[   24.982907][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[   24.991702][    T8] device bridge_slave_0 left promiscuous mode
[   24.997786][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[   25.005903][    T8] device veth1_macvtap left promiscuous mode
[   25.012127][    T8] device veth0_vlan left promiscuous mode
[   36.043237][   T30] kauditd_printk_skb: 77 callbacks suppressed
[   36.043250][   T30] audit: type=1400 audit(1703629602.880:153): avc:  denied  { transition } for  pid=321 comm="sshd" path="/bin/sh" dev="sda1" ino=89 scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   36.071398][   T30] audit: type=1400 audit(1703629602.900:154): avc:  denied  { noatsecure } for  pid=321 comm="sshd" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   36.090292][   T30] audit: type=1400 audit(1703629602.920:155): avc:  denied  { rlimitinh } for  pid=321 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   36.109065][   T30] audit: type=1400 audit(1703629602.920:156): avc:  denied  { siginh } for  pid=321 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
Warning: Permanently added '10.128.0.206' (ED25519) to the list of known hosts.
2023/12/26 22:26:50 ignoring optional flag "sandboxArg"="0"
2023/12/26 22:26:50 parsed 1 programs
[   43.702974][   T30] audit: type=1400 audit(1703629610.540:157): avc:  denied  { mounton } for  pid=343 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   43.728256][   T30] audit: type=1400 audit(1703629610.550:158): avc:  denied  { mount } for  pid=343 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
2023/12/26 22:26:50 executed programs: 0
[   43.786899][   T30] audit: type=1400 audit(1703629610.630:159): avc:  denied  { unlink } for  pid=343 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   43.819884][  T343] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   43.874736][  T349] bridge0: port 1(bridge_slave_0) entered blocking state
[   43.883118][  T349] bridge0: port 1(bridge_slave_0) entered disabled state
[   43.890654][  T349] device bridge_slave_0 entered promiscuous mode
[   43.897889][  T349] bridge0: port 2(bridge_slave_1) entered blocking state
[   43.904909][  T349] bridge0: port 2(bridge_slave_1) entered disabled state
[   43.912695][  T349] device bridge_slave_1 entered promiscuous mode
[   43.954808][   T30] audit: type=1400 audit(1703629610.790:160): avc:  denied  { write } for  pid=349 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   43.971811][  T349] bridge0: port 2(bridge_slave_1) entered blocking state
[   43.975728][   T30] audit: type=1400 audit(1703629610.810:161): avc:  denied  { read } for  pid=349 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   43.982423][  T349] bridge0: port 2(bridge_slave_1) entered forwarding state
[   43.982515][  T349] bridge0: port 1(bridge_slave_0) entered blocking state
[   44.017197][  T349] bridge0: port 1(bridge_slave_0) entered forwarding state
[   44.037485][  T300] bridge0: port 1(bridge_slave_0) entered disabled state
[   44.045132][  T300] bridge0: port 2(bridge_slave_1) entered disabled state
[   44.054688][  T300] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   44.062008][  T300] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   44.071503][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   44.079793][   T20] bridge0: port 1(bridge_slave_0) entered blocking state
[   44.087107][   T20] bridge0: port 1(bridge_slave_0) entered forwarding state
[   44.096945][  T300] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   44.105061][  T300] bridge0: port 2(bridge_slave_1) entered blocking state
[   44.111925][  T300] bridge0: port 2(bridge_slave_1) entered forwarding state
[   44.127346][   T64] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   44.135487][   T64] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   44.145754][  T300] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   44.156960][  T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   44.164819][  T304] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   44.172321][  T304] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   44.180545][  T349] device veth0_vlan entered promiscuous mode
[   44.191498][  T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   44.201417][  T349] device veth1_macvtap entered promiscuous mode
[   44.213892][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   44.222620][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   44.235018][   T30] audit: type=1400 audit(1703629611.070:162): avc:  denied  { mounton } for  pid=349 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=362 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   44.269119][   T30] audit: type=1400 audit(1703629611.110:163): avc:  denied  { prog_load } for  pid=355 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   44.290812][   T30] audit: type=1400 audit(1703629611.110:164): avc:  denied  { bpf } for  pid=355 comm="syz-executor.0" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   44.313079][   T30] audit: type=1400 audit(1703629611.110:165): avc:  denied  { perfmon } for  pid=355 comm="syz-executor.0" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   44.334622][   T30] audit: type=1400 audit(1703629611.170:166): avc:  denied  { prog_run } for  pid=355 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   44.335836][  T356] FAULT_INJECTION: forcing a failure.
[   44.335836][  T356] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   44.367213][  T356] CPU: 1 PID: 356 Comm: syz-executor.0 Not tainted 5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   44.377349][  T356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   44.387381][  T356] Call Trace:
[   44.390501][  T356]  <TASK>
[   44.393454][  T356]  dump_stack_lvl+0x151/0x1b7
[   44.397963][  T356]  ? io_uring_drop_tctx_refs+0x190/0x190
[   44.404226][  T356]  dump_stack+0x15/0x17
[   44.408409][  T356]  should_fail+0x3c6/0x510
[   44.413316][  T356]  should_fail_usercopy+0x1a/0x20
[   44.418239][  T356]  _copy_to_user+0x20/0x90
[   44.422554][  T356]  simple_read_from_buffer+0xc7/0x150
[   44.427762][  T356]  proc_fail_nth_read+0x1a3/0x210
[   44.432736][  T356]  ? proc_fault_inject_write+0x390/0x390
[   44.438748][  T356]  ? fsnotify_perm+0x470/0x5d0
[   44.443475][  T356]  ? security_file_permission+0x86/0xb0
[   44.448956][  T356]  ? proc_fault_inject_write+0x390/0x390
[   44.455106][  T356]  vfs_read+0x27d/0xd40
[   44.459969][  T356]  ? kernel_read+0x1f0/0x1f0
[   44.464399][  T356]  ? __kasan_check_write+0x14/0x20
[   44.469495][  T356]  ? mutex_lock+0xb6/0x1e0
[   44.473932][  T356]  ? wait_for_completion_killable_timeout+0x10/0x10
[   44.480547][  T356]  ? __fdget_pos+0x2e7/0x3a0
[   44.485171][  T356]  ? ksys_read+0x77/0x2c0
[   44.489694][  T356]  ksys_read+0x199/0x2c0
[   44.494007][  T356]  ? vfs_write+0x1110/0x1110
[   44.498730][  T356]  ? __kasan_check_read+0x11/0x20
[   44.503675][  T356]  __x64_sys_read+0x7b/0x90
[   44.508017][  T356]  do_syscall_64+0x3d/0xb0
[   44.512379][  T356]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   44.518419][  T356] RIP: 0033:0x7f5b12ae878c
[   44.522748][  T356] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   44.543904][  T356] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   44.552586][  T356] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   44.560577][  T356] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   44.568472][  T356] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   44.576812][  T356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   44.584881][  T356] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   44.594503][  T356]  </TASK>
[   44.607397][  T360] FAULT_INJECTION: forcing a failure.
[   44.607397][  T360] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   44.621161][  T360] CPU: 1 PID: 360 Comm: syz-executor.0 Not tainted 5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   44.631811][  T360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   44.641939][  T360] Call Trace:
[   44.645156][  T360]  <TASK>
[   44.648020][  T360]  dump_stack_lvl+0x151/0x1b7
[   44.652523][  T360]  ? io_uring_drop_tctx_refs+0x190/0x190
[   44.658077][  T360]  dump_stack+0x15/0x17
[   44.662186][  T360]  should_fail+0x3c6/0x510
[   44.666415][  T360]  should_fail_usercopy+0x1a/0x20
[   44.671631][  T360]  _copy_to_user+0x20/0x90
[   44.676168][  T360]  simple_read_from_buffer+0xc7/0x150
[   44.681687][  T360]  proc_fail_nth_read+0x1a3/0x210
[   44.686561][  T360]  ? proc_fault_inject_write+0x390/0x390
[   44.692663][  T360]  ? fsnotify_perm+0x470/0x5d0
[   44.697441][  T360]  ? security_file_permission+0x86/0xb0
[   44.703544][  T360]  ? proc_fault_inject_write+0x390/0x390
[   44.709309][  T360]  vfs_read+0x27d/0xd40
[   44.713627][  T360]  ? kernel_read+0x1f0/0x1f0
[   44.718139][  T360]  ? __kasan_check_write+0x14/0x20
[   44.723085][  T360]  ? mutex_lock+0xb6/0x1e0
[   44.727425][  T360]  ? wait_for_completion_killable_timeout+0x10/0x10
[   44.733936][  T360]  ? __fdget_pos+0x2e7/0x3a0
[   44.738373][  T360]  ? ksys_read+0x77/0x2c0
[   44.742527][  T360]  ksys_read+0x199/0x2c0
[   44.746789][  T360]  ? vfs_write+0x1110/0x1110
[   44.751209][  T360]  ? __kasan_check_read+0x11/0x20
[   44.756292][  T360]  __x64_sys_read+0x7b/0x90
[   44.760759][  T360]  do_syscall_64+0x3d/0xb0
[   44.765216][  T360]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   44.771004][  T360] RIP: 0033:0x7f5b12ae878c
[   44.775448][  T360] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   44.794895][  T360] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   44.803138][  T360] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   44.810953][  T360] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   44.818865][  T360] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   44.826671][  T360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   44.834529][  T360] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   44.842622][  T360]  </TASK>
[   44.855712][  T362] FAULT_INJECTION: forcing a failure.
[   44.855712][  T362] name failslab, interval 1, probability 0, space 0, times 1
[   44.869152][  T362] CPU: 1 PID: 362 Comm: syz-executor.0 Not tainted 5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   44.879481][  T362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   44.889471][  T362] Call Trace:
[   44.892738][  T362]  <TASK>
[   44.895627][  T362]  dump_stack_lvl+0x151/0x1b7
[   44.900116][  T362]  ? io_uring_drop_tctx_refs+0x190/0x190
[   44.905788][  T362]  dump_stack+0x15/0x17
[   44.909864][  T362]  should_fail+0x3c6/0x510
[   44.914114][  T362]  __should_failslab+0xa4/0xe0
[   44.918718][  T362]  should_failslab+0x9/0x20
[   44.923063][  T362]  slab_pre_alloc_hook+0x37/0xd0
[   44.927832][  T362]  kmem_cache_alloc_trace+0x48/0x210
[   44.932957][  T362]  ? sk_psock_skb_ingress_self+0x60/0x330
[   44.938505][  T362]  ? migrate_disable+0x190/0x190
[   44.943366][  T362]  sk_psock_skb_ingress_self+0x60/0x330
[   44.948750][  T362]  sk_psock_verdict_recv+0x66d/0x840
[   44.953869][  T362]  unix_read_sock+0x132/0x370
[   44.958480][  T362]  ? sk_psock_skb_redirect+0x440/0x440
[   44.963970][  T362]  ? unix_stream_splice_actor+0x120/0x120
[   44.969683][  T362]  ? _raw_spin_lock_irqsave+0xf9/0x210
[   44.975276][  T362]  ? unix_stream_splice_actor+0x120/0x120
[   44.980933][  T362]  sk_psock_verdict_data_ready+0x147/0x1a0
[   44.986643][  T362]  ? sk_psock_start_verdict+0xc0/0xc0
[   44.991937][  T362]  ? _raw_spin_lock+0xa4/0x1b0
[   44.996657][  T362]  ? _raw_spin_unlock_irqrestore+0x5c/0x80
[   45.002394][  T362]  ? skb_queue_tail+0xfb/0x120
[   45.007001][  T362]  unix_dgram_sendmsg+0x15fa/0x2090
[   45.012222][  T362]  ? unix_dgram_poll+0x710/0x710
[   45.017079][  T362]  ? _raw_spin_trylock+0xcd/0x1a0
[   45.021938][  T362]  ? security_socket_sendmsg+0x82/0xb0
[   45.027236][  T362]  ? unix_dgram_poll+0x710/0x710
[   45.032006][  T362]  ____sys_sendmsg+0x59e/0x8f0
[   45.036609][  T362]  ? __sys_sendmsg_sock+0x40/0x40
[   45.041470][  T362]  ? import_iovec+0xe5/0x120
[   45.045893][  T362]  ___sys_sendmsg+0x252/0x2e0
[   45.050411][  T362]  ? __sys_sendmsg+0x260/0x260
[   45.055218][  T362]  ? do_handle_mm_fault+0x1949/0x2330
[   45.060419][  T362]  ? __kasan_check_write+0x14/0x20
[   45.065639][  T362]  ? proc_fail_nth_write+0x20b/0x290
[   45.071056][  T362]  ? __fdget+0x1bc/0x240
[   45.075115][  T362]  __sys_sendmmsg+0x2bf/0x530
[   45.079637][  T362]  ? __ia32_sys_sendmsg+0x90/0x90
[   45.084579][  T362]  ? mutex_unlock+0xb2/0x260
[   45.089004][  T362]  ? __kasan_check_write+0x14/0x20
[   45.094135][  T362]  ? debug_smp_processor_id+0x17/0x20
[   45.099343][  T362]  ? fpregs_assert_state_consistent+0xb6/0xe0
[   45.105246][  T362]  __x64_sys_sendmmsg+0xa0/0xb0
[   45.109938][  T362]  do_syscall_64+0x3d/0xb0
[   45.114186][  T362]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   45.120128][  T362] RIP: 0033:0x7f5b12ae9ae9
[   45.124991][  T362] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   45.144764][  T362] RSP: 002b:00007f5b1266c0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   45.153134][  T362] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae9ae9
[   45.160937][  T362] RDX: 0000000000000001 RSI: 00000000200063c0 RDI: 0000000000000003
[   45.168749][  T362] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   45.176734][  T362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   45.184640][  T362] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   45.192560][  T362]  </TASK>
[   45.197710][  T361] ==================================================================
[   45.205954][  T361] BUG: KASAN: use-after-free in consume_skb+0x3c/0x250
[   45.212801][  T361] Read of size 4 at addr ffff8881069f9aec by task syz-executor.0/361
[   45.220899][  T361] 
[   45.223133][  T361] CPU: 1 PID: 361 Comm: syz-executor.0 Not tainted 5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   45.233548][  T361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   45.243674][  T361] Call Trace:
[   45.246900][  T361]  <TASK>
[   45.250021][  T361]  dump_stack_lvl+0x151/0x1b7
[   45.254895][  T361]  ? io_uring_drop_tctx_refs+0x190/0x190
[   45.260365][  T361]  ? panic+0x751/0x751
[   45.264368][  T361]  print_address_description+0x87/0x3b0
[   45.269997][  T361]  kasan_report+0x179/0x1c0
[   45.274449][  T361]  ? consume_skb+0x3c/0x250
[   45.278867][  T361]  ? consume_skb+0x3c/0x250
[   45.283207][  T361]  kasan_check_range+0x293/0x2a0
[   45.288169][  T361]  __kasan_check_read+0x11/0x20
[   45.292923][  T361]  consume_skb+0x3c/0x250
[   45.297091][  T361]  __sk_msg_free+0x2dd/0x370
[   45.301517][  T361]  ? _raw_spin_unlock_irqrestore+0x5c/0x80
[   45.307248][  T361]  sk_psock_stop+0x44c/0x4d0
[   45.311855][  T361]  ? unix_peer_get+0xe0/0xe0
[   45.316359][  T361]  sock_map_close+0x2b9/0x4c0
[   45.320874][  T361]  ? sock_map_remove_links+0x570/0x570
[   45.326176][  T361]  ? rwsem_mark_wake+0x6b0/0x6b0
[   45.330943][  T361]  unix_release+0x82/0xc0
[   45.335458][  T361]  sock_close+0xdf/0x270
[   45.339550][  T361]  ? sock_mmap+0xa0/0xa0
[   45.343615][  T361]  __fput+0x3fe/0x910
[   45.347441][  T361]  ____fput+0x15/0x20
[   45.351436][  T361]  task_work_run+0x129/0x190
[   45.356004][  T361]  exit_to_user_mode_loop+0xc4/0xe0
[   45.361024][  T361]  exit_to_user_mode_prepare+0x5a/0xa0
[   45.366281][  T361]  syscall_exit_to_user_mode+0x26/0x160
[   45.371672][  T361]  do_syscall_64+0x49/0xb0
[   45.375916][  T361]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   45.381729][  T361] RIP: 0033:0x7f5b12ae89da
[   45.386071][  T361] Code: 48 3d 00 f0 ff ff 77 48 c3 0f 1f 80 00 00 00 00 48 83 ec 18 89 7c 24 0c e8 03 7f 02 00 8b 7c 24 0c 89 c2 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 36 89 d7 89 44 24 0c e8 63 7f 02 00 8b 44 24
[   45.405872][  T361] RSP: 002b:00007fffcbda7620 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   45.414190][  T361] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 00007f5b12ae89da
[   45.422001][  T361] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   45.429906][  T361] RBP: 00007f5b12c0a980 R08: 0000001b31860000 R09: 00007fffcbdef0b0
[   45.437799][  T361] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000b270
[   45.445609][  T361] R13: ffffffffffffffff R14: 00007f5b1266d000 R15: 000000000000af2f
[   45.453515][  T361]  </TASK>
[   45.456374][  T361] 
[   45.458630][  T361] Allocated by task 362:
[   45.462717][  T361]  __kasan_slab_alloc+0xb1/0xe0
[   45.467404][  T361]  slab_post_alloc_hook+0x53/0x2c0
[   45.472346][  T361]  kmem_cache_alloc+0xf5/0x200
[   45.477036][  T361]  skb_clone+0x1d1/0x360
[   45.481286][  T361]  sk_psock_verdict_recv+0x53/0x840
[   45.486490][  T361]  unix_read_sock+0x132/0x370
[   45.491107][  T361]  sk_psock_verdict_data_ready+0x147/0x1a0
[   45.496919][  T361]  unix_dgram_sendmsg+0x15fa/0x2090
[   45.502036][  T361]  ____sys_sendmsg+0x59e/0x8f0
[   45.506725][  T361]  ___sys_sendmsg+0x252/0x2e0
[   45.511237][  T361]  __sys_sendmmsg+0x2bf/0x530
[   45.516099][  T361]  __x64_sys_sendmmsg+0xa0/0xb0
[   45.520788][  T361]  do_syscall_64+0x3d/0xb0
[   45.525035][  T361]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   45.530767][  T361] 
[   45.532946][  T361] Freed by task 20:
[   45.536939][  T361]  kasan_set_track+0x4b/0x70
[   45.541363][  T361]  kasan_set_free_info+0x23/0x40
[   45.546225][  T361]  ____kasan_slab_free+0x126/0x160
[   45.551269][  T361]  __kasan_slab_free+0x11/0x20
[   45.556033][  T361]  slab_free_freelist_hook+0xbd/0x190
[   45.561243][  T361]  kmem_cache_free+0x116/0x2e0
[   45.565841][  T361]  kfree_skbmem+0x104/0x170
[   45.570365][  T361]  kfree_skb+0xc2/0x360
[   45.574356][  T361]  sk_psock_backlog+0xc21/0xd90
[   45.579131][  T361]  process_one_work+0x6bb/0xc10
[   45.584858][  T361]  worker_thread+0xad5/0x12a0
[   45.589371][  T361]  kthread+0x421/0x510
[   45.593365][  T361]  ret_from_fork+0x1f/0x30
[   45.597796][  T361] 
[   45.600144][  T361] The buggy address belongs to the object at ffff8881069f9a00
[   45.600144][  T361]  which belongs to the cache skbuff_head_cache of size 248
[   45.615112][  T361] The buggy address is located 236 bytes inside of
[   45.615112][  T361]  248-byte region [ffff8881069f9a00, ffff8881069f9af8)
[   45.628260][  T361] The buggy address belongs to the page:
[   45.634081][  T361] page:ffffea00041a7e40 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1069f9
[   45.644510][  T361] flags: 0x4000000000000200(slab|zone=1)
[   45.650166][  T361] raw: 4000000000000200 0000000000000000 dead000000000122 ffff888100350480
[   45.658761][  T361] raw: 0000000000000000 00000000000c000c 00000001ffffffff 0000000000000000
[   45.667167][  T361] page dumped because: kasan: bad access detected
[   45.673715][  T361] page_owner tracks the page as allocated
[   45.679425][  T361] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x112cc0(GFP_USER|__GFP_NOWARN|__GFP_NORETRY), pid 90, ts 44845938090, free_ts 43689963403
[   45.695459][  T361]  post_alloc_hook+0x1a3/0x1b0
[   45.700082][  T361]  prep_new_page+0x1b/0x110
[   45.704483][  T361]  get_page_from_freelist+0x3550/0x35d0
[   45.709960][  T361]  __alloc_pages+0x27e/0x8f0
[   45.714386][  T361]  new_slab+0x9a/0x4e0
[   45.718291][  T361]  ___slab_alloc+0x39e/0x830
[   45.722720][  T361]  __slab_alloc+0x4a/0x90
[   45.726883][  T361]  kmem_cache_alloc+0x134/0x200
[   45.732028][  T361]  __alloc_skb+0xbe/0x550
[   45.736170][  T361]  alloc_skb_with_frags+0xa6/0x680
[   45.741293][  T361]  sock_alloc_send_pskb+0x915/0xa50
[   45.746592][  T361]  unix_dgram_sendmsg+0x6fd/0x2090
[   45.751795][  T361]  __sys_sendto+0x564/0x720
[   45.756480][  T361]  __x64_sys_sendto+0xe5/0x100
[   45.761166][  T361]  do_syscall_64+0x3d/0xb0
[   45.765607][  T361]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   45.771336][  T361] page last free stack trace:
[   45.775933][  T361]  free_unref_page_prepare+0x7c8/0x7d0
[   45.781305][  T361]  free_unref_page+0xe8/0x750
[   45.786179][  T361]  __free_pages+0x61/0xf0
[   45.790602][  T361]  __vunmap+0x7bc/0x8f0
[   45.794581][  T361]  vfree+0x7f/0xb0
[   45.798226][  T361]  kcov_mmap+0x93/0x130
[   45.802318][  T361]  mmap_region+0x138d/0x1b60
[   45.807105][  T361]  do_mmap+0x776/0xe50
[   45.811078][  T361]  vm_mmap_pgoff+0x1dd/0x450
[   45.815505][  T361]  ksys_mmap_pgoff+0x15d/0x1e0
[   45.820099][  T361]  __x64_sys_mmap+0x103/0x120
[   45.824613][  T361]  do_syscall_64+0x3d/0xb0
[   45.829080][  T361]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   45.834984][  T361] 
[   45.837156][  T361] Memory state around the buggy address:
[   45.842897][  T361]  ffff8881069f9980: fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc fc
[   45.851413][  T361]  ffff8881069f9a00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   45.859650][  T361] >ffff8881069f9a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fc
[   45.868026][  T361]                                                           ^
[   45.875410][  T361]  ffff8881069f9b00: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[   45.883404][  T361]  ffff8881069f9b80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   45.893381][  T361] ==================================================================
[   45.901451][  T361] Disabling lock debugging due to kernel taint
[   45.907511][  T361] ==================================================================
[   45.915423][  T361] BUG: KASAN: double-free or invalid-free in kmem_cache_free+0x116/0x2e0
[   45.923928][  T361] 
[   45.926200][  T361] CPU: 1 PID: 361 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   45.937745][  T361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   45.947732][  T361] Call Trace:
[   45.950855][  T361]  <TASK>
[   45.953721][  T361]  dump_stack_lvl+0x151/0x1b7
[   45.958341][  T361]  ? io_uring_drop_tctx_refs+0x190/0x190
[   45.963983][  T361]  ? __wake_up_klogd+0xd5/0x110
[   45.968672][  T361]  ? panic+0x751/0x751
[   45.972570][  T361]  ? kmem_cache_free+0x116/0x2e0
[   45.977439][  T361]  print_address_description+0x87/0x3b0
[   45.982916][  T361]  ? asm_sysvec_apic_timer_interrupt+0x1b/0x20
[   45.989155][  T361]  ? kmem_cache_free+0x116/0x2e0
[   45.994186][  T361]  ? kmem_cache_free+0x116/0x2e0
[   45.999174][  T361]  kasan_report_invalid_free+0x6b/0xa0
[   46.004858][  T361]  ____kasan_slab_free+0x13e/0x160
[   46.010308][  T361]  __kasan_slab_free+0x11/0x20
[   46.015000][  T361]  slab_free_freelist_hook+0xbd/0x190
[   46.021411][  T361]  ? kfree_skbmem+0x104/0x170
[   46.025928][  T361]  kmem_cache_free+0x116/0x2e0
[   46.030516][  T361]  kfree_skbmem+0x104/0x170
[   46.034875][  T361]  consume_skb+0xb4/0x250
[   46.039284][  T361]  __sk_msg_free+0x2dd/0x370
[   46.043795][  T361]  ? _raw_spin_unlock_irqrestore+0x5c/0x80
[   46.049524][  T361]  sk_psock_stop+0x44c/0x4d0
[   46.054124][  T361]  ? unix_peer_get+0xe0/0xe0
[   46.058551][  T361]  sock_map_close+0x2b9/0x4c0
[   46.063063][  T361]  ? sock_map_remove_links+0x570/0x570
[   46.068453][  T361]  ? rwsem_mark_wake+0x6b0/0x6b0
[   46.073742][  T361]  unix_release+0x82/0xc0
[   46.077919][  T361]  sock_close+0xdf/0x270
[   46.081986][  T361]  ? sock_mmap+0xa0/0xa0
[   46.086153][  T361]  __fput+0x3fe/0x910
[   46.089972][  T361]  ____fput+0x15/0x20
[   46.093865][  T361]  task_work_run+0x129/0x190
[   46.098215][  T361]  exit_to_user_mode_loop+0xc4/0xe0
[   46.103250][  T361]  exit_to_user_mode_prepare+0x5a/0xa0
[   46.108546][  T361]  syscall_exit_to_user_mode+0x26/0x160
[   46.114309][  T361]  do_syscall_64+0x49/0xb0
[   46.118624][  T361]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   46.124537][  T361] RIP: 0033:0x7f5b12ae89da
[   46.128779][  T361] Code: 48 3d 00 f0 ff ff 77 48 c3 0f 1f 80 00 00 00 00 48 83 ec 18 89 7c 24 0c e8 03 7f 02 00 8b 7c 24 0c 89 c2 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 36 89 d7 89 44 24 0c e8 63 7f 02 00 8b 44 24
[   46.148776][  T361] RSP: 002b:00007fffcbda7620 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   46.157012][  T361] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 00007f5b12ae89da
[   46.164822][  T361] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   46.172731][  T361] RBP: 00007f5b12c0a980 R08: 0000001b31860000 R09: 00007fffcbdef0b0
[   46.180623][  T361] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000b270
[   46.188430][  T361] R13: ffffffffffffffff R14: 00007f5b1266d000 R15: 000000000000af2f
[   46.196425][  T361]  </TASK>
[   46.199370][  T361] 
[   46.201563][  T361] Allocated by task 362:
[   46.205707][  T361]  __kasan_slab_alloc+0xb1/0xe0
[   46.210399][  T361]  slab_post_alloc_hook+0x53/0x2c0
[   46.215336][  T361]  kmem_cache_alloc+0xf5/0x200
[   46.219942][  T361]  skb_clone+0x1d1/0x360
[   46.224017][  T361]  sk_psock_verdict_recv+0x53/0x840
[   46.229227][  T361]  unix_read_sock+0x132/0x370
[   46.233825][  T361]  sk_psock_verdict_data_ready+0x147/0x1a0
[   46.239468][  T361]  unix_dgram_sendmsg+0x15fa/0x2090
[   46.244598][  T361]  ____sys_sendmsg+0x59e/0x8f0
[   46.249410][  T361]  ___sys_sendmsg+0x252/0x2e0
[   46.254133][  T361]  __sys_sendmmsg+0x2bf/0x530
[   46.258739][  T361]  __x64_sys_sendmmsg+0xa0/0xb0
[   46.263459][  T361]  do_syscall_64+0x3d/0xb0
[   46.267759][  T361]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   46.273666][  T361] 
[   46.275832][  T361] Freed by task 20:
[   46.279482][  T361]  kasan_set_track+0x4b/0x70
[   46.283914][  T361]  kasan_set_free_info+0x23/0x40
[   46.289120][  T361]  ____kasan_slab_free+0x126/0x160
[   46.294082][  T361]  __kasan_slab_free+0x11/0x20
[   46.298927][  T361]  slab_free_freelist_hook+0xbd/0x190
[   46.304327][  T361]  kmem_cache_free+0x116/0x2e0
[   46.308908][  T361]  kfree_skbmem+0x104/0x170
[   46.313359][  T361]  kfree_skb+0xc2/0x360
[   46.317345][  T361]  sk_psock_backlog+0xc21/0xd90
[   46.322206][  T361]  process_one_work+0x6bb/0xc10
[   46.326981][  T361]  worker_thread+0xad5/0x12a0
[   46.331493][  T361]  kthread+0x421/0x510
[   46.335406][  T361]  ret_from_fork+0x1f/0x30
[   46.339738][  T361] 
[   46.341905][  T361] The buggy address belongs to the object at ffff8881069f9a00
[   46.341905][  T361]  which belongs to the cache skbuff_head_cache of size 248
[   46.356318][  T361] The buggy address is located 0 bytes inside of
[   46.356318][  T361]  248-byte region [ffff8881069f9a00, ffff8881069f9af8)
[   46.369338][  T361] The buggy address belongs to the page:
[   46.374807][  T361] page:ffffea00041a7e40 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1069f9
[   46.384956][  T361] flags: 0x4000000000000200(slab|zone=1)
[   46.390531][  T361] raw: 4000000000000200 0000000000000000 dead000000000122 ffff888100350480
[   46.398949][  T361] raw: 0000000000000000 00000000000c000c 00000001ffffffff 0000000000000000
[   46.407444][  T361] page dumped because: kasan: bad access detected
[   46.413696][  T361] page_owner tracks the page as allocated
[   46.419256][  T361] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x112cc0(GFP_USER|__GFP_NOWARN|__GFP_NORETRY), pid 90, ts 44845938090, free_ts 43689963403
[   46.435035][  T361]  post_alloc_hook+0x1a3/0x1b0
[   46.439560][  T361]  prep_new_page+0x1b/0x110
[   46.443899][  T361]  get_page_from_freelist+0x3550/0x35d0
[   46.449282][  T361]  __alloc_pages+0x27e/0x8f0
[   46.453709][  T361]  new_slab+0x9a/0x4e0
[   46.457614][  T361]  ___slab_alloc+0x39e/0x830
[   46.462214][  T361]  __slab_alloc+0x4a/0x90
[   46.466379][  T361]  kmem_cache_alloc+0x134/0x200
[   46.471068][  T361]  __alloc_skb+0xbe/0x550
[   46.475251][  T361]  alloc_skb_with_frags+0xa6/0x680
[   46.480180][  T361]  sock_alloc_send_pskb+0x915/0xa50
[   46.485594][  T361]  unix_dgram_sendmsg+0x6fd/0x2090
[   46.490526][  T361]  __sys_sendto+0x564/0x720
[   46.494861][  T361]  __x64_sys_sendto+0xe5/0x100
[   46.499551][  T361]  do_syscall_64+0x3d/0xb0
[   46.503801][  T361]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   46.509705][  T361] page last free stack trace:
[   46.514222][  T361]  free_unref_page_prepare+0x7c8/0x7d0
[   46.519597][  T361]  free_unref_page+0xe8/0x750
[   46.524455][  T361]  __free_pages+0x61/0xf0
[   46.528890][  T361]  __vunmap+0x7bc/0x8f0
[   46.533118][  T361]  vfree+0x7f/0xb0
[   46.536727][  T361]  kcov_mmap+0x93/0x130
[   46.540742][  T361]  mmap_region+0x138d/0x1b60
[   46.545175][  T361]  do_mmap+0x776/0xe50
[   46.549140][  T361]  vm_mmap_pgoff+0x1dd/0x450
[   46.553915][  T361]  ksys_mmap_pgoff+0x15d/0x1e0
[   46.559153][  T361]  __x64_sys_mmap+0x103/0x120
[   46.563727][  T361]  do_syscall_64+0x3d/0xb0
[   46.568263][  T361]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   46.573984][  T361] 
[   46.576150][  T361] Memory state around the buggy address:
[   46.581721][  T361]  ffff8881069f9900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   46.589706][  T361]  ffff8881069f9980: fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc fc
[   46.597872][  T361] >ffff8881069f9a00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   46.605777][  T361]                    ^
[   46.609664][  T361]  ffff8881069f9a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fc
[   46.617565][  T361]  ffff8881069f9b00: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[   46.625544][  T361] ==================================================================
[   46.646344][  T365] FAULT_INJECTION: forcing a failure.
[   46.646344][  T365] name failslab, interval 1, probability 0, space 0, times 0
[   46.659129][  T365] CPU: 0 PID: 365 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   46.671381][  T365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   46.681362][  T365] Call Trace:
[   46.684657][  T365]  <TASK>
[   46.687444][  T365]  dump_stack_lvl+0x151/0x1b7
[   46.692052][  T365]  ? io_uring_drop_tctx_refs+0x190/0x190
[   46.697817][  T365]  dump_stack+0x15/0x17
[   46.701882][  T365]  should_fail+0x3c6/0x510
[   46.707274][  T365]  __should_failslab+0xa4/0xe0
[   46.711864][  T365]  should_failslab+0x9/0x20
[   46.716203][  T365]  slab_pre_alloc_hook+0x37/0xd0
[   46.721083][  T365]  kmem_cache_alloc_trace+0x48/0x210
[   46.726181][  T365]  ? sk_psock_skb_ingress_self+0x60/0x330
[   46.731737][  T365]  ? migrate_disable+0x190/0x190
[   46.736511][  T365]  sk_psock_skb_ingress_self+0x60/0x330
[   46.742003][  T365]  sk_psock_verdict_recv+0x66d/0x840
[   46.747105][  T365]  unix_read_sock+0x132/0x370
[   46.751630][  T365]  ? sk_psock_skb_redirect+0x440/0x440
[   46.757008][  T365]  ? unix_stream_splice_actor+0x120/0x120
[   46.762552][  T365]  ? _raw_spin_lock_irqsave+0xf9/0x210
[   46.767847][  T365]  ? unix_stream_splice_actor+0x120/0x120
[   46.773401][  T365]  sk_psock_verdict_data_ready+0x147/0x1a0
[   46.779138][  T365]  ? sk_psock_start_verdict+0xc0/0xc0
[   46.784645][  T365]  ? _raw_spin_lock+0xa4/0x1b0
[   46.789394][  T365]  ? _raw_spin_unlock_irqrestore+0x5c/0x80
[   46.795242][  T365]  ? skb_queue_tail+0xfb/0x120
[   46.800054][  T365]  unix_dgram_sendmsg+0x15fa/0x2090
[   46.805106][  T365]  ? unix_dgram_poll+0x710/0x710
[   46.809876][  T365]  ? _raw_spin_trylock+0xcd/0x1a0
[   46.814737][  T365]  ? security_socket_sendmsg+0x82/0xb0
[   46.820127][  T365]  ? unix_dgram_poll+0x710/0x710
[   46.825169][  T365]  ____sys_sendmsg+0x59e/0x8f0
[   46.829761][  T365]  ? __sys_sendmsg_sock+0x40/0x40
[   46.834623][  T365]  ? import_iovec+0xe5/0x120
[   46.839143][  T365]  ___sys_sendmsg+0x252/0x2e0
[   46.843996][  T365]  ? __sys_sendmsg+0x260/0x260
[   46.848595][  T365]  ? do_handle_mm_fault+0x1949/0x2330
[   46.854151][  T365]  ? __kasan_check_write+0x14/0x20
[   46.859470][  T365]  ? proc_fail_nth_write+0x20b/0x290
[   46.864609][  T365]  ? __fdget+0x1bc/0x240
[   46.868674][  T365]  __sys_sendmmsg+0x2bf/0x530
[   46.873201][  T365]  ? __ia32_sys_sendmsg+0x90/0x90
[   46.878050][  T365]  ? mutex_unlock+0xb2/0x260
[   46.882484][  T365]  ? __kasan_check_write+0x14/0x20
[   46.887434][  T365]  ? debug_smp_processor_id+0x17/0x20
[   46.892639][  T365]  ? fpregs_assert_state_consistent+0xb6/0xe0
[   46.898529][  T365]  __x64_sys_sendmmsg+0xa0/0xb0
[   46.903217][  T365]  do_syscall_64+0x3d/0xb0
[   46.907496][  T365]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   46.913339][  T365] RIP: 0033:0x7f5b12ae9ae9
[   46.917801][  T365] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   46.937772][  T365] RSP: 002b:00007f5b1266c0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   46.946002][  T365] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae9ae9
[   46.953805][  T365] RDX: 0000000000000001 RSI: 00000000200063c0 RDI: 0000000000000003
[   46.962007][  T365] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   46.969864][  T365] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   46.977774][  T365] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   46.985583][  T365]  </TASK>
[   46.989208][  T364] ==================================================================
[   46.997191][  T364] BUG: KASAN: double-free or invalid-free in kmem_cache_free+0x116/0x2e0
[   47.005618][  T364] 
[   47.007771][  T364] CPU: 1 PID: 364 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   47.019315][  T364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   47.029296][  T364] Call Trace:
[   47.032515][  T364]  <TASK>
[   47.035295][  T364]  dump_stack_lvl+0x151/0x1b7
[   47.039993][  T364]  ? io_uring_drop_tctx_refs+0x190/0x190
[   47.045531][  T364]  ? __wake_up_klogd+0xd5/0x110
[   47.050224][  T364]  ? panic+0x751/0x751
[   47.054125][  T364]  ? kmem_cache_free+0x116/0x2e0
[   47.059047][  T364]  print_address_description+0x87/0x3b0
[   47.064682][  T364]  ? kmem_cache_free+0x116/0x2e0
[   47.069525][  T364]  ? kmem_cache_free+0x116/0x2e0
[   47.074417][  T364]  kasan_report_invalid_free+0x6b/0xa0
[   47.079703][  T364]  ____kasan_slab_free+0x13e/0x160
[   47.084732][  T364]  __kasan_slab_free+0x11/0x20
[   47.089600][  T364]  slab_free_freelist_hook+0xbd/0x190
[   47.094891][  T364]  ? kfree_skbmem+0x104/0x170
[   47.099396][  T364]  kmem_cache_free+0x116/0x2e0
[   47.103997][  T364]  kfree_skbmem+0x104/0x170
[   47.108428][  T364]  consume_skb+0xb4/0x250
[   47.112591][  T364]  __sk_msg_free+0x2dd/0x370
[   47.117228][  T364]  ? _raw_spin_unlock_irqrestore+0x5c/0x80
[   47.122950][  T364]  sk_psock_stop+0x44c/0x4d0
[   47.127724][  T364]  ? unix_peer_get+0xe0/0xe0
[   47.132149][  T364]  sock_map_close+0x2b9/0x4c0
[   47.136670][  T364]  ? sock_map_remove_links+0x570/0x570
[   47.142246][  T364]  ? rwsem_mark_wake+0x6b0/0x6b0
[   47.147192][  T364]  unix_release+0x82/0xc0
[   47.151530][  T364]  sock_close+0xdf/0x270
[   47.155612][  T364]  ? sock_mmap+0xa0/0xa0
[   47.159870][  T364]  __fput+0x3fe/0x910
[   47.163681][  T364]  ____fput+0x15/0x20
[   47.167587][  T364]  task_work_run+0x129/0x190
[   47.172016][  T364]  exit_to_user_mode_loop+0xc4/0xe0
[   47.177048][  T364]  exit_to_user_mode_prepare+0x5a/0xa0
[   47.182340][  T364]  syscall_exit_to_user_mode+0x26/0x160
[   47.187749][  T364]  do_syscall_64+0x49/0xb0
[   47.191974][  T364]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   47.197790][  T364] RIP: 0033:0x7f5b12ae89da
[   47.202075][  T364] Code: 48 3d 00 f0 ff ff 77 48 c3 0f 1f 80 00 00 00 00 48 83 ec 18 89 7c 24 0c e8 03 7f 02 00 8b 7c 24 0c 89 c2 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 36 89 d7 89 44 24 0c e8 63 7f 02 00 8b 44 24
[   47.221785][  T364] RSP: 002b:00007fffcbda7620 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   47.230035][  T364] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 00007f5b12ae89da
[   47.237830][  T364] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   47.245912][  T364] RBP: 0000000000000032 R08: 0000001b31860000 R09: 00007f5b12c08f8c
[   47.253894][  T364] R10: 00007fffcbda7770 R11: 0000000000000293 R12: 00007f5b1266e0d0
[   47.261884][  T364] R13: ffffffffffffffff R14: 00007f5b1266d000 R15: 000000000000b62d
[   47.270064][  T364]  </TASK>
[   47.272908][  T364] 
[   47.275255][  T364] Allocated by task 365:
[   47.279353][  T364]  __kasan_slab_alloc+0xb1/0xe0
[   47.284027][  T364]  slab_post_alloc_hook+0x53/0x2c0
[   47.289062][  T364]  kmem_cache_alloc+0xf5/0x200
[   47.293751][  T364]  skb_clone+0x1d1/0x360
[   47.298078][  T364]  sk_psock_verdict_recv+0x53/0x840
[   47.303275][  T364]  unix_read_sock+0x132/0x370
[   47.307719][  T364]  sk_psock_verdict_data_ready+0x147/0x1a0
[   47.313455][  T364]  unix_dgram_sendmsg+0x15fa/0x2090
[   47.318481][  T364]  ____sys_sendmsg+0x59e/0x8f0
[   47.323190][  T364]  ___sys_sendmsg+0x252/0x2e0
[   47.327676][  T364]  __sys_sendmmsg+0x2bf/0x530
[   47.332219][  T364]  __x64_sys_sendmmsg+0xa0/0xb0
[   47.337368][  T364]  do_syscall_64+0x3d/0xb0
[   47.341600][  T364]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   47.347402][  T364] 
[   47.349568][  T364] Freed by task 304:
[   47.353304][  T364]  kasan_set_track+0x4b/0x70
[   47.358120][  T364]  kasan_set_free_info+0x23/0x40
[   47.363042][  T364]  ____kasan_slab_free+0x126/0x160
[   47.367970][  T364]  __kasan_slab_free+0x11/0x20
[   47.372904][  T364]  slab_free_freelist_hook+0xbd/0x190
[   47.378435][  T364]  kmem_cache_free+0x116/0x2e0
[   47.383036][  T364]  kfree_skbmem+0x104/0x170
[   47.387377][  T364]  kfree_skb+0xc2/0x360
[   47.391369][  T364]  sk_psock_backlog+0xc21/0xd90
[   47.396156][  T364]  process_one_work+0x6bb/0xc10
[   47.401113][  T364]  worker_thread+0xad5/0x12a0
[   47.406061][  T364]  kthread+0x421/0x510
[   47.409965][  T364]  ret_from_fork+0x1f/0x30
[   47.414311][  T364] 
[   47.416495][  T364] The buggy address belongs to the object at ffff8881001ecc80
[   47.416495][  T364]  which belongs to the cache skbuff_head_cache of size 248
[   47.431480][  T364] The buggy address is located 0 bytes inside of
[   47.431480][  T364]  248-byte region [ffff8881001ecc80, ffff8881001ecd78)
[   47.445174][  T364] The buggy address belongs to the page:
[   47.450967][  T364] page:ffffea0004007b00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1001ec
[   47.461838][  T364] flags: 0x4000000000000200(slab|zone=1)
[   47.467678][  T364] raw: 4000000000000200 0000000000000000 dead000000000122 ffff888100350480
[   47.477419][  T364] raw: 0000000000000000 00000000000c000c 00000001ffffffff 0000000000000000
[   47.486269][  T364] page dumped because: kasan: bad access detected
[   47.492671][  T364] page_owner tracks the page as allocated
[   47.498485][  T364] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x112a20(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_HARDWALL), pid 353, ts 46645905293, free_ts 46644540920
[   47.516542][  T364]  post_alloc_hook+0x1a3/0x1b0
[   47.521494][  T364]  prep_new_page+0x1b/0x110
[   47.525923][  T364]  get_page_from_freelist+0x3550/0x35d0
[   47.531650][  T364]  __alloc_pages+0x27e/0x8f0
[   47.536450][  T364]  new_slab+0x9a/0x4e0
[   47.540412][  T364]  ___slab_alloc+0x39e/0x830
[   47.544838][  T364]  __slab_alloc+0x4a/0x90
[   47.549122][  T364]  kmem_cache_alloc+0x134/0x200
[   47.553869][  T364]  __alloc_skb+0xbe/0x550
[   47.558137][  T364]  inet6_rt_notify+0x2db/0x550
[   47.562898][  T364]  fib6_add+0x23ac/0x3df0
[   47.567168][  T364]  ip6_ins_rt+0x102/0x170
[   47.571436][  T364]  __ipv6_ifa_notify+0x5bd/0x11c0
[   47.576347][  T364]  addrconf_dad_completed+0x177/0xd80
[   47.581781][  T364]  addrconf_dad_work+0xdc1/0x1710
[   47.586742][  T364]  process_one_work+0x6bb/0xc10
[   47.591628][  T364] page last free stack trace:
[   47.596228][  T364]  free_unref_page_prepare+0x7c8/0x7d0
[   47.601498][  T364]  free_unref_page+0xe8/0x750
[   47.606096][  T364]  __free_pages+0x61/0xf0
[   47.610352][  T364]  free_pages+0x7c/0x90
[   47.614428][  T364]  kasan_depopulate_vmalloc_pte+0x6a/0x90
[   47.620153][  T364]  __apply_to_page_range+0x8dd/0xbe0
[   47.625559][  T364]  apply_to_existing_page_range+0x38/0x50
[   47.631094][  T364]  kasan_release_vmalloc+0x9a/0xb0
[   47.636125][  T364]  __purge_vmap_area_lazy+0x154a/0x1690
[   47.641744][  T364]  _vm_unmap_aliases+0x339/0x3b0
[   47.646679][  T364]  vm_unmap_aliases+0x19/0x20
[   47.651187][  T364]  change_page_attr_set_clr+0x308/0x1050
[   47.656754][  T364]  set_memory_ro+0xa1/0xe0
[   47.661079][  T364]  bpf_int_jit_compile+0xbf42/0xc6d0
[   47.666298][  T364]  bpf_prog_select_runtime+0x706/0x9e0
[   47.671585][  T364]  bpf_prog_load+0x1315/0x1b50
[   47.676195][  T364] 
[   47.678454][  T364] Memory state around the buggy address:
[   47.683919][  T364]  ffff8881001ecb80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   47.691912][  T364]  ffff8881001ecc00: fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc fc
[   47.699882][  T364] >ffff8881001ecc80: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   47.707874][  T364]                    ^
[   47.711789][  T364]  ffff8881001ecd00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fc
[   47.719882][  T364]  ffff8881001ecd80: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[   47.727857][  T364] ==================================================================
[   47.749465][  T368] FAULT_INJECTION: forcing a failure.
[   47.749465][  T368] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   47.762749][  T368] CPU: 1 PID: 368 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   47.774738][  T368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   47.784624][  T368] Call Trace:
[   47.787861][  T368]  <TASK>
[   47.790795][  T368]  dump_stack_lvl+0x151/0x1b7
[   47.795297][  T368]  ? io_uring_drop_tctx_refs+0x190/0x190
[   47.801104][  T368]  dump_stack+0x15/0x17
[   47.805110][  T368]  should_fail+0x3c6/0x510
[   47.809457][  T368]  should_fail_usercopy+0x1a/0x20
[   47.814404][  T368]  _copy_to_user+0x20/0x90
[   47.818669][  T368]  simple_read_from_buffer+0xc7/0x150
[   47.823990][  T368]  proc_fail_nth_read+0x1a3/0x210
[   47.828932][  T368]  ? proc_fault_inject_write+0x390/0x390
[   47.834398][  T368]  ? fsnotify_perm+0x470/0x5d0
[   47.839088][  T368]  ? security_file_permission+0x86/0xb0
[   47.844732][  T368]  ? proc_fault_inject_write+0x390/0x390
[   47.850204][  T368]  vfs_read+0x27d/0xd40
[   47.854191][  T368]  ? kernel_read+0x1f0/0x1f0
[   47.858613][  T368]  ? __kasan_check_write+0x14/0x20
[   47.863573][  T368]  ? mutex_lock+0xb6/0x1e0
[   47.867930][  T368]  ? wait_for_completion_killable_timeout+0x10/0x10
[   47.874477][  T368]  ? __fdget_pos+0x2e7/0x3a0
[   47.879253][  T368]  ? ksys_read+0x77/0x2c0
[   47.883491][  T368]  ksys_read+0x199/0x2c0
[   47.887573][  T368]  ? vfs_write+0x1110/0x1110
[   47.891981][  T368]  ? __kasan_check_read+0x11/0x20
[   47.896929][  T368]  __x64_sys_read+0x7b/0x90
[   47.901619][  T368]  do_syscall_64+0x3d/0xb0
[   47.905968][  T368]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   47.911953][  T368] RIP: 0033:0x7f5b12ae878c
[   47.916216][  T368] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   47.935967][  T368] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   47.944158][  T368] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   47.952063][  T368] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   47.960379][  T368] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   47.968276][  T368] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   47.976779][  T368] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   47.984769][  T368]  </TASK>
[   47.999283][  T370] FAULT_INJECTION: forcing a failure.
[   47.999283][  T370] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   48.012652][  T370] CPU: 1 PID: 370 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   48.024513][  T370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   48.034498][  T370] Call Trace:
[   48.037617][  T370]  <TASK>
[   48.040394][  T370]  dump_stack_lvl+0x151/0x1b7
[   48.044910][  T370]  ? io_uring_drop_tctx_refs+0x190/0x190
[   48.050377][  T370]  ? unwind_get_return_address+0x4d/0x90
[   48.055977][  T370]  ? arch_stack_walk+0xf3/0x140
[   48.060820][  T370]  dump_stack+0x15/0x17
[   48.064868][  T370]  should_fail+0x3c6/0x510
[   48.069056][  T370]  should_fail_alloc_page+0x5a/0x80
[   48.074175][  T370]  prepare_alloc_pages+0x15c/0x700
[   48.079121][  T370]  ? stack_trace_snprint+0xf0/0xf0
[   48.084070][  T370]  ? __alloc_pages_bulk+0xe40/0xe40
[   48.089404][  T370]  __alloc_pages+0x18c/0x8f0
[   48.093930][  T370]  ? ____sys_sendmsg+0x59e/0x8f0
[   48.098695][  T370]  ? prep_new_page+0x110/0x110
[   48.103299][  T370]  new_slab+0x9a/0x4e0
[   48.107199][  T370]  ___slab_alloc+0x39e/0x830
[   48.111707][  T370]  ? sk_psock_skb_ingress_self+0x60/0x330
[   48.117275][  T370]  ? __copy_skb_header+0x41e/0x5d0
[   48.122575][  T370]  ? sk_psock_skb_ingress_self+0x60/0x330
[   48.128466][  T370]  __slab_alloc+0x4a/0x90
[   48.132627][  T370]  kmem_cache_alloc_trace+0x142/0x210
[   48.137924][  T370]  ? sk_psock_skb_ingress_self+0x60/0x330
[   48.143562][  T370]  ? migrate_disable+0x190/0x190
[   48.148630][  T370]  sk_psock_skb_ingress_self+0x60/0x330
[   48.154012][  T370]  sk_psock_verdict_recv+0x66d/0x840
[   48.159471][  T370]  unix_read_sock+0x132/0x370
[   48.163980][  T370]  ? sk_psock_skb_redirect+0x440/0x440
[   48.169659][  T370]  ? unix_stream_splice_actor+0x120/0x120
[   48.175266][  T370]  ? _raw_spin_lock_irqsave+0xf9/0x210
[   48.180675][  T370]  ? unix_stream_splice_actor+0x120/0x120
[   48.186259][  T370]  sk_psock_verdict_data_ready+0x147/0x1a0
[   48.191984][  T370]  ? sk_psock_start_verdict+0xc0/0xc0
[   48.197161][  T370]  ? _raw_spin_lock+0xa4/0x1b0
[   48.201759][  T370]  ? _raw_spin_unlock_irqrestore+0x5c/0x80
[   48.207504][  T370]  ? skb_queue_tail+0xfb/0x120
[   48.212219][  T370]  unix_dgram_sendmsg+0x15fa/0x2090
[   48.217227][  T370]  ? unix_dgram_poll+0x710/0x710
[   48.222187][  T370]  ? _raw_spin_trylock+0xcd/0x1a0
[   48.227314][  T370]  ? security_socket_sendmsg+0x82/0xb0
[   48.232604][  T370]  ? unix_dgram_poll+0x710/0x710
[   48.237737][  T370]  ____sys_sendmsg+0x59e/0x8f0
[   48.242727][  T370]  ? __sys_sendmsg_sock+0x40/0x40
[   48.248204][  T370]  ? import_iovec+0xe5/0x120
[   48.253213][  T370]  ___sys_sendmsg+0x252/0x2e0
[   48.258084][  T370]  ? __sys_sendmsg+0x260/0x260
[   48.262803][  T370]  ? do_handle_mm_fault+0x1949/0x2330
[   48.268538][  T370]  ? __kasan_check_write+0x14/0x20
[   48.273553][  T370]  ? proc_fail_nth_write+0x20b/0x290
[   48.279123][  T370]  ? __fdget+0x1bc/0x240
[   48.283683][  T370]  __sys_sendmmsg+0x2bf/0x530
[   48.288503][  T370]  ? __ia32_sys_sendmsg+0x90/0x90
[   48.293395][  T370]  ? mutex_unlock+0xb2/0x260
[   48.298004][  T370]  ? __kasan_check_write+0x14/0x20
[   48.303562][  T370]  ? debug_smp_processor_id+0x17/0x20
[   48.308892][  T370]  ? fpregs_assert_state_consistent+0xb6/0xe0
[   48.315124][  T370]  __x64_sys_sendmmsg+0xa0/0xb0
[   48.320143][  T370]  do_syscall_64+0x3d/0xb0
[   48.324740][  T370]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   48.331043][  T370] RIP: 0033:0x7f5b12ae9ae9
[   48.335553][  T370] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   48.355611][  T370] RSP: 002b:00007f5b1266c0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   48.363942][  T370] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae9ae9
[   48.371928][  T370] RDX: 0000000000000001 RSI: 00000000200063c0 RDI: 0000000000000003
[   48.380374][  T370] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   48.388248][  T370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   48.396143][  T370] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   48.404220][  T370]  </TASK>
[   48.418307][  T372] FAULT_INJECTION: forcing a failure.
[   48.418307][  T372] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   48.431546][  T372] CPU: 1 PID: 372 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   48.443430][  T372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   48.454139][  T372] Call Trace:
[   48.457609][  T372]  <TASK>
[   48.460702][  T372]  dump_stack_lvl+0x151/0x1b7
[   48.465414][  T372]  ? io_uring_drop_tctx_refs+0x190/0x190
[   48.470937][  T372]  dump_stack+0x15/0x17
[   48.474860][  T372]  should_fail+0x3c6/0x510
[   48.479395][  T372]  should_fail_usercopy+0x1a/0x20
[   48.484321][  T372]  _copy_to_user+0x20/0x90
[   48.488663][  T372]  simple_read_from_buffer+0xc7/0x150
[   48.494157][  T372]  proc_fail_nth_read+0x1a3/0x210
[   48.499384][  T372]  ? proc_fault_inject_write+0x390/0x390
[   48.505262][  T372]  ? fsnotify_perm+0x470/0x5d0
[   48.509942][  T372]  ? security_file_permission+0x86/0xb0
[   48.515850][  T372]  ? proc_fault_inject_write+0x390/0x390
[   48.522158][  T372]  vfs_read+0x27d/0xd40
[   48.526937][  T372]  ? kernel_read+0x1f0/0x1f0
[   48.531641][  T372]  ? __kasan_check_write+0x14/0x20
[   48.536735][  T372]  ? mutex_lock+0xb6/0x1e0
[   48.541695][  T372]  ? wait_for_completion_killable_timeout+0x10/0x10
[   48.548204][  T372]  ? __fdget_pos+0x2e7/0x3a0
[   48.552726][  T372]  ? ksys_read+0x77/0x2c0
[   48.556892][  T372]  ksys_read+0x199/0x2c0
[   48.561759][  T372]  ? vfs_write+0x1110/0x1110
[   48.566354][  T372]  ? __kasan_check_read+0x11/0x20
[   48.571746][  T372]  __x64_sys_read+0x7b/0x90
[   48.576388][  T372]  do_syscall_64+0x3d/0xb0
[   48.581204][  T372]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   48.586952][  T372] RIP: 0033:0x7f5b12ae878c
[   48.591237][  T372] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   48.611359][  T372] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   48.619596][  T372] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   48.627510][  T372] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   48.635326][  T372] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   48.643224][  T372] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   48.651121][  T372] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   48.659033][  T372]  </TASK>
[   48.670988][  T374] FAULT_INJECTION: forcing a failure.
[   48.670988][  T374] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   48.685006][  T374] CPU: 1 PID: 374 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   48.697056][  T374] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   48.707304][  T374] Call Trace:
[   48.710424][  T374]  <TASK>
[   48.713191][  T374]  dump_stack_lvl+0x151/0x1b7
[   48.717746][  T374]  ? io_uring_drop_tctx_refs+0x190/0x190
[   48.723286][  T374]  dump_stack+0x15/0x17
[   48.727437][  T374]  should_fail+0x3c6/0x510
[   48.731871][  T374]  should_fail_usercopy+0x1a/0x20
[   48.736741][  T374]  _copy_to_user+0x20/0x90
[   48.740986][  T374]  simple_read_from_buffer+0xc7/0x150
[   48.747069][  T374]  proc_fail_nth_read+0x1a3/0x210
[   48.752017][  T374]  ? proc_fault_inject_write+0x390/0x390
[   48.757757][  T374]  ? fsnotify_perm+0x470/0x5d0
[   48.762338][  T374]  ? security_file_permission+0x86/0xb0
[   48.768284][  T374]  ? proc_fault_inject_write+0x390/0x390
[   48.773919][  T374]  vfs_read+0x27d/0xd40
[   48.778366][  T374]  ? kernel_read+0x1f0/0x1f0
[   48.782881][  T374]  ? __kasan_check_write+0x14/0x20
[   48.787821][  T374]  ? mutex_lock+0xb6/0x1e0
[   48.792362][  T374]  ? wait_for_completion_killable_timeout+0x10/0x10
[   48.799363][  T374]  ? __fdget_pos+0x2e7/0x3a0
[   48.803985][  T374]  ? ksys_read+0x77/0x2c0
[   48.808121][  T374]  ksys_read+0x199/0x2c0
[   48.812287][  T374]  ? vfs_write+0x1110/0x1110
[   48.816714][  T374]  ? __kasan_check_read+0x11/0x20
[   48.821576][  T374]  __x64_sys_read+0x7b/0x90
[   48.826299][  T374]  do_syscall_64+0x3d/0xb0
[   48.830670][  T374]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   48.836619][  T374] RIP: 0033:0x7f5b12ae878c
[   48.841405][  T374] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   48.862145][  T374] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
2023/12/26 22:26:55 executed programs: 8
[   48.870581][  T374] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   48.879009][  T374] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   48.886981][  T374] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   48.895137][  T374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   48.903214][  T374] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   48.911281][  T374]  </TASK>
[   48.930136][  T377] FAULT_INJECTION: forcing a failure.
[   48.930136][  T377] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   48.943735][  T377] CPU: 0 PID: 377 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   48.955679][  T377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   48.966035][  T377] Call Trace:
[   48.969365][  T377]  <TASK>
[   48.972137][  T377]  dump_stack_lvl+0x151/0x1b7
[   48.976935][  T377]  ? io_uring_drop_tctx_refs+0x190/0x190
[   48.982486][  T377]  dump_stack+0x15/0x17
[   48.986751][  T377]  should_fail+0x3c6/0x510
[   48.990995][  T377]  should_fail_usercopy+0x1a/0x20
[   48.995939][  T377]  _copy_to_user+0x20/0x90
[   49.000316][  T377]  simple_read_from_buffer+0xc7/0x150
[   49.005830][  T377]  proc_fail_nth_read+0x1a3/0x210
[   49.010928][  T377]  ? proc_fault_inject_write+0x390/0x390
[   49.016689][  T377]  ? fsnotify_perm+0x470/0x5d0
[   49.021817][  T377]  ? security_file_permission+0x86/0xb0
[   49.027365][  T377]  ? proc_fault_inject_write+0x390/0x390
[   49.032852][  T377]  vfs_read+0x27d/0xd40
[   49.037036][  T377]  ? kernel_read+0x1f0/0x1f0
[   49.041421][  T377]  ? __kasan_check_write+0x14/0x20
[   49.046543][  T377]  ? mutex_lock+0xb6/0x1e0
[   49.050923][  T377]  ? wait_for_completion_killable_timeout+0x10/0x10
[   49.057405][  T377]  ? __fdget_pos+0x2e7/0x3a0
[   49.061867][  T377]  ? ksys_read+0x77/0x2c0
[   49.065984][  T377]  ksys_read+0x199/0x2c0
[   49.070064][  T377]  ? vfs_write+0x1110/0x1110
[   49.074491][  T377]  ? __kasan_check_read+0x11/0x20
[   49.079353][  T377]  __x64_sys_read+0x7b/0x90
[   49.083689][  T377]  do_syscall_64+0x3d/0xb0
[   49.088029][  T377]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   49.093944][  T377] RIP: 0033:0x7f5b12ae878c
[   49.098468][  T377] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   49.118177][  T377] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   49.126500][  T377] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   49.134319][  T377] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   49.142224][  T377] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   49.150378][  T377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.158177][  T377] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   49.166080][  T377]  </TASK>
[   49.177891][  T379] FAULT_INJECTION: forcing a failure.
[   49.177891][  T379] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   49.191392][  T379] CPU: 1 PID: 379 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   49.203091][  T379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   49.213198][  T379] Call Trace:
[   49.216400][  T379]  <TASK>
[   49.219259][  T379]  dump_stack_lvl+0x151/0x1b7
[   49.224042][  T379]  ? io_uring_drop_tctx_refs+0x190/0x190
[   49.229505][  T379]  dump_stack+0x15/0x17
[   49.233528][  T379]  should_fail+0x3c6/0x510
[   49.238129][  T379]  should_fail_usercopy+0x1a/0x20
[   49.243074][  T379]  _copy_to_user+0x20/0x90
[   49.247325][  T379]  simple_read_from_buffer+0xc7/0x150
[   49.252711][  T379]  proc_fail_nth_read+0x1a3/0x210
[   49.257861][  T379]  ? proc_fault_inject_write+0x390/0x390
[   49.263304][  T379]  ? fsnotify_perm+0x470/0x5d0
[   49.267907][  T379]  ? security_file_permission+0x86/0xb0
[   49.273356][  T379]  ? proc_fault_inject_write+0x390/0x390
[   49.278925][  T379]  vfs_read+0x27d/0xd40
[   49.282902][  T379]  ? kernel_read+0x1f0/0x1f0
[   49.287545][  T379]  ? __kasan_check_write+0x14/0x20
[   49.292486][  T379]  ? mutex_lock+0xb6/0x1e0
[   49.296912][  T379]  ? wait_for_completion_killable_timeout+0x10/0x10
[   49.303431][  T379]  ? __fdget_pos+0x2e7/0x3a0
[   49.308011][  T379]  ? ksys_read+0x77/0x2c0
[   49.312184][  T379]  ksys_read+0x199/0x2c0
[   49.316358][  T379]  ? vfs_write+0x1110/0x1110
[   49.320786][  T379]  ? __kasan_check_read+0x11/0x20
[   49.325765][  T379]  __x64_sys_read+0x7b/0x90
[   49.330186][  T379]  do_syscall_64+0x3d/0xb0
[   49.334447][  T379]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   49.340255][  T379] RIP: 0033:0x7f5b12ae878c
[   49.344690][  T379] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   49.364856][  T379] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   49.373038][  T379] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   49.380853][  T379] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   49.389261][  T379] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   49.397072][  T379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.404881][  T379] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   49.413241][  T379]  </TASK>
[   49.424880][  T381] FAULT_INJECTION: forcing a failure.
[   49.424880][  T381] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   49.438280][  T381] CPU: 0 PID: 381 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   49.450082][  T381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   49.460061][  T381] Call Trace:
[   49.463176][  T381]  <TASK>
[   49.465994][  T381]  dump_stack_lvl+0x151/0x1b7
[   49.470554][  T381]  ? io_uring_drop_tctx_refs+0x190/0x190
[   49.476023][  T381]  dump_stack+0x15/0x17
[   49.480109][  T381]  should_fail+0x3c6/0x510
[   49.484356][  T381]  should_fail_usercopy+0x1a/0x20
[   49.489216][  T381]  _copy_to_user+0x20/0x90
[   49.493580][  T381]  simple_read_from_buffer+0xc7/0x150
[   49.499006][  T381]  proc_fail_nth_read+0x1a3/0x210
[   49.503863][  T381]  ? proc_fault_inject_write+0x390/0x390
[   49.509683][  T381]  ? fsnotify_perm+0x470/0x5d0
[   49.514380][  T381]  ? security_file_permission+0x86/0xb0
[   49.519951][  T381]  ? proc_fault_inject_write+0x390/0x390
[   49.525582][  T381]  vfs_read+0x27d/0xd40
[   49.530092][  T381]  ? kernel_read+0x1f0/0x1f0
[   49.534620][  T381]  ? __kasan_check_write+0x14/0x20
[   49.539883][  T381]  ? mutex_lock+0xb6/0x1e0
[   49.544533][  T381]  ? wait_for_completion_killable_timeout+0x10/0x10
[   49.550930][  T381]  ? __fdget_pos+0x2e7/0x3a0
[   49.555462][  T381]  ? ksys_read+0x77/0x2c0
[   49.559915][  T381]  ksys_read+0x199/0x2c0
[   49.564073][  T381]  ? vfs_write+0x1110/0x1110
[   49.568508][  T381]  ? __kasan_check_read+0x11/0x20
[   49.573900][  T381]  __x64_sys_read+0x7b/0x90
[   49.578394][  T381]  do_syscall_64+0x3d/0xb0
[   49.582646][  T381]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   49.588426][  T381] RIP: 0033:0x7f5b12ae878c
[   49.592655][  T381] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   49.612782][  T381] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   49.621028][  T381] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   49.629343][  T381] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   49.637681][  T381] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   49.646087][  T381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.654651][  T381] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   49.663580][  T381]  </TASK>
[   49.668779][   T30] kauditd_printk_skb: 2 callbacks suppressed
[   49.668795][   T30] audit: type=1400 audit(1703629616.510:169): avc:  denied  { remove_name } for  pid=83 comm="syslogd" name="messages" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   49.697866][   T30] audit: type=1400 audit(1703629616.510:170): avc:  denied  { rename } for  pid=83 comm="syslogd" name="messages" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   49.720973][   T30] audit: type=1400 audit(1703629616.510:171): avc:  denied  { create } for  pid=83 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   49.721499][  T383] FAULT_INJECTION: forcing a failure.
[   49.721499][  T383] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   49.755057][  T383] CPU: 0 PID: 383 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   49.766864][  T383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   49.776703][  T383] Call Trace:
[   49.780263][  T383]  <TASK>
[   49.783125][  T383]  dump_stack_lvl+0x151/0x1b7
[   49.787962][  T383]  ? io_uring_drop_tctx_refs+0x190/0x190
[   49.793367][  T383]  dump_stack+0x15/0x17
[   49.797637][  T383]  should_fail+0x3c6/0x510
[   49.801986][  T383]  should_fail_usercopy+0x1a/0x20
[   49.806998][  T383]  _copy_to_user+0x20/0x90
[   49.811391][  T383]  simple_read_from_buffer+0xc7/0x150
[   49.816604][  T383]  proc_fail_nth_read+0x1a3/0x210
[   49.821817][  T383]  ? proc_fault_inject_write+0x390/0x390
[   49.827543][  T383]  ? fsnotify_perm+0x470/0x5d0
[   49.832148][  T383]  ? security_file_permission+0x86/0xb0
[   49.837525][  T383]  ? proc_fault_inject_write+0x390/0x390
[   49.843273][  T383]  vfs_read+0x27d/0xd40
[   49.847257][  T383]  ? kernel_read+0x1f0/0x1f0
[   49.852025][  T383]  ? __kasan_check_write+0x14/0x20
[   49.857606][  T383]  ? mutex_lock+0xb6/0x1e0
[   49.862276][  T383]  ? wait_for_completion_killable_timeout+0x10/0x10
[   49.868943][  T383]  ? __fdget_pos+0x2e7/0x3a0
[   49.873603][  T383]  ? ksys_read+0x77/0x2c0
[   49.878064][  T383]  ksys_read+0x199/0x2c0
[   49.882145][  T383]  ? vfs_write+0x1110/0x1110
[   49.886571][  T383]  ? __kasan_check_read+0x11/0x20
[   49.891530][  T383]  __x64_sys_read+0x7b/0x90
[   49.895946][  T383]  do_syscall_64+0x3d/0xb0
[   49.900287][  T383]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   49.906274][  T383] RIP: 0033:0x7f5b12ae878c
[   49.910699][  T383] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   49.932426][  T383] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   49.940767][  T383] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   49.950062][  T383] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   49.957864][  T383] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   49.965856][  T383] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.973834][  T383] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   49.981846][  T383]  </TASK>
[   49.994363][  T386] FAULT_INJECTION: forcing a failure.
[   49.994363][  T386] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   50.007574][  T386] CPU: 0 PID: 386 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   50.019265][  T386] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   50.029160][  T386] Call Trace:
[   50.032273][  T386]  <TASK>
[   50.035054][  T386]  dump_stack_lvl+0x151/0x1b7
[   50.039572][  T386]  ? io_uring_drop_tctx_refs+0x190/0x190
[   50.045048][  T386]  dump_stack+0x15/0x17
[   50.049028][  T386]  should_fail+0x3c6/0x510
[   50.053862][  T386]  should_fail_usercopy+0x1a/0x20
[   50.058896][  T386]  _copy_to_user+0x20/0x90
[   50.063154][  T386]  simple_read_from_buffer+0xc7/0x150
[   50.068344][  T386]  proc_fail_nth_read+0x1a3/0x210
[   50.073298][  T386]  ? proc_fault_inject_write+0x390/0x390
[   50.079158][  T386]  ? fsnotify_perm+0x470/0x5d0
[   50.083864][  T386]  ? security_file_permission+0x86/0xb0
[   50.089320][  T386]  ? proc_fault_inject_write+0x390/0x390
[   50.095348][  T386]  vfs_read+0x27d/0xd40
[   50.099360][  T386]  ? kernel_read+0x1f0/0x1f0
[   50.104321][  T386]  ? __kasan_check_write+0x14/0x20
[   50.109265][  T386]  ? mutex_lock+0xb6/0x1e0
[   50.113519][  T386]  ? wait_for_completion_killable_timeout+0x10/0x10
[   50.119938][  T386]  ? __fdget_pos+0x2e7/0x3a0
[   50.124367][  T386]  ? ksys_read+0x77/0x2c0
[   50.128527][  T386]  ksys_read+0x199/0x2c0
[   50.132607][  T386]  ? vfs_write+0x1110/0x1110
[   50.137127][  T386]  ? __kasan_check_read+0x11/0x20
[   50.142077][  T386]  __x64_sys_read+0x7b/0x90
[   50.146495][  T386]  do_syscall_64+0x3d/0xb0
[   50.150839][  T386]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   50.156562][  T386] RIP: 0033:0x7f5b12ae878c
[   50.160823][  T386] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   50.180778][  T386] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   50.189214][  T386] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   50.197138][  T386] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   50.204945][  T386] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   50.212755][  T386] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.220782][  T386] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   50.228827][  T386]  </TASK>
[   50.240726][  T388] FAULT_INJECTION: forcing a failure.
[   50.240726][  T388] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   50.254246][  T388] CPU: 1 PID: 388 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   50.266519][  T388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   50.276587][  T388] Call Trace:
[   50.279794][  T388]  <TASK>
[   50.282657][  T388]  dump_stack_lvl+0x151/0x1b7
[   50.287446][  T388]  ? io_uring_drop_tctx_refs+0x190/0x190
[   50.293076][  T388]  dump_stack+0x15/0x17
[   50.297596][  T388]  should_fail+0x3c6/0x510
[   50.301846][  T388]  should_fail_usercopy+0x1a/0x20
[   50.307226][  T388]  _copy_to_user+0x20/0x90
[   50.311694][  T388]  simple_read_from_buffer+0xc7/0x150
[   50.317238][  T388]  proc_fail_nth_read+0x1a3/0x210
[   50.322356][  T388]  ? proc_fault_inject_write+0x390/0x390
[   50.328547][  T388]  ? fsnotify_perm+0x470/0x5d0
[   50.333318][  T388]  ? security_file_permission+0x86/0xb0
[   50.338988][  T388]  ? proc_fault_inject_write+0x390/0x390
[   50.344637][  T388]  vfs_read+0x27d/0xd40
[   50.348802][  T388]  ? kernel_read+0x1f0/0x1f0
[   50.353317][  T388]  ? __kasan_check_write+0x14/0x20
[   50.358346][  T388]  ? mutex_lock+0xb6/0x1e0
[   50.362706][  T388]  ? wait_for_completion_killable_timeout+0x10/0x10
[   50.369125][  T388]  ? __fdget_pos+0x2e7/0x3a0
[   50.373623][  T388]  ? ksys_read+0x77/0x2c0
[   50.377788][  T388]  ksys_read+0x199/0x2c0
[   50.382827][  T388]  ? vfs_write+0x1110/0x1110
[   50.387341][  T388]  ? __kasan_check_read+0x11/0x20
[   50.392198][  T388]  __x64_sys_read+0x7b/0x90
[   50.396546][  T388]  do_syscall_64+0x3d/0xb0
[   50.401746][  T388]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   50.407558][  T388] RIP: 0033:0x7f5b12ae878c
[   50.411999][  T388] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   50.431997][  T388] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   50.440440][  T388] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   50.448591][  T388] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   50.456605][  T388] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   50.464515][  T388] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.472509][  T388] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   50.480461][  T388]  </TASK>
[   50.495077][  T390] FAULT_INJECTION: forcing a failure.
[   50.495077][  T390] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   50.508938][  T390] CPU: 1 PID: 390 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   50.520744][  T390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   50.530907][  T390] Call Trace:
[   50.534041][  T390]  <TASK>
[   50.536823][  T390]  dump_stack_lvl+0x151/0x1b7
[   50.541332][  T390]  ? io_uring_drop_tctx_refs+0x190/0x190
[   50.547058][  T390]  dump_stack+0x15/0x17
[   50.551201][  T390]  should_fail+0x3c6/0x510
[   50.555878][  T390]  should_fail_usercopy+0x1a/0x20
[   50.560986][  T390]  _copy_to_user+0x20/0x90
[   50.565213][  T390]  simple_read_from_buffer+0xc7/0x150
[   50.570425][  T390]  proc_fail_nth_read+0x1a3/0x210
[   50.575283][  T390]  ? proc_fault_inject_write+0x390/0x390
[   50.580835][  T390]  ? fsnotify_perm+0x470/0x5d0
[   50.585609][  T390]  ? security_file_permission+0x86/0xb0
[   50.590995][  T390]  ? proc_fault_inject_write+0x390/0x390
[   50.596894][  T390]  vfs_read+0x27d/0xd40
[   50.601061][  T390]  ? kernel_read+0x1f0/0x1f0
[   50.605782][  T390]  ? __kasan_check_write+0x14/0x20
[   50.610900][  T390]  ? mutex_lock+0xb6/0x1e0
[   50.615156][  T390]  ? wait_for_completion_killable_timeout+0x10/0x10
[   50.621587][  T390]  ? __fdget_pos+0x2e7/0x3a0
[   50.626035][  T390]  ? ksys_read+0x77/0x2c0
[   50.630210][  T390]  ksys_read+0x199/0x2c0
[   50.634252][  T390]  ? vfs_write+0x1110/0x1110
[   50.638761][  T390]  ? __kasan_check_read+0x11/0x20
[   50.643979][  T390]  __x64_sys_read+0x7b/0x90
[   50.648329][  T390]  do_syscall_64+0x3d/0xb0
[   50.652833][  T390]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   50.658638][  T390] RIP: 0033:0x7f5b12ae878c
[   50.663164][  T390] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   50.682959][  T390] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   50.691277][  T390] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   50.699180][  T390] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   50.707594][  T390] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   50.715588][  T390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.723484][  T390] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   50.731400][  T390]  </TASK>
[   50.744041][  T392] FAULT_INJECTION: forcing a failure.
[   50.744041][  T392] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   50.757931][  T392] CPU: 0 PID: 392 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   50.769671][  T392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   50.780066][  T392] Call Trace:
[   50.783174][  T392]  <TASK>
[   50.786042][  T392]  dump_stack_lvl+0x151/0x1b7
[   50.790667][  T392]  ? io_uring_drop_tctx_refs+0x190/0x190
[   50.796745][  T392]  dump_stack+0x15/0x17
[   50.800823][  T392]  should_fail+0x3c6/0x510
[   50.805164][  T392]  should_fail_usercopy+0x1a/0x20
[   50.810283][  T392]  _copy_to_user+0x20/0x90
[   50.814870][  T392]  simple_read_from_buffer+0xc7/0x150
[   50.820155][  T392]  proc_fail_nth_read+0x1a3/0x210
[   50.825823][  T392]  ? proc_fault_inject_write+0x390/0x390
[   50.832047][  T392]  ? fsnotify_perm+0x470/0x5d0
[   50.836821][  T392]  ? security_file_permission+0x86/0xb0
[   50.842314][  T392]  ? proc_fault_inject_write+0x390/0x390
[   50.847953][  T392]  vfs_read+0x27d/0xd40
[   50.852088][  T392]  ? kernel_read+0x1f0/0x1f0
[   50.856958][  T392]  ? __kasan_check_write+0x14/0x20
[   50.862065][  T392]  ? mutex_lock+0xb6/0x1e0
[   50.866974][  T392]  ? wait_for_completion_killable_timeout+0x10/0x10
[   50.873622][  T392]  ? __fdget_pos+0x2e7/0x3a0
[   50.878225][  T392]  ? ksys_read+0x77/0x2c0
[   50.882468][  T392]  ksys_read+0x199/0x2c0
[   50.886850][  T392]  ? vfs_write+0x1110/0x1110
[   50.892459][  T392]  ? __kasan_check_read+0x11/0x20
[   50.897829][  T392]  __x64_sys_read+0x7b/0x90
[   50.902390][  T392]  do_syscall_64+0x3d/0xb0
[   50.906783][  T392]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   50.912584][  T392] RIP: 0033:0x7f5b12ae878c
[   50.917164][  T392] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   50.938626][  T392] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   50.947389][  T392] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   50.955506][  T392] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   50.963603][  T392] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   50.971631][  T392] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.979646][  T392] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   50.988006][  T392]  </TASK>
[   51.000310][  T395] FAULT_INJECTION: forcing a failure.
[   51.000310][  T395] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   51.013843][  T395] CPU: 0 PID: 395 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   51.025559][  T395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   51.035548][  T395] Call Trace:
[   51.038659][  T395]  <TASK>
[   51.041445][  T395]  dump_stack_lvl+0x151/0x1b7
[   51.046212][  T395]  ? io_uring_drop_tctx_refs+0x190/0x190
[   51.052044][  T395]  dump_stack+0x15/0x17
[   51.056328][  T395]  should_fail+0x3c6/0x510
[   51.060589][  T395]  should_fail_usercopy+0x1a/0x20
[   51.065612][  T395]  _copy_to_user+0x20/0x90
[   51.069986][  T395]  simple_read_from_buffer+0xc7/0x150
[   51.075276][  T395]  proc_fail_nth_read+0x1a3/0x210
[   51.080309][  T395]  ? proc_fault_inject_write+0x390/0x390
[   51.085774][  T395]  ? fsnotify_perm+0x470/0x5d0
[   51.090521][  T395]  ? security_file_permission+0x86/0xb0
[   51.096090][  T395]  ? proc_fault_inject_write+0x390/0x390
[   51.101543][  T395]  vfs_read+0x27d/0xd40
[   51.105615][  T395]  ? kernel_read+0x1f0/0x1f0
[   51.110045][  T395]  ? __kasan_check_write+0x14/0x20
[   51.115237][  T395]  ? mutex_lock+0xb6/0x1e0
[   51.119476][  T395]  ? wait_for_completion_killable_timeout+0x10/0x10
[   51.125900][  T395]  ? __fdget_pos+0x2e7/0x3a0
[   51.130329][  T395]  ? ksys_read+0x77/0x2c0
[   51.134581][  T395]  ksys_read+0x199/0x2c0
[   51.138936][  T395]  ? vfs_write+0x1110/0x1110
[   51.143367][  T395]  ? __kasan_check_read+0x11/0x20
[   51.148309][  T395]  __x64_sys_read+0x7b/0x90
[   51.152826][  T395]  do_syscall_64+0x3d/0xb0
[   51.157083][  T395]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   51.162904][  T395] RIP: 0033:0x7f5b12ae878c
[   51.167156][  T395] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   51.186692][  T395] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   51.195145][  T395] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   51.202975][  T395] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   51.210857][  T395] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   51.218752][  T395] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   51.226821][  T395] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   51.235081][  T395]  </TASK>
[   51.247884][  T397] FAULT_INJECTION: forcing a failure.
[   51.247884][  T397] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   51.261947][  T397] CPU: 1 PID: 397 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   51.273690][  T397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   51.284039][  T397] Call Trace:
[   51.287371][  T397]  <TASK>
[   51.290115][  T397]  dump_stack_lvl+0x151/0x1b7
[   51.294663][  T397]  ? io_uring_drop_tctx_refs+0x190/0x190
[   51.300494][  T397]  dump_stack+0x15/0x17
[   51.304849][  T397]  should_fail+0x3c6/0x510
[   51.309411][  T397]  should_fail_usercopy+0x1a/0x20
[   51.314955][  T397]  _copy_to_user+0x20/0x90
[   51.319602][  T397]  simple_read_from_buffer+0xc7/0x150
[   51.325195][  T397]  proc_fail_nth_read+0x1a3/0x210
[   51.330053][  T397]  ? proc_fault_inject_write+0x390/0x390
[   51.336195][  T397]  ? fsnotify_perm+0x470/0x5d0
[   51.341206][  T397]  ? security_file_permission+0x86/0xb0
[   51.347265][  T397]  ? proc_fault_inject_write+0x390/0x390
[   51.352827][  T397]  vfs_read+0x27d/0xd40
[   51.357320][  T397]  ? kernel_read+0x1f0/0x1f0
[   51.362350][  T397]  ? __kasan_check_write+0x14/0x20
[   51.367763][  T397]  ? mutex_lock+0xb6/0x1e0
[   51.372512][  T397]  ? wait_for_completion_killable_timeout+0x10/0x10
[   51.379053][  T397]  ? __fdget_pos+0x2e7/0x3a0
[   51.383915][  T397]  ? ksys_read+0x77/0x2c0
[   51.388173][  T397]  ksys_read+0x199/0x2c0
[   51.392342][  T397]  ? vfs_write+0x1110/0x1110
[   51.396931][  T397]  ? __kasan_check_read+0x11/0x20
[   51.402363][  T397]  __x64_sys_read+0x7b/0x90
[   51.406760][  T397]  do_syscall_64+0x3d/0xb0
[   51.411001][  T397]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   51.417182][  T397] RIP: 0033:0x7f5b12ae878c
[   51.421512][  T397] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   51.441230][  T397] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   51.449477][  T397] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   51.457390][  T397] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   51.465189][  T397] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   51.472994][  T397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   51.480983][  T397] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   51.489021][  T397]  </TASK>
[   51.500569][  T399] FAULT_INJECTION: forcing a failure.
[   51.500569][  T399] name failslab, interval 1, probability 0, space 0, times 0
[   51.513439][  T399] CPU: 0 PID: 399 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   51.525952][  T399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   51.536316][  T399] Call Trace:
[   51.539428][  T399]  <TASK>
[   51.542458][  T399]  dump_stack_lvl+0x151/0x1b7
[   51.547436][  T399]  ? io_uring_drop_tctx_refs+0x190/0x190
[   51.553170][  T399]  dump_stack+0x15/0x17
[   51.557158][  T399]  should_fail+0x3c6/0x510
[   51.561496][  T399]  __should_failslab+0xa4/0xe0
[   51.566419][  T399]  should_failslab+0x9/0x20
[   51.570759][  T399]  slab_pre_alloc_hook+0x37/0xd0
[   51.575541][  T399]  kmem_cache_alloc_trace+0x48/0x210
[   51.580870][  T399]  ? sk_psock_skb_ingress_self+0x60/0x330
[   51.586557][  T399]  ? migrate_disable+0x190/0x190
[   51.592055][  T399]  sk_psock_skb_ingress_self+0x60/0x330
[   51.598055][  T399]  sk_psock_verdict_recv+0x66d/0x840
[   51.603417][  T399]  unix_read_sock+0x132/0x370
[   51.608091][  T399]  ? sk_psock_skb_redirect+0x440/0x440
[   51.613485][  T399]  ? unix_stream_splice_actor+0x120/0x120
[   51.619282][  T399]  ? _raw_spin_lock_irqsave+0xf9/0x210
[   51.624801][  T399]  ? unix_stream_splice_actor+0x120/0x120
[   51.630313][  T399]  sk_psock_verdict_data_ready+0x147/0x1a0
[   51.636042][  T399]  ? sk_psock_start_verdict+0xc0/0xc0
[   51.641428][  T399]  ? _raw_spin_lock+0xa4/0x1b0
[   51.647311][  T399]  ? _raw_spin_unlock_irqrestore+0x5c/0x80
[   51.653215][  T399]  ? skb_queue_tail+0xfb/0x120
[   51.658283][  T399]  unix_dgram_sendmsg+0x15fa/0x2090
[   51.664139][  T399]  ? unix_dgram_poll+0x710/0x710
[   51.669075][  T399]  ? _raw_spin_trylock+0xcd/0x1a0
[   51.674104][  T399]  ? security_socket_sendmsg+0x82/0xb0
[   51.679398][  T399]  ? unix_dgram_poll+0x710/0x710
[   51.684564][  T399]  ____sys_sendmsg+0x59e/0x8f0
[   51.689477][  T399]  ? __sys_sendmsg_sock+0x40/0x40
[   51.694457][  T399]  ? import_iovec+0xe5/0x120
[   51.699319][  T399]  ___sys_sendmsg+0x252/0x2e0
[   51.704186][  T399]  ? __sys_sendmsg+0x260/0x260
[   51.708989][  T399]  ? do_handle_mm_fault+0x1949/0x2330
[   51.714464][  T399]  ? __kasan_check_write+0x14/0x20
[   51.719761][  T399]  ? proc_fail_nth_write+0x20b/0x290
[   51.725322][  T399]  ? __fdget+0x1bc/0x240
[   51.729648][  T399]  __sys_sendmmsg+0x2bf/0x530
[   51.734159][  T399]  ? __ia32_sys_sendmsg+0x90/0x90
[   51.739224][  T399]  ? mutex_unlock+0xb2/0x260
[   51.743649][  T399]  ? __kasan_check_write+0x14/0x20
[   51.748688][  T399]  ? debug_smp_processor_id+0x17/0x20
[   51.754495][  T399]  ? fpregs_assert_state_consistent+0xb6/0xe0
[   51.760695][  T399]  __x64_sys_sendmmsg+0xa0/0xb0
[   51.765709][  T399]  do_syscall_64+0x3d/0xb0
[   51.769885][  T399]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   51.775707][  T399] RIP: 0033:0x7f5b12ae9ae9
[   51.780385][  T399] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   51.801016][  T399] RSP: 002b:00007f5b1266c0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   51.809693][  T399] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae9ae9
[   51.817728][  T399] RDX: 0000000000000001 RSI: 00000000200063c0 RDI: 0000000000000003
[   51.825713][  T399] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   51.833793][  T399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   51.846276][  T399] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   51.854544][  T399]  </TASK>
[   51.859801][  T398] ==================================================================
[   51.869180][  T398] BUG: KASAN: double-free or invalid-free in kmem_cache_free+0x116/0x2e0
[   51.878198][  T398] 
[   51.880530][  T398] CPU: 0 PID: 398 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   51.893529][  T398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   51.904181][  T398] Call Trace:
[   51.907651][  T398]  <TASK>
[   51.910593][  T398]  dump_stack_lvl+0x151/0x1b7
[   51.915930][  T398]  ? io_uring_drop_tctx_refs+0x190/0x190
[   51.923479][  T398]  ? __wake_up_klogd+0xd5/0x110
[   51.928874][  T398]  ? panic+0x751/0x751
[   51.933194][  T398]  ? kmem_cache_free+0x116/0x2e0
[   51.938419][  T398]  print_address_description+0x87/0x3b0
[   51.944191][  T398]  ? kmem_cache_free+0x116/0x2e0
[   51.949546][  T398]  ? kmem_cache_free+0x116/0x2e0
[   51.955178][  T398]  kasan_report_invalid_free+0x6b/0xa0
[   51.960673][  T398]  ____kasan_slab_free+0x13e/0x160
[   51.966697][  T398]  __kasan_slab_free+0x11/0x20
[   51.971938][  T398]  slab_free_freelist_hook+0xbd/0x190
[   51.978006][  T398]  ? kfree_skbmem+0x104/0x170
[   51.982684][  T398]  kmem_cache_free+0x116/0x2e0
[   51.987361][  T398]  kfree_skbmem+0x104/0x170
[   51.991913][  T398]  consume_skb+0xb4/0x250
[   51.996241][  T398]  __sk_msg_free+0x2dd/0x370
[   52.000703][  T398]  ? _raw_spin_unlock_irqrestore+0x5c/0x80
[   52.006482][  T398]  sk_psock_stop+0x44c/0x4d0
[   52.010907][  T398]  ? unix_peer_get+0xe0/0xe0
[   52.015433][  T398]  sock_map_close+0x2b9/0x4c0
[   52.019945][  T398]  ? sock_map_remove_links+0x570/0x570
[   52.025246][  T398]  ? rwsem_mark_wake+0x6b0/0x6b0
[   52.030192][  T398]  unix_release+0x82/0xc0
[   52.034370][  T398]  sock_close+0xdf/0x270
[   52.038442][  T398]  ? sock_mmap+0xa0/0xa0
[   52.042512][  T398]  __fput+0x3fe/0x910
[   52.046359][  T398]  ____fput+0x15/0x20
[   52.050532][  T398]  task_work_run+0x129/0x190
[   52.055254][  T398]  exit_to_user_mode_loop+0xc4/0xe0
[   52.060450][  T398]  exit_to_user_mode_prepare+0x5a/0xa0
[   52.065952][  T398]  syscall_exit_to_user_mode+0x26/0x160
[   52.071497][  T398]  do_syscall_64+0x49/0xb0
[   52.075745][  T398]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   52.081547][  T398] RIP: 0033:0x7f5b12ae89da
[   52.085905][  T398] Code: 48 3d 00 f0 ff ff 77 48 c3 0f 1f 80 00 00 00 00 48 83 ec 18 89 7c 24 0c e8 03 7f 02 00 8b 7c 24 0c 89 c2 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 36 89 d7 89 44 24 0c e8 63 7f 02 00 8b 44 24
[   52.105547][  T398] RSP: 002b:00007fffcbda7620 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   52.113929][  T398] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 00007f5b12ae89da
[   52.121832][  T398] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   52.129726][  T398] RBP: 00007f5b12c0a980 R08: 0000001b31860000 R09: 00007fffcbdef0b0
[   52.137627][  T398] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000cc65
[   52.145439][  T398] R13: ffffffffffffffff R14: 00007f5b1266d000 R15: 000000000000c924
[   52.153374][  T398]  </TASK>
[   52.156317][  T398] 
[   52.158539][  T398] Allocated by task 399:
[   52.162695][  T398]  __kasan_slab_alloc+0xb1/0xe0
[   52.167336][  T398]  slab_post_alloc_hook+0x53/0x2c0
[   52.172740][  T398]  kmem_cache_alloc+0xf5/0x200
[   52.177339][  T398]  skb_clone+0x1d1/0x360
[   52.181667][  T398]  sk_psock_verdict_recv+0x53/0x840
[   52.186731][  T398]  unix_read_sock+0x132/0x370
[   52.191574][  T398]  sk_psock_verdict_data_ready+0x147/0x1a0
[   52.197384][  T398]  unix_dgram_sendmsg+0x15fa/0x2090
[   52.202576][  T398]  ____sys_sendmsg+0x59e/0x8f0
[   52.207156][  T398]  ___sys_sendmsg+0x252/0x2e0
[   52.212370][  T398]  __sys_sendmmsg+0x2bf/0x530
[   52.216892][  T398]  __x64_sys_sendmmsg+0xa0/0xb0
[   52.221838][  T398]  do_syscall_64+0x3d/0xb0
[   52.226257][  T398]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   52.231988][  T398] 
[   52.234153][  T398] Freed by task 353:
[   52.238306][  T398]  kasan_set_track+0x4b/0x70
[   52.242839][  T398]  kasan_set_free_info+0x23/0x40
[   52.247794][  T398]  ____kasan_slab_free+0x126/0x160
[   52.252826][  T398]  __kasan_slab_free+0x11/0x20
[   52.257514][  T398]  slab_free_freelist_hook+0xbd/0x190
[   52.262895][  T398]  kmem_cache_free+0x116/0x2e0
[   52.267459][  T398]  kfree_skbmem+0x104/0x170
[   52.271973][  T398]  kfree_skb+0xc2/0x360
[   52.276058][  T398]  sk_psock_backlog+0xc21/0xd90
[   52.281115][  T398]  process_one_work+0x6bb/0xc10
[   52.285790][  T398]  worker_thread+0xad5/0x12a0
[   52.290402][  T398]  kthread+0x421/0x510
[   52.294446][  T398]  ret_from_fork+0x1f/0x30
[   52.298754][  T398] 
[   52.300913][  T398] The buggy address belongs to the object at ffff88810ebcc3c0
[   52.300913][  T398]  which belongs to the cache skbuff_head_cache of size 248
[   52.315426][  T398] The buggy address is located 0 bytes inside of
[   52.315426][  T398]  248-byte region [ffff88810ebcc3c0, ffff88810ebcc4b8)
[   52.329082][  T398] The buggy address belongs to the page:
[   52.334974][  T398] page:ffffea00043af300 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10ebcc
[   52.345432][  T398] flags: 0x4000000000000200(slab|zone=1)
[   52.350964][  T398] raw: 4000000000000200 ffffea00043a1380 0000000b0000000b ffff888100350480
[   52.359487][  T398] raw: 0000000000000000 00000000800c000c 00000001ffffffff 0000000000000000
[   52.368222][  T398] page dumped because: kasan: bad access detected
[   52.374508][  T398] page_owner tracks the page as allocated
[   52.380024][  T398] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 101, ts 4230539532, free_ts 0
[   52.395590][  T398]  post_alloc_hook+0x1a3/0x1b0
[   52.400433][  T398]  prep_new_page+0x1b/0x110
[   52.405002][  T398]  get_page_from_freelist+0x3550/0x35d0
[   52.410553][  T398]  __alloc_pages+0x27e/0x8f0
[   52.415267][  T398]  new_slab+0x9a/0x4e0
[   52.419281][  T398]  ___slab_alloc+0x39e/0x830
[   52.424079][  T398]  __slab_alloc+0x4a/0x90
[   52.428325][  T398]  kmem_cache_alloc+0x134/0x200
[   52.433187][  T398]  __alloc_skb+0xbe/0x550
[   52.437692][  T398]  netlink_sendmsg+0x797/0xd20
[   52.442378][  T398]  ____sys_sendmsg+0x59e/0x8f0
[   52.446976][  T398]  ___sys_sendmsg+0x252/0x2e0
[   52.451616][  T398]  __se_sys_sendmsg+0x19a/0x260
[   52.456429][  T398]  __x64_sys_sendmsg+0x7b/0x90
[   52.461093][  T398]  do_syscall_64+0x3d/0xb0
[   52.465349][  T398]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   52.471185][  T398] page_owner free stack trace missing
[   52.476627][  T398] 
[   52.478751][  T398] Memory state around the buggy address:
[   52.484310][  T398]  ffff88810ebcc280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   52.492431][  T398]  ffff88810ebcc300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fc
[   52.500762][  T398] >ffff88810ebcc380: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[   52.508735][  T398]                                            ^
[   52.514815][  T398]  ffff88810ebcc400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   52.523078][  T398]  ffff88810ebcc480: fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc fc
[   52.531046][  T398] ==================================================================
[   52.552040][  T402] FAULT_INJECTION: forcing a failure.
[   52.552040][  T402] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   52.565790][  T402] CPU: 1 PID: 402 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   52.577868][  T402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   52.588423][  T402] Call Trace:
[   52.591755][  T402]  <TASK>
[   52.594594][  T402]  dump_stack_lvl+0x151/0x1b7
[   52.599192][  T402]  ? io_uring_drop_tctx_refs+0x190/0x190
[   52.604832][  T402]  dump_stack+0x15/0x17
[   52.608823][  T402]  should_fail+0x3c6/0x510
[   52.613077][  T402]  should_fail_usercopy+0x1a/0x20
[   52.618022][  T402]  _copy_to_user+0x20/0x90
[   52.622287][  T402]  simple_read_from_buffer+0xc7/0x150
[   52.627482][  T402]  proc_fail_nth_read+0x1a3/0x210
[   52.632347][  T402]  ? proc_fault_inject_write+0x390/0x390
[   52.638159][  T402]  ? fsnotify_perm+0x470/0x5d0
[   52.642773][  T402]  ? security_file_permission+0x86/0xb0
[   52.648429][  T402]  ? proc_fault_inject_write+0x390/0x390
[   52.654744][  T402]  vfs_read+0x27d/0xd40
[   52.659247][  T402]  ? kernel_read+0x1f0/0x1f0
[   52.663675][  T402]  ? __kasan_check_write+0x14/0x20
[   52.668881][  T402]  ? mutex_lock+0xb6/0x1e0
[   52.673319][  T402]  ? wait_for_completion_killable_timeout+0x10/0x10
[   52.679920][  T402]  ? __fdget_pos+0x2e7/0x3a0
[   52.684545][  T402]  ? ksys_read+0x77/0x2c0
[   52.689084][  T402]  ksys_read+0x199/0x2c0
[   52.693218][  T402]  ? vfs_write+0x1110/0x1110
[   52.697903][  T402]  ? __kasan_check_read+0x11/0x20
[   52.702875][  T402]  __x64_sys_read+0x7b/0x90
[   52.707607][  T402]  do_syscall_64+0x3d/0xb0
[   52.711943][  T402]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   52.717923][  T402] RIP: 0033:0x7f5b12ae878c
[   52.722219][  T402] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   52.743006][  T402] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   52.751239][  T402] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   52.759367][  T402] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   52.767376][  T402] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   52.776726][  T402] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   52.784999][  T402] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   52.792884][  T402]  </TASK>
[   52.804763][  T404] FAULT_INJECTION: forcing a failure.
[   52.804763][  T404] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   52.818886][  T404] CPU: 1 PID: 404 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   52.831228][  T404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   52.841675][  T404] Call Trace:
[   52.844915][  T404]  <TASK>
[   52.848062][  T404]  dump_stack_lvl+0x151/0x1b7
[   52.852668][  T404]  ? io_uring_drop_tctx_refs+0x190/0x190
[   52.858594][  T404]  dump_stack+0x15/0x17
[   52.863038][  T404]  should_fail+0x3c6/0x510
[   52.867293][  T404]  should_fail_usercopy+0x1a/0x20
[   52.872760][  T404]  _copy_to_user+0x20/0x90
[   52.877432][  T404]  simple_read_from_buffer+0xc7/0x150
[   52.883274][  T404]  proc_fail_nth_read+0x1a3/0x210
[   52.888743][  T404]  ? proc_fault_inject_write+0x390/0x390
[   52.894210][  T404]  ? fsnotify_perm+0x470/0x5d0
[   52.898912][  T404]  ? security_file_permission+0x86/0xb0
[   52.904496][  T404]  ? proc_fault_inject_write+0x390/0x390
[   52.910073][  T404]  vfs_read+0x27d/0xd40
[   52.915186][  T404]  ? kernel_read+0x1f0/0x1f0
[   52.921431][  T404]  ? __kasan_check_write+0x14/0x20
[   52.926624][  T404]  ? mutex_lock+0xb6/0x1e0
[   52.930952][  T404]  ? wait_for_completion_killable_timeout+0x10/0x10
[   52.937461][  T404]  ? __fdget_pos+0x2e7/0x3a0
[   52.942065][  T404]  ? ksys_read+0x77/0x2c0
[   52.946415][  T404]  ksys_read+0x199/0x2c0
[   52.950486][  T404]  ? vfs_write+0x1110/0x1110
[   52.955209][  T404]  ? __kasan_check_read+0x11/0x20
[   52.960357][  T404]  __x64_sys_read+0x7b/0x90
[   52.964931][  T404]  do_syscall_64+0x3d/0xb0
[   52.969657][  T404]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   52.976054][  T404] RIP: 0033:0x7f5b12ae878c
[   52.980472][  T404] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   53.000903][  T404] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   53.009614][  T404] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   53.017421][  T404] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   53.025590][  T404] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   53.033579][  T404] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   53.041469][  T404] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   53.049295][  T404]  </TASK>
[   53.061137][  T406] FAULT_INJECTION: forcing a failure.
[   53.061137][  T406] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   53.075066][  T406] CPU: 1 PID: 406 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   53.087068][  T406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   53.097421][  T406] Call Trace:
[   53.101005][  T406]  <TASK>
[   53.103765][  T406]  dump_stack_lvl+0x151/0x1b7
[   53.108648][  T406]  ? io_uring_drop_tctx_refs+0x190/0x190
[   53.114117][  T406]  dump_stack+0x15/0x17
[   53.118109][  T406]  should_fail+0x3c6/0x510
[   53.122367][  T406]  should_fail_usercopy+0x1a/0x20
[   53.127228][  T406]  _copy_to_user+0x20/0x90
[   53.131487][  T406]  simple_read_from_buffer+0xc7/0x150
[   53.137038][  T406]  proc_fail_nth_read+0x1a3/0x210
[   53.141899][  T406]  ? proc_fault_inject_write+0x390/0x390
[   53.147420][  T406]  ? fsnotify_perm+0x470/0x5d0
[   53.152144][  T406]  ? security_file_permission+0x86/0xb0
[   53.157602][  T406]  ? proc_fault_inject_write+0x390/0x390
[   53.163155][  T406]  vfs_read+0x27d/0xd40
[   53.167147][  T406]  ? kernel_read+0x1f0/0x1f0
[   53.171579][  T406]  ? __kasan_check_write+0x14/0x20
[   53.176606][  T406]  ? mutex_lock+0xb6/0x1e0
[   53.180862][  T406]  ? wait_for_completion_killable_timeout+0x10/0x10
[   53.187284][  T406]  ? __fdget_pos+0x2e7/0x3a0
[   53.191715][  T406]  ? ksys_read+0x77/0x2c0
[   53.196067][  T406]  ksys_read+0x199/0x2c0
[   53.200143][  T406]  ? vfs_write+0x1110/0x1110
[   53.204572][  T406]  ? __kasan_check_read+0x11/0x20
[   53.209436][  T406]  __x64_sys_read+0x7b/0x90
[   53.213772][  T406]  do_syscall_64+0x3d/0xb0
[   53.218545][  T406]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   53.224396][  T406] RIP: 0033:0x7f5b12ae878c
[   53.228730][  T406] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   53.250233][  T406] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   53.258721][  T406] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   53.267196][  T406] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   53.275369][  T406] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   53.283993][  T406] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   53.292440][  T406] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   53.300845][  T406]  </TASK>
[   53.315098][  T408] FAULT_INJECTION: forcing a failure.
[   53.315098][  T408] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   53.328966][  T408] CPU: 1 PID: 408 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   53.341139][  T408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   53.351032][  T408] Call Trace:
[   53.354154][  T408]  <TASK>
[   53.357020][  T408]  dump_stack_lvl+0x151/0x1b7
[   53.361620][  T408]  ? io_uring_drop_tctx_refs+0x190/0x190
[   53.367092][  T408]  dump_stack+0x15/0x17
[   53.371079][  T408]  should_fail+0x3c6/0x510
[   53.375333][  T408]  should_fail_usercopy+0x1a/0x20
[   53.380199][  T408]  _copy_to_user+0x20/0x90
[   53.384533][  T408]  simple_read_from_buffer+0xc7/0x150
[   53.389914][  T408]  proc_fail_nth_read+0x1a3/0x210
[   53.394957][  T408]  ? proc_fault_inject_write+0x390/0x390
[   53.400420][  T408]  ? fsnotify_perm+0x470/0x5d0
[   53.405016][  T408]  ? security_file_permission+0x86/0xb0
[   53.410399][  T408]  ? proc_fault_inject_write+0x390/0x390
[   53.415879][  T408]  vfs_read+0x27d/0xd40
[   53.419947][  T408]  ? kernel_read+0x1f0/0x1f0
[   53.424380][  T408]  ? __kasan_check_write+0x14/0x20
[   53.429326][  T408]  ? mutex_lock+0xb6/0x1e0
[   53.433587][  T408]  ? wait_for_completion_killable_timeout+0x10/0x10
[   53.440093][  T408]  ? __fdget_pos+0x2e7/0x3a0
[   53.444516][  T408]  ? ksys_read+0x77/0x2c0
[   53.448675][  T408]  ksys_read+0x199/0x2c0
[   53.452862][  T408]  ? vfs_write+0x1110/0x1110
[   53.457352][  T408]  ? __kasan_check_read+0x11/0x20
[   53.462221][  T408]  __x64_sys_read+0x7b/0x90
[   53.466637][  T408]  do_syscall_64+0x3d/0xb0
[   53.470894][  T408]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   53.476806][  T408] RIP: 0033:0x7f5b12ae878c
[   53.481050][  T408] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   53.501015][  T408] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   53.509514][  T408] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   53.517567][  T408] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   53.525786][  T408] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   53.533683][  T408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   53.541487][  T408] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   53.549304][  T408]  </TASK>
[   53.562828][  T411] FAULT_INJECTION: forcing a failure.
[   53.562828][  T411] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   53.576325][  T411] CPU: 1 PID: 411 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   53.588140][  T411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   53.598404][  T411] Call Trace:
[   53.601589][  T411]  <TASK>
[   53.604399][  T411]  dump_stack_lvl+0x151/0x1b7
[   53.608923][  T411]  ? io_uring_drop_tctx_refs+0x190/0x190
[   53.614494][  T411]  dump_stack+0x15/0x17
[   53.618485][  T411]  should_fail+0x3c6/0x510
[   53.622743][  T411]  should_fail_usercopy+0x1a/0x20
[   53.627592][  T411]  _copy_to_user+0x20/0x90
[   53.632190][  T411]  simple_read_from_buffer+0xc7/0x150
[   53.637567][  T411]  proc_fail_nth_read+0x1a3/0x210
[   53.642710][  T411]  ? proc_fault_inject_write+0x390/0x390
[   53.648155][  T411]  ? fsnotify_perm+0x470/0x5d0
[   53.652934][  T411]  ? security_file_permission+0x86/0xb0
[   53.658665][  T411]  ? proc_fault_inject_write+0x390/0x390
[   53.664382][  T411]  vfs_read+0x27d/0xd40
[   53.668941][  T411]  ? kernel_read+0x1f0/0x1f0
[   53.673796][  T411]  ? __kasan_check_write+0x14/0x20
[   53.679215][  T411]  ? mutex_lock+0xb6/0x1e0
[   53.683448][  T411]  ? wait_for_completion_killable_timeout+0x10/0x10
[   53.689958][  T411]  ? __fdget_pos+0x2e7/0x3a0
[   53.694392][  T411]  ? ksys_read+0x77/0x2c0
[   53.698553][  T411]  ksys_read+0x199/0x2c0
[   53.702648][  T411]  ? vfs_write+0x1110/0x1110
[   53.707060][  T411]  ? __kasan_check_read+0x11/0x20
[   53.712010][  T411]  __x64_sys_read+0x7b/0x90
[   53.716437][  T411]  do_syscall_64+0x3d/0xb0
[   53.720705][  T411]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   53.726435][  T411] RIP: 0033:0x7f5b12ae878c
[   53.730770][  T411] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   53.750478][  T411] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   53.759875][  T411] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   53.769296][  T411] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   53.777291][  T411] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   53.785528][  T411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   53.793525][  T411] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   53.801779][  T411]  </TASK>
[   53.815301][  T413] FAULT_INJECTION: forcing a failure.
[   53.815301][  T413] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   53.828552][  T413] CPU: 1 PID: 413 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   53.841748][  T413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   53.852449][  T413] Call Trace:
[   53.855749][  T413]  <TASK>
[   53.858706][  T413]  dump_stack_lvl+0x151/0x1b7
[   53.863364][  T413]  ? io_uring_drop_tctx_refs+0x190/0x190
[   53.869234][  T413]  dump_stack+0x15/0x17
[   53.873461][  T413]  should_fail+0x3c6/0x510
[   53.877877][  T413]  should_fail_usercopy+0x1a/0x20
[   53.883099][  T413]  _copy_to_user+0x20/0x90
[   53.887357][  T413]  simple_read_from_buffer+0xc7/0x150
[   53.892732][  T413]  proc_fail_nth_read+0x1a3/0x210
[   53.898024][  T413]  ? proc_fault_inject_write+0x390/0x390
[   53.903804][  T413]  ? fsnotify_perm+0x470/0x5d0
[   53.908417][  T413]  ? security_file_permission+0x86/0xb0
[   53.913803][  T413]  ? proc_fault_inject_write+0x390/0x390
[   53.919518][  T413]  vfs_read+0x27d/0xd40
[   53.923464][  T413]  ? kernel_read+0x1f0/0x1f0
[   53.927895][  T413]  ? __kasan_check_write+0x14/0x20
[   53.932958][  T413]  ? mutex_lock+0xb6/0x1e0
[   53.937178][  T413]  ? wait_for_completion_killable_timeout+0x10/0x10
[   53.943695][  T413]  ? __fdget_pos+0x2e7/0x3a0
[   53.948387][  T413]  ? ksys_read+0x77/0x2c0
[   53.953131][  T413]  ksys_read+0x199/0x2c0
[   53.957310][  T413]  ? vfs_write+0x1110/0x1110
[   53.961743][  T413]  ? __kasan_check_read+0x11/0x20
[   53.966943][  T413]  __x64_sys_read+0x7b/0x90
[   53.971275][  T413]  do_syscall_64+0x3d/0xb0
[   53.975531][  T413]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   53.981255][  T413] RIP: 0033:0x7f5b12ae878c
[   53.985509][  T413] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   54.004956][  T413] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
2023/12/26 22:27:00 executed programs: 25
[   54.013203][  T413] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   54.021185][  T413] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   54.028997][  T413] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   54.036833][  T413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   54.044657][  T413] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   54.052441][  T413]  </TASK>
[   54.090208][  T415] FAULT_INJECTION: forcing a failure.
[   54.090208][  T415] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   54.103651][  T415] CPU: 1 PID: 415 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   54.115638][  T415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   54.125707][  T415] Call Trace:
[   54.128832][  T415]  <TASK>
[   54.131710][  T415]  dump_stack_lvl+0x151/0x1b7
[   54.136397][  T415]  ? io_uring_drop_tctx_refs+0x190/0x190
[   54.141953][  T415]  dump_stack+0x15/0x17
[   54.146077][  T415]  should_fail+0x3c6/0x510
[   54.150331][  T415]  should_fail_usercopy+0x1a/0x20
[   54.155354][  T415]  _copy_to_user+0x20/0x90
[   54.159783][  T415]  simple_read_from_buffer+0xc7/0x150
[   54.165174][  T415]  proc_fail_nth_read+0x1a3/0x210
[   54.170110][  T415]  ? proc_fault_inject_write+0x390/0x390
[   54.175576][  T415]  ? fsnotify_perm+0x470/0x5d0
[   54.180184][  T415]  ? security_file_permission+0x86/0xb0
[   54.185644][  T415]  ? proc_fault_inject_write+0x390/0x390
[   54.191389][  T415]  vfs_read+0x27d/0xd40
[   54.195459][  T415]  ? kernel_read+0x1f0/0x1f0
[   54.200095][  T415]  ? __kasan_check_write+0x14/0x20
[   54.205050][  T415]  ? mutex_lock+0xb6/0x1e0
[   54.209382][  T415]  ? wait_for_completion_killable_timeout+0x10/0x10
[   54.215807][  T415]  ? __fdget_pos+0x2e7/0x3a0
[   54.220230][  T415]  ? ksys_read+0x77/0x2c0
[   54.224411][  T415]  ksys_read+0x199/0x2c0
[   54.228476][  T415]  ? vfs_write+0x1110/0x1110
[   54.233074][  T415]  ? __kasan_check_read+0x11/0x20
[   54.237947][  T415]  __x64_sys_read+0x7b/0x90
[   54.242373][  T415]  do_syscall_64+0x3d/0xb0
[   54.246791][  T415]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   54.252587][  T415] RIP: 0033:0x7f5b12ae878c
[   54.256948][  T415] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   54.278481][  T415] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   54.287448][  T415] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   54.295707][  T415] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   54.303862][  T415] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   54.312185][  T415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   54.321930][  T415] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   54.330172][  T415]  </TASK>
[   54.345510][  T417] FAULT_INJECTION: forcing a failure.
[   54.345510][  T417] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   54.359309][  T417] CPU: 1 PID: 417 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   54.371302][  T417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   54.381691][  T417] Call Trace:
[   54.384913][  T417]  <TASK>
[   54.387680][  T417]  dump_stack_lvl+0x151/0x1b7
[   54.392408][  T417]  ? io_uring_drop_tctx_refs+0x190/0x190
[   54.398048][  T417]  dump_stack+0x15/0x17
[   54.402031][  T417]  should_fail+0x3c6/0x510
[   54.406470][  T417]  should_fail_usercopy+0x1a/0x20
[   54.411433][  T417]  _copy_to_user+0x20/0x90
[   54.415852][  T417]  simple_read_from_buffer+0xc7/0x150
[   54.421290][  T417]  proc_fail_nth_read+0x1a3/0x210
[   54.426506][  T417]  ? proc_fault_inject_write+0x390/0x390
[   54.432096][  T417]  ? fsnotify_perm+0x470/0x5d0
[   54.436809][  T417]  ? security_file_permission+0x86/0xb0
[   54.442439][  T417]  ? proc_fault_inject_write+0x390/0x390
[   54.448368][  T417]  vfs_read+0x27d/0xd40
[   54.452542][  T417]  ? kernel_read+0x1f0/0x1f0
[   54.457033][  T417]  ? __kasan_check_write+0x14/0x20
[   54.462063][  T417]  ? mutex_lock+0xb6/0x1e0
[   54.466580][  T417]  ? wait_for_completion_killable_timeout+0x10/0x10
[   54.473899][  T417]  ? __fdget_pos+0x2e7/0x3a0
[   54.478320][  T417]  ? ksys_read+0x77/0x2c0
[   54.482491][  T417]  ksys_read+0x199/0x2c0
[   54.486964][  T417]  ? vfs_write+0x1110/0x1110
[   54.491911][  T417]  ? __kasan_check_read+0x11/0x20
[   54.496854][  T417]  __x64_sys_read+0x7b/0x90
[   54.501183][  T417]  do_syscall_64+0x3d/0xb0
[   54.505668][  T417]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   54.511590][  T417] RIP: 0033:0x7f5b12ae878c
[   54.515906][  T417] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   54.536361][  T417] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   54.544983][  T417] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   54.552968][  T417] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   54.560792][  T417] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   54.568600][  T417] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   54.576732][  T417] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   54.585249][  T417]  </TASK>
[   54.599002][  T420] FAULT_INJECTION: forcing a failure.
[   54.599002][  T420] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   54.612057][  T420] CPU: 1 PID: 420 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   54.624128][  T420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   54.634684][  T420] Call Trace:
[   54.637805][  T420]  <TASK>
[   54.640588][  T420]  dump_stack_lvl+0x151/0x1b7
[   54.645301][  T420]  ? io_uring_drop_tctx_refs+0x190/0x190
[   54.650769][  T420]  dump_stack+0x15/0x17
[   54.654758][  T420]  should_fail+0x3c6/0x510
[   54.659096][  T420]  should_fail_usercopy+0x1a/0x20
[   54.663961][  T420]  _copy_to_user+0x20/0x90
[   54.668211][  T420]  simple_read_from_buffer+0xc7/0x150
[   54.673613][  T420]  proc_fail_nth_read+0x1a3/0x210
[   54.678469][  T420]  ? proc_fault_inject_write+0x390/0x390
[   54.684200][  T420]  ? fsnotify_perm+0x470/0x5d0
[   54.688801][  T420]  ? security_file_permission+0x86/0xb0
[   54.694609][  T420]  ? proc_fault_inject_write+0x390/0x390
[   54.700165][  T420]  vfs_read+0x27d/0xd40
[   54.704256][  T420]  ? kernel_read+0x1f0/0x1f0
[   54.708775][  T420]  ? __kasan_check_write+0x14/0x20
[   54.713714][  T420]  ? mutex_lock+0xb6/0x1e0
[   54.717968][  T420]  ? wait_for_completion_killable_timeout+0x10/0x10
[   54.725409][  T420]  ? __fdget_pos+0x2e7/0x3a0
[   54.729830][  T420]  ? ksys_read+0x77/0x2c0
[   54.734082][  T420]  ksys_read+0x199/0x2c0
[   54.738471][  T420]  ? vfs_write+0x1110/0x1110
[   54.743207][  T420]  ? __kasan_check_read+0x11/0x20
[   54.748263][  T420]  __x64_sys_read+0x7b/0x90
[   54.752905][  T420]  do_syscall_64+0x3d/0xb0
[   54.757918][  T420]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   54.764227][  T420] RIP: 0033:0x7f5b12ae878c
[   54.768479][  T420] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   54.788614][  T420] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   54.797161][  T420] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   54.805147][  T420] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   54.813344][  T420] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   54.821330][  T420] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   54.829824][  T420] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   54.838264][  T420]  </TASK>
[   54.851241][  T422] FAULT_INJECTION: forcing a failure.
[   54.851241][  T422] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   54.864826][  T422] CPU: 0 PID: 422 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   54.876856][  T422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   54.887441][  T422] Call Trace:
[   54.890651][  T422]  <TASK>
[   54.893428][  T422]  dump_stack_lvl+0x151/0x1b7
[   54.897936][  T422]  ? io_uring_drop_tctx_refs+0x190/0x190
[   54.903847][  T422]  dump_stack+0x15/0x17
[   54.908125][  T422]  should_fail+0x3c6/0x510
[   54.912750][  T422]  should_fail_usercopy+0x1a/0x20
[   54.917714][  T422]  _copy_to_user+0x20/0x90
[   54.921962][  T422]  simple_read_from_buffer+0xc7/0x150
[   54.927554][  T422]  proc_fail_nth_read+0x1a3/0x210
[   54.932434][  T422]  ? proc_fault_inject_write+0x390/0x390
[   54.938131][  T422]  ? fsnotify_perm+0x470/0x5d0
[   54.943094][  T422]  ? security_file_permission+0x86/0xb0
[   54.948468][  T422]  ? proc_fault_inject_write+0x390/0x390
[   54.953955][  T422]  vfs_read+0x27d/0xd40
[   54.958172][  T422]  ? kernel_read+0x1f0/0x1f0
[   54.962839][  T422]  ? __kasan_check_write+0x14/0x20
[   54.968312][  T422]  ? mutex_lock+0xb6/0x1e0
[   54.972978][  T422]  ? wait_for_completion_killable_timeout+0x10/0x10
[   54.979710][  T422]  ? __fdget_pos+0x2e7/0x3a0
[   54.984126][  T422]  ? ksys_read+0x77/0x2c0
[   54.988550][  T422]  ksys_read+0x199/0x2c0
[   54.992684][  T422]  ? vfs_write+0x1110/0x1110
[   54.997293][  T422]  ? __kasan_check_read+0x11/0x20
[   55.002347][  T422]  __x64_sys_read+0x7b/0x90
[   55.006689][  T422]  do_syscall_64+0x3d/0xb0
[   55.010946][  T422]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   55.016654][  T422] RIP: 0033:0x7f5b12ae878c
[   55.021035][  T422] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   55.040610][  T422] RSP: 002b:00007f5b1266c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   55.048945][  T422] RAX: ffffffffffffffda RBX: 00007f5b12c08f80 RCX: 00007f5b12ae878c
[   55.057083][  T422] RDX: 000000000000000f RSI: 00007f5b1266c130 RDI: 0000000000000006
[   55.064887][  T422] RBP: 00007f5b1266c120 R08: 0000000000000000 R09: 0000000000000000
[   55.073052][  T422] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   55.080863][  T422] R13: 000000000000000b R14: 00007f5b12c08f80 R15: 00007fffcbda7558
[   55.088838][  T422]  </TASK>
[   55.102228][  T424] FAULT_INJECTION: forcing a failure.
[   55.102228][  T424] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   55.115493][  T424] CPU: 1 PID: 424 Comm: syz-executor.0 Tainted: G    B             5.15.141-syzkaller-1068904-g28e3f5851a99 #0
[   55.127817][  T424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   55.137803][  T424] Call Trace:
[   55.141006][  T424]  <TASK>
[   55.143965][  T424]  dump_stack_lvl+0x151/0x1b7
[   55.148537][  T424]  ? io_uring_drop_tctx_refs+0x190/0x190
[   55.153948][  T424]  dump_stack+0x15/0x17
[   55.157944][  T424]  should_fail+0x3c6/0x510
[   55.162196][  T424]  should_fail_usercopy+0x1a/0x20
[   55.167160][  T424]  _copy_to_user+0x20/0x90
[   55.171413][  T424]  simple_read_from_buffer+0xc7/0x150
[   55.176805][  T424]  proc_fail_nth_read+0x1a3/0x210
[   55.181926][  T424]  ? proc_fault_inject_write+0x390/0x390
[   55.187467][  T424]  ? fsnotify_perm+0x470/0x5d0
[   55.192247][  T424]  ? security_file_permission+0x86/0xb0
[   55.197717][  T424]  ? proc_fault_inject_write+0x390/0x390
[   55.203355][  T424]  vfs_read+0x27d/0xd40
[   55.207475][  T424]  ? kernel_read+0x1f0/0x1f0
[   55.211859][  T424]  ? __kasan_check_write+0x14/0x20
[   55.216904][  T424]  ? mutex_lock+0xb6/0x1e0
[   55.221318][  T424]  ? wait_for_completion_killable_timeout+0x10/0x10
[   55.227860][  T424]  ? __fdget_pos+0x2e7/0x3a0
[   55.232378][  T424]  ? ksys_read+0x77/0x2c0
[   55.236539][  T424]  ksys_read+0x199/0x2c0
[   55.240970][  T424]  ? vfs_write+0x1110/0x1110
[   55.245405][  T424]  ? __kasan_check_read+0x11/0x20