ 43.305728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 43.324723] RSP: 002b:00007f32ae5861a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 43.332409] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 0000000000460b89 [ 43.339959] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 43.347221] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 43.355248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 43.362631] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007f32ae5866bc [ 43.425831] FAULT_INJECTION: forcing a failure. [ 43.425831] name failslab, interval 1, probability 0, space 0, times 0 [ 43.439023] FAULT_INJECTION: forcing a failure. [ 43.439023] name failslab, interval 1, probability 0, space 0, times 0 [ 43.443238] FAULT_INJECTION: forcing a failure. [ 43.443238] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 43.450940] FAULT_INJECTION: forcing a failure. [ 43.450940] name failslab, interval 1, probability 0, space 0, times 0 [ 43.467752] CPU: 1 PID: 6577 Comm: syz-executor.4 Not tainted 4.19.195-syzkaller #0 [ 43.482562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 43.492352] Call Trace: [ 43.495030] dump_stack+0x123/0x171 [ 43.498652] should_fail.cold.4+0x5/0xa [ 43.502711] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 43.508436] ? __lock_acquire+0x792/0x4950 [ 43.512783] __alloc_pages_nodemask+0x1d5/0x710 [ 43.517474] ? __alloc_pages_slowpath+0x25c0/0x25c0 [ 43.522616] ? __lock_acquire+0x792/0x4950 [ 43.526955] ? __lock_acquire+0x792/0x4950 [ 43.531305] alloc_pages_current+0xd6/0x1b0 [ 43.535621] skb_page_frag_refill+0x20b/0x400 [ 43.540589] sk_page_frag_refill+0x46/0x1d0 [ 43.545142] sk_alloc_sg+0x108/0x7d0 [ 43.548856] ? lockdep_hardirqs_on+0x421/0x5c0 [ 43.553536] ? lock_sock_nested+0x82/0x100 [ 43.560157] alloc_encrypted_sg+0x81/0x100 [ 43.564498] tls_sw_sendpage+0x502/0xc00 [ 43.568570] ? tls_sw_sendmsg+0x1010/0x1010 [ 43.573170] ? pipe_lock+0x4f/0x60 [ 43.576712] inet_sendpage+0x122/0x600 [ 43.580776] ? kernel_sendpage+0xd0/0xd0 [ 43.584923] kernel_sendpage+0x60/0xd0 [ 43.589075] ? pipe_lock+0x4f/0x60 [ 43.592807] sock_sendpage+0x6d/0xd0 [ 43.596649] pipe_to_sendpage+0x212/0x430 [ 43.601084] ? generic_pipe_buf_nosteal+0x10/0x10 [ 43.605929] __splice_from_pipe+0x2cb/0x720 [ 43.610263] ? generic_pipe_buf_nosteal+0x10/0x10 [ 43.615541] ? generic_pipe_buf_nosteal+0x10/0x10 [ 43.620412] splice_from_pipe+0xbb/0x120 [ 43.624736] ? splice_shrink_spd+0xa0/0xa0 [ 43.629221] ? rw_verify_area+0xb8/0x2b0 [ 43.633305] generic_splice_sendpage+0x10/0x20 [ 43.637914] do_splice+0xa25/0x12b0 [ 43.641848] ? opipe_prep.part.13+0x320/0x320 [ 43.646353] ? __fget_light+0x174/0x1e0 [ 43.650331] __x64_sys_splice+0x248/0x300 [ 43.654701] do_syscall_64+0xd0/0x4e0 [ 43.658507] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 43.663782] RIP: 0033:0x460b89 [ 43.667095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 43.686257] RSP: 002b:00007f51cfe701a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 43.694083] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 0000000000460b89 [ 43.701358] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 43.708639] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 43.716033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 43.723380] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007f51cfe706bc [ 43.730650] CPU: 0 PID: 6586 Comm: syz-executor.3 Not tainted 4.19.195-syzkaller #0 [ 43.738547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 43.747900] Call Trace: [ 43.750493] dump_stack+0x123/0x171 [ 43.754152] should_fail.cold.4+0x5/0xa [ 43.758124] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 43.763231] ? lock_downgrade+0x860/0x860 [ 43.767390] ? ___might_sleep+0x16b/0x270 [ 43.773290] __should_failslab+0xba/0xf0 [ 43.777347] should_failslab+0x9/0x20 [ 43.781208] __kmalloc+0x2dd/0x770 [ 43.784737] ? tls_push_record+0xff/0x1600 [ 43.788953] ? __sk_mem_schedule+0x5f/0xc0 [ 43.793176] tls_push_record+0xff/0x1600 [ 43.797254] tls_sw_sendpage+0x462/0xc00 [ 43.801539] ? tls_sw_sendmsg+0x1010/0x1010 [ 43.805856] ? pipe_lock+0x4f/0x60 [ 43.809392] inet_sendpage+0x122/0x600 [ 43.813281] ? kernel_sendpage+0xd0/0xd0 [ 43.817340] kernel_sendpage+0x60/0xd0 [ 43.821247] ? pipe_lock+0x4f/0x60 [ 43.824822] sock_sendpage+0x6d/0xd0 [ 43.828532] pipe_to_sendpage+0x212/0x430 [ 43.832692] ? generic_pipe_buf_nosteal+0x10/0x10 [ 43.837620] ? kasan_check_write+0x14/0x20 [ 43.841856] ? anon_pipe_buf_release+0x149/0x1f0 [ 43.846697] __splice_from_pipe+0x2cb/0x720 [ 43.851005] ? generic_pipe_buf_nosteal+0x10/0x10 [ 43.856027] ? generic_pipe_buf_nosteal+0x10/0x10 [ 43.860867] splice_from_pipe+0xbb/0x120 [ 43.865010] ? splice_shrink_spd+0xa0/0xa0 [ 43.869339] ? rw_verify_area+0xb8/0x2b0 [ 43.873401] generic_splice_sendpage+0x10/0x20 [ 43.878099] do_splice+0xa25/0x12b0 [ 43.881731] ? opipe_prep.part.13+0x320/0x320 [ 43.886210] ? __fget_light+0x174/0x1e0 [ 43.890170] __x64_sys_splice+0x248/0x300 [ 43.894335] do_syscall_64+0xd0/0x4e0 [ 43.898316] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 43.903498] RIP: 0033:0x460b89 [ 43.906691] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 43.925582] RSP: 002b:00007fb200c701a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 43.933375] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 0000000000460b89 [ 43.940644] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 43.947912] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 43.955181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 43.962541] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007fb200c706bc [ 43.986472] CPU: 1 PID: 6584 Comm: syz-executor.0 Not tainted 4.19.195-syzkaller #0 [ 43.994304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 44.003661] Call Trace: [ 44.006239] dump_stack+0x123/0x171 [ 44.009850] should_fail.cold.4+0x5/0xa [ 44.013821] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 44.018908] ? lock_downgrade+0x860/0x860 [ 44.023038] ? ___might_sleep+0x16b/0x270 [ 44.027168] __should_failslab+0xba/0xf0 [ 44.031210] should_failslab+0x9/0x20 [ 44.034991] __kmalloc+0x2dd/0x770 [ 44.038512] ? tls_push_record+0xff/0x1600 [ 44.042725] ? __sk_mem_schedule+0x5f/0xc0 [ 44.047051] tls_push_record+0xff/0x1600 [ 44.051169] tls_sw_sendpage+0x462/0xc00 [ 44.055281] ? tls_sw_sendmsg+0x1010/0x1010 [ 44.059764] ? pipe_lock+0x4f/0x60 [ 44.063381] inet_sendpage+0x122/0x600 [ 44.067489] ? kernel_sendpage+0xd0/0xd0 [ 44.071987] kernel_sendpage+0x60/0xd0 [ 44.075857] ? pipe_lock+0x4f/0x60 [ 44.079384] sock_sendpage+0x6d/0xd0 [ 44.083095] pipe_to_sendpage+0x212/0x430 [ 44.087227] ? generic_pipe_buf_nosteal+0x10/0x10 [ 44.092364] ? kasan_check_write+0x14/0x20 [ 44.096613] ? anon_pipe_buf_release+0x149/0x1f0 [ 44.101448] __splice_from_pipe+0x2cb/0x720 [ 44.105841] ? generic_pipe_buf_nosteal+0x10/0x10 [ 44.110665] ? generic_pipe_buf_nosteal+0x10/0x10 [ 44.116083] splice_from_pipe+0xbb/0x120 [ 44.120122] ? splice_shrink_spd+0xa0/0xa0 [ 44.124338] ? rw_verify_area+0xb8/0x2b0 [ 44.128398] generic_splice_sendpage+0x10/0x20 [ 44.132968] do_splice+0xa25/0x12b0 [ 44.136574] ? opipe_prep.part.13+0x320/0x320 [ 44.141047] ? __fget_light+0x174/0x1e0 [ 44.145085] __x64_sys_splice+0x248/0x300 [ 44.149210] do_syscall_64+0xd0/0x4e0 [ 44.153072] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 44.158330] RIP: 0033:0x460b89 [ 44.161524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 44.180497] RSP: 002b:00007f51925d71a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 44.188277] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 0000000000460b89 [ 44.195631] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 44.203323] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 44.210590] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 44.217837] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007f51925d76bc [ 44.228795] CPU: 1 PID: 6585 Comm: syz-executor.2 Not tainted 4.19.195-syzkaller #0 [ 44.237126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 44.246478] Call Trace: [ 44.249069] dump_stack+0x123/0x171 [ 44.252693] should_fail.cold.4+0x5/0xa [ 44.256661] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 44.262569] ? lock_downgrade+0x860/0x860 [ 44.266877] ? ___might_sleep+0x16b/0x270 [ 44.271016] __should_failslab+0xba/0xf0 [ 44.275069] should_failslab+0x9/0x20 [ 44.280569] __kmalloc+0x2dd/0x770 [ 44.284199] ? tls_push_record+0xff/0x1600 [ 44.288750] ? __sk_mem_schedule+0x5f/0xc0 [ 44.293325] tls_push_record+0xff/0x1600 [ 44.297751] tls_sw_sendpage+0x462/0xc00 [ 44.301806] ? tls_sw_sendmsg+0x1010/0x1010 [ 44.306113] ? pipe_lock+0x4f/0x60 [ 44.309635] inet_sendpage+0x122/0x600 [ 44.313520] ? kernel_sendpage+0xd0/0xd0 [ 44.317559] kernel_sendpage+0x60/0xd0 [ 44.321594] ? pipe_lock+0x4f/0x60 [ 44.325116] sock_sendpage+0x6d/0xd0 [ 44.328812] pipe_to_sendpage+0x212/0x430 [ 44.333043] ? generic_pipe_buf_nosteal+0x10/0x10 [ 44.337967] ? kasan_check_write+0x14/0x20 [ 44.342189] ? anon_pipe_buf_release+0x149/0x1f0 [ 44.349107] __splice_from_pipe+0x2cb/0x720 [ 44.353423] ? generic_pipe_buf_nosteal+0x10/0x10 [ 44.358451] ? generic_pipe_buf_nosteal+0x10/0x10 [ 44.363276] splice_from_pipe+0xbb/0x120 [ 44.367317] ? splice_shrink_spd+0xa0/0xa0 [ 44.371620] ? rw_verify_area+0xb8/0x2b0 [ 44.375675] generic_splice_sendpage+0x10/0x20 [ 44.380322] do_splice+0xa25/0x12b0 [ 44.383929] ? opipe_prep.part.13+0x320/0x320 [ 44.388404] ? __fget_light+0x174/0x1e0 [ 44.392386] __x64_sys_splice+0x248/0x300 [ 44.396528] do_syscall_64+0xd0/0x4e0 [ 44.400327] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 44.405517] RIP: 0033:0x460b89 [ 44.408712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 44.427771] RSP: 002b:00007f8cf5e381a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 44.435456] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 0000000000460b89 [ 44.442713] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 44.450050] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 44.457317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 44.465009] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007f8cf5e386bc [ 44.501096] FAULT_INJECTION: forcing a failure. [ 44.501096] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 44.515301] FAULT_INJECTION: forcing a failure. [ 44.515301] name failslab, interval 1, probability 0, space 0, times 0 [ 44.523150] CPU: 0 PID: 6609 Comm: syz-executor.5 Not tainted 4.19.195-syzkaller #0 [ 44.534321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 44.543661] Call Trace: [ 44.546681] dump_stack+0x123/0x171 [ 44.550319] should_fail.cold.4+0x5/0xa [ 44.554397] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 44.559567] ? __lock_acquire+0x792/0x4950 [ 44.563794] __alloc_pages_nodemask+0x1d5/0x710 [ 44.568490] ? __alloc_pages_slowpath+0x25c0/0x25c0 [ 44.573486] ? __lock_acquire+0x792/0x4950 [ 44.577970] ? __lock_acquire+0x792/0x4950 [ 44.582190] alloc_pages_current+0xd6/0x1b0 [ 44.586500] skb_page_frag_refill+0x20b/0x400 [ 44.591024] sk_page_frag_refill+0x46/0x1d0 [ 44.595322] sk_alloc_sg+0x108/0x7d0 [ 44.599013] ? lockdep_hardirqs_on+0x421/0x5c0 [ 44.603576] ? lock_sock_nested+0x82/0x100 [ 44.609008] alloc_encrypted_sg+0x81/0x100 [ 44.613230] tls_sw_sendpage+0x502/0xc00 [ 44.617303] ? tls_sw_sendmsg+0x1010/0x1010 [ 44.621603] ? pipe_lock+0x4f/0x60 [ 44.625126] inet_sendpage+0x122/0x600 [ 44.629012] ? kernel_sendpage+0xd0/0xd0 [ 44.633086] kernel_sendpage+0x60/0xd0 [ 44.636963] ? pipe_lock+0x4f/0x60 [ 44.640507] sock_sendpage+0x6d/0xd0 [ 44.644210] pipe_to_sendpage+0x212/0x430 [ 44.648338] ? generic_pipe_buf_nosteal+0x10/0x10 [ 44.653249] __splice_from_pipe+0x2cb/0x720 [ 44.657565] ? generic_pipe_buf_nosteal+0x10/0x10 [ 44.662387] ? generic_pipe_buf_nosteal+0x10/0x10 [ 44.667489] splice_from_pipe+0xbb/0x120 [ 44.671731] ? splice_shrink_spd+0xa0/0xa0 [ 44.675946] ? rw_verify_area+0xb8/0x2b0 [ 44.679985] generic_splice_sendpage+0x10/0x20 [ 44.684646] do_splice+0xa25/0x12b0 [ 44.688263] ? opipe_prep.part.13+0x320/0x320 [ 44.693342] ? __fget_light+0x174/0x1e0 [ 44.697294] __x64_sys_splice+0x248/0x300 [ 44.701469] do_syscall_64+0xd0/0x4e0 [ 44.705357] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 44.710984] RIP: 0033:0x460b89 [ 44.714159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 44.733319] RSP: 002b:00007f32ae5441a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 44.741184] RAX: ffffffffffffffda RBX: 000000000052c050 RCX: 0000000000460b89 [ 44.748535] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 44.756710] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 44.763962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 44.771237] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007f32ae5446bc [ 44.790295] CPU: 1 PID: 6614 Comm: syz-executor.4 Not tainted 4.19.195-syzkaller #0 [ 44.798106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 44.807492] Call Trace: [ 44.810084] dump_stack+0x123/0x171 [ 44.813900] should_fail.cold.4+0x5/0xa [ 44.817973] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 44.823166] ? lock_downgrade+0x860/0x860 [ 44.827318] ? ___might_sleep+0x16b/0x270 [ 44.831475] __should_failslab+0xba/0xf0 [ 44.835539] should_failslab+0x9/0x20 [ 44.839502] __kmalloc+0x2dd/0x770 [ 44.843294] ? tls_push_record+0xff/0x1600 [ 44.847775] ? __sk_mem_schedule+0x5f/0xc0 [ 44.851986] tls_push_record+0xff/0x1600 [ 44.856619] tls_sw_sendpage+0x462/0xc00 [ 44.861893] ? tls_sw_sendmsg+0x1010/0x1010 [ 44.866374] ? pipe_lock+0x4f/0x60 [ 44.870127] inet_sendpage+0x122/0x600 [ 44.874117] ? kernel_sendpage+0xd0/0xd0 [ 44.878189] kernel_sendpage+0x60/0xd0 [ 44.882618] ? pipe_lock+0x4f/0x60 [ 44.886153] sock_sendpage+0x6d/0xd0 [ 44.890045] pipe_to_sendpage+0x212/0x430 [ 44.894214] ? generic_pipe_buf_nosteal+0x10/0x10 [ 44.899306] ? kasan_check_write+0x14/0x20 [ 44.903866] ? anon_pipe_buf_release+0x149/0x1f0 [ 44.909043] __splice_from_pipe+0x2cb/0x720 [ 44.913367] ? generic_pipe_buf_nosteal+0x10/0x10 [ 44.918192] ? generic_pipe_buf_nosteal+0x10/0x10 [ 44.923148] splice_from_pipe+0xbb/0x120 [ 44.927191] ? splice_shrink_spd+0xa0/0xa0 [ 44.931409] ? rw_verify_area+0xb8/0x2b0 [ 44.935455] generic_splice_sendpage+0x10/0x20 [ 44.940279] do_splice+0xa25/0x12b0 [ 44.943898] ? opipe_prep.part.13+0x320/0x320 [ 44.948372] ? __fget_light+0x174/0x1e0 [ 44.952327] __x64_sys_splice+0x248/0x300 [ 44.956463] do_syscall_64+0xd0/0x4e0 [ 44.960243] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 44.965620] RIP: 0033:0x460b89 [ 44.969054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 44.988045] RSP: 002b:00007f51cfe701a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 44.996357] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 0000000000460b89 [ 45.003976] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 45.011232] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 45.018652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 45.026002] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007f51cfe706bc [ 45.100981] FAULT_INJECTION: forcing a failure. [ 45.100981] name failslab, interval 1, probability 0, space 0, times 0 [ 45.101003] FAULT_INJECTION: forcing a failure. [ 45.101003] name failslab, interval 1, probability 0, space 0, times 0 [ 45.117008] FAULT_INJECTION: forcing a failure. [ 45.117008] name failslab, interval 1, probability 0, space 0, times 0 [ 45.125836] CPU: 1 PID: 6626 Comm: syz-executor.0 Not tainted 4.19.195-syzkaller #0 [ 45.137296] FAULT_INJECTION: forcing a failure. [ 45.137296] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 45.144415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 45.144419] Call Trace: [ 45.144436] dump_stack+0x123/0x171 [ 45.144446] should_fail.cold.4+0x5/0xa [ 45.144455] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 45.144462] ? lock_downgrade+0x860/0x860 [ 45.144470] ? ___might_sleep+0x16b/0x270 [ 45.144479] __should_failslab+0xba/0xf0 [ 45.144485] should_failslab+0x9/0x20 [ 45.144492] __kmalloc+0x2dd/0x770 [ 45.144500] ? tls_push_record+0xff/0x1600 [ 45.144504] ? __sk_mem_schedule+0x5f/0xc0 [ 45.144510] tls_push_record+0xff/0x1600 [ 45.144522] tls_sw_sendpage+0x462/0xc00 [ 45.144538] ? tls_sw_sendmsg+0x1010/0x1010 [ 45.144545] ? pipe_lock+0x4f/0x60 [ 45.144556] inet_sendpage+0x122/0x600 [ 45.144566] ? kernel_sendpage+0xd0/0xd0 [ 45.144571] kernel_sendpage+0x60/0xd0 [ 45.144576] ? pipe_lock+0x4f/0x60 [ 45.144582] sock_sendpage+0x6d/0xd0 [ 45.144591] pipe_to_sendpage+0x212/0x430 [ 45.144599] ? generic_pipe_buf_nosteal+0x10/0x10 [ 45.144606] ? kasan_check_write+0x14/0x20 [ 45.144611] ? anon_pipe_buf_release+0x149/0x1f0 [ 45.144618] __splice_from_pipe+0x2cb/0x720 [ 45.144626] ? generic_pipe_buf_nosteal+0x10/0x10 [ 45.273550] ? generic_pipe_buf_nosteal+0x10/0x10 [ 45.278405] splice_from_pipe+0xbb/0x120 [ 45.282452] ? splice_shrink_spd+0xa0/0xa0 [ 45.286684] ? rw_verify_area+0xb8/0x2b0 [ 45.290761] generic_splice_sendpage+0x10/0x20 [ 45.295332] do_splice+0xa25/0x12b0 [ 45.298947] ? opipe_prep.part.13+0x320/0x320 [ 45.303511] ? __fget_light+0x174/0x1e0 [ 45.307558] __x64_sys_splice+0x248/0x300 [ 45.311714] do_syscall_64+0xd0/0x4e0 [ 45.315613] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 45.320783] RIP: 0033:0x460b89 [ 45.323959] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 45.342935] RSP: 002b:00007f51925d71a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 45.350814] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 0000000000460b89 [ 45.358064] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 45.365400] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 45.372734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 45.380070] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007f51925d76bc [ 45.387538] CPU: 0 PID: 6612 Comm: syz-executor.3 Not tainted 4.19.195-syzkaller #0 [ 45.388156] FAULT_INJECTION: forcing a failure. [ 45.388156] name failslab, interval 1, probability 0, space 0, times 0 [ 45.395417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 45.395420] Call Trace: [ 45.395432] dump_stack+0x123/0x171 [ 45.395443] should_fail.cold.4+0x5/0xa [ 45.395452] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 45.395461] ? __lock_acquire+0x792/0x4950 [ 45.436129] __alloc_pages_nodemask+0x1d5/0x710 [ 45.440785] ? __alloc_pages_slowpath+0x25c0/0x25c0 [ 45.445804] ? __lock_acquire+0x792/0x4950 [ 45.450120] ? __lock_acquire+0x792/0x4950 [ 45.454362] alloc_pages_current+0xd6/0x1b0 [ 45.458853] skb_page_frag_refill+0x20b/0x400 [ 45.463345] sk_page_frag_refill+0x46/0x1d0 [ 45.467927] sk_alloc_sg+0x108/0x7d0 [ 45.471644] ? lockdep_hardirqs_on+0x421/0x5c0 [ 45.476202] ? lock_sock_nested+0x82/0x100 [ 45.480422] alloc_encrypted_sg+0x81/0x100 [ 45.484731] tls_sw_sendpage+0x502/0xc00 [ 45.488791] ? tls_sw_sendmsg+0x1010/0x1010 [ 45.493214] ? pipe_lock+0x4f/0x60 [ 45.496743] inet_sendpage+0x122/0x600 [ 45.500693] ? kernel_sendpage+0xd0/0xd0 [ 45.505119] kernel_sendpage+0x60/0xd0 [ 45.509088] ? pipe_lock+0x4f/0x60 [ 45.512778] sock_sendpage+0x6d/0xd0 [ 45.516470] pipe_to_sendpage+0x212/0x430 [ 45.520789] ? generic_pipe_buf_nosteal+0x10/0x10 [ 45.525719] __splice_from_pipe+0x2cb/0x720 [ 45.530109] ? generic_pipe_buf_nosteal+0x10/0x10 [ 45.534949] ? generic_pipe_buf_nosteal+0x10/0x10 [ 45.539941] splice_from_pipe+0xbb/0x120 [ 45.544069] ? splice_shrink_spd+0xa0/0xa0 [ 45.548405] ? rw_verify_area+0xb8/0x2b0 [ 45.552443] generic_splice_sendpage+0x10/0x20 [ 45.557008] do_splice+0xa25/0x12b0 [ 45.560612] ? opipe_prep.part.13+0x320/0x320 [ 45.565085] ? __fget_light+0x174/0x1e0 [ 45.569036] __x64_sys_splice+0x248/0x300 [ 45.573166] do_syscall_64+0xd0/0x4e0 [ 45.576943] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 45.582117] RIP: 0033:0x460b89 [ 45.585287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 45.605218] RSP: 002b:00007fb200c701a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 45.613236] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 0000000000460b89 [ 45.621279] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 45.628935] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 45.636460] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 45.644808] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007fb200c706bc [ 45.656676] CPU: 0 PID: 6633 Comm: syz-executor.1 Not tainted 4.19.195-syzkaller #0 [ 45.664658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 45.674271] Call Trace: [ 45.676865] dump_stack+0x123/0x171 [ 45.680509] should_fail.cold.4+0x5/0xa [ 45.684689] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 45.689781] ? lock_downgrade+0x860/0x860 [ 45.694095] ? ___might_sleep+0x16b/0x270 [ 45.698233] __should_failslab+0xba/0xf0 [ 45.702395] should_failslab+0x9/0x20 [ 45.706180] kmem_cache_alloc_node+0x262/0x720 [ 45.710933] __alloc_skb+0xa7/0x580 [ 45.714574] ? skb_scrub_packet+0x3c0/0x3c0 [ 45.718878] ? _raw_spin_unlock_irq+0x60/0x80 [ 45.723713] ? finish_task_switch+0x14a/0x6f0 [ 45.728290] ? finish_task_switch+0x11c/0x6f0 [ 45.732889] sk_stream_alloc_skb+0x9e/0x810 [ 45.737481] ? tcp_send_mss+0x1d/0x220 [ 45.741438] do_tcp_sendpages+0x774/0x1d30 [ 45.745852] ? __lock_is_held+0xb5/0x140 [ 45.749910] ? sk_stream_alloc_skb+0x810/0x810 [ 45.755465] ? __local_bh_enable_ip+0x160/0x260 [ 45.760126] ? lock_sock_nested+0xc5/0x100 [ 45.764343] ? lockdep_hardirqs_on+0x421/0x5c0 [ 45.769080] ? __local_bh_enable_ip+0x160/0x260 [ 45.773740] ? kasan_check_read+0x11/0x20 [ 45.778147] tcp_sendpage_locked+0x63/0xa0 [ 45.782470] tcp_sendpage+0x37/0x50 [ 45.786083] inet_sendpage+0x122/0x600 [ 45.790040] ? kernel_sendpage+0xd0/0xd0 [ 45.794096] kernel_sendpage+0x60/0xd0 [ 45.797993] ? pipe_lock+0x4f/0x60 [ 45.801706] sock_sendpage+0x6d/0xd0 [ 45.805418] pipe_to_sendpage+0x212/0x430 [ 45.809547] ? generic_pipe_buf_nosteal+0x10/0x10 [ 45.814755] __splice_from_pipe+0x2cb/0x720 [ 45.819328] ? generic_pipe_buf_nosteal+0x10/0x10 [ 45.824465] ? generic_pipe_buf_nosteal+0x10/0x10 [ 45.829312] splice_from_pipe+0xbb/0x120 [ 45.833470] ? splice_shrink_spd+0xa0/0xa0 [ 45.837810] ? rw_verify_area+0xb8/0x2b0 [ 45.841904] generic_splice_sendpage+0x10/0x20 [ 45.846675] do_splice+0xa25/0x12b0 [ 45.852063] ? opipe_prep.part.13+0x320/0x320 [ 45.857453] ? __fget_light+0x174/0x1e0 [ 45.861451] __x64_sys_splice+0x248/0x300 [ 45.865699] do_syscall_64+0xd0/0x4e0 [ 45.870062] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 45.875500] RIP: 0033:0x460b89 [ 45.878774] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 45.898100] RSP: 002b:00007f667da981a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 45.905893] RAX: ffffffffffffffda RBX: 000000000052c0f8 RCX: 0000000000460b89 [ 45.913148] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 45.920405] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 45.927660] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 45.934943] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007f667da986bc [ 45.942440] CPU: 1 PID: 6631 Comm: syz-executor.2 Not tainted 4.19.195-syzkaller #0 [ 45.950242] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 45.960893] Call Trace: [ 45.963480] dump_stack+0x123/0x171 [ 45.967178] should_fail.cold.4+0x5/0xa [ 45.971241] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 45.976321] ? lock_downgrade+0x860/0x860 [ 45.980449] ? ___might_sleep+0x16b/0x270 [ 45.984600] __should_failslab+0xba/0xf0 [ 45.988729] should_failslab+0x9/0x20 [ 45.992534] __kmalloc+0x2dd/0x770 [ 45.996073] ? tls_push_record+0xff/0x1600 [ 46.000291] ? __sk_mem_schedule+0x5f/0xc0 [ 46.004526] tls_push_record+0xff/0x1600 [ 46.008576] tls_sw_sendpage+0x462/0xc00 [ 46.012623] ? tls_sw_sendmsg+0x1010/0x1010 [ 46.016964] ? pipe_lock+0x4f/0x60 [ 46.020490] inet_sendpage+0x122/0x600 [ 46.024358] ? kernel_sendpage+0xd0/0xd0 [ 46.028398] kernel_sendpage+0x60/0xd0 [ 46.032265] ? pipe_lock+0x4f/0x60 [ 46.035783] sock_sendpage+0x6d/0xd0 [ 46.039478] pipe_to_sendpage+0x212/0x430 [ 46.043605] ? generic_pipe_buf_nosteal+0x10/0x10 [ 46.048442] ? kasan_check_write+0x14/0x20 [ 46.052748] ? anon_pipe_buf_release+0x149/0x1f0 [ 46.057575] __splice_from_pipe+0x2cb/0x720 [ 46.061881] ? generic_pipe_buf_nosteal+0x10/0x10 [ 46.066718] ? generic_pipe_buf_nosteal+0x10/0x10 [ 46.071545] splice_from_pipe+0xbb/0x120 [ 46.075589] ? splice_shrink_spd+0xa0/0xa0 [ 46.079807] ? rw_verify_area+0xb8/0x2b0 [ 46.083938] generic_splice_sendpage+0x10/0x20 [ 46.088499] do_splice+0xa25/0x12b0 [ 46.092113] ? opipe_prep.part.13+0x320/0x320 [ 46.096598] ? __fget_light+0x174/0x1e0 [ 46.100554] __x64_sys_splice+0x248/0x300 [ 46.104690] do_syscall_64+0xd0/0x4e0 [ 46.108483] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 46.113675] RIP: 0033:0x460b89 [ 46.116865] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 46.136103] RSP: 002b:00007f8cf5e381a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 46.144074] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 0000000000460b89 [ 46.151323] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 46.158732] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 46.166338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 46.173621] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007f8cf5e386bc [ 46.195708] CPU: 0 PID: 6630 Comm: syz-executor.5 Not tainted 4.19.195-syzkaller #0 [ 46.203532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 46.213407] Call Trace: [ 46.216000] dump_stack+0x123/0x171 [ 46.219892] should_fail.cold.4+0x5/0xa [ 46.223879] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 46.229072] ? lock_downgrade+0x860/0x860 [ 46.233224] ? ___might_sleep+0x16b/0x270 [ 46.237420] __should_failslab+0xba/0xf0 [ 46.241485] should_failslab+0x9/0x20 [ 46.245380] __kmalloc+0x2dd/0x770 [ 46.248929] ? tls_push_record+0xff/0x1600 [ 46.253166] ? __sk_mem_schedule+0x5f/0xc0 [ 46.257410] tls_push_record+0xff/0x1600 [ 46.261498] tls_sw_sendpage+0x462/0xc00 [ 46.265574] ? tls_sw_sendmsg+0x1010/0x1010 [ 46.269989] ? pipe_lock+0x4f/0x60 [ 46.273686] inet_sendpage+0x122/0x600 [ 46.277587] ? kernel_sendpage+0xd0/0xd0 [ 46.281660] kernel_sendpage+0x60/0xd0 [ 46.285795] ? pipe_lock+0x4f/0x60 [ 46.291229] sock_sendpage+0x6d/0xd0 [ 46.294922] pipe_to_sendpage+0x212/0x430 [ 46.299052] ? generic_pipe_buf_nosteal+0x10/0x10 [ 46.304144] ? kasan_check_write+0x14/0x20 [ 46.308474] ? anon_pipe_buf_release+0x149/0x1f0 [ 46.313208] __splice_from_pipe+0x2cb/0x720 [ 46.317513] ? generic_pipe_buf_nosteal+0x10/0x10 [ 46.322423] ? generic_pipe_buf_nosteal+0x10/0x10 [ 46.327246] splice_from_pipe+0xbb/0x120 [ 46.331315] ? splice_shrink_spd+0xa0/0xa0 [ 46.335540] ? rw_verify_area+0xb8/0x2b0 [ 46.339683] generic_splice_sendpage+0x10/0x20 [ 46.344335] do_splice+0xa25/0x12b0 [ 46.347955] ? opipe_prep.part.13+0x320/0x320 [ 46.352432] ? __fget_light+0x174/0x1e0 [ 46.356471] __x64_sys_splice+0x248/0x300 [ 46.360694] do_syscall_64+0xd0/0x4e0 [ 46.364480] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 46.369946] RIP: 0033:0x460b89 [ 46.373232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 46.392918] RSP: 002b:00007f32ae5861a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 46.400961] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 0000000000460b89 [ 46.408320] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 46.415830] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 46.423175] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 46.431033] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007f32ae5866bc [ 46.465458] FAULT_INJECTION: forcing a failure. [ 46.465458] name failslab, interval 1, probability 0, space 0, times 0 [ 46.471644] FAULT_INJECTION: forcing a failure. [ 46.471644] name failslab, interval 1, probability 0, space 0, times 0 [ 46.489128] FAULT_INJECTION: forcing a failure. [ 46.489128] name failslab, interval 1, probability 0, space 0, times 0 [ 46.497681] CPU: 1 PID: 6657 Comm: syz-executor.0 Not tainted 4.19.195-syzkaller #0 [ 46.508298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 46.518687] Call Trace: [ 46.521793] dump_stack+0x123/0x171 [ 46.525605] should_fail.cold.4+0x5/0xa [ 46.529581] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 46.534931] ? lock_downgrade+0x860/0x860 [ 46.539072] ? ___might_sleep+0x16b/0x270 [ 46.543206] __should_failslab+0xba/0xf0 [ 46.547259] should_failslab+0x9/0x20 [ 46.551180] __kmalloc+0x2dd/0x770 [ 46.554718] ? tls_push_record+0xff/0x1600 [ 46.558936] ? __sk_mem_schedule+0x5f/0xc0 [ 46.563157] tls_push_record+0xff/0x1600 [ 46.567335] tls_sw_sendpage+0x462/0xc00 [ 46.571508] ? tls_sw_sendmsg+0x1010/0x1010 [ 46.575918] ? pipe_lock+0x4f/0x60 [ 46.579480] inet_sendpage+0x122/0x600 [ 46.583362] ? kernel_sendpage+0xd0/0xd0 [ 46.587406] kernel_sendpage+0x60/0xd0 [ 46.591282] ? pipe_lock+0x4f/0x60 [ 46.594815] sock_sendpage+0x6d/0xd0 [ 46.598515] pipe_to_sendpage+0x212/0x430 [ 46.602653] ? generic_pipe_buf_nosteal+0x10/0x10 [ 46.607533] ? kasan_check_write+0x14/0x20 [ 46.611751] ? anon_pipe_buf_release+0x149/0x1f0 [ 46.616500] __splice_from_pipe+0x2cb/0x720 [ 46.620915] ? generic_pipe_buf_nosteal+0x10/0x10 [ 46.625854] ? generic_pipe_buf_nosteal+0x10/0x10 [ 46.630900] splice_from_pipe+0xbb/0x120 [ 46.634952] ? splice_shrink_spd+0xa0/0xa0 [ 46.639194] ? rw_verify_area+0xb8/0x2b0 [ 46.643261] generic_splice_sendpage+0x10/0x20 [ 46.647925] do_splice+0xa25/0x12b0 [ 46.651562] ? opipe_prep.part.13+0x320/0x320 [ 46.656049] ? __fget_light+0x174/0x1e0 [ 46.660892] __x64_sys_splice+0x248/0x300 [ 46.665171] do_syscall_64+0xd0/0x4e0 [ 46.668964] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 46.674163] RIP: 0033:0x460b89 [ 46.677360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 46.697555] RSP: 002b:00007f51925d71a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 46.705456] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 0000000000460b89 [ 46.712707] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 46.719958] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 46.727228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 46.734529] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007f51925d76bc [ 46.741804] CPU: 0 PID: 6652 Comm: syz-executor.2 Not tainted 4.19.195-syzkaller #0 [ 46.749953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 46.759700] Call Trace: [ 46.762290] dump_stack+0x123/0x171 [ 46.765922] should_fail.cold.4+0x5/0xa [ 46.769901] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 46.775010] ? lock_downgrade+0x860/0x860 [ 46.779252] ? ___might_sleep+0x16b/0x270 [ 46.783417] __should_failslab+0xba/0xf0 [ 46.787604] should_failslab+0x9/0x20 [ 46.791420] __kmalloc+0x2dd/0x770 [ 46.794950] ? tls_push_record+0xff/0x1600 [ 46.799177] ? __sk_mem_schedule+0x5f/0xc0 [ 46.803400] tls_push_record+0xff/0x1600 [ 46.807450] tls_sw_sendpage+0x462/0xc00 [ 46.811517] ? tls_sw_sendmsg+0x1010/0x1010 [ 46.815930] ? pipe_lock+0x4f/0x60 [ 46.819504] inet_sendpage+0x122/0x600 [ 46.824444] ? kernel_sendpage+0xd0/0xd0 [ 46.828602] kernel_sendpage+0x60/0xd0 [ 46.832489] ? pipe_lock+0x4f/0x60 [ 46.836227] sock_sendpage+0x6d/0xd0 [ 46.840029] pipe_to_sendpage+0x212/0x430 [ 46.843195] ================================================================== [ 46.844171] ? generic_pipe_buf_nosteal+0x10/0x10 [ 46.844182] ? kasan_check_write+0x14/0x20 [ 46.851630] BUG: KASAN: use-after-free in scatterwalk_copychunks+0x1e1/0x610 [ 46.856452] ? anon_pipe_buf_release+0x149/0x1f0 [ 46.861379] Read of size 4094 at addr ffff8881e1772000 by task syz-executor.0/6657 [ 46.861382] [ 46.868635] __splice_from_pipe+0x2cb/0x720 [ 46.887045] ? generic_pipe_buf_nosteal+0x10/0x10 [ 46.891937] ? generic_pipe_buf_nosteal+0x10/0x10 [ 46.896786] splice_from_pipe+0xbb/0x120 [ 46.900857] ? splice_shrink_spd+0xa0/0xa0 [ 46.905101] ? rw_verify_area+0xb8/0x2b0 [ 46.909237] generic_splice_sendpage+0x10/0x20 [ 46.913799] do_splice+0xa25/0x12b0 [ 46.917413] ? opipe_prep.part.13+0x320/0x320 [ 46.921890] ? __fget_light+0x174/0x1e0 [ 46.925850] __x64_sys_splice+0x248/0x300 [ 46.930081] do_syscall_64+0xd0/0x4e0 [ 46.933951] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 46.939225] RIP: 0033:0x460b89 [ 46.942400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 46.961285] RSP: 002b:00007f8cf5e381a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 46.969150] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 0000000000460b89 [ 46.976398] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 46.983645] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 46.990940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 46.998239] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007f8cf5e386bc [ 47.005699] CPU: 1 PID: 6657 Comm: syz-executor.0 Not tainted 4.19.195-syzkaller #0 [ 47.013503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 47.022862] Call Trace: [ 47.025477] dump_stack+0x123/0x171 [ 47.029098] print_address_description.cold.8+0x9/0x1ff [ 47.034526] kasan_report.cold.9+0x242/0x2fe [ 47.038914] ? scatterwalk_copychunks+0x1e1/0x610 [ 47.044070] check_memory_region+0x13e/0x1b0 [ 47.048548] memcpy+0x23/0x50 [ 47.051633] scatterwalk_copychunks+0x1e1/0x610 [ 47.056296] scatterwalk_map_and_copy+0x128/0x190 [ 47.061128] ? __lock_is_held+0xb5/0x140 [ 47.065349] ? scatterwalk_copychunks+0x610/0x610 [ 47.070175] ? rcu_read_lock_sched_held+0x108/0x120 [ 47.075171] ? __kmalloc+0x5f1/0x770 [ 47.078866] ? gcmaes_encrypt.constprop.15+0x630/0xda0 [ 47.084125] gcmaes_encrypt.constprop.15+0x6d6/0xda0 [ 47.089207] ? tls_sw_sendpage+0x462/0xc00 [ 47.093428] ? inet_sendpage+0x122/0x600 [ 47.097646] ? kernel_sendpage+0x60/0xd0 [ 47.101793] ? sock_sendpage+0x6d/0xd0 [ 47.105658] ? pipe_to_sendpage+0x212/0x430 [ 47.109958] ? __splice_from_pipe+0x2cb/0x720 [ 47.114437] ? gcmaes_crypt_by_sg.constprop.16+0x1490/0x1490 [ 47.120302] ? usleep_range+0x130/0x130 [ 47.124266] ? __lock_is_held+0xb5/0x140 [ 47.128467] ? __lock_is_held+0xb5/0x140 [ 47.132696] generic_gcmaes_encrypt+0xfd/0x150 [ 47.137259] ? generic_gcmaes_encrypt+0xfd/0x150 [ 47.142029] ? helper_rfc4106_encrypt+0x450/0x450 [ 47.147057] ? __kmalloc+0x5f1/0x770 [ 47.150800] gcmaes_wrapper_encrypt+0x109/0x180 [ 47.155449] tls_push_record+0x9ae/0x1600 [ 47.159595] ? sk_stream_kill_queues+0x570/0x570 [ 47.164344] tls_sw_sendpage+0x462/0xc00 [ 47.168403] ? tls_sw_sendmsg+0x1010/0x1010 [ 47.172794] ? pipe_lock+0x4f/0x60 [ 47.176341] inet_sendpage+0x122/0x600 [ 47.180221] ? kernel_sendpage+0xd0/0xd0 [ 47.184268] kernel_sendpage+0x60/0xd0 [ 47.188150] ? pipe_lock+0x4f/0x60 [ 47.191677] sock_sendpage+0x6d/0xd0 [ 47.195398] pipe_to_sendpage+0x212/0x430 [ 47.199618] ? generic_pipe_buf_nosteal+0x10/0x10 [ 47.204553] ? kasan_check_write+0x14/0x20 [ 47.208791] ? anon_pipe_buf_release+0x149/0x1f0 [ 47.213530] __splice_from_pipe+0x2cb/0x720 [ 47.217923] ? generic_pipe_buf_nosteal+0x10/0x10 [ 47.222851] ? generic_pipe_buf_nosteal+0x10/0x10 [ 47.227670] splice_from_pipe+0xbb/0x120 [ 47.231840] ? splice_shrink_spd+0xa0/0xa0 [ 47.236074] ? rw_verify_area+0xb8/0x2b0 [ 47.240137] generic_splice_sendpage+0x10/0x20 [ 47.245332] do_splice+0xa25/0x12b0 [ 47.249068] ? opipe_prep.part.13+0x320/0x320 [ 47.253684] ? __fget_light+0x174/0x1e0 [ 47.257643] __x64_sys_splice+0x248/0x300 [ 47.261863] do_syscall_64+0xd0/0x4e0 [ 47.265668] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 47.271126] RIP: 0033:0x460b89 [ 47.274397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 47.294022] RSP: 002b:00007f51925d71a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 47.301993] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 0000000000460b89 [ 47.309328] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 47.316579] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 47.323912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 47.331182] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007f51925d76bc [ 47.338445] [ 47.340051] Allocated by task 3297: [ 47.343660] save_stack+0x43/0xd0 [ 47.347103] kasan_kmalloc+0xc7/0xe0 [ 47.350903] kasan_slab_alloc+0x12/0x20 [ 47.354862] kmem_cache_alloc+0x12e/0x720 [ 47.359008] vm_area_dup+0x1b/0x150 [ 47.362629] copy_process.part.34+0x307c/0x76d0 [ 47.367305] _do_fork+0x16a/0xcb0 [ 47.370842] __x64_sys_clone+0xba/0x140 [ 47.374824] do_syscall_64+0xd0/0x4e0 [ 47.378792] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 47.383968] [ 47.385663] Freed by task 6636: [ 47.388926] save_stack+0x43/0xd0 [ 47.392628] __kasan_slab_free+0x102/0x150 [ 47.396942] kasan_slab_free+0xe/0x10 [ 47.400907] kmem_cache_free+0x83/0x290 [ 47.404946] vm_area_free+0x13/0x20 [ 47.408556] remove_vma+0x105/0x140 [ 47.412339] exit_mmap+0x2d1/0x470 [ 47.415855] mmput+0x107/0x3f0 [ 47.419120] do_exit+0x9ce/0x2cf0 [ 47.422637] do_group_exit+0xf4/0x2f0 [ 47.426416] __x64_sys_exit_group+0x39/0x40 [ 47.430726] do_syscall_64+0xd0/0x4e0 [ 47.434591] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 47.440546] [ 47.442182] The buggy address belongs to the object at ffff8881e1772000 [ 47.442182] which belongs to the cache vm_area_struct of size 200 [ 47.455626] The buggy address is located 0 bytes inside of [ 47.455626] 200-byte region [ffff8881e1772000, ffff8881e17720c8) [ 47.467705] The buggy address belongs to the page: [ 47.472880] page:ffffea000785dc80 count:1 mapcount:0 mapping:ffff8881f654e840 index:0x0 [ 47.481281] flags: 0x2fffc0000000100(slab) [ 47.485684] raw: 02fffc0000000100 ffffea000785c208 ffffea0007963788 ffff8881f654e840 [ 47.493886] raw: 0000000000000000 ffff8881e1772000 000000010000000f 0000000000000000 [ 47.502196] page dumped because: kasan: bad access detected [ 47.507889] [ 47.509506] Memory state around the buggy address: [ 47.514430] ffff8881e1771f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 47.521766] ffff8881e1771f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 47.529216] >ffff8881e1772000: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 47.536645] ^ [ 47.540012] ffff8881e1772080: fb fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc [ 47.547350] ffff8881e1772100: fc fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 47.554700] ================================================================== [ 47.562118] Disabling lock debugging due to kernel taint 2021/06/25 18:52:01 executed programs: 30 [ 47.570135] FAULT_INJECTION: forcing a failure. [ 47.570135] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 47.607943] CPU: 0 PID: 6643 Comm: syz-executor.4 Tainted: G B 4.19.195-syzkaller #0 [ 47.617324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 47.626744] Call Trace: [ 47.629311] dump_stack+0x123/0x171 [ 47.632936] should_fail.cold.4+0x5/0xa [ 47.636887] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 47.642247] ? lock_downgrade+0x860/0x860 [ 47.646489] ? ___might_sleep+0x16b/0x270 [ 47.650626] __should_failslab+0xba/0xf0 [ 47.654751] should_failslab+0x9/0x20 [ 47.658628] kmem_cache_alloc_node+0x262/0x720 [ 47.663185] __alloc_skb+0xa7/0x580 [ 47.666873] ? skb_scrub_packet+0x3c0/0x3c0 [ 47.671268] ? _raw_spin_unlock_irq+0x60/0x80 [ 47.675759] ? finish_task_switch+0x14a/0x6f0 [ 47.680226] ? finish_task_switch+0x11c/0x6f0 [ 47.684790] sk_stream_alloc_skb+0x9e/0x810 [ 47.689170] ? tcp_send_mss+0x1d/0x220 [ 47.693230] do_tcp_sendpages+0x774/0x1d30 [ 47.697608] ? __lock_is_held+0xb5/0x140 [ 47.701817] ? sk_stream_alloc_skb+0x810/0x810 [ 47.706372] ? __local_bh_enable_ip+0x160/0x260 [ 47.711015] ? lock_sock_nested+0xc5/0x100 [ 47.715223] ? lockdep_hardirqs_on+0x421/0x5c0 [ 47.719864] ? __local_bh_enable_ip+0x160/0x260 [ 47.724530] ? kasan_check_read+0x11/0x20 [ 47.728652] tcp_sendpage_locked+0x63/0xa0 [ 47.732861] tcp_sendpage+0x37/0x50 [ 47.736462] inet_sendpage+0x122/0x600 [ 47.740421] ? kernel_sendpage+0xd0/0xd0 [ 47.744456] kernel_sendpage+0x60/0xd0 [ 47.748341] ? pipe_lock+0x4f/0x60 [ 47.751863] sock_sendpage+0x6d/0xd0 [ 47.755590] pipe_to_sendpage+0x212/0x430 [ 47.759722] ? generic_pipe_buf_nosteal+0x10/0x10 [ 47.764540] __splice_from_pipe+0x2cb/0x720 [ 47.768842] ? generic_pipe_buf_nosteal+0x10/0x10 [ 47.773668] ? generic_pipe_buf_nosteal+0x10/0x10 [ 47.778634] splice_from_pipe+0xbb/0x120 [ 47.782732] ? splice_shrink_spd+0xa0/0xa0 [ 47.787058] ? rw_verify_area+0xb8/0x2b0 [ 47.791103] generic_splice_sendpage+0x10/0x20 [ 47.795659] do_splice+0xa25/0x12b0 [ 47.799436] ? opipe_prep.part.13+0x320/0x320 [ 47.804004] ? __fget_light+0x174/0x1e0 [ 47.808327] __x64_sys_splice+0x248/0x300 [ 47.812451] do_syscall_64+0xd0/0x4e0 [ 47.816234] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 47.821400] RIP: 0033:0x460b89 [ 47.824586] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 47.843655] RSP: 002b:00007f51cfe0d1a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 47.851355] RAX: ffffffffffffffda RBX: 000000000052c0f8 RCX: 0000000000460b89 [ 47.858688] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 47.865932] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 47.873179] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 47.880527] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007f51cfe0d6bc [ 47.892140] CPU: 1 PID: 6666 Comm: syz-executor.5 Tainted: G B 4.19.195-syzkaller #0 [ 47.901701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 47.911485] Call Trace: [ 47.914071] dump_stack+0x123/0x171 [ 47.917728] should_fail.cold.4+0x5/0xa [ 47.921701] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 47.922369] kasan: CONFIG_KASAN_INLINE enabled [ 47.926794] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 47.926801] ? __wake_up_common_lock+0xec/0x180 [ 47.926808] __alloc_pages_nodemask+0x1d5/0x710 [ 47.926814] ? __alloc_pages_slowpath+0x25c0/0x25c0 [ 47.926824] alloc_pages_current+0xd6/0x1b0 [ 47.926829] skb_page_frag_refill+0x20b/0x400 [ 47.926833] sk_page_frag_refill+0x46/0x1d0 [ 47.926837] sk_alloc_sg+0x108/0x7d0 [ 47.926841] ? __local_bh_enable_ip+0x120/0x260 [ 47.926848] ? lock_sock_nested+0x82/0x100 [ 47.941444] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 47.945835] alloc_encrypted_sg+0x81/0x100 [ 47.945841] tls_sw_sendpage+0x502/0xc00 [ 47.945846] ? _kstrtoull+0xa0/0x1b0 [ 47.945849] ? _parse_integer+0x100/0x100 [ 47.945855] ? tls_sw_sendmsg+0x1010/0x1010 [ 47.945863] inet_sendpage+0x122/0x600 [ 47.945870] ? kernel_sendpage+0xd0/0xd0 [ 47.945874] kernel_sendpage+0x60/0xd0 [ 47.945880] ? pipe_lock+0x4f/0x60 [ 47.945886] sock_sendpage+0x6d/0xd0 [ 47.960727] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 47.964108] pipe_to_sendpage+0x212/0x430 [ 47.967985] CPU: 0 PID: 6657 Comm: syz-executor.0 Tainted: G B 4.19.195-syzkaller #0 [ 47.972636] ? aa_path_link+0x420/0x420 [ 47.976862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 47.984465] ? generic_pipe_buf_nosteal+0x10/0x10 [ 47.988677] RIP: 0010:scatterwalk_copychunks+0x379/0x610 [ 47.992746] ? mark_held_locks+0x130/0x130 [ 47.996524] Code: ff ff 48 89 c7 e8 17 69 2a 00 4c 89 f2 48 c1 ea 03 42 80 3c 3a 00 0f 85 a8 01 00 00 48 8d 70 08 49 89 06 48 89 f2 48 c1 ea 03 <42> 0f b6 14 3a 84 d2 74 09 80 fa 03 0f 8e 6b 01 00 00 48 8b 5d d0 [ 48.000653] ? map_files_get_link+0x370/0x370 [ 48.004946] RSP: 0018:ffff8881dd86f498 EFLAGS: 00010202 [ 48.008831] ? __fdget_pos+0xa7/0xd0 [ 48.012878] RAX: 0000000000000000 RBX: ffff8881dc37f74c RCX: 000000000000401e [ 48.016746] __splice_from_pipe+0x2cb/0x720 [ 48.020254] RDX: 0000000000000001 RSI: 0000000000000008 RDI: ffff8881dc37f740 [ 48.023942] ? generic_pipe_buf_nosteal+0x10/0x10 [ 48.030231] RBP: ffff8881dd86f4f8 R08: ffffed103b795804 R09: ffffed103b795800 [ 48.034617] ? generic_pipe_buf_nosteal+0x10/0x10 [ 48.043943] R10: 0000000000000000 R11: ffff8881dbcac01d R12: 0000000000000fff [ 48.043946] R13: 000000000000001e R14: ffff8881dd86f538 R15: dffffc0000000000 [ 48.047896] splice_from_pipe+0xbb/0x120 [ 48.057569] FS: 00007f51925d7700(0000) GS:ffff8881f6800000(0000) knlGS:0000000000000000 [ 48.062483] ? splice_shrink_spd+0xa0/0xa0 [ 48.067905] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 48.072167] ? rw_verify_area+0xb8/0x2b0 [ 48.091312] CR2: 0000556af867bc80 CR3: 00000001df0b0006 CR4: 00000000001606f0 [ 48.095883] generic_splice_sendpage+0x10/0x20 [ 48.101344] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 48.105762] do_splice+0xa25/0x12b0 [ 48.112997] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 48.117312] ? opipe_prep.part.13+0x320/0x320 [ 48.125040] Call Trace: [ 48.129859] ? __fget_light+0x174/0x1e0 [ 48.137279] scatterwalk_map_and_copy+0x128/0x190 [ 48.142438] __x64_sys_splice+0x248/0x300 [ 48.149870] ? scatterwalk_copychunks+0x610/0x610 [ 48.157156] do_syscall_64+0xd0/0x4e0 [ 48.161302] ? kernel_fpu_end+0xa3/0x130 [ 48.170059] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 48.174354] ? kernel_fpu_begin+0x170/0x170 [ 48.180333] RIP: 0033:0x460b89 [ 48.184369] gcmaes_encrypt.constprop.15+0x81b/0xda0 [ 48.192149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 48.196790] ? tls_sw_sendpage+0x462/0xc00 [ 48.204203] RSP: 002b:00007f32ae5651a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 48.207806] ? inet_sendpage+0x122/0x600 [ 48.215235] RAX: ffffffffffffffda RBX: 000000000052bfa8 RCX: 0000000000460b89 [ 48.219841] ? kernel_sendpage+0x60/0xd0 [ 48.222751] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 48.226856] ? sock_sendpage+0x6d/0xd0 [ 48.226864] ? pipe_to_sendpage+0x212/0x430 [ 48.231945] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 48.236246] ? __splice_from_pipe+0x2cb/0x720 [ 48.241075] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 48.244902] ? gcmaes_crypt_by_sg.constprop.16+0x1490/0x1490 [ 48.248928] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007f32ae5656bc [ 48.254193] ? usleep_range+0x130/0x130 [ 48.366669] ? __lock_is_held+0xb5/0x140 [ 48.370922] ? __lock_is_held+0xb5/0x140 [ 48.375321] generic_gcmaes_encrypt+0xfd/0x150 [ 48.380000] ? generic_gcmaes_encrypt+0xfd/0x150 [ 48.385388] ? helper_rfc4106_encrypt+0x450/0x450 [ 48.390384] ? __kmalloc+0x5f1/0x770 [ 48.394562] gcmaes_wrapper_encrypt+0x109/0x180 [ 48.399396] tls_push_record+0x9ae/0x1600 [ 48.404005] ? sk_stream_kill_queues+0x570/0x570 [ 48.409668] tls_sw_sendpage+0x462/0xc00 [ 48.414062] ? tls_sw_sendmsg+0x1010/0x1010 [ 48.418559] ? pipe_lock+0x4f/0x60 [ 48.422585] inet_sendpage+0x122/0x600 [ 48.426544] ? kernel_sendpage+0xd0/0xd0 [ 48.430580] kernel_sendpage+0x60/0xd0 [ 48.434545] ? pipe_lock+0x4f/0x60 [ 48.438061] sock_sendpage+0x6d/0xd0 [ 48.441762] pipe_to_sendpage+0x212/0x430 [ 48.445903] ? generic_pipe_buf_nosteal+0x10/0x10 [ 48.450810] ? kasan_check_write+0x14/0x20 [ 48.455024] ? anon_pipe_buf_release+0x149/0x1f0 [ 48.459932] __splice_from_pipe+0x2cb/0x720 [ 48.464273] ? generic_pipe_buf_nosteal+0x10/0x10 [ 48.469235] ? generic_pipe_buf_nosteal+0x10/0x10 [ 48.474614] splice_from_pipe+0xbb/0x120 [ 48.478656] ? splice_shrink_spd+0xa0/0xa0 [ 48.482869] ? rw_verify_area+0xb8/0x2b0 [ 48.487016] generic_splice_sendpage+0x10/0x20 [ 48.491574] do_splice+0xa25/0x12b0 [ 48.495182] ? opipe_prep.part.13+0x320/0x320 [ 48.500697] ? __fget_light+0x174/0x1e0 [ 48.504910] __x64_sys_splice+0x248/0x300 [ 48.509211] do_syscall_64+0xd0/0x4e0 [ 48.513107] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 48.518377] RIP: 0033:0x460b89 [ 48.521560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 48.541636] RSP: 002b:00007f51925d71a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 48.549922] RAX: ffffffffffffffda RBX: 000000000052bf00 RCX: 0000000000460b89 [ 48.557399] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 48.565026] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 48.572470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 48.579825] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007f51925d76bc [ 48.587466] Modules linked in: [ 48.591467] ---[ end trace 1bce3062390f7587 ]--- [ 48.596984] RIP: 0010:scatterwalk_copychunks+0x379/0x610 [ 48.602957] Code: ff ff 48 89 c7 e8 17 69 2a 00 4c 89 f2 48 c1 ea 03 42 80 3c 3a 00 0f 85 a8 01 00 00 48 8d 70 08 49 89 06 48 89 f2 48 c1 ea 03 <42> 0f b6 14 3a 84 d2 74 09 80 fa 03 0f 8e 6b 01 00 00 48 8b 5d d0 [ 48.629069] RSP: 0018:ffff8881dd86f498 EFLAGS: 00010202 [ 48.635882] RAX: 0000000000000000 RBX: ffff8881dc37f74c RCX: 000000000000401e [ 48.643935] RDX: 0000000000000001 RSI: 0000000000000008 RDI: ffff8881dc37f740 [ 48.651419] RBP: ffff8881dd86f4f8 R08: ffffed103b795804 R09: ffffed103b795800 [ 48.659813] R10: 0000000000000000 R11: ffff8881dbcac01d R12: 0000000000000fff [ 48.667458] FAULT_INJECTION: forcing a failure. [ 48.667458] name failslab, interval 1, probability 0, space 0, times 0 [ 48.680537] R13: 000000000000001e R14: ffff8881dd86f538 R15: dffffc0000000000 [ 48.689233] FAULT_INJECTION: forcing a failure. [ 48.689233] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 48.691725] FS: 00007f51925d7700(0000) GS:ffff8881f6900000(0000) knlGS:0000000000000000 [ 48.703038] FAULT_INJECTION: forcing a failure. [ 48.703038] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 48.711080] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 48.728168] CR2: 000000000052c071 CR3: 00000001df0b0002 CR4: 00000000001606e0 [ 48.735681] CPU: 0 PID: 6686 Comm: syz-executor.3 Tainted: G B D 4.19.195-syzkaller #0 [ 48.736786] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 48.745551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 48.745553] Call Trace: [ 48.745567] dump_stack+0x123/0x171 [ 48.745575] should_fail.cold.4+0x5/0xa [ 48.745582] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 48.745588] ? lock_downgrade+0x860/0x860 [ 48.745593] ? set_page_refcounted+0x100/0x100 [ 48.745597] ? ___might_sleep+0x16b/0x270 [ 48.745603] __should_failslab+0xba/0xf0 [ 48.745608] should_failslab+0x9/0x20 [ 48.745613] kmem_cache_alloc_node+0x262/0x720 [ 48.745620] __alloc_skb+0xa7/0x580 [ 48.745625] ? skb_scrub_packet+0x3c0/0x3c0 [ 48.745629] ? _raw_spin_unlock_irq+0x60/0x80 [ 48.745633] ? finish_task_switch+0x14a/0x6f0 [ 48.745636] ? finish_task_switch+0x11c/0x6f0 [ 48.745641] ? switch_mm+0x114/0x150 [ 48.745647] sk_stream_alloc_skb+0x9e/0x810 [ 48.745651] ? tcp_send_mss+0x1d/0x220 [ 48.745656] do_tcp_sendpages+0x774/0x1d30 [ 48.745660] ? lock_acquire+0x173/0x3d0 [ 48.745668] ? sk_stream_alloc_skb+0x810/0x810 [ 48.745674] ? __local_bh_enable_ip+0x120/0x260 [ 48.745677] ? __local_bh_enable_ip+0x160/0x260 [ 48.745682] ? kasan_check_read+0x11/0x20 [ 48.745688] tcp_sendpage_locked+0x63/0xa0 [ 48.745692] tcp_sendpage+0x37/0x50 [ 48.745699] inet_sendpage+0x122/0x600 [ 48.760346] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 48.762303] ? kernel_sendpage+0xd0/0xd0 [ 48.762308] kernel_sendpage+0x60/0xd0 [ 48.762314] ? pipe_lock+0x4f/0x60 [ 48.762318] sock_sendpage+0x6d/0xd0 [ 48.762323] pipe_to_sendpage+0x212/0x430 [ 48.762335] ? aa_path_link+0x420/0x420 [ 48.762339] ? generic_pipe_buf_nosteal+0x10/0x10 [ 48.762344] ? mark_held_locks+0x130/0x130 [ 48.762349] ? map_files_get_link+0x370/0x370 [ 48.762353] ? __fdget_pos+0xa7/0xd0 [ 48.762358] __splice_from_pipe+0x2cb/0x720 [ 48.762364] ? generic_pipe_buf_nosteal+0x10/0x10 [ 48.767755] Kernel panic - not syncing: Fatal exception [ 48.768646] ? generic_pipe_buf_nosteal+0x10/0x10 [ 48.943527] splice_from_pipe+0xbb/0x120 [ 48.947664] ? splice_shrink_spd+0xa0/0xa0 [ 48.951883] ? rw_verify_area+0xb8/0x2b0 [ 48.955922] generic_splice_sendpage+0x10/0x20 [ 48.960485] do_splice+0xa25/0x12b0 [ 48.965152] ? opipe_prep.part.13+0x320/0x320 [ 48.969748] ? __fget_light+0x174/0x1e0 [ 48.973729] __x64_sys_splice+0x248/0x300 [ 48.978061] do_syscall_64+0xd0/0x4e0 [ 48.981856] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 48.987040] RIP: 0033:0x460b89 [ 48.990214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 49.009801] RSP: 002b:00007fb200c0d1a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 49.017593] RAX: ffffffffffffffda RBX: 000000000052c0f8 RCX: 0000000000460b89 [ 49.025457] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 49.032757] RBP: 0000000000000001 R08: 0000000100000300 R09: 0000000000000000 [ 49.040094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 49.047351] R13: 00000000004f7150 R14: 00000000004b4af0 R15: 00007fb200c0d6bc [ 49.056958] Kernel Offset: disabled [ 49.060592] Rebooting in 86400 seconds..