Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 37.643385] kauditd_printk_skb: 10 callbacks suppressed [ 37.643390] audit: type=1400 audit(1585110737.364:36): avc: denied { map } for pid=6927 comm="syz-fuzzer" path="/root/syz-fuzzer" dev="sda1" ino=16480 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 40.481321] IPVS: ftp: loaded support on port[0] = 21 [ 40.888252] can: request_module (can-proto-0) failed. [ 41.907329] can: request_module (can-proto-0) failed. [ 42.073225] audit: type=1400 audit(1585110741.794:37): avc: denied { create } for pid=6927 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_crypto_socket permissive=1 [ 42.096739] audit: type=1400 audit(1585110741.794:38): avc: denied { create } for pid=6927 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 42.120298] audit: type=1400 audit(1585110741.794:39): avc: denied { create } for pid=6927 comm="syz-fuzzer" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 Warning: Permanently added '10.128.15.201' (ECDSA) to the list of known hosts. 2020/03/25 04:32:29 parsed 1 programs 2020/03/25 04:32:29 executed programs: 0 [ 50.294414] IPVS: ftp: loaded support on port[0] = 21 [ 50.297395] IPVS: ftp: loaded support on port[0] = 21 [ 50.311676] IPVS: ftp: loaded support on port[0] = 21 [ 50.322657] IPVS: ftp: loaded support on port[0] = 21 [ 50.357094] IPVS: ftp: loaded support on port[0] = 21 [ 50.400811] IPVS: ftp: loaded support on port[0] = 21 [ 50.491198] chnl_net:caif_netlink_parms(): no params data found [ 50.534581] chnl_net:caif_netlink_parms(): no params data found [ 50.564721] bridge0: port 1(bridge_slave_0) entered blocking state [ 50.571526] bridge0: port 1(bridge_slave_0) entered disabled state [ 50.578359] device bridge_slave_0 entered promiscuous mode [ 50.585958] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.593346] bridge0: port 2(bridge_slave_1) entered disabled state [ 50.601192] device bridge_slave_1 entered promiscuous mode [ 50.612304] chnl_net:caif_netlink_parms(): no params data found [ 50.627597] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 50.637652] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 50.685487] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 50.693921] team0: Port device team_slave_0 added [ 50.717982] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 50.725728] team0: Port device team_slave_1 added [ 50.731008] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 50.739640] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 50.761125] bridge0: port 1(bridge_slave_0) entered blocking state [ 50.767669] bridge0: port 1(bridge_slave_0) entered disabled state [ 50.774651] device bridge_slave_0 entered promiscuous mode [ 50.781731] chnl_net:caif_netlink_parms(): no params data found [ 50.789467] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.795885] bridge0: port 2(bridge_slave_1) entered disabled state [ 50.802825] device bridge_slave_1 entered promiscuous mode [ 50.827158] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 50.836005] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 50.892781] device hsr_slave_0 entered promiscuous mode [ 50.930347] device hsr_slave_1 entered promiscuous mode [ 50.998103] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.004817] bridge0: port 1(bridge_slave_0) entered disabled state [ 51.012257] device bridge_slave_0 entered promiscuous mode [ 51.021257] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.027604] bridge0: port 2(bridge_slave_1) entered disabled state [ 51.034410] device bridge_slave_1 entered promiscuous mode [ 51.046054] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 51.059521] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 51.067086] team0: Port device team_slave_0 added [ 51.072741] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 51.080109] team0: Port device team_slave_1 added [ 51.108408] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 51.121166] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 51.140954] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 51.148728] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.156703] bridge0: port 1(bridge_slave_0) entered disabled state [ 51.163612] device bridge_slave_0 entered promiscuous mode [ 51.169956] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 51.187135] chnl_net:caif_netlink_parms(): no params data found [ 51.195184] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 51.205012] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.211436] bridge0: port 2(bridge_slave_1) entered disabled state [ 51.218231] device bridge_slave_1 entered promiscuous mode [ 51.233577] chnl_net:caif_netlink_parms(): no params data found [ 51.282578] device hsr_slave_0 entered promiscuous mode [ 51.320440] device hsr_slave_1 entered promiscuous mode [ 51.373839] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 51.384272] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 51.397035] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 51.421712] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 51.445018] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.451836] bridge0: port 1(bridge_slave_0) entered disabled state [ 51.458827] device bridge_slave_0 entered promiscuous mode [ 51.465814] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.472338] bridge0: port 2(bridge_slave_1) entered disabled state [ 51.479262] device bridge_slave_1 entered promiscuous mode [ 51.485953] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 51.493825] team0: Port device team_slave_0 added [ 51.499469] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 51.507939] team0: Port device team_slave_1 added [ 51.521441] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.527910] bridge0: port 2(bridge_slave_1) entered forwarding state [ 51.534863] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.541242] bridge0: port 1(bridge_slave_0) entered forwarding state [ 51.549930] bridge0: port 1(bridge_slave_0) entered disabled state [ 51.556966] bridge0: port 2(bridge_slave_1) entered disabled state [ 51.574129] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 51.581578] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 51.600527] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 51.607810] team0: Port device team_slave_0 added [ 51.613626] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 51.621265] team0: Port device team_slave_1 added [ 51.626666] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 51.635633] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 51.701525] device hsr_slave_0 entered promiscuous mode [ 51.760327] device hsr_slave_1 entered promiscuous mode [ 51.800372] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.806740] bridge0: port 1(bridge_slave_0) entered disabled state [ 51.814377] device bridge_slave_0 entered promiscuous mode [ 51.821393] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 51.829208] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 51.836639] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 51.851858] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 51.858726] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 51.866208] team0: Port device team_slave_0 added [ 51.872076] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 51.879243] team0: Port device team_slave_1 added [ 51.887827] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.894436] bridge0: port 2(bridge_slave_1) entered disabled state [ 51.901336] device bridge_slave_1 entered promiscuous mode [ 51.915129] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 51.922415] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 51.938176] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 51.947422] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 51.956502] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 52.011564] device hsr_slave_0 entered promiscuous mode [ 52.051208] device hsr_slave_1 entered promiscuous mode [ 52.101186] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 52.152400] device hsr_slave_0 entered promiscuous mode [ 52.200393] device hsr_slave_1 entered promiscuous mode [ 52.241158] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 52.248176] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 52.258462] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 52.281397] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 52.288627] team0: Port device team_slave_0 added [ 52.294426] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 52.301850] team0: Port device team_slave_1 added [ 52.308198] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.318418] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 52.325994] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 52.346744] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.357485] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 52.421732] device hsr_slave_0 entered promiscuous mode [ 52.460322] device hsr_slave_1 entered promiscuous mode [ 52.500744] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 52.508562] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 52.522265] 8021q: adding VLAN 0 to HW filter on device bond0 [ 52.541792] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.548179] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.554825] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.561438] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.576972] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 52.596538] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 52.622505] bridge0: port 1(bridge_slave_0) entered disabled state [ 52.629251] bridge0: port 2(bridge_slave_1) entered disabled state [ 52.637659] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 52.645168] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 52.659602] 8021q: adding VLAN 0 to HW filter on device bond0 [ 52.674082] 8021q: adding VLAN 0 to HW filter on device bond0 [ 52.685056] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 52.694837] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 52.704990] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 52.711394] 8021q: adding VLAN 0 to HW filter on device team0 [ 52.719168] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 52.729742] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 52.737012] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 52.746043] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 52.752361] 8021q: adding VLAN 0 to HW filter on device team0 [ 52.766442] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 52.782235] 8021q: adding VLAN 0 to HW filter on device bond0 [ 52.789533] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 52.797512] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 52.808332] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 52.816260] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 52.824032] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.830420] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.837244] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 52.845749] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 52.852644] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 52.860641] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 52.868125] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.874513] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.881789] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 52.889660] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 52.904868] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 52.916397] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 52.924535] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 52.935566] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 52.943341] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.949668] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.956488] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 52.964797] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 52.972507] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.978834] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.987146] 8021q: adding VLAN 0 to HW filter on device bond0 [ 52.996172] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 53.002553] 8021q: adding VLAN 0 to HW filter on device team0 [ 53.009560] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 53.018356] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 53.026394] 8021q: adding VLAN 0 to HW filter on device team0 [ 53.034721] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 53.044274] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 53.053054] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 53.062334] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 53.069360] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 53.076345] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 53.088761] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 53.096690] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 53.104495] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.110876] bridge0: port 1(bridge_slave_0) entered forwarding state [ 53.118990] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 53.126783] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 53.134629] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 53.142243] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.148795] bridge0: port 1(bridge_slave_0) entered forwarding state [ 53.156699] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 53.163791] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 53.174817] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 53.183747] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 53.192560] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 53.203197] 8021q: adding VLAN 0 to HW filter on device bond0 [ 53.211787] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 53.219487] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 53.226934] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 53.235635] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 53.243473] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.249843] bridge0: port 2(bridge_slave_1) entered forwarding state [ 53.256690] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 53.264538] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 53.272426] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 53.279923] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.286285] bridge0: port 2(bridge_slave_1) entered forwarding state [ 53.293133] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 53.300786] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 53.308166] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 53.316743] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 53.324293] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 53.333054] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 53.339224] 8021q: adding VLAN 0 to HW filter on device team0 [ 53.347411] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 53.358434] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 53.365719] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 53.374057] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 53.381272] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 53.388788] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 53.397929] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 53.405666] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 53.416348] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 53.423673] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 53.432928] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 53.441869] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 53.450686] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 53.458316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 53.466156] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 53.473858] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 53.483337] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 53.493319] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 53.504194] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 53.512802] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 53.522512] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 53.529997] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.536369] bridge0: port 1(bridge_slave_0) entered forwarding state [ 53.544162] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 53.552174] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 53.562162] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 53.572030] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 53.579010] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 53.587400] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 53.598930] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 53.606397] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 53.614425] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 53.622134] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.628469] bridge0: port 2(bridge_slave_1) entered forwarding state [ 53.635541] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 53.642585] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 53.649510] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 53.657218] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 53.665116] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 53.673358] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 53.682323] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 53.690655] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 53.696833] 8021q: adding VLAN 0 to HW filter on device team0 [ 53.703567] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 53.712719] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 53.723954] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 53.731002] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 53.738651] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 53.746544] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 53.754253] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 53.762495] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 53.769992] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 53.778033] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 53.785884] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 53.792765] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 53.801035] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 53.808930] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 53.818238] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 53.829698] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 53.838335] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 53.847639] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 53.855364] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 53.863693] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 53.871813] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 53.879283] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.885657] bridge0: port 1(bridge_slave_0) entered forwarding state [ 53.892752] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 53.900511] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 53.907961] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 53.915880] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 53.923832] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 53.935139] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 53.943451] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 53.949489] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 53.961563] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 53.971230] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 53.979703] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 53.987371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 53.995577] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 54.003332] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.009854] bridge0: port 2(bridge_slave_1) entered forwarding state [ 54.016827] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 54.024536] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 54.032155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 54.039901] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 54.047871] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 54.055344] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 54.063234] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 54.074430] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 54.088446] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 54.097485] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 54.104046] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 54.116428] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 54.124342] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 54.132546] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 54.139928] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 54.148275] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 54.156292] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 54.165629] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 54.176772] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 54.184605] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 54.192124] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 54.199609] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 54.207394] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 54.216647] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 54.225373] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 54.234877] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 54.247084] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 54.253382] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 54.260884] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 54.268374] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 54.276033] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 54.283620] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 54.292516] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 54.300424] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 54.311934] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 54.321655] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 54.328440] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 54.338462] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 54.345772] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 54.356209] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 54.362728] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 54.369548] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 54.379762] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 54.387762] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 54.401456] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 54.411450] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 54.422337] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 54.433999] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 54.441547] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 54.449167] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 54.457563] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 54.465433] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 54.474835] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 54.486737] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 54.495652] audit: type=1400 audit(1585110754.214:40): avc: denied { associate } for pid=7025 comm="syz-executor.2" name="syz2" scontext=unconfined_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=filesystem permissive=1 [ 54.501461] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 54.533440] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 54.554445] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 54.562118] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 54.575535] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 54.584116] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 54.601702] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 54.607796] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 54.634129] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 54.697220] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 54.746569] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 54.805805] FAULT_INJECTION: forcing a failure. [ 54.805805] name failslab, interval 1, probability 0, space 0, times 1 [ 54.827344] FAULT_INJECTION: forcing a failure. [ 54.827344] name failslab, interval 1, probability 0, space 0, times 1 [ 54.840441] FAULT_INJECTION: forcing a failure. [ 54.840441] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 54.852265] CPU: 0 PID: 7066 Comm: syz-executor.1 Not tainted 4.19.112-syzkaller #0 [ 54.860137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 54.869508] Call Trace: [ 54.872105] dump_stack+0x123/0x177 [ 54.875728] should_fail.cold.4+0x5/0x13 [ 54.879784] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 54.884903] ? mark_held_locks+0x130/0x130 [ 54.889124] ? __lock_acquire+0x792/0x4980 [ 54.893353] __alloc_pages_nodemask+0x1d5/0x710 [ 54.898024] ? __alloc_pages_slowpath+0x25c0/0x25c0 [ 54.903037] cache_grow_begin+0x91/0x8d0 [ 54.907085] ? kmem_cache_alloc_node+0xaa/0x730 [ 54.911748] kmem_cache_alloc_node+0x664/0x730 [ 54.916317] __alloc_skb+0xa7/0x580 [ 54.919924] ? skb_scrub_packet+0x3c0/0x3c0 [ 54.924228] ? _raw_spin_lock_bh+0x20/0x40 [ 54.928443] ? finish_task_switch+0x14a/0x720 [ 54.932917] ? finish_task_switch+0x11c/0x720 [ 54.937397] sk_stream_alloc_skb+0x9e/0x810 [ 54.941698] ? tcp_send_mss+0x1d/0x220 [ 54.945573] do_tcp_sendpages+0x772/0x1e10 [ 54.949791] ? __lock_is_held+0xb5/0x140 [ 54.953835] ? sk_stream_alloc_skb+0x810/0x810 [ 54.958410] ? __local_bh_enable_ip+0x160/0x260 [ 54.963058] ? lock_sock_nested+0xc5/0x100 [ 54.967273] ? lockdep_hardirqs_on+0x421/0x5c0 [ 54.971864] ? __local_bh_enable_ip+0x160/0x260 [ 54.976535] ? kasan_check_read+0x11/0x20 [ 54.980667] tcp_sendpage_locked+0x63/0xa0 [ 54.984882] tcp_sendpage+0x37/0x50 [ 54.988490] inet_sendpage+0x122/0x600 [ 54.992390] ? kernel_sendpage+0xd0/0xd0 [ 54.996429] kernel_sendpage+0x60/0xd0 [ 55.000311] ? lock_downgrade+0x860/0x860 [ 55.004439] ? pipe_lock+0x4f/0x60 [ 55.007959] sock_sendpage+0x6d/0xd0 [ 55.011674] pipe_to_sendpage+0x212/0x430 [ 55.015818] ? generic_pipe_buf_nosteal+0x10/0x10 [ 55.020655] __splice_from_pipe+0x2cb/0x720 [ 55.024988] ? generic_pipe_buf_nosteal+0x10/0x10 [ 55.029815] ? generic_pipe_buf_nosteal+0x10/0x10 [ 55.034643] splice_from_pipe+0xbb/0x120 [ 55.038697] ? splice_shrink_spd+0xa0/0xa0 [ 55.042921] ? rw_verify_area+0xb8/0x2b0 [ 55.046960] generic_splice_sendpage+0x10/0x20 [ 55.051527] do_splice+0x4fd/0x12d0 [ 55.055140] ? ksys_dup3+0x2e0/0x2e0 [ 55.058835] ? opipe_prep.part.13+0x320/0x320 [ 55.063311] ? __fget_light+0x174/0x1e0 [ 55.067263] __x64_sys_splice+0x248/0x300 [ 55.071395] do_syscall_64+0xd0/0x4e0 [ 55.075181] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 55.080353] RIP: 0033:0x459519 [ 55.083539] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 55.102434] RSP: 002b:00007f92ce6ebc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 55.110119] RAX: ffffffffffffffda RBX: 00007f92ce6ebc90 RCX: 0000000000459519 [ 55.117369] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 55.124618] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 55.131869] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f92ce6ec6d4 [ 55.139119] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 55.149878] FAULT_INJECTION: forcing a failure. [ 55.149878] name failslab, interval 1, probability 0, space 0, times 1 [ 55.161750] CPU: 0 PID: 7069 Comm: syz-executor.0 Not tainted 4.19.112-syzkaller #0 [ 55.169549] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 55.178888] Call Trace: [ 55.181463] dump_stack+0x123/0x177 [ 55.185076] should_fail.cold.4+0x5/0x13 [ 55.189118] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 55.194204] ? lock_downgrade+0x860/0x860 [ 55.198336] __should_failslab+0xba/0xf0 [ 55.202378] should_failslab+0x9/0x14 [ 55.206160] kmem_cache_alloc_node_trace+0x26d/0x730 [ 55.211249] __kmalloc_node_track_caller+0x3c/0x70 [ 55.216161] __kmalloc_reserve.isra.39+0x2c/0xc0 [ 55.220898] __alloc_skb+0xd7/0x580 [ 55.224506] ? skb_scrub_packet+0x3c0/0x3c0 [ 55.228817] ? _raw_spin_lock_bh+0x20/0x40 [ 55.233044] ? finish_task_switch+0x14a/0x720 [ 55.237516] ? finish_task_switch+0x11c/0x720 [ 55.241993] sk_stream_alloc_skb+0x9e/0x810 [ 55.246294] ? tcp_send_mss+0x1d/0x220 [ 55.250172] do_tcp_sendpages+0x772/0x1e10 [ 55.254395] ? __lock_is_held+0xb5/0x140 [ 55.258501] ? sk_stream_alloc_skb+0x810/0x810 [ 55.263080] ? __local_bh_enable_ip+0x160/0x260 [ 55.267752] ? lock_sock_nested+0xc5/0x100 [ 55.271975] ? lockdep_hardirqs_on+0x421/0x5c0 [ 55.276537] ? __local_bh_enable_ip+0x160/0x260 [ 55.281213] ? kasan_check_read+0x11/0x20 [ 55.285351] tcp_sendpage_locked+0x63/0xa0 [ 55.289574] tcp_sendpage+0x37/0x50 [ 55.293200] inet_sendpage+0x122/0x600 [ 55.297086] ? kernel_sendpage+0xd0/0xd0 [ 55.301137] kernel_sendpage+0x60/0xd0 [ 55.305039] ? lock_downgrade+0x860/0x860 [ 55.309172] ? pipe_lock+0x4f/0x60 [ 55.312700] sock_sendpage+0x6d/0xd0 [ 55.316420] pipe_to_sendpage+0x212/0x430 [ 55.320564] ? generic_pipe_buf_nosteal+0x10/0x10 [ 55.325391] __splice_from_pipe+0x2cb/0x720 [ 55.329715] ? generic_pipe_buf_nosteal+0x10/0x10 [ 55.334561] ? generic_pipe_buf_nosteal+0x10/0x10 [ 55.339404] splice_from_pipe+0xbb/0x120 [ 55.343447] ? splice_shrink_spd+0xa0/0xa0 [ 55.347667] ? rw_verify_area+0xb8/0x2b0 [ 55.351726] generic_splice_sendpage+0x10/0x20 [ 55.356296] do_splice+0x4fd/0x12d0 [ 55.359912] ? ksys_dup3+0x2e0/0x2e0 [ 55.363630] ? opipe_prep.part.13+0x320/0x320 [ 55.368108] ? __fget_light+0x174/0x1e0 [ 55.372076] __x64_sys_splice+0x248/0x300 [ 55.376207] do_syscall_64+0xd0/0x4e0 [ 55.379991] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 55.385163] RIP: 0033:0x459519 [ 55.388338] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 55.407221] RSP: 002b:00007f55208b8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 55.414909] RAX: ffffffffffffffda RBX: 00007f55208b8c90 RCX: 0000000000459519 [ 55.422156] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 55.429420] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 55.436681] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f55208b96d4 [ 55.443941] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 55.474821] CPU: 0 PID: 7068 Comm: syz-executor.3 Not tainted 4.19.112-syzkaller #0 [ 55.475729] FAULT_INJECTION: forcing a failure. [ 55.475729] name failslab, interval 1, probability 0, space 0, times 1 [ 55.482671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 55.482675] Call Trace: [ 55.482690] dump_stack+0x123/0x177 [ 55.482702] should_fail.cold.4+0x5/0x13 [ 55.482711] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 55.482718] ? lock_downgrade+0x860/0x860 [ 55.482729] __should_failslab+0xba/0xf0 [ 55.482736] should_failslab+0x9/0x14 [ 55.482743] kmem_cache_alloc_node_trace+0x26d/0x730 [ 55.482755] __kmalloc_node_track_caller+0x3c/0x70 [ 55.482765] __kmalloc_reserve.isra.39+0x2c/0xc0 [ 55.545257] __alloc_skb+0xd7/0x580 [ 55.548873] ? skb_scrub_packet+0x3c0/0x3c0 [ 55.553191] sk_stream_alloc_skb+0x9e/0x810 [ 55.557522] ? tcp_send_mss+0x1d/0x220 [ 55.561501] do_tcp_sendpages+0x772/0x1e10 [ 55.565734] ? __lock_is_held+0xb5/0x140 [ 55.569801] ? sk_stream_alloc_skb+0x810/0x810 [ 55.574370] ? __local_bh_enable_ip+0x160/0x260 [ 55.579024] ? lock_sock_nested+0xc5/0x100 [ 55.583241] ? lockdep_hardirqs_on+0x421/0x5c0 [ 55.587834] ? __local_bh_enable_ip+0x160/0x260 [ 55.592505] ? kasan_check_read+0x11/0x20 [ 55.596651] tcp_sendpage_locked+0x63/0xa0 [ 55.600869] tcp_sendpage+0x37/0x50 [ 55.604481] inet_sendpage+0x122/0x600 [ 55.608528] ? kernel_sendpage+0xd0/0xd0 [ 55.612582] kernel_sendpage+0x60/0xd0 [ 55.616462] ? lock_downgrade+0x860/0x860 [ 55.620592] ? pipe_lock+0x4f/0x60 [ 55.624114] sock_sendpage+0x6d/0xd0 [ 55.627813] pipe_to_sendpage+0x212/0x430 [ 55.631947] ? generic_pipe_buf_nosteal+0x10/0x10 [ 55.636782] __splice_from_pipe+0x2cb/0x720 [ 55.641180] ? generic_pipe_buf_nosteal+0x10/0x10 [ 55.646021] ? generic_pipe_buf_nosteal+0x10/0x10 [ 55.650847] splice_from_pipe+0xbb/0x120 [ 55.654980] ? splice_shrink_spd+0xa0/0xa0 [ 55.659294] ? rw_verify_area+0xb8/0x2b0 [ 55.663339] generic_splice_sendpage+0x10/0x20 [ 55.667898] do_splice+0x4fd/0x12d0 [ 55.671521] ? ksys_dup3+0x2e0/0x2e0 [ 55.675225] ? opipe_prep.part.13+0x320/0x320 [ 55.679710] ? __fget_light+0x174/0x1e0 [ 55.683675] __x64_sys_splice+0x248/0x300 [ 55.687808] do_syscall_64+0xd0/0x4e0 [ 55.692296] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 55.697471] RIP: 0033:0x459519 [ 55.700643] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 55.720328] RSP: 002b:00007eff87d79c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 55.728031] RAX: ffffffffffffffda RBX: 00007eff87d79c90 RCX: 0000000000459519 [ 55.735465] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 55.742720] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 55.749973] R10: 0000000000000000 R11: 0000000000000246 R12: 00007eff87d7a6d4 [ 55.757540] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 55.764808] CPU: 1 PID: 7074 Comm: syz-executor.4 Not tainted 4.19.112-syzkaller #0 2020/03/25 04:32:35 executed programs: 6 [ 55.772617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 55.781982] Call Trace: [ 55.784575] dump_stack+0x123/0x177 [ 55.788207] should_fail.cold.4+0x5/0x13 [ 55.792282] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 55.797395] ? lock_downgrade+0x860/0x860 [ 55.801558] __should_failslab+0xba/0xf0 [ 55.805626] should_failslab+0x9/0x14 [ 55.809460] __kmalloc+0x2dd/0x770 [ 55.813004] ? tls_push_record+0xf3/0x1720 [ 55.817228] ? __sk_mem_schedule+0x5f/0xc0 [ 55.821465] tls_push_record+0xf3/0x1720 [ 55.825507] ? lockdep_hardirqs_on+0x421/0x5c0 [ 55.830072] ? alloc_encrypted_sg+0x81/0x100 [ 55.834481] tls_sw_sendpage+0x458/0xc00 [ 55.838528] ? tls_sw_sendmsg+0x1020/0x1020 [ 55.842830] ? pipe_lock+0x4f/0x60 [ 55.846349] inet_sendpage+0x122/0x600 [ 55.850219] ? kernel_sendpage+0xd0/0xd0 [ 55.854259] kernel_sendpage+0x60/0xd0 [ 55.858134] ? lock_downgrade+0x860/0x860 [ 55.862271] ? pipe_lock+0x4f/0x60 [ 55.865787] sock_sendpage+0x6d/0xd0 [ 55.869498] pipe_to_sendpage+0x212/0x430 [ 55.873625] ? generic_pipe_buf_nosteal+0x10/0x10 [ 55.878451] __splice_from_pipe+0x2cb/0x720 [ 55.882751] ? generic_pipe_buf_nosteal+0x10/0x10 [ 55.887574] ? generic_pipe_buf_nosteal+0x10/0x10 [ 55.892415] splice_from_pipe+0xbb/0x120 [ 55.896463] ? splice_shrink_spd+0xa0/0xa0 [ 55.900697] ? rw_verify_area+0xb8/0x2b0 [ 55.904750] generic_splice_sendpage+0x10/0x20 [ 55.909327] do_splice+0x4fd/0x12d0 [ 55.912942] ? ksys_dup3+0x2e0/0x2e0 [ 55.916642] ? opipe_prep.part.13+0x320/0x320 [ 55.921120] ? __fget_light+0x174/0x1e0 [ 55.925074] __x64_sys_splice+0x248/0x300 [ 55.929331] do_syscall_64+0xd0/0x4e0 [ 55.933125] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 55.938308] RIP: 0033:0x459519 [ 55.941492] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 55.960375] RSP: 002b:00007f09074a0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 55.968065] RAX: ffffffffffffffda RBX: 00007f09074a0c90 RCX: 0000000000459519 [ 55.975315] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 55.982578] RBP: 000000000075bf20 R08: 0000000100000300 R09: 0000000000000000 [ 55.989834] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f09074a16d4 [ 55.997094] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 56.006759] FAULT_INJECTION: forcing a failure. [ 56.006759] name failslab, interval 1, probability 0, space 0, times 0 [ 56.022119] CPU: 0 PID: 7049 Comm: syz-executor.2 Not tainted 4.19.112-syzkaller #0 [ 56.029943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 56.039297] Call Trace: [ 56.041889] dump_stack+0x123/0x177 [ 56.045521] should_fail.cold.4+0x5/0x13 [ 56.049587] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 56.054690] ? lock_downgrade+0x860/0x860 [ 56.058843] __should_failslab+0xba/0xf0 [ 56.062907] should_failslab+0x9/0x14 [ 56.066714] kmem_cache_alloc_node_trace+0x26d/0x730 [ 56.071825] __kmalloc_node_track_caller+0x3c/0x70 [ 56.076875] __kmalloc_reserve.isra.39+0x2c/0xc0 [ 56.081647] __alloc_skb+0xd7/0x580 [ 56.085272] ? skb_scrub_packet+0x3c0/0x3c0 [ 56.089588] ? kasan_check_write+0x14/0x20 [ 56.093823] ? finish_task_switch+0x1a4/0x720 [ 56.098322] sk_stream_alloc_skb+0x9e/0x810 [ 56.102642] ? tcp_send_mss+0x1d/0x220 [ 56.106542] do_tcp_sendpages+0x772/0x1e10 [ 56.108529] FAULT_INJECTION: forcing a failure. [ 56.108529] name failslab, interval 1, probability 0, space 0, times 0 [ 56.111209] ? __lock_is_held+0xb5/0x140 [ 56.111224] ? sk_stream_alloc_skb+0x810/0x810 [ 56.111232] ? __local_bh_enable_ip+0x160/0x260 [ 56.111240] ? lock_sock_nested+0xc5/0x100 [ 56.111245] ? lockdep_hardirqs_on+0x421/0x5c0 [ 56.111249] ? __local_bh_enable_ip+0x160/0x260 [ 56.111258] ? kasan_check_read+0x11/0x20 [ 56.111266] tcp_sendpage_locked+0x63/0xa0 [ 56.111272] tcp_sendpage+0x37/0x50 [ 56.111280] inet_sendpage+0x122/0x600 [ 56.111287] ? kernel_sendpage+0xd0/0xd0 [ 56.111292] kernel_sendpage+0x60/0xd0 [ 56.111296] ? lock_downgrade+0x860/0x860 [ 56.111302] ? pipe_lock+0x4f/0x60 [ 56.111307] sock_sendpage+0x6d/0xd0 [ 56.111317] pipe_to_sendpage+0x212/0x430 [ 56.111325] ? generic_pipe_buf_nosteal+0x10/0x10 [ 56.111335] __splice_from_pipe+0x2cb/0x720 [ 56.197467] ? generic_pipe_buf_nosteal+0x10/0x10 [ 56.202464] ? generic_pipe_buf_nosteal+0x10/0x10 [ 56.207287] splice_from_pipe+0xbb/0x120 [ 56.212016] ? splice_shrink_spd+0xa0/0xa0 [ 56.216346] ? rw_verify_area+0xb8/0x2b0 [ 56.220448] generic_splice_sendpage+0x10/0x20 [ 56.225048] do_splice+0x4fd/0x12d0 [ 56.228660] ? ksys_dup3+0x2e0/0x2e0 [ 56.232358] ? opipe_prep.part.13+0x320/0x320 [ 56.236840] ? __fget_light+0x174/0x1e0 [ 56.240800] __x64_sys_splice+0x248/0x300 [ 56.244932] do_syscall_64+0xd0/0x4e0 [ 56.248716] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 56.253894] RIP: 0033:0x459519 [ 56.257066] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 56.276064] RSP: 002b:00007fd17fed7c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 56.283753] RAX: ffffffffffffffda RBX: 00007fd17fed7c90 RCX: 0000000000459519 [ 56.291010] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 56.298257] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 56.305502] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd17fed86d4 [ 56.312835] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 56.320136] CPU: 1 PID: 7081 Comm: syz-executor.3 Not tainted 4.19.112-syzkaller #0 [ 56.328051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 56.337400] Call Trace: [ 56.339983] dump_stack+0x123/0x177 [ 56.343619] should_fail.cold.4+0x5/0x13 [ 56.347683] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 56.352783] ? lock_downgrade+0x860/0x860 [ 56.356978] __should_failslab+0xba/0xf0 [ 56.361045] should_failslab+0x9/0x14 [ 56.364833] kmem_cache_alloc_node_trace+0x26d/0x730 [ 56.369928] __kmalloc_node_track_caller+0x3c/0x70 [ 56.374842] __kmalloc_reserve.isra.39+0x2c/0xc0 [ 56.379585] __alloc_skb+0xd7/0x580 [ 56.383195] ? skb_scrub_packet+0x3c0/0x3c0 [ 56.387510] ? _raw_spin_lock_bh+0x20/0x40 [ 56.391728] ? finish_task_switch+0x14a/0x720 [ 56.396229] ? finish_task_switch+0x11c/0x720 [ 56.400721] sk_stream_alloc_skb+0x9e/0x810 [ 56.405038] ? tcp_send_mss+0x1d/0x220 [ 56.408917] do_tcp_sendpages+0x772/0x1e10 [ 56.413772] ? __lock_is_held+0xb5/0x140 [ 56.417833] ? sk_stream_alloc_skb+0x810/0x810 [ 56.422418] ? __local_bh_enable_ip+0x160/0x260 [ 56.427073] ? lock_sock_nested+0xc5/0x100 [ 56.431305] ? lockdep_hardirqs_on+0x421/0x5c0 [ 56.435876] ? __local_bh_enable_ip+0x160/0x260 [ 56.440550] ? kasan_check_read+0x11/0x20 [ 56.444683] tcp_sendpage_locked+0x63/0xa0 [ 56.448901] tcp_sendpage+0x37/0x50 [ 56.452528] inet_sendpage+0x122/0x600 [ 56.456407] ? kernel_sendpage+0xd0/0xd0 [ 56.460457] kernel_sendpage+0x60/0xd0 [ 56.464338] ? lock_downgrade+0x860/0x860 [ 56.468479] ? pipe_lock+0x4f/0x60 [ 56.472032] sock_sendpage+0x6d/0xd0 [ 56.475747] pipe_to_sendpage+0x212/0x430 [ 56.479884] ? generic_pipe_buf_nosteal+0x10/0x10 [ 56.484715] __splice_from_pipe+0x2cb/0x720 [ 56.489022] ? generic_pipe_buf_nosteal+0x10/0x10 [ 56.493854] ? generic_pipe_buf_nosteal+0x10/0x10 [ 56.498689] splice_from_pipe+0xbb/0x120 [ 56.502731] ? splice_shrink_spd+0xa0/0xa0 [ 56.506952] ? rw_verify_area+0xb8/0x2b0 [ 56.511007] generic_splice_sendpage+0x10/0x20 [ 56.515565] do_splice+0x4fd/0x12d0 [ 56.519179] ? ksys_dup3+0x2e0/0x2e0 [ 56.522880] ? opipe_prep.part.13+0x320/0x320 [ 56.527361] ? __fget_light+0x174/0x1e0 [ 56.531330] __x64_sys_splice+0x248/0x300 [ 56.535471] do_syscall_64+0xd0/0x4e0 [ 56.539258] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 56.544552] RIP: 0033:0x459519 [ 56.547743] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 56.566634] RSP: 002b:00007eff87d79c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 56.574329] RAX: ffffffffffffffda RBX: 00007eff87d79c90 RCX: 0000000000459519 [ 56.581585] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 56.588849] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 56.596111] R10: 0000000000000000 R11: 0000000000000246 R12: 00007eff87d7a6d4 [ 56.603379] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 56.610930] CPU: 0 PID: 7089 Comm: syz-executor.4 Not tainted 4.19.112-syzkaller #0 [ 56.618741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 56.628093] Call Trace: [ 56.630680] dump_stack+0x123/0x177 [ 56.634319] should_fail.cold.4+0x5/0x13 [ 56.638379] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 56.643499] ? lock_downgrade+0x860/0x860 [ 56.647639] __should_failslab+0xba/0xf0 [ 56.651694] should_failslab+0x9/0x14 [ 56.655475] __kmalloc+0x2dd/0x770 [ 56.658997] ? tls_push_record+0xf3/0x1720 [ 56.663219] ? __sk_mem_schedule+0x5f/0xc0 [ 56.667439] tls_push_record+0xf3/0x1720 [ 56.671481] ? lockdep_hardirqs_on+0x421/0x5c0 [ 56.676046] ? alloc_encrypted_sg+0x81/0x100 [ 56.680455] tls_sw_sendpage+0x458/0xc00 [ 56.684509] ? tls_sw_sendmsg+0x1020/0x1020 [ 56.688831] ? pipe_lock+0x4f/0x60 [ 56.692352] inet_sendpage+0x122/0x600 [ 56.696220] ? kernel_sendpage+0xd0/0xd0 [ 56.700259] kernel_sendpage+0x60/0xd0 [ 56.704132] ? lock_downgrade+0x860/0x860 [ 56.708268] ? pipe_lock+0x4f/0x60 [ 56.711789] sock_sendpage+0x6d/0xd0 [ 56.715481] pipe_to_sendpage+0x212/0x430 [ 56.719606] ? generic_pipe_buf_nosteal+0x10/0x10 [ 56.724429] __splice_from_pipe+0x2cb/0x720 [ 56.728728] ? generic_pipe_buf_nosteal+0x10/0x10 [ 56.733553] ? generic_pipe_buf_nosteal+0x10/0x10 [ 56.738376] splice_from_pipe+0xbb/0x120 [ 56.742415] ? splice_shrink_spd+0xa0/0xa0 [ 56.746629] ? rw_verify_area+0xb8/0x2b0 [ 56.750670] generic_splice_sendpage+0x10/0x20 [ 56.755237] do_splice+0x4fd/0x12d0 [ 56.758846] ? ksys_dup3+0x2e0/0x2e0 [ 56.762563] ? opipe_prep.part.13+0x320/0x320 [ 56.767214] ? __fget_light+0x174/0x1e0 [ 56.771185] __x64_sys_splice+0x248/0x300 [ 56.775324] do_syscall_64+0xd0/0x4e0 [ 56.779113] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 56.784299] RIP: 0033:0x459519 [ 56.787476] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 56.806459] RSP: 002b:00007f09074a0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 56.814146] RAX: ffffffffffffffda RBX: 00007f09074a0c90 RCX: 0000000000459519 [ 56.821399] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 56.828647] RBP: 000000000075bf20 R08: 0000000100000300 R09: 0000000000000000 [ 56.835895] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f09074a16d4 [ 56.843144] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 56.864398] FAULT_INJECTION: forcing a failure. [ 56.864398] name failslab, interval 1, probability 0, space 0, times 0 [ 56.877577] FAULT_INJECTION: forcing a failure. [ 56.877577] name failslab, interval 1, probability 0, space 0, times 0 [ 56.894100] FAULT_INJECTION: forcing a failure. [ 56.894100] name failslab, interval 1, probability 0, space 0, times 0 [ 56.907207] FAULT_INJECTION: forcing a failure. [ 56.907207] name failslab, interval 1, probability 0, space 0, times 0 [ 56.913741] CPU: 0 PID: 7097 Comm: syz-executor.2 Not tainted 4.19.112-syzkaller #0 [ 56.926225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 56.935584] Call Trace: [ 56.938160] dump_stack+0x123/0x177 [ 56.941781] should_fail.cold.4+0x5/0x13 [ 56.945830] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 56.950927] ? lock_downgrade+0x860/0x860 [ 56.955076] __should_failslab+0xba/0xf0 [ 56.959130] should_failslab+0x9/0x14 [ 56.962919] __kmalloc+0x2dd/0x770 [ 56.966452] ? tls_push_record+0xf3/0x1720 [ 56.970678] ? __sk_mem_schedule+0x5f/0xc0 [ 56.974897] tls_push_record+0xf3/0x1720 [ 56.978943] ? lockdep_hardirqs_on+0x421/0x5c0 [ 56.983532] ? alloc_encrypted_sg+0x81/0x100 [ 56.987937] tls_sw_sendpage+0x458/0xc00 [ 56.991984] ? tls_sw_sendmsg+0x1020/0x1020 [ 56.996298] ? pipe_lock+0x4f/0x60 [ 56.999843] inet_sendpage+0x122/0x600 [ 57.003865] ? kernel_sendpage+0xd0/0xd0 [ 57.007919] kernel_sendpage+0x60/0xd0 [ 57.011790] ? lock_downgrade+0x860/0x860 [ 57.015937] ? pipe_lock+0x4f/0x60 [ 57.019460] sock_sendpage+0x6d/0xd0 [ 57.023188] pipe_to_sendpage+0x212/0x430 [ 57.027325] ? generic_pipe_buf_nosteal+0x10/0x10 [ 57.032160] __splice_from_pipe+0x2cb/0x720 [ 57.036481] ? generic_pipe_buf_nosteal+0x10/0x10 [ 57.041483] ? generic_pipe_buf_nosteal+0x10/0x10 [ 57.046313] splice_from_pipe+0xbb/0x120 [ 57.050359] ? splice_shrink_spd+0xa0/0xa0 [ 57.054581] ? rw_verify_area+0xb8/0x2b0 [ 57.058624] generic_splice_sendpage+0x10/0x20 [ 57.063190] do_splice+0x4fd/0x12d0 [ 57.066808] ? ksys_dup3+0x2e0/0x2e0 [ 57.070505] ? opipe_prep.part.13+0x320/0x320 [ 57.074980] ? __fget_light+0x174/0x1e0 [ 57.078941] __x64_sys_splice+0x248/0x300 [ 57.083083] do_syscall_64+0xd0/0x4e0 [ 57.086880] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 57.092060] RIP: 0033:0x459519 [ 57.095247] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 57.114834] RSP: 002b:00007fd17fef8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 57.122546] RAX: ffffffffffffffda RBX: 00007fd17fef8c90 RCX: 0000000000459519 [ 57.129851] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 57.137106] RBP: 000000000075bf20 R08: 0000000100000300 R09: 0000000000000000 [ 57.144363] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd17fef96d4 [ 57.151874] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 57.159156] CPU: 1 PID: 7101 Comm: syz-executor.1 Not tainted 4.19.112-syzkaller #0 [ 57.166961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 57.176466] Call Trace: [ 57.179062] dump_stack+0x123/0x177 [ 57.182679] should_fail.cold.4+0x5/0x13 [ 57.186732] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 57.191822] ? lock_downgrade+0x860/0x860 [ 57.195955] __should_failslab+0xba/0xf0 [ 57.200000] should_failslab+0x9/0x14 [ 57.203782] __kmalloc+0x2dd/0x770 [ 57.207304] ? tls_push_record+0xf3/0x1720 [ 57.211522] ? __sk_mem_schedule+0x5f/0xc0 [ 57.215751] tls_push_record+0xf3/0x1720 [ 57.219807] ? lockdep_hardirqs_on+0x421/0x5c0 [ 57.224372] ? alloc_encrypted_sg+0x81/0x100 [ 57.228761] tls_sw_sendpage+0x458/0xc00 [ 57.232812] ? tls_sw_sendmsg+0x1020/0x1020 [ 57.237201] ? pipe_lock+0x4f/0x60 [ 57.240724] inet_sendpage+0x122/0x600 [ 57.244607] ? kernel_sendpage+0xd0/0xd0 [ 57.248646] kernel_sendpage+0x60/0xd0 [ 57.252512] ? lock_downgrade+0x860/0x860 [ 57.256639] ? pipe_lock+0x4f/0x60 [ 57.260170] sock_sendpage+0x6d/0xd0 [ 57.263877] pipe_to_sendpage+0x212/0x430 [ 57.268017] ? generic_pipe_buf_nosteal+0x10/0x10 [ 57.272846] __splice_from_pipe+0x2cb/0x720 [ 57.277150] ? generic_pipe_buf_nosteal+0x10/0x10 [ 57.282096] ? generic_pipe_buf_nosteal+0x10/0x10 [ 57.286939] splice_from_pipe+0xbb/0x120 [ 57.290996] ? splice_shrink_spd+0xa0/0xa0 [ 57.295219] ? rw_verify_area+0xb8/0x2b0 [ 57.299263] generic_splice_sendpage+0x10/0x20 [ 57.303833] do_splice+0x4fd/0x12d0 [ 57.307446] ? ksys_dup3+0x2e0/0x2e0 [ 57.311143] ? opipe_prep.part.13+0x320/0x320 [ 57.315621] ? __fget_light+0x174/0x1e0 [ 57.319579] __x64_sys_splice+0x248/0x300 [ 57.324069] do_syscall_64+0xd0/0x4e0 [ 57.327861] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 57.333030] RIP: 0033:0x459519 [ 57.336212] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 57.355093] RSP: 002b:00007f92ce70cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 57.362780] RAX: ffffffffffffffda RBX: 00007f92ce70cc90 RCX: 0000000000459519 [ 57.370216] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 57.377465] RBP: 000000000075bf20 R08: 0000000100000300 R09: 0000000000000000 [ 57.384727] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f92ce70d6d4 [ 57.392004] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 57.399276] CPU: 0 PID: 7082 Comm: syz-executor.0 Not tainted 4.19.112-syzkaller #0 [ 57.407163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 57.416502] Call Trace: [ 57.419092] dump_stack+0x123/0x177 [ 57.422712] should_fail.cold.4+0x5/0x13 [ 57.426760] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 57.431849] ? lock_downgrade+0x860/0x860 [ 57.435981] __should_failslab+0xba/0xf0 [ 57.440027] should_failslab+0x9/0x14 [ 57.443818] kmem_cache_alloc_node_trace+0x26d/0x730 [ 57.448913] __kmalloc_node_track_caller+0x3c/0x70 [ 57.453829] __kmalloc_reserve.isra.39+0x2c/0xc0 [ 57.458563] __alloc_skb+0xd7/0x580 [ 57.462334] ? skb_scrub_packet+0x3c0/0x3c0 [ 57.466654] ? kasan_check_write+0x14/0x20 [ 57.470888] ? finish_task_switch+0x1a4/0x720 [ 57.475471] sk_stream_alloc_skb+0x9e/0x810 [ 57.479777] ? tcp_send_mss+0x1d/0x220 [ 57.483666] do_tcp_sendpages+0x772/0x1e10 [ 57.487897] ? __lock_is_held+0xb5/0x140 [ 57.491970] ? sk_stream_alloc_skb+0x810/0x810 [ 57.496536] ? __local_bh_enable_ip+0x160/0x260 [ 57.501195] ? lock_sock_nested+0xc5/0x100 [ 57.505418] ? lockdep_hardirqs_on+0x421/0x5c0 [ 57.509993] ? __local_bh_enable_ip+0x160/0x260 [ 57.514656] ? kasan_check_read+0x11/0x20 [ 57.518798] tcp_sendpage_locked+0x63/0xa0 [ 57.523024] tcp_sendpage+0x37/0x50 [ 57.526652] inet_sendpage+0x122/0x600 [ 57.530523] ? kernel_sendpage+0xd0/0xd0 [ 57.534563] kernel_sendpage+0x60/0xd0 [ 57.538429] ? lock_downgrade+0x860/0x860 [ 57.542569] ? pipe_lock+0x4f/0x60 [ 57.546095] sock_sendpage+0x6d/0xd0 [ 57.549792] pipe_to_sendpage+0x212/0x430 [ 57.553919] ? generic_pipe_buf_nosteal+0x10/0x10 [ 57.558743] __splice_from_pipe+0x2cb/0x720 [ 57.563053] ? generic_pipe_buf_nosteal+0x10/0x10 [ 57.567881] ? generic_pipe_buf_nosteal+0x10/0x10 [ 57.572704] splice_from_pipe+0xbb/0x120 [ 57.576747] ? splice_shrink_spd+0xa0/0xa0 [ 57.580969] ? rw_verify_area+0xb8/0x2b0 [ 57.585016] generic_splice_sendpage+0x10/0x20 [ 57.589595] do_splice+0x4fd/0x12d0 [ 57.593205] ? ksys_dup3+0x2e0/0x2e0 [ 57.596915] ? opipe_prep.part.13+0x320/0x320 [ 57.601412] ? __fget_light+0x174/0x1e0 [ 57.605390] __x64_sys_splice+0x248/0x300 [ 57.609534] do_syscall_64+0xd0/0x4e0 [ 57.613323] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 57.618498] RIP: 0033:0x459519 [ 57.621679] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 57.640662] RSP: 002b:00007f55208b8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 57.648363] RAX: ffffffffffffffda RBX: 00007f55208b8c90 RCX: 0000000000459519 [ 57.655616] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 57.662872] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 57.670126] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f55208b96d4 [ 57.677386] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 57.684657] CPU: 1 PID: 7094 Comm: syz-executor.5 Not tainted 4.19.112-syzkaller #0 [ 57.692468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 57.701826] Call Trace: [ 57.704418] dump_stack+0x123/0x177 [ 57.708047] should_fail.cold.4+0x5/0x13 [ 57.712120] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 57.717203] ? lock_downgrade+0x860/0x860 [ 57.721334] __should_failslab+0xba/0xf0 [ 57.725375] should_failslab+0x9/0x14 [ 57.729154] kmem_cache_alloc_node_trace+0x26d/0x730 [ 57.734251] __kmalloc_node_track_caller+0x3c/0x70 [ 57.739164] __kmalloc_reserve.isra.39+0x2c/0xc0 [ 57.743911] __alloc_skb+0xd7/0x580 [ 57.747527] ? skb_scrub_packet+0x3c0/0x3c0 [ 57.751830] ? _raw_spin_lock_bh+0x20/0x40 [ 57.756061] ? finish_task_switch+0x14a/0x720 [ 57.760532] ? finish_task_switch+0x11c/0x720 [ 57.765008] sk_stream_alloc_skb+0x9e/0x810 [ 57.769307] ? tcp_send_mss+0x1d/0x220 [ 57.773207] do_tcp_sendpages+0x772/0x1e10 [ 57.777420] ? __lock_is_held+0xb5/0x140 [ 57.781462] ? sk_stream_alloc_skb+0x810/0x810 [ 57.786022] ? __local_bh_enable_ip+0x160/0x260 [ 57.790670] ? lock_sock_nested+0xc5/0x100 [ 57.794895] ? lockdep_hardirqs_on+0x421/0x5c0 [ 57.799455] ? __local_bh_enable_ip+0x160/0x260 [ 57.804102] ? kasan_check_read+0x11/0x20 [ 57.808229] tcp_sendpage_locked+0x63/0xa0 [ 57.812452] tcp_sendpage+0x37/0x50 [ 57.816057] inet_sendpage+0x122/0x600 [ 57.819926] ? kernel_sendpage+0xd0/0xd0 [ 57.823963] kernel_sendpage+0x60/0xd0 [ 57.827828] ? lock_downgrade+0x860/0x860 [ 57.831953] ? pipe_lock+0x4f/0x60 [ 57.835481] sock_sendpage+0x6d/0xd0 [ 57.839174] pipe_to_sendpage+0x212/0x430 [ 57.843407] ? generic_pipe_buf_nosteal+0x10/0x10 [ 57.848252] __splice_from_pipe+0x2cb/0x720 [ 57.852563] ? generic_pipe_buf_nosteal+0x10/0x10 [ 57.857405] ? generic_pipe_buf_nosteal+0x10/0x10 [ 57.862247] splice_from_pipe+0xbb/0x120 [ 57.866291] ? splice_shrink_spd+0xa0/0xa0 [ 57.870511] ? rw_verify_area+0xb8/0x2b0 [ 57.874556] generic_splice_sendpage+0x10/0x20 [ 57.879123] do_splice+0x4fd/0x12d0 [ 57.882735] ? ksys_dup3+0x2e0/0x2e0 [ 57.886429] ? opipe_prep.part.13+0x320/0x320 [ 57.890901] ? __fget_light+0x174/0x1e0 [ 57.895029] __x64_sys_splice+0x248/0x300 [ 57.899161] do_syscall_64+0xd0/0x4e0 [ 57.902942] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 57.908110] RIP: 0033:0x459519 [ 57.911279] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 57.930167] RSP: 002b:00007f44baaaec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 57.937962] RAX: ffffffffffffffda RBX: 00007f44baaaec90 RCX: 0000000000459519 [ 57.945225] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 57.952478] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 57.959737] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f44baaaf6d4 [ 57.966990] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 58.058852] FAULT_INJECTION: forcing a failure. [ 58.058852] name failslab, interval 1, probability 0, space 0, times 0 [ 58.058921] FAULT_INJECTION: forcing a failure. [ 58.058921] name failslab, interval 1, probability 0, space 0, times 0 [ 58.070943] FAULT_INJECTION: forcing a failure. [ 58.070943] name failslab, interval 1, probability 0, space 0, times 0 [ 58.085398] CPU: 1 PID: 7123 Comm: syz-executor.2 Not tainted 4.19.112-syzkaller #0 [ 58.094759] FAULT_INJECTION: forcing a failure. [ 58.094759] name failslab, interval 1, probability 0, space 0, times 0 [ 58.100501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 58.100505] Call Trace: [ 58.100516] dump_stack+0x123/0x177 [ 58.100530] should_fail.cold.4+0x5/0x13 [ 58.100538] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 58.100544] ? lock_downgrade+0x860/0x860 [ 58.100556] __should_failslab+0xba/0xf0 [ 58.100563] should_failslab+0x9/0x14 [ 58.100570] kmem_cache_alloc_node_trace+0x26d/0x730 [ 58.100582] __kmalloc_node_track_caller+0x3c/0x70 [ 58.100594] __kmalloc_reserve.isra.39+0x2c/0xc0 [ 58.163011] __alloc_skb+0xd7/0x580 [ 58.166619] ? skb_scrub_packet+0x3c0/0x3c0 [ 58.170919] ? _raw_spin_lock_bh+0x20/0x40 [ 58.175134] ? finish_task_switch+0x14a/0x720 [ 58.179603] ? finish_task_switch+0x11c/0x720 [ 58.184079] sk_stream_alloc_skb+0x9e/0x810 [ 58.188386] ? tcp_send_mss+0x1d/0x220 [ 58.192252] do_tcp_sendpages+0x772/0x1e10 [ 58.196466] ? __lock_is_held+0xb5/0x140 [ 58.200511] ? sk_stream_alloc_skb+0x810/0x810 [ 58.205071] ? __local_bh_enable_ip+0x160/0x260 [ 58.209850] ? lock_sock_nested+0xc5/0x100 [ 58.214084] ? lockdep_hardirqs_on+0x421/0x5c0 [ 58.218648] ? __local_bh_enable_ip+0x160/0x260 [ 58.223315] ? kasan_check_read+0x11/0x20 [ 58.227448] tcp_sendpage_locked+0x63/0xa0 [ 58.231667] tcp_sendpage+0x37/0x50 [ 58.235279] inet_sendpage+0x122/0x600 [ 58.239188] ? kernel_sendpage+0xd0/0xd0 [ 58.243332] kernel_sendpage+0x60/0xd0 [ 58.247207] ? lock_downgrade+0x860/0x860 [ 58.251334] ? pipe_lock+0x4f/0x60 [ 58.254867] sock_sendpage+0x6d/0xd0 [ 58.258561] pipe_to_sendpage+0x212/0x430 [ 58.262713] ? generic_pipe_buf_nosteal+0x10/0x10 [ 58.267540] __splice_from_pipe+0x2cb/0x720 [ 58.271841] ? generic_pipe_buf_nosteal+0x10/0x10 [ 58.276663] ? generic_pipe_buf_nosteal+0x10/0x10 [ 58.281485] splice_from_pipe+0xbb/0x120 [ 58.285526] ? splice_shrink_spd+0xa0/0xa0 [ 58.289741] ? rw_verify_area+0xb8/0x2b0 [ 58.293780] generic_splice_sendpage+0x10/0x20 [ 58.298337] do_splice+0x4fd/0x12d0 [ 58.301946] ? ksys_dup3+0x2e0/0x2e0 [ 58.305659] ? opipe_prep.part.13+0x320/0x320 [ 58.310132] ? __fget_light+0x174/0x1e0 [ 58.314085] __x64_sys_splice+0x248/0x300 [ 58.318213] do_syscall_64+0xd0/0x4e0 [ 58.321994] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 58.327160] RIP: 0033:0x459519 [ 58.330336] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 58.349315] RSP: 002b:00007fd17fed7c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 58.357005] RAX: ffffffffffffffda RBX: 00007fd17fed7c90 RCX: 0000000000459519 [ 58.364259] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 58.371516] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 58.378775] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd17fed86d4 [ 58.386025] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 58.394769] CPU: 1 PID: 7117 Comm: syz-executor.0 Not tainted 4.19.112-syzkaller #0 [ 58.402666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 58.412020] Call Trace: [ 58.414609] dump_stack+0x123/0x177 [ 58.418240] should_fail.cold.4+0x5/0x13 [ 58.422325] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 58.427429] ? lock_downgrade+0x860/0x860 [ 58.431572] __should_failslab+0xba/0xf0 [ 58.435610] should_failslab+0x9/0x14 [ 58.439388] __kmalloc+0x2dd/0x770 [ 58.442918] ? tls_push_record+0xf3/0x1720 [ 58.447131] ? __sk_mem_schedule+0x5f/0xc0 [ 58.451357] tls_push_record+0xf3/0x1720 [ 58.455515] ? lockdep_hardirqs_on+0x421/0x5c0 [ 58.460088] ? alloc_encrypted_sg+0x81/0x100 [ 58.464485] tls_sw_sendpage+0x458/0xc00 [ 58.468539] ? tls_sw_sendmsg+0x1020/0x1020 [ 58.472845] ? pipe_lock+0x4f/0x60 [ 58.476375] inet_sendpage+0x122/0x600 [ 58.480248] ? kernel_sendpage+0xd0/0xd0 [ 58.484289] kernel_sendpage+0x60/0xd0 [ 58.488163] ? lock_downgrade+0x860/0x860 [ 58.492295] ? pipe_lock+0x4f/0x60 [ 58.495813] sock_sendpage+0x6d/0xd0 [ 58.499516] pipe_to_sendpage+0x212/0x430 [ 58.503654] ? generic_pipe_buf_nosteal+0x10/0x10 [ 58.508478] __splice_from_pipe+0x2cb/0x720 [ 58.512804] ? generic_pipe_buf_nosteal+0x10/0x10 [ 58.517627] ? generic_pipe_buf_nosteal+0x10/0x10 [ 58.522449] splice_from_pipe+0xbb/0x120 [ 58.526504] ? splice_shrink_spd+0xa0/0xa0 [ 58.530733] ? rw_verify_area+0xb8/0x2b0 [ 58.534780] generic_splice_sendpage+0x10/0x20 [ 58.539356] do_splice+0x4fd/0x12d0 [ 58.542981] ? ksys_dup3+0x2e0/0x2e0 [ 58.546682] ? opipe_prep.part.13+0x320/0x320 [ 58.551163] ? __fget_light+0x174/0x1e0 [ 58.555120] __x64_sys_splice+0x248/0x300 [ 58.559258] do_syscall_64+0xd0/0x4e0 [ 58.563053] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 58.568226] RIP: 0033:0x459519 [ 58.571407] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 58.590289] RSP: 002b:00007f55208d9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 58.597977] RAX: ffffffffffffffda RBX: 00007f55208d9c90 RCX: 0000000000459519 [ 58.605225] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 58.612479] RBP: 000000000075bf20 R08: 0000000100000300 R09: 0000000000000000 [ 58.619824] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f55208da6d4 [ 58.627072] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 58.634895] CPU: 1 PID: 7121 Comm: syz-executor.5 Not tainted 4.19.112-syzkaller #0 [ 58.642698] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 58.652036] Call Trace: [ 58.654605] dump_stack+0x123/0x177 [ 58.658212] should_fail.cold.4+0x5/0x13 [ 58.662252] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 58.667350] ? lock_downgrade+0x860/0x860 [ 58.671492] __should_failslab+0xba/0xf0 [ 58.675535] should_failslab+0x9/0x14 [ 58.679316] __kmalloc+0x2dd/0x770 [ 58.682854] ? tls_push_record+0xf3/0x1720 [ 58.687766] ? __sk_mem_schedule+0x5f/0xc0 [ 58.691985] tls_push_record+0xf3/0x1720 [ 58.696027] ? lockdep_hardirqs_on+0x421/0x5c0 [ 58.700592] ? alloc_encrypted_sg+0x81/0x100 [ 58.704979] tls_sw_sendpage+0x458/0xc00 [ 58.709027] ? tls_sw_sendmsg+0x1020/0x1020 [ 58.713328] ? pipe_lock+0x4f/0x60 [ 58.716851] inet_sendpage+0x122/0x600 [ 58.720719] ? kernel_sendpage+0xd0/0xd0 [ 58.724758] kernel_sendpage+0x60/0xd0 [ 58.728622] ? lock_downgrade+0x860/0x860 [ 58.732750] ? pipe_lock+0x4f/0x60 [ 58.736269] sock_sendpage+0x6d/0xd0 [ 58.739963] pipe_to_sendpage+0x212/0x430 [ 58.744091] ? generic_pipe_buf_nosteal+0x10/0x10 [ 58.748932] __splice_from_pipe+0x2cb/0x720 [ 58.753254] ? generic_pipe_buf_nosteal+0x10/0x10 [ 58.758080] ? generic_pipe_buf_nosteal+0x10/0x10 [ 58.762904] splice_from_pipe+0xbb/0x120 [ 58.766962] ? splice_shrink_spd+0xa0/0xa0 [ 58.771185] ? rw_verify_area+0xb8/0x2b0 [ 58.775230] generic_splice_sendpage+0x10/0x20 [ 58.779790] do_splice+0x4fd/0x12d0 [ 58.783399] ? ksys_dup3+0x2e0/0x2e0 [ 58.787091] ? opipe_prep.part.13+0x320/0x320 [ 58.791567] ? __fget_light+0x174/0x1e0 [ 58.795520] __x64_sys_splice+0x248/0x300 [ 58.799649] do_syscall_64+0xd0/0x4e0 [ 58.803434] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 58.808603] RIP: 0033:0x459519 [ 58.811774] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 58.830653] RSP: 002b:00007f44baacfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 58.838343] RAX: ffffffffffffffda RBX: 00007f44baacfc90 RCX: 0000000000459519 [ 58.845605] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 58.852854] RBP: 000000000075bf20 R08: 0000000100000300 R09: 0000000000000000 [ 58.860106] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f44baad06d4 [ 58.867353] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 58.874983] CPU: 1 PID: 7124 Comm: syz-executor.1 Not tainted 4.19.112-syzkaller #0 [ 58.882785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 58.892160] Call Trace: [ 58.894755] dump_stack+0x123/0x177 [ 58.898385] should_fail.cold.4+0x5/0x13 [ 58.902429] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 58.907511] ? lock_downgrade+0x860/0x860 [ 58.911658] __should_failslab+0xba/0xf0 [ 58.915714] should_failslab+0x9/0x14 [ 58.919508] kmem_cache_alloc_node_trace+0x26d/0x730 [ 58.924623] __kmalloc_node_track_caller+0x3c/0x70 [ 58.929562] __kmalloc_reserve.isra.39+0x2c/0xc0 [ 58.934308] __alloc_skb+0xd7/0x580 [ 58.937919] ? skb_scrub_packet+0x3c0/0x3c0 [ 58.942223] ? _raw_spin_lock_bh+0x20/0x40 [ 58.946443] ? finish_task_switch+0x14a/0x720 [ 58.950918] ? finish_task_switch+0x11c/0x720 [ 58.955397] sk_stream_alloc_skb+0x9e/0x810 [ 58.959707] ? tcp_send_mss+0x1d/0x220 [ 58.963576] do_tcp_sendpages+0x772/0x1e10 [ 58.967791] ? __lock_is_held+0xb5/0x140 [ 58.971836] ? sk_stream_alloc_skb+0x810/0x810 [ 58.976400] ? __local_bh_enable_ip+0x160/0x260 [ 58.981049] ? lock_sock_nested+0xc5/0x100 [ 58.985264] ? lockdep_hardirqs_on+0x421/0x5c0 [ 58.989833] ? __local_bh_enable_ip+0x160/0x260 [ 58.994509] ? kasan_check_read+0x11/0x20 [ 58.998641] tcp_sendpage_locked+0x63/0xa0 [ 59.002868] tcp_sendpage+0x37/0x50 [ 59.006493] inet_sendpage+0x122/0x600 [ 59.010384] ? kernel_sendpage+0xd0/0xd0 [ 59.014428] kernel_sendpage+0x60/0xd0 [ 59.018297] ? lock_downgrade+0x860/0x860 [ 59.022428] ? pipe_lock+0x4f/0x60 [ 59.025954] sock_sendpage+0x6d/0xd0 [ 59.029654] pipe_to_sendpage+0x212/0x430 [ 59.033785] ? generic_pipe_buf_nosteal+0x10/0x10 [ 59.038626] __splice_from_pipe+0x2cb/0x720 [ 59.042932] ? generic_pipe_buf_nosteal+0x10/0x10 [ 59.047757] ? generic_pipe_buf_nosteal+0x10/0x10 [ 59.053110] splice_from_pipe+0xbb/0x120 [ 59.057151] ? splice_shrink_spd+0xa0/0xa0 [ 59.061372] ? rw_verify_area+0xb8/0x2b0 [ 59.065411] generic_splice_sendpage+0x10/0x20 [ 59.069972] do_splice+0x4fd/0x12d0 [ 59.073580] ? ksys_dup3+0x2e0/0x2e0 [ 59.077279] ? opipe_prep.part.13+0x320/0x320 [ 59.081755] ? __fget_light+0x174/0x1e0 [ 59.087879] __x64_sys_splice+0x248/0x300 [ 59.092012] do_syscall_64+0xd0/0x4e0 [ 59.095795] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 59.101068] RIP: 0033:0x459519 [ 59.104244] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 59.123135] RSP: 002b:00007f92ce6ebc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 59.130828] RAX: ffffffffffffffda RBX: 00007f92ce6ebc90 RCX: 0000000000459519 [ 59.138096] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 59.145347] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 59.152600] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f92ce6ec6d4 [ 59.159852] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 59.168214] FAULT_INJECTION: forcing a failure. [ 59.168214] name failslab, interval 1, probability 0, space 0, times 0 [ 59.190356] CPU: 1 PID: 7125 Comm: syz-executor.4 Not tainted 4.19.112-syzkaller #0 [ 59.198183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 59.207537] Call Trace: [ 59.210888] dump_stack+0x123/0x177 [ 59.214524] should_fail.cold.4+0x5/0x13 [ 59.218590] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 59.223676] ? lock_downgrade+0x860/0x860 [ 59.227808] __should_failslab+0xba/0xf0 [ 59.231857] should_failslab+0x9/0x14 [ 59.235639] kmem_cache_alloc_node_trace+0x26d/0x730 [ 59.240727] __kmalloc_node_track_caller+0x3c/0x70 [ 59.245647] __kmalloc_reserve.isra.39+0x2c/0xc0 [ 59.250396] __alloc_skb+0xd7/0x580 [ 59.254005] ? skb_scrub_packet+0x3c0/0x3c0 [ 59.258316] ? _raw_spin_lock_bh+0x20/0x40 [ 59.262530] ? finish_task_switch+0x14a/0x720 [ 59.267002] ? finish_task_switch+0x11c/0x720 [ 59.271538] sk_stream_alloc_skb+0x9e/0x810 [ 59.275871] ? tcp_send_mss+0x1d/0x220 [ 59.279745] do_tcp_sendpages+0x772/0x1e10 [ 59.283971] ? __lock_is_held+0xb5/0x140 [ 59.288042] ? sk_stream_alloc_skb+0x810/0x810 [ 59.292608] ? __local_bh_enable_ip+0x160/0x260 [ 59.297265] ? lock_sock_nested+0xc5/0x100 [ 59.301484] ? lockdep_hardirqs_on+0x421/0x5c0 [ 59.306310] ? __local_bh_enable_ip+0x160/0x260 [ 59.310967] ? kasan_check_read+0x11/0x20 [ 59.315099] tcp_sendpage_locked+0x63/0xa0 [ 59.319317] tcp_sendpage+0x37/0x50 [ 59.322926] inet_sendpage+0x122/0x600 [ 59.326802] ? kernel_sendpage+0xd0/0xd0 [ 59.330843] kernel_sendpage+0x60/0xd0 [ 59.334713] ? lock_downgrade+0x860/0x860 [ 59.338839] ? pipe_lock+0x4f/0x60 [ 59.342357] sock_sendpage+0x6d/0xd0 [ 59.346054] pipe_to_sendpage+0x212/0x430 [ 59.350184] ? generic_pipe_buf_nosteal+0x10/0x10 [ 59.355009] __splice_from_pipe+0x2cb/0x720 [ 59.359310] ? generic_pipe_buf_nosteal+0x10/0x10 [ 59.364135] ? generic_pipe_buf_nosteal+0x10/0x10 [ 59.368963] splice_from_pipe+0xbb/0x120 [ 59.373005] ? splice_shrink_spd+0xa0/0xa0 [ 59.377220] ? rw_verify_area+0xb8/0x2b0 [ 59.381262] generic_splice_sendpage+0x10/0x20 [ 59.385821] do_splice+0x4fd/0x12d0 [ 59.389431] ? ksys_dup3+0x2e0/0x2e0 [ 59.393123] ? opipe_prep.part.13+0x320/0x320 [ 59.397598] ? __fget_light+0x174/0x1e0 [ 59.401642] __x64_sys_splice+0x248/0x300 [ 59.405908] do_syscall_64+0xd0/0x4e0 [ 59.409707] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 59.414886] RIP: 0033:0x459519 [ 59.418069] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 59.436976] RSP: 002b:00007f090747fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 59.444664] RAX: ffffffffffffffda RBX: 00007f090747fc90 RCX: 0000000000459519 [ 59.451930] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 59.459181] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 59.466550] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f09074806d4 [ 59.473803] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 59.507066] FAULT_INJECTION: forcing a failure. [ 59.507066] name failslab, interval 1, probability 0, space 0, times 0 [ 59.518750] FAULT_INJECTION: forcing a failure. [ 59.518750] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 59.518753] FAULT_INJECTION: forcing a failure. [ 59.518753] name failslab, interval 1, probability 0, space 0, times 0 [ 59.518761] CPU: 1 PID: 7140 Comm: syz-executor.0 Not tainted 4.19.112-syzkaller #0 [ 59.549504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 59.558850] Call Trace: [ 59.561435] dump_stack+0x123/0x177 [ 59.565045] should_fail.cold.4+0x5/0x13 [ 59.569092] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 59.574185] ? lock_downgrade+0x860/0x860 [ 59.578317] __should_failslab+0xba/0xf0 [ 59.582358] should_failslab+0x9/0x14 [ 59.586143] kmem_cache_alloc_node_trace+0x26d/0x730 [ 59.591230] __kmalloc_node_track_caller+0x3c/0x70 [ 59.596143] __kmalloc_reserve.isra.39+0x2c/0xc0 [ 59.600899] __alloc_skb+0xd7/0x580 [ 59.604523] ? skb_scrub_packet+0x3c0/0x3c0 [ 59.608836] ? _raw_spin_lock_bh+0x20/0x40 [ 59.613068] ? finish_task_switch+0x14a/0x720 [ 59.617544] ? finish_task_switch+0x11c/0x720 [ 59.622031] sk_stream_alloc_skb+0x9e/0x810 [ 59.626439] ? tcp_send_mss+0x1d/0x220 [ 59.630314] do_tcp_sendpages+0x772/0x1e10 [ 59.634546] ? __lock_is_held+0xb5/0x140 [ 59.638603] ? sk_stream_alloc_skb+0x810/0x810 [ 59.643169] ? __local_bh_enable_ip+0x160/0x260 [ 59.647838] ? lock_sock_nested+0xc5/0x100 [ 59.652053] ? lockdep_hardirqs_on+0x421/0x5c0 [ 59.656620] ? __local_bh_enable_ip+0x160/0x260 [ 59.661272] ? kasan_check_read+0x11/0x20 [ 59.665402] tcp_sendpage_locked+0x63/0xa0 [ 59.669617] tcp_sendpage+0x37/0x50 [ 59.673224] inet_sendpage+0x122/0x600 [ 59.677101] ? kernel_sendpage+0xd0/0xd0 [ 59.681142] kernel_sendpage+0x60/0xd0 [ 59.685008] ? lock_downgrade+0x860/0x860 [ 59.689134] ? pipe_lock+0x4f/0x60 [ 59.692652] sock_sendpage+0x6d/0xd0 [ 59.696349] pipe_to_sendpage+0x212/0x430 [ 59.700486] ? generic_pipe_buf_nosteal+0x10/0x10 [ 59.705312] __splice_from_pipe+0x2cb/0x720 [ 59.709611] ? generic_pipe_buf_nosteal+0x10/0x10 [ 59.714441] ? generic_pipe_buf_nosteal+0x10/0x10 [ 59.720478] splice_from_pipe+0xbb/0x120 [ 59.724518] ? splice_shrink_spd+0xa0/0xa0 [ 59.728772] ? rw_verify_area+0xb8/0x2b0 [ 59.732833] generic_splice_sendpage+0x10/0x20 [ 59.737516] do_splice+0x4fd/0x12d0 [ 59.741128] ? ksys_dup3+0x2e0/0x2e0 [ 59.744839] ? opipe_prep.part.13+0x320/0x320 [ 59.749316] ? __fget_light+0x174/0x1e0 [ 59.753278] __x64_sys_splice+0x248/0x300 [ 59.757430] do_syscall_64+0xd0/0x4e0 [ 59.761216] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 59.766387] RIP: 0033:0x459519 [ 59.769563] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 59.788451] RSP: 002b:00007f55208b8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 59.796138] RAX: ffffffffffffffda RBX: 00007f55208b8c90 RCX: 0000000000459519 [ 59.803391] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 59.810788] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 59.818051] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f55208b96d4 [ 59.825314] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 59.832584] CPU: 0 PID: 7141 Comm: syz-executor.1 Not tainted 4.19.112-syzkaller #0 [ 59.834788] FAULT_INJECTION: forcing a failure. [ 59.834788] name failslab, interval 1, probability 0, space 0, times 0 [ 59.840376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 59.840379] Call Trace: [ 59.840390] dump_stack+0x123/0x177 [ 59.840401] should_fail.cold.4+0x5/0x13 [ 59.840409] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 59.840417] ? mark_held_locks+0x130/0x130 [ 59.840421] ? __lock_acquire+0x792/0x4980 [ 59.840430] __alloc_pages_nodemask+0x1d5/0x710 [ 59.840438] ? __alloc_pages_slowpath+0x25c0/0x25c0 [ 59.840453] cache_grow_begin+0x91/0x8d0 [ 59.898394] ? kmem_cache_alloc_node+0xaa/0x730 [ 59.903052] kmem_cache_alloc_node+0x664/0x730 [ 59.907619] __alloc_skb+0xa7/0x580 [ 59.911228] ? skb_scrub_packet+0x3c0/0x3c0 [ 59.915527] ? _raw_spin_lock_bh+0x20/0x40 [ 59.919905] ? finish_task_switch+0x14a/0x720 [ 59.924381] ? finish_task_switch+0x11c/0x720 [ 59.929821] sk_stream_alloc_skb+0x9e/0x810 [ 59.934127] ? tcp_send_mss+0x1d/0x220 [ 59.938432] do_tcp_sendpages+0x772/0x1e10 [ 59.942647] ? __lock_is_held+0xb5/0x140 [ 59.946700] ? sk_stream_alloc_skb+0x810/0x810 [ 59.951263] ? __local_bh_enable_ip+0x160/0x260 [ 59.955926] ? lock_sock_nested+0xc5/0x100 [ 59.960141] ? lockdep_hardirqs_on+0x421/0x5c0 [ 59.964708] ? __local_bh_enable_ip+0x160/0x260 [ 59.969359] ? kasan_check_read+0x11/0x20 [ 59.973489] tcp_sendpage_locked+0x63/0xa0 [ 59.977708] tcp_sendpage+0x37/0x50 [ 59.981320] inet_sendpage+0x122/0x600 [ 59.985185] ? kernel_sendpage+0xd0/0xd0 [ 59.989251] kernel_sendpage+0x60/0xd0 [ 59.993132] ? lock_downgrade+0x860/0x860 [ 59.997266] ? pipe_lock+0x4f/0x60 [ 60.000791] sock_sendpage+0x6d/0xd0 [ 60.004504] pipe_to_sendpage+0x212/0x430 [ 60.008639] ? generic_pipe_buf_nosteal+0x10/0x10 [ 60.013466] __splice_from_pipe+0x2cb/0x720 [ 60.017774] ? generic_pipe_buf_nosteal+0x10/0x10 [ 60.022606] ? generic_pipe_buf_nosteal+0x10/0x10 [ 60.027429] splice_from_pipe+0xbb/0x120 [ 60.031470] ? splice_shrink_spd+0xa0/0xa0 [ 60.035698] ? rw_verify_area+0xb8/0x2b0 [ 60.039738] generic_splice_sendpage+0x10/0x20 [ 60.044298] do_splice+0x4fd/0x12d0 [ 60.047906] ? ksys_dup3+0x2e0/0x2e0 [ 60.051597] ? opipe_prep.part.13+0x320/0x320 [ 60.056070] ? __fget_light+0x174/0x1e0 [ 60.060022] __x64_sys_splice+0x248/0x300 [ 60.064173] do_syscall_64+0xd0/0x4e0 [ 60.067957] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 60.073136] RIP: 0033:0x459519 [ 60.076325] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 60.095218] RSP: 002b:00007f92ce6ebc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 60.102916] RAX: ffffffffffffffda RBX: 00007f92ce6ebc90 RCX: 0000000000459519 [ 60.110206] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 60.117551] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 60.124801] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f92ce6ec6d4 [ 60.132396] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 60.150138] CPU: 0 PID: 7145 Comm: syz-executor.5 Not tainted 4.19.112-syzkaller #0 [ 60.157960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.167295] Call Trace: [ 60.169864] dump_stack+0x123/0x177 [ 60.173473] should_fail.cold.4+0x5/0x13 [ 60.177520] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 60.182601] ? lock_downgrade+0x860/0x860 [ 60.186730] __should_failslab+0xba/0xf0 [ 60.190790] should_failslab+0x9/0x14 [ 60.194587] __kmalloc+0x2dd/0x770 [ 60.198114] ? tls_push_record+0xf3/0x1720 [ 60.202340] ? __sk_mem_schedule+0x5f/0xc0 [ 60.206562] tls_push_record+0xf3/0x1720 [ 60.210606] ? lockdep_hardirqs_on+0x421/0x5c0 [ 60.215187] ? alloc_encrypted_sg+0x81/0x100 [ 60.219578] tls_sw_sendpage+0x458/0xc00 [ 60.223643] ? tls_sw_sendmsg+0x1020/0x1020 [ 60.227965] ? pipe_lock+0x4f/0x60 [ 60.231499] inet_sendpage+0x122/0x600 [ 60.235379] ? kernel_sendpage+0xd0/0xd0 [ 60.239434] kernel_sendpage+0x60/0xd0 [ 60.243312] ? lock_downgrade+0x860/0x860 [ 60.247613] ? pipe_lock+0x4f/0x60 [ 60.251133] sock_sendpage+0x6d/0xd0 [ 60.254829] pipe_to_sendpage+0x212/0x430 [ 60.258958] ? generic_pipe_buf_nosteal+0x10/0x10 [ 60.263786] __splice_from_pipe+0x2cb/0x720 [ 60.268086] ? generic_pipe_buf_nosteal+0x10/0x10 [ 60.272921] ? generic_pipe_buf_nosteal+0x10/0x10 [ 60.277744] splice_from_pipe+0xbb/0x120 [ 60.281812] ? splice_shrink_spd+0xa0/0xa0 [ 60.286031] ? rw_verify_area+0xb8/0x2b0 [ 60.290076] generic_splice_sendpage+0x10/0x20 [ 60.294652] do_splice+0x4fd/0x12d0 [ 60.298260] ? ksys_dup3+0x2e0/0x2e0 [ 60.301955] ? opipe_prep.part.13+0x320/0x320 [ 60.306441] ? __fget_light+0x174/0x1e0 [ 60.311037] __x64_sys_splice+0x248/0x300 [ 60.315169] do_syscall_64+0xd0/0x4e0 [ 60.318952] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 60.324132] RIP: 0033:0x459519 [ 60.327305] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 60.346198] RSP: 002b:00007f44baaaec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 60.353901] RAX: ffffffffffffffda RBX: 00007f44baaaec90 RCX: 0000000000459519 [ 60.361157] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 60.368422] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 60.375674] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f44baaaf6d4 [ 60.382945] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 60.398133] CPU: 1 PID: 7133 Comm: syz-executor.2 Not tainted 4.19.112-syzkaller #0 [ 60.405962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.415943] Call Trace: [ 60.418537] dump_stack+0x123/0x177 [ 60.422151] should_fail.cold.4+0x5/0x13 [ 60.426206] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 60.431304] ? lock_downgrade+0x860/0x860 [ 60.435437] __should_failslab+0xba/0xf0 [ 60.439479] should_failslab+0x9/0x14 [ 60.443260] kmem_cache_alloc_node_trace+0x26d/0x730 [ 60.448345] __kmalloc_node_track_caller+0x3c/0x70 [ 60.453264] __kmalloc_reserve.isra.39+0x2c/0xc0 [ 60.458695] __alloc_skb+0xd7/0x580 [ 60.462299] ? skb_scrub_packet+0x3c0/0x3c0 [ 60.466600] ? _raw_spin_lock_bh+0x20/0x40 [ 60.470843] ? finish_task_switch+0x14a/0x720 [ 60.475429] ? finish_task_switch+0x11c/0x720 [ 60.479921] sk_stream_alloc_skb+0x9e/0x810 [ 60.484229] ? tcp_send_mss+0x1d/0x220 [ 60.488124] do_tcp_sendpages+0x772/0x1e10 [ 60.492344] ? __lock_is_held+0xb5/0x140 [ 60.496394] ? sk_stream_alloc_skb+0x810/0x810 [ 60.500967] ? __local_bh_enable_ip+0x160/0x260 [ 60.505618] ? lock_sock_nested+0xc5/0x100 [ 60.509831] ? lockdep_hardirqs_on+0x421/0x5c0 [ 60.514390] ? __local_bh_enable_ip+0x160/0x260 [ 60.519040] ? kasan_check_read+0x11/0x20 [ 60.523176] tcp_sendpage_locked+0x63/0xa0 [ 60.527391] tcp_sendpage+0x37/0x50 [ 60.531000] inet_sendpage+0x122/0x600 [ 60.534878] ? kernel_sendpage+0xd0/0xd0 [ 60.538915] kernel_sendpage+0x60/0xd0 [ 60.542779] ? lock_downgrade+0x860/0x860 [ 60.546905] ? pipe_lock+0x4f/0x60 [ 60.550437] sock_sendpage+0x6d/0xd0 [ 60.554138] pipe_to_sendpage+0x212/0x430 [ 60.558264] ? generic_pipe_buf_nosteal+0x10/0x10 [ 60.563090] __splice_from_pipe+0x2cb/0x720 [ 60.567406] ? generic_pipe_buf_nosteal+0x10/0x10 [ 60.572237] ? generic_pipe_buf_nosteal+0x10/0x10 [ 60.577056] splice_from_pipe+0xbb/0x120 [ 60.581119] ? splice_shrink_spd+0xa0/0xa0 [ 60.585343] ? rw_verify_area+0xb8/0x2b0 [ 60.589403] generic_splice_sendpage+0x10/0x20 [ 60.593987] do_splice+0x4fd/0x12d0 [ 60.597607] ? ksys_dup3+0x2e0/0x2e0 [ 60.601306] ? opipe_prep.part.13+0x320/0x320 [ 60.605783] ? __fget_light+0x174/0x1e0 [ 60.609752] __x64_sys_splice+0x248/0x300 [ 60.613897] do_syscall_64+0xd0/0x4e0 [ 60.617818] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 60.623002] RIP: 0033:0x459519 [ 60.626183] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 60.645096] RSP: 002b:00007fd17fed7c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 60.652788] RAX: ffffffffffffffda RBX: 00007fd17fed7c90 RCX: 0000000000459519 [ 60.660040] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 60.667411] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 60.674779] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd17fed86d4 [ 60.682031] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 60.692452] FAULT_INJECTION: forcing a failure. [ 60.692452] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 60.701929] FAULT_INJECTION: forcing a failure. [ 60.701929] name failslab, interval 1, probability 0, space 0, times 0 [ 60.704263] CPU: 1 PID: 7148 Comm: syz-executor.4 Not tainted 4.19.112-syzkaller #0 [ 60.704267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.704270] Call Trace: [ 60.704282] dump_stack+0x123/0x177 [ 60.704293] should_fail.cold.4+0x5/0x13 [ 60.704301] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 60.748495] ? mark_held_locks+0x130/0x130 [ 60.752716] ? __lock_acquire+0x792/0x4980 [ 60.756938] __alloc_pages_nodemask+0x1d5/0x710 [ 60.761595] ? __alloc_pages_slowpath+0x25c0/0x25c0 [ 60.766600] cache_grow_begin+0x91/0x8d0 [ 60.770642] ? kmem_cache_alloc_node+0xaa/0x730 [ 60.775295] kmem_cache_alloc_node+0x664/0x730 [ 60.779864] __alloc_skb+0xa7/0x580 [ 60.783473] ? skb_scrub_packet+0x3c0/0x3c0 [ 60.787776] ? _raw_spin_lock_bh+0x20/0x40 [ 60.792116] ? finish_task_switch+0x14a/0x720 [ 60.796598] ? finish_task_switch+0x11c/0x720 [ 60.801089] sk_stream_alloc_skb+0x9e/0x810 [ 60.805394] ? tcp_send_mss+0x1d/0x220 [ 60.809275] do_tcp_sendpages+0x772/0x1e10 [ 60.813503] ? __lock_is_held+0xb5/0x140 [ 60.817556] ? sk_stream_alloc_skb+0x810/0x810 [ 60.822125] ? __local_bh_enable_ip+0x160/0x260 [ 60.826776] ? lock_sock_nested+0xc5/0x100 [ 60.830992] ? lockdep_hardirqs_on+0x421/0x5c0 [ 60.835554] ? __local_bh_enable_ip+0x160/0x260 [ 60.840220] ? kasan_check_read+0x11/0x20 [ 60.844354] tcp_sendpage_locked+0x63/0xa0 [ 60.848571] tcp_sendpage+0x37/0x50 [ 60.852185] inet_sendpage+0x122/0x600 [ 60.856057] ? kernel_sendpage+0xd0/0xd0 [ 60.860111] kernel_sendpage+0x60/0xd0 [ 60.863984] ? lock_downgrade+0x860/0x860 [ 60.868114] ? pipe_lock+0x4f/0x60 [ 60.871734] sock_sendpage+0x6d/0xd0 [ 60.875469] pipe_to_sendpage+0x212/0x430 [ 60.879614] ? generic_pipe_buf_nosteal+0x10/0x10 [ 60.884474] __splice_from_pipe+0x2cb/0x720 [ 60.888783] ? generic_pipe_buf_nosteal+0x10/0x10 [ 60.893613] ? generic_pipe_buf_nosteal+0x10/0x10 [ 60.898440] splice_from_pipe+0xbb/0x120 [ 60.902485] ? splice_shrink_spd+0xa0/0xa0 [ 60.906709] ? rw_verify_area+0xb8/0x2b0 [ 60.910753] generic_splice_sendpage+0x10/0x20 [ 60.915313] do_splice+0x4fd/0x12d0 [ 60.918922] ? ksys_dup3+0x2e0/0x2e0 [ 60.922627] ? opipe_prep.part.13+0x320/0x320 [ 60.927111] ? __fget_light+0x174/0x1e0 [ 60.931099] __x64_sys_splice+0x248/0x300 [ 60.935231] do_syscall_64+0xd0/0x4e0 [ 60.939016] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 60.944186] RIP: 0033:0x459519 [ 60.947361] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 60.966601] RSP: 002b:00007f090747fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 60.974299] RAX: ffffffffffffffda RBX: 00007f090747fc90 RCX: 0000000000459519 [ 60.981561] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 60.988809] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 60.996057] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f09074806d4 [ 61.003314] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 61.010577] CPU: 0 PID: 7129 Comm: syz-executor.3 Not tainted 4.19.112-syzkaller #0 [ 61.018376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 61.027730] Call Trace: [ 61.030311] dump_stack+0x123/0x177 [ 61.033921] should_fail.cold.4+0x5/0x13 [ 61.037970] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 61.043049] ? lock_downgrade+0x860/0x860 [ 61.047189] __should_failslab+0xba/0xf0 [ 61.051234] should_failslab+0x9/0x14 [ 61.055013] kmem_cache_alloc_node_trace+0x26d/0x730 [ 61.060103] __kmalloc_node_track_caller+0x3c/0x70 [ 61.065033] __kmalloc_reserve.isra.39+0x2c/0xc0 [ 61.069782] __alloc_skb+0xd7/0x580 [ 61.073413] ? skb_scrub_packet+0x3c0/0x3c0 [ 61.077736] ? _raw_spin_lock_bh+0x20/0x40 [ 61.081956] ? finish_task_switch+0x14a/0x720 [ 61.086448] ? finish_task_switch+0x11c/0x720 [ 61.091017] sk_stream_alloc_skb+0x9e/0x810 [ 61.095322] ? tcp_send_mss+0x1d/0x220 [ 61.099193] do_tcp_sendpages+0x772/0x1e10 [ 61.103411] ? __lock_is_held+0xb5/0x140 [ 61.107468] ? sk_stream_alloc_skb+0x810/0x810 [ 61.112045] ? __local_bh_enable_ip+0x160/0x260 [ 61.116694] ? lock_sock_nested+0xc5/0x100 [ 61.120909] ? lockdep_hardirqs_on+0x421/0x5c0 [ 61.125492] ? __local_bh_enable_ip+0x160/0x260 [ 61.130163] ? kasan_check_read+0x11/0x20 [ 61.134291] tcp_sendpage_locked+0x63/0xa0 [ 61.138503] tcp_sendpage+0x37/0x50 [ 61.142149] inet_sendpage+0x122/0x600 [ 61.146027] ? kernel_sendpage+0xd0/0xd0 [ 61.150069] kernel_sendpage+0x60/0xd0 [ 61.153942] ? lock_downgrade+0x860/0x860 [ 61.158071] ? pipe_lock+0x4f/0x60 [ 61.161594] sock_sendpage+0x6d/0xd0 [ 61.165294] pipe_to_sendpage+0x212/0x430 [ 61.169430] ? generic_pipe_buf_nosteal+0x10/0x10 [ 61.174259] __splice_from_pipe+0x2cb/0x720 [ 61.178564] ? generic_pipe_buf_nosteal+0x10/0x10 [ 61.183390] ? generic_pipe_buf_nosteal+0x10/0x10 [ 61.188212] splice_from_pipe+0xbb/0x120 [ 61.192253] ? splice_shrink_spd+0xa0/0xa0 [ 61.196470] ? rw_verify_area+0xb8/0x2b0 [ 61.200515] generic_splice_sendpage+0x10/0x20 [ 61.205075] do_splice+0x4fd/0x12d0 [ 61.208683] ? ksys_dup3+0x2e0/0x2e0 [ 61.214026] ? opipe_prep.part.13+0x320/0x320 [ 61.218503] ? __fget_light+0x174/0x1e0 [ 61.222458] __x64_sys_splice+0x248/0x300 [ 61.226588] do_syscall_64+0xd0/0x4e0 [ 61.230392] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 61.235576] RIP: 0033:0x459519 [ 61.238762] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 2020/03/25 04:32:40 executed programs: 25 [ 61.257740] RSP: 002b:00007eff87d79c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 61.265440] RAX: ffffffffffffffda RBX: 00007eff87d79c90 RCX: 0000000000459519 [ 61.272728] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 61.279985] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 61.287243] R10: 0000000000000000 R11: 0000000000000246 R12: 00007eff87d7a6d4 [ 61.294493] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 61.360765] FAULT_INJECTION: forcing a failure. [ 61.360765] name failslab, interval 1, probability 0, space 0, times 0 [ 61.379250] FAULT_INJECTION: forcing a failure. [ 61.379250] name failslab, interval 1, probability 0, space 0, times 0 [ 61.386567] FAULT_INJECTION: forcing a failure. [ 61.386567] name failslab, interval 1, probability 0, space 0, times 0 [ 61.402218] FAULT_INJECTION: forcing a failure. [ 61.402218] name failslab, interval 1, probability 0, space 0, times 0 [ 61.414208] CPU: 0 PID: 7160 Comm: syz-executor.5 Not tainted 4.19.112-syzkaller #0 [ 61.422021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 61.431368] Call Trace: [ 61.433950] dump_stack+0x123/0x177 [ 61.437576] should_fail.cold.4+0x5/0x13 [ 61.441620] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 61.446704] ? lock_downgrade+0x860/0x860 [ 61.450841] __should_failslab+0xba/0xf0 [ 61.454883] should_failslab+0x9/0x14 [ 61.458679] __kmalloc+0x2dd/0x770 [ 61.462827] ? tls_push_record+0xf3/0x1720 [ 61.467048] ? __sk_mem_schedule+0x5f/0xc0 [ 61.471270] tls_push_record+0xf3/0x1720 [ 61.475317] ? lockdep_hardirqs_on+0x421/0x5c0 [ 61.479900] ? alloc_encrypted_sg+0x81/0x100 [ 61.484320] tls_sw_sendpage+0x458/0xc00 [ 61.488374] ? tls_sw_sendmsg+0x1020/0x1020 [ 61.492677] ? pipe_lock+0x4f/0x60 [ 61.496205] inet_sendpage+0x122/0x600 [ 61.500072] ? kernel_sendpage+0xd0/0xd0 [ 61.504112] kernel_sendpage+0x60/0xd0 [ 61.507976] ? lock_downgrade+0x860/0x860 [ 61.512101] ? pipe_lock+0x4f/0x60 [ 61.515620] sock_sendpage+0x6d/0xd0 [ 61.519317] pipe_to_sendpage+0x212/0x430 [ 61.523446] ? generic_pipe_buf_nosteal+0x10/0x10 [ 61.528270] __splice_from_pipe+0x2cb/0x720 [ 61.532588] ? generic_pipe_buf_nosteal+0x10/0x10 [ 61.537432] ? generic_pipe_buf_nosteal+0x10/0x10 [ 61.542382] splice_from_pipe+0xbb/0x120 [ 61.546431] ? splice_shrink_spd+0xa0/0xa0 [ 61.550654] ? rw_verify_area+0xb8/0x2b0 [ 61.554717] generic_splice_sendpage+0x10/0x20 [ 61.559305] do_splice+0x4fd/0x12d0 [ 61.562921] ? ksys_dup3+0x2e0/0x2e0 [ 61.566619] ? opipe_prep.part.13+0x320/0x320 [ 61.571098] ? __fget_light+0x174/0x1e0 [ 61.575053] __x64_sys_splice+0x248/0x300 [ 61.579197] do_syscall_64+0xd0/0x4e0 [ 61.582983] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 61.588167] RIP: 0033:0x459519 [ 61.591341] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 61.610239] RSP: 002b:00007f44baacfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 61.617927] RAX: ffffffffffffffda RBX: 00007f44baacfc90 RCX: 0000000000459519 [ 61.625185] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 61.632441] RBP: 000000000075bf20 R08: 0000000100000300 R09: 0000000000000000 [ 61.639699] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f44baad06d4 [ 61.646963] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 61.661322] CPU: 1 PID: 7161 Comm: syz-executor.4 Not tainted 4.19.112-syzkaller #0 [ 61.669152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 61.678670] Call Trace: [ 61.681257] dump_stack+0x123/0x177 [ 61.684908] should_fail.cold.4+0x5/0x13 [ 61.688973] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 61.694085] ? lock_downgrade+0x860/0x860 [ 61.698226] __should_failslab+0xba/0xf0 [ 61.702304] should_failslab+0x9/0x14 [ 61.706123] __kmalloc+0x2dd/0x770 [ 61.709665] ? tls_push_record+0xf3/0x1720 [ 61.713910] ? __sk_mem_schedule+0x5f/0xc0 [ 61.718152] tls_push_record+0xf3/0x1720 [ 61.722210] ? lockdep_hardirqs_on+0x421/0x5c0 [ 61.726802] ? alloc_encrypted_sg+0x81/0x100 [ 61.731211] tls_sw_sendpage+0x458/0xc00 [ 61.735372] ? tls_sw_sendmsg+0x1020/0x1020 [ 61.739821] ? pipe_lock+0x4f/0x60 [ 61.743352] inet_sendpage+0x122/0x600 [ 61.747359] ? kernel_sendpage+0xd0/0xd0 [ 61.751537] kernel_sendpage+0x60/0xd0 [ 61.755424] ? lock_downgrade+0x860/0x860 [ 61.759566] ? pipe_lock+0x4f/0x60 [ 61.763120] sock_sendpage+0x6d/0xd0 [ 61.766836] pipe_to_sendpage+0x212/0x430 [ 61.770986] ? generic_pipe_buf_nosteal+0x10/0x10 [ 61.775821] __splice_from_pipe+0x2cb/0x720 [ 61.780158] ? generic_pipe_buf_nosteal+0x10/0x10 [ 61.784996] ? generic_pipe_buf_nosteal+0x10/0x10 [ 61.789830] splice_from_pipe+0xbb/0x120 [ 61.793889] ? splice_shrink_spd+0xa0/0xa0 [ 61.798207] ? rw_verify_area+0xb8/0x2b0 [ 61.802263] generic_splice_sendpage+0x10/0x20 [ 61.806831] do_splice+0x4fd/0x12d0 [ 61.810447] ? ksys_dup3+0x2e0/0x2e0 [ 61.814163] ? opipe_prep.part.13+0x320/0x320 [ 61.818646] ? __fget_light+0x174/0x1e0 [ 61.822605] __x64_sys_splice+0x248/0x300 [ 61.826748] do_syscall_64+0xd0/0x4e0 [ 61.830554] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 61.835730] RIP: 0033:0x459519 [ 61.838906] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 61.857823] RSP: 002b:00007f09074a0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 61.865522] RAX: ffffffffffffffda RBX: 00007f09074a0c90 RCX: 0000000000459519 [ 61.872877] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 61.880247] RBP: 000000000075bf20 R08: 0000000100000300 R09: 0000000000000000 [ 61.887594] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f09074a16d4 [ 61.894880] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 61.902152] CPU: 0 PID: 7162 Comm: syz-executor.1 Not tainted 4.19.112-syzkaller #0 [ 61.908455] FAULT_INJECTION: forcing a failure. [ 61.908455] name failslab, interval 1, probability 0, space 0, times 0 [ 61.910086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 61.910089] Call Trace: [ 61.910100] dump_stack+0x123/0x177 [ 61.910112] should_fail.cold.4+0x5/0x13 [ 61.910120] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 61.910126] ? lock_downgrade+0x860/0x860 [ 61.910138] __should_failslab+0xba/0xf0 [ 61.910145] should_failslab+0x9/0x14 [ 61.910153] __kmalloc+0x2dd/0x770 [ 61.961826] ? tls_push_record+0xf3/0x1720 [ 61.966159] ? __sk_mem_schedule+0x5f/0xc0 [ 61.970400] tls_push_record+0xf3/0x1720 [ 61.974454] ? lockdep_hardirqs_on+0x421/0x5c0 [ 61.979142] ? alloc_encrypted_sg+0x81/0x100 [ 61.983542] tls_sw_sendpage+0x458/0xc00 [ 61.987605] ? tls_sw_sendmsg+0x1020/0x1020 [ 61.991921] ? pipe_lock+0x4f/0x60 [ 61.995450] inet_sendpage+0x122/0x600 [ 61.999330] ? kernel_sendpage+0xd0/0xd0 [ 62.003381] kernel_sendpage+0x60/0xd0 [ 62.007256] ? lock_downgrade+0x860/0x860 [ 62.011394] ? pipe_lock+0x4f/0x60 [ 62.014918] sock_sendpage+0x6d/0xd0 [ 62.018628] pipe_to_sendpage+0x212/0x430 [ 62.022773] ? generic_pipe_buf_nosteal+0x10/0x10 [ 62.027637] __splice_from_pipe+0x2cb/0x720 [ 62.031948] ? generic_pipe_buf_nosteal+0x10/0x10 [ 62.036792] ? generic_pipe_buf_nosteal+0x10/0x10 [ 62.041630] splice_from_pipe+0xbb/0x120 [ 62.045680] ? splice_shrink_spd+0xa0/0xa0 [ 62.049914] ? rw_verify_area+0xb8/0x2b0 [ 62.053970] generic_splice_sendpage+0x10/0x20 [ 62.058542] do_splice+0x4fd/0x12d0 [ 62.062158] ? ksys_dup3+0x2e0/0x2e0 [ 62.065857] ? opipe_prep.part.13+0x320/0x320 [ 62.070348] ? __fget_light+0x174/0x1e0 [ 62.074317] __x64_sys_splice+0x248/0x300 [ 62.078469] do_syscall_64+0xd0/0x4e0 [ 62.082277] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 62.087463] RIP: 0033:0x459519 [ 62.090651] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 62.109653] RSP: 002b:00007f92ce70cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 62.117431] RAX: ffffffffffffffda RBX: 00007f92ce70cc90 RCX: 0000000000459519 [ 62.124963] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 62.132244] RBP: 000000000075bf20 R08: 0000000100000300 R09: 0000000000000000 [ 62.139611] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f92ce70d6d4 [ 62.146882] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 62.166966] CPU: 1 PID: 7152 Comm: syz-executor.2 Not tainted 4.19.112-syzkaller #0 [ 62.174833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 62.184173] Call Trace: [ 62.186750] dump_stack+0x123/0x177 [ 62.190363] should_fail.cold.4+0x5/0x13 [ 62.194433] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 62.199526] ? lock_downgrade+0x860/0x860 [ 62.203773] __should_failslab+0xba/0xf0 [ 62.207849] should_failslab+0x9/0x14 [ 62.211650] __kmalloc+0x2dd/0x770 [ 62.215182] ? tls_push_record+0xf3/0x1720 [ 62.219430] ? __sk_mem_schedule+0x5f/0xc0 [ 62.223654] tls_push_record+0xf3/0x1720 [ 62.227714] ? lockdep_hardirqs_on+0x421/0x5c0 [ 62.232283] ? alloc_encrypted_sg+0x81/0x100 [ 62.236678] tls_sw_sendpage+0x458/0xc00 [ 62.240833] ? tls_sw_sendmsg+0x1020/0x1020 [ 62.245149] ? pipe_lock+0x4f/0x60 [ 62.248687] inet_sendpage+0x122/0x600 [ 62.252562] ? kernel_sendpage+0xd0/0xd0 [ 62.256606] kernel_sendpage+0x60/0xd0 [ 62.260500] ? lock_downgrade+0x860/0x860 [ 62.264651] ? pipe_lock+0x4f/0x60 [ 62.268175] sock_sendpage+0x6d/0xd0 [ 62.271874] pipe_to_sendpage+0x212/0x430 [ 62.276011] ? generic_pipe_buf_nosteal+0x10/0x10 [ 62.280844] __splice_from_pipe+0x2cb/0x720 [ 62.285146] ? generic_pipe_buf_nosteal+0x10/0x10 [ 62.289980] ? generic_pipe_buf_nosteal+0x10/0x10 [ 62.294807] splice_from_pipe+0xbb/0x120 [ 62.298849] ? splice_shrink_spd+0xa0/0xa0 [ 62.303069] ? rw_verify_area+0xb8/0x2b0 [ 62.307111] generic_splice_sendpage+0x10/0x20 [ 62.311692] do_splice+0x4fd/0x12d0 [ 62.315306] ? ksys_dup3+0x2e0/0x2e0 [ 62.319090] ? opipe_prep.part.13+0x320/0x320 [ 62.323572] ? __fget_light+0x174/0x1e0 [ 62.327553] __x64_sys_splice+0x248/0x300 [ 62.331733] do_syscall_64+0xd0/0x4e0 [ 62.335539] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 62.340717] RIP: 0033:0x459519 [ 62.343894] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 62.362798] RSP: 002b:00007fd17fef8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 62.370491] RAX: ffffffffffffffda RBX: 00007fd17fef8c90 RCX: 0000000000459519 [ 62.377755] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 62.385006] RBP: 000000000075bf20 R08: 0000000100000300 R09: 0000000000000000 [ 62.392256] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd17fef96d4 [ 62.399509] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 62.406828] CPU: 0 PID: 7166 Comm: syz-executor.3 Not tainted 4.19.112-syzkaller #0 [ 62.413055] FAULT_INJECTION: forcing a failure. [ 62.413055] name failslab, interval 1, probability 0, space 0, times 0 [ 62.414628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 62.414631] Call Trace: [ 62.414643] dump_stack+0x123/0x177 [ 62.414655] should_fail.cold.4+0x5/0x13 [ 62.414663] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 62.414669] ? lock_downgrade+0x860/0x860 [ 62.414680] __should_failslab+0xba/0xf0 [ 62.458728] should_failslab+0x9/0x14 [ 62.462520] __kmalloc+0x2dd/0x770 [ 62.466049] ? tls_push_record+0xf3/0x1720 [ 62.470278] ? __sk_mem_schedule+0x5f/0xc0 [ 62.474512] tls_push_record+0xf3/0x1720 [ 62.478562] ? lockdep_hardirqs_on+0x421/0x5c0 [ 62.483253] ? alloc_encrypted_sg+0x81/0x100 [ 62.487653] tls_sw_sendpage+0x458/0xc00 [ 62.491710] ? tls_sw_sendmsg+0x1020/0x1020 [ 62.496019] ? pipe_lock+0x4f/0x60 [ 62.499551] inet_sendpage+0x122/0x600 [ 62.503424] ? kernel_sendpage+0xd0/0xd0 [ 62.507487] kernel_sendpage+0x60/0xd0 [ 62.511372] ? lock_downgrade+0x860/0x860 [ 62.515517] ? pipe_lock+0x4f/0x60 [ 62.519052] sock_sendpage+0x6d/0xd0 [ 62.522752] pipe_to_sendpage+0x212/0x430 [ 62.526895] ? generic_pipe_buf_nosteal+0x10/0x10 [ 62.531738] __splice_from_pipe+0x2cb/0x720 [ 62.536060] ? generic_pipe_buf_nosteal+0x10/0x10 [ 62.540908] ? generic_pipe_buf_nosteal+0x10/0x10 [ 62.545752] splice_from_pipe+0xbb/0x120 [ 62.549810] ? splice_shrink_spd+0xa0/0xa0 [ 62.554031] ? rw_verify_area+0xb8/0x2b0 [ 62.558076] generic_splice_sendpage+0x10/0x20 [ 62.562642] do_splice+0x4fd/0x12d0 [ 62.566252] ? ksys_dup3+0x2e0/0x2e0 [ 62.569949] ? opipe_prep.part.13+0x320/0x320 [ 62.574428] ? __fget_light+0x174/0x1e0 [ 62.578481] __x64_sys_splice+0x248/0x300 [ 62.582652] do_syscall_64+0xd0/0x4e0 [ 62.586438] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 62.591614] RIP: 0033:0x459519 [ 62.594816] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 62.613948] RSP: 002b:00007eff87d9ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 62.621777] RAX: ffffffffffffffda RBX: 00007eff87d9ac90 RCX: 0000000000459519 [ 62.629049] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 62.636445] RBP: 000000000075bf20 R08: 0000000100000300 R09: 0000000000000000 [ 62.643705] R10: 0000000000000000 R11: 0000000000000246 R12: 00007eff87d9b6d4 [ 62.650967] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 62.658259] CPU: 1 PID: 7167 Comm: syz-executor.0 Not tainted 4.19.112-syzkaller #0 [ 62.666061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 62.675671] Call Trace: [ 62.678261] dump_stack+0x123/0x177 [ 62.681890] should_fail.cold.4+0x5/0x13 [ 62.685948] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 62.691039] ? lock_downgrade+0x860/0x860 [ 62.695172] __should_failslab+0xba/0xf0 [ 62.699213] should_failslab+0x9/0x14 [ 62.703009] kmem_cache_alloc_node_trace+0x26d/0x730 [ 62.708092] __kmalloc_node_track_caller+0x3c/0x70 [ 62.713029] __kmalloc_reserve.isra.39+0x2c/0xc0 [ 62.717788] __alloc_skb+0xd7/0x580 [ 62.721415] ? skb_scrub_packet+0x3c0/0x3c0 [ 62.725721] ? kasan_check_write+0x14/0x20 [ 62.729941] ? finish_task_switch+0x4c8/0x720 [ 62.734434] sk_stream_alloc_skb+0x9e/0x810 [ 62.738754] ? tcp_send_mss+0x1d/0x220 [ 62.742629] do_tcp_sendpages+0x772/0x1e10 [ 62.746870] ? __lock_is_held+0xb5/0x140 [ 62.750925] ? sk_stream_alloc_skb+0x810/0x810 [ 62.755488] ? __local_bh_enable_ip+0x160/0x260 [ 62.760137] ? lock_sock_nested+0xc5/0x100 [ 62.764352] ? lockdep_hardirqs_on+0x421/0x5c0 [ 62.768916] ? __local_bh_enable_ip+0x160/0x260 [ 62.773569] ? kasan_check_read+0x11/0x20 [ 62.777703] tcp_sendpage_locked+0x63/0xa0 [ 62.781940] tcp_sendpage+0x37/0x50 [ 62.785555] inet_sendpage+0x122/0x600 [ 62.789429] ? kernel_sendpage+0xd0/0xd0 [ 62.793473] kernel_sendpage+0x60/0xd0 [ 62.797344] ? lock_downgrade+0x860/0x860 [ 62.801499] ? pipe_lock+0x4f/0x60 [ 62.805053] sock_sendpage+0x6d/0xd0 [ 62.808863] pipe_to_sendpage+0x212/0x430 [ 62.813001] ? generic_pipe_buf_nosteal+0x10/0x10 [ 62.817842] __splice_from_pipe+0x2cb/0x720 [ 62.822149] ? generic_pipe_buf_nosteal+0x10/0x10 [ 62.826980] ? generic_pipe_buf_nosteal+0x10/0x10 [ 62.831898] splice_from_pipe+0xbb/0x120 [ 62.835951] ? splice_shrink_spd+0xa0/0xa0 [ 62.840170] ? rw_verify_area+0xb8/0x2b0 [ 62.844211] generic_splice_sendpage+0x10/0x20 [ 62.848778] do_splice+0x4fd/0x12d0 [ 62.852389] ? ksys_dup3+0x2e0/0x2e0 [ 62.856083] ? opipe_prep.part.13+0x320/0x320 [ 62.860558] ? __fget_light+0x174/0x1e0 [ 62.864511] __x64_sys_splice+0x248/0x300 [ 62.868639] do_syscall_64+0xd0/0x4e0 [ 62.872421] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 62.877589] RIP: 0033:0x459519 [ 62.880761] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 62.899643] RSP: 002b:00007f55208b8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 62.910802] RAX: ffffffffffffffda RBX: 00007f55208b8c90 RCX: 0000000000459519 [ 62.918141] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 62.925400] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 62.932676] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f55208b96d4 [ 62.939929] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 63.011334] FAULT_INJECTION: forcing a failure. [ 63.011334] name failslab, interval 1, probability 0, space 0, times 0 [ 63.027316] FAULT_INJECTION: forcing a failure. [ 63.027316] name failslab, interval 1, probability 0, space 0, times 0 [ 63.043670] FAULT_INJECTION: forcing a failure. [ 63.043670] name failslab, interval 1, probability 0, space 0, times 0 [ 63.045100] FAULT_INJECTION: forcing a failure. [ 63.045100] name failslab, interval 1, probability 0, space 0, times 0 [ 63.055001] CPU: 0 PID: 7183 Comm: syz-executor.0 Not tainted 4.19.112-syzkaller #0 [ 63.073931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 63.083290] Call Trace: [ 63.085873] dump_stack+0x123/0x177 [ 63.089508] should_fail.cold.4+0x5/0x13 [ 63.093555] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 63.098651] ? lock_downgrade+0x860/0x860 [ 63.102799] __should_failslab+0xba/0xf0 [ 63.106847] should_failslab+0x9/0x14 [ 63.110634] __kmalloc+0x2dd/0x770 [ 63.114168] ? tls_push_record+0xf3/0x1720 [ 63.118384] ? __sk_mem_schedule+0x5f/0xc0 [ 63.122609] tls_push_record+0xf3/0x1720 [ 63.126665] ? lockdep_hardirqs_on+0x421/0x5c0 [ 63.131257] ? alloc_encrypted_sg+0x81/0x100 [ 63.135655] tls_sw_sendpage+0x458/0xc00 [ 63.139724] ? tls_sw_sendmsg+0x1020/0x1020 [ 63.144029] ? pipe_lock+0x4f/0x60 [ 63.147568] inet_sendpage+0x122/0x600 [ 63.151449] ? kernel_sendpage+0xd0/0xd0 [ 63.155496] kernel_sendpage+0x60/0xd0 [ 63.159366] ? lock_downgrade+0x860/0x860 [ 63.163522] ? pipe_lock+0x4f/0x60 [ 63.167050] sock_sendpage+0x6d/0xd0 [ 63.170757] pipe_to_sendpage+0x212/0x430 [ 63.174891] ? generic_pipe_buf_nosteal+0x10/0x10 [ 63.179716] __splice_from_pipe+0x2cb/0x720 [ 63.184019] ? generic_pipe_buf_nosteal+0x10/0x10 [ 63.188853] ? generic_pipe_buf_nosteal+0x10/0x10 [ 63.193676] splice_from_pipe+0xbb/0x120 [ 63.197722] ? splice_shrink_spd+0xa0/0xa0 [ 63.202087] ? rw_verify_area+0xb8/0x2b0 [ 63.206157] generic_splice_sendpage+0x10/0x20 [ 63.210744] do_splice+0x4fd/0x12d0 [ 63.214378] ? ksys_dup3+0x2e0/0x2e0 [ 63.218096] ? opipe_prep.part.13+0x320/0x320 [ 63.222584] ? __fget_light+0x174/0x1e0 [ 63.226554] __x64_sys_splice+0x248/0x300 [ 63.230698] do_syscall_64+0xd0/0x4e0 [ 63.234503] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 63.239683] RIP: 0033:0x459519 [ 63.242862] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 63.261758] RSP: 002b:00007f55208d9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 63.269576] RAX: ffffffffffffffda RBX: 00007f55208d9c90 RCX: 0000000000459519 [ 63.276834] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 63.284090] RBP: 000000000075bf20 R08: 0000000100000300 R09: 0000000000000000 [ 63.291344] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f55208da6d4 [ 63.298635] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 63.306082] CPU: 1 PID: 7188 Comm: syz-executor.4 Not tainted 4.19.112-syzkaller #0 [ 63.313898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 63.323239] Call Trace: [ 63.325818] dump_stack+0x123/0x177 [ 63.329430] should_fail.cold.4+0x5/0x13 [ 63.333481] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 63.338581] ? lock_downgrade+0x860/0x860 [ 63.342723] __should_failslab+0xba/0xf0 [ 63.346782] should_failslab+0x9/0x14 [ 63.350567] __kmalloc+0x2dd/0x770 [ 63.354091] ? tls_push_record+0xf3/0x1720 [ 63.358308] ? __sk_mem_schedule+0x5f/0xc0 [ 63.362531] tls_push_record+0xf3/0x1720 [ 63.366599] ? lockdep_hardirqs_on+0x421/0x5c0 [ 63.371167] ? alloc_encrypted_sg+0x81/0x100 [ 63.375569] tls_sw_sendpage+0x458/0xc00 [ 63.379619] ? tls_sw_sendmsg+0x1020/0x1020 [ 63.383924] ? pipe_lock+0x4f/0x60 [ 63.387454] inet_sendpage+0x122/0x600 [ 63.391341] ? kernel_sendpage+0xd0/0xd0 [ 63.395400] kernel_sendpage+0x60/0xd0 [ 63.399294] ? lock_downgrade+0x860/0x860 [ 63.403441] ? pipe_lock+0x4f/0x60 [ 63.406966] sock_sendpage+0x6d/0xd0 [ 63.410674] pipe_to_sendpage+0x212/0x430 [ 63.414807] ? generic_pipe_buf_nosteal+0x10/0x10 [ 63.419638] __splice_from_pipe+0x2cb/0x720 [ 63.423945] ? generic_pipe_buf_nosteal+0x10/0x10 [ 63.428779] ? generic_pipe_buf_nosteal+0x10/0x10 [ 63.433607] splice_from_pipe+0xbb/0x120 [ 63.437667] ? splice_shrink_spd+0xa0/0xa0 [ 63.441891] ? rw_verify_area+0xb8/0x2b0 [ 63.445941] generic_splice_sendpage+0x10/0x20 [ 63.450508] do_splice+0x4fd/0x12d0 [ 63.454135] ? ksys_dup3+0x2e0/0x2e0 [ 63.457967] ? opipe_prep.part.13+0x320/0x320 [ 63.462451] ? __fget_light+0x174/0x1e0 [ 63.466412] __x64_sys_splice+0x248/0x300 [ 63.470563] do_syscall_64+0xd0/0x4e0 [ 63.474358] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 63.479531] RIP: 0033:0x459519 [ 63.482703] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 63.501588] RSP: 002b:00007f090747fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 63.509289] RAX: ffffffffffffffda RBX: 00007f090747fc90 RCX: 0000000000459519 [ 63.516540] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 63.523814] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 63.531068] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f09074806d4 [ 63.538322] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 63.545597] CPU: 0 PID: 7187 Comm: syz-executor.2 Not tainted 4.19.112-syzkaller #0 [ 63.553433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 63.562782] Call Trace: [ 63.565458] dump_stack+0x123/0x177 [ 63.569082] should_fail.cold.4+0x5/0x13 [ 63.573134] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 63.578232] ? lock_downgrade+0x860/0x860 [ 63.582374] __should_failslab+0xba/0xf0 [ 63.586423] should_failslab+0x9/0x14 [ 63.590212] __kmalloc+0x2dd/0x770 [ 63.593745] ? tls_push_record+0xf3/0x1720 [ 63.597983] ? __sk_mem_schedule+0x5f/0xc0 [ 63.602214] tls_push_record+0xf3/0x1720 [ 63.606264] ? lockdep_hardirqs_on+0x421/0x5c0 [ 63.610843] ? alloc_encrypted_sg+0x81/0x100 [ 63.615242] tls_sw_sendpage+0x458/0xc00 [ 63.619298] ? tls_sw_sendmsg+0x1020/0x1020 [ 63.623615] ? pipe_lock+0x4f/0x60 [ 63.627145] inet_sendpage+0x122/0x600 [ 63.631027] ? kernel_sendpage+0xd0/0xd0 [ 63.635081] kernel_sendpage+0x60/0xd0 [ 63.638956] ? lock_downgrade+0x860/0x860 [ 63.643089] ? pipe_lock+0x4f/0x60 [ 63.646614] sock_sendpage+0x6d/0xd0 [ 63.650320] pipe_to_sendpage+0x212/0x430 [ 63.654457] ? generic_pipe_buf_nosteal+0x10/0x10 [ 63.659292] __splice_from_pipe+0x2cb/0x720 [ 63.663742] ? generic_pipe_buf_nosteal+0x10/0x10 [ 63.668580] ? generic_pipe_buf_nosteal+0x10/0x10 [ 63.673426] splice_from_pipe+0xbb/0x120 [ 63.677483] ? splice_shrink_spd+0xa0/0xa0 [ 63.681711] ? rw_verify_area+0xb8/0x2b0 [ 63.685760] generic_splice_sendpage+0x10/0x20 [ 63.690338] do_splice+0x4fd/0x12d0 [ 63.693961] ? ksys_dup3+0x2e0/0x2e0 [ 63.697663] ? opipe_prep.part.13+0x320/0x320 [ 63.702153] ? __fget_light+0x174/0x1e0 [ 63.706112] __x64_sys_splice+0x248/0x300 [ 63.710252] do_syscall_64+0xd0/0x4e0 [ 63.714071] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 63.719243] RIP: 0033:0x459519 [ 63.722419] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 63.741311] RSP: 002b:00007fd17fef8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 63.749036] RAX: ffffffffffffffda RBX: 00007fd17fef8c90 RCX: 0000000000459519 [ 63.756300] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 63.763566] RBP: 000000000075bf20 R08: 0000000100000300 R09: 0000000000000000 [ 63.770823] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd17fef96d4 [ 63.778085] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 63.785359] CPU: 1 PID: 7185 Comm: syz-executor.5 Not tainted 4.19.112-syzkaller #0 [ 63.793155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 63.802506] Call Trace: [ 63.805092] dump_stack+0x123/0x177 [ 63.808724] should_fail.cold.4+0x5/0x13 [ 63.812784] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 63.817884] ? lock_downgrade+0x860/0x860 [ 63.822016] __should_failslab+0xba/0xf0 [ 63.826060] should_failslab+0x9/0x14 [ 63.829901] __kmalloc+0x2dd/0x770 [ 63.833427] ? tls_push_record+0xf3/0x1720 [ 63.837657] ? __sk_mem_schedule+0x5f/0xc0 [ 63.841876] tls_push_record+0xf3/0x1720 [ 63.845918] ? lockdep_hardirqs_on+0x421/0x5c0 [ 63.850486] ? alloc_encrypted_sg+0x81/0x100 [ 63.854879] tls_sw_sendpage+0x458/0xc00 [ 63.858936] ? tls_sw_sendmsg+0x1020/0x1020 [ 63.863258] ? pipe_lock+0x4f/0x60 [ 63.866845] inet_sendpage+0x122/0x600 [ 63.870724] ? kernel_sendpage+0xd0/0xd0 [ 63.874768] kernel_sendpage+0x60/0xd0 [ 63.878637] ? lock_downgrade+0x860/0x860 [ 63.882766] ? pipe_lock+0x4f/0x60 [ 63.886288] sock_sendpage+0x6d/0xd0 [ 63.889987] pipe_to_sendpage+0x212/0x430 [ 63.894117] ? generic_pipe_buf_nosteal+0x10/0x10 [ 63.898943] __splice_from_pipe+0x2cb/0x720 [ 63.903246] ? generic_pipe_buf_nosteal+0x10/0x10 [ 63.908084] ? generic_pipe_buf_nosteal+0x10/0x10 [ 63.912904] splice_from_pipe+0xbb/0x120 [ 63.916941] ? splice_shrink_spd+0xa0/0xa0 [ 63.921157] ? rw_verify_area+0xb8/0x2b0 [ 63.925200] generic_splice_sendpage+0x10/0x20 [ 63.929770] do_splice+0x4fd/0x12d0 [ 63.933380] ? ksys_dup3+0x2e0/0x2e0 [ 63.937069] ? opipe_prep.part.13+0x320/0x320 [ 63.941556] ? __fget_light+0x174/0x1e0 [ 63.945509] __x64_sys_splice+0x248/0x300 [ 63.949638] do_syscall_64+0xd0/0x4e0 [ 63.953417] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 63.958584] RIP: 0033:0x459519 [ 63.961755] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 63.980635] RSP: 002b:00007f44baacfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 63.988320] RAX: ffffffffffffffda RBX: 00007f44baacfc90 RCX: 0000000000459519 [ 63.995667] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 64.002930] RBP: 000000000075bf20 R08: 0000000100000300 R09: 0000000000000000 [ 64.010185] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f44baad06d4 [ 64.017436] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 64.086627] FAULT_INJECTION: forcing a failure. [ 64.086627] name failslab, interval 1, probability 0, space 0, times 0 [ 64.086638] FAULT_INJECTION: forcing a failure. [ 64.086638] name failslab, interval 1, probability 0, space 0, times 0 [ 64.110015] FAULT_INJECTION: forcing a failure. [ 64.110015] name failslab, interval 1, probability 0, space 0, times 0 [ 64.114023] CPU: 1 PID: 7213 Comm: syz-executor.2 Not tainted 4.19.112-syzkaller #0 [ 64.129000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 64.138340] Call Trace: [ 64.140924] dump_stack+0x123/0x177 [ 64.144534] should_fail.cold.4+0x5/0x13 [ 64.148602] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 64.153693] ? lock_downgrade+0x860/0x860 [ 64.157842] __should_failslab+0xba/0xf0 [ 64.161892] should_failslab+0x9/0x14 [ 64.165679] kmem_cache_alloc_node_trace+0x26d/0x730 [ 64.170777] __kmalloc_node_track_caller+0x3c/0x70 [ 64.175689] __kmalloc_reserve.isra.39+0x2c/0xc0 [ 64.180426] __alloc_skb+0xd7/0x580 [ 64.184044] ? skb_scrub_packet+0x3c0/0x3c0 [ 64.188347] ? _raw_spin_lock_bh+0x20/0x40 [ 64.192564] ? finish_task_switch+0x14a/0x720 [ 64.197038] ? finish_task_switch+0x11c/0x720 [ 64.201519] sk_stream_alloc_skb+0x9e/0x810 [ 64.205821] ? tcp_send_mss+0x1d/0x220 [ 64.209700] do_tcp_sendpages+0x772/0x1e10 [ 64.213917] ? __lock_is_held+0xb5/0x140 [ 64.217963] ? sk_stream_alloc_skb+0x810/0x810 [ 64.222531] ? __local_bh_enable_ip+0x160/0x260 [ 64.227202] ? lock_sock_nested+0xc5/0x100 [ 64.231431] ? lockdep_hardirqs_on+0x421/0x5c0 [ 64.236093] ? __local_bh_enable_ip+0x160/0x260 [ 64.240762] ? kasan_check_read+0x11/0x20 [ 64.244894] tcp_sendpage_locked+0x63/0xa0 [ 64.249122] tcp_sendpage+0x37/0x50 [ 64.252731] inet_sendpage+0x122/0x600 [ 64.256617] ? kernel_sendpage+0xd0/0xd0 [ 64.260662] kernel_sendpage+0x60/0xd0 [ 64.264543] ? lock_downgrade+0x860/0x860 [ 64.268682] ? pipe_lock+0x4f/0x60 [ 64.272316] sock_sendpage+0x6d/0xd0 [ 64.276018] pipe_to_sendpage+0x212/0x430 [ 64.280151] ? generic_pipe_buf_nosteal+0x10/0x10 [ 64.284983] __splice_from_pipe+0x2cb/0x720 [ 64.289287] ? generic_pipe_buf_nosteal+0x10/0x10 [ 64.294125] ? generic_pipe_buf_nosteal+0x10/0x10 [ 64.298949] splice_from_pipe+0xbb/0x120 [ 64.302989] ? splice_shrink_spd+0xa0/0xa0 [ 64.307212] ? rw_verify_area+0xb8/0x2b0 [ 64.311255] generic_splice_sendpage+0x10/0x20 [ 64.315817] do_splice+0x4fd/0x12d0 [ 64.319440] ? ksys_dup3+0x2e0/0x2e0 [ 64.323137] ? opipe_prep.part.13+0x320/0x320 [ 64.327610] ? __fget_light+0x174/0x1e0 [ 64.331581] __x64_sys_splice+0x248/0x300 [ 64.335771] do_syscall_64+0xd0/0x4e0 [ 64.339574] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 64.344745] RIP: 0033:0x459519 [ 64.347920] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 64.366813] RSP: 002b:00007fd17fed7c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 64.374523] RAX: ffffffffffffffda RBX: 00007fd17fed7c90 RCX: 0000000000459519 [ 64.381773] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 64.389022] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 64.396272] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd17fed86d4 [ 64.403526] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 64.410793] CPU: 0 PID: 7217 Comm: syz-executor.3 Not tainted 4.19.112-syzkaller #0 [ 64.418590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 64.427939] Call Trace: [ 64.430516] dump_stack+0x123/0x177 [ 64.434127] should_fail.cold.4+0x5/0x13 [ 64.438184] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 64.443531] ? lock_downgrade+0x860/0x860 [ 64.447662] __should_failslab+0xba/0xf0 [ 64.451703] should_failslab+0x9/0x14 [ 64.455506] kmem_cache_alloc_node_trace+0x26d/0x730 [ 64.460664] __kmalloc_node_track_caller+0x3c/0x70 [ 64.465594] __kmalloc_reserve.isra.39+0x2c/0xc0 [ 64.470352] __alloc_skb+0xd7/0x580 [ 64.473973] ? skb_scrub_packet+0x3c0/0x3c0 [ 64.478278] ? _raw_spin_lock_bh+0x20/0x40 [ 64.482497] ? finish_task_switch+0x14a/0x720 [ 64.486975] ? finish_task_switch+0x11c/0x720 [ 64.491460] sk_stream_alloc_skb+0x9e/0x810 [ 64.495851] ? tcp_send_mss+0x1d/0x220 [ 64.499719] do_tcp_sendpages+0x772/0x1e10 [ 64.503945] ? __lock_is_held+0xb5/0x140 [ 64.507990] ? sk_stream_alloc_skb+0x810/0x810 [ 64.512555] ? __local_bh_enable_ip+0x160/0x260 [ 64.517204] ? lock_sock_nested+0xc5/0x100 [ 64.521418] ? lockdep_hardirqs_on+0x421/0x5c0 [ 64.525981] ? __local_bh_enable_ip+0x160/0x260 [ 64.530635] ? kasan_check_read+0x11/0x20 [ 64.534778] tcp_sendpage_locked+0x63/0xa0 [ 64.538991] tcp_sendpage+0x37/0x50 [ 64.542598] inet_sendpage+0x122/0x600 [ 64.546484] ? kernel_sendpage+0xd0/0xd0 [ 64.550524] kernel_sendpage+0x60/0xd0 [ 64.554388] ? lock_downgrade+0x860/0x860 [ 64.558515] ? pipe_lock+0x4f/0x60 [ 64.562032] sock_sendpage+0x6d/0xd0 [ 64.565727] pipe_to_sendpage+0x212/0x430 [ 64.569856] ? generic_pipe_buf_nosteal+0x10/0x10 [ 64.574684] __splice_from_pipe+0x2cb/0x720 [ 64.578986] ? generic_pipe_buf_nosteal+0x10/0x10 [ 64.583809] ? generic_pipe_buf_nosteal+0x10/0x10 [ 64.588633] splice_from_pipe+0xbb/0x120 [ 64.592673] ? splice_shrink_spd+0xa0/0xa0 [ 64.596902] ? rw_verify_area+0xb8/0x2b0 [ 64.600963] generic_splice_sendpage+0x10/0x20 [ 64.605552] do_splice+0x4fd/0x12d0 [ 64.609392] ? ksys_dup3+0x2e0/0x2e0 [ 64.613095] ? opipe_prep.part.13+0x320/0x320 [ 64.617577] ? __fget_light+0x174/0x1e0 [ 64.621552] __x64_sys_splice+0x248/0x300 [ 64.625688] do_syscall_64+0xd0/0x4e0 [ 64.629486] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 64.634660] RIP: 0033:0x459519 [ 64.637849] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 64.656919] RSP: 002b:00007eff87d79c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 64.664608] RAX: ffffffffffffffda RBX: 00007eff87d79c90 RCX: 0000000000459519 [ 64.671869] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 64.679118] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 64.686366] R10: 0000000000000000 R11: 0000000000000246 R12: 00007eff87d7a6d4 [ 64.693613] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 64.703477] FAULT_INJECTION: forcing a failure. [ 64.703477] name failslab, interval 1, probability 0, space 0, times 0 [ 64.715013] FAULT_INJECTION: forcing a failure. [ 64.715013] name failslab, interval 1, probability 0, space 0, times 0 [ 64.715676] CPU: 0 PID: 7220 Comm: syz-executor.4 Not tainted 4.19.112-syzkaller #0 [ 64.734006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 64.743370] Call Trace: [ 64.745961] dump_stack+0x123/0x177 [ 64.749575] should_fail.cold.4+0x5/0x13 [ 64.753626] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 64.758712] ? lock_downgrade+0x860/0x860 [ 64.762847] __should_failslab+0xba/0xf0 [ 64.766906] should_failslab+0x9/0x14 [ 64.770685] kmem_cache_alloc_node_trace+0x26d/0x730 [ 64.775775] __kmalloc_node_track_caller+0x3c/0x70 [ 64.780687] __kmalloc_reserve.isra.39+0x2c/0xc0 [ 64.787333] __alloc_skb+0xd7/0x580 [ 64.790942] ? skb_scrub_packet+0x3c0/0x3c0 [ 64.795240] ? _raw_spin_lock_bh+0x20/0x40 [ 64.799455] ? finish_task_switch+0x14a/0x720 [ 64.803952] ? finish_task_switch+0x11c/0x720 [ 64.808428] sk_stream_alloc_skb+0x9e/0x810 [ 64.812728] ? tcp_send_mss+0x1d/0x220 [ 64.816611] do_tcp_sendpages+0x772/0x1e10 [ 64.820825] ? __lock_is_held+0xb5/0x140 [ 64.824869] ? sk_stream_alloc_skb+0x810/0x810 [ 64.829430] ? __local_bh_enable_ip+0x160/0x260 [ 64.834078] ? lock_sock_nested+0xc5/0x100 [ 64.838291] ? lockdep_hardirqs_on+0x421/0x5c0 [ 64.842853] ? __local_bh_enable_ip+0x160/0x260 [ 64.847519] ? kasan_check_read+0x11/0x20 [ 64.851648] tcp_sendpage_locked+0x63/0xa0 [ 64.856022] tcp_sendpage+0x37/0x50 [ 64.859667] inet_sendpage+0x122/0x600 [ 64.863543] ? kernel_sendpage+0xd0/0xd0 [ 64.867588] kernel_sendpage+0x60/0xd0 [ 64.871463] ? lock_downgrade+0x860/0x860 [ 64.875595] ? pipe_lock+0x4f/0x60 [ 64.879120] sock_sendpage+0x6d/0xd0 [ 64.882819] pipe_to_sendpage+0x212/0x430 [ 64.886950] ? generic_pipe_buf_nosteal+0x10/0x10 [ 64.891779] __splice_from_pipe+0x2cb/0x720 [ 64.896082] ? generic_pipe_buf_nosteal+0x10/0x10 [ 64.900929] ? generic_pipe_buf_nosteal+0x10/0x10 [ 64.905757] splice_from_pipe+0xbb/0x120 [ 64.909796] ? splice_shrink_spd+0xa0/0xa0 [ 64.914012] ? rw_verify_area+0xb8/0x2b0 [ 64.918051] generic_splice_sendpage+0x10/0x20 [ 64.922656] do_splice+0x4fd/0x12d0 [ 64.926265] ? ksys_dup3+0x2e0/0x2e0 [ 64.929992] ? opipe_prep.part.13+0x320/0x320 [ 64.934483] ? __fget_light+0x174/0x1e0 [ 64.938467] __x64_sys_splice+0x248/0x300 [ 64.942629] do_syscall_64+0xd0/0x4e0 [ 64.946416] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 64.951586] RIP: 0033:0x459519 [ 64.954763] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 64.973652] RSP: 002b:00007f090747fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 64.981343] RAX: ffffffffffffffda RBX: 00007f090747fc90 RCX: 0000000000459519 [ 64.988591] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 64.995841] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 65.003092] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f09074806d4 [ 65.011402] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 65.019841] FAULT_INJECTION: forcing a failure. [ 65.019841] name failslab, interval 1, probability 0, space 0, times 0 [ 65.032669] CPU: 0 PID: 7219 Comm: syz-executor.5 Not tainted 4.19.112-syzkaller #0 [ 65.040486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 65.049831] Call Trace: [ 65.052452] dump_stack+0x123/0x177 [ 65.056087] should_fail.cold.4+0x5/0x13 [ 65.060170] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 65.065277] ? lock_downgrade+0x860/0x860 [ 65.069432] __should_failslab+0xba/0xf0 [ 65.073504] should_failslab+0x9/0x14 [ 65.077312] kmem_cache_alloc_node_trace+0x26d/0x730 [ 65.082407] __kmalloc_node_track_caller+0x3c/0x70 [ 65.087328] __kmalloc_reserve.isra.39+0x2c/0xc0 [ 65.092079] __alloc_skb+0xd7/0x580 [ 65.095686] ? skb_scrub_packet+0x3c0/0x3c0 [ 65.100019] ? _raw_spin_lock_bh+0x20/0x40 [ 65.104327] ? finish_task_switch+0x14a/0x720 [ 65.108799] ? finish_task_switch+0x11c/0x720 [ 65.113275] sk_stream_alloc_skb+0x9e/0x810 [ 65.117593] ? tcp_send_mss+0x1d/0x220 [ 65.121462] do_tcp_sendpages+0x772/0x1e10 [ 65.125811] ? __lock_is_held+0xb5/0x140 [ 65.129864] ? sk_stream_alloc_skb+0x810/0x810 [ 65.134563] ? __local_bh_enable_ip+0x160/0x260 [ 65.139217] ? lock_sock_nested+0xc5/0x100 [ 65.143458] ? lockdep_hardirqs_on+0x421/0x5c0 [ 65.148042] ? __local_bh_enable_ip+0x160/0x260 [ 65.152699] ? kasan_check_read+0x11/0x20 [ 65.156840] tcp_sendpage_locked+0x63/0xa0 [ 65.161074] tcp_sendpage+0x37/0x50 [ 65.164693] inet_sendpage+0x122/0x600 [ 65.168578] ? kernel_sendpage+0xd0/0xd0 [ 65.172635] kernel_sendpage+0x60/0xd0 [ 65.176507] ? lock_downgrade+0x860/0x860 [ 65.180638] ? pipe_lock+0x4f/0x60 [ 65.184168] sock_sendpage+0x6d/0xd0 [ 65.187867] pipe_to_sendpage+0x212/0x430 [ 65.191997] ? generic_pipe_buf_nosteal+0x10/0x10 [ 65.196823] __splice_from_pipe+0x2cb/0x720 [ 65.201126] ? generic_pipe_buf_nosteal+0x10/0x10 [ 65.205965] ? generic_pipe_buf_nosteal+0x10/0x10 [ 65.210786] splice_from_pipe+0xbb/0x120 [ 65.214830] ? splice_shrink_spd+0xa0/0xa0 [ 65.219067] ? rw_verify_area+0xb8/0x2b0 [ 65.223119] generic_splice_sendpage+0x10/0x20 [ 65.227698] do_splice+0x4fd/0x12d0 [ 65.231325] ? ksys_dup3+0x2e0/0x2e0 [ 65.235034] ? opipe_prep.part.13+0x320/0x320 [ 65.239625] ? __fget_light+0x174/0x1e0 [ 65.243584] __x64_sys_splice+0x248/0x300 [ 65.247815] do_syscall_64+0xd0/0x4e0 [ 65.251601] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 65.256793] RIP: 0033:0x459519 [ 65.259985] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 65.278870] RSP: 002b:00007f44baaaec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 65.286558] RAX: ffffffffffffffda RBX: 00007f44baaaec90 RCX: 0000000000459519 [ 65.293809] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 65.301146] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 65.308395] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f44baaaf6d4 [ 65.315646] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 65.324094] CPU: 1 PID: 7216 Comm: syz-executor.1 Not tainted 4.19.112-syzkaller #0 [ 65.331912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 65.341257] Call Trace: [ 65.343836] dump_stack+0x123/0x177 [ 65.347449] should_fail.cold.4+0x5/0x13 [ 65.351496] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 65.356581] ? lock_downgrade+0x860/0x860 [ 65.360740] __should_failslab+0xba/0xf0 [ 65.364787] should_failslab+0x9/0x14 [ 65.368568] kmem_cache_alloc_node_trace+0x26d/0x730 [ 65.373664] __kmalloc_node_track_caller+0x3c/0x70 [ 65.378575] __kmalloc_reserve.isra.39+0x2c/0xc0 [ 65.383313] __alloc_skb+0xd7/0x580 [ 65.386920] ? skb_scrub_packet+0x3c0/0x3c0 [ 65.391222] ? _raw_spin_lock_bh+0x20/0x40 [ 65.395508] ? finish_task_switch+0x14a/0x720 [ 65.400009] ? finish_task_switch+0x11c/0x720 [ 65.404499] sk_stream_alloc_skb+0x9e/0x810 [ 65.408818] ? tcp_send_mss+0x1d/0x220 [ 65.412709] do_tcp_sendpages+0x772/0x1e10 [ 65.416933] ? __lock_is_held+0xb5/0x140 [ 65.420987] ? sk_stream_alloc_skb+0x810/0x810 [ 65.425569] ? __local_bh_enable_ip+0x160/0x260 [ 65.430315] ? lock_sock_nested+0xc5/0x100 [ 65.434539] ? lockdep_hardirqs_on+0x421/0x5c0 [ 65.439116] ? __local_bh_enable_ip+0x160/0x260 [ 65.443768] ? kasan_check_read+0x11/0x20 [ 65.447900] tcp_sendpage_locked+0x63/0xa0 [ 65.452119] tcp_sendpage+0x37/0x50 [ 65.455731] inet_sendpage+0x122/0x600 [ 65.459599] ? kernel_sendpage+0xd0/0xd0 [ 65.463761] kernel_sendpage+0x60/0xd0 [ 65.467635] ? lock_downgrade+0x860/0x860 [ 65.471765] ? pipe_lock+0x4f/0x60 [ 65.475328] sock_sendpage+0x6d/0xd0 [ 65.479032] pipe_to_sendpage+0x212/0x430 [ 65.483178] ? generic_pipe_buf_nosteal+0x10/0x10 [ 65.488009] __splice_from_pipe+0x2cb/0x720 [ 65.492321] ? generic_pipe_buf_nosteal+0x10/0x10 [ 65.497169] ? generic_pipe_buf_nosteal+0x10/0x10 [ 65.502011] splice_from_pipe+0xbb/0x120 [ 65.506053] ? splice_shrink_spd+0xa0/0xa0 [ 65.510286] ? rw_verify_area+0xb8/0x2b0 [ 65.514330] generic_splice_sendpage+0x10/0x20 [ 65.518889] do_splice+0x4fd/0x12d0 [ 65.522511] ? ksys_dup3+0x2e0/0x2e0 [ 65.526206] ? opipe_prep.part.13+0x320/0x320 [ 65.530824] ? __fget_light+0x174/0x1e0 [ 65.534803] __x64_sys_splice+0x248/0x300 [ 65.538940] do_syscall_64+0xd0/0x4e0 [ 65.542728] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 65.547906] RIP: 0033:0x459519 [ 65.551099] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 65.569981] RSP: 002b:00007f92ce6ebc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 65.577690] RAX: ffffffffffffffda RBX: 00007f92ce6ebc90 RCX: 0000000000459519 [ 65.584943] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 65.592193] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 65.599500] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f92ce6ec6d4 [ 65.606752] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 65.621120] CPU: 0 PID: 7218 Comm: syz-executor.0 Not tainted 4.19.112-syzkaller #0 [ 65.628951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 65.638327] Call Trace: [ 65.640913] dump_stack+0x123/0x177 [ 65.644539] should_fail.cold.4+0x5/0x13 [ 65.648590] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 65.653687] ? lock_downgrade+0x860/0x860 [ 65.657839] __should_failslab+0xba/0xf0 [ 65.661901] should_failslab+0x9/0x14 [ 65.665822] kmem_cache_alloc_node_trace+0x26d/0x730 [ 65.670929] __kmalloc_node_track_caller+0x3c/0x70 [ 65.675859] __kmalloc_reserve.isra.39+0x2c/0xc0 [ 65.680613] __alloc_skb+0xd7/0x580 [ 65.684236] ? skb_scrub_packet+0x3c0/0x3c0 [ 65.688557] ? kasan_check_write+0x14/0x20 [ 65.692785] ? finish_task_switch+0x4c8/0x720 [ 65.697285] sk_stream_alloc_skb+0x9e/0x810 [ 65.701618] ? tcp_send_mss+0x1d/0x220 [ 65.705507] do_tcp_sendpages+0x772/0x1e10 [ 65.709749] ? __lock_is_held+0xb5/0x140 [ 65.713818] ? sk_stream_alloc_skb+0x810/0x810 [ 65.718487] ? __local_bh_enable_ip+0x160/0x260 [ 65.723145] ? lock_sock_nested+0xc5/0x100 [ 65.727441] ? lockdep_hardirqs_on+0x421/0x5c0 [ 65.732011] ? __local_bh_enable_ip+0x160/0x260 [ 65.736680] ? kasan_check_read+0x11/0x20 [ 65.740822] tcp_sendpage_locked+0x63/0xa0 [ 65.745058] tcp_sendpage+0x37/0x50 [ 65.748666] inet_sendpage+0x122/0x600 [ 65.752541] ? kernel_sendpage+0xd0/0xd0 [ 65.756580] kernel_sendpage+0x60/0xd0 [ 65.760456] ? lock_downgrade+0x860/0x860 [ 65.764586] ? pipe_lock+0x4f/0x60 [ 65.768105] sock_sendpage+0x6d/0xd0 [ 65.771802] pipe_to_sendpage+0x212/0x430 [ 65.775929] ? generic_pipe_buf_nosteal+0x10/0x10 [ 65.780753] __splice_from_pipe+0x2cb/0x720 [ 65.785054] ? generic_pipe_buf_nosteal+0x10/0x10 [ 65.789894] ? generic_pipe_buf_nosteal+0x10/0x10 [ 65.794730] splice_from_pipe+0xbb/0x120 [ 65.798774] ? splice_shrink_spd+0xa0/0xa0 [ 65.802996] ? rw_verify_area+0xb8/0x2b0 [ 65.807049] generic_splice_sendpage+0x10/0x20 [ 65.811616] do_splice+0x4fd/0x12d0 [ 65.815227] ? ksys_dup3+0x2e0/0x2e0 [ 65.818923] ? opipe_prep.part.13+0x320/0x320 [ 65.823414] ? __fget_light+0x174/0x1e0 [ 65.827369] __x64_sys_splice+0x248/0x300 [ 65.831502] do_syscall_64+0xd0/0x4e0 [ 65.835307] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 65.840478] RIP: 0033:0x459519 [ 65.843650] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 65.863067] RSP: 002b:00007f55208b8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 65.870769] RAX: ffffffffffffffda RBX: 00007f55208b8c90 RCX: 0000000000459519 [ 65.878017] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 65.885278] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 65.892532] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f55208b96d4 [ 65.899782] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 65.922977] FAULT_INJECTION: forcing a failure. [ 65.922977] name failslab, interval 1, probability 0, space 0, times 0 [ 65.932863] FAULT_INJECTION: forcing a failure. [ 65.932863] name failslab, interval 1, probability 0, space 0, times 0 [ 65.934923] FAULT_INJECTION: forcing a failure. [ 65.934923] name failslab, interval 1, probability 0, space 0, times 0 [ 65.947598] CPU: 1 PID: 7234 Comm: syz-executor.5 Not tainted 4.19.112-syzkaller #0 [ 65.960581] FAULT_INJECTION: forcing a failure. [ 65.960581] name failslab, interval 1, probability 0, space 0, times 0 [ 65.964471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 65.964474] Call Trace: [ 65.964485] dump_stack+0x123/0x177 [ 65.964496] should_fail.cold.4+0x5/0x13 [ 65.964505] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 66.000434] ? lock_downgrade+0x860/0x860 [ 66.004574] __should_failslab+0xba/0xf0 [ 66.008629] should_failslab+0x9/0x14 [ 66.012414] __kmalloc+0x2dd/0x770 [ 66.015963] ? tls_push_record+0xf3/0x1720 [ 66.020183] ? __sk_mem_schedule+0x5f/0xc0 [ 66.024405] tls_push_record+0xf3/0x1720 [ 66.028462] ? lockdep_hardirqs_on+0x421/0x5c0 [ 66.033028] ? alloc_encrypted_sg+0x81/0x100 [ 66.037417] tls_sw_sendpage+0x458/0xc00 [ 66.041467] ? tls_sw_sendmsg+0x1020/0x1020 [ 66.045772] ? pipe_lock+0x4f/0x60 [ 66.049296] inet_sendpage+0x122/0x600 [ 66.053167] ? kernel_sendpage+0xd0/0xd0 [ 66.057206] kernel_sendpage+0x60/0xd0 [ 66.061096] ? lock_downgrade+0x860/0x860 [ 66.065226] ? pipe_lock+0x4f/0x60 [ 66.068748] sock_sendpage+0x6d/0xd0 [ 66.072446] pipe_to_sendpage+0x212/0x430 [ 66.076574] ? generic_pipe_buf_nosteal+0x10/0x10 [ 66.081407] __splice_from_pipe+0x2cb/0x720 [ 66.085710] ? generic_pipe_buf_nosteal+0x10/0x10 [ 66.090533] ? generic_pipe_buf_nosteal+0x10/0x10 [ 66.095363] splice_from_pipe+0xbb/0x120 [ 66.099405] ? splice_shrink_spd+0xa0/0xa0 [ 66.103621] ? rw_verify_area+0xb8/0x2b0 [ 66.107664] generic_splice_sendpage+0x10/0x20 [ 66.112225] do_splice+0x4fd/0x12d0 [ 66.115834] ? ksys_dup3+0x2e0/0x2e0 [ 66.119970] ? opipe_prep.part.13+0x320/0x320 [ 66.124448] ? __fget_light+0x174/0x1e0 [ 66.128404] __x64_sys_splice+0x248/0x300 [ 66.132536] do_syscall_64+0xd0/0x4e0 [ 66.136435] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 66.141618] RIP: 0033:0x459519 [ 66.144795] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 66.163691] RSP: 002b:00007f44baaaec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 66.171399] RAX: ffffffffffffffda RBX: 00007f44baaaec90 RCX: 0000000000459519 [ 66.178676] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 66.185939] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 2020/03/25 04:32:45 executed programs: 50 [ 66.193202] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f44baaaf6d4 [ 66.200466] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 66.208980] CPU: 1 PID: 7230 Comm: syz-executor.3 Not tainted 4.19.112-syzkaller #0 [ 66.216792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 66.226163] Call Trace: [ 66.228747] dump_stack+0x123/0x177 [ 66.232363] should_fail.cold.4+0x5/0x13 [ 66.236431] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 66.241678] ? lock_downgrade+0x860/0x860 [ 66.245829] __should_failslab+0xba/0xf0 [ 66.249877] should_failslab+0x9/0x14 [ 66.253671] kmem_cache_alloc_node_trace+0x26d/0x730 [ 66.258768] __kmalloc_node_track_caller+0x3c/0x70 [ 66.263688] __kmalloc_reserve.isra.39+0x2c/0xc0 [ 66.268433] __alloc_skb+0xd7/0x580 [ 66.272053] ? skb_scrub_packet+0x3c0/0x3c0 [ 66.276382] ? _raw_spin_lock_bh+0x20/0x40 [ 66.280601] ? finish_task_switch+0x14a/0x720 [ 66.285098] ? finish_task_switch+0x11c/0x720 [ 66.289582] sk_stream_alloc_skb+0x9e/0x810 [ 66.293905] ? tcp_send_mss+0x1d/0x220 [ 66.297777] do_tcp_sendpages+0x772/0x1e10 [ 66.301995] ? __lock_is_held+0xb5/0x140 [ 66.306050] ? sk_stream_alloc_skb+0x810/0x810 [ 66.310616] ? __local_bh_enable_ip+0x160/0x260 [ 66.315288] ? lock_sock_nested+0xc5/0x100 [ 66.319513] ? lockdep_hardirqs_on+0x421/0x5c0 [ 66.324074] ? __local_bh_enable_ip+0x160/0x260 [ 66.328728] ? kasan_check_read+0x11/0x20 [ 66.332862] tcp_sendpage_locked+0x63/0xa0 [ 66.337086] tcp_sendpage+0x37/0x50 [ 66.340699] inet_sendpage+0x122/0x600 [ 66.344577] ? kernel_sendpage+0xd0/0xd0 [ 66.348618] kernel_sendpage+0x60/0xd0 [ 66.352507] ? lock_downgrade+0x860/0x860 [ 66.356642] ? pipe_lock+0x4f/0x60 [ 66.360175] sock_sendpage+0x6d/0xd0 [ 66.363884] pipe_to_sendpage+0x212/0x430 [ 66.368021] ? generic_pipe_buf_nosteal+0x10/0x10 [ 66.372850] __splice_from_pipe+0x2cb/0x720 [ 66.377157] ? generic_pipe_buf_nosteal+0x10/0x10 [ 66.381989] ? generic_pipe_buf_nosteal+0x10/0x10 [ 66.386827] splice_from_pipe+0xbb/0x120 [ 66.390905] ? splice_shrink_spd+0xa0/0xa0 [ 66.395182] ? rw_verify_area+0xb8/0x2b0 [ 66.399248] generic_splice_sendpage+0x10/0x20 [ 66.403823] do_splice+0x4fd/0x12d0 [ 66.407441] ? ksys_dup3+0x2e0/0x2e0 [ 66.411144] ? opipe_prep.part.13+0x320/0x320 [ 66.415658] ? __fget_light+0x174/0x1e0 [ 66.419635] __x64_sys_splice+0x248/0x300 [ 66.423771] do_syscall_64+0xd0/0x4e0 [ 66.427597] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 66.432772] RIP: 0033:0x459519 [ 66.435961] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 66.454854] RSP: 002b:00007eff87d79c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 66.462568] RAX: ffffffffffffffda RBX: 00007eff87d79c90 RCX: 0000000000459519 [ 66.469909] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 66.477186] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 66.484559] R10: 0000000000000000 R11: 0000000000000246 R12: 00007eff87d7a6d4 [ 66.491967] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 66.499694] CPU: 0 PID: 7238 Comm: syz-executor.4 Not tainted 4.19.112-syzkaller #0 [ 66.507502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 66.516850] Call Trace: [ 66.519434] dump_stack+0x123/0x177 [ 66.523069] should_fail.cold.4+0x5/0x13 [ 66.527123] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 66.532215] ? lock_downgrade+0x860/0x860 [ 66.536393] __should_failslab+0xba/0xf0 [ 66.540468] should_failslab+0x9/0x14 [ 66.544255] __kmalloc+0x2dd/0x770 [ 66.547797] ? tls_push_record+0xf3/0x1720 [ 66.552027] ? __sk_mem_schedule+0x5f/0xc0 [ 66.556260] tls_push_record+0xf3/0x1720 [ 66.560315] ? lockdep_hardirqs_on+0x421/0x5c0 [ 66.565061] ? alloc_encrypted_sg+0x81/0x100 [ 66.569495] tls_sw_sendpage+0x458/0xc00 [ 66.573550] ? tls_sw_sendmsg+0x1020/0x1020 [ 66.577863] ? pipe_lock+0x4f/0x60 [ 66.581404] inet_sendpage+0x122/0x600 [ 66.585290] ? kernel_sendpage+0xd0/0xd0 [ 66.589350] kernel_sendpage+0x60/0xd0 [ 66.593249] ? lock_downgrade+0x860/0x860 [ 66.597490] ? pipe_lock+0x4f/0x60 [ 66.601036] sock_sendpage+0x6d/0xd0 [ 66.604751] pipe_to_sendpage+0x212/0x430 [ 66.608893] ? generic_pipe_buf_nosteal+0x10/0x10 [ 66.613735] __splice_from_pipe+0x2cb/0x720 [ 66.618055] ? generic_pipe_buf_nosteal+0x10/0x10 [ 66.622936] ? generic_pipe_buf_nosteal+0x10/0x10 [ 66.627846] splice_from_pipe+0xbb/0x120 [ 66.631996] ? splice_shrink_spd+0xa0/0xa0 [ 66.636361] ? rw_verify_area+0xb8/0x2b0 [ 66.640408] generic_splice_sendpage+0x10/0x20 [ 66.645343] do_splice+0x4fd/0x12d0 [ 66.648952] ? ksys_dup3+0x2e0/0x2e0 [ 66.652677] ? opipe_prep.part.13+0x320/0x320 [ 66.657529] ? __fget_light+0x174/0x1e0 [ 66.661576] __x64_sys_splice+0x248/0x300 [ 66.665738] do_syscall_64+0xd0/0x4e0 [ 66.669652] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 66.674849] RIP: 0033:0x459519 [ 66.678030] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 66.696930] RSP: 002b:00007f09074a0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 66.704732] RAX: ffffffffffffffda RBX: 00007f09074a0c90 RCX: 0000000000459519 [ 66.711989] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 66.719274] RBP: 000000000075bf20 R08: 0000000100000300 R09: 0000000000000000 [ 66.726807] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f09074a16d4 [ 66.734070] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 66.743536] kasan: CONFIG_KASAN_INLINE enabled [ 66.748298] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 66.750125] CPU: 1 PID: 7236 Comm: syz-executor.1 Not tainted 4.19.112-syzkaller #0 [ 66.755701] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 66.763456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 66.763462] Call Trace: [ 66.769677] CPU: 0 PID: 7234 Comm: syz-executor.5 Not tainted 4.19.112-syzkaller #0 [ 66.779024] dump_stack+0x123/0x177 [ 66.781590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 66.781602] RIP: 0010:gcmaes_crypt_by_sg.constprop.16+0xf8b/0x14c0 [ 66.789392] should_fail.cold.4+0x5/0x13 [ 66.792997] Code: 85 c9 89 84 24 90 00 00 00 0f 85 de f7 ff ff e9 3d f8 ff ff 4c 89 e7 e8 a3 73 bf 01 48 8d 78 08 49 89 c4 48 89 f8 48 c1 e8 03 <42> 0f b6 04 30 84 c0 74 08 3c 03 0f 8e fb 04 00 00 41 8b 44 24 08 [ 66.802353] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 66.808643] RSP: 0018:ffff88808a9772f0 EFLAGS: 00010202 [ 66.812700] ? lock_downgrade+0x860/0x860 [ 66.831579] RAX: 0000000000000001 RBX: 0000000000000034 RCX: 0000000000000007 [ 66.836661] __should_failslab+0xba/0xf0 [ 66.841994] RDX: 1ffff110143084a4 RSI: ffff8880a184252c RDI: 0000000000000008 [ 66.846116] should_failslab+0x9/0x14 [ 66.853477] RBP: ffff88808a977620 R08: 0000000000000007 R09: 000000000000000d [ 66.857566] __kmalloc+0x2dd/0x770 [ 66.864837] R10: ffff8880804b9020 R11: 0000000000000010 R12: 0000000000000000 [ 66.864842] R13: ffff8880a1842318 R14: dffffc0000000000 R15: 0000000000000007 [ 66.868640] ? tls_push_record+0xf3/0x1720 [ 66.875881] FS: 00007f44baaaf700(0000) GS:ffff8880aea00000(0000) knlGS:0000000000000000 [ 66.879401] ? __sk_mem_schedule+0x5f/0xc0 [ 66.886821] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 66.894075] tls_push_record+0xf3/0x1720 [ 66.898282] CR2: 00007fad0dcd1ea0 CR3: 000000008b1b7000 CR4: 00000000001406f0 [ 66.906519] ? lockdep_hardirqs_on+0x421/0x5c0 [ 66.910735] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 66.916611] ? alloc_encrypted_sg+0x81/0x100 [ 66.920648] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 66.928011] tls_sw_sendpage+0x458/0xc00 [ 66.932587] Call Trace: [ 66.939855] ? tls_sw_sendmsg+0x1020/0x1020 [ 66.944243] ? aesni_gcm_enc_avx2+0x130/0x130 [ 66.951491] ? pipe_lock+0x4f/0x60 [ 66.955530] ? mark_held_locks+0x130/0x130 [ 66.958094] inet_sendpage+0x122/0x600 [ 66.962389] ? find_held_lock+0x36/0x1d0 [ 66.966858] ? kernel_sendpage+0xd0/0xd0 [ 66.970373] ? is_bpf_text_address+0x60/0xe0 [ 66.974578] kernel_sendpage+0x60/0xd0 [ 66.978449] ? trace_hardirqs_on+0x28/0x190 [ 66.982605] ? lock_downgrade+0x860/0x860 [ 66.986655] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 66.991054] ? pipe_lock+0x4f/0x60 [ 66.994943] ? depot_save_stack+0x292/0x466 [ 66.999255] sock_sendpage+0x6d/0xd0 [ 67.003558] gcmaes_encrypt.constprop.15+0x59f/0xda0 [ 67.008650] pipe_to_sendpage+0x212/0x430 [ 67.012185] ? tls_push_record+0xf3/0x1720 [ 67.016615] ? generic_pipe_buf_nosteal+0x10/0x10 [ 67.020318] ? tls_sw_sendpage+0x458/0xc00 [ 67.025410] __splice_from_pipe+0x2cb/0x720 [ 67.029545] ? inet_sendpage+0x122/0x600 [ 67.033759] ? generic_pipe_buf_nosteal+0x10/0x10 [ 67.038599] ? kernel_sendpage+0x60/0xd0 [ 67.042818] ? generic_pipe_buf_nosteal+0x10/0x10 [ 67.047115] ? sock_sendpage+0x6d/0xd0 [ 67.051170] splice_from_pipe+0xbb/0x120 [ 67.055986] ? pipe_to_sendpage+0x212/0x430 [ 67.060033] ? splice_shrink_spd+0xa0/0xa0 [ 67.064859] ? __splice_from_pipe+0x2cb/0x720 [ 67.068726] ? rw_verify_area+0xb8/0x2b0 [ 67.072772] ? splice_from_pipe+0xbb/0x120 [ 67.077079] generic_splice_sendpage+0x10/0x20 [ 67.081289] ? generic_splice_sendpage+0x10/0x20 [ 67.085762] do_splice+0x4fd/0x12d0 [ 67.089824] ? do_splice+0x4fd/0x12d0 [ 67.094051] ? ksys_dup3+0x2e0/0x2e0 [ 67.098641] ? __x64_sys_splice+0x248/0x300 [ 67.098648] ? gcmaes_crypt_by_sg.constprop.16+0x14c0/0x14c0 [ 67.103394] ? opipe_prep.part.13+0x320/0x320 [ 67.106999] ? usleep_range+0x130/0x130 [ 67.110802] ? __fget_light+0x174/0x1e0 [ 67.114512] ? __lock_is_held+0xb5/0x140 [ 67.118805] __x64_sys_splice+0x248/0x300 [ 67.124579] generic_gcmaes_encrypt+0xfd/0x150 [ 67.129048] do_syscall_64+0xd0/0x4e0 [ 67.132996] ? generic_gcmaes_encrypt+0xfd/0x150 [ 67.136950] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 67.140982] ? helper_rfc4106_encrypt+0x450/0x450 [ 67.145105] RIP: 0033:0x459519 [ 67.149665] ? __kmalloc+0x5f1/0x770 [ 67.153439] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 67.158170] gcmaes_wrapper_encrypt+0x109/0x180 [ 67.163333] RSP: 002b:00007f92ce70cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 67.168154] tls_push_record+0x966/0x1720 [ 67.171319] RAX: ffffffffffffffda RBX: 00007f92ce70cc90 RCX: 0000000000459519 [ 67.171322] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 67.175017] ? sk_stream_kill_queues+0x510/0x510 [ 67.193901] RBP: 000000000075bf20 R08: 0000000100000300 R09: 0000000000000000 [ 67.193907] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f92ce70d6d4 [ 67.198577] tls_sw_sendpage+0x458/0xc00 [ 67.206280] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 67.210426] ? tls_sw_sendmsg+0x1020/0x1020 [ 67.224909] FAULT_INJECTION: forcing a failure. [ 67.224909] name failslab, interval 1, probability 0, space 0, times 0 [ 67.225114] ? pipe_lock+0x4f/0x60 [ 67.229945] CPU: 1 PID: 7227 Comm: syz-executor.2 Not tainted 4.19.112-syzkaller #0 [ 67.237118] inet_sendpage+0x122/0x600 [ 67.244382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 67.248451] ? kernel_sendpage+0xd0/0xd0 [ 67.255702] Call Trace: [ 67.260019] kernel_sendpage+0x60/0xd0 [ 67.271199] dump_stack+0x123/0x177 [ 67.274716] ? lock_downgrade+0x860/0x860 [ 67.282609] should_fail.cold.4+0x5/0x13 [ 67.286476] ? pipe_lock+0x4f/0x60 [ 67.295811] ? fault_create_debugfs_attr+0x1a0/0x1a0 [ 67.299848] sock_sendpage+0x6d/0xd0 [ 67.302411] ? lock_downgrade+0x860/0x860 [ 67.306273] pipe_to_sendpage+0x212/0x430 [ 67.309875] ? set_page_refcounted+0x100/0x100 [ 67.313999] ? generic_pipe_buf_nosteal+0x10/0x10 [ 67.318035] __should_failslab+0xba/0xf0 [ 67.321548] __splice_from_pipe+0x2cb/0x720 [ 67.326625] should_failslab+0x9/0x14 [ 67.330322] ? generic_pipe_buf_nosteal+0x10/0x10 [ 67.334443] kmem_cache_alloc_node_trace+0x26d/0x730 [ 67.338573] ? generic_pipe_buf_nosteal+0x10/0x10 [ 67.343129] ? kasan_kmalloc+0xc7/0xe0 [ 67.347956] splice_from_pipe+0xbb/0x120 [ 67.351993] __kmalloc_node_track_caller+0x3c/0x70 [ 67.356285] ? splice_shrink_spd+0xa0/0xa0 [ 67.360078] __kmalloc_reserve.isra.39+0x2c/0xc0 [ 67.364893] ? rw_verify_area+0xb8/0x2b0 [ 67.369982] __alloc_skb+0xd7/0x580 [ 67.374799] generic_splice_sendpage+0x10/0x20 [ 67.378661] ? skb_scrub_packet+0x3c0/0x3c0 [ 67.382694] do_splice+0x4fd/0x12d0 [ 67.387617] ? _raw_spin_lock_bh+0x20/0x40 [ 67.391830] ? ksys_dup3+0x2e0/0x2e0 [ 67.396558] ? finish_task_switch+0x14a/0x720 [ 67.400595] ? opipe_prep.part.13+0x320/0x320 [ 67.404204] ? finish_task_switch+0x11c/0x720 [ 67.408773] ? __fget_light+0x174/0x1e0 [ 67.413072] sk_stream_alloc_skb+0x9e/0x810 [ 67.416685] __x64_sys_splice+0x248/0x300 [ 67.420894] ? tcp_send_mss+0x1d/0x220 [ 67.424585] do_syscall_64+0xd0/0x4e0 [ 67.429052] do_tcp_sendpages+0x772/0x1e10 [ 67.433521] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 67.437987] ? __lock_is_held+0xb5/0x140 [ 67.441934] RIP: 0033:0x459519 [ 67.446243] ? sk_stream_alloc_skb+0x810/0x810 [ 67.450370] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 67.454237] ? __local_bh_enable_ip+0x120/0x260 [ 67.458013] RSP: 002b:00007f44baaaec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 67.462238] ? __local_bh_enable_ip+0x160/0x260 [ 67.467411] RAX: ffffffffffffffda RBX: 00007f44baaaec90 RCX: 0000000000459519 [ 67.467416] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 67.471466] ? kasan_check_read+0x11/0x20 [ 67.474629] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 67.479194] tcp_sendpage_locked+0x63/0xa0 [ 67.498073] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f44baaaf6d4 [ 67.498078] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 67.502725] tcp_sendpage+0x37/0x50 [ 67.510415] Modules linked in: [ 67.515073] inet_sendpage+0x122/0x600 [ 67.522387] ---[ end trace 5003ecb0ee9b0d84 ]--- [ 67.529597] ? kernel_sendpage+0xd0/0xd0 [ 67.533744] RIP: 0010:gcmaes_crypt_by_sg.constprop.16+0xf8b/0x14c0 [ 67.540968] kernel_sendpage+0x60/0xd0 [ 67.540973] ? lock_downgrade+0x860/0x860 [ 67.540977] ? pipe_lock+0x4f/0x60 [ 67.540982] sock_sendpage+0x6d/0xd0 [ 67.545206] Code: 85 c9 89 84 24 90 00 00 00 0f 85 de f7 ff ff e9 3d f8 ff ff 4c 89 e7 e8 a3 73 bf 01 48 8d 78 08 49 89 c4 48 89 f8 48 c1 e8 03 <42> 0f b6 04 30 84 c0 74 08 3c 03 0f 8e fb 04 00 00 41 8b 44 24 08 [ 67.552456] pipe_to_sendpage+0x212/0x430 [ 67.552461] ? generic_pipe_buf_nosteal+0x10/0x10 [ 67.552468] __splice_from_pipe+0x2cb/0x720 [ 67.552472] ? generic_pipe_buf_nosteal+0x10/0x10 [ 67.559738] RSP: 0018:ffff88808a9772f0 EFLAGS: 00010202 [ 67.563371] ? generic_pipe_buf_nosteal+0x10/0x10 [ 67.563375] splice_from_pipe+0xbb/0x120 [ 67.563380] ? splice_shrink_spd+0xa0/0xa0 [ 67.563387] ? rw_verify_area+0xb8/0x2b0 [ 67.563391] generic_splice_sendpage+0x10/0x20 [ 67.563394] do_splice+0x4fd/0x12d0 [ 67.563400] ? ksys_dup3+0x2e0/0x2e0 [ 67.563407] ? opipe_prep.part.13+0x320/0x320 [ 67.566582] RAX: 0000000000000001 RBX: 0000000000000034 RCX: 0000000000000007 [ 67.570455] ? __fget_light+0x174/0x1e0 [ 67.570460] __x64_sys_splice+0x248/0x300 [ 67.570467] do_syscall_64+0xd0/0x4e0 [ 67.570474] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 67.575206] RDX: 1ffff110143084a4 RSI: ffff8880a184252c RDI: 0000000000000008 [ 67.579247] RIP: 0033:0x459519 [ 67.585551] RBP: ffff88808a977620 R08: 0000000000000007 R09: 000000000000000d [ 67.589406] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 67.593550] R10: ffff8880804b9020 R11: 0000000000000010 R12: 0000000000000000 [ 67.597059] RSP: 002b:00007fd17fed7c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 67.600764] R13: ffff8880a1842318 R14: dffffc0000000000 R15: 0000000000000007 [ 67.619632] RAX: ffffffffffffffda RBX: 00007fd17fed7c90 RCX: 0000000000459519 [ 67.619635] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 [ 67.619637] RBP: 000000000075bfc8 R08: 0000000100000300 R09: 0000000000000000 [ 67.619639] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd17fed86d4 [ 67.619641] R13: 00000000004c8a66 R14: 00000000004deb70 R15: 0000000000000005 [ 67.669062] FAULT_INJECTION: forcing a failure. [ 67.669062] name failslab, interval 1, probability 0, space 0, times 0 [ 67.672328] FS: 00007f44baaaf700(0000) GS:ffff8880aea00000(0000) knlGS:0000000000000000 [ 67.672331] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 67.672334] CR2: 00007fad0dcd1ea0 CR3: 000000008b1b7000 CR4: 00000000001406f0 [ 67.672339] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 67.672342] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 67.672345] Kernel panic - not syncing: Fatal exception [ 67.677497] Kernel Offset: disabled [ 67.853635] Rebooting in 86400 seconds..