./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2323606811 <...> Warning: Permanently added '10.128.1.136' (ED25519) to the list of known hosts. execve("./syz-executor2323606811", ["./syz-executor2323606811"], 0x7ffd416d5a60 /* 10 vars */) = 0 brk(NULL) = 0x555590158000 brk(0x555590158d00) = 0x555590158d00 arch_prctl(ARCH_SET_FS, 0x555590158380) = 0 set_tid_address(0x555590158650) = 282 set_robust_list(0x555590158660, 24) = 0 rseq(0x555590158ca0, 0x20, 0, 0x53053053) = -1 ENOSYS (Function not implemented) prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2323606811", 4096) = 28 getrandom("\x0c\xc8\x4e\xa9\x01\xd9\x4d\x7b", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555590158d00 brk(0x555590179d00) = 0x555590179d00 brk(0x55559017a000) = 0x55559017a000 mprotect(0x7fd1a1730000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 openat(AT_FDCWD, "/proc/self/make-it-fail", O_WRONLY) = 3 close(3) = 0 openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_WRONLY) = 3 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3 write(3, "0", 1) = 1 close(3) = 0 unshare(CLONE_NEWPID) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555590158650) = 283 ./strace-static-x86_64: Process 283 attached [pid 283] set_robust_list(0x555590158660, 24) = 0 [pid 283] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 283] getppid() = 0 [pid 283] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0 [pid 283] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0 [pid 283] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0 [pid 283] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0 [pid 283] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0 [pid 283] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0 [pid 283] unshare(CLONE_NEWNS) = 0 [pid 283] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0 [pid 283] unshare(CLONE_NEWIPC) = -1 EINVAL (Invalid argument) [pid 283] unshare(CLONE_NEWCGROUP) = 0 [pid 283] unshare(CLONE_NEWUTS) = 0 [pid 283] unshare(CLONE_SYSVSEM) = 0 [pid 283] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) [pid 283] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) [pid 283] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) [pid 283] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) [ 29.404266][ T24] audit: type=1400 audit(1753477328.570:64): avc: denied { execmem } for pid=282 comm="syz-executor232" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [pid 283] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) [pid 283] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) [pid 283] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) [pid 283] getpid() = 1 [pid 283] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<, priority 10 [ 30.253671][ T288] FAULT_INJECTION: forcing a failure. [ 30.253671][ T288] name failslab, interval 1, probability 0, space 0, times 1 [ 30.266636][ T288] CPU: 0 PID: 288 Comm: syz-executor232 Not tainted 5.10.240-syzkaller-00213-gad9a98ef27a4 #0 [ 30.277124][ T288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 30.287524][ T288] Call Trace: [ 30.290911][ T288] __dump_stack+0x21/0x24 [ 30.295238][ T288] dump_stack_lvl+0x169/0x1d8 [ 30.299898][ T288] ? show_regs_print_info+0x18/0x18 [ 30.305182][ T288] ? __kasan_record_aux_stack+0xd2/0x100 [ 30.310799][ T288] ? avc_update_node+0x61a/0x720 [ 30.315817][ T288] ? avc_has_perm+0x2fb/0x360 [ 30.320663][ T288] ? selinux_socket_bind+0x246/0xb20 [ 30.325943][ T288] dump_stack+0x15/0x1c [ 30.330175][ T288] should_fail+0x3c1/0x510 [ 30.334676][ T288] ? audit_log_start+0x3b7/0x860 [ 30.339797][ T288] __should_failslab+0xa4/0xe0 [ 30.344553][ T288] should_failslab+0x9/0x20 [ 30.349039][ T288] kmem_cache_alloc+0x3d/0x2e0 [ 30.354062][ T288] audit_log_start+0x3b7/0x860 [ 30.358934][ T288] ? audit_serial+0x30/0x30 [ 30.363732][ T288] ? debug_smp_processor_id+0x17/0x20 [ 30.369112][ T288] ? slow_avc_audit+0x220/0x220 [ 30.374057][ T288] ? avc_audit_pre_callback+0x2a0/0x2a0 [ 30.379595][ T288] common_lsm_audit+0xd3/0x17f0 [ 30.384444][ T288] ? ipv6_skb_to_auditdata+0xca0/0xca0 [ 30.390132][ T288] ? __kasan_check_write+0x14/0x20 [ 30.395255][ T288] ? avc_alloc_node+0x28f/0x320 [ 30.400179][ T288] ? __kasan_check_write+0x14/0x20 [ 30.405292][ T288] ? _raw_spin_lock_irqsave+0xb0/0x110 [ 30.410755][ T288] ? _raw_spin_lock+0xe0/0xe0 [ 30.415555][ T288] slow_avc_audit+0x1ac/0x220 [ 30.420234][ T288] ? avc_get_hash_stats+0x180/0x180 [ 30.425428][ T288] ? avc_denied+0x132/0x1b0 [ 30.430022][ T288] avc_has_perm+0x1ca/0x360 [ 30.434609][ T288] ? avc_has_perm_noaudit+0x240/0x240 [ 30.440070][ T288] ? __switch_to+0x50f/0xfc0 [ 30.444650][ T288] ? __kasan_check_read+0x11/0x20 [ 30.449822][ T288] selinux_socket_bind+0x246/0xb20 [ 30.454930][ T288] ? native_set_ldt+0x370/0x370 [ 30.459803][ T288] ? selinux_socket_socketpair+0x150/0x150 [ 30.465608][ T288] ? switch_mm_irqs_off+0x763/0x9a0 [ 30.470984][ T288] ? __schedule+0xb4f/0x1310 [ 30.475754][ T288] ? __kasan_check_write+0x14/0x20 [ 30.480956][ T288] ? _raw_spin_lock_irq+0x8f/0xe0 [ 30.485978][ T288] ? __kasan_check_write+0x14/0x20 [ 30.491074][ T288] ? _raw_spin_lock_irq+0x8f/0xe0 [ 30.496318][ T288] ? _raw_spin_lock_irqsave+0x110/0x110 [ 30.501861][ T288] ? _raw_spin_unlock_irq+0x4e/0x70 [ 30.507047][ T288] ? cgroup_leave_frozen+0x166/0x2b0 [ 30.512411][ T288] ? check_stack_object+0x106/0x140 [ 30.517634][ T288] security_socket_bind+0x72/0xa0 [ 30.522694][ T288] __sys_bind+0x281/0x400 [ 30.527023][ T288] ? __ia32_sys_socketpair+0xb0/0xb0 [ 30.532314][ T288] ? ptrace_notify+0x1c4/0x250 [ 30.537266][ T288] ? fpu__clear_all+0x20/0x20 [ 30.542128][ T288] ? debug_smp_processor_id+0x17/0x20 [ 30.547591][ T288] __x64_sys_bind+0x7a/0x90 [ 30.552090][ T288] do_syscall_64+0x31/0x40 [ 30.556492][ T288] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 30.562601][ T288] RIP: 0033:0x7fd1a16be0b9 [ 30.567033][ T288] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 1c 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 30.587170][ T288] RSP: 002b:00007ffe562b6198 EFLAGS: 00000206 ORIG_RAX: 0000000000000031 [ 30.595758][ T288] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007fd1a16be0b9 [ 30.603848][ T288] RDX: 0000000000000010 RSI: 0000200000000000 RDI: 0000000000000004 [ 30.612149][ T288] RBP: 00007ffe562b61c0 R08: 00007ffe562b5f37 R09: 0000000100000000 [ 30.620458][ T288] R10: 0000000000000001 R11: 0000000000000206 R12: 00007ffe562b61f0 [pid 288] bind(4, {sa_family=AF_TIPC, sa_data="\x02\x01\x41\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00"}, 16) = 0 [pid 288] socket(AF_TIPC, SOCK_SEQPACKET, 0) = 6 [pid 288] sendmsg(6, {msg_name={sa_family=AF_TIPC, sa_data="\x02\x00\x41\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"}, msg_namelen=16, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, MSG_DONTROUTE) = 0 [pid 288] close(3) = 0 [pid 288] close(4) = 0 [pid 288] close(5) = 0 [pid 288] close(6) = 0 [pid 288] close(7) = -1 EBADF (Bad file descriptor) [pid 288] close(8) = -1 EBADF (Bad file descriptor) [pid 288] close(9) = -1 EBADF (Bad file descriptor) [pid 288] close(10) = -1 EBADF (Bad file descriptor) [pid 288] close(11) = -1 EBADF (Bad file descriptor) [pid 288] close(12) = -1 EBADF (Bad file descriptor) [pid 288] close(13) = -1 EBADF (Bad file descriptor) [pid 288] close(14) = -1 EBADF (Bad file descriptor) [pid 288] close(15) = -1 EBADF (Bad file descriptor) [pid 288] close(16) = -1 EBADF (Bad file descriptor) [pid 288] close(17) = -1 EBADF (Bad file descriptor) [pid 288] close(18) = -1 EBADF (Bad file descriptor) [pid 288] close(19) = -1 EBADF (Bad file descriptor) [pid 288] close(20) = -1 EBADF (Bad file descriptor) [pid 288] close(21) = -1 EBADF (Bad file descriptor) [pid 288] close(22) = -1 EBADF (Bad file descriptor) [pid 288] close(23) = -1 EBADF (Bad file descriptor) [pid 288] close(24) = -1 EBADF (Bad file descriptor) [pid 288] close(25) = -1 EBADF (Bad file descriptor) [pid 288] close(26) = -1 EBADF (Bad file descriptor) [pid 288] close(27) = -1 EBADF (Bad file descriptor) [pid 288] close(28) = -1 EBADF (Bad file descriptor) [pid 288] close(29) = -1 EBADF (Bad file descriptor) [pid 288] exit_group(0) = ? [pid 288] +++ exited with 0 +++ [pid 283] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2, si_uid=0, si_status=0, si_utime=0, si_stime=6} --- [pid 283] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 283] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 289 attached [pid 289] set_robust_list(0x555590158660, 24 [pid 283] <... clone resumed>, child_tidptr=0x555590158650) = 3 [pid 289] <... set_robust_list resumed>) = 0 [pid 289] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 289] setpgid(0, 0) = 0 [pid 289] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 289] write(3, "1000", 4) = 4 [pid 289] close(3executing program ) = 0 [pid 289] write(1, "executing program\n", 18) = 18 [pid 289] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3 [pid 289] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4 [pid 289] sendto(4, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0b\x00\x02\x00\x54\x49\x50\x43\x76\x32\x00\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32 [pid 289] recvfrom(4, [{nlmsg_len=548, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=3}, "\x01\x02\x00\x00\x0b\x00\x02\x00\x54\x49\x50\x43\x76\x32\x00\x00\x06\x00\x01\x00\x1e\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x0a\x00\x00\x00\xe4\x01\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x0a\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x03\x00\x00\x00\x08\x00\x02\x00\x0a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 548 [pid 289] recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=3}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36 [pid 289] close(4) = 0 [pid 289] sendmsg(3, {msg_name=NULL, msg_namelen=10240, msg_iov=[{iov_base="\x54\x00\x00\x00\x1e\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x40\x00\x01\x80\x2c\x00\x04\x00\x14\x00\x01\x00\x02\x00\x00\x00\xac\x14\x14\x0f\x00\x00\x00\x00\x00\x00\x00\x00\x14\x00\x02\x00\x02\x00\x00\x00\xff\xff\xff\xff\x00\x00\x00\x00\x00\x00\x00\x00\x0d\x00\x01\x00\x75\x64\x70\x3a\x73\x79\x7a\x32\x00\x00\x00\x00", iov_len=84}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 84 [pid 289] socket(AF_TIPC, SOCK_SEQPACKET, 0) = 4 [pid 289] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 5 [pid 289] write(5, "4", 1) = 1 [ 30.628993][ T288] R13: 00000000000f4240 R14: 00007ffe562b61f0 R15: 0000555590158338 [ 30.654164][ T289] tipc: Enabling of bearer rejected, already enabled [ 30.662663][ T289] FAULT_INJECTION: forcing a failure. [ 30.662663][ T289] name failslab, interval 1, probability 0, space 0, times 0 [ 30.675395][ T289] CPU: 0 PID: 289 Comm: syz-executor232 Not tainted 5.10.240-syzkaller-00213-gad9a98ef27a4 #0 [ 30.686002][ T289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 30.696102][ T289] Call Trace: [ 30.699671][ T289] __dump_stack+0x21/0x24 [ 30.704090][ T289] dump_stack_lvl+0x169/0x1d8 [ 30.708844][ T289] ? thaw_kernel_threads+0x220/0x220 [ 30.714153][ T289] ? show_regs_print_info+0x18/0x18 [ 30.719576][ T289] dump_stack+0x15/0x1c [ 30.723725][ T289] should_fail+0x3c1/0x510 [ 30.728133][ T289] ? tipc_nametbl_insert_publ+0x9bb/0x1430 [ 30.733989][ T289] __should_failslab+0xa4/0xe0 [ 30.739010][ T289] should_failslab+0x9/0x20 [ 30.743507][ T289] kmem_cache_alloc_trace+0x3a/0x2e0 [ 30.748786][ T289] ? tipc_dest_list_len+0x60/0x60 [ 30.753790][ T289] tipc_nametbl_insert_publ+0x9bb/0x1430 [ 30.759449][ T289] ? selinux_socket_socketpair+0x150/0x150 [ 30.765294][ T289] ? __kasan_check_write+0x14/0x20 [ 30.770445][ T289] tipc_nametbl_publish+0x222/0x3e0 [ 30.775660][ T289] tipc_sk_publish+0x17a/0x3f0 [ 30.780530][ T289] tipc_bind+0x1e3/0x2f0 [ 30.784845][ T289] __sys_bind+0x2f9/0x400 [ 30.789175][ T289] ? __ia32_sys_socketpair+0xb0/0xb0 [ 30.794912][ T289] ? ptrace_notify+0x1c4/0x250 [ 30.800187][ T289] ? fpu__clear_all+0x20/0x20 [ 30.804862][ T289] ? debug_smp_processor_id+0x17/0x20 [ 30.810242][ T289] __x64_sys_bind+0x7a/0x90 [ 30.814937][ T289] do_syscall_64+0x31/0x40 [ 30.819361][ T289] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 30.825541][ T289] RIP: 0033:0x7fd1a16be0b9 [ 30.829946][ T289] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 1c 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 30.849815][ T289] RSP: 002b:00007ffe562b6198 EFLAGS: 00000206 ORIG_RAX: 0000000000000031 [ 30.858260][ T289] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007fd1a16be0b9 [ 30.866448][ T289] RDX: 0000000000000010 RSI: 0000200000000000 RDI: 0000000000000004 [pid 289] bind(4, {sa_family=AF_TIPC, sa_data="\x02\x01\x41\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00"}, 16) = -1 EINVAL (Invalid argument) [pid 289] socket(AF_TIPC, SOCK_SEQPACKET, 0) = 6 [pid 289] sendmsg(6, {msg_name={sa_family=AF_TIPC, sa_data="\x02\x00\x41\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"}, msg_namelen=16, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, MSG_DONTROUTE) = -1 EHOSTUNREACH (No route to host) [pid 289] close(3) = 0 [pid 289] close(4) = 0 [pid 289] close(5) = 0 [pid 289] close(6) = 0 [pid 289] close(7) = -1 EBADF (Bad file descriptor) [pid 289] close(8) = -1 EBADF (Bad file descriptor) [pid 289] close(9) = -1 EBADF (Bad file descriptor) [pid 289] close(10) = -1 EBADF (Bad file descriptor) [pid 289] close(11) = -1 EBADF (Bad file descriptor) [pid 289] close(12) = -1 EBADF (Bad file descriptor) [pid 289] close(13) = -1 EBADF (Bad file descriptor) [pid 289] close(14) = -1 EBADF (Bad file descriptor) [pid 289] close(15) = -1 EBADF (Bad file descriptor) [pid 289] close(16) = -1 EBADF (Bad file descriptor) [pid 289] close(17) = -1 EBADF (Bad file descriptor) [pid 289] close(18) = -1 EBADF (Bad file descriptor) [pid 289] close(19) = -1 EBADF (Bad file descriptor) [pid 289] close(20) = -1 EBADF (Bad file descriptor) [pid 289] close(21) = -1 EBADF (Bad file descriptor) [pid 289] close(22) = -1 EBADF (Bad file descriptor) [pid 289] close(23) = -1 EBADF (Bad file descriptor) [pid 289] close(24) = -1 EBADF (Bad file descriptor) [pid 289] close(25) = -1 EBADF (Bad file descriptor) [pid 289] close(26) = -1 EBADF (Bad file descriptor) [pid 289] close(27) = -1 EBADF (Bad file descriptor) [pid 289] close(28) = -1 EBADF (Bad file descriptor) [pid 289] close(29) = -1 EBADF (Bad file descriptor) [pid 289] exit_group(0) = ? [pid 289] +++ exited with 0 +++ [pid 283] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- [pid 283] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 283] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555590158650) = 4 ./strace-static-x86_64: Process 290 attached [pid 290] set_robust_list(0x555590158660, 24) = 0 [pid 290] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 290] setpgid(0, 0) = 0 [pid 290] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 290] write(3, "1000", 4) = 4 executing program [pid 290] close(3) = 0 [pid 290] write(1, "executing program\n", 18) = 18 [pid 290] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3 [pid 290] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4 [pid 290] sendto(4, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0b\x00\x02\x00\x54\x49\x50\x43\x76\x32\x00\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32 [pid 290] recvfrom(4, [{nlmsg_len=548, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=4}, "\x01\x02\x00\x00\x0b\x00\x02\x00\x54\x49\x50\x43\x76\x32\x00\x00\x06\x00\x01\x00\x1e\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x0a\x00\x00\x00\xe4\x01\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x0a\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x03\x00\x00\x00\x08\x00\x02\x00\x0a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 548 [pid 290] recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=4}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36 [pid 290] close(4) = 0 [ 30.874421][ T289] RBP: 00007ffe562b61c0 R08: 00007ffe562b5f37 R09: 0000000100000000 [ 30.882441][ T289] R10: 0000000000000001 R11: 0000000000000206 R12: 00007ffe562b61f0 [ 30.890453][ T289] R13: 00000000000f4240 R14: 00000000000075db R15: 00007ffe562b61b4 [ 30.898554][ T289] tipc: Failed to bind to 65,0,0, no memory [pid 290] sendmsg(3, {msg_name=NULL, msg_namelen=10240, msg_iov=[{iov_base="\x54\x00\x00\x00\x1e\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x40\x00\x01\x80\x2c\x00\x04\x00\x14\x00\x01\x00\x02\x00\x00\x00\xac\x14\x14\x0f\x00\x00\x00\x00\x00\x00\x00\x00\x14\x00\x02\x00\x02\x00\x00\x00\xff\xff\xff\xff\x00\x00\x00\x00\x00\x00\x00\x00\x0d\x00\x01\x00\x75\x64\x70\x3a\x73\x79\x7a\x32\x00\x00\x00\x00", iov_len=84}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 84 [pid 290] socket(AF_TIPC, SOCK_SEQPACKET, 0) = 4 [pid 290] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 5 [pid 290] write(5, "4", 1) = 1 [ 30.922102][ T290] tipc: Enabling of bearer rejected, already enabled [ 30.931168][ T290] FAULT_INJECTION: forcing a failure. [ 30.931168][ T290] name failslab, interval 1, probability 0, space 0, times 0 [ 30.943987][ T290] CPU: 1 PID: 290 Comm: syz-executor232 Not tainted 5.10.240-syzkaller-00213-gad9a98ef27a4 #0 [ 30.954223][ T290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 30.964277][ T290] Call Trace: [ 30.967555][ T290] __dump_stack+0x21/0x24 [ 30.972174][ T290] dump_stack_lvl+0x169/0x1d8 [ 30.976832][ T290] ? thaw_kernel_threads+0x220/0x220 [ 30.982097][ T290] ? show_regs_print_info+0x18/0x18 [ 30.987407][ T290] dump_stack+0x15/0x1c [ 30.991556][ T290] should_fail+0x3c1/0x510 [ 30.995971][ T290] ? tipc_buf_acquire+0x2b/0xe0 [ 31.000905][ T290] __should_failslab+0xa4/0xe0 [ 31.005870][ T290] should_failslab+0x9/0x20 [ 31.010368][ T290] __kmalloc_track_caller+0x5f/0x320 [ 31.015648][ T290] ? kmem_cache_alloc+0x165/0x2e0 [ 31.020666][ T290] ? __alloc_skb+0x9e/0x520 [ 31.025179][ T290] ? tipc_buf_acquire+0x2b/0xe0 [ 31.030021][ T290] __alloc_skb+0xdc/0x520 [ 31.034431][ T290] tipc_buf_acquire+0x2b/0xe0 [ 31.039126][ T290] tipc_named_publish+0x2f9/0x890 [ 31.044231][ T290] tipc_nametbl_publish+0x25c/0x3e0 [ 31.049422][ T290] tipc_sk_publish+0x17a/0x3f0 [ 31.054172][ T290] tipc_bind+0x1e3/0x2f0 [ 31.058417][ T290] __sys_bind+0x2f9/0x400 [ 31.062834][ T290] ? __ia32_sys_socketpair+0xb0/0xb0 [ 31.068218][ T290] ? ptrace_notify+0x1c4/0x250 [ 31.073162][ T290] ? fpu__clear_all+0x20/0x20 [ 31.077835][ T290] ? debug_smp_processor_id+0x17/0x20 [ 31.083377][ T290] __x64_sys_bind+0x7a/0x90 [ 31.087882][ T290] do_syscall_64+0x31/0x40 [ 31.092288][ T290] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 31.098165][ T290] RIP: 0033:0x7fd1a16be0b9 [ 31.102717][ T290] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 1c 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 31.122522][ T290] RSP: 002b:00007ffe562b6198 EFLAGS: 00000206 ORIG_RAX: 0000000000000031 [ 31.131112][ T290] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007fd1a16be0b9 [ 31.139355][ T290] RDX: 0000000000000010 RSI: 0000200000000000 RDI: 0000000000000004 [ 31.147405][ T290] RBP: 00007ffe562b61c0 R08: 00007ffe562b5f37 R09: 0000000100000000 [ 31.155460][ T290] R10: 0000000000000001 R11: 0000000000000206 R12: 00007ffe562b61f0 [ 31.163517][ T290] R13: 00000000000f4240 R14: 00000000000077ad R15: 00007ffe562b61b4 [pid 290] bind(4, {sa_family=AF_TIPC, sa_data="\x02\x01\x41\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00"}, 16) = 0 [pid 290] socket(AF_TIPC, SOCK_SEQPACKET, 0) = 6 [pid 290] sendmsg(6, {msg_name={sa_family=AF_TIPC, sa_data="\x02\x00\x41\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"}, msg_namelen=16, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}, MSG_DONTROUTE) = 0 [pid 290] close(3) = 0 [pid 290] close(4) = 0 [pid 290] close(5) = 0 [pid 290] close(6) = 0 [pid 290] close(7) = -1 EBADF (Bad file descriptor) [pid 290] close(8) = -1 EBADF (Bad file descriptor) [pid 290] close(9) = -1 EBADF (Bad file descriptor) [pid 290] close(10) = -1 EBADF (Bad file descriptor) [pid 290] close(11) = -1 EBADF (Bad file descriptor) [pid 290] close(12) = -1 EBADF (Bad file descriptor) [pid 290] close(13) = -1 EBADF (Bad file descriptor) [pid 290] close(14) = -1 EBADF (Bad file descriptor) [pid 290] close(15) = -1 EBADF (Bad file descriptor) [pid 290] close(16) = -1 EBADF (Bad file descriptor) [pid 290] close(17) = -1 EBADF (Bad file descriptor) [pid 290] close(18) = -1 EBADF (Bad file descriptor) [pid 290] close(19) = -1 EBADF (Bad file descriptor) [pid 290] close(20) = -1 EBADF (Bad file descriptor) [pid 290] close(21) = -1 EBADF (Bad file descriptor) [pid 290] close(22) = -1 EBADF (Bad file descriptor) [pid 290] close(23) = -1 EBADF (Bad file descriptor) [pid 290] close(24) = -1 EBADF (Bad file descriptor) [pid 290] close(25) = -1 EBADF (Bad file descriptor) [pid 290] close(26) = -1 EBADF (Bad file descriptor) [pid 290] close(27) = -1 EBADF (Bad file descriptor) [pid 290] close(28) = -1 EBADF (Bad file descriptor) [pid 290] close(29) = -1 EBADF (Bad file descriptor) [pid 290] exit_group(0) = ? [pid 290] +++ exited with 0 +++ [pid 283] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=4, si_uid=0, si_status=0, si_utime=0, si_stime=3} --- [pid 283] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 283] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555590158650) = 5 ./strace-static-x86_64: Process 291 attached [pid 291] set_robust_list(0x555590158660, 24) = 0 [pid 291] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 291] setpgid(0, 0) = 0 [pid 291] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXECexecuting program ) = 3 [pid 291] write(3, "1000", 4) = 4 [pid 291] close(3) = 0 [pid 291] write(1, "executing program\n", 18) = 18 [pid 291] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3 [pid 291] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4 [pid 291] sendto(4, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0b\x00\x02\x00\x54\x49\x50\x43\x76\x32\x00\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32 [pid 291] recvfrom(4, [{nlmsg_len=548, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=5}, "\x01\x02\x00\x00\x0b\x00\x02\x00\x54\x49\x50\x43\x76\x32\x00\x00\x06\x00\x01\x00\x1e\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x0a\x00\x00\x00\xe4\x01\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x0a\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x03\x00\x00\x00\x08\x00\x02\x00\x0a\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 548 [pid 291] recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=5}, {error=0, msg={nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36 [pid 291] close(4) = 0 [ 31.171866][ T290] tipc: Publication distribution failure [pid 291] sendmsg(3, {msg_name=NULL, msg_namelen=10240, msg_iov=[{iov_base="\x54\x00\x00\x00\x1e\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x40\x00\x01\x80\x2c\x00\x04\x00\x14\x00\x01\x00\x02\x00\x00\x00\xac\x14\x14\x0f\x00\x00\x00\x00\x00\x00\x00\x00\x14\x00\x02\x00\x02\x00\x00\x00\xff\xff\xff\xff\x00\x00\x00\x00\x00\x00\x00\x00\x0d\x00\x01\x00\x75\x64\x70\x3a\x73\x79\x7a\x32\x00\x00\x00\x00", iov_len=84}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 84 [pid 291] socket(AF_TIPC, SOCK_SEQPACKET, 0) = 4 [pid 291] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 5 [pid 291] write(5, "4", 1) = 1 [ 31.194423][ T291] tipc: Enabling of bearer rejected, already enabled [ 31.203017][ T291] FAULT_INJECTION: forcing a failure. [ 31.203017][ T291] name failslab, interval 1, probability 0, space 0, times 0 [ 31.215906][ T291] CPU: 0 PID: 291 Comm: syz-executor232 Not tainted 5.10.240-syzkaller-00213-gad9a98ef27a4 #0 [ 31.226149][ T291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 31.236396][ T291] Call Trace: [ 31.239941][ T291] __dump_stack+0x21/0x24 [ 31.244265][ T291] dump_stack_lvl+0x169/0x1d8 [ 31.249041][ T291] ? thaw_kernel_threads+0x220/0x220 [ 31.254527][ T291] ? show_regs_print_info+0x18/0x18 [ 31.259739][ T291] dump_stack+0x15/0x1c [ 31.263986][ T291] should_fail+0x3c1/0x510 [ 31.268492][ T291] ? tipc_nametbl_insert_publ+0x9bb/0x1430 [ 31.274287][ T291] __should_failslab+0xa4/0xe0 [ 31.279134][ T291] should_failslab+0x9/0x20 [ 31.283678][ T291] kmem_cache_alloc_trace+0x3a/0x2e0 [ 31.289121][ T291] ? tipc_dest_list_len+0x60/0x60 [ 31.294171][ T291] tipc_nametbl_insert_publ+0x9bb/0x1430 [ 31.299914][ T291] ? selinux_socket_socketpair+0x150/0x150 [ 31.305742][ T291] ? __kasan_check_write+0x14/0x20 [ 31.310971][ T291] tipc_nametbl_publish+0x222/0x3e0 [ 31.316164][ T291] tipc_sk_publish+0x17a/0x3f0 [ 31.321203][ T291] tipc_bind+0x1e3/0x2f0 [ 31.325731][ T291] __sys_bind+0x2f9/0x400 [ 31.330092][ T291] ? __ia32_sys_socketpair+0xb0/0xb0 [ 31.335385][ T291] ? ptrace_notify+0x1c4/0x250 [ 31.340147][ T291] ? fpu__clear_all+0x20/0x20 [ 31.344822][ T291] ? debug_smp_processor_id+0x17/0x20 [ 31.350190][ T291] __x64_sys_bind+0x7a/0x90 [ 31.354821][ T291] do_syscall_64+0x31/0x40 [ 31.359277][ T291] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 31.365508][ T291] RIP: 0033:0x7fd1a16be0b9 [ 31.369913][ T291] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 1c 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 31.389601][ T291] RSP: 002b:00007ffe562b6198 EFLAGS: 00000206 ORIG_RAX: 0000000000000031 [ 31.398004][ T291] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007fd1a16be0b9 [ 31.405960][ T291] RDX: 0000000000000010 RSI: 0000200000000000 RDI: 0000000000000004 [ 31.413916][ T291] RBP: 00007ffe562b61c0 R08: 00007ffe562b5f37 R09: 0000000100000000 [ 31.421980][ T291] R10: 0000000000000001 R11: 0000000000000206 R12: 00007ffe562b61f0 [ 31.429943][ T291] R13: 00000000000f4240 R14: 00000000000078b9 R15: 00007ffe562b61b4 [ 31.438195][ T291] tipc: Failed to bind to 65,0,0, no memory [pid 291] bind(4, {sa_family=AF_TIPC, sa_data="\x02\x01\x41\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00"}, 16) = -1 EINVAL (Invalid argument) [pid 291] socket(AF_TIPC, SOCK_SEQPACKET, 0) = 6 [ 31.444278][ T54] tipc: 32-bit node address hash set to f1414ac [ 31.451023][ T291] list_add double add: new=ffff88810ac3d838, prev=ffff88810ac3d838, next=ffff88810ac3d838. [ 31.461298][ T291] ------------[ cut here ]------------ [ 31.466790][ T291] kernel BUG at lib/list_debug.c:35! [ 31.472080][ T291] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 31.478134][ T291] CPU: 1 PID: 291 Comm: syz-executor232 Not tainted 5.10.240-syzkaller-00213-gad9a98ef27a4 #0 [ 31.488437][ T291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 31.498747][ T291] RIP: 0010:__list_add_valid+0x9f/0xf0 [ 31.504192][ T291] Code: f7 74 12 49 39 df 74 0d b0 01 5b 41 5c 41 5d 41 5e 41 5f 5d c3 48 c7 c7 40 1c 20 85 4c 89 fe 4c 89 f2 48 89 d9 e8 81 6f 30 02 <0f> 0b 48 c7 c7 40 1a 20 85 e8 73 6f 30 02 0f 0b 48 c7 c7 e0 1a 20 [ 31.523977][ T291] RSP: 0018:ffffc90000bc7370 EFLAGS: 00010246 [ 31.530203][ T291] RAX: 0000000000000058 RBX: ffff88810ac3d838 RCX: 0a28cf9fd37eb400 [ 31.538343][ T291] RDX: 0000000000000000 RSI: 0000000000000201 RDI: 0000000000000000 [ 31.546305][ T291] RBP: ffffc90000bc7398 R08: dffffc0000000000 R09: ffffed103ee2a5f8 [ 31.554267][ T291] R10: ffffed103ee2a5f8 R11: 1ffff1103ee2a5f7 R12: ffff88810ac3d840 [ 31.562247][ T291] R13: dffffc0000000000 R14: ffff88810ac3d838 R15: ffff88810ac3d838 [ 31.570312][ T291] FS: 0000555590158380(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 31.579415][ T291] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 31.585982][ T291] CR2: 0000555590158650 CR3: 000000010d066000 CR4: 00000000003506a0 [ 31.594030][ T291] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 31.601995][ T291] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 31.610105][ T291] Call Trace: [ 31.613415][ T291] tipc_nametbl_translate+0xbe4/0xed0 [ 31.618774][ T291] __tipc_sendmsg+0xb99/0x2be0 [ 31.623526][ T291] ? tipc_sk_publish+0x3f0/0x3f0 [ 31.628532][ T291] ? prb_read_valid+0x60/0x60 [ 31.633285][ T291] ? __update_load_avg_cfs_rq+0xaf/0x2f0 [ 31.639012][ T291] ? update_load_avg+0x4dc/0x14f0 [ 31.644144][ T291] ? enqueue_task_fair+0xac3/0x2250 [ 31.649335][ T291] __tipc_sendstream+0x14ec/0x1740 [ 31.654521][ T291] ? avc_has_perm+0x234/0x360 [ 31.659181][ T291] ? resched_curr+0x9b/0x1c0 [ 31.663754][ T291] ? avc_has_perm_noaudit+0x240/0x240 [ 31.669194][ T291] ? sched_clock+0x20/0x40 [ 31.673602][ T291] ? _raw_spin_lock_irq+0xe0/0xe0 [ 31.678628][ T291] ? __local_bh_enable_ip+0x53/0x80 [ 31.684070][ T291] ? local_bh_enable+0x1f/0x30 [ 31.688813][ T291] ? lock_sock_nested+0x1f5/0x290 [ 31.694017][ T291] ? tsk_advance_rx_queue+0x700/0x700 [ 31.699725][ T291] ? copy_fpregs_to_fpstate+0x14a/0x1b0 [ 31.705457][ T291] tipc_send_packet+0x7c/0xa0 [ 31.710194][ T291] ? tipc_sk_send_ack+0x630/0x630 [ 31.715308][ T291] ____sys_sendmsg+0x5a2/0x8c0 [ 31.720064][ T291] ? __sys_sendmsg_sock+0x40/0x40 [ 31.725143][ T291] ? import_iovec+0x7c/0xb0 [ 31.729724][ T291] ___sys_sendmsg+0x1f0/0x260 [ 31.734409][ T291] ? __switch_to_asm+0x34/0x60 [ 31.739201][ T291] ? __sys_sendmsg+0x250/0x250 [ 31.743987][ T291] ? __kasan_check_read+0x11/0x20 [ 31.749097][ T291] ? __fdget+0x15b/0x230 [ 31.753372][ T291] __x64_sys_sendmsg+0x1e2/0x2a0 [ 31.758451][ T291] ? do_notify_parent+0x7e0/0x7e0 [ 31.763826][ T291] ? ___sys_sendmsg+0x260/0x260 [ 31.768678][ T291] ? syscall_trace_enter+0x4b/0x170 [ 31.773961][ T291] do_syscall_64+0x31/0x40 [ 31.778375][ T291] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 31.784262][ T291] RIP: 0033:0x7fd1a16be0b9 [ 31.788670][ T291] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 1c 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 31.808351][ T291] RSP: 002b:00007ffe562b6198 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 31.816761][ T291] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fd1a16be0b9 [ 31.825177][ T291] RDX: 0000000000000004 RSI: 0000200000000240 RDI: 0000000000000006 [ 31.833197][ T291] RBP: 00007ffe562b61c0 R08: 0000000100000000 R09: 0000000100000000 [ 31.841515][ T291] R10: 0000000100000000 R11: 0000000000000246 R12: 00007ffe562b61f0 [ 31.849473][ T291] R13: 00000000000f4240 R14: 00000000000078b9 R15: 00007ffe562b61b4 [ 31.857799][ T291] Modules linked in: [ 31.861825][ T291] ---[ end trace a22f93933671d7cb ]--- [ 31.867362][ T291] RIP: 0010:__list_add_valid+0x9f/0xf0 [ 31.873017][ T291] Code: f7 74 12 49 39 df 74 0d b0 01 5b 41 5c 41 5d 41 5e 41 5f 5d c3 48 c7 c7 40 1c 20 85 4c 89 fe 4c 89 f2 48 89 d9 e8 81 6f 30 02 <0f> 0b 48 c7 c7 40 1a 20 85 e8 73 6f 30 02 0f 0b 48 c7 c7 e0 1a 20 [ 31.893073][ T291] RSP: 0018:ffffc90000bc7370 EFLAGS: 00010246 [ 31.899273][ T291] RAX: 0000000000000058 RBX: ffff88810ac3d838 RCX: 0a28cf9fd37eb400 [ 31.907351][ T291] RDX: 0000000000000000 RSI: 0000000000000201 RDI: 0000000000000000 [ 31.915375][ T291] RBP: ffffc90000bc7398 R08: dffffc0000000000 R09: ffffed103ee2a5f8 [ 31.923465][ T291] R10: ffffed103ee2a5f8 R11: 1ffff1103ee2a5f7 R12: ffff88810ac3d840 [ 31.931958][ T291] R13: dffffc0000000000 R14: ffff88810ac3d838 R15: ffff88810ac3d838 [ 31.940097][ T291] FS: 0000555590158380(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 31.949150][ T291] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 31.955803][ T291] CR2: 0000555590158650 CR3: 000000010d066000 CR4: 00000000003506a0 [ 31.964051][ T291] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 31.972019][ T291] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 31.980008][ T291] Kernel panic - not syncing: Fatal exception in interrupt [ 31.987554][ T291] Kernel Offset: disabled [ 31.991993][ T291] Rebooting in 86400 seconds..