./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor502183480 <...> Warning: Permanently added '10.128.0.123' (ED25519) to the list of known hosts. execve("./syz-executor502183480", ["./syz-executor502183480"], 0x7fff32a3f2d0 /* 10 vars */) = 0 brk(NULL) = 0x5555947c0000 brk(0x5555947c0d00) = 0x5555947c0d00 arch_prctl(ARCH_SET_FS, 0x5555947c0380) = 0 set_tid_address(0x5555947c0650) = 5845 set_robust_list(0x5555947c0660, 24) = 0 rseq(0x5555947c0ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor502183480", 4096) = 27 getrandom("\xd8\xf2\x67\x0d\x13\x42\x79\x48", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555947c0d00 brk(0x5555947e1d00) = 0x5555947e1d00 brk(0x5555947e2000) = 0x5555947e2000 mprotect(0x7fe5184c8000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 openat(AT_FDCWD, "/proc/self/make-it-fail", O_WRONLY) = 3 close(3) = 0 openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_WRONLY) = 3 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3 write(3, "0", 1) = 1 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5846 attached [pid 5846] set_robust_list(0x5555947c0660, 24 [pid 5845] <... clone resumed>, child_tidptr=0x5555947c0650) = 5846 [pid 5846] <... set_robust_list resumed>) = 0 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5847 attached [pid 5847] set_robust_list(0x5555947c0660, 24./strace-static-x86_64: Process 5848 attached [pid 5846] <... clone resumed>, child_tidptr=0x5555947c0650) = 5847 [pid 5845] <... clone resumed>, child_tidptr=0x5555947c0650) = 5848 [pid 5848] set_robust_list(0x5555947c0660, 24 [pid 5847] <... set_robust_list resumed>) = 0 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5848] <... set_robust_list resumed>) = 0 [pid 5847] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5847] setpgid(0, 0 [pid 5848] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5847] <... setpgid resumed>) = 0 [pid 5847] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 ./strace-static-x86_64: Process 5850 attached ./strace-static-x86_64: Process 5849 attached [pid 5845] <... clone resumed>, child_tidptr=0x5555947c0650) = 5849 [pid 5849] set_robust_list(0x5555947c0660, 24 [pid 5848] <... clone resumed>, child_tidptr=0x5555947c0650) = 5850 [pid 5847] write(3, "1000", 4executing program [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5850] set_robust_list(0x5555947c0660, 24 [pid 5849] <... set_robust_list resumed>) = 0 [pid 5847] <... write resumed>) = 4 [pid 5847] close(3 [pid 5849] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5847] <... close resumed>) = 0 [pid 5847] write(1, "executing program\n", 18) = 18 [pid 5847] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148./strace-static-x86_64: Process 5851 attached [pid 5850] <... set_robust_list resumed>) = 0 [pid 5847] <... bpf resumed>) = 3 ./strace-static-x86_64: Process 5852 attached [pid 5851] set_robust_list(0x5555947c0660, 24 [pid 5850] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5847] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16 [pid 5845] <... clone resumed>, child_tidptr=0x5555947c0650) = 5851 [pid 5851] <... set_robust_list resumed>) = 0 [pid 5852] set_robust_list(0x5555947c0660, 24 [pid 5850] <... prctl resumed>) = 0 [pid 5851] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5850] setpgid(0, 0) = 0 [pid 5849] <... clone resumed>, child_tidptr=0x5555947c0650) = 5852 [pid 5850] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5853 attached [pid 5852] <... set_robust_list resumed>) = 0 [pid 5850] <... openat resumed>) = 3 [pid 5847] <... bpf resumed>) = 4 ./strace-static-x86_64: Process 5854 attached [pid 5853] set_robust_list(0x5555947c0660, 24 [pid 5852] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5851] <... clone resumed>, child_tidptr=0x5555947c0650) = 5853 [pid 5850] write(3, "1000", 4 [pid 5847] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5845] <... clone resumed>, child_tidptr=0x5555947c0650) = 5854 [pid 5854] set_robust_list(0x5555947c0660, 24 [pid 5853] <... set_robust_list resumed>) = 0 [pid 5850] <... write resumed>) = 4 [pid 5854] <... set_robust_list resumed>) = 0 [pid 5850] close(3executing program [pid 5854] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5853] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5850] <... close resumed>) = 0 [pid 5850] write(1, "executing program\n", 18) = 18 [pid 5853] <... prctl resumed>) = 0 [pid 5852] <... prctl resumed>) = 0 [pid 5850] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5847] <... openat resumed>) = 5 ./strace-static-x86_64: Process 5855 attached [pid 5853] setpgid(0, 0 [pid 5852] setpgid(0, 0 [pid 5853] <... setpgid resumed>) = 0 [pid 5852] <... setpgid resumed>) = 0 [pid 5853] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5852] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5855] set_robust_list(0x5555947c0660, 24 [pid 5854] <... clone resumed>, child_tidptr=0x5555947c0650) = 5855 [pid 5850] <... bpf resumed>) = 3 [pid 5855] <... set_robust_list resumed>) = 0 [pid 5853] <... openat resumed>) = 3 [pid 5852] <... openat resumed>) = 3 [pid 5850] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16 [pid 5847] write(5, "5", 1 [pid 5855] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5853] write(3, "1000", 4 [pid 5852] write(3, "1000", 4 [pid 5847] <... write resumed>) = 1 [pid 5855] setpgid(0, 0 [pid 5853] <... write resumed>) = 4 [pid 5852] <... write resumed>) = 4 [pid 5850] <... bpf resumed>) = 4 [ 76.546803][ T5847] FAULT_INJECTION: forcing a failure. [ 76.546803][ T5847] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 76.547094][ T5847] [ 76.547102][ T5847] ====================================================== [ 76.547106][ T5847] WARNING: possible circular locking dependency detected [ 76.547126][ T5847] 6.16.0-syzkaller-06574-gd9104cec3e8f #0 Not tainted [ 76.547133][ T5847] ------------------------------------------------------ [ 76.547137][ T5847] syz-executor502/5847 is trying to acquire lock: [ 76.547144][ T5847] ffffffff8e130720 (console_owner){....}-{0:0}, at: console_flush_all+0x13a/0xc40 [ 76.547195][ T5847] [ 76.547195][ T5847] but task is already holding lock: [ 76.547199][ T5847] ffff8880b8739f58 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140 [ 76.547231][ T5847] [ 76.547231][ T5847] which lock already depends on the new lock. [ 76.547231][ T5847] [ 76.547235][ T5847] [ 76.547235][ T5847] the existing dependency chain (in reverse order) is: [ 76.547240][ T5847] [ 76.547240][ T5847] -> #4 (&rq->__lock){-.-.}-{2:2}: [ 76.547256][ T5847] lock_acquire+0x120/0x360 [ 76.547271][ T5847] _raw_spin_lock_nested+0x32/0x50 [ 76.547289][ T5847] raw_spin_rq_lock_nested+0x2a/0x140 [ 76.547305][ T5847] task_rq_lock+0xbc/0x470 [ 76.547320][ T5847] cgroup_move_task+0x92/0x2a0 [ 76.547334][ T5847] css_set_move_task+0x658/0x9e0 [ 76.547346][ T5847] cgroup_post_fork+0x1ef/0x790 [ 76.547357][ T5847] copy_process+0x3862/0x3c00 [ 76.547371][ T5847] kernel_clone+0x21e/0x840 [ 76.547381][ T5847] user_mode_thread+0xdd/0x140 [ 76.547391][ T5847] rest_init+0x23/0x300 [ 76.547402][ T5847] start_kernel+0x3a9/0x410 [ 76.547418][ T5847] x86_64_start_reservations+0x24/0x30 [ 76.547430][ T5847] x86_64_start_kernel+0x143/0x1c0 [ 76.547442][ T5847] common_startup_64+0x13e/0x147 [ 76.547455][ T5847] [ 76.547455][ T5847] -> #3 (&p->pi_lock){-.-.}-{2:2}: [ 76.547472][ T5847] lock_acquire+0x120/0x360 [ 76.547486][ T5847] _raw_spin_lock_irqsave+0xa7/0xf0 [ 76.547499][ T5847] try_to_wake_up+0x6e/0x1290 [ 76.547511][ T5847] __wake_up_common_lock+0x137/0x1f0 [ 76.547527][ T5847] tty_port_default_wakeup+0xa2/0xf0 [ 76.547545][ T5847] serial8250_tx_chars+0x72e/0x970 [ 76.547556][ T5847] serial8250_handle_irq+0x633/0xbb0 [ 76.547567][ T5847] serial8250_default_handle_irq+0xbf/0x1e0 [ 76.547582][ T5847] serial8250_interrupt+0x8d/0x160 [ 76.547598][ T5847] __handle_irq_event_percpu+0x289/0x980 [ 76.547612][ T5847] handle_irq_event+0x8b/0x1e0 [ 76.547620][ T5847] handle_edge_irq+0x23b/0x9f0 [ 76.547628][ T5847] __common_interrupt+0x143/0x250 [ 76.547640][ T5847] common_interrupt+0xb6/0xe0 [ 76.547649][ T5847] asm_common_interrupt+0x26/0x40 [ 76.547658][ T5847] pv_native_safe_halt+0x13/0x20 [ 76.547669][ T5847] default_idle+0x13/0x20 [ 76.547676][ T5847] default_idle_call+0x74/0xb0 [ 76.547683][ T5847] do_idle+0x1e8/0x510 [ 76.547695][ T5847] cpu_startup_entry+0x44/0x60 [ 76.547707][ T5847] rest_init+0x2de/0x300 [ 76.547715][ T5847] start_kernel+0x3a9/0x410 [ 76.547726][ T5847] x86_64_start_reservations+0x24/0x30 [ 76.547735][ T5847] x86_64_start_kernel+0x143/0x1c0 [ 76.547744][ T5847] common_startup_64+0x13e/0x147 [ 76.547754][ T5847] [ 76.547754][ T5847] -> #2 (&tty->write_wait){-.-.}-{3:3}: [ 76.547767][ T5847] lock_acquire+0x120/0x360 [ 76.547778][ T5847] _raw_spin_lock_irqsave+0xa7/0xf0 [ 76.547788][ T5847] __wake_up_common_lock+0x2f/0x1f0 [ 76.547797][ T5847] tty_port_default_wakeup+0xa2/0xf0 [ 76.547807][ T5847] serial8250_tx_chars+0x72e/0x970 [ 76.547815][ T5847] serial8250_handle_irq+0x633/0xbb0 [ 76.547824][ T5847] serial8250_default_handle_irq+0xbf/0x1e0 [ 76.547834][ T5847] serial8250_interrupt+0x8d/0x160 [ 76.547846][ T5847] __handle_irq_event_percpu+0x289/0x980 [ 76.547855][ T5847] handle_irq_event+0x8b/0x1e0 [ 76.547863][ T5847] handle_edge_irq+0x23b/0x9f0 [ 76.547873][ T5847] __common_interrupt+0x143/0x250 [ 76.547884][ T5847] common_interrupt+0xb6/0xe0 [ 76.547892][ T5847] asm_common_interrupt+0x26/0x40 [ 76.547900][ T5847] pv_native_safe_halt+0x13/0x20 [ 76.547911][ T5847] default_idle+0x13/0x20 [ 76.547918][ T5847] default_idle_call+0x74/0xb0 [ 76.547925][ T5847] do_idle+0x1e8/0x510 [ 76.547936][ T5847] cpu_startup_entry+0x44/0x60 [ 76.547948][ T5847] rest_init+0x2de/0x300 [ 76.547956][ T5847] start_kernel+0x3a9/0x410 [ 76.547967][ T5847] x86_64_start_reservations+0x24/0x30 [ 76.547976][ T5847] x86_64_start_kernel+0x143/0x1c0 [ 76.547985][ T5847] common_startup_64+0x13e/0x147 [ 76.547994][ T5847] [ 76.547994][ T5847] -> #1 (&port_lock_key){-.-.}-{3:3}: [ 76.548007][ T5847] lock_acquire+0x120/0x360 [ 76.548018][ T5847] _raw_spin_lock_irqsave+0xa7/0xf0 [ 76.548028][ T5847] serial8250_console_write+0x17e/0x1ba0 [ 76.548037][ T5847] console_flush_all+0x728/0xc40 [ 76.548046][ T5847] console_unlock+0xc4/0x270 [ 76.548053][ T5847] vprintk_emit+0x5b7/0x7a0 [ 76.548060][ T5847] _printk+0xcf/0x120 [ 76.548069][ T5847] register_console+0xa8b/0xf90 [ 76.548078][ T5847] univ8250_console_init+0x3a/0x70 [ 76.548087][ T5847] console_init+0x10e/0x430 [ 76.548096][ T5847] start_kernel+0x254/0x410 [ 76.548107][ T5847] x86_64_start_reservations+0x24/0x30 [ 76.548123][ T5847] x86_64_start_kernel+0x143/0x1c0 [ 76.548132][ T5847] common_startup_64+0x13e/0x147 [ 76.548141][ T5847] [ 76.548141][ T5847] -> #0 (console_owner){....}-{0:0}: [ 76.548154][ T5847] validate_chain+0xb9b/0x2140 [ 76.548162][ T5847] __lock_acquire+0xab9/0xd20 [ 76.548172][ T5847] lock_acquire+0x120/0x360 [ 76.548182][ T5847] console_flush_all+0x6d2/0xc40 [ 76.548191][ T5847] console_unlock+0xc4/0x270 [ 76.548198][ T5847] vprintk_emit+0x5b7/0x7a0 [ 76.548205][ T5847] _printk+0xcf/0x120 [ 76.548214][ T5847] should_fail_ex+0x3f5/0x560 [ 76.548227][ T5847] strncpy_from_user+0x36/0x290 [ 76.548239][ T5847] strncpy_from_user_nofault+0x72/0x150 [ 76.548250][ T5847] bpf_probe_read_compat_str+0xe2/0x180 [ 76.548258][ T5847] bpf_prog_56079403e473c493+0x70/0x76 [ 76.548270][ T5847] bpf_trace_run2+0x281/0x4b0 [ 76.548280][ T5847] __bpf_trace_tlb_flush+0xf5/0x150 [ 76.548293][ T5847] __traceiter_tlb_flush+0x76/0xd0 [ 76.548304][ T5847] trace_tlb_flush+0x115/0x140 [ 76.548315][ T5847] switch_mm_irqs_off+0x53e/0x7a0 [ 76.548324][ T5847] __schedule+0x109d/0x4d30 [ 76.548334][ T5847] preempt_schedule_irq+0xb5/0x150 [ 76.548345][ T5847] irqentry_exit+0x6f/0x90 [ 76.548355][ T5847] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 76.548364][ T5847] lock_acquire+0x175/0x360 [ 76.548375][ T5847] fs_reclaim_acquire+0x99/0x100 [ 76.548383][ T5847] kmem_cache_alloc_lru_noprof+0x49/0x3d0 [ 76.548396][ T5847] __d_alloc+0x36/0x7a0 [ 76.548405][ T5847] d_alloc_pseudo+0x21/0xc0 [ 76.548414][ T5847] alloc_file_pseudo+0xcc/0x210 [ 76.548424][ T5847] anon_inode_getfd+0xca/0x1b0 [ 76.548433][ T5847] bpf_enable_stats+0xdc/0x140 [ 76.548446][ T5847] __sys_bpf+0x325/0x870 [ 76.548457][ T5847] __x64_sys_bpf+0x7c/0x90 [ 76.548466][ T5847] do_syscall_64+0xfa/0x3b0 [ 76.548478][ T5847] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.548486][ T5847] [ 76.548486][ T5847] other info that might help us debug this: [ 76.548486][ T5847] [ 76.548489][ T5847] Chain exists of: [ 76.548489][ T5847] console_owner --> &p->pi_lock --> &rq->__lock [ 76.548489][ T5847] [ 76.548504][ T5847] Possible unsafe locking scenario: [ 76.548504][ T5847] [ 76.548507][ T5847] CPU0 CPU1 [ 76.548510][ T5847] ---- ---- [ 76.548512][ T5847] lock(&rq->__lock); [ 76.548518][ T5847] lock(&p->pi_lock); [ 76.548525][ T5847] lock(&rq->__lock); [ 76.548532][ T5847] lock(console_owner); [ 76.548538][ T5847] [ 76.548538][ T5847] *** DEADLOCK *** [ 76.548538][ T5847] [ 76.548540][ T5847] 7 locks held by syz-executor502/5847: [ 76.548546][ T5847] #0: ffffffff8e1bb9c8 (bpf_stats_enabled_mutex){+.+.}-{4:4}, at: bpf_enable_stats+0x94/0x140 [ 76.548572][ T5847] #1: ffffffff8e243360 (fs_reclaim){+.+.}-{0:0}, at: kmem_cache_alloc_lru_noprof+0x49/0x3d0 [ 76.548599][ T5847] #2: ffffffff8e255260 (mmu_notifier_invalidate_range_start){+.+.}-{0:0}, at: fs_reclaim_acquire+0x7d/0x100 [ 76.548622][ T5847] #3: ffff8880b8739f58 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140 [ 76.548648][ T5847] #4: ffffffff8e13c4e0 (rcu_read_lock){....}-{1:3}, at: bpf_trace_run2+0x186/0x4b0 [ 76.548672][ T5847] #5: ffffffff8e130780 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x120 [ 76.548695][ T5847] #6: ffffffff8e018050 (console_srcu){....}-{0:0}, at: console_flush_all+0x13a/0xc40 [ 76.548718][ T5847] [ 76.548718][ T5847] stack backtrace: [ 76.548729][ T5847] CPU: 1 UID: 0 PID: 5847 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 76.548741][ T5847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 76.548752][ T5847] Call Trace: [ 76.548756][ T5847] [ 76.548766][ T5847] dump_stack_lvl+0x189/0x250 [ 76.548780][ T5847] ? __pfx_dump_stack_lvl+0x10/0x10 [ 76.548789][ T5847] ? __pfx__printk+0x10/0x10 [ 76.548799][ T5847] ? print_lock_name+0xde/0x100 [ 76.548810][ T5847] print_circular_bug+0x2ee/0x310 [ 76.548820][ T5847] check_noncircular+0x134/0x160 [ 76.548829][ T5847] validate_chain+0xb9b/0x2140 [ 76.548842][ T5847] __lock_acquire+0xab9/0xd20 [ 76.548855][ T5847] ? console_flush_all+0x13a/0xc40 [ 76.548864][ T5847] lock_acquire+0x120/0x360 [ 76.548877][ T5847] ? console_flush_all+0x13a/0xc40 [ 76.548888][ T5847] ? do_raw_spin_unlock+0x122/0x240 [ 76.548898][ T5847] ? console_flush_all+0x13a/0xc40 [ 76.548907][ T5847] console_flush_all+0x6d2/0xc40 [ 76.548916][ T5847] ? console_flush_all+0x13a/0xc40 [ 76.548926][ T5847] ? console_flush_all+0x13a/0xc40 [ 76.548936][ T5847] ? __pfx_console_flush_all+0x10/0x10 [ 76.548948][ T5847] ? is_printk_cpu_sync_owner+0x32/0x40 [ 76.548959][ T5847] console_unlock+0xc4/0x270 [ 76.548968][ T5847] ? __pfx_console_unlock+0x10/0x10 [ 76.548976][ T5847] ? is_printk_cpu_sync_owner+0x32/0x40 [ 76.548988][ T5847] vprintk_emit+0x5b7/0x7a0 [ 76.548996][ T5847] ? __pfx_vprintk_emit+0x10/0x10 [ 76.549005][ T5847] ? trace_event_buffer_commit+0x264/0x7f0 [ 76.549017][ T5847] _printk+0xcf/0x120 [ 76.549027][ T5847] ? __pfx____ratelimit+0x10/0x10 [ 76.549040][ T5847] ? __pfx__printk+0x10/0x10 [ 76.549051][ T5847] ? rcu_is_watching+0x15/0xb0 [ 76.549065][ T5847] ? bpf_bprintf_cleanup+0x9f/0xd0 [ 76.549078][ T5847] should_fail_ex+0x3f5/0x560 [ 76.549092][ T5847] strncpy_from_user+0x36/0x290 [ 76.549104][ T5847] ? strncpy_from_user+0x1bc/0x290 [ 76.549122][ T5847] strncpy_from_user_nofault+0x72/0x150 [ 76.549133][ T5847] bpf_probe_read_compat_str+0xe2/0x180 [ 76.549142][ T5847] bpf_prog_56079403e473c493+0x70/0x76 [ 76.549150][ T5847] ? bpf_trace_run2+0x186/0x4b0 [ 76.549161][ T5847] ? __pfx___cant_migrate+0x10/0x10 [ 76.549174][ T5847] ? __bfs+0x151/0x2a0 [ 76.549188][ T5847] bpf_trace_run2+0x281/0x4b0 [ 76.549198][ T5847] ? __pfx_usage_match+0x10/0x10 [ 76.549210][ T5847] ? bpf_trace_run2+0x186/0x4b0 [ 76.549221][ T5847] ? __pfx_bpf_trace_run2+0x10/0x10 [ 76.549233][ T5847] ? __bpf_trace_tlb_flush+0xe0/0x150 [ 76.549246][ T5847] __bpf_trace_tlb_flush+0xf5/0x150 [ 76.549259][ T5847] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 76.549272][ T5847] ? __lock_acquire+0xab9/0xd20 [ 76.549286][ T5847] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 76.549298][ T5847] __traceiter_tlb_flush+0x76/0xd0 [ 76.549311][ T5847] trace_tlb_flush+0x115/0x140 [ 76.549322][ T5847] switch_mm_irqs_off+0x53e/0x7a0 [ 76.549333][ T5847] ? __pfx_switch_mm_irqs_off+0x10/0x10 [ 76.549343][ T5847] ? psi_task_switch+0x4e3/0x880 [ 76.549353][ T5847] __schedule+0x109d/0x4d30 [ 76.549365][ T5847] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 76.549376][ T5847] ? arch_stack_walk+0xfc/0x150 [ 76.549387][ T5847] ? preempt_schedule_irq+0xb5/0x150 [ 76.549399][ T5847] ? __pfx___schedule+0x10/0x10 [ 76.549410][ T5847] ? check_path+0x21/0x40 [ 76.549418][ T5847] ? check_noncircular+0xe0/0x160 [ 76.549428][ T5847] ? preempt_schedule_irq+0xaa/0x150 [ 76.549440][ T5847] preempt_schedule_irq+0xb5/0x150 [ 76.549451][ T5847] ? __pfx_preempt_schedule_irq+0x10/0x10 [ 76.549464][ T5847] ? rcu_irq_exit_check_preempt+0xdf/0x210 [ 76.549477][ T5847] irqentry_exit+0x6f/0x90 [ 76.549489][ T5847] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 76.549498][ T5847] RIP: 0010:lock_acquire+0x175/0x360 [ 76.549511][ T5847] Code: 00 00 00 00 9c 8f 44 24 30 f7 44 24 30 00 02 00 00 0f 85 cd 00 00 00 f7 44 24 08 00 02 00 00 74 01 fb 65 48 8b 05 cb 8e fc 10 <48> 3b 44 24 58 0f 85 f2 00 00 00 48 83 c4 60 5b 41 5c 41 5d 41 5e [ 76.549524][ T5847] RSP: 0018:ffffc90003d4fa68 EFLAGS: 00000206 [ 76.549532][ T5847] RAX: e3643158a89e2500 RBX: 0000000000000000 RCX: e3643158a89e2500 [ 76.549539][ T5847] RDX: 0000000000030000 RSI: ffffffff8db65e8b RDI: ffffffff8be30a00 [ 76.549546][ T5847] RBP: ffffffff8215895d R08: ffffc90003d4f888 R09: 0000000000000020 [ 76.549552][ T5847] R10: 00000000b2b5dd6f R11: ffffffff819de180 R12: 0000000000000000 [ 76.549558][ T5847] R13: ffffffff8e255260 R14: 0000000000000001 R15: 0000000000000246 [ 76.549565][ T5847] ? fs_reclaim_acquire+0x7d/0x100 [ 76.549574][ T5847] ? __pfx_hlock_conflict+0x10/0x10 [ 76.549586][ T5847] ? fs_reclaim_acquire+0x7d/0x100 [ 76.549596][ T5847] fs_reclaim_acquire+0x99/0x100 [ 76.549604][ T5847] ? fs_reclaim_acquire+0x7d/0x100 [ 76.549613][ T5847] kmem_cache_alloc_lru_noprof+0x49/0x3d0 [ 76.549625][ T5847] ? __d_alloc+0x36/0x7a0 [ 76.549635][ T5847] __d_alloc+0x36/0x7a0 [ 76.549646][ T5847] d_alloc_pseudo+0x21/0xc0 [ 76.549656][ T5847] alloc_file_pseudo+0xcc/0x210 [ 76.549665][ T5847] ? do_raw_spin_unlock+0x122/0x240 [ 76.549675][ T5847] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 76.549684][ T5847] ? _raw_spin_unlock+0x28/0x50 [ 76.549697][ T5847] anon_inode_getfd+0xca/0x1b0 [ 76.549707][ T5847] bpf_enable_stats+0xdc/0x140 [ 76.549720][ T5847] __sys_bpf+0x325/0x870 [ 76.549731][ T5847] ? __pfx___sys_bpf+0x10/0x10 [ 76.549746][ T5847] ? rcu_is_watching+0x15/0xb0 [ 76.549760][ T5847] __x64_sys_bpf+0x7c/0x90 [ 76.549770][ T5847] do_syscall_64+0xfa/0x3b0 [ 76.549783][ T5847] ? lockdep_hardirqs_on+0x9c/0x150 [ 76.549798][ T5847] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.549808][ T5847] ? clear_bhb_loop+0x60/0xb0 [ 76.549818][ T5847] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.549827][ T5847] RIP: 0033:0x7fe51845c8d9 [ 76.549835][ T5847] Code: Unable to access opcode bytes at 0x7fe51845c8af. [ 76.549839][ T5847] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 76.549849][ T5847] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 76.549855][ T5847] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 [ 76.549861][ T5847] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 [ 76.549866][ T5847] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 76.549871][ T5847] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 76.549880][ T5847] [pid 5847] bpf(BPF_ENABLE_STATS, NULL, 0 [pid 5855] <... setpgid resumed>) = 0 [ 78.052631][ T5847] CPU: 1 UID: 0 PID: 5847 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 78.052647][ T5847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 78.052654][ T5847] Call Trace: [ 78.052661][ T5847] [ 78.052667][ T5847] dump_stack_lvl+0x189/0x250 [ 78.052682][ T5847] ? __pfx____ratelimit+0x10/0x10 [ 78.052696][ T5847] ? __pfx_dump_stack_lvl+0x10/0x10 [ 78.052705][ T5847] ? __pfx__printk+0x10/0x10 [ 78.052716][ T5847] ? rcu_is_watching+0x15/0xb0 [ 78.052735][ T5847] ? bpf_bprintf_cleanup+0x9f/0xd0 [ 78.052749][ T5847] should_fail_ex+0x414/0x560 [ 78.052764][ T5847] strncpy_from_user+0x36/0x290 [ 78.052777][ T5847] ? strncpy_from_user+0x1bc/0x290 [ 78.052790][ T5847] strncpy_from_user_nofault+0x72/0x150 [ 78.052803][ T5847] bpf_probe_read_compat_str+0xe2/0x180 [ 78.052813][ T5847] bpf_prog_56079403e473c493+0x70/0x76 [ 78.052822][ T5847] ? bpf_trace_run2+0x186/0x4b0 [ 78.052834][ T5847] ? __pfx___cant_migrate+0x10/0x10 [ 78.052848][ T5847] ? __bfs+0x151/0x2a0 [ 78.052863][ T5847] bpf_trace_run2+0x281/0x4b0 [ 78.052873][ T5847] ? __pfx_usage_match+0x10/0x10 [ 78.052886][ T5847] ? bpf_trace_run2+0x186/0x4b0 [ 78.052897][ T5847] ? __pfx_bpf_trace_run2+0x10/0x10 [ 78.052909][ T5847] ? __bpf_trace_tlb_flush+0xe0/0x150 [ 78.052923][ T5847] __bpf_trace_tlb_flush+0xf5/0x150 [ 78.052937][ T5847] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 78.052950][ T5847] ? __lock_acquire+0xab9/0xd20 [ 78.052963][ T5847] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 78.052976][ T5847] __traceiter_tlb_flush+0x76/0xd0 [ 78.052989][ T5847] trace_tlb_flush+0x115/0x140 [ 78.053001][ T5847] switch_mm_irqs_off+0x53e/0x7a0 [ 78.053012][ T5847] ? __pfx_switch_mm_irqs_off+0x10/0x10 [ 78.053022][ T5847] ? psi_task_switch+0x4e3/0x880 [ 78.053032][ T5847] __schedule+0x109d/0x4d30 [ 78.053047][ T5847] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 78.053057][ T5847] ? arch_stack_walk+0xfc/0x150 [ 78.053068][ T5847] ? preempt_schedule_irq+0xb5/0x150 [ 78.053108][ T5847] ? __pfx___schedule+0x10/0x10 [ 78.053122][ T5847] ? check_path+0x21/0x40 [ 78.053130][ T5847] ? check_noncircular+0xe0/0x160 [ 78.053140][ T5847] ? preempt_schedule_irq+0xaa/0x150 [ 78.053152][ T5847] preempt_schedule_irq+0xb5/0x150 [ 78.053164][ T5847] ? __pfx_preempt_schedule_irq+0x10/0x10 [ 78.053177][ T5847] ? rcu_irq_exit_check_preempt+0xdf/0x210 [ 78.053191][ T5847] irqentry_exit+0x6f/0x90 [ 78.053203][ T5847] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 78.053214][ T5847] RIP: 0010:lock_acquire+0x175/0x360 [ 78.053227][ T5847] Code: 00 00 00 00 9c 8f 44 24 30 f7 44 24 30 00 02 00 00 0f 85 cd 00 00 00 f7 44 24 08 00 02 00 00 74 01 fb 65 48 8b 05 cb 8e fc 10 <48> 3b 44 24 58 0f 85 f2 00 00 00 48 83 c4 60 5b 41 5c 41 5d 41 5e [ 78.053235][ T5847] RSP: 0018:ffffc90003d4fa68 EFLAGS: 00000206 [ 78.053246][ T5847] RAX: e3643158a89e2500 RBX: 0000000000000000 RCX: e3643158a89e2500 [ 78.053254][ T5847] RDX: 0000000000030000 RSI: ffffffff8db65e8b RDI: ffffffff8be30a00 [ 78.053260][ T5847] RBP: ffffffff8215895d R08: ffffc90003d4f888 R09: 0000000000000020 [ 78.053267][ T5847] R10: 00000000b2b5dd6f R11: ffffffff819de180 R12: 0000000000000000 [ 78.053273][ T5847] R13: ffffffff8e255260 R14: 0000000000000001 R15: 0000000000000246 [ 78.053280][ T5847] ? fs_reclaim_acquire+0x7d/0x100 [ 78.053289][ T5847] ? __pfx_hlock_conflict+0x10/0x10 [ 78.053302][ T5847] ? fs_reclaim_acquire+0x7d/0x100 [ 78.053311][ T5847] fs_reclaim_acquire+0x99/0x100 [ 78.053320][ T5847] ? fs_reclaim_acquire+0x7d/0x100 [ 78.053328][ T5847] kmem_cache_alloc_lru_noprof+0x49/0x3d0 [ 78.053342][ T5847] ? __d_alloc+0x36/0x7a0 [ 78.053353][ T5847] __d_alloc+0x36/0x7a0 [ 78.053364][ T5847] d_alloc_pseudo+0x21/0xc0 [ 78.053374][ T5847] alloc_file_pseudo+0xcc/0x210 [ 78.053385][ T5847] ? do_raw_spin_unlock+0x122/0x240 [ 78.053396][ T5847] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 78.053405][ T5847] ? _raw_spin_unlock+0x28/0x50 [ 78.053418][ T5847] anon_inode_getfd+0xca/0x1b0 [ 78.053430][ T5847] bpf_enable_stats+0xdc/0x140 [ 78.053443][ T5847] __sys_bpf+0x325/0x870 [ 78.053455][ T5847] ? __pfx___sys_bpf+0x10/0x10 [ 78.053471][ T5847] ? rcu_is_watching+0x15/0xb0 [ 78.053485][ T5847] __x64_sys_bpf+0x7c/0x90 [ 78.053495][ T5847] do_syscall_64+0xfa/0x3b0 [ 78.053509][ T5847] ? lockdep_hardirqs_on+0x9c/0x150 [ 78.053520][ T5847] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 78.053529][ T5847] ? clear_bhb_loop+0x60/0xb0 [ 78.053539][ T5847] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 78.053547][ T5847] RIP: 0033:0x7fe51845c8d9 [ 78.053555][ T5847] Code: Unable to access opcode bytes at 0x7fe51845c8af. [ 78.053560][ T5847] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [pid 5853] close(3 [pid 5852] close(3 [pid 5850] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5855] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5852] <... close resumed>) = 0 [pid 5847] <... bpf resumed>) = 6 [pid 5855] <... openat resumed>) = 3 [pid 5853] <... close resumed>) = 0 [pid 5850] <... openat resumed>) = 5 [pid 5847] exit_group(0 executing program [pid 5855] write(3, "1000", 4 [pid 5852] write(1, "executing program\n", 18 [pid 5850] write(5, "5", 1 [pid 5847] <... exit_group resumed>) = ? executing program [pid 5855] <... write resumed>) = 4 [pid 5853] write(1, "executing program\n", 18 [pid 5852] <... write resumed>) = 18 [pid 5850] <... write resumed>) = 1 [pid 5855] close(3 [pid 5853] <... write resumed>) = 18 [pid 5855] <... close resumed>) = 0 [pid 5853] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5855] write(1, "executing program\n", 18 [pid 5853] <... bpf resumed>) = 3 [pid 5852] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5853] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16 [pid 5850] bpf(BPF_ENABLE_STATS, NULL, 0executing program [pid 5855] <... write resumed>) = 18 [ 78.053570][ T5847] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 78.053576][ T5847] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 [ 78.053581][ T5847] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 [ 78.053587][ T5847] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 78.053592][ T5847] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 78.053601][ T5847] [pid 5855] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5850] <... bpf resumed>) = -1 ENOMEM (Cannot allocate memory) [pid 5852] <... bpf resumed>) = 3 [pid 5850] exit_group(0) = ? [pid 5853] <... bpf resumed>) = 4 [pid 5852] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16 [pid 5847] +++ exited with 0 +++ [pid 5853] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5847, si_uid=0, si_status=0, si_utime=0, si_stime=50 /* 0.50 s */} --- [pid 5850] +++ exited with 0 +++ [pid 5848] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5850, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5848] restart_syscall(<... resuming interrupted clone ...> [pid 5853] <... openat resumed>) = 5 [pid 5852] <... bpf resumed>) = 4 [pid 5853] write(5, "5", 1 [pid 5852] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5853] <... write resumed>) = 1 [pid 5853] bpf(BPF_ENABLE_STATS, NULL, 0 [pid 5852] <... openat resumed>) = 5 [pid 5848] <... restart_syscall resumed>) = 0 [pid 5848] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555947c0650) = 5856 ./strace-static-x86_64: Process 5856 attached [pid 5855] <... bpf resumed>) = 3 [pid 5852] write(5, "5", 1 [pid 5856] set_robust_list(0x5555947c0660, 24 [pid 5855] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16 [pid 5856] <... set_robust_list resumed>) = 0 [pid 5855] <... bpf resumed>) = 4 [pid 5852] <... write resumed>) = 1 [ 78.568921][ T5850] FAULT_INJECTION: forcing a failure. [ 78.568921][ T5850] name failslab, interval 1, probability 0, space 0, times 1 [ 78.582516][ T5850] CPU: 1 UID: 0 PID: 5850 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 78.582540][ T5850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 78.582551][ T5850] Call Trace: [ 78.582557][ T5850] [ 78.582565][ T5850] dump_stack_lvl+0x189/0x250 [ 78.582586][ T5850] ? __pfx____ratelimit+0x10/0x10 [ 78.582606][ T5850] ? __pfx_dump_stack_lvl+0x10/0x10 [ 78.582622][ T5850] ? __pfx__printk+0x10/0x10 [ 78.582642][ T5850] ? fs_reclaim_acquire+0x7d/0x100 [ 78.582657][ T5850] ? __pfx___might_resched+0x10/0x10 [ 78.582679][ T5850] ? lock_acquire+0x5f/0x360 [ 78.582701][ T5850] should_fail_ex+0x414/0x560 [ 78.582727][ T5850] should_failslab+0xa8/0x100 [ 78.582742][ T5850] kmem_cache_alloc_lru_noprof+0x78/0x3d0 [ 78.582764][ T5850] ? __d_alloc+0x36/0x7a0 [ 78.582781][ T5850] ? trace_contention_end+0x39/0x120 [ 78.582798][ T5850] __d_alloc+0x36/0x7a0 [ 78.582817][ T5850] d_alloc_pseudo+0x21/0xc0 [ 78.582834][ T5850] alloc_file_pseudo+0xcc/0x210 [ 78.582849][ T5850] ? do_raw_spin_unlock+0x122/0x240 [ 78.582867][ T5850] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 78.582882][ T5850] ? _raw_spin_unlock+0x28/0x50 [ 78.582909][ T5850] anon_inode_getfd+0xca/0x1b0 [ 78.582925][ T5850] bpf_enable_stats+0xdc/0x140 [ 78.582944][ T5850] __sys_bpf+0x325/0x870 [ 78.582961][ T5850] ? __pfx___sys_bpf+0x10/0x10 [ 78.582983][ T5850] ? rcu_is_watching+0x15/0xb0 [ 78.583004][ T5850] __x64_sys_bpf+0x7c/0x90 [ 78.583019][ T5850] do_syscall_64+0xfa/0x3b0 [ 78.583037][ T5850] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 78.583050][ T5850] ? clear_bhb_loop+0x60/0xb0 [ 78.583064][ T5850] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 78.583076][ T5850] RIP: 0033:0x7fe51845c8d9 [ 78.583088][ T5850] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 78.583099][ T5850] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 78.583115][ T5850] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 78.583124][ T5850] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 [ 78.583132][ T5850] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 [ 78.583141][ T5850] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 78.583148][ T5850] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 78.583161][ T5850] [ 78.589611][ T5853] FAULT_INJECTION: forcing a failure. [ 78.589611][ T5853] name failslab, interval 1, probability 0, space 0, times 0 [ 78.616834][ T5852] FAULT_INJECTION: forcing a failure. [ 78.616834][ T5852] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 78.619608][ T5853] CPU: 0 UID: 0 PID: 5853 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 78.619631][ T5853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 78.619641][ T5853] Call Trace: [ 78.619658][ T5853] [ 78.619666][ T5853] dump_stack_lvl+0x189/0x250 [ 78.619688][ T5853] ? __pfx____ratelimit+0x10/0x10 [ 78.619710][ T5853] ? __pfx_dump_stack_lvl+0x10/0x10 [ 78.619725][ T5853] ? __pfx__printk+0x10/0x10 [ 78.619744][ T5853] ? fs_reclaim_acquire+0x7d/0x100 [ 78.619761][ T5853] ? __pfx___might_resched+0x10/0x10 [ 78.619783][ T5853] ? lock_acquire+0x5f/0x360 [ 78.619803][ T5853] should_fail_ex+0x414/0x560 [ 78.619828][ T5853] should_failslab+0xa8/0x100 [ 78.619844][ T5853] kmem_cache_alloc_noprof+0x73/0x3c0 [ 78.619865][ T5853] ? alloc_empty_file+0x55/0x1d0 [ 78.619884][ T5853] alloc_empty_file+0x55/0x1d0 [ 78.619900][ T5853] alloc_file_pseudo+0x13d/0x210 [ 78.619916][ T5853] ? do_raw_spin_unlock+0x122/0x240 [ 78.619934][ T5853] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 78.619950][ T5853] ? _raw_spin_unlock+0x28/0x50 [ 78.619976][ T5853] anon_inode_getfd+0xca/0x1b0 [ 78.619994][ T5853] bpf_enable_stats+0xdc/0x140 [ 78.620016][ T5853] __sys_bpf+0x325/0x870 [ 78.620037][ T5853] ? __pfx___sys_bpf+0x10/0x10 [ 78.620064][ T5853] ? rcu_is_watching+0x15/0xb0 [ 78.620089][ T5853] __x64_sys_bpf+0x7c/0x90 [ 78.620107][ T5853] do_syscall_64+0xfa/0x3b0 [ 78.620129][ T5853] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 78.620144][ T5853] ? clear_bhb_loop+0x60/0xb0 [ 78.620162][ T5853] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 78.620177][ T5853] RIP: 0033:0x7fe51845c8d9 [ 78.620191][ T5853] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 78.620204][ T5853] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 78.620223][ T5853] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 78.620235][ T5853] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 [ 78.620245][ T5853] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 [ 78.620255][ T5853] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 78.620265][ T5853] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 78.620281][ T5853] [ 79.090937][ T5852] CPU: 1 UID: 0 PID: 5852 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 79.090953][ T5852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 79.090959][ T5852] Call Trace: [ 79.090965][ T5852] [ 79.090972][ T5852] dump_stack_lvl+0x189/0x250 [ 79.090987][ T5852] ? __pfx____ratelimit+0x10/0x10 [ 79.091000][ T5852] ? __pfx_dump_stack_lvl+0x10/0x10 [ 79.091009][ T5852] ? __pfx__printk+0x10/0x10 [ 79.091021][ T5852] ? rcu_is_watching+0x15/0xb0 [ 79.091036][ T5852] ? bpf_bprintf_cleanup+0x9f/0xd0 [ 79.091049][ T5852] should_fail_ex+0x414/0x560 [ 79.091065][ T5852] strncpy_from_user+0x36/0x290 [ 79.091078][ T5852] strncpy_from_user_nofault+0x72/0x150 [ 79.091091][ T5852] bpf_probe_read_compat_str+0xe2/0x180 [ 79.091101][ T5852] bpf_prog_56079403e473c493+0x70/0x76 [ 79.091111][ T5852] ? bpf_trace_run2+0x186/0x4b0 [ 79.091122][ T5852] ? rcu_is_watching+0x15/0xb0 [ 79.091135][ T5852] ? __pfx___cant_migrate+0x10/0x10 [ 79.091148][ T5852] ? lock_acquire+0x5f/0x360 [ 79.091160][ T5852] ? rcu_is_watching+0x15/0xb0 [ 79.091173][ T5852] ? lock_release+0x4b/0x3e0 [ 79.091186][ T5852] bpf_trace_run2+0x281/0x4b0 [ 79.091197][ T5852] ? bpf_trace_run2+0x186/0x4b0 [ 79.091207][ T5852] ? __pfx_bpf_trace_run2+0x10/0x10 [ 79.091219][ T5852] ? do_raw_spin_lock+0xc1/0x290 [ 79.091228][ T5852] ? __bpf_trace_tlb_flush+0xe0/0x150 [ 79.091243][ T5852] __bpf_trace_tlb_flush+0xf5/0x150 [ 79.091257][ T5852] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 79.091271][ T5852] ? kvm_sched_clock_read+0x11/0x20 [ 79.091283][ T5852] ? sched_clock+0x3f/0x60 [ 79.091295][ T5852] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 79.091307][ T5852] __traceiter_tlb_flush+0x76/0xd0 [ 79.091321][ T5852] trace_tlb_flush+0x115/0x140 [ 79.091332][ T5852] switch_mm_irqs_off+0x53e/0x7a0 [ 79.091344][ T5852] ? __pfx_switch_mm_irqs_off+0x10/0x10 [ 79.091354][ T5852] ? psi_task_switch+0x4e3/0x880 [ 79.091364][ T5852] __schedule+0x109d/0x4d30 [ 79.091380][ T5852] ? do_raw_spin_lock+0x121/0x290 [ 79.091389][ T5852] ? schedule+0x165/0x360 [ 79.091400][ T5852] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 79.091409][ T5852] ? __pfx___schedule+0x10/0x10 [ 79.091421][ T5852] ? schedule+0x91/0x360 [ 79.091431][ T5852] ? rcu_is_watching+0x15/0xb0 [ 79.091444][ T5852] ? rcu_is_watching+0x15/0xb0 [ 79.091457][ T5852] ? lock_release+0x4b/0x3e0 [ 79.091468][ T5852] ? rcu_is_watching+0x15/0xb0 [ 79.091482][ T5852] schedule+0x165/0x360 [ 79.091493][ T5852] ptrace_stop+0x575/0x940 [ 79.091507][ T5852] ptrace_notify+0x20f/0x2c0 [ 79.091521][ T5852] ? __pfx_ptrace_notify+0x10/0x10 [ 79.091534][ T5852] ? rcu_is_watching+0x15/0xb0 [ 79.091548][ T5852] syscall_trace_enter+0x60/0x160 [ 79.091562][ T5852] do_syscall_64+0xd3/0x3b0 [ 79.091575][ T5852] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 79.091584][ T5852] ? clear_bhb_loop+0x60/0xb0 [ 79.091594][ T5852] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 79.091603][ T5852] RIP: 0033:0x7fe51845c8d9 [ 79.091612][ T5852] Code: Unable to access opcode bytes at 0x7fe51845c8af. [ 79.091617][ T5852] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 79.091630][ T5852] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 79.091637][ T5852] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 [ 79.091643][ T5852] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 [pid 5856] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5855] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5853] <... bpf resumed>) = -1 ENOMEM (Cannot allocate memory) [pid 5852] bpf(BPF_ENABLE_STATS, NULL, 0 [pid 5856] <... prctl resumed>) = 0 [pid 5855] <... openat resumed>) = 5 [pid 5853] exit_group(0 [pid 5852] <... bpf resumed>) = 6 [pid 5856] setpgid(0, 0 [pid 5855] write(5, "5", 1 [pid 5853] <... exit_group resumed>) = ? [pid 5852] exit_group(0 [pid 5856] <... setpgid resumed>) = 0 [pid 5855] <... write resumed>) = 1 [ 79.091648][ T5852] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 79.091654][ T5852] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 79.091663][ T5852] [ 79.452228][ T5855] FAULT_INJECTION: forcing a failure. [ 79.452228][ T5855] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 79.465382][ T5855] CPU: 1 UID: 0 PID: 5855 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 79.465399][ T5855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 79.465406][ T5855] Call Trace: [ 79.465413][ T5855] [ 79.465418][ T5855] dump_stack_lvl+0x189/0x250 [ 79.465436][ T5855] ? __pfx____ratelimit+0x10/0x10 [ 79.465450][ T5855] ? __pfx_dump_stack_lvl+0x10/0x10 [ 79.465459][ T5855] ? __pfx__printk+0x10/0x10 [ 79.465470][ T5855] ? bpf_trace_printk+0xc1/0x190 [ 79.465481][ T5855] should_fail_ex+0x414/0x560 [ 79.465497][ T5855] strncpy_from_user+0x36/0x290 [ 79.465511][ T5855] strncpy_from_user_nofault+0x72/0x150 [ 79.465524][ T5855] bpf_probe_read_compat_str+0xe2/0x180 [ 79.465534][ T5855] bpf_prog_56079403e473c493+0x70/0x76 [ 79.465543][ T5855] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 79.465554][ T5855] ? seqcount_lockdep_reader_access+0x175/0x1c0 [ 79.465565][ T5855] ? bpf_trace_run2+0x186/0x4b0 [ 79.465575][ T5855] ? rcu_is_watching+0x15/0xb0 [ 79.465589][ T5855] ? __pfx___cant_migrate+0x10/0x10 [ 79.465603][ T5855] ? lock_acquire+0x5f/0x360 [ 79.465615][ T5855] ? rcu_is_watching+0x15/0xb0 [ 79.465628][ T5855] ? lock_release+0x4b/0x3e0 [ 79.465640][ T5855] ? kvm_sched_clock_read+0x11/0x20 [ 79.465652][ T5855] ? sched_clock+0x3f/0x60 [ 79.465664][ T5855] bpf_trace_run2+0x3ff/0x4b0 [ 79.465675][ T5855] ? bpf_trace_run2+0x186/0x4b0 [ 79.465686][ T5855] ? __pfx_bpf_trace_run2+0x10/0x10 [ 79.465696][ T5855] ? unwind_next_frame+0xa5/0x2390 [ 79.465706][ T5855] ? __bpf_trace_tlb_flush+0xe0/0x150 [ 79.465720][ T5855] __bpf_trace_tlb_flush+0xf5/0x150 [ 79.465733][ T5855] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 79.465754][ T5855] ? kvm_sched_clock_read+0x11/0x20 [ 79.465765][ T5855] ? sched_clock+0x3f/0x60 [ 79.465776][ T5855] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 79.465788][ T5855] __traceiter_tlb_flush+0x76/0xd0 [ 79.465801][ T5855] trace_tlb_flush+0x115/0x140 [ 79.465813][ T5855] switch_mm_irqs_off+0x53e/0x7a0 [ 79.465824][ T5855] ? __pfx_switch_mm_irqs_off+0x10/0x10 [ 79.465835][ T5855] ? psi_task_switch+0x4e3/0x880 [ 79.465845][ T5855] __schedule+0x109d/0x4d30 [ 79.465861][ T5855] ? do_raw_spin_lock+0x121/0x290 [ 79.465871][ T5855] ? schedule+0x165/0x360 [ 79.465882][ T5855] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 79.465892][ T5855] ? __pfx___schedule+0x10/0x10 [ 79.465904][ T5855] ? schedule+0x91/0x360 [ 79.465914][ T5855] ? rcu_is_watching+0x15/0xb0 [ 79.465927][ T5855] ? rcu_is_watching+0x15/0xb0 [ 79.465940][ T5855] ? lock_release+0x4b/0x3e0 [ 79.465951][ T5855] ? rcu_is_watching+0x15/0xb0 [ 79.465965][ T5855] schedule+0x165/0x360 [ 79.465976][ T5855] ptrace_stop+0x575/0x940 [ 79.465991][ T5855] ptrace_notify+0x20f/0x2c0 [ 79.466004][ T5855] ? __pfx_ptrace_notify+0x10/0x10 [ 79.466018][ T5855] ? rcu_is_watching+0x15/0xb0 [ 79.466032][ T5855] syscall_trace_enter+0x60/0x160 [ 79.466045][ T5855] do_syscall_64+0xd3/0x3b0 [ 79.466058][ T5855] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 79.466067][ T5855] ? clear_bhb_loop+0x60/0xb0 [ 79.466078][ T5855] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 79.466087][ T5855] RIP: 0033:0x7fe51845c8d9 [ 79.466096][ T5855] Code: Unable to access opcode bytes at 0x7fe51845c8af. [ 79.466101][ T5855] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 79.466114][ T5855] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 79.466121][ T5855] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 [ 79.466127][ T5855] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 [ 79.466133][ T5855] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [pid 5852] <... exit_group resumed>) = ? [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5856] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5855] bpf(BPF_ENABLE_STATS, NULL, 0 [pid 5853] +++ exited with 0 +++ ./strace-static-x86_64: Process 5857 attached [pid 5857] set_robust_list(0x5555947c0660, 24 [pid 5846] <... clone resumed>, child_tidptr=0x5555947c0650) = 5857 [pid 5857] <... set_robust_list resumed>) = 0 [pid 5857] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5856] <... openat resumed>) = 3 [pid 5857] <... prctl resumed>) = 0 [pid 5857] setpgid(0, 0) = 0 [pid 5856] write(3, "1000", 4 [pid 5851] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5853, si_uid=0, si_status=0, si_utime=0, si_stime=37 /* 0.37 s */} --- [pid 5857] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5856] <... write resumed>) = 4 [pid 5856] close(3 [pid 5857] <... openat resumed>) = 3 [pid 5856] <... close resumed>) = 0 executing program executing program [pid 5856] write(1, "executing program\n", 18 [pid 5851] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5856] <... write resumed>) = 18 [pid 5857] write(3, "1000", 4) = 4 [pid 5857] close(3) = 0 [pid 5857] write(1, "executing program\n", 18) = 18 [pid 5857] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5856] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148) = 3 [pid 5851] <... clone resumed>, child_tidptr=0x5555947c0650) = 5858 [pid 5856] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16./strace-static-x86_64: Process 5858 attached [pid 5858] set_robust_list(0x5555947c0660, 24 [pid 5857] <... bpf resumed>) = 3 [pid 5856] <... bpf resumed>) = 4 [pid 5855] <... bpf resumed>) = 6 [pid 5852] +++ exited with 0 +++ [pid 5856] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5855] exit_group(0 [pid 5858] <... set_robust_list resumed>) = 0 [pid 5856] <... openat resumed>) = 5 [pid 5855] <... exit_group resumed>) = ? [pid 5856] write(5, "5", 1 [pid 5858] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5858] setpgid(0, 0) = 0 [pid 5858] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5858] write(3, "1000", 4) = 4 [pid 5858] close(3) = 0 executing program [pid 5858] write(1, "executing program\n", 18) = 18 [ 79.466138][ T5855] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 79.466147][ T5855] [pid 5858] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5856] <... write resumed>) = 1 [pid 5855] +++ exited with 0 +++ [pid 5856] bpf(BPF_ENABLE_STATS, NULL, 0 [pid 5849] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5852, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} --- [pid 5854] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5855, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5858] <... bpf resumed>) = 3 [pid 5858] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16 [pid 5857] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16 [pid 5854] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5854] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5858] <... bpf resumed>) = 4 [pid 5856] <... bpf resumed>) = -1 ENOMEM (Cannot allocate memory) ./strace-static-x86_64: Process 5859 attached [pid 5858] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5857] <... bpf resumed>) = 4 [pid 5856] exit_group(0 [pid 5859] set_robust_list(0x5555947c0660, 24 [pid 5854] <... clone resumed>, child_tidptr=0x5555947c0650) = 5859 [pid 5858] <... openat resumed>) = 5 [pid 5857] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5856] <... exit_group resumed>) = ? [pid 5859] <... set_robust_list resumed>) = 0 [pid 5858] write(5, "5", 1 [pid 5857] <... openat resumed>) = 5 [pid 5859] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5858] <... write resumed>) = 1 [pid 5857] write(5, "5", 1 [pid 5856] +++ exited with 0 +++ [pid 5849] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5859] <... prctl resumed>) = 0 [ 79.871373][ T5856] FAULT_INJECTION: forcing a failure. [ 79.871373][ T5856] name failslab, interval 1, probability 0, space 0, times 0 [ 79.884535][ T5856] CPU: 1 UID: 0 PID: 5856 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 79.884560][ T5856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 79.884569][ T5856] Call Trace: [ 79.884576][ T5856] [ 79.884582][ T5856] dump_stack_lvl+0x189/0x250 [ 79.884604][ T5856] ? __pfx____ratelimit+0x10/0x10 [ 79.884624][ T5856] ? __pfx_dump_stack_lvl+0x10/0x10 [ 79.884638][ T5856] ? __pfx__printk+0x10/0x10 [ 79.884655][ T5856] ? __pfx___might_resched+0x10/0x10 [ 79.884677][ T5856] ? lock_acquire+0x5f/0x360 [ 79.884698][ T5856] should_fail_ex+0x414/0x560 [ 79.884724][ T5856] should_failslab+0xa8/0x100 [ 79.884739][ T5856] kmem_cache_alloc_noprof+0x73/0x3c0 [ 79.884760][ T5856] ? security_file_alloc+0x34/0x330 [ 79.884775][ T5856] ? alloc_empty_file+0x55/0x1d0 [ 79.884795][ T5856] security_file_alloc+0x34/0x330 [ 79.884812][ T5856] init_file+0x93/0x2f0 [ 79.884828][ T5856] alloc_empty_file+0x6e/0x1d0 [ 79.884844][ T5856] alloc_file_pseudo+0x13d/0x210 [ 79.884860][ T5856] ? do_raw_spin_unlock+0x122/0x240 [ 79.884879][ T5856] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 79.884894][ T5856] ? _raw_spin_unlock+0x28/0x50 [ 79.884918][ T5856] anon_inode_getfd+0xca/0x1b0 [ 79.884938][ T5856] bpf_enable_stats+0xdc/0x140 [ 79.884961][ T5856] __sys_bpf+0x325/0x870 [ 79.884979][ T5856] ? __pfx___sys_bpf+0x10/0x10 [ 79.885005][ T5856] ? __pfx_ksys_write+0x10/0x10 [ 79.885026][ T5856] __x64_sys_bpf+0x7c/0x90 [ 79.885043][ T5856] do_syscall_64+0xfa/0x3b0 [ 79.885065][ T5856] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 79.885078][ T5856] ? clear_bhb_loop+0x60/0xb0 [ 79.885095][ T5856] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 79.885122][ T5856] RIP: 0033:0x7fe51845c8d9 [ 79.885137][ T5856] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 79.885150][ T5856] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 79.885169][ T5856] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 79.885181][ T5856] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 [ 79.885191][ T5856] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 [pid 5848] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5856, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} --- [pid 5858] bpf(BPF_ENABLE_STATS, NULL, 0 [pid 5857] <... write resumed>) = 1 [pid 5859] setpgid(0, 0./strace-static-x86_64: Process 5860 attached ) = 0 [pid 5857] bpf(BPF_ENABLE_STATS, NULL, 0 [ 79.885200][ T5856] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 79.885210][ T5856] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 79.885226][ T5856] [ 80.143747][ T5858] FAULT_INJECTION: forcing a failure. [ 80.143747][ T5858] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 80.157496][ T5858] CPU: 0 UID: 0 PID: 5858 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 80.157533][ T5858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 80.157543][ T5858] Call Trace: [ 80.157550][ T5858] [ 80.157555][ T5858] dump_stack_lvl+0x189/0x250 [ 80.157575][ T5858] ? __pfx____ratelimit+0x10/0x10 [ 80.157595][ T5858] ? __pfx_dump_stack_lvl+0x10/0x10 [ 80.157610][ T5858] ? __pfx__printk+0x10/0x10 [ 80.157627][ T5858] ? __might_fault+0xb0/0x130 [ 80.157651][ T5858] ? rcu_is_watching+0x15/0xb0 [ 80.157674][ T5858] should_fail_ex+0x414/0x560 [ 80.157700][ T5858] _copy_from_user+0x2d/0xb0 [ 80.157721][ T5858] __sys_bpf+0x1ed/0x870 [ 80.157742][ T5858] ? __pfx___sys_bpf+0x10/0x10 [ 80.157768][ T5858] ? rcu_is_watching+0x15/0xb0 [ 80.157791][ T5858] __x64_sys_bpf+0x7c/0x90 [ 80.157810][ T5858] do_syscall_64+0xfa/0x3b0 [ 80.157833][ T5858] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 80.157849][ T5858] ? clear_bhb_loop+0x60/0xb0 [ 80.157867][ T5858] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 80.157883][ T5858] RIP: 0033:0x7fe51845c8d9 [ 80.157898][ T5858] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 80.157912][ T5858] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 80.157931][ T5858] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 80.157943][ T5858] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 [ 80.157952][ T5858] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 [ 80.157963][ T5858] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 80.157972][ T5858] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 80.157988][ T5858] [ 80.335777][ T5857] FAULT_INJECTION: forcing a failure. [ 80.335777][ T5857] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 80.357066][ T5857] CPU: 1 UID: 0 PID: 5857 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 80.357084][ T5857] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 80.357091][ T5857] Call Trace: [ 80.357098][ T5857] [ 80.357105][ T5857] dump_stack_lvl+0x189/0x250 [ 80.357121][ T5857] ? __pfx____ratelimit+0x10/0x10 [ 80.357134][ T5857] ? __pfx_dump_stack_lvl+0x10/0x10 [ 80.357143][ T5857] ? __pfx__printk+0x10/0x10 [ 80.357155][ T5857] ? bpf_trace_printk+0xc1/0x190 [ 80.357165][ T5857] should_fail_ex+0x414/0x560 [ 80.357181][ T5857] strncpy_from_user+0x36/0x290 [ 80.357195][ T5857] strncpy_from_user_nofault+0x72/0x150 [ 80.357207][ T5857] bpf_probe_read_compat_str+0xe2/0x180 [ 80.357217][ T5857] bpf_prog_56079403e473c493+0x70/0x76 [ 80.357227][ T5857] ? bpf_trace_run2+0x186/0x4b0 [ 80.357238][ T5857] ? rcu_is_watching+0x15/0xb0 [ 80.357252][ T5857] ? __pfx___cant_migrate+0x10/0x10 [ 80.357265][ T5857] ? lock_acquire+0x5f/0x360 [ 80.357277][ T5857] ? rcu_is_watching+0x15/0xb0 [ 80.357290][ T5857] ? lock_release+0x4b/0x3e0 [ 80.357302][ T5857] ? kvm_sched_clock_read+0x11/0x20 [ 80.357314][ T5857] ? sched_clock+0x3f/0x60 [ 80.357325][ T5857] bpf_trace_run2+0x3ff/0x4b0 [ 80.357336][ T5857] ? bpf_trace_run2+0x186/0x4b0 [ 80.357347][ T5857] ? __pfx_bpf_trace_run2+0x10/0x10 [ 80.357357][ T5857] ? __asan_memset+0x22/0x50 [ 80.357370][ T5857] ? __bpf_trace_tlb_flush+0xe0/0x150 [ 80.357384][ T5857] __bpf_trace_tlb_flush+0xf5/0x150 [ 80.357397][ T5857] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 80.357412][ T5857] ? kvm_sched_clock_read+0x11/0x20 [ 80.357423][ T5857] ? sched_clock+0x3f/0x60 [ 80.357434][ T5857] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 80.357447][ T5857] __traceiter_tlb_flush+0x76/0xd0 [ 80.357493][ T5857] trace_tlb_flush+0x115/0x140 [ 80.357505][ T5857] switch_mm_irqs_off+0x53e/0x7a0 [ 80.357516][ T5857] ? __pfx_switch_mm_irqs_off+0x10/0x10 [ 80.357526][ T5857] ? psi_task_switch+0x4e3/0x880 [ 80.357536][ T5857] __schedule+0x109d/0x4d30 [ 80.357551][ T5857] ? __pfx___switch_to+0x10/0x10 [ 80.357565][ T5857] ? schedule+0x165/0x360 [ 80.357576][ T5857] ? __pfx___schedule+0x10/0x10 [ 80.357588][ T5857] ? schedule+0x91/0x360 [ 80.357598][ T5857] ? rcu_is_watching+0x15/0xb0 [ 80.357612][ T5857] ? lock_release+0x4b/0x3e0 [ 80.357623][ T5857] ? _raw_spin_unlock_irqrestore+0xad/0x110 [ 80.357634][ T5857] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 80.357647][ T5857] schedule+0x165/0x360 [ 80.357658][ T5857] schedule_preempt_disabled+0x13/0x30 [ 80.357669][ T5857] __mutex_lock+0x7e3/0x1340 [ 80.357684][ T5857] ? __mutex_lock+0x5b6/0x1340 [ 80.357696][ T5857] ? bpf_enable_stats+0x94/0x140 [ 80.357711][ T5857] ? __pfx___mutex_lock+0x10/0x10 [ 80.357723][ T5857] ? rcu_is_watching+0x15/0xb0 [ 80.357737][ T5857] ? apparmor_capable+0x137/0x1b0 [ 80.357746][ T5857] ? bpf_lsm_capable+0x9/0x20 [ 80.357760][ T5857] bpf_enable_stats+0x94/0x140 [ 80.357773][ T5857] __sys_bpf+0x325/0x870 [ 80.357785][ T5857] ? __pfx___sys_bpf+0x10/0x10 [ 80.357801][ T5857] ? rcu_is_watching+0x15/0xb0 [ 80.357815][ T5857] __x64_sys_bpf+0x7c/0x90 [ 80.357825][ T5857] do_syscall_64+0xfa/0x3b0 [ 80.357839][ T5857] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 80.357847][ T5857] ? clear_bhb_loop+0x60/0xb0 [ 80.357857][ T5857] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 80.357866][ T5857] RIP: 0033:0x7fe51845c8d9 [ 80.357875][ T5857] Code: Unable to access opcode bytes at 0x7fe51845c8af. [ 80.357880][ T5857] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 80.357893][ T5857] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 80.357900][ T5857] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 [pid 5848] restart_syscall(<... resuming interrupted clone ...> [pid 5860] set_robust_list(0x5555947c0660, 24 [pid 5859] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5849] <... clone resumed>, child_tidptr=0x5555947c0650) = 5860 [pid 5848] <... restart_syscall resumed>) = 0 [pid 5848] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5860] <... set_robust_list resumed>) = 0 [pid 5859] <... openat resumed>) = 3 [pid 5860] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5859] write(3, "1000", 4 [pid 5858] <... bpf resumed>) = 6 ./strace-static-x86_64: Process 5862 attached [pid 5860] <... prctl resumed>) = 0 [pid 5859] <... write resumed>) = 4 [pid 5858] exit_group(0 [pid 5857] <... bpf resumed>) = 6 [pid 5860] setpgid(0, 0 [pid 5859] close(3 [pid 5858] <... exit_group resumed>) = ? [pid 5857] exit_group(0 [pid 5862] set_robust_list(0x5555947c0660, 24 [pid 5860] <... setpgid resumed>) = 0 [pid 5859] <... close resumed>) = 0 [pid 5858] +++ exited with 0 +++ [pid 5857] <... exit_group resumed>) = ? [pid 5848] <... clone resumed>, child_tidptr=0x5555947c0650) = 5862 [pid 5862] <... set_robust_list resumed>) = 0 [pid 5860] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC executing program [pid 5859] write(1, "executing program\n", 18 [pid 5857] +++ exited with 0 +++ [pid 5851] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5858, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} --- [pid 5862] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5860] <... openat resumed>) = 3 [pid 5859] <... write resumed>) = 18 [pid 5851] restart_syscall(<... resuming interrupted clone ...> [pid 5862] <... prctl resumed>) = 0 [pid 5860] write(3, "1000", 4 [pid 5859] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148executing program executing program [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5857, si_uid=0, si_status=0, si_utime=0, si_stime=17 /* 0.17 s */} --- [pid 5862] setpgid(0, 0 [pid 5860] <... write resumed>) = 4 [pid 5846] restart_syscall(<... resuming interrupted clone ...> [pid 5862] <... setpgid resumed>) = 0 [pid 5862] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5862] write(3, "1000", 4) = 4 [pid 5860] close(3 [pid 5862] close(3) = 0 [pid 5862] write(1, "executing program\n", 18) = 18 [pid 5862] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5860] <... close resumed>) = 0 [pid 5851] <... restart_syscall resumed>) = 0 [pid 5862] <... bpf resumed>) = 3 [pid 5862] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16 [pid 5860] write(1, "executing program\n", 18 [pid 5862] <... bpf resumed>) = 4 [pid 5860] <... write resumed>) = 18 [pid 5862] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 5 [pid 5860] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5862] write(5, "5", 1) = 1 [ 80.357906][ T5857] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 [ 80.357911][ T5857] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 80.357917][ T5857] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 80.357926][ T5857] [pid 5862] bpf(BPF_ENABLE_STATS, NULL, 0 [pid 5860] <... bpf resumed>) = 3 [pid 5859] <... bpf resumed>) = 3 [pid 5851] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555947c0650) = 5863 [pid 5846] <... restart_syscall resumed>) = 0 ./strace-static-x86_64: Process 5863 attached [pid 5862] <... bpf resumed>) = -1 ENOMEM (Cannot allocate memory) [pid 5860] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16 [pid 5859] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16 [pid 5863] set_robust_list(0x5555947c0660, 24) = 0 [pid 5863] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5863] setpgid(0, 0) = 0 [pid 5862] exit_group(0 [pid 5863] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXECexecuting program ) = 3 [pid 5862] <... exit_group resumed>) = ? [pid 5859] <... bpf resumed>) = 4 [pid 5863] write(3, "1000", 4) = 4 [pid 5863] close(3) = 0 [pid 5863] write(1, "executing program\n", 18) = 18 [pid 5863] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5862] +++ exited with 0 +++ [pid 5848] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5862, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [ 80.771904][ T5862] FAULT_INJECTION: forcing a failure. [ 80.771904][ T5862] name failslab, interval 1, probability 0, space 0, times 0 [ 80.785554][ T5862] CPU: 1 UID: 0 PID: 5862 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 80.785579][ T5862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 80.785589][ T5862] Call Trace: [ 80.785595][ T5862] [ 80.785602][ T5862] dump_stack_lvl+0x189/0x250 [ 80.785625][ T5862] ? __pfx____ratelimit+0x10/0x10 [ 80.785645][ T5862] ? __pfx_dump_stack_lvl+0x10/0x10 [ 80.785659][ T5862] ? __pfx__printk+0x10/0x10 [ 80.785678][ T5862] ? fs_reclaim_acquire+0x7d/0x100 [ 80.785693][ T5862] ? __pfx___might_resched+0x10/0x10 [ 80.785721][ T5862] ? lock_acquire+0x5f/0x360 [ 80.785742][ T5862] should_fail_ex+0x414/0x560 [ 80.785766][ T5862] should_failslab+0xa8/0x100 [ 80.785780][ T5862] kmem_cache_alloc_noprof+0x73/0x3c0 [ 80.785801][ T5862] ? alloc_empty_file+0x55/0x1d0 [ 80.785821][ T5862] alloc_empty_file+0x55/0x1d0 [ 80.785837][ T5862] alloc_file_pseudo+0x13d/0x210 [ 80.785853][ T5862] ? do_raw_spin_unlock+0x122/0x240 [ 80.785871][ T5862] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 80.785887][ T5862] ? _raw_spin_unlock+0x28/0x50 [ 80.785911][ T5862] anon_inode_getfd+0xca/0x1b0 [ 80.785929][ T5862] bpf_enable_stats+0xdc/0x140 [ 80.785951][ T5862] __sys_bpf+0x325/0x870 [ 80.785972][ T5862] ? __pfx___sys_bpf+0x10/0x10 [ 80.785998][ T5862] ? rcu_is_watching+0x15/0xb0 [ 80.786023][ T5862] __x64_sys_bpf+0x7c/0x90 [ 80.786041][ T5862] do_syscall_64+0xfa/0x3b0 [ 80.786061][ T5862] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 80.786074][ T5862] ? clear_bhb_loop+0x60/0xb0 [ 80.786089][ T5862] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 80.786101][ T5862] RIP: 0033:0x7fe51845c8d9 [ 80.786114][ T5862] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 80.786126][ T5862] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 80.786144][ T5862] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 80.786155][ T5862] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 [ 80.786164][ T5862] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5864 attached [pid 5863] <... bpf resumed>) = 3 [pid 5864] set_robust_list(0x5555947c0660, 24 [pid 5859] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5846] <... clone resumed>, child_tidptr=0x5555947c0650) = 5864 [pid 5863] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16 [pid 5859] <... openat resumed>) = 5 [pid 5864] <... set_robust_list resumed>) = 0 [pid 5859] write(5, "5", 1 [pid 5864] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5859] <... write resumed>) = 1 [pid 5864] setpgid(0, 0 [pid 5859] bpf(BPF_ENABLE_STATS, NULL, 0 [pid 5864] <... setpgid resumed>) = 0 [pid 5863] <... bpf resumed>) = 4 [pid 5860] <... bpf resumed>) = 4 [pid 5859] <... bpf resumed>) = -1 ENOMEM (Cannot allocate memory) [ 80.786172][ T5862] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 80.786180][ T5862] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 80.786194][ T5862] [ 81.047455][ T5859] FAULT_INJECTION: forcing a failure. [ 81.047455][ T5859] name failslab, interval 1, probability 0, space 0, times 0 [ 81.060632][ T5859] CPU: 1 UID: 0 PID: 5859 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 81.060656][ T5859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 81.060666][ T5859] Call Trace: [ 81.060672][ T5859] [ 81.060678][ T5859] dump_stack_lvl+0x189/0x250 [ 81.060699][ T5859] ? __pfx____ratelimit+0x10/0x10 [ 81.060718][ T5859] ? __pfx_dump_stack_lvl+0x10/0x10 [ 81.060731][ T5859] ? __pfx__printk+0x10/0x10 [ 81.060747][ T5859] ? fs_reclaim_acquire+0x7d/0x100 [ 81.060760][ T5859] ? __pfx___might_resched+0x10/0x10 [ 81.060779][ T5859] ? lock_acquire+0x5f/0x360 [ 81.060796][ T5859] should_fail_ex+0x414/0x560 [ 81.060817][ T5859] should_failslab+0xa8/0x100 [ 81.060830][ T5859] kmem_cache_alloc_noprof+0x73/0x3c0 [ 81.060847][ T5859] ? alloc_empty_file+0x55/0x1d0 [ 81.060863][ T5859] alloc_empty_file+0x55/0x1d0 [ 81.060877][ T5859] alloc_file_pseudo+0x13d/0x210 [ 81.060890][ T5859] ? do_raw_spin_unlock+0x122/0x240 [ 81.060905][ T5859] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 81.060918][ T5859] ? _raw_spin_unlock+0x28/0x50 [ 81.060938][ T5859] anon_inode_getfd+0xca/0x1b0 [ 81.060954][ T5859] bpf_enable_stats+0xdc/0x140 [ 81.060973][ T5859] __sys_bpf+0x325/0x870 [ 81.060990][ T5859] ? __pfx___sys_bpf+0x10/0x10 [ 81.061013][ T5859] ? rcu_is_watching+0x15/0xb0 [ 81.061034][ T5859] __x64_sys_bpf+0x7c/0x90 [ 81.061049][ T5859] do_syscall_64+0xfa/0x3b0 [ 81.061068][ T5859] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 81.061080][ T5859] ? clear_bhb_loop+0x60/0xb0 [ 81.061094][ T5859] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 81.061106][ T5859] RIP: 0033:0x7fe51845c8d9 [ 81.061119][ T5859] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 81.061129][ T5859] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 81.061146][ T5859] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 81.061156][ T5859] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 [pid 5864] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5863] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5860] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5863] <... openat resumed>) = 5 [pid 5848] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5864] <... openat resumed>) = 3 [pid 5863] write(5, "5", 1 [pid 5860] <... openat resumed>) = 5 [pid 5848] <... clone resumed>, child_tidptr=0x5555947c0650) = 5865 [pid 5863] <... write resumed>) = 1 [ 81.061164][ T5859] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 [ 81.061172][ T5859] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 81.061180][ T5859] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 81.061193][ T5859] [ 81.299881][ T5863] FAULT_INJECTION: forcing a failure. [ 81.299881][ T5863] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 81.313226][ T5863] CPU: 0 UID: 0 PID: 5863 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 81.313244][ T5863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 81.313250][ T5863] Call Trace: [ 81.313256][ T5863] [ 81.313263][ T5863] dump_stack_lvl+0x189/0x250 [ 81.313279][ T5863] ? __pfx____ratelimit+0x10/0x10 [ 81.313292][ T5863] ? __pfx_dump_stack_lvl+0x10/0x10 [ 81.313301][ T5863] ? __pfx__printk+0x10/0x10 [ 81.313312][ T5863] ? bpf_trace_printk+0xc1/0x190 [ 81.313342][ T5863] should_fail_ex+0x414/0x560 [ 81.313358][ T5863] strncpy_from_user+0x36/0x290 [ 81.313371][ T5863] strncpy_from_user_nofault+0x72/0x150 [ 81.313384][ T5863] bpf_probe_read_compat_str+0xe2/0x180 [ 81.313393][ T5863] bpf_prog_56079403e473c493+0x70/0x76 [ 81.313402][ T5863] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 81.313414][ T5863] ? seqcount_lockdep_reader_access+0x175/0x1c0 [ 81.313425][ T5863] ? bpf_trace_run2+0x186/0x4b0 [ 81.313435][ T5863] ? rcu_is_watching+0x15/0xb0 [ 81.313449][ T5863] ? __pfx___cant_migrate+0x10/0x10 [ 81.313462][ T5863] ? lock_acquire+0x5f/0x360 [ 81.313475][ T5863] ? rcu_is_watching+0x15/0xb0 [ 81.313487][ T5863] ? lock_release+0x4b/0x3e0 [ 81.313500][ T5863] bpf_trace_run2+0x281/0x4b0 [ 81.313511][ T5863] ? bpf_trace_run2+0x186/0x4b0 [ 81.313522][ T5863] ? __pfx_bpf_trace_run2+0x10/0x10 [ 81.313534][ T5863] ? __bpf_trace_tlb_flush+0xe0/0x150 [ 81.313548][ T5863] __bpf_trace_tlb_flush+0xf5/0x150 [ 81.313561][ T5863] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 81.313576][ T5863] ? kvm_sched_clock_read+0x11/0x20 [ 81.313588][ T5863] ? sched_clock+0x3f/0x60 [ 81.313600][ T5863] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 81.313612][ T5863] __traceiter_tlb_flush+0x76/0xd0 [ 81.313626][ T5863] trace_tlb_flush+0x115/0x140 [ 81.313637][ T5863] switch_mm_irqs_off+0x53e/0x7a0 [ 81.313649][ T5863] ? __pfx_switch_mm_irqs_off+0x10/0x10 [ 81.313659][ T5863] ? psi_task_switch+0x4e3/0x880 [ 81.313669][ T5863] __schedule+0x109d/0x4d30 [ 81.313685][ T5863] ? do_raw_spin_lock+0x121/0x290 [ 81.313695][ T5863] ? schedule+0x165/0x360 [ 81.313706][ T5863] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 81.313716][ T5863] ? __pfx___schedule+0x10/0x10 [ 81.313728][ T5863] ? schedule+0x91/0x360 [ 81.313738][ T5863] ? rcu_is_watching+0x15/0xb0 [ 81.313751][ T5863] ? rcu_is_watching+0x15/0xb0 [ 81.313763][ T5863] ? lock_release+0x4b/0x3e0 [ 81.313774][ T5863] ? rcu_is_watching+0x15/0xb0 [ 81.313788][ T5863] schedule+0x165/0x360 [ 81.313800][ T5863] ptrace_stop+0x575/0x940 [ 81.313814][ T5863] ptrace_notify+0x20f/0x2c0 [ 81.313827][ T5863] ? __pfx_ptrace_notify+0x10/0x10 [ 81.313840][ T5863] ? rcu_is_watching+0x15/0xb0 [ 81.313854][ T5863] syscall_trace_enter+0x60/0x160 [ 81.313868][ T5863] do_syscall_64+0xd3/0x3b0 [ 81.313881][ T5863] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 81.313890][ T5863] ? clear_bhb_loop+0x60/0xb0 [ 81.313900][ T5863] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 81.313909][ T5863] RIP: 0033:0x7fe51845c8d9 [ 81.313917][ T5863] Code: Unable to access opcode bytes at 0x7fe51845c8af. [ 81.313922][ T5863] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 81.313935][ T5863] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 81.313942][ T5863] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 [ 81.313948][ T5863] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 [ 81.313954][ T5863] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 81.313959][ T5863] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 81.313968][ T5863] [ 81.671644][ T5860] FAULT_INJECTION: forcing a failure. [ 81.671644][ T5860] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 81.684718][ T5860] CPU: 1 UID: 0 PID: 5860 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 81.684740][ T5860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 81.684748][ T5860] Call Trace: [ 81.684754][ T5860] [ 81.684760][ T5860] dump_stack_lvl+0x189/0x250 [ 81.684779][ T5860] ? __pfx____ratelimit+0x10/0x10 [ 81.684797][ T5860] ? __pfx_dump_stack_lvl+0x10/0x10 [ 81.684809][ T5860] ? __pfx__printk+0x10/0x10 [ 81.684825][ T5860] ? bpf_trace_printk+0xc1/0x190 [ 81.684839][ T5860] should_fail_ex+0x414/0x560 [ 81.684860][ T5860] strncpy_from_user+0x36/0x290 [ 81.684880][ T5860] strncpy_from_user_nofault+0x72/0x150 [ 81.684897][ T5860] bpf_probe_read_compat_str+0xe2/0x180 [ 81.684910][ T5860] bpf_prog_56079403e473c493+0x70/0x76 [ 81.684921][ T5860] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 81.684936][ T5860] ? seqcount_lockdep_reader_access+0x175/0x1c0 [ 81.684952][ T5860] ? bpf_trace_run2+0x186/0x4b0 [ 81.684966][ T5860] ? rcu_is_watching+0x15/0xb0 [ 81.684984][ T5860] ? __pfx___cant_migrate+0x10/0x10 [ 81.685002][ T5860] ? lock_acquire+0x5f/0x360 [ 81.685019][ T5860] ? rcu_is_watching+0x15/0xb0 [ 81.685037][ T5860] ? lock_release+0x4b/0x3e0 [ 81.685055][ T5860] bpf_trace_run2+0x281/0x4b0 [ 81.685070][ T5860] ? bpf_trace_run2+0x186/0x4b0 [ 81.685085][ T5860] ? __pfx_bpf_trace_run2+0x10/0x10 [ 81.685101][ T5860] ? __bpf_trace_tlb_flush+0xe0/0x150 [ 81.685121][ T5860] __bpf_trace_tlb_flush+0xf5/0x150 [ 81.685140][ T5860] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 81.685161][ T5860] ? kvm_sched_clock_read+0x11/0x20 [ 81.685177][ T5860] ? sched_clock+0x3f/0x60 [ 81.685193][ T5860] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 81.685211][ T5860] __traceiter_tlb_flush+0x76/0xd0 [ 81.685229][ T5860] trace_tlb_flush+0x115/0x140 [ 81.685245][ T5860] switch_mm_irqs_off+0x53e/0x7a0 [ 81.685262][ T5860] ? __pfx_switch_mm_irqs_off+0x10/0x10 [ 81.685276][ T5860] ? psi_task_switch+0x4e3/0x880 [ 81.685290][ T5860] __schedule+0x109d/0x4d30 [ 81.685313][ T5860] ? do_raw_spin_lock+0x121/0x290 [ 81.685326][ T5860] ? schedule+0x165/0x360 [ 81.685346][ T5860] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 81.685360][ T5860] ? __pfx___schedule+0x10/0x10 [ 81.685376][ T5860] ? schedule+0x91/0x360 [ 81.685390][ T5860] ? rcu_is_watching+0x15/0xb0 [ 81.685409][ T5860] ? rcu_is_watching+0x15/0xb0 [ 81.685428][ T5860] ? lock_release+0x4b/0x3e0 [ 81.685443][ T5860] ? rcu_is_watching+0x15/0xb0 [ 81.685463][ T5860] schedule+0x165/0x360 [ 81.685479][ T5860] ptrace_stop+0x575/0x940 [ 81.685499][ T5860] ptrace_notify+0x20f/0x2c0 [ 81.685517][ T5860] ? __pfx_ptrace_notify+0x10/0x10 [ 81.685536][ T5860] ? rcu_is_watching+0x15/0xb0 [ 81.685556][ T5860] syscall_trace_enter+0x60/0x160 [ 81.685575][ T5860] do_syscall_64+0xd3/0x3b0 [ 81.685594][ T5860] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 81.685607][ T5860] ? clear_bhb_loop+0x60/0xb0 [ 81.685620][ T5860] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 81.685633][ T5860] RIP: 0033:0x7fe51845c8d9 [ 81.685643][ T5860] Code: Unable to access opcode bytes at 0x7fe51845c8af. [ 81.685650][ T5860] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 81.685667][ T5860] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 81.685676][ T5860] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 [ 81.685684][ T5860] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 [ 81.685692][ T5860] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 ./strace-static-x86_64: Process 5865 attached [pid 5864] write(3, "1000", 4 [pid 5863] bpf(BPF_ENABLE_STATS, NULL, 0 [pid 5860] write(5, "5", 1 [pid 5859] exit_group(0 [pid 5864] <... write resumed>) = 4 [pid 5860] <... write resumed>) = 1 [pid 5859] <... exit_group resumed>) = ? [pid 5865] set_robust_list(0x5555947c0660, 24 [pid 5864] close(3 [pid 5863] <... bpf resumed>) = 6 [pid 5860] bpf(BPF_ENABLE_STATS, NULL, 0 [pid 5865] <... set_robust_list resumed>) = 0 [ 81.685700][ T5860] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 81.685713][ T5860] executing program [pid 5864] <... close resumed>) = 0 [pid 5863] exit_group(0 [pid 5860] <... bpf resumed>) = 6 [pid 5865] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5864] write(1, "executing program\n", 18 [pid 5863] <... exit_group resumed>) = ? [pid 5860] exit_group(0 [pid 5865] <... prctl resumed>) = 0 [pid 5864] <... write resumed>) = 18 [pid 5863] +++ exited with 0 +++ [pid 5860] <... exit_group resumed>) = ? [pid 5865] setpgid(0, 0 [pid 5864] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5860] +++ exited with 0 +++ [pid 5851] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5863, si_uid=0, si_status=0, si_utime=0, si_stime=36 /* 0.36 s */} --- [pid 5865] <... setpgid resumed>) = 0 [pid 5864] <... bpf resumed>) = 3 [pid 5865] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5864] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16 [pid 5849] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5860, si_uid=0, si_status=0, si_utime=0, si_stime=26 /* 0.26 s */} --- [pid 5865] <... openat resumed>) = 3 [pid 5864] <... bpf resumed>) = 4 [pid 5849] restart_syscall(<... resuming interrupted clone ...> [pid 5865] write(3, "1000", 4 [pid 5864] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5865] <... write resumed>) = 4 [pid 5864] <... openat resumed>) = 5 [pid 5865] close(3 [pid 5864] write(5, "5", 1 [pid 5865] <... close resumed>) = 0 [pid 5864] <... write resumed>) = 1 [pid 5865] write(1, "executing program\n", 18executing program [pid 5864] bpf(BPF_ENABLE_STATS, NULL, 0 [pid 5849] <... restart_syscall resumed>) = 0 [pid 5865] <... write resumed>) = 18 [pid 5864] <... bpf resumed>) = 6 [pid 5865] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5864] exit_group(0) = ? [ 82.121137][ T5864] FAULT_INJECTION: forcing a failure. [ 82.121137][ T5864] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 82.134988][ T5864] CPU: 1 UID: 0 PID: 5864 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 82.135014][ T5864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 82.135024][ T5864] Call Trace: [ 82.135031][ T5864] [ 82.135038][ T5864] dump_stack_lvl+0x189/0x250 [ 82.135060][ T5864] ? __pfx____ratelimit+0x10/0x10 [ 82.135081][ T5864] ? __pfx_dump_stack_lvl+0x10/0x10 [ 82.135097][ T5864] ? __pfx__printk+0x10/0x10 [ 82.135114][ T5864] ? __might_fault+0xb0/0x130 [ 82.135140][ T5864] ? rcu_is_watching+0x15/0xb0 [ 82.135164][ T5864] should_fail_ex+0x414/0x560 [ 82.135189][ T5864] _copy_from_user+0x2d/0xb0 [ 82.135210][ T5864] __sys_bpf+0x1ed/0x870 [ 82.135232][ T5864] ? __pfx___sys_bpf+0x10/0x10 [ 82.135260][ T5864] ? rcu_is_watching+0x15/0xb0 [ 82.135285][ T5864] __x64_sys_bpf+0x7c/0x90 [ 82.135310][ T5864] do_syscall_64+0xfa/0x3b0 [ 82.135333][ T5864] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 82.135348][ T5864] ? clear_bhb_loop+0x60/0xb0 [ 82.135366][ T5864] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 82.135382][ T5864] RIP: 0033:0x7fe51845c8d9 [ 82.135397][ T5864] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 82.135411][ T5864] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 82.135431][ T5864] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 82.135443][ T5864] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 [ 82.135454][ T5864] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 [ 82.135464][ T5864] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 82.135474][ T5864] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [pid 5865] <... bpf resumed>) = 3 [pid 5849] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5865] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16 [pid 5851] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5849] <... clone resumed>, child_tidptr=0x5555947c0650) = 5871 ./strace-static-x86_64: Process 5871 attached [pid 5865] <... bpf resumed>) = 4 [pid 5865] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5851] <... clone resumed>, child_tidptr=0x5555947c0650) = 5872 [pid 5871] set_robust_list(0x5555947c0660, 24) = 0 [pid 5865] <... openat resumed>) = 5 [ 82.135491][ T5864] [ 82.333412][ T5865] FAULT_INJECTION: forcing a failure. [ 82.333412][ T5865] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 82.346593][ T5865] CPU: 0 UID: 0 PID: 5865 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 82.346615][ T5865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 82.346623][ T5865] Call Trace: [ 82.346629][ T5865] [ 82.346635][ T5865] dump_stack_lvl+0x189/0x250 [ 82.346654][ T5865] ? __pfx____ratelimit+0x10/0x10 [ 82.346672][ T5865] ? __pfx_dump_stack_lvl+0x10/0x10 [ 82.346685][ T5865] ? __pfx__printk+0x10/0x10 [ 82.346701][ T5865] ? bpf_trace_printk+0xc1/0x190 [ 82.346716][ T5865] should_fail_ex+0x414/0x560 [ 82.346737][ T5865] strncpy_from_user+0x36/0x290 [ 82.346756][ T5865] strncpy_from_user_nofault+0x72/0x150 [ 82.346773][ T5865] bpf_probe_read_compat_str+0xe2/0x180 [ 82.346787][ T5865] bpf_prog_56079403e473c493+0x70/0x76 [ 82.346798][ T5865] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 82.346814][ T5865] ? seqcount_lockdep_reader_access+0x175/0x1c0 [ 82.346829][ T5865] ? bpf_trace_run2+0x186/0x4b0 [ 82.346843][ T5865] ? rcu_is_watching+0x15/0xb0 [ 82.346862][ T5865] ? __pfx___cant_migrate+0x10/0x10 [ 82.346880][ T5865] ? lock_acquire+0x5f/0x360 [ 82.346897][ T5865] ? rcu_is_watching+0x15/0xb0 [ 82.346915][ T5865] ? lock_release+0x4b/0x3e0 [ 82.346934][ T5865] bpf_trace_run2+0x281/0x4b0 [ 82.346949][ T5865] ? bpf_trace_run2+0x186/0x4b0 [ 82.346964][ T5865] ? __pfx_bpf_trace_run2+0x10/0x10 [ 82.346980][ T5865] ? __bpf_trace_tlb_flush+0xe0/0x150 [ 82.347000][ T5865] __bpf_trace_tlb_flush+0xf5/0x150 [ 82.347019][ T5865] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 82.347041][ T5865] ? kvm_sched_clock_read+0x11/0x20 [ 82.347056][ T5865] ? sched_clock+0x3f/0x60 [ 82.347072][ T5865] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 82.347090][ T5865] __traceiter_tlb_flush+0x76/0xd0 [ 82.347109][ T5865] trace_tlb_flush+0x115/0x140 [ 82.347125][ T5865] switch_mm_irqs_off+0x53e/0x7a0 [ 82.347141][ T5865] ? __pfx_switch_mm_irqs_off+0x10/0x10 [ 82.347155][ T5865] ? psi_task_switch+0x4e3/0x880 [ 82.347169][ T5865] __schedule+0x109d/0x4d30 [ 82.347192][ T5865] ? do_raw_spin_lock+0x121/0x290 [ 82.347206][ T5865] ? schedule+0x165/0x360 [ 82.347221][ T5865] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 82.347235][ T5865] ? __pfx___schedule+0x10/0x10 [ 82.347251][ T5865] ? schedule+0x91/0x360 [ 82.347265][ T5865] ? rcu_is_watching+0x15/0xb0 [ 82.347284][ T5865] ? rcu_is_watching+0x15/0xb0 [ 82.347303][ T5865] ? lock_release+0x4b/0x3e0 [ 82.347318][ T5865] ? rcu_is_watching+0x15/0xb0 [ 82.347338][ T5865] schedule+0x165/0x360 [ 82.347354][ T5865] ptrace_stop+0x575/0x940 [ 82.347374][ T5865] ptrace_notify+0x20f/0x2c0 [ 82.347393][ T5865] ? __pfx_ptrace_notify+0x10/0x10 [ 82.347412][ T5865] ? rcu_is_watching+0x15/0xb0 [ 82.347432][ T5865] syscall_trace_enter+0x60/0x160 [ 82.347451][ T5865] do_syscall_64+0xd3/0x3b0 [ 82.347469][ T5865] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 82.347482][ T5865] ? clear_bhb_loop+0x60/0xb0 [ 82.347496][ T5865] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 82.347509][ T5865] RIP: 0033:0x7fe51845c8d9 [ 82.347520][ T5865] Code: Unable to access opcode bytes at 0x7fe51845c8af. [ 82.347527][ T5865] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 82.347549][ T5865] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 82.347559][ T5865] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 ./strace-static-x86_64: Process 5872 attached [pid 5871] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5865] write(5, "5", 1) = 1 [pid 5872] set_robust_list(0x5555947c0660, 24 [pid 5871] <... prctl resumed>) = 0 [pid 5865] bpf(BPF_ENABLE_STATS, NULL, 0 [pid 5864] +++ exited with 0 +++ [pid 5872] <... set_robust_list resumed>) = 0 [pid 5871] setpgid(0, 0 [pid 5865] <... bpf resumed>) = 6 [pid 5872] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5871] <... setpgid resumed>) = 0 [pid 5865] exit_group(0 [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5864, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 5872] <... prctl resumed>) = 0 [pid 5871] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5865] <... exit_group resumed>) = ? [pid 5872] setpgid(0, 0 executing program executing program [pid 5871] <... openat resumed>) = 3 [pid 5865] +++ exited with 0 +++ [pid 5872] <... setpgid resumed>) = 0 [pid 5872] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5871] write(3, "1000", 4 [pid 5848] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5865, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5872] <... openat resumed>) = 3 [pid 5871] <... write resumed>) = 4 [pid 5848] restart_syscall(<... resuming interrupted clone ...> [pid 5872] write(3, "1000", 4 [pid 5871] close(3 [pid 5872] <... write resumed>) = 4 [pid 5871] <... close resumed>) = 0 [pid 5872] close(3 [pid 5871] write(1, "executing program\n", 18 [pid 5872] <... close resumed>) = 0 [pid 5871] <... write resumed>) = 18 [pid 5872] write(1, "executing program\n", 18 [pid 5871] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5872] <... write resumed>) = 18 [pid 5871] <... bpf resumed>) = 3 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5872] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5871] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16 [pid 5872] <... bpf resumed>) = 3 [pid 5871] <... bpf resumed>) = 4 [pid 5872] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16 [pid 5871] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5872] <... bpf resumed>) = 4 [pid 5871] <... openat resumed>) = 5 [pid 5872] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5871] write(5, "5", 1 [pid 5846] <... clone resumed>, child_tidptr=0x5555947c0650) = 5874 [pid 5872] <... openat resumed>) = 5 [pid 5871] <... write resumed>) = 1 [pid 5872] write(5, "5", 1 [ 82.347567][ T5865] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 [ 82.347575][ T5865] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 82.347583][ T5865] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 82.347596][ T5865] [pid 5871] bpf(BPF_ENABLE_STATS, NULL, 0./strace-static-x86_64: Process 5874 attached [pid 5859] +++ exited with 0 +++ [pid 5854] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5859, si_uid=0, si_status=0, si_utime=0, si_stime=92 /* 0.92 s */} --- [pid 5854] restart_syscall(<... resuming interrupted clone ...> [pid 5874] set_robust_list(0x5555947c0660, 24) = 0 [pid 5874] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5874] setpgid(0, 0) = 0 [pid 5872] <... write resumed>) = 1 [pid 5871] <... bpf resumed>) = -1 ENOMEM (Cannot allocate memory) [pid 5854] <... restart_syscall resumed>) = 0 [pid 5848] <... restart_syscall resumed>) = 0 [pid 5874] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5872] bpf(BPF_ENABLE_STATS, NULL, 0 [pid 5874] <... openat resumed>) = 3 [pid 5871] exit_group(0 [pid 5874] write(3, "1000", 4 [pid 5871] <... exit_group resumed>) = ? [ 82.731229][ T5871] FAULT_INJECTION: forcing a failure. [ 82.731229][ T5871] name failslab, interval 1, probability 0, space 0, times 0 [ 82.744043][ T5871] CPU: 0 UID: 0 PID: 5871 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 82.744069][ T5871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 82.744079][ T5871] Call Trace: [ 82.744085][ T5871] [ 82.744092][ T5871] dump_stack_lvl+0x189/0x250 [ 82.744113][ T5871] ? __pfx____ratelimit+0x10/0x10 [ 82.744134][ T5871] ? __pfx_dump_stack_lvl+0x10/0x10 [ 82.744144][ T5871] ? __pfx__printk+0x10/0x10 [ 82.744156][ T5871] ? fs_reclaim_acquire+0x7d/0x100 [ 82.744166][ T5871] ? __pfx___might_resched+0x10/0x10 [ 82.744180][ T5871] ? lock_acquire+0x5f/0x360 [ 82.744192][ T5871] should_fail_ex+0x414/0x560 [ 82.744208][ T5871] should_failslab+0xa8/0x100 [ 82.744217][ T5871] kmem_cache_alloc_lru_noprof+0x78/0x3d0 [ 82.744230][ T5871] ? __d_alloc+0x36/0x7a0 [ 82.744241][ T5871] ? trace_contention_end+0x39/0x120 [ 82.744257][ T5871] __d_alloc+0x36/0x7a0 [ 82.744267][ T5871] d_alloc_pseudo+0x21/0xc0 [ 82.744278][ T5871] alloc_file_pseudo+0xcc/0x210 [ 82.744289][ T5871] ? do_raw_spin_unlock+0x122/0x240 [ 82.744300][ T5871] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 82.744309][ T5871] ? _raw_spin_unlock+0x28/0x50 [ 82.744323][ T5871] anon_inode_getfd+0xca/0x1b0 [ 82.744335][ T5871] bpf_enable_stats+0xdc/0x140 [ 82.744349][ T5871] __sys_bpf+0x325/0x870 [ 82.744361][ T5871] ? __pfx___sys_bpf+0x10/0x10 [ 82.744377][ T5871] ? rcu_is_watching+0x15/0xb0 [ 82.744393][ T5871] __x64_sys_bpf+0x7c/0x90 [ 82.744403][ T5871] do_syscall_64+0xfa/0x3b0 [ 82.744417][ T5871] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 82.744425][ T5871] ? clear_bhb_loop+0x60/0xb0 [ 82.744435][ T5871] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 82.744444][ T5871] RIP: 0033:0x7fe51845c8d9 [ 82.744454][ T5871] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 82.744462][ T5871] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 82.744475][ T5871] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 82.744482][ T5871] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 [ 82.744487][ T5871] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 [ 82.744494][ T5871] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 82.744501][ T5871] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 82.744510][ T5871] [ 82.746541][ T5872] FAULT_INJECTION: forcing a failure. [ 82.746541][ T5872] name failslab, interval 1, probability 0, space 0, times 0 [ 82.775467][ T5875] FAULT_INJECTION: forcing a failure. [ 82.775467][ T5875] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 83.014049][ T5875] CPU: 0 UID: 0 PID: 5875 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 83.014066][ T5875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 83.014072][ T5875] Call Trace: [ 83.014079][ T5875] [ 83.014085][ T5875] dump_stack_lvl+0x189/0x250 [ 83.014100][ T5875] ? __pfx____ratelimit+0x10/0x10 [ 83.014113][ T5875] ? __pfx_dump_stack_lvl+0x10/0x10 [ 83.014122][ T5875] ? __pfx__printk+0x10/0x10 [ 83.014133][ T5875] ? bpf_trace_printk+0xc1/0x190 [ 83.014144][ T5875] should_fail_ex+0x414/0x560 [ 83.014159][ T5875] strncpy_from_user+0x36/0x290 [ 83.014173][ T5875] strncpy_from_user_nofault+0x72/0x150 [ 83.014190][ T5875] bpf_probe_read_compat_str+0xe2/0x180 [ 83.014200][ T5875] bpf_prog_56079403e473c493+0x70/0x76 [ 83.014209][ T5875] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 83.014221][ T5875] ? seqcount_lockdep_reader_access+0x175/0x1c0 [ 83.014232][ T5875] ? bpf_trace_run2+0x186/0x4b0 [ 83.014243][ T5875] ? rcu_is_watching+0x15/0xb0 [ 83.014256][ T5875] ? __pfx___cant_migrate+0x10/0x10 [ 83.014270][ T5875] ? lock_acquire+0x5f/0x360 [ 83.014282][ T5875] ? rcu_is_watching+0x15/0xb0 [ 83.014294][ T5875] ? lock_release+0x4b/0x3e0 [ 83.014307][ T5875] bpf_trace_run2+0x281/0x4b0 [ 83.014318][ T5875] ? bpf_trace_run2+0x186/0x4b0 [ 83.014329][ T5875] ? __pfx_bpf_trace_run2+0x10/0x10 [ 83.014339][ T5875] ? unwind_next_frame+0xa5/0x2390 [ 83.014349][ T5875] ? __bpf_trace_tlb_flush+0xe0/0x150 [ 83.014363][ T5875] __bpf_trace_tlb_flush+0xf5/0x150 [ 83.014376][ T5875] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 83.014391][ T5875] ? kvm_sched_clock_read+0x11/0x20 [ 83.014404][ T5875] ? sched_clock+0x3f/0x60 [ 83.014416][ T5875] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 83.014428][ T5875] __traceiter_tlb_flush+0x76/0xd0 [ 83.014441][ T5875] trace_tlb_flush+0x115/0x140 [ 83.014453][ T5875] switch_mm_irqs_off+0x53e/0x7a0 [ 83.014464][ T5875] ? __pfx_switch_mm_irqs_off+0x10/0x10 [ 83.014474][ T5875] ? psi_task_switch+0x4e3/0x880 [ 83.014484][ T5875] __schedule+0x109d/0x4d30 [ 83.014500][ T5875] ? do_raw_spin_lock+0x121/0x290 [ 83.014510][ T5875] ? schedule+0x165/0x360 [ 83.014521][ T5875] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 83.014531][ T5875] ? __pfx___schedule+0x10/0x10 [ 83.014542][ T5875] ? schedule+0x91/0x360 [ 83.014552][ T5875] ? rcu_is_watching+0x15/0xb0 [ 83.014566][ T5875] ? rcu_is_watching+0x15/0xb0 [ 83.014578][ T5875] ? lock_release+0x4b/0x3e0 [ 83.014589][ T5875] ? rcu_is_watching+0x15/0xb0 [ 83.014603][ T5875] schedule+0x165/0x360 [ 83.014615][ T5875] ptrace_stop+0x575/0x940 [ 83.014629][ T5875] ptrace_notify+0x20f/0x2c0 [ 83.014642][ T5875] ? __pfx_ptrace_notify+0x10/0x10 [ 83.014655][ T5875] ? rcu_is_watching+0x15/0xb0 [ 83.014672][ T5875] syscall_trace_enter+0x60/0x160 [ 83.014685][ T5875] do_syscall_64+0xd3/0x3b0 [ 83.014699][ T5875] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 83.014708][ T5875] ? clear_bhb_loop+0x60/0xb0 [ 83.014719][ T5875] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 83.014728][ T5875] RIP: 0033:0x7fe51845c8d9 [ 83.014737][ T5875] Code: Unable to access opcode bytes at 0x7fe51845c8af. [ 83.014741][ T5875] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 83.014754][ T5875] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 83.014761][ T5875] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 [ 83.014767][ T5875] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 [ 83.014773][ T5875] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 83.014778][ T5875] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 83.014787][ T5875] [ 83.015640][ T5872] CPU: 1 UID: 0 PID: 5872 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 83.015663][ T5872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 83.015672][ T5872] Call Trace: [ 83.015678][ T5872] [ 83.015685][ T5872] dump_stack_lvl+0x189/0x250 [ 83.015705][ T5872] ? __pfx____ratelimit+0x10/0x10 [ 83.015726][ T5872] ? __pfx_dump_stack_lvl+0x10/0x10 [ 83.015741][ T5872] ? __pfx__printk+0x10/0x10 [ 83.015760][ T5872] ? fs_reclaim_acquire+0x7d/0x100 [ 83.015777][ T5872] ? __pfx___might_resched+0x10/0x10 [ 83.015799][ T5872] ? lock_acquire+0x5f/0x360 [ 83.015820][ T5872] should_fail_ex+0x414/0x560 [ 83.015845][ T5872] should_failslab+0xa8/0x100 [ 83.015860][ T5872] kmem_cache_alloc_noprof+0x73/0x3c0 [ 83.015881][ T5872] ? alloc_empty_file+0x55/0x1d0 [ 83.015900][ T5872] alloc_empty_file+0x55/0x1d0 [ 83.015917][ T5872] alloc_file_pseudo+0x13d/0x210 [ 83.015934][ T5872] ? do_raw_spin_unlock+0x122/0x240 [ 83.015952][ T5872] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 83.015968][ T5872] ? _raw_spin_unlock+0x28/0x50 [ 83.015992][ T5872] anon_inode_getfd+0xca/0x1b0 [ 83.016011][ T5872] bpf_enable_stats+0xdc/0x140 [ 83.016033][ T5872] __sys_bpf+0x325/0x870 [ 83.016053][ T5872] ? __pfx___sys_bpf+0x10/0x10 [ 83.016080][ T5872] ? rcu_is_watching+0x15/0xb0 [ 83.016105][ T5872] __x64_sys_bpf+0x7c/0x90 [ 83.016123][ T5872] do_syscall_64+0xfa/0x3b0 [ 83.016145][ T5872] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 83.016160][ T5872] ? clear_bhb_loop+0x60/0xb0 [ 83.016177][ T5872] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 83.016192][ T5872] RIP: 0033:0x7fe51845c8d9 [ 83.016205][ T5872] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 83.016218][ T5872] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 83.016237][ T5872] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 83.016249][ T5872] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 [ 83.016258][ T5872] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 executing program [pid 5848] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555947c0650) = 5875 ./strace-static-x86_64: Process 5875 attached [pid 5875] set_robust_list(0x5555947c0660, 24) = 0 [pid 5875] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5875] setpgid(0, 0) = 0 [pid 5875] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5875] write(3, "1000", 4) = 4 [pid 5875] close(3) = 0 [pid 5875] write(1, "executing program\n", 18) = 18 [pid 5875] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148) = 3 [pid 5875] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16) = 4 [pid 5875] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 5 [pid 5875] write(5, "5", 1) = 1 [pid 5875] bpf(BPF_ENABLE_STATS, NULL, 0 [pid 5874] <... write resumed>) = 4 [pid 5872] <... bpf resumed>) = -1 ENOMEM (Cannot allocate memory) [pid 5871] +++ exited with 0 +++ [pid 5874] close(3 [pid 5872] exit_group(0 [pid 5874] <... close resumed>) = 0 [pid 5872] <... exit_group resumed>) = ? executing program [pid 5854] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5849] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5871, si_uid=0, si_status=0, si_utime=0, si_stime=58 /* 0.58 s */} --- [pid 5875] <... bpf resumed>) = 6 [pid 5874] write(1, "executing program\n", 18 [pid 5875] exit_group(0 [pid 5849] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5875] <... exit_group resumed>) = ? [pid 5874] <... write resumed>) = 18 ./strace-static-x86_64: Process 5877 attached ./strace-static-x86_64: Process 5876 attached [pid 5875] +++ exited with 0 +++ [pid 5872] +++ exited with 0 +++ [pid 5877] set_robust_list(0x5555947c0660, 24 [pid 5876] set_robust_list(0x5555947c0660, 24 [pid 5874] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5849] <... clone resumed>, child_tidptr=0x5555947c0650) = 5877 [pid 5877] <... set_robust_list resumed>) = 0 [pid 5876] <... set_robust_list resumed>) = 0 [pid 5854] <... clone resumed>, child_tidptr=0x5555947c0650) = 5876 [pid 5851] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5872, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} --- [pid 5848] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5875, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5877] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5876] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5851] restart_syscall(<... resuming interrupted clone ...> [pid 5848] restart_syscall(<... resuming interrupted clone ...> [pid 5877] <... prctl resumed>) = 0 [pid 5876] <... prctl resumed>) = 0 [pid 5877] setpgid(0, 0 [pid 5876] setpgid(0, 0 [pid 5874] <... bpf resumed>) = 3 [pid 5877] <... setpgid resumed>) = 0 [pid 5876] <... setpgid resumed>) = 0 [pid 5877] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5876] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5877] <... openat resumed>) = 3 [pid 5876] <... openat resumed>) = 3 [pid 5877] write(3, "1000", 4 [pid 5876] write(3, "1000", 4 [pid 5877] <... write resumed>) = 4 [pid 5876] <... write resumed>) = 4 [pid 5877] close(3 [pid 5876] close(3 [pid 5877] <... close resumed>) = 0 [pid 5876] <... close resumed>) = 0 [pid 5874] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16executing program executing program [pid 5877] write(1, "executing program\n", 18) = 18 [pid 5876] write(1, "executing program\n", 18) = 18 [pid 5876] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5851] <... restart_syscall resumed>) = 0 [pid 5848] <... restart_syscall resumed>) = 0 [pid 5877] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5851] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5878 attached [pid 5848] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5877] <... bpf resumed>) = 3 [pid 5878] set_robust_list(0x5555947c0660, 24 [pid 5876] <... bpf resumed>) = 3 [pid 5874] <... bpf resumed>) = 4 [pid 5851] <... clone resumed>, child_tidptr=0x5555947c0650) = 5878 ./strace-static-x86_64: Process 5879 attached [pid 5878] <... set_robust_list resumed>) = 0 [pid 5877] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16 [pid 5876] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16 [pid 5874] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5848] <... clone resumed>, child_tidptr=0x5555947c0650) = 5879 [pid 5878] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5877] <... bpf resumed>) = 4 [pid 5878] <... prctl resumed>) = 0 [pid 5878] setpgid(0, 0) = 0 [ 83.016268][ T5872] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 83.016278][ T5872] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 83.016294][ T5872] [pid 5877] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5874] <... openat resumed>) = 5 [pid 5879] set_robust_list(0x5555947c0660, 24 [pid 5878] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5876] <... bpf resumed>) = 4 executing program [pid 5879] <... set_robust_list resumed>) = 0 [pid 5878] <... openat resumed>) = 3 [pid 5877] <... openat resumed>) = 5 [pid 5874] write(5, "5", 1 [pid 5878] write(3, "1000", 4 [pid 5876] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5879] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5878] <... write resumed>) = 4 [pid 5877] write(5, "5", 1 [pid 5874] <... write resumed>) = 1 [pid 5878] close(3 [pid 5876] <... openat resumed>) = 5 [pid 5874] bpf(BPF_ENABLE_STATS, NULL, 0 [pid 5878] <... close resumed>) = 0 [pid 5878] write(1, "executing program\n", 18) = 18 [pid 5878] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148) = 3 [pid 5878] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16) = 4 [ 83.630549][ T5874] FAULT_INJECTION: forcing a failure. [ 83.630549][ T5874] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 83.643800][ T5874] CPU: 0 UID: 0 PID: 5874 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 83.643817][ T5874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 83.643824][ T5874] Call Trace: [ 83.643831][ T5874] [ 83.643836][ T5874] dump_stack_lvl+0x189/0x250 [ 83.643853][ T5874] ? __pfx____ratelimit+0x10/0x10 [ 83.643866][ T5874] ? __pfx_dump_stack_lvl+0x10/0x10 [ 83.643875][ T5874] ? __pfx__printk+0x10/0x10 [ 83.643886][ T5874] ? bpf_trace_printk+0xc1/0x190 [ 83.643897][ T5874] should_fail_ex+0x414/0x560 [ 83.643913][ T5874] strncpy_from_user+0x36/0x290 [ 83.643938][ T5874] strncpy_from_user_nofault+0x72/0x150 [ 83.643950][ T5874] bpf_probe_read_compat_str+0xe2/0x180 [ 83.643960][ T5874] bpf_prog_56079403e473c493+0x70/0x76 [ 83.643969][ T5874] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 83.643980][ T5874] ? seqcount_lockdep_reader_access+0x175/0x1c0 [ 83.643992][ T5874] ? bpf_trace_run2+0x186/0x4b0 [ 83.644002][ T5874] ? rcu_is_watching+0x15/0xb0 [ 83.644016][ T5874] ? __pfx___cant_migrate+0x10/0x10 [ 83.644029][ T5874] ? lock_acquire+0x5f/0x360 [ 83.644041][ T5874] ? rcu_is_watching+0x15/0xb0 [ 83.644054][ T5874] ? lock_release+0x4b/0x3e0 [ 83.644091][ T5874] bpf_trace_run2+0x281/0x4b0 [ 83.644102][ T5874] ? bpf_trace_run2+0x186/0x4b0 [ 83.644112][ T5874] ? __pfx_bpf_trace_run2+0x10/0x10 [ 83.644123][ T5874] ? unwind_next_frame+0xa5/0x2390 [ 83.644133][ T5874] ? __bpf_trace_tlb_flush+0xe0/0x150 [ 83.644148][ T5874] __bpf_trace_tlb_flush+0xf5/0x150 [ 83.644162][ T5874] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 83.644177][ T5874] ? kvm_sched_clock_read+0x11/0x20 [ 83.644189][ T5874] ? sched_clock+0x3f/0x60 [ 83.644201][ T5874] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 83.644213][ T5874] __traceiter_tlb_flush+0x76/0xd0 [ 83.644227][ T5874] trace_tlb_flush+0x115/0x140 [ 83.644238][ T5874] switch_mm_irqs_off+0x53e/0x7a0 [ 83.644250][ T5874] ? __pfx_switch_mm_irqs_off+0x10/0x10 [ 83.644260][ T5874] ? psi_task_switch+0x4e3/0x880 [ 83.644270][ T5874] __schedule+0x109d/0x4d30 [ 83.644286][ T5874] ? do_raw_spin_lock+0x121/0x290 [ 83.644297][ T5874] ? schedule+0x165/0x360 [ 83.644308][ T5874] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 83.644322][ T5874] ? __pfx___schedule+0x10/0x10 [ 83.644338][ T5874] ? schedule+0x91/0x360 [ 83.644349][ T5874] ? rcu_is_watching+0x15/0xb0 [ 83.644368][ T5874] ? rcu_is_watching+0x15/0xb0 [ 83.644384][ T5874] ? lock_release+0x4b/0x3e0 [ 83.644395][ T5874] ? rcu_is_watching+0x15/0xb0 [ 83.644409][ T5874] schedule+0x165/0x360 [ 83.644421][ T5874] ptrace_stop+0x575/0x940 [ 83.644435][ T5874] ptrace_notify+0x20f/0x2c0 [ 83.644449][ T5874] ? __pfx_ptrace_notify+0x10/0x10 [ 83.644463][ T5874] ? rcu_is_watching+0x15/0xb0 [ 83.644477][ T5874] syscall_trace_enter+0x60/0x160 [ 83.644490][ T5874] do_syscall_64+0xd3/0x3b0 [ 83.644504][ T5874] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 83.644513][ T5874] ? clear_bhb_loop+0x60/0xb0 [ 83.644523][ T5874] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 83.644532][ T5874] RIP: 0033:0x7fe51845c8d9 [ 83.644541][ T5874] Code: Unable to access opcode bytes at 0x7fe51845c8af. [ 83.644546][ T5874] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 83.644559][ T5874] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 83.644566][ T5874] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 [ 83.644572][ T5874] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 [ 83.644578][ T5874] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 83.644583][ T5874] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 83.644592][ T5874] [ 84.005824][ T5876] FAULT_INJECTION: forcing a failure. [ 84.005824][ T5876] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 84.018873][ T5876] CPU: 1 UID: 0 PID: 5876 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 84.018889][ T5876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 84.018896][ T5876] Call Trace: [ 84.018901][ T5876] [ 84.018906][ T5876] dump_stack_lvl+0x189/0x250 [ 84.018920][ T5876] ? __pfx____ratelimit+0x10/0x10 [ 84.018934][ T5876] ? __pfx_dump_stack_lvl+0x10/0x10 [ 84.018943][ T5876] ? __pfx__printk+0x10/0x10 [ 84.018954][ T5876] ? bpf_trace_printk+0xc1/0x190 [ 84.018965][ T5876] should_fail_ex+0x414/0x560 [ 84.018980][ T5876] strncpy_from_user+0x36/0x290 [ 84.018994][ T5876] strncpy_from_user_nofault+0x72/0x150 [ 84.019007][ T5876] bpf_probe_read_compat_str+0xe2/0x180 [ 84.019017][ T5876] bpf_prog_56079403e473c493+0x70/0x76 [ 84.019026][ T5876] ? exc_int3+0xe/0x80 [ 84.019039][ T5876] ? kvm_sched_clock_read+0x11/0x20 [ 84.019050][ T5876] ? sched_clock+0x3f/0x60 [ 84.019062][ T5876] bpf_trace_run2+0x3ff/0x4b0 [ 84.019073][ T5876] ? bpf_trace_run2+0x186/0x4b0 [ 84.019084][ T5876] ? __pfx_bpf_trace_run2+0x10/0x10 [ 84.019095][ T5876] ? __bpf_trace_tlb_flush+0xe0/0x150 [ 84.019110][ T5876] __bpf_trace_tlb_flush+0xf5/0x150 [ 84.019124][ T5876] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 84.019138][ T5876] ? kvm_sched_clock_read+0x11/0x20 [ 84.019149][ T5876] ? sched_clock+0x3f/0x60 [ 84.019160][ T5876] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 84.019173][ T5876] __traceiter_tlb_flush+0x76/0xd0 [ 84.019186][ T5876] trace_tlb_flush+0x115/0x140 [ 84.019198][ T5876] switch_mm_irqs_off+0x53e/0x7a0 [ 84.019209][ T5876] ? __pfx_switch_mm_irqs_off+0x10/0x10 [ 84.019219][ T5876] ? psi_task_switch+0x4e3/0x880 [ 84.019229][ T5876] __schedule+0x109d/0x4d30 [ 84.019245][ T5876] ? do_raw_spin_lock+0x121/0x290 [ 84.019255][ T5876] ? schedule+0x165/0x360 [ 84.019266][ T5876] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 84.019276][ T5876] ? __pfx___schedule+0x10/0x10 [ 84.019287][ T5876] ? schedule+0x91/0x360 [ 84.019298][ T5876] ? rcu_is_watching+0x15/0xb0 [ 84.019317][ T5876] ? rcu_is_watching+0x15/0xb0 [ 84.019331][ T5876] ? lock_release+0x4b/0x3e0 [ 84.019342][ T5876] ? rcu_is_watching+0x15/0xb0 [ 84.019356][ T5876] schedule+0x165/0x360 [ 84.019367][ T5876] ptrace_stop+0x575/0x940 [ 84.019382][ T5876] ptrace_notify+0x20f/0x2c0 [ 84.019395][ T5876] ? __pfx_ptrace_notify+0x10/0x10 [ 84.019409][ T5876] ? rcu_is_watching+0x15/0xb0 [ 84.019423][ T5876] syscall_trace_enter+0x60/0x160 [ 84.019436][ T5876] do_syscall_64+0xd3/0x3b0 [ 84.019450][ T5876] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 84.019458][ T5876] ? clear_bhb_loop+0x60/0xb0 [ 84.019469][ T5876] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 84.019478][ T5876] RIP: 0033:0x7fe51845c8d9 [ 84.019486][ T5876] Code: Unable to access opcode bytes at 0x7fe51845c8af. [ 84.019491][ T5876] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 84.019504][ T5876] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 84.019511][ T5876] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 [ 84.019518][ T5876] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 [ 84.019526][ T5876] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [pid 5878] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5879] <... prctl resumed>) = 0 [pid 5876] write(5, "5", 1 [pid 5877] <... write resumed>) = 1 [pid 5876] <... write resumed>) = 1 [pid 5879] setpgid(0, 0 [pid 5878] <... openat resumed>) = 5 [pid 5877] bpf(BPF_ENABLE_STATS, NULL, 0 [ 84.019534][ T5876] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 84.019547][ T5876] [ 84.344635][ T5877] FAULT_INJECTION: forcing a failure. [ 84.344635][ T5877] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 84.357792][ T5877] CPU: 0 UID: 0 PID: 5877 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 84.357810][ T5877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 84.357817][ T5877] Call Trace: [ 84.357824][ T5877] [ 84.357830][ T5877] dump_stack_lvl+0x189/0x250 [ 84.357846][ T5877] ? __pfx____ratelimit+0x10/0x10 [ 84.357860][ T5877] ? __pfx_dump_stack_lvl+0x10/0x10 [ 84.357869][ T5877] ? __pfx__printk+0x10/0x10 [ 84.357880][ T5877] ? bpf_trace_printk+0xc1/0x190 [ 84.357891][ T5877] should_fail_ex+0x414/0x560 [ 84.357907][ T5877] strncpy_from_user+0x36/0x290 [ 84.357921][ T5877] strncpy_from_user_nofault+0x72/0x150 [ 84.357934][ T5877] bpf_probe_read_compat_str+0xe2/0x180 [ 84.357943][ T5877] bpf_prog_56079403e473c493+0x70/0x76 [ 84.357953][ T5877] ? exc_int3+0xe/0x80 [ 84.357962][ T5877] ? bpf_trace_run2+0x186/0x4b0 [ 84.357973][ T5877] ? rcu_is_watching+0x15/0xb0 [ 84.357986][ T5877] ? __pfx___cant_migrate+0x10/0x10 [ 84.358000][ T5877] ? lock_acquire+0x5f/0x360 [ 84.358011][ T5877] ? rcu_is_watching+0x15/0xb0 [ 84.358024][ T5877] ? lock_release+0x4b/0x3e0 [ 84.358037][ T5877] ? kvm_sched_clock_read+0x11/0x20 [ 84.358048][ T5877] ? sched_clock+0x3f/0x60 [ 84.358080][ T5877] bpf_trace_run2+0x3ff/0x4b0 [ 84.358091][ T5877] ? bpf_trace_run2+0x186/0x4b0 [ 84.358102][ T5877] ? __pfx_bpf_trace_run2+0x10/0x10 [ 84.358113][ T5877] ? do_raw_spin_lock+0xc1/0x290 [ 84.358123][ T5877] ? __bpf_trace_tlb_flush+0xe0/0x150 [ 84.358137][ T5877] __bpf_trace_tlb_flush+0xf5/0x150 [ 84.358153][ T5877] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 84.358168][ T5877] ? kvm_sched_clock_read+0x11/0x20 [ 84.358179][ T5877] ? sched_clock+0x3f/0x60 [ 84.358190][ T5877] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 84.358202][ T5877] __traceiter_tlb_flush+0x76/0xd0 [ 84.358216][ T5877] trace_tlb_flush+0x115/0x140 [ 84.358230][ T5877] switch_mm_irqs_off+0x53e/0x7a0 [ 84.358242][ T5877] ? __pfx_switch_mm_irqs_off+0x10/0x10 [ 84.358251][ T5877] ? psi_task_switch+0x4e3/0x880 [ 84.358261][ T5877] __schedule+0x109d/0x4d30 [ 84.358284][ T5877] ? do_raw_spin_lock+0x121/0x290 [ 84.358293][ T5877] ? schedule+0x165/0x360 [ 84.358304][ T5877] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 84.358313][ T5877] ? __pfx___schedule+0x10/0x10 [ 84.358325][ T5877] ? schedule+0x91/0x360 [ 84.358335][ T5877] ? rcu_is_watching+0x15/0xb0 [ 84.358348][ T5877] ? rcu_is_watching+0x15/0xb0 [ 84.358361][ T5877] ? lock_release+0x4b/0x3e0 [ 84.358372][ T5877] ? rcu_is_watching+0x15/0xb0 [ 84.358386][ T5877] schedule+0x165/0x360 [ 84.358398][ T5877] ptrace_stop+0x575/0x940 [ 84.358412][ T5877] ptrace_notify+0x20f/0x2c0 [ 84.358425][ T5877] ? __pfx_ptrace_notify+0x10/0x10 [ 84.358439][ T5877] ? rcu_is_watching+0x15/0xb0 [ 84.358453][ T5877] syscall_trace_enter+0x60/0x160 [pid 5876] bpf(BPF_ENABLE_STATS, NULL, 0 [pid 5879] <... setpgid resumed>) = 0 [ 84.358466][ T5877] do_syscall_64+0xd3/0x3b0 [ 84.358479][ T5877] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 84.358488][ T5877] ? clear_bhb_loop+0x60/0xb0 [ 84.358498][ T5877] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 84.358507][ T5877] RIP: 0033:0x7fe51845c8d9 [ 84.358516][ T5877] Code: Unable to access opcode bytes at 0x7fe51845c8af. [ 84.358521][ T5877] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 84.358534][ T5877] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 84.358541][ T5877] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 [ 84.358547][ T5877] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 [ 84.358553][ T5877] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 84.358558][ T5877] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 84.358567][ T5877] [ 84.719811][ T5878] FAULT_INJECTION: forcing a failure. [ 84.719811][ T5878] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 84.732944][ T5878] CPU: 1 UID: 0 PID: 5878 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 84.732966][ T5878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 84.732975][ T5878] Call Trace: [ 84.732983][ T5878] [ 84.732990][ T5878] dump_stack_lvl+0x189/0x250 [ 84.733009][ T5878] ? __pfx____ratelimit+0x10/0x10 [ 84.733028][ T5878] ? __pfx_dump_stack_lvl+0x10/0x10 [ 84.733040][ T5878] ? __pfx__printk+0x10/0x10 [ 84.733061][ T5878] ? bpf_trace_printk+0xc1/0x190 [ 84.733076][ T5878] should_fail_ex+0x414/0x560 [ 84.733098][ T5878] strncpy_from_user+0x36/0x290 [ 84.733118][ T5878] strncpy_from_user_nofault+0x72/0x150 [ 84.733135][ T5878] bpf_probe_read_compat_str+0xe2/0x180 [ 84.733148][ T5878] bpf_prog_56079403e473c493+0x70/0x76 [ 84.733159][ T5878] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 84.733174][ T5878] ? seqcount_lockdep_reader_access+0x175/0x1c0 [ 84.733189][ T5878] ? bpf_trace_run2+0x186/0x4b0 [ 84.733203][ T5878] ? rcu_is_watching+0x15/0xb0 [ 84.733222][ T5878] ? __pfx___cant_migrate+0x10/0x10 [ 84.733240][ T5878] ? lock_acquire+0x5f/0x360 [ 84.733257][ T5878] ? rcu_is_watching+0x15/0xb0 [ 84.733275][ T5878] ? lock_release+0x4b/0x3e0 [ 84.733292][ T5878] ? kvm_sched_clock_read+0x11/0x20 [ 84.733309][ T5878] ? sched_clock+0x3f/0x60 [ 84.733324][ T5878] bpf_trace_run2+0x3ff/0x4b0 [ 84.733339][ T5878] ? bpf_trace_run2+0x186/0x4b0 [ 84.733355][ T5878] ? __pfx_bpf_trace_run2+0x10/0x10 [ 84.733371][ T5878] ? __bpf_trace_tlb_flush+0xe0/0x150 [ 84.733391][ T5878] __bpf_trace_tlb_flush+0xf5/0x150 [ 84.733409][ T5878] ? rcu_is_watching+0x15/0xb0 [ 84.733427][ T5878] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 84.733445][ T5878] ? __update_load_avg_se+0x751/0xbc0 [ 84.733462][ T5878] ? kvm_sched_clock_read+0x11/0x20 [ 84.733477][ T5878] ? sched_clock+0x3f/0x60 [ 84.733493][ T5878] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 84.733510][ T5878] __traceiter_tlb_flush+0x76/0xd0 [ 84.733529][ T5878] trace_tlb_flush+0x115/0x140 [ 84.733545][ T5878] switch_mm_irqs_off+0x53e/0x7a0 [ 84.733561][ T5878] ? __pfx_switch_mm_irqs_off+0x10/0x10 [ 84.733575][ T5878] ? psi_task_switch+0x4e3/0x880 [ 84.733589][ T5878] __schedule+0x109d/0x4d30 [ 84.733612][ T5878] ? do_raw_spin_lock+0x121/0x290 [ 84.733626][ T5878] ? schedule+0x165/0x360 [ 84.733641][ T5878] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 84.733654][ T5878] ? __pfx___schedule+0x10/0x10 [ 84.733671][ T5878] ? schedule+0x91/0x360 [ 84.733684][ T5878] ? rcu_is_watching+0x15/0xb0 [ 84.733703][ T5878] ? rcu_is_watching+0x15/0xb0 [ 84.733721][ T5878] ? lock_release+0x4b/0x3e0 [ 84.733736][ T5878] ? rcu_is_watching+0x15/0xb0 [ 84.733756][ T5878] schedule+0x165/0x360 [ 84.733772][ T5878] ptrace_stop+0x575/0x940 [ 84.733791][ T5878] ptrace_notify+0x20f/0x2c0 [ 84.733810][ T5878] ? __pfx_ptrace_notify+0x10/0x10 [ 84.733830][ T5878] ? rcu_is_watching+0x15/0xb0 [ 84.733849][ T5878] syscall_trace_enter+0x60/0x160 [ 84.733868][ T5878] do_syscall_64+0xd3/0x3b0 [ 84.733886][ T5878] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 84.733898][ T5878] ? clear_bhb_loop+0x60/0xb0 [ 84.733912][ T5878] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 84.733925][ T5878] RIP: 0033:0x7fe51845c8d9 [ 84.733936][ T5878] Code: Unable to access opcode bytes at 0x7fe51845c8af. [ 84.733943][ T5878] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 84.733960][ T5878] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 84.733969][ T5878] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 [pid 5878] write(5, "5", 1executing program ) = 1 [pid 5878] bpf(BPF_ENABLE_STATS, NULL, 0 [pid 5879] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5879] write(3, "1000", 4) = 4 [pid 5879] close(3) = 0 [pid 5879] write(1, "executing program\n", 18) = 18 [pid 5879] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5874] <... bpf resumed>) = 6 [pid 5874] exit_group(0) = ? [pid 5877] <... bpf resumed>) = 6 [pid 5878] <... bpf resumed>) = 6 [pid 5878] exit_group(0) = ? [pid 5878] +++ exited with 0 +++ [pid 5874] +++ exited with 0 +++ [pid 5851] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5878, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5846] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5874, si_uid=0, si_status=0, si_utime=0, si_stime=68 /* 0.68 s */} --- [pid 5879] <... bpf resumed>) = 3 [pid 5851] restart_syscall(<... resuming interrupted clone ...> [pid 5846] restart_syscall(<... resuming interrupted clone ...> [pid 5879] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16) = 4 [pid 5877] exit_group(0 [pid 5879] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5877] <... exit_group resumed>) = ? [pid 5879] <... openat resumed>) = 5 [pid 5876] <... bpf resumed>) = 6 [pid 5879] write(5, "5", 1) = 1 [ 84.733977][ T5878] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 [ 84.733986][ T5878] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 84.733993][ T5878] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 84.734006][ T5878] [ 85.118019][ T5879] FAULT_INJECTION: forcing a failure. [ 85.118019][ T5879] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 85.131158][ T5879] CPU: 0 UID: 0 PID: 5879 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 85.131175][ T5879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 85.131181][ T5879] Call Trace: [ 85.131186][ T5879] [ 85.131191][ T5879] dump_stack_lvl+0x189/0x250 [ 85.131206][ T5879] ? __pfx____ratelimit+0x10/0x10 [ 85.131220][ T5879] ? __pfx_dump_stack_lvl+0x10/0x10 [ 85.131229][ T5879] ? __pfx__printk+0x10/0x10 [ 85.131241][ T5879] ? bpf_trace_printk+0xc1/0x190 [ 85.131252][ T5879] should_fail_ex+0x414/0x560 [ 85.131275][ T5879] strncpy_from_user+0x36/0x290 [ 85.131289][ T5879] strncpy_from_user_nofault+0x72/0x150 [ 85.131302][ T5879] bpf_probe_read_compat_str+0xe2/0x180 [ 85.131312][ T5879] bpf_prog_56079403e473c493+0x70/0x76 [ 85.131321][ T5879] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 85.131332][ T5879] ? seqcount_lockdep_reader_access+0x175/0x1c0 [ 85.131343][ T5879] ? bpf_trace_run2+0x186/0x4b0 [ 85.131354][ T5879] ? rcu_is_watching+0x15/0xb0 [ 85.131368][ T5879] ? __pfx___cant_migrate+0x10/0x10 [ 85.131381][ T5879] ? lock_acquire+0x5f/0x360 [ 85.131393][ T5879] ? rcu_is_watching+0x15/0xb0 [ 85.131405][ T5879] ? lock_release+0x4b/0x3e0 [ 85.131418][ T5879] ? kvm_sched_clock_read+0x11/0x20 [ 85.131429][ T5879] ? sched_clock+0x3f/0x60 [ 85.131441][ T5879] bpf_trace_run2+0x3ff/0x4b0 [ 85.131452][ T5879] ? bpf_trace_run2+0x186/0x4b0 [ 85.131463][ T5879] ? __pfx_bpf_trace_run2+0x10/0x10 [ 85.131475][ T5879] ? __bpf_trace_tlb_flush+0xe0/0x150 [ 85.131489][ T5879] __bpf_trace_tlb_flush+0xf5/0x150 [ 85.131502][ T5879] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 85.131517][ T5879] ? kvm_sched_clock_read+0x11/0x20 [ 85.131528][ T5879] ? sched_clock+0x3f/0x60 [ 85.131539][ T5879] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 85.131551][ T5879] __traceiter_tlb_flush+0x76/0xd0 [ 85.131565][ T5879] trace_tlb_flush+0x115/0x140 [ 85.131577][ T5879] switch_mm_irqs_off+0x53e/0x7a0 [ 85.131588][ T5879] ? __pfx_switch_mm_irqs_off+0x10/0x10 [ 85.131598][ T5879] ? psi_task_switch+0x4e3/0x880 [ 85.131608][ T5879] __schedule+0x109d/0x4d30 [ 85.131625][ T5879] ? do_raw_spin_lock+0x121/0x290 [ 85.131635][ T5879] ? schedule+0x165/0x360 [ 85.131645][ T5879] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 85.131655][ T5879] ? __pfx___schedule+0x10/0x10 [ 85.131667][ T5879] ? schedule+0x91/0x360 [ 85.131677][ T5879] ? rcu_is_watching+0x15/0xb0 [ 85.131690][ T5879] ? rcu_is_watching+0x15/0xb0 [ 85.131703][ T5879] ? lock_release+0x4b/0x3e0 [ 85.131714][ T5879] ? rcu_is_watching+0x15/0xb0 [ 85.131728][ T5879] schedule+0x165/0x360 [ 85.131739][ T5879] ptrace_stop+0x575/0x940 [ 85.131754][ T5879] ptrace_notify+0x20f/0x2c0 [ 85.131767][ T5879] ? __pfx_ptrace_notify+0x10/0x10 [ 85.131781][ T5879] ? rcu_is_watching+0x15/0xb0 [ 85.131795][ T5879] syscall_trace_enter+0x60/0x160 [ 85.131809][ T5879] do_syscall_64+0xd3/0x3b0 [ 85.131822][ T5879] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.131831][ T5879] ? clear_bhb_loop+0x60/0xb0 [ 85.131840][ T5879] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.131849][ T5879] RIP: 0033:0x7fe51845c8d9 [ 85.131857][ T5879] Code: Unable to access opcode bytes at 0x7fe51845c8af. [ 85.131862][ T5879] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 85.131875][ T5879] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 85.131882][ T5879] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 [ 85.131888][ T5879] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 [ 85.131894][ T5879] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [pid 5879] bpf(BPF_ENABLE_STATS, NULL, 0 [pid 5877] +++ exited with 0 +++ [pid 5851] <... restart_syscall resumed>) = 0 [pid 5846] <... restart_syscall resumed>) = 0 [pid 5849] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5877, si_uid=0, si_status=0, si_utime=0, si_stime=30 /* 0.30 s */} --- [pid 5851] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5880 attached [pid 5879] <... bpf resumed>) = 6 [pid 5849] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5881 attached [pid 5880] set_robust_list(0x5555947c0660, 24 [pid 5879] exit_group(0 [pid 5851] <... clone resumed>, child_tidptr=0x5555947c0650) = 5880 [pid 5846] <... clone resumed>, child_tidptr=0x5555947c0650) = 5881 ./strace-static-x86_64: Process 5882 attached [pid 5881] set_robust_list(0x5555947c0660, 24 [pid 5880] <... set_robust_list resumed>) = 0 [pid 5879] <... exit_group resumed>) = ? [pid 5849] <... clone resumed>, child_tidptr=0x5555947c0650) = 5882 [pid 5882] set_robust_list(0x5555947c0660, 24 [pid 5881] <... set_robust_list resumed>) = 0 [pid 5880] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5882] <... set_robust_list resumed>) = 0 [pid 5881] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5880] <... prctl resumed>) = 0 [pid 5881] <... prctl resumed>) = 0 [pid 5880] setpgid(0, 0) = 0 [pid 5882] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5881] setpgid(0, 0 [pid 5880] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5882] <... prctl resumed>) = 0 [pid 5881] <... setpgid resumed>) = 0 [pid 5880] <... openat resumed>) = 3 [pid 5879] +++ exited with 0 +++ [pid 5882] setpgid(0, 0 [pid 5881] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5880] write(3, "1000", 4 [pid 5876] exit_group(0 [pid 5848] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5879, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} --- [pid 5882] <... setpgid resumed>) = 0 executing program [pid 5881] <... openat resumed>) = 3 [pid 5880] <... write resumed>) = 4 [pid 5876] <... exit_group resumed>) = ? [pid 5848] restart_syscall(<... resuming interrupted clone ...> [pid 5880] close(3 [pid 5882] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5881] write(3, "1000", 4 [pid 5880] <... close resumed>) = 0 [pid 5880] write(1, "executing program\n", 18) = 18 [pid 5880] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5882] <... openat resumed>) = 3 [pid 5881] <... write resumed>) = 4 [pid 5880] <... bpf resumed>) = 3 [pid 5876] +++ exited with 0 +++ [pid 5882] write(3, "1000", 4 [pid 5881] close(3executing program [pid 5882] <... write resumed>) = 4 [pid 5881] <... close resumed>) = 0 [pid 5854] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5876, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} --- [pid 5882] close(3 [pid 5881] write(1, "executing program\n", 18 [pid 5882] <... close resumed>) = 0 [pid 5881] <... write resumed>) = 18 executing program [pid 5854] restart_syscall(<... resuming interrupted clone ...> [pid 5882] write(1, "executing program\n", 18 [pid 5881] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5882] <... write resumed>) = 18 [pid 5880] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16 [pid 5854] <... restart_syscall resumed>) = 0 [pid 5882] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=19, insns=0x2000000003c0, license="GPL", log_level=1, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_SK_SKB_VERDICT, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 5881] <... bpf resumed>) = 3 [pid 5848] <... restart_syscall resumed>) = 0 [pid 5882] <... bpf resumed>) = 3 [ 85.131900][ T5879] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 85.131909][ T5879] [pid 5881] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16 [pid 5880] <... bpf resumed>) = 4 [pid 5854] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5882] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=3}}, 16 [pid 5881] <... bpf resumed>) = 4 [pid 5882] <... bpf resumed>) = 4 [pid 5881] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5882] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5881] <... openat resumed>) = 5 ./strace-static-x86_64: Process 5883 attached [pid 5882] <... openat resumed>) = 5 [pid 5881] write(5, "5", 1 [pid 5880] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 5848] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5883] set_robust_list(0x5555947c0660, 24 [pid 5882] write(5, "5", 1 [pid 5881] <... write resumed>) = 1 [ 85.517974][ T5881] FAULT_INJECTION: forcing a failure. [ 85.517974][ T5881] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 85.531051][ T5881] CPU: 0 UID: 0 PID: 5881 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 85.531068][ T5881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 85.531074][ T5881] Call Trace: [ 85.531081][ T5881] [ 85.531087][ T5881] dump_stack_lvl+0x189/0x250 [ 85.531103][ T5881] ? __pfx____ratelimit+0x10/0x10 [ 85.531117][ T5881] ? __pfx_dump_stack_lvl+0x10/0x10 [ 85.531126][ T5881] ? __pfx__printk+0x10/0x10 [ 85.531137][ T5881] ? bpf_trace_printk+0xc1/0x190 [ 85.531148][ T5881] should_fail_ex+0x414/0x560 [ 85.531163][ T5881] strncpy_from_user+0x36/0x290 [ 85.531177][ T5881] strncpy_from_user_nofault+0x72/0x150 [ 85.531190][ T5881] bpf_probe_read_compat_str+0xe2/0x180 [ 85.531200][ T5881] bpf_prog_56079403e473c493+0x70/0x76 [ 85.531209][ T5881] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 85.531220][ T5881] ? seqcount_lockdep_reader_access+0x175/0x1c0 [ 85.531231][ T5881] ? bpf_trace_run2+0x186/0x4b0 [ 85.531242][ T5881] ? rcu_is_watching+0x15/0xb0 [ 85.531255][ T5881] ? __pfx___cant_migrate+0x10/0x10 [ 85.531269][ T5881] ? lock_acquire+0x5f/0x360 [ 85.531281][ T5881] ? rcu_is_watching+0x15/0xb0 [ 85.531294][ T5881] ? lock_release+0x4b/0x3e0 [ 85.531307][ T5881] bpf_trace_run2+0x281/0x4b0 [ 85.531318][ T5881] ? bpf_trace_run2+0x186/0x4b0 [ 85.531328][ T5881] ? __pfx_bpf_trace_run2+0x10/0x10 [ 85.531339][ T5881] ? unwind_next_frame+0xa5/0x2390 [ 85.531349][ T5881] ? __bpf_trace_tlb_flush+0xe0/0x150 [ 85.531364][ T5881] __bpf_trace_tlb_flush+0xf5/0x150 [ 85.531377][ T5881] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 85.531392][ T5881] ? kvm_sched_clock_read+0x11/0x20 [ 85.531405][ T5881] ? sched_clock+0x3f/0x60 [ 85.531417][ T5881] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 85.531429][ T5881] __traceiter_tlb_flush+0x76/0xd0 [ 85.531442][ T5881] trace_tlb_flush+0x115/0x140 [ 85.531454][ T5881] switch_mm_irqs_off+0x53e/0x7a0 [ 85.531466][ T5881] ? __pfx_switch_mm_irqs_off+0x10/0x10 [ 85.531476][ T5881] ? psi_task_switch+0x4e3/0x880 [ 85.531487][ T5881] __schedule+0x109d/0x4d30 [ 85.531503][ T5881] ? do_raw_spin_lock+0x121/0x290 [ 85.531513][ T5881] ? schedule+0x165/0x360 [ 85.531524][ T5881] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 85.531534][ T5881] ? __pfx___schedule+0x10/0x10 [ 85.531545][ T5881] ? schedule+0x91/0x360 [ 85.531555][ T5881] ? rcu_is_watching+0x15/0xb0 [ 85.531568][ T5881] ? rcu_is_watching+0x15/0xb0 [ 85.531581][ T5881] ? lock_release+0x4b/0x3e0 [ 85.531592][ T5881] ? rcu_is_watching+0x15/0xb0 [ 85.531606][ T5881] schedule+0x165/0x360 [ 85.531618][ T5881] ptrace_stop+0x575/0x940 [ 85.531632][ T5881] ptrace_notify+0x20f/0x2c0 [ 85.531645][ T5881] ? __pfx_ptrace_notify+0x10/0x10 [ 85.531659][ T5881] ? rcu_is_watching+0x15/0xb0 [ 85.531673][ T5881] syscall_trace_enter+0x60/0x160 [ 85.531686][ T5881] do_syscall_64+0xd3/0x3b0 [ 85.531700][ T5881] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.531708][ T5881] ? clear_bhb_loop+0x60/0xb0 [ 85.531718][ T5881] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.531728][ T5881] RIP: 0033:0x7fe51845c8d9 [ 85.531736][ T5881] Code: Unable to access opcode bytes at 0x7fe51845c8af. [ 85.531741][ T5881] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 85.531754][ T5881] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 85.531761][ T5881] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 ./strace-static-x86_64: Process 5884 attached [pid 5883] <... set_robust_list resumed>) = 0 [pid 5882] <... write resumed>) = 1 [pid 5881] bpf(BPF_ENABLE_STATS, NULL, 0 [pid 5880] <... openat resumed>) = 5 [pid 5854] <... clone resumed>, child_tidptr=0x5555947c0650) = 5883 [pid 5848] <... clone resumed>, child_tidptr=0x5555947c0650) = 5884 [pid 5884] set_robust_list(0x5555947c0660, 24 [pid 5883] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5882] bpf(BPF_ENABLE_STATS, NULL, 0 [ 85.531767][ T5881] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 [ 85.531772][ T5881] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 85.531778][ T5881] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 85.531787][ T5881] [ 85.894357][ T5882] FAULT_INJECTION: forcing a failure. [ 85.894357][ T5882] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 85.907416][ T5882] CPU: 0 UID: 0 PID: 5882 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 85.907433][ T5882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 85.907439][ T5882] Call Trace: [ 85.907444][ T5882] [ 85.907450][ T5882] dump_stack_lvl+0x189/0x250 [ 85.907465][ T5882] ? __pfx____ratelimit+0x10/0x10 [ 85.907478][ T5882] ? __pfx_dump_stack_lvl+0x10/0x10 [ 85.907487][ T5882] ? __pfx__printk+0x10/0x10 [ 85.907499][ T5882] ? bpf_trace_printk+0xc1/0x190 [ 85.907509][ T5882] should_fail_ex+0x414/0x560 [ 85.907525][ T5882] strncpy_from_user+0x36/0x290 [ 85.907539][ T5882] strncpy_from_user_nofault+0x72/0x150 [ 85.907551][ T5882] bpf_probe_read_compat_str+0xe2/0x180 [ 85.907561][ T5882] bpf_prog_56079403e473c493+0x70/0x76 [ 85.907570][ T5882] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 85.907581][ T5882] ? seqcount_lockdep_reader_access+0x175/0x1c0 [ 85.907592][ T5882] ? bpf_trace_run2+0x186/0x4b0 [ 85.907603][ T5882] ? rcu_is_watching+0x15/0xb0 [ 85.907616][ T5882] ? __pfx___cant_migrate+0x10/0x10 [ 85.907629][ T5882] ? lock_acquire+0x5f/0x360 [ 85.907641][ T5882] ? rcu_is_watching+0x15/0xb0 [ 85.907654][ T5882] ? lock_release+0x4b/0x3e0 [ 85.907667][ T5882] bpf_trace_run2+0x281/0x4b0 [ 85.907678][ T5882] ? bpf_trace_run2+0x186/0x4b0 [ 85.907689][ T5882] ? __pfx_bpf_trace_run2+0x10/0x10 [ 85.907699][ T5882] ? unwind_next_frame+0xa5/0x2390 [ 85.907710][ T5882] ? __bpf_trace_tlb_flush+0xe0/0x150 [ 85.907725][ T5882] __bpf_trace_tlb_flush+0xf5/0x150 [ 85.907738][ T5882] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 85.907753][ T5882] ? kvm_sched_clock_read+0x11/0x20 [ 85.907765][ T5882] ? sched_clock+0x3f/0x60 [ 85.907777][ T5882] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 85.907789][ T5882] __traceiter_tlb_flush+0x76/0xd0 [ 85.907803][ T5882] trace_tlb_flush+0x115/0x140 [ 85.907814][ T5882] switch_mm_irqs_off+0x53e/0x7a0 [ 85.907826][ T5882] ? __pfx_switch_mm_irqs_off+0x10/0x10 [ 85.907836][ T5882] ? psi_task_switch+0x4e3/0x880 [ 85.907846][ T5882] __schedule+0x109d/0x4d30 [ 85.907862][ T5882] ? do_raw_spin_lock+0x121/0x290 [ 85.907872][ T5882] ? schedule+0x165/0x360 [ 85.907883][ T5882] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 85.907893][ T5882] ? __pfx___schedule+0x10/0x10 [ 85.907966][ T5882] ? schedule+0x91/0x360 [ 85.907976][ T5882] ? rcu_is_watching+0x15/0xb0 [ 85.907989][ T5882] ? rcu_is_watching+0x15/0xb0 [ 85.908002][ T5882] ? lock_release+0x4b/0x3e0 [ 85.908013][ T5882] ? rcu_is_watching+0x15/0xb0 [ 85.908027][ T5882] schedule+0x165/0x360 [ 85.908039][ T5882] ptrace_stop+0x575/0x940 [ 85.908053][ T5882] ptrace_notify+0x20f/0x2c0 [ 85.908066][ T5882] ? __pfx_ptrace_notify+0x10/0x10 [ 85.908079][ T5882] ? rcu_is_watching+0x15/0xb0 [ 85.908093][ T5882] syscall_trace_enter+0x60/0x160 [ 85.908107][ T5882] do_syscall_64+0xd3/0x3b0 [ 85.908120][ T5882] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.908129][ T5882] ? clear_bhb_loop+0x60/0xb0 [ 85.908139][ T5882] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.908148][ T5882] RIP: 0033:0x7fe51845c8d9 [ 85.908157][ T5882] Code: Unable to access opcode bytes at 0x7fe51845c8af. [ 85.908162][ T5882] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 85.908175][ T5882] RAX: ffffffffffffffda RBX: 00007ffe3c17a330 RCX: 00007fe51845c8d9 [ 85.908182][ T5882] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000020 [ 85.908187][ T5882] RBP: 0000000000000001 R08: 00007ffe3c17a0b7 R09: 0000000000000140 [ 85.908193][ T5882] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 85.908199][ T5882] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 85.908208][ T5882] [ 85.913477][ T5880] FAULT_INJECTION: forcing a failure. [ 85.913477][ T5880] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 86.280216][ T5880] CPU: 1 UID: 0 PID: 5880 Comm: syz-executor502 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) [ 86.280234][ T5880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 86.280240][ T5880] Call Trace: [ 86.280247][ T5880] [ 86.280254][ T5880] dump_stack_lvl+0x189/0x250 [ 86.280270][ T5880] ? __pfx____ratelimit+0x10/0x10 [ 86.280283][ T5880] ? __pfx_dump_stack_lvl+0x10/0x10 [ 86.280292][ T5880] ? __pfx__printk+0x10/0x10 [ 86.280303][ T5880] ? bpf_trace_printk+0xc1/0x190 [ 86.280314][ T5880] should_fail_ex+0x414/0x560 [ 86.280329][ T5880] strncpy_from_user+0x36/0x290 [ 86.280343][ T5880] strncpy_from_user_nofault+0x72/0x150 [ 86.280356][ T5880] bpf_probe_read_compat_str+0xe2/0x180 [ 86.280365][ T5880] bpf_prog_56079403e473c493+0x70/0x76 [ 86.280375][ T5880] ? exc_int3+0xe/0x80 [ 86.280388][ T5880] ? kvm_sched_clock_read+0x11/0x20 [ 86.280399][ T5880] ? sched_clock+0x3f/0x60 [ 86.280412][ T5880] bpf_trace_run2+0x3ff/0x4b0 [ 86.280423][ T5880] ? bpf_trace_run2+0x186/0x4b0 [ 86.280434][ T5880] ? __pfx_bpf_trace_run2+0x10/0x10 [ 86.280444][ T5880] ? rcu_is_watching+0x15/0xb0 [ 86.280459][ T5880] ? __bpf_trace_tlb_flush+0xe0/0x150 [ 86.280473][ T5880] __bpf_trace_tlb_flush+0xf5/0x150 [ 86.280486][ T5880] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 86.280501][ T5880] ? kvm_sched_clock_read+0x11/0x20 [ 86.280513][ T5880] ? sched_clock+0x3f/0x60 [ 86.280524][ T5880] ? __pfx___bpf_trace_tlb_flush+0x10/0x10 [ 86.280536][ T5880] __traceiter_tlb_flush+0x76/0xd0 [ 86.280549][ T5880] trace_tlb_flush+0x115/0x140 [ 86.280561][ T5880] switch_mm_irqs_off+0x53e/0x7a0 [ 86.280573][ T5880] ? __pfx_switch_mm_irqs_off+0x10/0x10 [ 86.280583][ T5880] ? psi_task_switch+0x4e3/0x880 [ 86.280593][ T5880] __schedule+0x109d/0x4d30 [ 86.280610][ T5880] ? do_raw_spin_lock+0x121/0x290 [ 86.280620][ T5880] ? schedule+0x165/0x360 [ 86.280630][ T5880] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 86.280640][ T5880] ? __pfx___schedule+0x10/0x10 [ 86.280652][ T5880] ? schedule+0x91/0x360 [ 86.280662][ T5880] ? rcu_is_watching+0x15/0xb0 [ 86.280675][ T5880] ? rcu_is_watching+0x15/0xb0 [ 86.280688][ T5880] ? lock_release+0x4b/0x3e0 [ 86.280699][ T5880] ? rcu_is_watching+0x15/0xb0 [ 86.280713][ T5880] schedule+0x165/0x360 [ 86.280725][ T5880] ptrace_stop+0x575/0x940 [ 86.280739][ T5880] ptrace_notify+0x20f/0x2c0 [ 86.280752][ T5880] ? __pfx_ptrace_notify+0x10/0x10 [ 86.280765][ T5880] ? rcu_is_watching+0x15/0xb0 [ 86.280780][ T5880] syscall_trace_enter+0x60/0x160 [ 86.280793][ T5880] do_syscall_64+0xd3/0x3b0 [ 86.280806][ T5880] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.280837][ T5880] ? clear_bhb_loop+0x60/0xb0 [ 86.280847][ T5880] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.280857][ T5880] RIP: 0033:0x7fe51845c8d9 [ 86.280866][ T5880] Code: Unable to access opcode bytes at 0x7fe51845c8af. [ 86.280870][ T5880] RSP: 002b:00007ffe3c17a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000141