./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2450224806 <...> Warning: Permanently added '10.128.0.226' (ED25519) to the list of known hosts. execve("./syz-executor2450224806", ["./syz-executor2450224806"], 0x7ffe7ae0acb0 /* 10 vars */) = 0 brk(NULL) = 0x55557ecf2000 brk(0x55557ecf2d00) = 0x55557ecf2d00 arch_prctl(ARCH_SET_FS, 0x55557ecf2380) = 0 set_tid_address(0x55557ecf2650) = 291 set_robust_list(0x55557ecf2660, 24) = 0 rseq(0x55557ecf2ca0, 0x20, 0, 0x53053053) = -1 ENOSYS (Function not implemented) prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2450224806", 4096) = 28 getrandom("\xc5\x01\xb8\xc1\x64\xf4\x8a\x1a", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55557ecf2d00 brk(0x55557ed13d00) = 0x55557ed13d00 brk(0x55557ed14000) = 0x55557ed14000 mprotect(0x7f131c22c000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 openat(AT_FDCWD, "/proc/self/make-it-fail", O_WRONLY) = 3 close(3) = 0 openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_WRONLY) = 3 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3 write(3, "0", 1) = 1 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557ecf2650) = 292 ./strace-static-x86_64: Process 292 attached [pid 292] set_robust_list(0x55557ecf2660, 24) = 0 [pid 292] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 292] setpgid(0, 0) = 0 [pid 292] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 292] write(3, "1000", 4) = 4 [pid 292] close(3) = 0 [pid 292] write(1, "executing program\n", 18executing program ) = 18 [ 48.117337][ T28] audit: type=1400 audit(1752582956.372:64): avc: denied { execmem } for pid=291 comm="syz-executor245" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 48.140219][ T28] audit: type=1400 audit(1752582956.402:65): avc: denied { bpf } for pid=292 comm="syz-executor245" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [pid 292] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000080, license="GPL", log_level=2, log_size=65372, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0}, 120) = 3 [pid 292] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4 [pid 292] write(4, "8", 1) = 1 [ 48.161452][ T28] audit: type=1400 audit(1752582956.402:66): avc: denied { prog_load } for pid=292 comm="syz-executor245" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 48.180909][ T28] audit: type=1400 audit(1752582956.402:67): avc: denied { perfmon } for pid=292 comm="syz-executor245" capability=38 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 48.182708][ T292] FAULT_INJECTION: forcing a failure. [ 48.182708][ T292] name failslab, interval 1, probability 0, space 0, times 1 [ 48.202562][ T28] audit: type=1400 audit(1752582956.442:68): avc: denied { prog_run } for pid=292 comm="syz-executor245" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 48.234089][ T292] CPU: 1 PID: 292 Comm: syz-executor245 Not tainted 6.1.141-syzkaller-00038-ge2deb0b42a3a #0 [ 48.244265][ T292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 48.254338][ T292] Call Trace: [ 48.257650][ T292] [ 48.260582][ T292] __dump_stack+0x21/0x24 [ 48.264944][ T292] dump_stack_lvl+0xee/0x150 [ 48.269544][ T292] ? __cfi_dump_stack_lvl+0x8/0x8 [ 48.274576][ T292] ? vsnprintf+0x186d/0x1960 [ 48.279172][ T292] dump_stack+0x15/0x24 [ 48.283349][ T292] should_fail_ex+0x3d4/0x520 [ 48.288056][ T292] __should_failslab+0xac/0xf0 [ 48.292840][ T292] ? sidtab_sid2str_get+0x120/0x2c0 [ 48.298044][ T292] should_failslab+0x9/0x20 [ 48.302555][ T292] __kmem_cache_alloc_node+0x3d/0x2c0 [ 48.307941][ T292] ? audit_log_format+0x120/0x120 [ 48.312988][ T292] ? sidtab_sid2str_get+0x120/0x2c0 [ 48.318190][ T292] __kmalloc_node_track_caller+0xa0/0x1e0 [ 48.324013][ T292] kmemdup+0x2b/0x60 [ 48.327919][ T292] sidtab_sid2str_get+0x120/0x2c0 [ 48.332956][ T292] security_sid_to_context_core+0x2ac/0x480 [ 48.338883][ T292] security_sid_to_context+0x33/0x40 [ 48.344204][ T292] avc_audit_post_callback+0x1cc/0x820 [ 48.349691][ T292] ? __cfi_avc_audit_post_callback+0x10/0x10 [ 48.355779][ T292] ? audit_log_untrustedstring+0xe6/0x100 [ 48.361531][ T292] ? __cfi_avc_audit_post_callback+0x10/0x10 [ 48.367538][ T292] common_lsm_audit+0x12d7/0x16d0 [ 48.372576][ T292] ? __cfi_avc_audit_post_callback+0x10/0x10 [ 48.378568][ T292] ? __cfi_common_lsm_audit+0x10/0x10 [ 48.383943][ T292] ? avc_update_node+0x2c6/0xa00 [ 48.388885][ T292] ? avc_denied+0x132/0x1b0 [ 48.393393][ T292] slow_avc_audit+0x1ac/0x220 [ 48.398080][ T292] ? __cfi_slow_avc_audit+0x10/0x10 [ 48.403290][ T292] ? avc_has_perm_noaudit+0x2f4/0x460 [ 48.408674][ T292] avc_has_perm+0x1e6/0x240 [ 48.413295][ T292] ? __cfi_avc_has_perm+0x10/0x10 [ 48.418420][ T292] ? __kasan_check_write+0x14/0x20 [ 48.423563][ T292] selinux_perf_event_open+0xcb/0x120 [ 48.428951][ T292] security_perf_event_open+0x7a/0xb0 [ 48.434361][ T292] __se_sys_perf_event_open+0x13c/0x1b80 [ 48.440006][ T292] ? ptrace_stop+0x6ce/0x8b0 [ 48.444607][ T292] ? __x64_sys_perf_event_open+0xd0/0xd0 [ 48.450258][ T292] ? fpregs_restore_userregs+0x128/0x260 [ 48.455899][ T292] __x64_sys_perf_event_open+0xbf/0xd0 [ 48.461369][ T292] x64_sys_call+0x385/0x9a0 [ 48.465878][ T292] do_syscall_64+0x4c/0xa0 [ 48.470299][ T292] ? clear_bhb_loop+0x30/0x80 [ 48.474994][ T292] ? clear_bhb_loop+0x30/0x80 [ 48.479686][ T292] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 48.485585][ T292] RIP: 0033:0x7f131c1c0869 [ 48.490031][ T292] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 48.509634][ T292] RSP: 002b:00007fff6b1236d8 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 48.518064][ T292] RAX: ffffffffffffffda RBX: 00007fff6b1236f0 RCX: 00007f131c1c0869 [ 48.526035][ T292] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000200000000200 [ 48.534007][ T292] RBP: 0000000000000001 R08: 0000000000000000 R09: 00000000000000a0 [ 48.541979][ T292] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 48.549956][ T292] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001 [ 48.557931][ T292] [ 48.563079][ T28] audit: type=1400 audit(1752582956.442:69): avc: denied { open } for pid=292 comm="syz-executor245" scontext=root:sysadm_r:sysadm_t tsid=135 tclass=perf_event permissive=1 [ 48.580546][ T28] audit: type=1400 audit(1752582956.822:70): avc: denied { kernel } for pid=292 comm="syz-executor245" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 48.600557][ T28] audit: type=1400 audit(1752582956.862:71): avc: denied { cpu } for pid=292 comm="syz-executor245" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [pid 292] perf_event_open({type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=201, sample_period=8, sample_type=0, read_format=PERF_FORMAT_TOTAL_TIME_RUNNING, precise_ip=0 /* arbitrary skid */, ...}, -1, 0, -1, 0) = -1 EINVAL (Invalid argument) [pid 292] exit_group(0) = ? [pid 292] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=292, si_uid=0, si_status=0, si_utime=0, si_stime=11} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 293 attached , child_tidptr=0x55557ecf2650) = 293 [pid 293] set_robust_list(0x55557ecf2660, 24) = 0 [pid 293] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 293] setpgid(0, 0) = 0 [pid 293] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 293] write(3, "1000", 4) = 4 [pid 293] close(3) = 0 [pid 293] write(1, "executing program\n", 18executing program ) = 18 [pid 293] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000080, license="GPL", log_level=2, log_size=65372, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0}, 120) = 3 [pid 293] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4 [pid 293] write(4, "8", 1) = 1 [ 48.638682][ T293] FAULT_INJECTION: forcing a failure. [ 48.638682][ T293] name failslab, interval 1, probability 0, space 0, times 0 [ 48.651385][ T293] CPU: 1 PID: 293 Comm: syz-executor245 Not tainted 6.1.141-syzkaller-00038-ge2deb0b42a3a #0 [ 48.661549][ T293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 48.671625][ T293] Call Trace: [ 48.674905][ T293] [ 48.677834][ T293] __dump_stack+0x21/0x24 [ 48.682166][ T293] dump_stack_lvl+0xee/0x150 [ 48.686761][ T293] ? __cfi_dump_stack_lvl+0x8/0x8 [ 48.691789][ T293] dump_stack+0x15/0x24 [ 48.696307][ T293] should_fail_ex+0x3d4/0x520 [ 48.701014][ T293] ? security_file_alloc+0x33/0x130 [ 48.706242][ T293] __should_failslab+0xac/0xf0 [ 48.711014][ T293] should_failslab+0x9/0x20 [ 48.715631][ T293] kmem_cache_alloc+0x3b/0x330 [ 48.720400][ T293] ? __alloc_file+0x28/0x2a0 [ 48.724990][ T293] security_file_alloc+0x33/0x130 [ 48.730011][ T293] __alloc_file+0xb5/0x2a0 [ 48.734425][ T293] alloc_empty_file+0x97/0x180 [ 48.739187][ T293] alloc_file+0x59/0x640 [ 48.743428][ T293] alloc_file_pseudo+0x17a/0x1f0 [ 48.748373][ T293] ? __cfi_alloc_file_pseudo+0x10/0x10 [ 48.753860][ T293] anon_inode_getfile+0xa6/0x180 [ 48.758809][ T293] __se_sys_perf_event_open+0xbd2/0x1b80 [ 48.764508][ T293] ? __x64_sys_perf_event_open+0xd0/0xd0 [ 48.770293][ T293] ? fpregs_restore_userregs+0x128/0x260 [ 48.775940][ T293] __x64_sys_perf_event_open+0xbf/0xd0 [ 48.781420][ T293] x64_sys_call+0x385/0x9a0 [ 48.785939][ T293] do_syscall_64+0x4c/0xa0 [ 48.790452][ T293] ? clear_bhb_loop+0x30/0x80 [ 48.795145][ T293] ? clear_bhb_loop+0x30/0x80 [ 48.799938][ T293] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 48.805834][ T293] RIP: 0033:0x7f131c1c0869 [ 48.810264][ T293] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 48.829872][ T293] RSP: 002b:00007fff6b1236d8 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [pid 293] perf_event_open({type=PERF_TYPE_TRACEPOINT, size=PERF_ATTR_SIZE_VER7, config=201, sample_period=8, sample_type=0, read_format=PERF_FORMAT_TOTAL_TIME_RUNNING, precise_ip=0 /* arbitrary skid */, ...}, -1, 0, -1, 0) = -1 ENOMEM (Cannot allocate memory) [pid 293] exit_group(0) = ? [pid 293] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=293, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557ecf2650) = 294 ./strace-static-x86_64: Process 294 attached [pid 294] set_robust_list(0x55557ecf2660, 24) = 0 [pid 294] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 294] setpgid(0, 0) = 0 [pid 294] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 294] write(3, "1000", 4) = 4 [pid 294] close(3executing program ) = 0 [pid 294] write(1, "executing program\n", 18) = 18 [pid 294] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=19, insns=0x200000000080, license="GPL", log_level=2, log_size=65372, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0}, 120) = 3 [pid 294] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4 [pid 294] write(4, "8", 1) = 1 [ 48.838292][ T293] RAX: ffffffffffffffda RBX: 00007fff6b1236f0 RCX: 00007f131c1c0869 [ 48.846266][ T293] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000200000000200 [ 48.854235][ T293] RBP: 0000000000000001 R08: 0000000000000000 R09: 00000000000000a0 [ 48.862206][ T293] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 48.870174][ T293] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001 [ 48.878163][ T293] [ 48.896766][ T294] FAULT_INJECTION: forcing a failure. [ 48.896766][ T294] name failslab, interval 1, probability 0, space 0, times 0 [ 48.909490][ T294] CPU: 0 PID: 294 Comm: syz-executor245 Not tainted 6.1.141-syzkaller-00038-ge2deb0b42a3a #0 [ 48.919664][ T294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 48.929728][ T294] Call Trace: [ 48.933009][ T294] [ 48.935959][ T294] __dump_stack+0x21/0x24 [ 48.940390][ T294] dump_stack_lvl+0xee/0x150 [ 48.944984][ T294] ? __cfi_dump_stack_lvl+0x8/0x8 [ 48.950015][ T294] dump_stack+0x15/0x24 [ 48.954171][ T294] should_fail_ex+0x3d4/0x520 [ 48.958848][ T294] __should_failslab+0xac/0xf0 [ 48.963611][ T294] ? tracepoint_probe_unregister+0x1e6/0x8b0 [ 48.969596][ T294] should_failslab+0x9/0x20 [ 48.974103][ T294] __kmem_cache_alloc_node+0x3d/0x2c0 [ 48.979478][ T294] ? __cfi_mutex_lock+0x10/0x10 [ 48.984328][ T294] ? tracepoint_probe_unregister+0x1e6/0x8b0 [ 48.990424][ T294] __kmalloc+0xa1/0x1e0 [ 48.994582][ T294] ? __kasan_check_write+0x14/0x20 [ 48.999700][ T294] ? __cfi_perf_trace_sched_wakeup_template+0x10/0x10 [ 49.006473][ T294] tracepoint_probe_unregister+0x1e6/0x8b0 [ 49.012300][ T294] trace_event_reg+0x21c/0x260 [ 49.017067][ T294] perf_trace_event_unreg+0xcc/0x1c0 [ 49.022360][ T294] perf_trace_destroy+0xbe/0x180 [ 49.027315][ T294] tp_perf_event_destroy+0x15/0x20 [ 49.032431][ T294] ? __cfi_tp_perf_event_destroy+0x10/0x10 [ 49.038246][ T294] _free_event+0x9cd/0xce0 [ 49.042680][ T294] perf_event_release_kernel+0x819/0x8a0 [ 49.048312][ T294] ? __cfi_perf_event_release_kernel+0x10/0x10 [ 49.054491][ T294] perf_release+0x3b/0x40 [ 49.058840][ T294] ? __cfi_perf_release+0x10/0x10 [ 49.063859][ T294] __fput+0x1fc/0x8f0 [ 49.067841][ T294] ____fput+0x15/0x20 [ 49.071831][ T294] task_work_run+0x1db/0x240 [ 49.076422][ T294] ? __cfi_task_work_run+0x10/0x10 [ 49.081529][ T294] ? __se_sys_perf_event_open+0x13f2/0x1b80 [ 49.087427][ T294] ptrace_notify+0x221/0x250 [ 49.092190][ T294] ? __cfi_ptrace_notify+0x10/0x10 [ 49.097393][ T294] ? fpregs_restore_userregs+0x128/0x260 [ 49.103030][ T294] syscall_exit_work+0x84/0x140 [ 49.107892][ T294] syscall_exit_to_user_mode_prepare+0x1c/0x20 [ 49.114160][ T294] syscall_exit_to_user_mode+0xd/0x30 [ 49.119542][ T294] do_syscall_64+0x58/0xa0 [ 49.123959][ T294] ? clear_bhb_loop+0x30/0x80 [ 49.128654][ T294] ? clear_bhb_loop+0x30/0x80 [ 49.133355][ T294] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 49.139254][ T294] RIP: 0033:0x7f131c1c0869 [ 49.143671][ T294] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 49.163284][ T294] RSP: 002b:00007fff6b1236d8 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 49.171703][ T294] RAX: ffffffffffffffea RBX: 00007fff6b1236f0 RCX: 00007f131c1c0869 [ 49.179708][ T294] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000200000000200 [ 49.187785][ T294] RBP: 0000000000000001 R08: 0000000000000000 R09: 00000000000000a0 [ 49.195868][ T294] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 49.203855][ T294] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001 [ 49.211838][ T294] [ 49.215440][ T294] CFI failure at __traceiter_sched_wakeup+0x7d/0xb0 (target: tp_stub_func+0x0/0x10; expected type: 0x389e96a6) [ 49.215492][ C0] CFI failure at __traceiter_sched_wakeup+0x7d/0xb0 (target: tp_stub_func+0x0/0x10; expected type: 0x389e96a6) [ 49.227240][ T294] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 49.245025][ T294] CPU: 1 PID: 294 Comm: syz-executor245 Not tainted 6.1.141-syzkaller-00038-ge2deb0b42a3a #0 [ 49.255176][ T294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 49.265257][ T294] RIP: 0010:__traceiter_sched_wakeup+0x7d/0xb0 [ 49.271422][ T294] Code: 49 8d 7e 08 48 89 f8 48 c1 e8 03 42 80 3c 20 00 74 05 e8 96 58 69 00 49 8b 7f 08 48 89 de 41 ba 5a 69 61 c7 45 03 55 fc 74 02 <0f> 0b 41 ff d5 49 83 c6 18 4c 89 f0 48 c1 e8 03 42 80 3c 20 00 74 [ 49.291196][ T294] RSP: 0018:ffffc90000e17480 EFLAGS: 00010817 [ 49.297260][ T294] RAX: 1ffff1102229ba86 RBX: ffff88810082a880 RCX: ffff88811070d100 [ 49.305231][ T294] RDX: 0000000000000000 RSI: ffff88810082a880 RDI: ffffffff86f03d20 [ 49.313201][ T294] RBP: ffffc90000e174a8 R08: dffffc0000000000 R09: fffffbfff0ee43ee [ 49.321215][ T294] R10: 000000006ca1d066 R11: 1ffffffff0ee43ed R12: dffffc0000000000 [ 49.329183][ T294] R13: ffffffff817113c0 R14: ffff8881114dd428 R15: ffff8881114dd428 [ 49.337146][ T294] FS: 000055557ecf2380(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 49.346070][ T294] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 49.352648][ T294] CR2: 0000200000001000 CR3: 00000001224a8000 CR4: 00000000003506a0 [ 49.360621][ T294] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 49.368587][ T294] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 49.376550][ T294] Call Trace: [ 49.379822][ T294] [ 49.382749][ T294] ttwu_do_wakeup+0x468/0x490 [ 49.387440][ T294] ttwu_do_activate+0x174/0x280 [ 49.392291][ T294] try_to_wake_up+0x5c0/0x1220 [ 49.397138][ T294] wake_up_process+0x10/0x20 [ 49.401718][ T294] insert_work+0x271/0x300 [ 49.406134][ T294] __queue_work+0x9b1/0xd30 [ 49.410635][ T294] __queue_delayed_work+0x188/0x200 [ 49.415833][ T294] queue_delayed_work_on+0xdb/0x150 [ 49.421026][ T294] ? __cfi_queue_delayed_work_on+0x10/0x10 [ 49.426928][ T294] ? _raw_spin_unlock+0x4c/0x70 [ 49.431818][ T294] ? srcu_gp_start+0x195/0x2f0 [ 49.436576][ T294] srcu_gp_start_if_needed+0xbd8/0xfe0 [ 49.442045][ T294] ? start_poll_synchronize_srcu+0x20/0x20 [ 49.447875][ T294] __synchronize_srcu+0x164/0x1f0 [ 49.452895][ T294] ? synchronize_srcu_expedited+0x20/0x20 [ 49.458606][ T294] ? _raw_spin_lock_irqsave+0xb0/0x110 [ 49.464078][ T294] ? __cfi_wakeme_after_rcu+0x10/0x10 [ 49.469470][ T294] ? tracepoint_probe_unregister+0x84e/0x8b0 [ 49.475462][ T294] ? ktime_get_mono_fast_ns+0x1b3/0x1d0 [ 49.481011][ T294] synchronize_srcu+0x1d9/0x1f0 [ 49.485858][ T294] perf_trace_event_unreg+0xd8/0x1c0 [ 49.491155][ T294] perf_trace_destroy+0xbe/0x180 [ 49.496091][ T294] tp_perf_event_destroy+0x15/0x20 [ 49.501199][ T294] ? __cfi_tp_perf_event_destroy+0x10/0x10 [ 49.506997][ T294] _free_event+0x9cd/0xce0 [ 49.511414][ T294] perf_event_release_kernel+0x819/0x8a0 [ 49.517046][ T294] ? __cfi_perf_event_release_kernel+0x10/0x10 [ 49.523215][ T294] perf_release+0x3b/0x40 [ 49.527540][ T294] ? __cfi_perf_release+0x10/0x10 [ 49.532570][ T294] __fput+0x1fc/0x8f0 [ 49.536549][ T294] ____fput+0x15/0x20 [ 49.540524][ T294] task_work_run+0x1db/0x240 [ 49.545110][ T294] ? __cfi_task_work_run+0x10/0x10 [ 49.550222][ T294] ? __se_sys_perf_event_open+0x13f2/0x1b80 [ 49.556115][ T294] ptrace_notify+0x221/0x250 [ 49.560706][ T294] ? __cfi_ptrace_notify+0x10/0x10 [ 49.565820][ T294] ? fpregs_restore_userregs+0x128/0x260 [ 49.571450][ T294] syscall_exit_work+0x84/0x140 [ 49.576295][ T294] syscall_exit_to_user_mode_prepare+0x1c/0x20 [ 49.582451][ T294] syscall_exit_to_user_mode+0xd/0x30 [ 49.587821][ T294] do_syscall_64+0x58/0xa0 [ 49.592227][ T294] ? clear_bhb_loop+0x30/0x80 [ 49.596897][ T294] ? clear_bhb_loop+0x30/0x80 [ 49.601570][ T294] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 49.607454][ T294] RIP: 0033:0x7f131c1c0869 [ 49.611861][ T294] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 49.631468][ T294] RSP: 002b:00007fff6b1236d8 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 49.639879][ T294] RAX: ffffffffffffffea RBX: 00007fff6b1236f0 RCX: 00007f131c1c0869 [ 49.647846][ T294] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000200000000200 [ 49.655812][ T294] RBP: 0000000000000001 R08: 0000000000000000 R09: 00000000000000a0 [ 49.663780][ T294] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 49.671745][ T294] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001 [ 49.679719][ T294] [ 49.682731][ T294] Modules linked in: [ 49.686639][ T294] ---[ end trace 0000000000000000 ]--- [ 49.686671][ C0] invalid opcode: 0000 [#2] PREEMPT SMP KASAN [ 49.692103][ T294] RIP: 0010:__traceiter_sched_wakeup+0x7d/0xb0 [ 49.698176][ C0] CPU: 0 PID: 92 Comm: klogd Tainted: G D 6.1.141-syzkaller-00038-ge2deb0b42a3a #0 [ 49.704326][ T294] Code: 49 8d 7e 08 48 89 f8 48 c1 e8 03 42 80 3c 20 00 74 05 e8 96 58 69 00 49 8b 7f 08 48 89 de 41 ba 5a 69 61 c7 45 03 55 fc 74 02 <0f> 0b 41 ff d5 49 83 c6 18 4c 89 f0 48 c1 e8 03 42 80 3c 20 00 74 [ 49.714986][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 49.734588][ T294] RSP: 0018:ffffc90000e17480 EFLAGS: 00010817 [ 49.744645][ C0] RIP: 0010:__traceiter_sched_wakeup+0x7d/0xb0 [ 49.750710][ T294] RAX: 1ffff1102229ba86 RBX: ffff88810082a880 RCX: ffff88811070d100 [ 49.756860][ C0] Code: 49 8d 7e 08 48 89 f8 48 c1 e8 03 42 80 3c 20 00 74 05 e8 96 58 69 00 49 8b 7f 08 48 89 de 41 ba 5a 69 61 c7 45 03 55 fc 74 02 <0f> 0b 41 ff d5 49 83 c6 18 4c 89 f0 48 c1 e8 03 42 80 3c 20 00 74 [ 49.764827][ T294] RDX: 0000000000000000 RSI: ffff88810082a880 RDI: ffffffff86f03d20 [ 49.784514][ C0] RSP: 0018:ffffc90000007bb0 EFLAGS: 00010817 [ 49.792482][ T294] RBP: ffffc90000e174a8 R08: dffffc0000000000 R09: fffffbfff0ee43ee [ 49.792499][ T294] R10: 000000006ca1d066 R11: 1ffffffff0ee43ed R12: dffffc0000000000 [ 49.798572][ C0] RAX: 1ffff1102229ba86 RBX: ffff888114c92880 RCX: ffff888105ad1440 [ 49.806538][ T294] R13: ffffffff817113c0 R14: ffff8881114dd428 R15: ffff8881114dd428 [ 49.814537][ C0] RDX: 0000000000010000 RSI: ffff888114c92880 RDI: ffffffff86f03d20 [ 49.822515][ T294] FS: 000055557ecf2380(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 49.830491][ C0] RBP: ffffc90000007bd8 R08: dffffc0000000000 R09: fffffbfff0ee43ee [ 49.838460][ T294] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 49.847381][ C0] R10: 000000006ca1d066 R11: 1ffffffff0ee43ed R12: dffffc0000000000 [ 49.855432][ T294] CR2: 0000200000001000 CR3: 00000001224a8000 CR4: 00000000003506a0 [ 49.862017][ C0] R13: ffffffff817113c0 R14: ffff8881114dd428 R15: ffff8881114dd428 [ 49.869983][ T294] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 49.877948][ C0] FS: 00007f6b7526bc80(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 49.885918][ T294] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 49.893888][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 49.902809][ T294] Kernel panic - not syncing: Fatal exception [ 49.910780][ C0] CR2: 00007f131c2162a8 CR3: 000000010637c000 CR4: 00000000003506b0 [ 49.910799][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 49.910808][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 49.910819][ C0] Call Trace: [ 49.910824][ C0] [ 49.910833][ C0] ttwu_do_wakeup+0x468/0x490 [ 49.910860][ C0] ttwu_do_activate+0x174/0x280 [ 49.910882][ C0] try_to_wake_up+0x5c0/0x1220 [ 49.910903][ C0] default_wake_function+0x43/0x50 [ 49.910926][ C0] autoremove_wake_function+0x16/0x110 [ 49.910950][ C0] __wake_up_common+0x26e/0x470 [ 49.910976][ C0] __wake_up+0x10e/0x190 [ 49.910998][ C0] ? __cfi___wake_up+0x10/0x10 [ 49.911022][ C0] ? __cfi_sched_clock_cpu+0x10/0x10 [ 49.911042][ C0] wake_up_kfence_timer+0x21/0x30 [ 49.911059][ C0] irq_work_run_list+0x18b/0x2b0 [ 49.911080][ C0] ? irq_work_run+0xf0/0xf0 [ 49.911098][ C0] ? handle_softirqs+0x543/0x600 [ 49.911117][ C0] irq_work_run+0x6a/0xf0 [ 49.911135][ C0] __sysvec_irq_work+0x75/0x1c0 [ 49.911159][ C0] sysvec_irq_work+0xa1/0xc0 [ 49.911178][ C0] [ 49.911183][ C0] [ 49.911188][ C0] asm_sysvec_irq_work+0x1b/0x20 [ 49.911206][ C0] RIP: 0010:native_apic_msr_write+0x39/0x50 [ 49.911232][ C0] Code: 74 05 83 ff 30 75 12 5d c3 81 ff d0 00 00 00 74 f6 81 ff e0 00 00 00 74 ee c1 ef 04 81 c7 00 08 00 00 89 f9 89 f0 31 d2 0f 30 <66> 90 eb d9 89 f6 31 d2 e8 da b9 56 01 5d c3 0f 1f 84 00 00 00 00 [ 49.911246][ C0] RSP: 0018:ffffc900009f7440 EFLAGS: 00000246 [ 49.911261][ C0] RAX: 00000000000000f6 RBX: 00000000000000f6 RCX: 000000000000083f [ 49.911272][ C0] RDX: 0000000000000000 RSI: 00000000000000f6 RDI: 000000000000083f [ 49.911281][ C0] RBP: ffffc900009f7440 R08: dffffc0000000000 R09: fffff5200013ee85 [ 49.911294][ C0] R10: 0000000000000000 R11: ffffffff81341a40 R12: 0000000000000000 [ 49.911305][ C0] R13: 0000000000000001 R14: ffffffff8648ab50 R15: dffffc0000000000 [ 49.911318][ C0] ? __cfi_native_apic_msr_write+0x10/0x10 [ 49.911344][ C0] x2apic_send_IPI_self+0x6f/0x80 [ 49.911367][ C0] arch_irq_work_raise+0x98/0xf0 [ 49.911390][ C0] __irq_work_queue_local+0x115/0x190 [ 49.911410][ C0] irq_work_queue+0x9e/0x150 [ 49.911429][ C0] __kfence_alloc+0x220/0x360 [ 49.911443][ C0] ? __stack_depot_save+0x36/0x480 [ 49.911468][ C0] ? kasan_save_alloc_info+0x25/0x30 [ 49.911490][ C0] ? __cfi___kfence_alloc+0x10/0x10 [ 49.911520][ C0] ? __should_failslab+0xac/0xf0 [ 49.911538][ C0] kmem_cache_alloc_node+0x284/0x340 [ 49.911564][ C0] ? __alloc_skb+0xea/0x4b0 [ 49.911588][ C0] __alloc_skb+0xea/0x4b0 [ 49.911609][ C0] ? kfree+0x6f/0xf0 [ 49.911631][ C0] ? syslog_print+0x4eb/0x550 [ 49.911648][ C0] alloc_skb_with_frags+0xa8/0x620 [ 49.911672][ C0] ? memcpy+0x56/0x70 [ 49.911696][ C0] sock_alloc_send_pskb+0x853/0x980 [ 49.911718][ C0] ? __cfi_sock_alloc_send_pskb+0x10/0x10 [ 49.911735][ C0] ? __kasan_check_write+0x14/0x20 [ 49.911758][ C0] ? _raw_spin_lock+0x8e/0xe0 [ 49.911782][ C0] ? __cfi__raw_spin_lock+0x10/0x10 [ 49.911806][ C0] ? security_socket_getpeersec_dgram+0xbb/0xd0 [ 49.911834][ C0] unix_dgram_sendmsg+0x592/0x16d0 [ 49.911858][ C0] ? __cfi_selinux_socket_sendmsg+0x10/0x10 [ 49.911883][ C0] ? syslog_print+0x4eb/0x550 [ 49.911900][ C0] ? __cfi_unix_dgram_sendmsg+0x10/0x10 [ 49.911923][ C0] ? security_socket_sendmsg+0x93/0xb0 [ 49.911949][ C0] __sys_sendto+0x464/0x5e0 [ 49.911973][ C0] ? __cfi_autoremove_wake_function+0x10/0x10 [ 49.911997][ C0] ? __cfi___sys_sendto+0x10/0x10 [ 49.912015][ C0] ? __cfi_do_syslog+0x10/0x10 [ 49.912033][ C0] ? __this_cpu_preempt_check+0x13/0x20 [ 49.912055][ C0] ? xfd_validate_state+0x70/0x150 [ 49.912078][ C0] ? __kasan_check_write+0x14/0x20 [ 49.912102][ C0] __x64_sys_sendto+0xe5/0x100 [ 49.912117][ C0] x64_sys_call+0x83/0x9a0 [ 49.912137][ C0] do_syscall_64+0x4c/0xa0 [ 49.912150][ C0] ? clear_bhb_loop+0x30/0x80 [ 49.912168][ C0] ? clear_bhb_loop+0x30/0x80 [ 49.912186][ C0] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 49.912203][ C0] RIP: 0033:0x7f6b753bb407 [ 49.912216][ C0] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff [ 49.912229][ C0] RSP: 002b:00007ffef5ba4470 EFLAGS: 00000202 ORIG_RAX: 000000000000002c [ 49.912245][ C0] RAX: ffffffffffffffda RBX: 00007f6b7526bc80 RCX: 00007f6b753bb407 [ 49.912257][ C0] RDX: 0000000000000055 RSI: 00007ffef5ba45b0 RDI: 0000000000000003 [ 49.912267][ C0] RBP: 00007ffef5ba49e0 R08: 0000000000000000 R09: 0000000000000000 [ 49.912277][ C0] R10: 0000000000004000 R11: 0000000000000202 R12: 00007ffef5ba49f8 [ 49.912288][ C0] R13: 00007ffef5ba45b0 R14: 000000000000003a R15: 00007ffef5ba45b0 [ 49.912304][ C0] [ 49.912308][ C0] Modules linked in: [ 49.918896][ C0] ---[ end trace 0000000000000000 ]--- [ 49.918905][ C0] RIP: 0010:__traceiter_sched_wakeup+0x7d/0xb0 [ 49.918927][ C0] Code: 49 8d 7e 08 48 89 f8 48 c1 e8 03 42 80 3c 20 00 74 05 e8 96 58 69 00 49 8b 7f 08 48 89 de 41 ba 5a 69 61 c7 45 03 55 fc 74 02 <0f> 0b 41 ff d5 49 83 c6 18 4c 89 f0 48 c1 e8 03 42 80 3c 20 00 74 [ 49.918941][ C0] RSP: 0018:ffffc90000e17480 EFLAGS: 00010817 [ 49.918954][ C0] RAX: 1ffff1102229ba86 RBX: ffff88810082a880 RCX: ffff88811070d100 [ 49.918966][ C0] RDX: 0000000000000000 RSI: ffff88810082a880 RDI: ffffffff86f03d20 [ 49.918978][ C0] RBP: ffffc90000e174a8 R08: dffffc0000000000 R09: fffffbfff0ee43ee [ 49.918990][ C0] R10: 000000006ca1d066 R11: 1ffffffff0ee43ed R12: dffffc0000000000 [ 49.919002][ C0] R13: ffffffff817113c0 R14: ffff8881114dd428 R15: ffff8881114dd428 [ 49.919014][ C0] FS: 00007f6b7526bc80(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 49.919029][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 49.919041][ C0] CR2: 00007f131c2162a8 CR3: 000000010637c000 CR4: 00000000003506b0 [ 49.919055][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 49.919065][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 51.097572][ T294] Shutting down cpus with NMI [ 51.700255][ T294] Kernel Offset: disabled [ 51.704584][ T294] Rebooting in 86400 seconds..