Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 ================================================================== BUG: KASAN: use-after-free in dccp_ackvec_runlen net/dccp/ccids/../ackvec.h:43 [inline] BUG: KASAN: use-after-free in ccid2_hc_tx_packet_recv+0x22d1/0x2630 net/dccp/ccids/ccid2.c:592 __should_fail_alloc_page mm/page_alloc.c:3616 [inline] should_fail_alloc_page+0x50/0x60 mm/page_alloc.c:3653 Read of size 1 at addr ffff88811c43d482 by task syz-executor3/6074 prepare_alloc_pages+0x18d/0x550 mm/page_alloc.c:4994 __alloc_pages+0x142/0x5a0 mm/page_alloc.c:5189 __alloc_pages_node include/linux/gfp.h:549 [inline] kmem_getpages mm/slab.c:1377 [inline] cache_grow_begin+0x81/0x3d0 mm/slab.c:2593 cache_alloc_refill+0x289/0x340 mm/slab.c:2965 ____cache_alloc mm/slab.c:3048 [inline] ____cache_alloc mm/slab.c:3031 [inline] slab_alloc_node mm/slab.c:3249 [inline] kmem_cache_alloc_node_trace+0x3f4/0x420 mm/slab.c:3617 __do_kmalloc_node mm/slab.c:3639 [inline] __kmalloc_node_track_caller+0x3d/0x70 mm/slab.c:3654 kmalloc_reserve net/core/skbuff.c:354 [inline] __alloc_skb+0xe4/0x380 net/core/skbuff.c:425 alloc_skb include/linux/skbuff.h:1107 [inline] alloc_skb_with_frags+0x93/0x590 net/core/skbuff.c:5992 sock_alloc_send_pskb+0x840/0x9f0 net/core/sock.c:2364 sock_alloc_send_skb+0x32/0x40 net/core/sock.c:2381 dccp_sendmsg+0x2a1/0xc30 net/dccp/proto.c:768 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f651a843198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007f651a8436bc R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 CPU: 0 PID: 6074 Comm: syz-executor3 Not tainted 5.13.0-rc7-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 print_address_description.constprop.0+0x1d/0x110 mm/kasan/report.c:233 __kasan_report mm/kasan/report.c:419 [inline] kasan_report.cold+0x7b/0xd4 mm/kasan/report.c:436 __asan_report_load1_noabort+0x14/0x20 mm/kasan/report_generic.c:306 dccp_ackvec_runlen net/dccp/ccids/../ackvec.h:43 [inline] ccid2_hc_tx_packet_recv+0x22d1/0x2630 net/dccp/ccids/ccid2.c:592 ccid_hc_tx_packet_recv net/dccp/ccid.h:189 [inline] dccp_deliver_input_to_ccids+0x202/0x280 net/dccp/input.c:182 dccp_rcv_established net/dccp/input.c:374 [inline] dccp_rcv_established+0x10e/0x160 net/dccp/input.c:364 dccp_v4_do_rcv+0x13c/0x190 net/dccp/ipv4.c:667 sk_backlog_rcv include/net/sock.h:1020 [inline] __release_sock+0x130/0x3b0 net/core/sock.c:2558 release_sock+0x59/0x1c0 net/core/sock.c:3082 dccp_sendmsg+0x684/0xc30 net/dccp/proto.c:796 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007ff553695198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff5536956bc R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 CPU: 1 PID: 6082 Comm: syz-executor1 Not tainted 5.13.0-rc7-syzkaller #0 Allocated by task 6074: Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 kasan_save_stack+0x23/0x50 mm/kasan/common.c:38 Call Trace: kasan_set_track mm/kasan/common.c:46 [inline] set_alloc_info mm/kasan/common.c:428 [inline] ____kasan_kmalloc mm/kasan/common.c:507 [inline] __kasan_kmalloc+0x81/0xa0 mm/kasan/common.c:516 __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 kasan_kmalloc include/linux/kasan.h:246 [inline] __do_kmalloc_node mm/slab.c:3640 [inline] __kmalloc_node_track_caller+0x4e/0x70 mm/slab.c:3654 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 kmalloc_reserve net/core/skbuff.c:354 [inline] __alloc_skb+0xe4/0x380 net/core/skbuff.c:425 __should_failslab+0xb7/0x100 mm/failslab.c:33 alloc_skb include/linux/skbuff.h:1107 [inline] dccp_send_ack.part.0+0x7b/0x2f0 net/dccp/output.c:585 should_failslab+0x9/0x20 mm/slab_common.c:1294 dccp_send_ack+0x5b/0x70 net/dccp/output.c:584 slab_pre_alloc_hook mm/slab.h:499 [inline] slab_alloc_node mm/slab.c:3222 [inline] kmem_cache_alloc_node_trace+0x6c/0x420 mm/slab.c:3617 ccid2_hc_rx_packet_recv+0x139/0x1b0 net/dccp/ccids/ccid2.c:771 __do_kmalloc_node mm/slab.c:3639 [inline] __kmalloc_node_track_caller+0x3d/0x70 mm/slab.c:3654 ccid_hc_rx_packet_recv net/dccp/ccid.h:182 [inline] dccp_deliver_input_to_ccids+0xee/0x280 net/dccp/input.c:176 kmalloc_reserve net/core/skbuff.c:354 [inline] __alloc_skb+0xe4/0x380 net/core/skbuff.c:425 dccp_rcv_established net/dccp/input.c:374 [inline] dccp_rcv_established+0x10e/0x160 net/dccp/input.c:364 alloc_skb include/linux/skbuff.h:1107 [inline] alloc_skb_with_frags+0x93/0x590 net/core/skbuff.c:5992 dccp_v4_do_rcv+0x13c/0x190 net/dccp/ipv4.c:667 sock_alloc_send_pskb+0x840/0x9f0 net/core/sock.c:2364 sk_backlog_rcv include/net/sock.h:1020 [inline] __sk_receive_skb+0x2a9/0x850 net/core/sock.c:509 dccp_v4_rcv+0xf67/0x1ac0 net/dccp/ipv4.c:890 ip_protocol_deliver_rcu+0x7ce/0xa40 net/ipv4/ip_input.c:204 ip_local_deliver_finish+0x229/0x3a0 net/ipv4/ip_input.c:231 NF_HOOK include/linux/netfilter.h:301 [inline] NF_HOOK include/linux/netfilter.h:295 [inline] ip_local_deliver+0x1ba/0x210 net/ipv4/ip_input.c:252 dst_input include/net/dst.h:458 [inline] ip_rcv_finish net/ipv4/ip_input.c:429 [inline] NF_HOOK include/linux/netfilter.h:301 [inline] NF_HOOK include/linux/netfilter.h:295 [inline] ip_rcv+0x2d0/0x5d0 net/ipv4/ip_input.c:540 __netif_receive_skb_one_core+0x1af/0x220 net/core/dev.c:5459 __netif_receive_skb+0x2c/0x1d0 net/core/dev.c:5573 sock_alloc_send_skb+0x32/0x40 net/core/sock.c:2381 process_backlog+0x3ce/0xa40 net/core/dev.c:6437 dccp_sendmsg+0x2a1/0xc30 net/dccp/proto.c:768 __napi_poll+0xcb/0x6a0 net/core/dev.c:6985 napi_poll net/core/dev.c:7052 [inline] net_rx_action+0xa42/0xf30 net/core/dev.c:7139 __do_softirq+0x1e4/0x942 kernel/softirq.c:559 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 Freed by task 6074: kasan_save_stack+0x23/0x50 mm/kasan/common.c:38 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 kasan_set_track+0x20/0x30 mm/kasan/common.c:46 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 kasan_set_free_info+0x24/0x40 mm/kasan/generic.c:357 ____kasan_slab_free mm/kasan/common.c:360 [inline] ____kasan_slab_free mm/kasan/common.c:325 [inline] __kasan_slab_free+0xca/0x110 mm/kasan/common.c:368 kasan_slab_free include/linux/kasan.h:212 [inline] __cache_free mm/slab.c:3445 [inline] kfree+0x108/0x270 mm/slab.c:3803 skb_free_head net/core/skbuff.c:651 [inline] skb_release_data+0x593/0x690 net/core/skbuff.c:672 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 skb_release_all net/core/skbuff.c:726 [inline] __kfree_skb net/core/skbuff.c:740 [inline] kfree_skb net/core/skbuff.c:758 [inline] kfree_skb+0x11e/0x370 net/core/skbuff.c:752 dccp_v4_do_rcv+0x163/0x190 net/dccp/ipv4.c:702 sk_backlog_rcv include/net/sock.h:1020 [inline] __release_sock+0x130/0x3b0 net/core/sock.c:2558 release_sock+0x59/0x1c0 net/core/sock.c:3082 dccp_sendmsg+0x684/0xc30 net/dccp/proto.c:796 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae Last potentially related work creation: kasan_save_stack+0x23/0x50 mm/kasan/common.c:38 kasan_record_aux_stack+0x76/0x80 mm/kasan/generic.c:345 __call_rcu kernel/rcu/tree.c:3038 [inline] call_rcu+0x121/0x8a0 kernel/rcu/tree.c:3113 netlink_release+0xda0/0x1ca0 net/netlink/af_netlink.c:812 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 __sock_release+0xd3/0x290 net/socket.c:599 sock_close+0x1e/0x30 net/socket.c:1245 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 __fput+0x291/0x960 fs/file_table.c:280 entry_SYSCALL_64_after_hwframe+0x44/0xae ____fput+0x16/0x20 fs/file_table.c:313 RIP: 0033:0x45d939 task_work_run+0xec/0x1b0 kernel/task_work.c:164 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 exit_task_work include/linux/task_work.h:32 [inline] do_exit+0xcbc/0x2ad0 kernel/exit.c:826 RSP: 002b:00007f195e3c1198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 do_group_exit+0x135/0x330 kernel/exit.c:923 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 __do_sys_exit_group kernel/exit.c:934 [inline] __se_sys_exit_group kernel/exit.c:932 [inline] __x64_sys_exit_group+0x44/0x50 kernel/exit.c:932 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 entry_SYSCALL_64_after_hwframe+0x44/0xae R10: 0000000000000000 R11: 0000000000000246 R12: 00007f195e3c16bc The buggy address belongs to the object at ffff88811c43d000 which belongs to the cache kmalloc-2k of size 2048 R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 The buggy address is located 1154 bytes inside of 2048-byte region [ffff88811c43d000, ffff88811c43d800) FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 The buggy address belongs to the page: page:000000008093b73b refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x11c43d flags: 0x2fffc0000000200(slab|node=0|zone=2|lastcpupid=0x3fff) raw: 02fffc0000000200 ffffea000471fec8 ffffea0004728848 ffff888100040800 raw: 0000000000000000 ffff88811c43d000 0000000100000001 0000000000000000 page dumped because: kasan: bad access detected Memory state around the buggy address: ffff88811c43d380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb ffff88811c43d400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb CPU: 1 PID: 6083 Comm: syz-executor Not tainted 5.13.0-rc7-syzkaller #0 >ffff88811c43d480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb ^ ffff88811c43d500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 ffff88811c43d580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb Call Trace: ================================================================== __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 __should_failslab+0xb7/0x100 mm/failslab.c:33 should_failslab+0x9/0x20 mm/slab_common.c:1294 slab_pre_alloc_hook mm/slab.h:499 [inline] slab_alloc mm/slab.c:3306 [inline] kmem_cache_alloc+0x5b/0x3d0 mm/slab.c:3507 dccp_ackvec_update_records+0x30/0x4e0 net/dccp/ackvec.c:55 dccp_insert_option_ackvec net/dccp/options.c:468 [inline] dccp_insert_options+0xb6d/0xe80 net/dccp/options.c:573 dccp_transmit_skb+0x1cd/0x1310 net/dccp/output.c:93 dccp_xmit_packet+0x272/0x6b0 net/dccp/output.c:281 dccp_write_xmit+0x180/0x1e0 net/dccp/output.c:366 dccp_sendmsg+0x935/0xc30 net/dccp/proto.c:794 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007fea7a54b198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007fea7a54b6bc R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 CPU: 0 PID: 6092 Comm: syz-executor4 Tainted: G B 5.13.0-rc7-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 __should_failslab+0xb7/0x100 mm/failslab.c:33 should_failslab+0x9/0x20 mm/slab_common.c:1294 slab_pre_alloc_hook mm/slab.h:499 [inline] slab_alloc_node mm/slab.c:3222 [inline] kmem_cache_alloc_node_trace+0x6c/0x420 mm/slab.c:3617 __do_kmalloc_node mm/slab.c:3639 [inline] __kmalloc_node_track_caller+0x3d/0x70 mm/slab.c:3654 kmalloc_reserve net/core/skbuff.c:354 [inline] __alloc_skb+0xe4/0x380 net/core/skbuff.c:425 alloc_skb include/linux/skbuff.h:1107 [inline] alloc_skb_with_frags+0x93/0x590 net/core/skbuff.c:5992 sock_alloc_send_pskb+0x840/0x9f0 net/core/sock.c:2364 sock_alloc_send_skb+0x32/0x40 net/core/sock.c:2381 dccp_sendmsg+0x2a1/0xc30 net/dccp/proto.c:768 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f651a843198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007f651a8436bc R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 CPU: 1 PID: 6102 Comm: syz-executor Tainted: G B 5.13.0-rc7-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 __should_failslab+0xb7/0x100 mm/failslab.c:33 should_failslab+0x9/0x20 mm/slab_common.c:1294 slab_pre_alloc_hook mm/slab.h:499 [inline] slab_alloc_node mm/slab.c:3222 [inline] kmem_cache_alloc_node_trace+0x6c/0x420 mm/slab.c:3617 __do_kmalloc_node mm/slab.c:3639 [inline] __kmalloc_node_track_caller+0x3d/0x70 mm/slab.c:3654 kmalloc_reserve net/core/skbuff.c:354 [inline] __alloc_skb+0xe4/0x380 net/core/skbuff.c:425 alloc_skb include/linux/skbuff.h:1107 [inline] alloc_skb_with_frags+0x93/0x590 net/core/skbuff.c:5992 sock_alloc_send_pskb+0x840/0x9f0 net/core/sock.c:2364 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 sock_alloc_send_skb+0x32/0x40 net/core/sock.c:2381 dccp_sendmsg+0x2a1/0xc30 net/dccp/proto.c:768 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007fea7a54b198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007fea7a54b6bc R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 CPU: 0 PID: 6103 Comm: syz-executor5 Tainted: G B 5.13.0-rc7-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 __should_failslab+0xb7/0x100 mm/failslab.c:33 should_failslab+0x9/0x20 mm/slab_common.c:1294 slab_pre_alloc_hook mm/slab.h:499 [inline] slab_alloc_node mm/slab.c:3222 [inline] kmem_cache_alloc_node_trace+0x6c/0x420 mm/slab.c:3617 __do_kmalloc_node mm/slab.c:3639 [inline] __kmalloc_node_track_caller+0x3d/0x70 mm/slab.c:3654 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 kmalloc_reserve net/core/skbuff.c:354 [inline] __alloc_skb+0xe4/0x380 net/core/skbuff.c:425 alloc_skb include/linux/skbuff.h:1107 [inline] alloc_skb_with_frags+0x93/0x590 net/core/skbuff.c:5992 sock_alloc_send_pskb+0x840/0x9f0 net/core/sock.c:2364 sock_alloc_send_skb+0x32/0x40 net/core/sock.c:2381 dccp_sendmsg+0x2a1/0xc30 net/dccp/proto.c:768 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007fb17d5e8198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb17d5e86bc R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 CPU: 1 PID: 6113 Comm: syz-executor4 Tainted: G B 5.13.0-rc7-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 __should_failslab+0xb7/0x100 mm/failslab.c:33 should_failslab+0x9/0x20 mm/slab_common.c:1294 slab_pre_alloc_hook mm/slab.h:499 [inline] slab_alloc_node mm/slab.c:3222 [inline] kmem_cache_alloc_node_trace+0x6c/0x420 mm/slab.c:3617 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 __do_kmalloc_node mm/slab.c:3639 [inline] __kmalloc_node_track_caller+0x3d/0x70 mm/slab.c:3654 kmalloc_reserve net/core/skbuff.c:354 [inline] __alloc_skb+0xe4/0x380 net/core/skbuff.c:425 alloc_skb include/linux/skbuff.h:1107 [inline] alloc_skb_with_frags+0x93/0x590 net/core/skbuff.c:5992 sock_alloc_send_pskb+0x840/0x9f0 net/core/sock.c:2364 sock_alloc_send_skb+0x32/0x40 net/core/sock.c:2381 dccp_sendmsg+0x2a1/0xc30 net/dccp/proto.c:768 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f651a843198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007f651a8436bc R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 CPU: 0 PID: 6104 Comm: syz-executor2 Tainted: G B 5.13.0-rc7-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 __should_failslab+0xb7/0x100 mm/failslab.c:33 should_failslab+0x9/0x20 mm/slab_common.c:1294 slab_pre_alloc_hook mm/slab.h:499 [inline] slab_alloc_node mm/slab.c:3222 [inline] kmem_cache_alloc_node+0x66/0x400 mm/slab.c:3599 __alloc_skb+0x220/0x380 net/core/skbuff.c:413 alloc_skb include/linux/skbuff.h:1107 [inline] alloc_skb_with_frags+0x93/0x590 net/core/skbuff.c:5992 sock_alloc_send_pskb+0x840/0x9f0 net/core/sock.c:2364 sock_alloc_send_skb+0x32/0x40 net/core/sock.c:2381 dccp_sendmsg+0x2a1/0xc30 net/dccp/proto.c:768 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f52926bf198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007f52926bf6bc R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 CPU: 1 PID: 6131 Comm: syz-executor5 Tainted: G B 5.13.0-rc7-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 __should_failslab+0xb7/0x100 mm/failslab.c:33 should_failslab+0x9/0x20 mm/slab_common.c:1294 slab_pre_alloc_hook mm/slab.h:499 [inline] slab_alloc_node mm/slab.c:3222 [inline] kmem_cache_alloc_node+0x66/0x400 mm/slab.c:3599 __alloc_skb+0x220/0x380 net/core/skbuff.c:413 alloc_skb include/linux/skbuff.h:1107 [inline] alloc_skb_with_frags+0x93/0x590 net/core/skbuff.c:5992 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 sock_alloc_send_pskb+0x840/0x9f0 net/core/sock.c:2364 sock_alloc_send_skb+0x32/0x40 net/core/sock.c:2381 dccp_sendmsg+0x2a1/0xc30 net/dccp/proto.c:768 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007fb17d5e8198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb17d5e86bc R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 CPU: 0 PID: 6132 Comm: syz-executor1 Tainted: G B 5.13.0-rc7-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 __should_failslab+0xb7/0x100 mm/failslab.c:33 should_failslab+0x9/0x20 mm/slab_common.c:1294 slab_pre_alloc_hook mm/slab.h:499 [inline] slab_alloc_node mm/slab.c:3222 [inline] kmem_cache_alloc_node_trace+0x6c/0x420 mm/slab.c:3617 __do_kmalloc_node mm/slab.c:3639 [inline] __kmalloc_node_track_caller+0x3d/0x70 mm/slab.c:3654 kmalloc_reserve net/core/skbuff.c:354 [inline] __alloc_skb+0xe4/0x380 net/core/skbuff.c:425 alloc_skb include/linux/skbuff.h:1107 [inline] alloc_skb_with_frags+0x93/0x590 net/core/skbuff.c:5992 sock_alloc_send_pskb+0x840/0x9f0 net/core/sock.c:2364 sock_alloc_send_skb+0x32/0x40 net/core/sock.c:2381 dccp_sendmsg+0x2a1/0xc30 net/dccp/proto.c:768 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f195e3c1198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007f195e3c16bc R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 CPU: 1 PID: 6135 Comm: syz-executor4 Tainted: G B 5.13.0-rc7-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 __should_failslab+0xb7/0x100 mm/failslab.c:33 should_failslab+0x9/0x20 mm/slab_common.c:1294 slab_pre_alloc_hook mm/slab.h:499 [inline] slab_alloc mm/slab.c:3306 [inline] kmem_cache_alloc_trace+0x5f/0x3e0 mm/slab.c:3573 kmalloc include/linux/slab.h:556 [inline] dccp_ackvec_parsed_add+0x57/0x250 net/dccp/ackvec.c:354 ccid2_hc_tx_parse_options+0x9a/0xb0 net/dccp/ccids/ccid2.c:505 ccid_hc_tx_parse_options net/dccp/ccid.h:204 [inline] dccp_parse_options+0x57f/0x11b0 net/dccp/options.c:230 dccp_rcv_established+0x48/0x160 net/dccp/input.c:370 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 dccp_v4_do_rcv+0x13c/0x190 net/dccp/ipv4.c:667 sk_backlog_rcv include/net/sock.h:1020 [inline] __release_sock+0x130/0x3b0 net/core/sock.c:2558 release_sock+0x59/0x1c0 net/core/sock.c:3082 dccp_sendmsg+0x684/0xc30 net/dccp/proto.c:796 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f651a843198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007f651a8436bc R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 CPU: 0 PID: 6136 Comm: syz-executor Tainted: G B 5.13.0-rc7-syzkaller #0 dccp_parse_options: DCCP(000000003e244816): Option 38 (len=1) error=5 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 __should_failslab+0xb7/0x100 mm/failslab.c:33 should_failslab+0x9/0x20 mm/slab_common.c:1294 slab_pre_alloc_hook mm/slab.h:499 [inline] slab_alloc_node mm/slab.c:3222 [inline] kmem_cache_alloc_node_trace+0x6c/0x420 mm/slab.c:3617 __do_kmalloc_node mm/slab.c:3639 [inline] __kmalloc_node_track_caller+0x3d/0x70 mm/slab.c:3654 kmalloc_reserve net/core/skbuff.c:354 [inline] __alloc_skb+0xe4/0x380 net/core/skbuff.c:425 alloc_skb include/linux/skbuff.h:1107 [inline] alloc_skb_with_frags+0x93/0x590 net/core/skbuff.c:5992 sock_alloc_send_pskb+0x840/0x9f0 net/core/sock.c:2364 sock_alloc_send_skb+0x32/0x40 net/core/sock.c:2381 dccp_sendmsg+0x2a1/0xc30 net/dccp/proto.c:768 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007fea7a54b198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007fea7a54b6bc R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 CPU: 1 PID: 6152 Comm: syz-executor5 Tainted: G B 5.13.0-rc7-syzkaller #0 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 __should_failslab+0xb7/0x100 mm/failslab.c:33 should_failslab+0x9/0x20 mm/slab_common.c:1294 slab_pre_alloc_hook mm/slab.h:499 [inline] slab_alloc_node mm/slab.c:3222 [inline] kmem_cache_alloc_node_trace+0x6c/0x420 mm/slab.c:3617 __do_kmalloc_node mm/slab.c:3639 [inline] __kmalloc_node_track_caller+0x3d/0x70 mm/slab.c:3654 kmalloc_reserve net/core/skbuff.c:354 [inline] __alloc_skb+0xe4/0x380 net/core/skbuff.c:425 alloc_skb include/linux/skbuff.h:1107 [inline] alloc_skb_with_frags+0x93/0x590 net/core/skbuff.c:5992 sock_alloc_send_pskb+0x840/0x9f0 net/core/sock.c:2364 sock_alloc_send_skb+0x32/0x40 net/core/sock.c:2381 dccp_sendmsg+0x2a1/0xc30 net/dccp/proto.c:768 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007fb17d5e8198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb17d5e86bc R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 CPU: 0 PID: 6151 Comm: syz-executor1 Tainted: G B 5.13.0-rc7-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 __should_failslab+0xb7/0x100 mm/failslab.c:33 should_failslab+0x9/0x20 mm/slab_common.c:1294 slab_pre_alloc_hook mm/slab.h:499 [inline] slab_alloc_node mm/slab.c:3222 [inline] kmem_cache_alloc_node_trace+0x6c/0x420 mm/slab.c:3617 __do_kmalloc_node mm/slab.c:3639 [inline] __kmalloc_node_track_caller+0x3d/0x70 mm/slab.c:3654 kmalloc_reserve net/core/skbuff.c:354 [inline] __alloc_skb+0xe4/0x380 net/core/skbuff.c:425 alloc_skb include/linux/skbuff.h:1107 [inline] alloc_skb_with_frags+0x93/0x590 net/core/skbuff.c:5992 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 sock_alloc_send_pskb+0x840/0x9f0 net/core/sock.c:2364 sock_alloc_send_skb+0x32/0x40 net/core/sock.c:2381 dccp_sendmsg+0x2a1/0xc30 net/dccp/proto.c:768 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f195e3c1198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007f195e3c16bc R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 CPU: 1 PID: 6154 Comm: syz-executor2 Tainted: G B 5.13.0-rc7-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 __should_failslab+0xb7/0x100 mm/failslab.c:33 should_failslab+0x9/0x20 mm/slab_common.c:1294 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 slab_pre_alloc_hook mm/slab.h:499 [inline] slab_alloc_node mm/slab.c:3222 [inline] kmem_cache_alloc_node_trace+0x6c/0x420 mm/slab.c:3617 __do_kmalloc_node mm/slab.c:3639 [inline] __kmalloc_node_track_caller+0x3d/0x70 mm/slab.c:3654 kmalloc_reserve net/core/skbuff.c:354 [inline] __alloc_skb+0xe4/0x380 net/core/skbuff.c:425 alloc_skb include/linux/skbuff.h:1107 [inline] alloc_skb_with_frags+0x93/0x590 net/core/skbuff.c:5992 sock_alloc_send_pskb+0x840/0x9f0 net/core/sock.c:2364 sock_alloc_send_skb+0x32/0x40 net/core/sock.c:2381 dccp_sendmsg+0x2a1/0xc30 net/dccp/proto.c:768 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f52926bf198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007f52926bf6bc R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 CPU: 0 PID: 6158 Comm: syz-executor Tainted: G B 5.13.0-rc7-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 __should_failslab+0xb7/0x100 mm/failslab.c:33 should_failslab+0x9/0x20 mm/slab_common.c:1294 slab_pre_alloc_hook mm/slab.h:499 [inline] slab_alloc_node mm/slab.c:3222 [inline] kmem_cache_alloc_node+0x66/0x400 mm/slab.c:3599 __alloc_skb+0x220/0x380 net/core/skbuff.c:413 alloc_skb include/linux/skbuff.h:1107 [inline] alloc_skb_with_frags+0x93/0x590 net/core/skbuff.c:5992 sock_alloc_send_pskb+0x840/0x9f0 net/core/sock.c:2364 sock_alloc_send_skb+0x32/0x40 net/core/sock.c:2381 dccp_sendmsg+0x2a1/0xc30 net/dccp/proto.c:768 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007fea7a54b198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007fea7a54b6bc R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 CPU: 1 PID: 6175 Comm: syz-executor2 Tainted: G B 5.13.0-rc7-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 __should_failslab+0xb7/0x100 mm/failslab.c:33 should_failslab+0x9/0x20 mm/slab_common.c:1294 slab_pre_alloc_hook mm/slab.h:499 [inline] slab_alloc_node mm/slab.c:3222 [inline] kmem_cache_alloc_node+0x66/0x400 mm/slab.c:3599 __alloc_skb+0x220/0x380 net/core/skbuff.c:413 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 alloc_skb include/linux/skbuff.h:1107 [inline] alloc_skb_with_frags+0x93/0x590 net/core/skbuff.c:5992 sock_alloc_send_pskb+0x840/0x9f0 net/core/sock.c:2364 sock_alloc_send_skb+0x32/0x40 net/core/sock.c:2381 dccp_sendmsg+0x2a1/0xc30 net/dccp/proto.c:768 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f52926bf198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007f52926bf6bc R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 CPU: 0 PID: 6176 Comm: syz-executor5 Tainted: G B 5.13.0-rc7-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 __should_failslab+0xb7/0x100 mm/failslab.c:33 should_failslab+0x9/0x20 mm/slab_common.c:1294 slab_pre_alloc_hook mm/slab.h:499 [inline] slab_alloc_node mm/slab.c:3222 [inline] kmem_cache_alloc_node_trace+0x6c/0x420 mm/slab.c:3617 __do_kmalloc_node mm/slab.c:3639 [inline] __kmalloc_node_track_caller+0x3d/0x70 mm/slab.c:3654 kmalloc_reserve net/core/skbuff.c:354 [inline] __alloc_skb+0xe4/0x380 net/core/skbuff.c:425 alloc_skb include/linux/skbuff.h:1107 [inline] alloc_skb_with_frags+0x93/0x590 net/core/skbuff.c:5992 sock_alloc_send_pskb+0x840/0x9f0 net/core/sock.c:2364 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 sock_alloc_send_skb+0x32/0x40 net/core/sock.c:2381 dccp_sendmsg+0x2a1/0xc30 net/dccp/proto.c:768 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007fb17d5e8198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb17d5e86bc R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 CPU: 1 PID: 6178 Comm: syz-executor1 Tainted: G B 5.13.0-rc7-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 __should_failslab+0xb7/0x100 mm/failslab.c:33 should_failslab+0x9/0x20 mm/slab_common.c:1294 slab_pre_alloc_hook mm/slab.h:499 [inline] slab_alloc_node mm/slab.c:3222 [inline] kmem_cache_alloc_node_trace+0x6c/0x420 mm/slab.c:3617 __do_kmalloc_node mm/slab.c:3639 [inline] __kmalloc_node_track_caller+0x3d/0x70 mm/slab.c:3654 kmalloc_reserve net/core/skbuff.c:354 [inline] __alloc_skb+0xe4/0x380 net/core/skbuff.c:425 alloc_skb include/linux/skbuff.h:1107 [inline] alloc_skb_with_frags+0x93/0x590 net/core/skbuff.c:5992 sock_alloc_send_pskb+0x840/0x9f0 net/core/sock.c:2364 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 sock_alloc_send_skb+0x32/0x40 net/core/sock.c:2381 dccp_sendmsg+0x2a1/0xc30 net/dccp/proto.c:768 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f195e3c1198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007f195e3c16bc R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 CPU: 0 PID: 6186 Comm: syz-executor Tainted: G B 5.13.0-rc7-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 __should_failslab+0xb7/0x100 mm/failslab.c:33 should_failslab+0x9/0x20 mm/slab_common.c:1294 slab_pre_alloc_hook mm/slab.h:499 [inline] slab_alloc mm/slab.c:3306 [inline] kmem_cache_alloc_trace+0x5f/0x3e0 mm/slab.c:3573 kmalloc include/linux/slab.h:556 [inline] dccp_ackvec_parsed_add+0x57/0x250 net/dccp/ackvec.c:354 ccid2_hc_tx_parse_options+0x9a/0xb0 net/dccp/ccids/ccid2.c:505 ccid_hc_tx_parse_options net/dccp/ccid.h:204 [inline] dccp_parse_options+0x57f/0x11b0 net/dccp/options.c:230 dccp_rcv_established+0x48/0x160 net/dccp/input.c:370 dccp_v4_do_rcv+0x13c/0x190 net/dccp/ipv4.c:667 sk_backlog_rcv include/net/sock.h:1020 [inline] __release_sock+0x130/0x3b0 net/core/sock.c:2558 release_sock+0x59/0x1c0 net/core/sock.c:3082 dccp_sendmsg+0x684/0xc30 net/dccp/proto.c:796 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007fea7a54b198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007fea7a54b6bc R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 CPU: 1 PID: 6191 Comm: syz-executor2 Tainted: G B 5.13.0-rc7-syzkaller #0 dccp_parse_options: DCCP(000000003e244816): Option 38 (len=1) error=5 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 __should_failslab+0xb7/0x100 mm/failslab.c:33 should_failslab+0x9/0x20 mm/slab_common.c:1294 slab_pre_alloc_hook mm/slab.h:499 [inline] slab_alloc_node mm/slab.c:3222 [inline] kmem_cache_alloc_node+0x66/0x400 mm/slab.c:3599 __alloc_skb+0x220/0x380 net/core/skbuff.c:413 alloc_skb include/linux/skbuff.h:1107 [inline] alloc_skb_with_frags+0x93/0x590 net/core/skbuff.c:5992 sock_alloc_send_pskb+0x840/0x9f0 net/core/sock.c:2364 sock_alloc_send_skb+0x32/0x40 net/core/sock.c:2381 dccp_sendmsg+0x2a1/0xc30 net/dccp/proto.c:768 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f52926bf198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007f52926bf6bc R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 CPU: 0 PID: 6192 Comm: syz-executor5 Tainted: G B 5.13.0-rc7-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 __should_failslab+0xb7/0x100 mm/failslab.c:33 should_failslab+0x9/0x20 mm/slab_common.c:1294 slab_pre_alloc_hook mm/slab.h:499 [inline] slab_alloc mm/slab.c:3306 [inline] kmem_cache_alloc_trace+0x5f/0x3e0 mm/slab.c:3573 kmalloc include/linux/slab.h:556 [inline] dccp_feat_entry_new+0x1b6/0x3b0 net/dccp/feat.c:464 dccp_feat_push_confirm net/dccp/feat.c:512 [inline] dccp_feat_handle_nn_established net/dccp/feat.c:1349 [inline] dccp_feat_parse_options+0x1179/0x22a0 net/dccp/feat.c:1435 dccp_parse_options+0x9d4/0x11b0 net/dccp/options.c:125 dccp_rcv_established+0x48/0x160 net/dccp/input.c:370 dccp_v4_do_rcv+0x13c/0x190 net/dccp/ipv4.c:667 sk_backlog_rcv include/net/sock.h:1020 [inline] __release_sock+0x130/0x3b0 net/core/sock.c:2558 release_sock+0x59/0x1c0 net/core/sock.c:3082 dccp_sendmsg+0x684/0xc30 net/dccp/proto.c:796 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 FAULT_INJECTION: forcing a failure. name fail_page_alloc, interval 1, probability 0, space 0, times 0 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007fb17d5e8198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb17d5e86bc R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 CPU: 1 PID: 6212 Comm: syz-executor1 Tainted: G B 5.13.0-rc7-syzkaller #0 dccp_parse_options: DCCP(00000000c530a0cd): Option 32 (len=7) error=9 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 __should_fail_alloc_page mm/page_alloc.c:3616 [inline] should_fail_alloc_page+0x50/0x60 mm/page_alloc.c:3653 prepare_alloc_pages+0x18d/0x550 mm/page_alloc.c:4994 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 __alloc_pages+0x142/0x5a0 mm/page_alloc.c:5189 __alloc_pages_node include/linux/gfp.h:549 [inline] kmem_getpages mm/slab.c:1377 [inline] cache_grow_begin+0x81/0x3d0 mm/slab.c:2593 cache_alloc_refill+0x289/0x340 mm/slab.c:2965 ____cache_alloc mm/slab.c:3048 [inline] ____cache_alloc mm/slab.c:3031 [inline] slab_alloc_node mm/slab.c:3249 [inline] kmem_cache_alloc_node_trace+0x3f4/0x420 mm/slab.c:3617 __do_kmalloc_node mm/slab.c:3639 [inline] __kmalloc_node_track_caller+0x3d/0x70 mm/slab.c:3654 kmalloc_reserve net/core/skbuff.c:354 [inline] __alloc_skb+0xe4/0x380 net/core/skbuff.c:425 alloc_skb include/linux/skbuff.h:1107 [inline] alloc_skb_with_frags+0x93/0x590 net/core/skbuff.c:5992 sock_alloc_send_pskb+0x840/0x9f0 net/core/sock.c:2364 sock_alloc_send_skb+0x32/0x40 net/core/sock.c:2381 dccp_sendmsg+0x2a1/0xc30 net/dccp/proto.c:768 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f195e3c1198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007f195e3c16bc R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 CPU: 0 PID: 6214 Comm: syz-executor2 Tainted: G B 5.13.0-rc7-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 __should_failslab+0xb7/0x100 mm/failslab.c:33 should_failslab+0x9/0x20 mm/slab_common.c:1294 slab_pre_alloc_hook mm/slab.h:499 [inline] slab_alloc_node mm/slab.c:3222 [inline] kmem_cache_alloc_node_trace+0x6c/0x420 mm/slab.c:3617 __do_kmalloc_node mm/slab.c:3639 [inline] __kmalloc_node_track_caller+0x3d/0x70 mm/slab.c:3654 kmalloc_reserve net/core/skbuff.c:354 [inline] __alloc_skb+0xe4/0x380 net/core/skbuff.c:425 alloc_skb include/linux/skbuff.h:1107 [inline] alloc_skb_with_frags+0x93/0x590 net/core/skbuff.c:5992 sock_alloc_send_pskb+0x840/0x9f0 net/core/sock.c:2364 sock_alloc_send_skb+0x32/0x40 net/core/sock.c:2381 dccp_sendmsg+0x2a1/0xc30 net/dccp/proto.c:768 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f52926bf198 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 RAX: ffffffffffffffda RBX: 000000000051bea0 RCX: 000000000045d939 RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005 RBP: 000000000000057a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007f52926bf6bc R13: 00000000004e4120 R14: 0000000000000006 R15: 0000000000000000 CPU: 1 PID: 6230 Comm: syz-executor1 Tainted: G B 5.13.0-rc7-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x195/0x1f8 lib/dump_stack.c:120 fail_dump lib/fault-inject.c:52 [inline] should_fail.cold+0x5/0xa lib/fault-inject.c:146 __should_failslab+0xb7/0x100 mm/failslab.c:33 should_failslab+0x9/0x20 mm/slab_common.c:1294 slab_pre_alloc_hook mm/slab.h:499 [inline] slab_alloc_node mm/slab.c:3222 [inline] kmem_cache_alloc_node+0x66/0x400 mm/slab.c:3599 __alloc_skb+0x220/0x380 net/core/skbuff.c:413 alloc_skb include/linux/skbuff.h:1107 [inline] alloc_skb_with_frags+0x93/0x590 net/core/skbuff.c:5992 sock_alloc_send_pskb+0x840/0x9f0 net/core/sock.c:2364 sock_alloc_send_skb+0x32/0x40 net/core/sock.c:2381 dccp_sendmsg+0x2a1/0xc30 net/dccp/proto.c:768 inet_sendmsg+0x10f/0x140 net/ipv4/af_inet.c:821 FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0x140/0x190 net/socket.c:674 ____sys_sendmsg+0x372/0x8f0 net/socket.c:2337 ___sys_sendmsg+0x11d/0x190 net/socket.c:2391 __sys_sendmmsg+0x1bf/0x4d0 net/socket.c:2477 __do_sys_sendmmsg net/socket.c:2506 [inline] __se_sys_sendmmsg net/socket.c:2503 [inline] __x64_sys_sendmmsg+0x9d/0x100 net/socket.c:2503 do_syscall_64+0x40/0xb0 arch/x86/entry/common.c:47 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x45d939 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48