./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor165326038
<...>
Warning: Permanently added '10.128.0.52' (ED25519) to the list of known hosts.
execve("./syz-executor165326038", ["./syz-executor165326038"], 0x7ffdb4d57500 /* 10 vars */) = 0
brk(NULL) = 0x555576720000
brk(0x555576720d00) = 0x555576720d00
arch_prctl(ARCH_SET_FS, 0x555576720380) = 0
set_tid_address(0x555576720650) = 5883
set_robust_list(0x555576720660, 24) = 0
rseq(0x555576720ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor165326038", 4096) = 27
getrandom("\x56\x91\x1f\x61\x33\xd4\x56\xcb", 8, GRND_NONBLOCK) = 8
brk(NULL) = 0x555576720d00
brk(0x555576741d00) = 0x555576741d00
brk(0x555576742000) = 0x555576742000
mprotect(0x7fea15abd000, 16384, PROT_READ) = 0
mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000
mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000
mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000
openat(AT_FDCWD, "/proc/self/make-it-fail", O_WRONLY) = 3
close(3) = 0
openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_WRONLY) = 3
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1) = 1
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576720650) = 5884
./strace-static-x86_64: Process 5884 attached
[pid 5884] set_robust_list(0x555576720660, 24) = 0
[pid 5884] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5884] setpgid(0, 0) = 0
[pid 5884] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5884] write(3, "1000", 4) = 4
[pid 5884] close(3) = 0
executing program
[pid 5884] write(1, "executing program\n", 18) = 18
[pid 5884] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5884] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5884] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5884] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5884] write(6, "4", 1) = 1
[pid 5884] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 287.302769][ T5884] FAULT_INJECTION: forcing a failure.
[ 287.302769][ T5884] name failslab, interval 1, probability 0, space 0, times 1
[ 287.315640][ T5884] CPU: 1 UID: 0 PID: 5884 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 287.315668][ T5884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 287.315678][ T5884] Call Trace:
[ 287.315687][ T5884]
[ 287.315695][ T5884] dump_stack_lvl+0x189/0x250
[ 287.315743][ T5884] ? __pfx____ratelimit+0x10/0x10
[ 287.315776][ T5884] ? __pfx_dump_stack_lvl+0x10/0x10
[ 287.315797][ T5884] ? __pfx__printk+0x10/0x10
[ 287.315828][ T5884] ? __pfx___might_resched+0x10/0x10
[ 287.315856][ T5884] ? fs_reclaim_acquire+0x7d/0x100
[ 287.315897][ T5884] should_fail_ex+0x414/0x560
[ 287.315926][ T5884] should_failslab+0xa8/0x100
[ 287.315953][ T5884] __kmalloc_noprof+0xcb/0x4f0
[ 287.315969][ T5884] ? tomoyo_init_log+0x1a6e/0x1f70
[ 287.315989][ T5884] tomoyo_init_log+0x1a6e/0x1f70
[ 287.316019][ T5884] ? __pfx_tomoyo_init_log+0x10/0x10
[ 287.316036][ T5884] ? tomoyo_profile+0x11/0x50
[ 287.316051][ T5884] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 287.316068][ T5884] tomoyo_supervisor+0x340/0x1480
[ 287.316087][ T5884] ? format_decode+0x5a3/0xe30
[ 287.316105][ T5884] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 287.316128][ T5884] ? snprintf+0xda/0x120
[ 287.316145][ T5884] ? __pfx_snprintf+0x10/0x10
[ 287.316160][ T5884] ? tomoyo_check_acl+0x386/0x400
[ 287.316178][ T5884] tomoyo_path_number_perm+0x438/0x5a0
[ 287.316191][ T5884] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 287.316206][ T5884] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 287.316225][ T5884] ? _raw_spin_lock_irq+0xae/0xf0
[ 287.316260][ T5884] ? __pfx_ptrace_notify+0x10/0x10
[ 287.316285][ T5884] security_file_ioctl+0xcb/0x2d0
[ 287.316300][ T5884] __se_sys_ioctl+0x47/0x170
[ 287.316315][ T5884] do_syscall_64+0xfa/0x3b0
[ 287.316331][ T5884] ? lockdep_hardirqs_on+0x9c/0x150
[ 287.316347][ T5884] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 287.316358][ T5884] ? clear_bhb_loop+0x60/0xb0
[ 287.316372][ T5884] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 287.316392][ T5884] RIP: 0033:0x7fea15a51869
[ 287.316404][ T5884] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 287.316414][ T5884] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5884] exit_group(0) = ?
[pid 5884] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5884, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 287.316428][ T5884] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 287.316437][ T5884] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 287.316445][ T5884] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 287.316452][ T5884] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 287.316459][ T5884] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 287.316477][ T5884]
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5885 attached
, child_tidptr=0x555576720650) = 5885
[pid 5885] set_robust_list(0x555576720660, 24) = 0
[pid 5885] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5885] setpgid(0, 0) = 0
[pid 5885] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5885] write(3, "1000", 4) = 4
[pid 5885] close(3) = 0
[pid 5885] write(1, "executing program\n", 18executing program
) = 18
[pid 5885] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5885] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5885] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5885] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5885] write(6, "4", 1) = 1
[pid 5885] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5885] exit_group(0) = ?
[ 287.714964][ T5885] FAULT_INJECTION: forcing a failure.
[ 287.714964][ T5885] name failslab, interval 1, probability 0, space 0, times 0
[ 287.728378][ T5885] CPU: 1 UID: 0 PID: 5885 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 287.728405][ T5885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 287.728415][ T5885] Call Trace:
[ 287.728423][ T5885]
[ 287.728430][ T5885] dump_stack_lvl+0x189/0x250
[ 287.728450][ T5885] ? __pfx____ratelimit+0x10/0x10
[ 287.728468][ T5885] ? __pfx_dump_stack_lvl+0x10/0x10
[ 287.728481][ T5885] ? __pfx__printk+0x10/0x10
[ 287.728501][ T5885] ? __pfx___might_resched+0x10/0x10
[ 287.728518][ T5885] ? fs_reclaim_acquire+0x7d/0x100
[ 287.728541][ T5885] should_fail_ex+0x414/0x560
[ 287.728560][ T5885] should_failslab+0xa8/0x100
[ 287.728576][ T5885] __kmalloc_noprof+0xcb/0x4f0
[ 287.728590][ T5885] ? tomoyo_init_log+0x1a6e/0x1f70
[ 287.728610][ T5885] tomoyo_init_log+0x1a6e/0x1f70
[ 287.728641][ T5885] ? __pfx_tomoyo_init_log+0x10/0x10
[ 287.728657][ T5885] ? tomoyo_profile+0x11/0x50
[ 287.728673][ T5885] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 287.728690][ T5885] tomoyo_supervisor+0x340/0x1480
[ 287.728708][ T5885] ? format_decode+0x5a3/0xe30
[ 287.728726][ T5885] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 287.728750][ T5885] ? snprintf+0xda/0x120
[ 287.728767][ T5885] ? __pfx_snprintf+0x10/0x10
[ 287.728781][ T5885] ? tomoyo_check_acl+0x386/0x400
[ 287.728799][ T5885] tomoyo_path_number_perm+0x438/0x5a0
[ 287.728813][ T5885] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 287.728827][ T5885] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 287.728846][ T5885] ? _raw_spin_lock_irq+0xae/0xf0
[ 287.728882][ T5885] ? __pfx_ptrace_notify+0x10/0x10
[ 287.728907][ T5885] security_file_ioctl+0xcb/0x2d0
[ 287.728922][ T5885] __se_sys_ioctl+0x47/0x170
[ 287.728937][ T5885] do_syscall_64+0xfa/0x3b0
[ 287.728953][ T5885] ? lockdep_hardirqs_on+0x9c/0x150
[ 287.728969][ T5885] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 287.728980][ T5885] ? clear_bhb_loop+0x60/0xb0
[ 287.728995][ T5885] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 287.729006][ T5885] RIP: 0033:0x7fea15a51869
[ 287.729018][ T5885] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 287.729028][ T5885] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 287.729043][ T5885] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5885] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5885, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5886 attached
, child_tidptr=0x555576720650) = 5886
[pid 5886] set_robust_list(0x555576720660, 24) = 0
[pid 5886] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5886] setpgid(0, 0) = 0
[pid 5886] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5886] write(3, "1000", 4) = 4
[pid 5886] close(3) = 0
[pid 5886] write(1, "executing program\n", 18executing program
) = 18
[pid 5886] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[ 287.729052][ T5885] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 287.729059][ T5885] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 287.729066][ T5885] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 287.729073][ T5885] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 287.729091][ T5885]
[pid 5886] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5886] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5886] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5886] write(6, "4", 1) = 1
[pid 5886] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5886] exit_group(0) = ?
[ 288.071066][ T5886] FAULT_INJECTION: forcing a failure.
[ 288.071066][ T5886] name failslab, interval 1, probability 0, space 0, times 0
[ 288.084000][ T5886] CPU: 0 UID: 0 PID: 5886 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 288.084027][ T5886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 288.084038][ T5886] Call Trace:
[ 288.084046][ T5886]
[ 288.084054][ T5886] dump_stack_lvl+0x189/0x250
[ 288.084083][ T5886] ? __pfx____ratelimit+0x10/0x10
[ 288.084112][ T5886] ? __pfx_dump_stack_lvl+0x10/0x10
[ 288.084134][ T5886] ? __pfx__printk+0x10/0x10
[ 288.084168][ T5886] ? __pfx___might_resched+0x10/0x10
[ 288.084196][ T5886] ? fs_reclaim_acquire+0x7d/0x100
[ 288.084230][ T5886] should_fail_ex+0x414/0x560
[ 288.084259][ T5886] should_failslab+0xa8/0x100
[ 288.084312][ T5886] __kmalloc_noprof+0xcb/0x4f0
[ 288.084326][ T5886] ? tomoyo_init_log+0x1a6e/0x1f70
[ 288.084346][ T5886] tomoyo_init_log+0x1a6e/0x1f70
[ 288.084375][ T5886] ? __pfx_tomoyo_init_log+0x10/0x10
[ 288.084392][ T5886] ? tomoyo_profile+0x11/0x50
[ 288.084408][ T5886] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 288.084425][ T5886] tomoyo_supervisor+0x340/0x1480
[ 288.084442][ T5886] ? format_decode+0x5a3/0xe30
[ 288.084460][ T5886] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 288.084484][ T5886] ? snprintf+0xda/0x120
[ 288.084500][ T5886] ? __pfx_snprintf+0x10/0x10
[ 288.084515][ T5886] ? tomoyo_check_acl+0x386/0x400
[ 288.084532][ T5886] tomoyo_path_number_perm+0x438/0x5a0
[ 288.084546][ T5886] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 288.084560][ T5886] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 288.084579][ T5886] ? _raw_spin_lock_irq+0xae/0xf0
[ 288.084613][ T5886] ? __pfx_ptrace_notify+0x10/0x10
[ 288.084637][ T5886] security_file_ioctl+0xcb/0x2d0
[ 288.084651][ T5886] __se_sys_ioctl+0x47/0x170
[ 288.084667][ T5886] do_syscall_64+0xfa/0x3b0
[ 288.084683][ T5886] ? lockdep_hardirqs_on+0x9c/0x150
[ 288.084698][ T5886] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 288.084710][ T5886] ? clear_bhb_loop+0x60/0xb0
[ 288.084724][ T5886] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 288.084736][ T5886] RIP: 0033:0x7fea15a51869
[ 288.084748][ T5886] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 288.084758][ T5886] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5886] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5886, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5887 attached
, child_tidptr=0x555576720650) = 5887
[pid 5887] set_robust_list(0x555576720660, 24) = 0
[pid 5887] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 288.084772][ T5886] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 288.084781][ T5886] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 288.084788][ T5886] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 288.084795][ T5886] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 288.084802][ T5886] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 288.084819][ T5886]
[pid 5887] setpgid(0, 0) = 0
[pid 5887] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5887] write(3, "1000", 4) = 4
[pid 5887] close(3) = 0
executing program
[pid 5887] write(1, "executing program\n", 18) = 18
[pid 5887] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5887] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5887] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5887] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5887] write(6, "4", 1) = 1
[pid 5887] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5887] exit_group(0) = ?
[ 288.456516][ T5887] FAULT_INJECTION: forcing a failure.
[ 288.456516][ T5887] name failslab, interval 1, probability 0, space 0, times 0
[ 288.469608][ T5887] CPU: 1 UID: 0 PID: 5887 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 288.469629][ T5887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 288.469636][ T5887] Call Trace:
[ 288.469643][ T5887]
[ 288.469650][ T5887] dump_stack_lvl+0x189/0x250
[ 288.469669][ T5887] ? __pfx____ratelimit+0x10/0x10
[ 288.469687][ T5887] ? __pfx_dump_stack_lvl+0x10/0x10
[ 288.469700][ T5887] ? __pfx__printk+0x10/0x10
[ 288.469719][ T5887] ? __pfx___might_resched+0x10/0x10
[ 288.469735][ T5887] ? fs_reclaim_acquire+0x7d/0x100
[ 288.469756][ T5887] should_fail_ex+0x414/0x560
[ 288.469773][ T5887] should_failslab+0xa8/0x100
[ 288.469791][ T5887] __kmalloc_noprof+0xcb/0x4f0
[ 288.469805][ T5887] ? tomoyo_init_log+0x1a6e/0x1f70
[ 288.469825][ T5887] tomoyo_init_log+0x1a6e/0x1f70
[ 288.469855][ T5887] ? __pfx_tomoyo_init_log+0x10/0x10
[ 288.469871][ T5887] ? tomoyo_profile+0x11/0x50
[ 288.469887][ T5887] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 288.469904][ T5887] tomoyo_supervisor+0x340/0x1480
[ 288.469922][ T5887] ? format_decode+0x5a3/0xe30
[ 288.469941][ T5887] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 288.469964][ T5887] ? snprintf+0xda/0x120
[ 288.469980][ T5887] ? __pfx_snprintf+0x10/0x10
[ 288.469995][ T5887] ? tomoyo_check_acl+0x386/0x400
[ 288.470013][ T5887] tomoyo_path_number_perm+0x438/0x5a0
[ 288.470026][ T5887] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 288.470040][ T5887] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 288.470059][ T5887] ? _raw_spin_lock_irq+0xae/0xf0
[ 288.470093][ T5887] ? __pfx_ptrace_notify+0x10/0x10
[ 288.470117][ T5887] security_file_ioctl+0xcb/0x2d0
[ 288.470132][ T5887] __se_sys_ioctl+0x47/0x170
[ 288.470147][ T5887] do_syscall_64+0xfa/0x3b0
[ 288.470163][ T5887] ? lockdep_hardirqs_on+0x9c/0x150
[ 288.470179][ T5887] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 288.470191][ T5887] ? clear_bhb_loop+0x60/0xb0
[ 288.470205][ T5887] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 288.470216][ T5887] RIP: 0033:0x7fea15a51869
[ 288.470229][ T5887] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 288.470239][ T5887] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5887] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5887, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5888 attached
, child_tidptr=0x555576720650) = 5888
[pid 5888] set_robust_list(0x555576720660, 24) = 0
[pid 5888] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5888] setpgid(0, 0) = 0
[pid 5888] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5888] write(3, "1000", 4) = 4
[pid 5888] close(3) = 0
executing program
[pid 5888] write(1, "executing program\n", 18) = 18
[pid 5888] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[ 288.470253][ T5887] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 288.470264][ T5887] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 288.470272][ T5887] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 288.470279][ T5887] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 288.470286][ T5887] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 288.470304][ T5887]
[pid 5888] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5888] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5888] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5888] write(6, "4", 1) = 1
[ 288.792628][ T5888] FAULT_INJECTION: forcing a failure.
[ 288.792628][ T5888] name failslab, interval 1, probability 0, space 0, times 0
[ 288.805811][ T5888] CPU: 0 UID: 0 PID: 5888 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 288.805838][ T5888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 288.805848][ T5888] Call Trace:
[ 288.805856][ T5888]
[ 288.805862][ T5888] dump_stack_lvl+0x189/0x250
[ 288.805881][ T5888] ? __pfx____ratelimit+0x10/0x10
[ 288.805899][ T5888] ? __pfx_dump_stack_lvl+0x10/0x10
[ 288.805912][ T5888] ? __pfx__printk+0x10/0x10
[ 288.805931][ T5888] ? __pfx___might_resched+0x10/0x10
[ 288.805947][ T5888] ? fs_reclaim_acquire+0x7d/0x100
[ 288.805967][ T5888] should_fail_ex+0x414/0x560
[ 288.805985][ T5888] should_failslab+0xa8/0x100
[ 288.806002][ T5888] __kmalloc_noprof+0xcb/0x4f0
[ 288.806016][ T5888] ? tomoyo_init_log+0x1a6e/0x1f70
[ 288.806035][ T5888] tomoyo_init_log+0x1a6e/0x1f70
[ 288.806065][ T5888] ? __pfx_tomoyo_init_log+0x10/0x10
[ 288.806082][ T5888] ? tomoyo_profile+0x11/0x50
[ 288.806097][ T5888] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 288.806114][ T5888] tomoyo_supervisor+0x340/0x1480
[ 288.806132][ T5888] ? format_decode+0x5a3/0xe30
[ 288.806150][ T5888] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 288.806173][ T5888] ? snprintf+0xda/0x120
[ 288.806190][ T5888] ? __pfx_snprintf+0x10/0x10
[ 288.806205][ T5888] ? tomoyo_check_acl+0x386/0x400
[ 288.806222][ T5888] tomoyo_path_number_perm+0x438/0x5a0
[ 288.806235][ T5888] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 288.806250][ T5888] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 288.806268][ T5888] ? _raw_spin_lock_irq+0xae/0xf0
[ 288.806306][ T5888] ? __pfx_ptrace_notify+0x10/0x10
[ 288.806329][ T5888] security_file_ioctl+0xcb/0x2d0
[ 288.806344][ T5888] __se_sys_ioctl+0x47/0x170
[ 288.806360][ T5888] do_syscall_64+0xfa/0x3b0
[ 288.806376][ T5888] ? lockdep_hardirqs_on+0x9c/0x150
[ 288.806391][ T5888] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 288.806403][ T5888] ? clear_bhb_loop+0x60/0xb0
[ 288.806417][ T5888] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 288.806428][ T5888] RIP: 0033:0x7fea15a51869
[ 288.806440][ T5888] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 288.806450][ T5888] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5888] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5888] exit_group(0) = ?
[pid 5888] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5888, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5889 attached
, child_tidptr=0x555576720650) = 5889
[pid 5889] set_robust_list(0x555576720660, 24) = 0
[pid 5889] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5889] setpgid(0, 0) = 0
[pid 5889] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[ 288.806465][ T5888] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 288.806474][ T5888] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 288.806481][ T5888] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 288.806488][ T5888] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 288.806495][ T5888] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 288.806513][ T5888]
[pid 5889] write(3, "1000", 4) = 4
[pid 5889] close(3) = 0
executing program
[pid 5889] write(1, "executing program\n", 18) = 18
[pid 5889] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5889] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5889] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5889] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5889] write(6, "4", 1) = 1
[pid 5889] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 289.148768][ T5889] FAULT_INJECTION: forcing a failure.
[ 289.148768][ T5889] name failslab, interval 1, probability 0, space 0, times 0
[ 289.161563][ T5889] CPU: 1 UID: 0 PID: 5889 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 289.161590][ T5889] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 289.161600][ T5889] Call Trace:
[ 289.161610][ T5889]
[ 289.161618][ T5889] dump_stack_lvl+0x189/0x250
[ 289.161646][ T5889] ? __pfx____ratelimit+0x10/0x10
[ 289.161674][ T5889] ? __pfx_dump_stack_lvl+0x10/0x10
[ 289.161695][ T5889] ? __pfx__printk+0x10/0x10
[ 289.161730][ T5889] ? __pfx___might_resched+0x10/0x10
[ 289.161757][ T5889] ? fs_reclaim_acquire+0x7d/0x100
[ 289.161791][ T5889] should_fail_ex+0x414/0x560
[ 289.161820][ T5889] should_failslab+0xa8/0x100
[ 289.161848][ T5889] __kmalloc_noprof+0xcb/0x4f0
[ 289.161871][ T5889] ? tomoyo_init_log+0x1a6e/0x1f70
[ 289.161902][ T5889] tomoyo_init_log+0x1a6e/0x1f70
[ 289.161948][ T5889] ? __pfx_tomoyo_init_log+0x10/0x10
[ 289.161965][ T5889] ? tomoyo_profile+0x11/0x50
[ 289.161981][ T5889] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 289.161998][ T5889] tomoyo_supervisor+0x340/0x1480
[ 289.162017][ T5889] ? format_decode+0x5a3/0xe30
[ 289.162034][ T5889] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 289.162058][ T5889] ? snprintf+0xda/0x120
[ 289.162074][ T5889] ? __pfx_snprintf+0x10/0x10
[ 289.162089][ T5889] ? tomoyo_check_acl+0x386/0x400
[ 289.162107][ T5889] tomoyo_path_number_perm+0x438/0x5a0
[ 289.162120][ T5889] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 289.162135][ T5889] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 289.162153][ T5889] ? _raw_spin_lock_irq+0xae/0xf0
[ 289.162187][ T5889] ? __pfx_ptrace_notify+0x10/0x10
[ 289.162219][ T5889] security_file_ioctl+0xcb/0x2d0
[ 289.162235][ T5889] __se_sys_ioctl+0x47/0x170
[ 289.162261][ T5889] do_syscall_64+0xfa/0x3b0
[ 289.162277][ T5889] ? lockdep_hardirqs_on+0x9c/0x150
[ 289.162293][ T5889] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 289.162305][ T5889] ? clear_bhb_loop+0x60/0xb0
[ 289.162319][ T5889] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 289.162332][ T5889] RIP: 0033:0x7fea15a51869
[ 289.162344][ T5889] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 289.162354][ T5889] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 289.162369][ T5889] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5889] exit_group(0) = ?
[pid 5889] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5889, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5890 attached
, child_tidptr=0x555576720650) = 5890
[pid 5890] set_robust_list(0x555576720660, 24) = 0
[pid 5890] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5890] setpgid(0, 0) = 0
[pid 5890] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5890] write(3, "1000", 4) = 4
[pid 5890] close(3) = 0
[pid 5890] write(1, "executing program\n", 18executing program
) = 18
[pid 5890] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[ 289.162378][ T5889] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 289.162385][ T5889] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 289.162392][ T5889] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 289.162399][ T5889] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 289.162417][ T5889]
[pid 5890] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5890] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5890] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5890] write(6, "4", 1) = 1
[pid 5890] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5890] exit_group(0) = ?
[ 289.506911][ T5890] FAULT_INJECTION: forcing a failure.
[ 289.506911][ T5890] name failslab, interval 1, probability 0, space 0, times 0
[ 289.520076][ T5890] CPU: 0 UID: 0 PID: 5890 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 289.520104][ T5890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 289.520115][ T5890] Call Trace:
[ 289.520123][ T5890]
[ 289.520132][ T5890] dump_stack_lvl+0x189/0x250
[ 289.520152][ T5890] ? __pfx____ratelimit+0x10/0x10
[ 289.520169][ T5890] ? __pfx_dump_stack_lvl+0x10/0x10
[ 289.520182][ T5890] ? __pfx__printk+0x10/0x10
[ 289.520201][ T5890] ? __pfx___might_resched+0x10/0x10
[ 289.520219][ T5890] ? fs_reclaim_acquire+0x7d/0x100
[ 289.520239][ T5890] should_fail_ex+0x414/0x560
[ 289.520259][ T5890] should_failslab+0xa8/0x100
[ 289.520275][ T5890] __kmalloc_noprof+0xcb/0x4f0
[ 289.520289][ T5890] ? tomoyo_init_log+0x1a6e/0x1f70
[ 289.520309][ T5890] tomoyo_init_log+0x1a6e/0x1f70
[ 289.520339][ T5890] ? __pfx_tomoyo_init_log+0x10/0x10
[ 289.520355][ T5890] ? tomoyo_profile+0x11/0x50
[ 289.520371][ T5890] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 289.520388][ T5890] tomoyo_supervisor+0x340/0x1480
[ 289.520406][ T5890] ? format_decode+0x5a3/0xe30
[ 289.520424][ T5890] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 289.520448][ T5890] ? snprintf+0xda/0x120
[ 289.520465][ T5890] ? __pfx_snprintf+0x10/0x10
[ 289.520479][ T5890] ? tomoyo_check_acl+0x386/0x400
[ 289.520572][ T5890] tomoyo_path_number_perm+0x438/0x5a0
[ 289.520610][ T5890] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 289.520626][ T5890] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 289.520646][ T5890] ? _raw_spin_lock_irq+0xae/0xf0
[ 289.520681][ T5890] ? __pfx_ptrace_notify+0x10/0x10
[ 289.520706][ T5890] security_file_ioctl+0xcb/0x2d0
[ 289.520721][ T5890] __se_sys_ioctl+0x47/0x170
[ 289.520737][ T5890] do_syscall_64+0xfa/0x3b0
[ 289.520754][ T5890] ? lockdep_hardirqs_on+0x9c/0x150
[ 289.520770][ T5890] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 289.520782][ T5890] ? clear_bhb_loop+0x60/0xb0
[ 289.520797][ T5890] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 289.520809][ T5890] RIP: 0033:0x7fea15a51869
[ 289.520822][ T5890] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 289.520832][ T5890] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 289.520847][ T5890] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5890] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5890, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5891 attached
, child_tidptr=0x555576720650) = 5891
[pid 5891] set_robust_list(0x555576720660, 24) = 0
[pid 5891] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5891] setpgid(0, 0) = 0
[ 289.520857][ T5890] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 289.520864][ T5890] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 289.520871][ T5890] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 289.520879][ T5890] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 289.520897][ T5890]
[pid 5891] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5891] write(3, "1000", 4) = 4
[pid 5891] close(3) = 0
executing program
[pid 5891] write(1, "executing program\n", 18) = 18
[pid 5891] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5891] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5891] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5891] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5891] write(6, "4", 1) = 1
[pid 5891] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5891] exit_group(0) = ?
[ 289.907536][ T5891] FAULT_INJECTION: forcing a failure.
[ 289.907536][ T5891] name failslab, interval 1, probability 0, space 0, times 0
[ 289.920720][ T5891] CPU: 1 UID: 0 PID: 5891 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 289.920740][ T5891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 289.920748][ T5891] Call Trace:
[ 289.920753][ T5891]
[ 289.920759][ T5891] dump_stack_lvl+0x189/0x250
[ 289.920777][ T5891] ? __pfx____ratelimit+0x10/0x10
[ 289.920795][ T5891] ? __pfx_dump_stack_lvl+0x10/0x10
[ 289.920808][ T5891] ? __pfx__printk+0x10/0x10
[ 289.920828][ T5891] ? __pfx___might_resched+0x10/0x10
[ 289.920845][ T5891] ? fs_reclaim_acquire+0x7d/0x100
[ 289.920865][ T5891] should_fail_ex+0x414/0x560
[ 289.920882][ T5891] should_failslab+0xa8/0x100
[ 289.920899][ T5891] __kmalloc_noprof+0xcb/0x4f0
[ 289.920913][ T5891] ? tomoyo_init_log+0x1a6e/0x1f70
[ 289.920932][ T5891] tomoyo_init_log+0x1a6e/0x1f70
[ 289.920963][ T5891] ? __pfx_tomoyo_init_log+0x10/0x10
[ 289.920979][ T5891] ? tomoyo_profile+0x11/0x50
[ 289.920995][ T5891] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 289.921013][ T5891] tomoyo_supervisor+0x340/0x1480
[ 289.921031][ T5891] ? format_decode+0x5a3/0xe30
[ 289.921049][ T5891] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 289.921073][ T5891] ? snprintf+0xda/0x120
[ 289.921089][ T5891] ? __pfx_snprintf+0x10/0x10
[ 289.921104][ T5891] ? tomoyo_check_acl+0x386/0x400
[ 289.921122][ T5891] tomoyo_path_number_perm+0x438/0x5a0
[ 289.921136][ T5891] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 289.921150][ T5891] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 289.921169][ T5891] ? _raw_spin_lock_irq+0xae/0xf0
[ 289.921204][ T5891] ? __pfx_ptrace_notify+0x10/0x10
[ 289.921229][ T5891] security_file_ioctl+0xcb/0x2d0
[ 289.921243][ T5891] __se_sys_ioctl+0x47/0x170
[ 289.921259][ T5891] do_syscall_64+0xfa/0x3b0
[ 289.921274][ T5891] ? lockdep_hardirqs_on+0x9c/0x150
[ 289.921290][ T5891] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 289.921311][ T5891] ? clear_bhb_loop+0x60/0xb0
[ 289.921325][ T5891] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 289.921337][ T5891] RIP: 0033:0x7fea15a51869
[ 289.921349][ T5891] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 289.921359][ T5891] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 289.921374][ T5891] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5891] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5891, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5892 attached
, child_tidptr=0x555576720650) = 5892
[pid 5892] set_robust_list(0x555576720660, 24) = 0
[pid 5892] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 289.921383][ T5891] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 289.921390][ T5891] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 289.921398][ T5891] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 289.921405][ T5891] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 289.921423][ T5891]
[pid 5892] setpgid(0, 0) = 0
[pid 5892] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5892] write(3, "1000", 4) = 4
[pid 5892] close(3) = 0
[pid 5892] write(1, "executing program\n", 18executing program
) = 18
[pid 5892] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5892] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5892] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5892] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5892] write(6, "4", 1) = 1
[ 290.296495][ T5892] FAULT_INJECTION: forcing a failure.
[ 290.296495][ T5892] name failslab, interval 1, probability 0, space 0, times 0
[ 290.309345][ T5892] CPU: 0 UID: 0 PID: 5892 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 290.309372][ T5892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 290.309382][ T5892] Call Trace:
[ 290.309390][ T5892]
[ 290.309398][ T5892] dump_stack_lvl+0x189/0x250
[ 290.309425][ T5892] ? __pfx____ratelimit+0x10/0x10
[ 290.309453][ T5892] ? __pfx_dump_stack_lvl+0x10/0x10
[ 290.309474][ T5892] ? __pfx__printk+0x10/0x10
[ 290.309507][ T5892] ? __pfx___might_resched+0x10/0x10
[ 290.309536][ T5892] ? fs_reclaim_acquire+0x7d/0x100
[ 290.309582][ T5892] should_fail_ex+0x414/0x560
[ 290.309612][ T5892] should_failslab+0xa8/0x100
[ 290.309640][ T5892] __kmalloc_noprof+0xcb/0x4f0
[ 290.309663][ T5892] ? tomoyo_init_log+0x1a6e/0x1f70
[ 290.309694][ T5892] tomoyo_init_log+0x1a6e/0x1f70
[ 290.309744][ T5892] ? __pfx_tomoyo_init_log+0x10/0x10
[ 290.309767][ T5892] ? tomoyo_profile+0x11/0x50
[ 290.309783][ T5892] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 290.309800][ T5892] tomoyo_supervisor+0x340/0x1480
[ 290.309818][ T5892] ? format_decode+0x5a3/0xe30
[ 290.309836][ T5892] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 290.309860][ T5892] ? snprintf+0xda/0x120
[ 290.309876][ T5892] ? __pfx_snprintf+0x10/0x10
[ 290.309891][ T5892] ? tomoyo_check_acl+0x386/0x400
[ 290.309908][ T5892] tomoyo_path_number_perm+0x438/0x5a0
[ 290.309922][ T5892] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 290.309936][ T5892] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 290.309955][ T5892] ? _raw_spin_lock_irq+0xae/0xf0
[ 290.309989][ T5892] ? __pfx_ptrace_notify+0x10/0x10
[ 290.310013][ T5892] security_file_ioctl+0xcb/0x2d0
[ 290.310028][ T5892] __se_sys_ioctl+0x47/0x170
[ 290.310043][ T5892] do_syscall_64+0xfa/0x3b0
[ 290.310060][ T5892] ? lockdep_hardirqs_on+0x9c/0x150
[ 290.310075][ T5892] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 290.310087][ T5892] ? clear_bhb_loop+0x60/0xb0
[ 290.310101][ T5892] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 290.310112][ T5892] RIP: 0033:0x7fea15a51869
[ 290.310124][ T5892] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 290.310135][ T5892] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 290.310149][ T5892] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5892] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5892] exit_group(0) = ?
[pid 5892] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5892, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5893 attached
, child_tidptr=0x555576720650) = 5893
[pid 5893] set_robust_list(0x555576720660, 24) = 0
[pid 5893] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5893] setpgid(0, 0) = 0
[ 290.310157][ T5892] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 290.310165][ T5892] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 290.310172][ T5892] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 290.310179][ T5892] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 290.310196][ T5892]
[pid 5893] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5893] write(3, "1000", 4) = 4
[pid 5893] close(3executing program
) = 0
[pid 5893] write(1, "executing program\n", 18) = 18
[pid 5893] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5893] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5893] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5893] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5893] write(6, "4", 1) = 1
[ 290.669007][ T5893] FAULT_INJECTION: forcing a failure.
[ 290.669007][ T5893] name failslab, interval 1, probability 0, space 0, times 0
[ 290.682185][ T5893] CPU: 1 UID: 0 PID: 5893 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 290.682215][ T5893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 290.682225][ T5893] Call Trace:
[ 290.682236][ T5893]
[ 290.682245][ T5893] dump_stack_lvl+0x189/0x250
[ 290.682272][ T5893] ? __pfx____ratelimit+0x10/0x10
[ 290.682309][ T5893] ? __pfx_dump_stack_lvl+0x10/0x10
[ 290.682331][ T5893] ? __pfx__printk+0x10/0x10
[ 290.682362][ T5893] ? __pfx___might_resched+0x10/0x10
[ 290.682392][ T5893] ? fs_reclaim_acquire+0x7d/0x100
[ 290.682426][ T5893] should_fail_ex+0x414/0x560
[ 290.682456][ T5893] should_failslab+0xa8/0x100
[ 290.682485][ T5893] __kmalloc_noprof+0xcb/0x4f0
[ 290.682509][ T5893] ? tomoyo_init_log+0x1a6e/0x1f70
[ 290.682541][ T5893] tomoyo_init_log+0x1a6e/0x1f70
[ 290.682591][ T5893] ? __pfx_tomoyo_init_log+0x10/0x10
[ 290.682618][ T5893] ? tomoyo_profile+0x11/0x50
[ 290.682641][ T5893] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 290.682658][ T5893] tomoyo_supervisor+0x340/0x1480
[ 290.682677][ T5893] ? format_decode+0x5a3/0xe30
[ 290.682695][ T5893] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 290.682718][ T5893] ? snprintf+0xda/0x120
[ 290.682735][ T5893] ? __pfx_snprintf+0x10/0x10
[ 290.682749][ T5893] ? tomoyo_check_acl+0x386/0x400
[ 290.682767][ T5893] tomoyo_path_number_perm+0x438/0x5a0
[ 290.682781][ T5893] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 290.682795][ T5893] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 290.682814][ T5893] ? _raw_spin_lock_irq+0xae/0xf0
[ 290.682848][ T5893] ? __pfx_ptrace_notify+0x10/0x10
[ 290.682872][ T5893] security_file_ioctl+0xcb/0x2d0
[ 290.682887][ T5893] __se_sys_ioctl+0x47/0x170
[ 290.682902][ T5893] do_syscall_64+0xfa/0x3b0
[ 290.682919][ T5893] ? lockdep_hardirqs_on+0x9c/0x150
[ 290.682934][ T5893] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 290.682946][ T5893] ? clear_bhb_loop+0x60/0xb0
[ 290.682960][ T5893] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 290.682973][ T5893] RIP: 0033:0x7fea15a51869
[ 290.682985][ T5893] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 290.682995][ T5893] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 290.683010][ T5893] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5893] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5893] exit_group(0) = ?
[pid 5893] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5893, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5894 attached
, child_tidptr=0x555576720650) = 5894
[pid 5894] set_robust_list(0x555576720660, 24) = 0
[pid 5894] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 290.683019][ T5893] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 290.683026][ T5893] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 290.683033][ T5893] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 290.683040][ T5893] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 290.683058][ T5893]
[pid 5894] setpgid(0, 0) = 0
[pid 5894] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5894] write(3, "1000", 4) = 4
[pid 5894] close(3) = 0
[pid 5894] write(1, "executing program\n", 18executing program
) = 18
[pid 5894] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5894] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5894] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5894] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5894] write(6, "4", 1) = 1
[pid 5894] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5894] exit_group(0) = ?
[ 291.082182][ T5894] FAULT_INJECTION: forcing a failure.
[ 291.082182][ T5894] name failslab, interval 1, probability 0, space 0, times 0
[ 291.095075][ T5894] CPU: 0 UID: 0 PID: 5894 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 291.095094][ T5894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 291.095101][ T5894] Call Trace:
[ 291.095105][ T5894]
[ 291.095110][ T5894] dump_stack_lvl+0x189/0x250
[ 291.095129][ T5894] ? __pfx____ratelimit+0x10/0x10
[ 291.095146][ T5894] ? __pfx_dump_stack_lvl+0x10/0x10
[ 291.095159][ T5894] ? __pfx__printk+0x10/0x10
[ 291.095178][ T5894] ? __pfx___might_resched+0x10/0x10
[ 291.095195][ T5894] ? fs_reclaim_acquire+0x7d/0x100
[ 291.095215][ T5894] should_fail_ex+0x414/0x560
[ 291.095232][ T5894] should_failslab+0xa8/0x100
[ 291.095249][ T5894] __kmalloc_noprof+0xcb/0x4f0
[ 291.095266][ T5894] ? tomoyo_init_log+0x1a6e/0x1f70
[ 291.095285][ T5894] tomoyo_init_log+0x1a6e/0x1f70
[ 291.095315][ T5894] ? __pfx_tomoyo_init_log+0x10/0x10
[ 291.095331][ T5894] ? tomoyo_profile+0x11/0x50
[ 291.095347][ T5894] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 291.095364][ T5894] tomoyo_supervisor+0x340/0x1480
[ 291.095382][ T5894] ? format_decode+0x5a3/0xe30
[ 291.095400][ T5894] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 291.095423][ T5894] ? snprintf+0xda/0x120
[ 291.095440][ T5894] ? __pfx_snprintf+0x10/0x10
[ 291.095454][ T5894] ? tomoyo_check_acl+0x386/0x400
[ 291.095472][ T5894] tomoyo_path_number_perm+0x438/0x5a0
[ 291.095485][ T5894] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 291.095500][ T5894] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 291.095529][ T5894] ? _raw_spin_lock_irq+0xae/0xf0
[ 291.095564][ T5894] ? __pfx_ptrace_notify+0x10/0x10
[ 291.095589][ T5894] security_file_ioctl+0xcb/0x2d0
[ 291.095604][ T5894] __se_sys_ioctl+0x47/0x170
[ 291.095619][ T5894] do_syscall_64+0xfa/0x3b0
[ 291.095635][ T5894] ? lockdep_hardirqs_on+0x9c/0x150
[ 291.095651][ T5894] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 291.095663][ T5894] ? clear_bhb_loop+0x60/0xb0
[ 291.095677][ T5894] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 291.095688][ T5894] RIP: 0033:0x7fea15a51869
[ 291.095700][ T5894] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 291.095710][ T5894] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5894] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5894, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5895 attached
, child_tidptr=0x555576720650) = 5895
[pid 5895] set_robust_list(0x555576720660, 24) = 0
[pid 5895] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5895] setpgid(0, 0) = 0
[ 291.095724][ T5894] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 291.095733][ T5894] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 291.095741][ T5894] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 291.095748][ T5894] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 291.095755][ T5894] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 291.095772][ T5894]
[pid 5895] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5895] write(3, "1000", 4) = 4
[pid 5895] close(3) = 0
executing program
[pid 5895] write(1, "executing program\n", 18) = 18
[pid 5895] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5895] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5895] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5895] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5895] write(6, "4", 1) = 1
[ 291.434557][ T5895] FAULT_INJECTION: forcing a failure.
[ 291.434557][ T5895] name failslab, interval 1, probability 0, space 0, times 0
[ 291.447821][ T5895] CPU: 1 UID: 0 PID: 5895 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 291.447849][ T5895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 291.447861][ T5895] Call Trace:
[ 291.447870][ T5895]
[ 291.447878][ T5895] dump_stack_lvl+0x189/0x250
[ 291.447906][ T5895] ? __pfx____ratelimit+0x10/0x10
[ 291.447935][ T5895] ? __pfx_dump_stack_lvl+0x10/0x10
[ 291.447958][ T5895] ? __pfx__printk+0x10/0x10
[ 291.447991][ T5895] ? __pfx___might_resched+0x10/0x10
[ 291.448019][ T5895] ? fs_reclaim_acquire+0x7d/0x100
[ 291.448052][ T5895] should_fail_ex+0x414/0x560
[ 291.448079][ T5895] should_failslab+0xa8/0x100
[ 291.448106][ T5895] __kmalloc_noprof+0xcb/0x4f0
[ 291.448128][ T5895] ? tomoyo_init_log+0x1a6e/0x1f70
[ 291.448160][ T5895] tomoyo_init_log+0x1a6e/0x1f70
[ 291.448208][ T5895] ? __pfx_tomoyo_init_log+0x10/0x10
[ 291.448236][ T5895] ? tomoyo_profile+0x11/0x50
[ 291.448274][ T5895] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 291.448304][ T5895] tomoyo_supervisor+0x340/0x1480
[ 291.448333][ T5895] ? format_decode+0x5a3/0xe30
[ 291.448364][ T5895] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 291.448405][ T5895] ? snprintf+0xda/0x120
[ 291.448434][ T5895] ? __pfx_snprintf+0x10/0x10
[ 291.448459][ T5895] ? tomoyo_check_acl+0x386/0x400
[ 291.448489][ T5895] tomoyo_path_number_perm+0x438/0x5a0
[ 291.448509][ T5895] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 291.448532][ T5895] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 291.448562][ T5895] ? _raw_spin_lock_irq+0xae/0xf0
[ 291.448614][ T5895] ? __pfx_ptrace_notify+0x10/0x10
[ 291.448638][ T5895] security_file_ioctl+0xcb/0x2d0
[ 291.448654][ T5895] __se_sys_ioctl+0x47/0x170
[ 291.448669][ T5895] do_syscall_64+0xfa/0x3b0
[ 291.448685][ T5895] ? lockdep_hardirqs_on+0x9c/0x150
[ 291.448701][ T5895] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 291.448713][ T5895] ? clear_bhb_loop+0x60/0xb0
[ 291.448728][ T5895] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 291.448739][ T5895] RIP: 0033:0x7fea15a51869
[ 291.448751][ T5895] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 291.448761][ T5895] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 291.448776][ T5895] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5895] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5895] exit_group(0) = ?
[pid 5895] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5895, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5896 attached
, child_tidptr=0x555576720650) = 5896
[pid 5896] set_robust_list(0x555576720660, 24) = 0
[pid 5896] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5896] setpgid(0, 0) = 0
[pid 5896] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5896] write(3, "1000", 4executing program
) = 4
[pid 5896] close(3) = 0
[pid 5896] write(1, "executing program\n", 18) = 18
[pid 5896] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5896] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5896] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5896] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5896] write(6, "4", 1) = 1
[ 291.448785][ T5895] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 291.448792][ T5895] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 291.448799][ T5895] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 291.448806][ T5895] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 291.448824][ T5895]
[pid 5896] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5896] exit_group(0) = ?
[pid 5896] +++ exited with 0 +++
[ 291.750527][ T5896] FAULT_INJECTION: forcing a failure.
[ 291.750527][ T5896] name failslab, interval 1, probability 0, space 0, times 0
[ 291.763276][ T5896] CPU: 0 UID: 0 PID: 5896 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 291.763304][ T5896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 291.763314][ T5896] Call Trace:
[ 291.763323][ T5896]
[ 291.763332][ T5896] dump_stack_lvl+0x189/0x250
[ 291.763363][ T5896] ? __pfx____ratelimit+0x10/0x10
[ 291.763381][ T5896] ? __pfx_dump_stack_lvl+0x10/0x10
[ 291.763393][ T5896] ? __pfx__printk+0x10/0x10
[ 291.763413][ T5896] ? __pfx___might_resched+0x10/0x10
[ 291.763430][ T5896] ? fs_reclaim_acquire+0x7d/0x100
[ 291.763451][ T5896] should_fail_ex+0x414/0x560
[ 291.763468][ T5896] should_failslab+0xa8/0x100
[ 291.763486][ T5896] __kmalloc_noprof+0xcb/0x4f0
[ 291.763500][ T5896] ? tomoyo_init_log+0x1a6e/0x1f70
[ 291.763519][ T5896] tomoyo_init_log+0x1a6e/0x1f70
[ 291.763550][ T5896] ? __pfx_tomoyo_init_log+0x10/0x10
[ 291.763566][ T5896] ? tomoyo_profile+0x11/0x50
[ 291.763582][ T5896] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 291.763599][ T5896] tomoyo_supervisor+0x340/0x1480
[ 291.763618][ T5896] ? format_decode+0x5a3/0xe30
[ 291.763636][ T5896] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 291.763659][ T5896] ? snprintf+0xda/0x120
[ 291.763676][ T5896] ? __pfx_snprintf+0x10/0x10
[ 291.763691][ T5896] ? tomoyo_check_acl+0x386/0x400
[ 291.763709][ T5896] tomoyo_path_number_perm+0x438/0x5a0
[ 291.763723][ T5896] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 291.763737][ T5896] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 291.763756][ T5896] ? _raw_spin_lock_irq+0xae/0xf0
[ 291.763791][ T5896] ? __pfx_ptrace_notify+0x10/0x10
[ 291.763815][ T5896] security_file_ioctl+0xcb/0x2d0
[ 291.763830][ T5896] __se_sys_ioctl+0x47/0x170
[ 291.763845][ T5896] do_syscall_64+0xfa/0x3b0
[ 291.763862][ T5896] ? lockdep_hardirqs_on+0x9c/0x150
[ 291.763877][ T5896] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 291.763889][ T5896] ? clear_bhb_loop+0x60/0xb0
[ 291.763904][ T5896] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 291.763915][ T5896] RIP: 0033:0x7fea15a51869
[ 291.763927][ T5896] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 291.763937][ T5896] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5896, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5897 attached
, child_tidptr=0x555576720650) = 5897
[pid 5897] set_robust_list(0x555576720660, 24) = 0
[pid 5897] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5897] setpgid(0, 0) = 0
[pid 5897] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5897] write(3, "1000", 4) = 4
[pid 5897] close(3) = 0
executing program
[pid 5897] write(1, "executing program\n", 18) = 18
[ 291.763952][ T5896] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 291.763961][ T5896] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 291.763969][ T5896] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 291.763976][ T5896] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 291.763983][ T5896] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 291.764001][ T5896]
[pid 5897] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5897] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5897] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5897] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5897] write(6, "4", 1) = 1
[pid 5897] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5897] exit_group(0) = ?
[pid 5897] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5897, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
[ 292.131795][ T5897] FAULT_INJECTION: forcing a failure.
[ 292.131795][ T5897] name failslab, interval 1, probability 0, space 0, times 0
[ 292.144754][ T5897] CPU: 1 UID: 0 PID: 5897 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 292.144774][ T5897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 292.144781][ T5897] Call Trace:
[ 292.144786][ T5897]
[ 292.144791][ T5897] dump_stack_lvl+0x189/0x250
[ 292.144810][ T5897] ? __pfx____ratelimit+0x10/0x10
[ 292.144828][ T5897] ? __pfx_dump_stack_lvl+0x10/0x10
[ 292.144841][ T5897] ? __pfx__printk+0x10/0x10
[ 292.144860][ T5897] ? __pfx___might_resched+0x10/0x10
[ 292.144877][ T5897] ? fs_reclaim_acquire+0x7d/0x100
[ 292.144898][ T5897] should_fail_ex+0x414/0x560
[ 292.144916][ T5897] should_failslab+0xa8/0x100
[ 292.144936][ T5897] __kmalloc_noprof+0xcb/0x4f0
[ 292.144950][ T5897] ? tomoyo_init_log+0x1a6e/0x1f70
[ 292.144971][ T5897] tomoyo_init_log+0x1a6e/0x1f70
[ 292.145001][ T5897] ? __pfx_tomoyo_init_log+0x10/0x10
[ 292.145017][ T5897] ? tomoyo_profile+0x11/0x50
[ 292.145033][ T5897] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 292.145050][ T5897] tomoyo_supervisor+0x340/0x1480
[ 292.145068][ T5897] ? format_decode+0x5a3/0xe30
[ 292.145086][ T5897] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 292.145110][ T5897] ? snprintf+0xda/0x120
[ 292.145126][ T5897] ? __pfx_snprintf+0x10/0x10
[ 292.145141][ T5897] ? tomoyo_check_acl+0x386/0x400
[ 292.145158][ T5897] tomoyo_path_number_perm+0x438/0x5a0
[ 292.145172][ T5897] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 292.145186][ T5897] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 292.145209][ T5897] ? _raw_spin_lock_irq+0xae/0xf0
[ 292.145243][ T5897] ? __pfx_ptrace_notify+0x10/0x10
[ 292.145267][ T5897] security_file_ioctl+0xcb/0x2d0
[ 292.145282][ T5897] __se_sys_ioctl+0x47/0x170
[ 292.145297][ T5897] do_syscall_64+0xfa/0x3b0
[ 292.145314][ T5897] ? lockdep_hardirqs_on+0x9c/0x150
[ 292.145336][ T5897] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 292.145348][ T5897] ? clear_bhb_loop+0x60/0xb0
[ 292.145362][ T5897] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 292.145373][ T5897] RIP: 0033:0x7fea15a51869
[ 292.145386][ T5897] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 292.145396][ T5897] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5898 attached
, child_tidptr=0x555576720650) = 5898
[pid 5898] set_robust_list(0x555576720660, 24) = 0
[pid 5898] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5898] setpgid(0, 0) = 0
[pid 5898] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5898] write(3, "1000", 4) = 4
[ 292.145411][ T5897] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 292.145420][ T5897] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 292.145427][ T5897] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 292.145435][ T5897] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 292.145442][ T5897] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 292.145459][ T5897]
[pid 5898] close(3) = 0
[pid 5898] write(1, "executing program\n", 18executing program
) = 18
[pid 5898] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5898] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5898] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5898] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5898] write(6, "4", 1) = 1
[ 292.525471][ T5898] FAULT_INJECTION: forcing a failure.
[ 292.525471][ T5898] name failslab, interval 1, probability 0, space 0, times 0
[ 292.538435][ T5898] CPU: 1 UID: 0 PID: 5898 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 292.538463][ T5898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 292.538474][ T5898] Call Trace:
[ 292.538502][ T5898]
[ 292.538522][ T5898] dump_stack_lvl+0x189/0x250
[ 292.538565][ T5898] ? __pfx____ratelimit+0x10/0x10
[ 292.538593][ T5898] ? __pfx_dump_stack_lvl+0x10/0x10
[ 292.538615][ T5898] ? __pfx__printk+0x10/0x10
[ 292.538648][ T5898] ? __pfx___might_resched+0x10/0x10
[ 292.538676][ T5898] ? fs_reclaim_acquire+0x7d/0x100
[ 292.538709][ T5898] should_fail_ex+0x414/0x560
[ 292.538738][ T5898] should_failslab+0xa8/0x100
[ 292.538767][ T5898] __kmalloc_noprof+0xcb/0x4f0
[ 292.538790][ T5898] ? tomoyo_init_log+0x1a6e/0x1f70
[ 292.538822][ T5898] tomoyo_init_log+0x1a6e/0x1f70
[ 292.538874][ T5898] ? __pfx_tomoyo_init_log+0x10/0x10
[ 292.538901][ T5898] ? tomoyo_profile+0x11/0x50
[ 292.538922][ T5898] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 292.538944][ T5898] tomoyo_supervisor+0x340/0x1480
[ 292.538968][ T5898] ? format_decode+0x5a3/0xe30
[ 292.538992][ T5898] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 292.539023][ T5898] ? snprintf+0xda/0x120
[ 292.539045][ T5898] ? __pfx_snprintf+0x10/0x10
[ 292.539064][ T5898] ? tomoyo_check_acl+0x386/0x400
[ 292.539088][ T5898] tomoyo_path_number_perm+0x438/0x5a0
[ 292.539106][ T5898] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 292.539124][ T5898] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 292.539149][ T5898] ? _raw_spin_lock_irq+0xae/0xf0
[ 292.539197][ T5898] ? __pfx_ptrace_notify+0x10/0x10
[ 292.539231][ T5898] security_file_ioctl+0xcb/0x2d0
[ 292.539250][ T5898] __se_sys_ioctl+0x47/0x170
[ 292.539270][ T5898] do_syscall_64+0xfa/0x3b0
[ 292.539292][ T5898] ? lockdep_hardirqs_on+0x9c/0x150
[ 292.539313][ T5898] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 292.539328][ T5898] ? clear_bhb_loop+0x60/0xb0
[ 292.539347][ T5898] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 292.539361][ T5898] RIP: 0033:0x7fea15a51869
[ 292.539377][ T5898] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 292.539389][ T5898] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5898] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5898] exit_group(0) = ?
[pid 5898] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5898, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5899 attached
, child_tidptr=0x555576720650) = 5899
[pid 5899] set_robust_list(0x555576720660, 24) = 0
[pid 5899] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5899] setpgid(0, 0) = 0
[pid 5899] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5899] write(3, "1000", 4) = 4
[ 292.539407][ T5898] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 292.539418][ T5898] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 292.539428][ T5898] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 292.539437][ T5898] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 292.539446][ T5898] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 292.539470][ T5898]
[pid 5899] close(3) = 0
[pid 5899] write(1, "executing program\n", 18executing program
) = 18
[pid 5899] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5899] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5899] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5899] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5899] write(6, "4", 1) = 1
[pid 5899] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 292.912880][ T5899] FAULT_INJECTION: forcing a failure.
[ 292.912880][ T5899] name failslab, interval 1, probability 0, space 0, times 0
[ 292.926244][ T5899] CPU: 0 UID: 0 PID: 5899 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 292.926271][ T5899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 292.926282][ T5899] Call Trace:
[ 292.926289][ T5899]
[ 292.926298][ T5899] dump_stack_lvl+0x189/0x250
[ 292.926336][ T5899] ? __pfx____ratelimit+0x10/0x10
[ 292.926363][ T5899] ? __pfx_dump_stack_lvl+0x10/0x10
[ 292.926385][ T5899] ? __pfx__printk+0x10/0x10
[ 292.926419][ T5899] ? __pfx___might_resched+0x10/0x10
[ 292.926446][ T5899] ? fs_reclaim_acquire+0x7d/0x100
[ 292.926480][ T5899] should_fail_ex+0x414/0x560
[ 292.926508][ T5899] should_failslab+0xa8/0x100
[ 292.926534][ T5899] __kmalloc_noprof+0xcb/0x4f0
[ 292.926554][ T5899] ? tomoyo_init_log+0x1a6e/0x1f70
[ 292.926585][ T5899] tomoyo_init_log+0x1a6e/0x1f70
[ 292.926637][ T5899] ? __pfx_tomoyo_init_log+0x10/0x10
[ 292.926664][ T5899] ? tomoyo_profile+0x11/0x50
[ 292.926689][ T5899] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 292.926718][ T5899] tomoyo_supervisor+0x340/0x1480
[ 292.926748][ T5899] ? format_decode+0x5a3/0xe30
[ 292.926779][ T5899] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 292.926820][ T5899] ? snprintf+0xda/0x120
[ 292.926849][ T5899] ? __pfx_snprintf+0x10/0x10
[ 292.926873][ T5899] ? tomoyo_check_acl+0x386/0x400
[ 292.926904][ T5899] tomoyo_path_number_perm+0x438/0x5a0
[ 292.926926][ T5899] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 292.926950][ T5899] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 292.926982][ T5899] ? _raw_spin_lock_irq+0xae/0xf0
[ 292.927044][ T5899] ? __pfx_ptrace_notify+0x10/0x10
[ 292.927087][ T5899] security_file_ioctl+0xcb/0x2d0
[ 292.927111][ T5899] __se_sys_ioctl+0x47/0x170
[ 292.927136][ T5899] do_syscall_64+0xfa/0x3b0
[ 292.927163][ T5899] ? lockdep_hardirqs_on+0x9c/0x150
[ 292.927188][ T5899] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 292.927208][ T5899] ? clear_bhb_loop+0x60/0xb0
[ 292.927231][ T5899] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 292.927250][ T5899] RIP: 0033:0x7fea15a51869
[ 292.927267][ T5899] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 292.927283][ T5899] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5899] exit_group(0) = ?
[pid 5899] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5899, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5900 attached
, child_tidptr=0x555576720650) = 5900
[pid 5900] set_robust_list(0x555576720660, 24) = 0
[pid 5900] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 292.927312][ T5899] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 292.927326][ T5899] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 292.927338][ T5899] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 292.927350][ T5899] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 292.927361][ T5899] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 292.927386][ T5899]
[pid 5900] setpgid(0, 0) = 0
[pid 5900] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5900] write(3, "1000", 4) = 4
[pid 5900] close(3) = 0
executing program
[pid 5900] write(1, "executing program\n", 18) = 18
[pid 5900] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5900] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5900] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5900] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5900] write(6, "4", 1) = 1
[pid 5900] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5900] exit_group(0) = ?
[ 293.327786][ T5900] FAULT_INJECTION: forcing a failure.
[ 293.327786][ T5900] name failslab, interval 1, probability 0, space 0, times 0
[ 293.340785][ T5900] CPU: 1 UID: 0 PID: 5900 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 293.340805][ T5900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 293.340812][ T5900] Call Trace:
[ 293.340817][ T5900]
[ 293.340822][ T5900] dump_stack_lvl+0x189/0x250
[ 293.340840][ T5900] ? __pfx____ratelimit+0x10/0x10
[ 293.340858][ T5900] ? __pfx_dump_stack_lvl+0x10/0x10
[ 293.340871][ T5900] ? __pfx__printk+0x10/0x10
[ 293.340890][ T5900] ? __pfx___might_resched+0x10/0x10
[ 293.340906][ T5900] ? fs_reclaim_acquire+0x7d/0x100
[ 293.340927][ T5900] should_fail_ex+0x414/0x560
[ 293.340943][ T5900] should_failslab+0xa8/0x100
[ 293.340960][ T5900] __kmalloc_noprof+0xcb/0x4f0
[ 293.340974][ T5900] ? tomoyo_init_log+0x1a6e/0x1f70
[ 293.340994][ T5900] tomoyo_init_log+0x1a6e/0x1f70
[ 293.341023][ T5900] ? __pfx_tomoyo_init_log+0x10/0x10
[ 293.341039][ T5900] ? tomoyo_profile+0x11/0x50
[ 293.341055][ T5900] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 293.341072][ T5900] tomoyo_supervisor+0x340/0x1480
[ 293.341090][ T5900] ? format_decode+0x5a3/0xe30
[ 293.341108][ T5900] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 293.341131][ T5900] ? snprintf+0xda/0x120
[ 293.341148][ T5900] ? __pfx_snprintf+0x10/0x10
[ 293.341163][ T5900] ? tomoyo_check_acl+0x386/0x400
[ 293.341180][ T5900] tomoyo_path_number_perm+0x438/0x5a0
[ 293.341194][ T5900] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 293.341208][ T5900] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 293.341234][ T5900] ? _raw_spin_lock_irq+0xae/0xf0
[ 293.341268][ T5900] ? __pfx_ptrace_notify+0x10/0x10
[ 293.341292][ T5900] security_file_ioctl+0xcb/0x2d0
[ 293.341307][ T5900] __se_sys_ioctl+0x47/0x170
[ 293.341322][ T5900] do_syscall_64+0xfa/0x3b0
[ 293.341338][ T5900] ? lockdep_hardirqs_on+0x9c/0x150
[ 293.341354][ T5900] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 293.341366][ T5900] ? clear_bhb_loop+0x60/0xb0
[ 293.341380][ T5900] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 293.341391][ T5900] RIP: 0033:0x7fea15a51869
[ 293.341403][ T5900] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 293.341414][ T5900] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 293.341428][ T5900] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5900] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5900, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5901 attached
, child_tidptr=0x555576720650) = 5901
[ 293.341437][ T5900] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 293.341444][ T5900] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 293.341451][ T5900] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 293.341458][ T5900] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 293.341476][ T5900]
[pid 5901] set_robust_list(0x555576720660, 24) = 0
[pid 5901] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5901] setpgid(0, 0) = 0
[pid 5901] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5901] write(3, "1000", 4) = 4
[pid 5901] close(3) = 0
executing program
[pid 5901] write(1, "executing program\n", 18) = 18
[pid 5901] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5901] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5901] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5901] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5901] write(6, "4", 1) = 1
[pid 5901] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5901] exit_group(0) = ?
[ 293.735187][ T5901] FAULT_INJECTION: forcing a failure.
[ 293.735187][ T5901] name failslab, interval 1, probability 0, space 0, times 0
[ 293.748760][ T5901] CPU: 0 UID: 0 PID: 5901 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 293.748792][ T5901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 293.748804][ T5901] Call Trace:
[ 293.748812][ T5901]
[ 293.748832][ T5901] dump_stack_lvl+0x189/0x250
[ 293.748875][ T5901] ? __pfx____ratelimit+0x10/0x10
[ 293.748908][ T5901] ? __pfx_dump_stack_lvl+0x10/0x10
[ 293.748927][ T5901] ? __pfx__printk+0x10/0x10
[ 293.748952][ T5901] ? __pfx___might_resched+0x10/0x10
[ 293.748969][ T5901] ? fs_reclaim_acquire+0x7d/0x100
[ 293.748989][ T5901] should_fail_ex+0x414/0x560
[ 293.749006][ T5901] should_failslab+0xa8/0x100
[ 293.749023][ T5901] __kmalloc_noprof+0xcb/0x4f0
[ 293.749038][ T5901] ? tomoyo_init_log+0x1a6e/0x1f70
[ 293.749066][ T5901] tomoyo_init_log+0x1a6e/0x1f70
[ 293.749106][ T5901] ? __pfx_tomoyo_init_log+0x10/0x10
[ 293.749122][ T5901] ? tomoyo_profile+0x11/0x50
[ 293.749138][ T5901] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 293.749156][ T5901] tomoyo_supervisor+0x340/0x1480
[ 293.749175][ T5901] ? format_decode+0x5a3/0xe30
[ 293.749193][ T5901] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 293.749216][ T5901] ? snprintf+0xda/0x120
[ 293.749233][ T5901] ? __pfx_snprintf+0x10/0x10
[ 293.749251][ T5901] ? tomoyo_check_acl+0x386/0x400
[ 293.749269][ T5901] tomoyo_path_number_perm+0x438/0x5a0
[ 293.749283][ T5901] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 293.749309][ T5901] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 293.749328][ T5901] ? _raw_spin_lock_irq+0xae/0xf0
[ 293.749363][ T5901] ? __pfx_ptrace_notify+0x10/0x10
[ 293.749387][ T5901] security_file_ioctl+0xcb/0x2d0
[ 293.749402][ T5901] __se_sys_ioctl+0x47/0x170
[ 293.749418][ T5901] do_syscall_64+0xfa/0x3b0
[ 293.749434][ T5901] ? lockdep_hardirqs_on+0x9c/0x150
[ 293.749450][ T5901] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 293.749462][ T5901] ? clear_bhb_loop+0x60/0xb0
[ 293.749476][ T5901] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 293.749488][ T5901] RIP: 0033:0x7fea15a51869
[ 293.749500][ T5901] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 293.749510][ T5901] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 293.749524][ T5901] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5901] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5901, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5902 attached
, child_tidptr=0x555576720650) = 5902
[pid 5902] set_robust_list(0x555576720660, 24) = 0
[pid 5902] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5902] setpgid(0, 0) = 0
[pid 5902] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5902] write(3, "1000", 4) = 4
[ 293.749533][ T5901] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 293.749547][ T5901] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 293.749555][ T5901] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 293.749562][ T5901] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 293.749579][ T5901]
[pid 5902] close(3) = 0
executing program
[pid 5902] write(1, "executing program\n", 18) = 18
[pid 5902] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5902] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5902] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5902] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5902] write(6, "4", 1) = 1
[pid 5902] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5902] exit_group(0) = ?
[pid 5902] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5902, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
[ 294.133494][ T5902] FAULT_INJECTION: forcing a failure.
[ 294.133494][ T5902] name failslab, interval 1, probability 0, space 0, times 0
[ 294.146820][ T5902] CPU: 1 UID: 0 PID: 5902 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 294.146849][ T5902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 294.146860][ T5902] Call Trace:
[ 294.146869][ T5902]
[ 294.146878][ T5902] dump_stack_lvl+0x189/0x250
[ 294.146907][ T5902] ? __pfx____ratelimit+0x10/0x10
[ 294.146935][ T5902] ? __pfx_dump_stack_lvl+0x10/0x10
[ 294.146957][ T5902] ? __pfx__printk+0x10/0x10
[ 294.146989][ T5902] ? __pfx___might_resched+0x10/0x10
[ 294.147016][ T5902] ? fs_reclaim_acquire+0x7d/0x100
[ 294.147047][ T5902] should_fail_ex+0x414/0x560
[ 294.147070][ T5902] should_failslab+0xa8/0x100
[ 294.147087][ T5902] __kmalloc_noprof+0xcb/0x4f0
[ 294.147101][ T5902] ? tomoyo_init_log+0x1a6e/0x1f70
[ 294.147120][ T5902] tomoyo_init_log+0x1a6e/0x1f70
[ 294.147150][ T5902] ? __pfx_tomoyo_init_log+0x10/0x10
[ 294.147166][ T5902] ? tomoyo_profile+0x11/0x50
[ 294.147182][ T5902] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 294.147199][ T5902] tomoyo_supervisor+0x340/0x1480
[ 294.147217][ T5902] ? format_decode+0x5a3/0xe30
[ 294.147235][ T5902] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 294.147267][ T5902] ? snprintf+0xda/0x120
[ 294.147284][ T5902] ? __pfx_snprintf+0x10/0x10
[ 294.147298][ T5902] ? tomoyo_check_acl+0x386/0x400
[ 294.147316][ T5902] tomoyo_path_number_perm+0x438/0x5a0
[ 294.147330][ T5902] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 294.147344][ T5902] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 294.147362][ T5902] ? _raw_spin_lock_irq+0xae/0xf0
[ 294.147397][ T5902] ? __pfx_ptrace_notify+0x10/0x10
[ 294.147421][ T5902] security_file_ioctl+0xcb/0x2d0
[ 294.147436][ T5902] __se_sys_ioctl+0x47/0x170
[ 294.147451][ T5902] do_syscall_64+0xfa/0x3b0
[ 294.147467][ T5902] ? lockdep_hardirqs_on+0x9c/0x150
[ 294.147483][ T5902] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 294.147495][ T5902] ? clear_bhb_loop+0x60/0xb0
[ 294.147509][ T5902] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 294.147520][ T5902] RIP: 0033:0x7fea15a51869
[ 294.147532][ T5902] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 294.147542][ T5902] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5903 attached
, child_tidptr=0x555576720650) = 5903
[pid 5903] set_robust_list(0x555576720660, 24) = 0
[pid 5903] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5903] setpgid(0, 0) = 0
[pid 5903] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5903] write(3, "1000", 4) = 4
[ 294.147557][ T5902] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 294.147566][ T5902] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 294.147573][ T5902] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 294.147580][ T5902] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 294.147587][ T5902] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 294.147605][ T5902]
[pid 5903] close(3) = 0
[pid 5903] write(1, "executing program\n", 18executing program
) = 18
[pid 5903] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5903] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5903] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5903] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5903] write(6, "4", 1) = 1
[pid 5903] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5903] exit_group(0) = ?
[pid 5903] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5903, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
[ 294.501948][ T5903] FAULT_INJECTION: forcing a failure.
[ 294.501948][ T5903] name failslab, interval 1, probability 0, space 0, times 0
[ 294.514960][ T5903] CPU: 0 UID: 0 PID: 5903 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 294.514980][ T5903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 294.514987][ T5903] Call Trace:
[ 294.514992][ T5903]
[ 294.514997][ T5903] dump_stack_lvl+0x189/0x250
[ 294.515017][ T5903] ? __pfx____ratelimit+0x10/0x10
[ 294.515034][ T5903] ? __pfx_dump_stack_lvl+0x10/0x10
[ 294.515047][ T5903] ? __pfx__printk+0x10/0x10
[ 294.515067][ T5903] ? __pfx___might_resched+0x10/0x10
[ 294.515083][ T5903] ? fs_reclaim_acquire+0x7d/0x100
[ 294.515103][ T5903] should_fail_ex+0x414/0x560
[ 294.515121][ T5903] should_failslab+0xa8/0x100
[ 294.515137][ T5903] __kmalloc_noprof+0xcb/0x4f0
[ 294.515151][ T5903] ? tomoyo_init_log+0x1a6e/0x1f70
[ 294.515171][ T5903] tomoyo_init_log+0x1a6e/0x1f70
[ 294.515201][ T5903] ? __pfx_tomoyo_init_log+0x10/0x10
[ 294.515217][ T5903] ? tomoyo_profile+0x11/0x50
[ 294.515233][ T5903] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 294.515254][ T5903] tomoyo_supervisor+0x340/0x1480
[ 294.515272][ T5903] ? format_decode+0x5a3/0xe30
[ 294.515290][ T5903] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 294.515313][ T5903] ? snprintf+0xda/0x120
[ 294.515330][ T5903] ? __pfx_snprintf+0x10/0x10
[ 294.515345][ T5903] ? tomoyo_check_acl+0x386/0x400
[ 294.515363][ T5903] tomoyo_path_number_perm+0x438/0x5a0
[ 294.515376][ T5903] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 294.515390][ T5903] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 294.515409][ T5903] ? _raw_spin_lock_irq+0xae/0xf0
[ 294.515444][ T5903] ? __pfx_ptrace_notify+0x10/0x10
[ 294.515467][ T5903] security_file_ioctl+0xcb/0x2d0
[ 294.515482][ T5903] __se_sys_ioctl+0x47/0x170
[ 294.515505][ T5903] do_syscall_64+0xfa/0x3b0
[ 294.515522][ T5903] ? lockdep_hardirqs_on+0x9c/0x150
[ 294.515537][ T5903] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 294.515549][ T5903] ? clear_bhb_loop+0x60/0xb0
[ 294.515563][ T5903] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 294.515575][ T5903] RIP: 0033:0x7fea15a51869
[ 294.515587][ T5903] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 294.515596][ T5903] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5904 attached
, child_tidptr=0x555576720650) = 5904
[pid 5904] set_robust_list(0x555576720660, 24) = 0
[pid 5904] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5904] setpgid(0, 0) = 0
[pid 5904] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5904] write(3, "1000", 4) = 4
[pid 5904] close(3) = 0
executing program
[pid 5904] write(1, "executing program\n", 18) = 18
[pid 5904] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5904] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[ 294.515611][ T5903] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 294.515620][ T5903] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 294.515627][ T5903] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 294.515635][ T5903] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 294.515642][ T5903] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 294.515659][ T5903]
[pid 5904] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5904] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5904] write(6, "4", 1) = 1
[pid 5904] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5904] exit_group(0) = ?
[pid 5904] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5904, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
[ 294.862811][ T5904] FAULT_INJECTION: forcing a failure.
[ 294.862811][ T5904] name failslab, interval 1, probability 0, space 0, times 0
[ 294.875606][ T5904] CPU: 1 UID: 0 PID: 5904 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 294.875625][ T5904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 294.875632][ T5904] Call Trace:
[ 294.875638][ T5904]
[ 294.875643][ T5904] dump_stack_lvl+0x189/0x250
[ 294.875661][ T5904] ? __pfx____ratelimit+0x10/0x10
[ 294.875679][ T5904] ? __pfx_dump_stack_lvl+0x10/0x10
[ 294.875692][ T5904] ? __pfx__printk+0x10/0x10
[ 294.875712][ T5904] ? __pfx___might_resched+0x10/0x10
[ 294.875729][ T5904] ? fs_reclaim_acquire+0x7d/0x100
[ 294.875749][ T5904] should_fail_ex+0x414/0x560
[ 294.875766][ T5904] should_failslab+0xa8/0x100
[ 294.875783][ T5904] __kmalloc_noprof+0xcb/0x4f0
[ 294.875797][ T5904] ? tomoyo_init_log+0x1a6e/0x1f70
[ 294.875817][ T5904] tomoyo_init_log+0x1a6e/0x1f70
[ 294.875847][ T5904] ? __pfx_tomoyo_init_log+0x10/0x10
[ 294.875863][ T5904] ? tomoyo_profile+0x11/0x50
[ 294.875879][ T5904] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 294.875896][ T5904] tomoyo_supervisor+0x340/0x1480
[ 294.875914][ T5904] ? format_decode+0x5a3/0xe30
[ 294.875932][ T5904] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 294.875956][ T5904] ? snprintf+0xda/0x120
[ 294.875972][ T5904] ? __pfx_snprintf+0x10/0x10
[ 294.875987][ T5904] ? tomoyo_check_acl+0x386/0x400
[ 294.876005][ T5904] tomoyo_path_number_perm+0x438/0x5a0
[ 294.876018][ T5904] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 294.876033][ T5904] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 294.876051][ T5904] ? _raw_spin_lock_irq+0xae/0xf0
[ 294.876086][ T5904] ? __pfx_ptrace_notify+0x10/0x10
[ 294.876109][ T5904] security_file_ioctl+0xcb/0x2d0
[ 294.876124][ T5904] __se_sys_ioctl+0x47/0x170
[ 294.876139][ T5904] do_syscall_64+0xfa/0x3b0
[ 294.876155][ T5904] ? lockdep_hardirqs_on+0x9c/0x150
[ 294.876170][ T5904] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 294.876182][ T5904] ? clear_bhb_loop+0x60/0xb0
[ 294.876196][ T5904] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 294.876207][ T5904] RIP: 0033:0x7fea15a51869
[ 294.876219][ T5904] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 294.876229][ T5904] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5905 attached
, child_tidptr=0x555576720650) = 5905
[pid 5905] set_robust_list(0x555576720660, 24) = 0
[pid 5905] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5905] setpgid(0, 0) = 0
[pid 5905] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5905] write(3, "1000", 4) = 4
[pid 5905] close(3) = 0
executing program
[pid 5905] write(1, "executing program\n", 18) = 18
[pid 5905] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5905] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[ 294.876243][ T5904] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 294.876252][ T5904] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 294.876276][ T5904] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 294.876283][ T5904] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 294.876290][ T5904] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 294.876308][ T5904]
[pid 5905] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5905] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5905] write(6, "4", 1) = 1
[pid 5905] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 295.209237][ T5905] FAULT_INJECTION: forcing a failure.
[ 295.209237][ T5905] name failslab, interval 1, probability 0, space 0, times 0
[ 295.222214][ T5905] CPU: 0 UID: 0 PID: 5905 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 295.222233][ T5905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 295.222240][ T5905] Call Trace:
[ 295.222245][ T5905]
[ 295.222250][ T5905] dump_stack_lvl+0x189/0x250
[ 295.222271][ T5905] ? __pfx____ratelimit+0x10/0x10
[ 295.222289][ T5905] ? __pfx_dump_stack_lvl+0x10/0x10
[ 295.222302][ T5905] ? __pfx__printk+0x10/0x10
[ 295.222322][ T5905] ? __pfx___might_resched+0x10/0x10
[ 295.222338][ T5905] ? fs_reclaim_acquire+0x7d/0x100
[ 295.222359][ T5905] should_fail_ex+0x414/0x560
[ 295.222376][ T5905] should_failslab+0xa8/0x100
[ 295.222392][ T5905] __kmalloc_noprof+0xcb/0x4f0
[ 295.222406][ T5905] ? tomoyo_init_log+0x1a6e/0x1f70
[ 295.222426][ T5905] tomoyo_init_log+0x1a6e/0x1f70
[ 295.222456][ T5905] ? __pfx_tomoyo_init_log+0x10/0x10
[ 295.222472][ T5905] ? tomoyo_profile+0x11/0x50
[ 295.222488][ T5905] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 295.222513][ T5905] tomoyo_supervisor+0x340/0x1480
[ 295.222532][ T5905] ? format_decode+0x5a3/0xe30
[ 295.222565][ T5905] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 295.222589][ T5905] ? snprintf+0xda/0x120
[ 295.222605][ T5905] ? __pfx_snprintf+0x10/0x10
[ 295.222620][ T5905] ? tomoyo_check_acl+0x386/0x400
[ 295.222638][ T5905] tomoyo_path_number_perm+0x438/0x5a0
[ 295.222651][ T5905] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 295.222666][ T5905] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 295.222684][ T5905] ? _raw_spin_lock_irq+0xae/0xf0
[ 295.222719][ T5905] ? __pfx_ptrace_notify+0x10/0x10
[ 295.222743][ T5905] security_file_ioctl+0xcb/0x2d0
[ 295.222757][ T5905] __se_sys_ioctl+0x47/0x170
[ 295.222773][ T5905] do_syscall_64+0xfa/0x3b0
[ 295.222789][ T5905] ? lockdep_hardirqs_on+0x9c/0x150
[ 295.222804][ T5905] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 295.222816][ T5905] ? clear_bhb_loop+0x60/0xb0
[ 295.222830][ T5905] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 295.222841][ T5905] RIP: 0033:0x7fea15a51869
[ 295.222854][ T5905] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 295.222864][ T5905] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 295.222878][ T5905] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5905] exit_group(0) = ?
[pid 5905] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5905, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5906 attached
, child_tidptr=0x555576720650) = 5906
[pid 5906] set_robust_list(0x555576720660, 24) = 0
[pid 5906] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5906] setpgid(0, 0) = 0
[pid 5906] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5906] write(3, "1000", 4) = 4
[pid 5906] close(3) = 0
[pid 5906] write(1, "executing program\n", 18executing program
) = 18
[pid 5906] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5906] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5906] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5906] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[ 295.222887][ T5905] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 295.222894][ T5905] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 295.222901][ T5905] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 295.222908][ T5905] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 295.222926][ T5905]
[pid 5906] write(6, "4", 1) = 1
[pid 5906] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5906] exit_group(0) = ?
[pid 5906] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5906, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
[ 295.553709][ T5906] FAULT_INJECTION: forcing a failure.
[ 295.553709][ T5906] name failslab, interval 1, probability 0, space 0, times 0
[ 295.566512][ T5906] CPU: 1 UID: 0 PID: 5906 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 295.566549][ T5906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 295.566560][ T5906] Call Trace:
[ 295.566567][ T5906]
[ 295.566572][ T5906] dump_stack_lvl+0x189/0x250
[ 295.566591][ T5906] ? __pfx____ratelimit+0x10/0x10
[ 295.566609][ T5906] ? __pfx_dump_stack_lvl+0x10/0x10
[ 295.566622][ T5906] ? __pfx__printk+0x10/0x10
[ 295.566641][ T5906] ? __pfx___might_resched+0x10/0x10
[ 295.566658][ T5906] ? fs_reclaim_acquire+0x7d/0x100
[ 295.566678][ T5906] should_fail_ex+0x414/0x560
[ 295.566695][ T5906] should_failslab+0xa8/0x100
[ 295.566712][ T5906] __kmalloc_noprof+0xcb/0x4f0
[ 295.566727][ T5906] ? tomoyo_init_log+0x1a6e/0x1f70
[ 295.566746][ T5906] tomoyo_init_log+0x1a6e/0x1f70
[ 295.566777][ T5906] ? __pfx_tomoyo_init_log+0x10/0x10
[ 295.566793][ T5906] ? tomoyo_profile+0x11/0x50
[ 295.566809][ T5906] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 295.566826][ T5906] tomoyo_supervisor+0x340/0x1480
[ 295.566844][ T5906] ? format_decode+0x5a3/0xe30
[ 295.566862][ T5906] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 295.566885][ T5906] ? snprintf+0xda/0x120
[ 295.566902][ T5906] ? __pfx_snprintf+0x10/0x10
[ 295.566916][ T5906] ? tomoyo_check_acl+0x386/0x400
[ 295.566934][ T5906] tomoyo_path_number_perm+0x438/0x5a0
[ 295.566948][ T5906] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 295.566962][ T5906] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 295.566980][ T5906] ? _raw_spin_lock_irq+0xae/0xf0
[ 295.567015][ T5906] ? __pfx_ptrace_notify+0x10/0x10
[ 295.567039][ T5906] security_file_ioctl+0xcb/0x2d0
[ 295.567053][ T5906] __se_sys_ioctl+0x47/0x170
[ 295.567068][ T5906] do_syscall_64+0xfa/0x3b0
[ 295.567084][ T5906] ? lockdep_hardirqs_on+0x9c/0x150
[ 295.567100][ T5906] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 295.567112][ T5906] ? clear_bhb_loop+0x60/0xb0
[ 295.567126][ T5906] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 295.567138][ T5906] RIP: 0033:0x7fea15a51869
[ 295.567149][ T5906] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 295.567159][ T5906] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5907 attached
, child_tidptr=0x555576720650) = 5907
[pid 5907] set_robust_list(0x555576720660, 24) = 0
[pid 5907] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5907] setpgid(0, 0) = 0
[pid 5907] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5907] write(3, "1000", 4) = 4
[pid 5907] close(3) = 0
[pid 5907] write(1, "executing program\n", 18) = 18
executing program
[pid 5907] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5907] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5907] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5907] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5907] write(6, "4", 1) = 1
[ 295.567173][ T5906] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 295.567182][ T5906] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 295.567189][ T5906] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 295.567196][ T5906] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 295.567203][ T5906] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 295.567221][ T5906]
[pid 5907] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 295.870808][ T5907] FAULT_INJECTION: forcing a failure.
[ 295.870808][ T5907] name failslab, interval 1, probability 0, space 0, times 0
[ 295.884911][ T5907] CPU: 1 UID: 0 PID: 5907 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 295.884931][ T5907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 295.884938][ T5907] Call Trace:
[ 295.884943][ T5907]
[ 295.884949][ T5907] dump_stack_lvl+0x189/0x250
[ 295.884967][ T5907] ? __pfx____ratelimit+0x10/0x10
[ 295.884985][ T5907] ? __pfx_dump_stack_lvl+0x10/0x10
[ 295.884998][ T5907] ? __pfx__printk+0x10/0x10
[ 295.885017][ T5907] ? __pfx___might_resched+0x10/0x10
[ 295.885034][ T5907] ? fs_reclaim_acquire+0x7d/0x100
[ 295.885054][ T5907] should_fail_ex+0x414/0x560
[ 295.885071][ T5907] should_failslab+0xa8/0x100
[ 295.885088][ T5907] __kmalloc_noprof+0xcb/0x4f0
[ 295.885102][ T5907] ? tomoyo_init_log+0x1a6e/0x1f70
[ 295.885121][ T5907] tomoyo_init_log+0x1a6e/0x1f70
[ 295.885151][ T5907] ? __pfx_tomoyo_init_log+0x10/0x10
[ 295.885168][ T5907] ? tomoyo_profile+0x11/0x50
[ 295.885183][ T5907] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 295.885201][ T5907] tomoyo_supervisor+0x340/0x1480
[ 295.885219][ T5907] ? format_decode+0x5a3/0xe30
[ 295.885239][ T5907] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 295.885262][ T5907] ? snprintf+0xda/0x120
[ 295.885280][ T5907] ? __pfx_snprintf+0x10/0x10
[ 295.885297][ T5907] ? tomoyo_check_acl+0x386/0x400
[ 295.885315][ T5907] tomoyo_path_number_perm+0x438/0x5a0
[ 295.885329][ T5907] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 295.885343][ T5907] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 295.885362][ T5907] ? _raw_spin_lock_irq+0xae/0xf0
[ 295.885398][ T5907] ? __pfx_ptrace_notify+0x10/0x10
[ 295.885423][ T5907] security_file_ioctl+0xcb/0x2d0
[ 295.885437][ T5907] __se_sys_ioctl+0x47/0x170
[ 295.885453][ T5907] do_syscall_64+0xfa/0x3b0
[ 295.885469][ T5907] ? lockdep_hardirqs_on+0x9c/0x150
[ 295.885485][ T5907] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 295.885497][ T5907] ? clear_bhb_loop+0x60/0xb0
[ 295.885512][ T5907] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 295.885523][ T5907] RIP: 0033:0x7fea15a51869
[ 295.885547][ T5907] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 295.885557][ T5907] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5907] exit_group(0) = ?
[pid 5907] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5907, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5908 attached
, child_tidptr=0x555576720650) = 5908
[pid 5908] set_robust_list(0x555576720660, 24) = 0
[pid 5908] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 295.885572][ T5907] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 295.885580][ T5907] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 295.885588][ T5907] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 295.885595][ T5907] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 295.885602][ T5907] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 295.885620][ T5907]
[pid 5908] setpgid(0, 0) = 0
[pid 5908] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5908] write(3, "1000", 4) = 4
[pid 5908] close(3) = 0
[pid 5908] write(1, "executing program\n", 18executing program
) = 18
[pid 5908] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5908] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5908] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5908] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5908] write(6, "4", 1) = 1
[pid 5908] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5908] exit_group(0) = ?
[pid 5908] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5908, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
[ 296.253066][ T5908] FAULT_INJECTION: forcing a failure.
[ 296.253066][ T5908] name failslab, interval 1, probability 0, space 0, times 0
[ 296.265935][ T5908] CPU: 0 UID: 0 PID: 5908 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 296.265962][ T5908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 296.265974][ T5908] Call Trace:
[ 296.265982][ T5908]
[ 296.265991][ T5908] dump_stack_lvl+0x189/0x250
[ 296.266020][ T5908] ? __pfx____ratelimit+0x10/0x10
[ 296.266047][ T5908] ? __pfx_dump_stack_lvl+0x10/0x10
[ 296.266068][ T5908] ? __pfx__printk+0x10/0x10
[ 296.266100][ T5908] ? __pfx___might_resched+0x10/0x10
[ 296.266129][ T5908] ? fs_reclaim_acquire+0x7d/0x100
[ 296.266162][ T5908] should_fail_ex+0x414/0x560
[ 296.266191][ T5908] should_failslab+0xa8/0x100
[ 296.266221][ T5908] __kmalloc_noprof+0xcb/0x4f0
[ 296.266244][ T5908] ? tomoyo_init_log+0x1a6e/0x1f70
[ 296.266288][ T5908] tomoyo_init_log+0x1a6e/0x1f70
[ 296.266341][ T5908] ? __pfx_tomoyo_init_log+0x10/0x10
[ 296.266369][ T5908] ? tomoyo_profile+0x11/0x50
[ 296.266392][ T5908] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 296.266409][ T5908] tomoyo_supervisor+0x340/0x1480
[ 296.266427][ T5908] ? format_decode+0x5a3/0xe30
[ 296.266445][ T5908] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 296.266469][ T5908] ? snprintf+0xda/0x120
[ 296.266485][ T5908] ? __pfx_snprintf+0x10/0x10
[ 296.266500][ T5908] ? tomoyo_check_acl+0x386/0x400
[ 296.266519][ T5908] tomoyo_path_number_perm+0x438/0x5a0
[ 296.266535][ T5908] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 296.266549][ T5908] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 296.266568][ T5908] ? _raw_spin_lock_irq+0xae/0xf0
[ 296.266602][ T5908] ? __pfx_ptrace_notify+0x10/0x10
[ 296.266626][ T5908] security_file_ioctl+0xcb/0x2d0
[ 296.266642][ T5908] __se_sys_ioctl+0x47/0x170
[ 296.266657][ T5908] do_syscall_64+0xfa/0x3b0
[ 296.266673][ T5908] ? lockdep_hardirqs_on+0x9c/0x150
[ 296.266689][ T5908] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 296.266701][ T5908] ? clear_bhb_loop+0x60/0xb0
[ 296.266715][ T5908] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 296.266727][ T5908] RIP: 0033:0x7fea15a51869
[ 296.266739][ T5908] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 296.266749][ T5908] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5909 attached
, child_tidptr=0x555576720650) = 5909
[pid 5909] set_robust_list(0x555576720660, 24) = 0
[pid 5909] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5909] setpgid(0, 0) = 0
[pid 5909] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5909] write(3, "1000", 4) = 4
[pid 5909] close(3) = 0
[pid 5909] write(1, "executing program\n", 18executing program
) = 18
[pid 5909] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5909] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5909] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[ 296.266764][ T5908] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 296.266773][ T5908] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 296.266780][ T5908] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 296.266787][ T5908] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 296.266794][ T5908] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 296.266812][ T5908]
[pid 5909] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5909] write(6, "4", 1) = 1
[pid 5909] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5909] exit_group(0) = ?
[pid 5909] +++ exited with 0 +++
[ 296.612745][ T5909] FAULT_INJECTION: forcing a failure.
[ 296.612745][ T5909] name failslab, interval 1, probability 0, space 0, times 0
[ 296.625740][ T5909] CPU: 1 UID: 0 PID: 5909 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 296.625769][ T5909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 296.625780][ T5909] Call Trace:
[ 296.625787][ T5909]
[ 296.625796][ T5909] dump_stack_lvl+0x189/0x250
[ 296.625824][ T5909] ? __pfx____ratelimit+0x10/0x10
[ 296.625853][ T5909] ? __pfx_dump_stack_lvl+0x10/0x10
[ 296.625875][ T5909] ? __pfx__printk+0x10/0x10
[ 296.625908][ T5909] ? __pfx___might_resched+0x10/0x10
[ 296.625936][ T5909] ? fs_reclaim_acquire+0x7d/0x100
[ 296.625970][ T5909] should_fail_ex+0x414/0x560
[ 296.625998][ T5909] should_failslab+0xa8/0x100
[ 296.626026][ T5909] __kmalloc_noprof+0xcb/0x4f0
[ 296.626048][ T5909] ? tomoyo_init_log+0x1a6e/0x1f70
[ 296.626079][ T5909] tomoyo_init_log+0x1a6e/0x1f70
[ 296.626109][ T5909] ? __pfx_tomoyo_init_log+0x10/0x10
[ 296.626125][ T5909] ? tomoyo_profile+0x11/0x50
[ 296.626141][ T5909] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 296.626158][ T5909] tomoyo_supervisor+0x340/0x1480
[ 296.626176][ T5909] ? format_decode+0x5a3/0xe30
[ 296.626194][ T5909] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 296.626218][ T5909] ? snprintf+0xda/0x120
[ 296.626234][ T5909] ? __pfx_snprintf+0x10/0x10
[ 296.626249][ T5909] ? tomoyo_check_acl+0x386/0x400
[ 296.626270][ T5909] tomoyo_path_number_perm+0x438/0x5a0
[ 296.626283][ T5909] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 296.626298][ T5909] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 296.626316][ T5909] ? _raw_spin_lock_irq+0xae/0xf0
[ 296.626351][ T5909] ? __pfx_ptrace_notify+0x10/0x10
[ 296.626374][ T5909] security_file_ioctl+0xcb/0x2d0
[ 296.626389][ T5909] __se_sys_ioctl+0x47/0x170
[ 296.626404][ T5909] do_syscall_64+0xfa/0x3b0
[ 296.626420][ T5909] ? lockdep_hardirqs_on+0x9c/0x150
[ 296.626436][ T5909] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 296.626448][ T5909] ? clear_bhb_loop+0x60/0xb0
[ 296.626462][ T5909] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 296.626473][ T5909] RIP: 0033:0x7fea15a51869
[ 296.626485][ T5909] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 296.626494][ T5909] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5909, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLDexecuting program
./strace-static-x86_64: Process 5910 attached
, child_tidptr=0x555576720650) = 5910
[pid 5910] set_robust_list(0x555576720660, 24) = 0
[pid 5910] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5910] setpgid(0, 0) = 0
[pid 5910] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5910] write(3, "1000", 4) = 4
[pid 5910] close(3) = 0
[pid 5910] write(1, "executing program\n", 18) = 18
[pid 5910] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5910] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5910] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5910] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5910] write(6, "4", 1) = 1
[ 296.626521][ T5909] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 296.626529][ T5909] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 296.626537][ T5909] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 296.626544][ T5909] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 296.626551][ T5909] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 296.626568][ T5909]
[pid 5910] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 296.924372][ T5910] FAULT_INJECTION: forcing a failure.
[ 296.924372][ T5910] name failslab, interval 1, probability 0, space 0, times 0
[ 296.937584][ T5910] CPU: 1 UID: 0 PID: 5910 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 296.937604][ T5910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 296.937612][ T5910] Call Trace:
[ 296.937617][ T5910]
[ 296.937622][ T5910] dump_stack_lvl+0x189/0x250
[ 296.937640][ T5910] ? __pfx____ratelimit+0x10/0x10
[ 296.937657][ T5910] ? __pfx_dump_stack_lvl+0x10/0x10
[ 296.937670][ T5910] ? __pfx__printk+0x10/0x10
[ 296.937690][ T5910] ? __pfx___might_resched+0x10/0x10
[ 296.937707][ T5910] ? fs_reclaim_acquire+0x7d/0x100
[ 296.937726][ T5910] should_fail_ex+0x414/0x560
[ 296.937743][ T5910] should_failslab+0xa8/0x100
[ 296.937761][ T5910] __kmalloc_noprof+0xcb/0x4f0
[ 296.937774][ T5910] ? tomoyo_init_log+0x1a6e/0x1f70
[ 296.937794][ T5910] tomoyo_init_log+0x1a6e/0x1f70
[ 296.937824][ T5910] ? __pfx_tomoyo_init_log+0x10/0x10
[ 296.937841][ T5910] ? tomoyo_profile+0x11/0x50
[ 296.937857][ T5910] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 296.937874][ T5910] tomoyo_supervisor+0x340/0x1480
[ 296.937892][ T5910] ? format_decode+0x5a3/0xe30
[ 296.937910][ T5910] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 296.937933][ T5910] ? snprintf+0xda/0x120
[ 296.937949][ T5910] ? __pfx_snprintf+0x10/0x10
[ 296.937964][ T5910] ? tomoyo_check_acl+0x386/0x400
[ 296.937982][ T5910] tomoyo_path_number_perm+0x438/0x5a0
[ 296.937995][ T5910] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 296.938009][ T5910] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 296.938028][ T5910] ? _raw_spin_lock_irq+0xae/0xf0
[ 296.938063][ T5910] ? __pfx_ptrace_notify+0x10/0x10
[ 296.938087][ T5910] security_file_ioctl+0xcb/0x2d0
[ 296.938102][ T5910] __se_sys_ioctl+0x47/0x170
[ 296.938117][ T5910] do_syscall_64+0xfa/0x3b0
[ 296.938132][ T5910] ? lockdep_hardirqs_on+0x9c/0x150
[ 296.938148][ T5910] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 296.938160][ T5910] ? clear_bhb_loop+0x60/0xb0
[ 296.938174][ T5910] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 296.938210][ T5910] RIP: 0033:0x7fea15a51869
[ 296.938222][ T5910] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 296.938232][ T5910] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5910] exit_group(0) = ?
[pid 5910] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5910, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5911 attached
, child_tidptr=0x555576720650) = 5911
[pid 5911] set_robust_list(0x555576720660, 24) = 0
[pid 5911] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5911] setpgid(0, 0) = 0
[pid 5911] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5911] write(3, "1000", 4) = 4
[pid 5911] close(3) = 0
executing program
[pid 5911] write(1, "executing program\n", 18) = 18
[pid 5911] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5911] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5911] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[ 296.938248][ T5910] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 296.938256][ T5910] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 296.938264][ T5910] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 296.938271][ T5910] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 296.938278][ T5910] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 296.938296][ T5910]
[pid 5911] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5911] write(6, "4", 1) = 1
[pid 5911] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5911] exit_group(0) = ?
[pid 5911] +++ exited with 0 +++
[ 297.271504][ T5911] FAULT_INJECTION: forcing a failure.
[ 297.271504][ T5911] name failslab, interval 1, probability 0, space 0, times 0
[ 297.284606][ T5911] CPU: 0 UID: 0 PID: 5911 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 297.284625][ T5911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 297.284632][ T5911] Call Trace:
[ 297.284637][ T5911]
[ 297.284642][ T5911] dump_stack_lvl+0x189/0x250
[ 297.284662][ T5911] ? __pfx____ratelimit+0x10/0x10
[ 297.284679][ T5911] ? __pfx_dump_stack_lvl+0x10/0x10
[ 297.284692][ T5911] ? __pfx__printk+0x10/0x10
[ 297.284712][ T5911] ? __pfx___might_resched+0x10/0x10
[ 297.284729][ T5911] ? fs_reclaim_acquire+0x7d/0x100
[ 297.284749][ T5911] should_fail_ex+0x414/0x560
[ 297.284767][ T5911] should_failslab+0xa8/0x100
[ 297.284784][ T5911] __kmalloc_noprof+0xcb/0x4f0
[ 297.284798][ T5911] ? tomoyo_init_log+0x1a6e/0x1f70
[ 297.284817][ T5911] tomoyo_init_log+0x1a6e/0x1f70
[ 297.284847][ T5911] ? __pfx_tomoyo_init_log+0x10/0x10
[ 297.284863][ T5911] ? tomoyo_profile+0x11/0x50
[ 297.284879][ T5911] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 297.284896][ T5911] tomoyo_supervisor+0x340/0x1480
[ 297.284914][ T5911] ? format_decode+0x5a3/0xe30
[ 297.284932][ T5911] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 297.284956][ T5911] ? snprintf+0xda/0x120
[ 297.284972][ T5911] ? __pfx_snprintf+0x10/0x10
[ 297.284987][ T5911] ? tomoyo_check_acl+0x386/0x400
[ 297.285004][ T5911] tomoyo_path_number_perm+0x438/0x5a0
[ 297.285017][ T5911] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 297.285032][ T5911] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 297.285050][ T5911] ? _raw_spin_lock_irq+0xae/0xf0
[ 297.285086][ T5911] ? __pfx_ptrace_notify+0x10/0x10
[ 297.285110][ T5911] security_file_ioctl+0xcb/0x2d0
[ 297.285124][ T5911] __se_sys_ioctl+0x47/0x170
[ 297.285140][ T5911] do_syscall_64+0xfa/0x3b0
[ 297.285156][ T5911] ? lockdep_hardirqs_on+0x9c/0x150
[ 297.285171][ T5911] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 297.285183][ T5911] ? clear_bhb_loop+0x60/0xb0
[ 297.285208][ T5911] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 297.285219][ T5911] RIP: 0033:0x7fea15a51869
[ 297.285231][ T5911] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 297.285241][ T5911] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5911, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5912 attached
, child_tidptr=0x555576720650) = 5912
[pid 5912] set_robust_list(0x555576720660, 24) = 0
[pid 5912] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5912] setpgid(0, 0) = 0
[pid 5912] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5912] write(3, "1000", 4) = 4
[pid 5912] close(3) = 0
[pid 5912] write(1, "executing program\n", 18executing program
) = 18
[pid 5912] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[ 297.285257][ T5911] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 297.285265][ T5911] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 297.285273][ T5911] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 297.285280][ T5911] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 297.285287][ T5911] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 297.285304][ T5911]
[pid 5912] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5912] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5912] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5912] write(6, "4", 1) = 1
[pid 5912] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5912] exit_group(0) = ?
[pid 5912] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5912, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
[ 297.631619][ T5912] FAULT_INJECTION: forcing a failure.
[ 297.631619][ T5912] name failslab, interval 1, probability 0, space 0, times 0
[ 297.644450][ T5912] CPU: 1 UID: 0 PID: 5912 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 297.644469][ T5912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 297.644476][ T5912] Call Trace:
[ 297.644481][ T5912]
[ 297.644486][ T5912] dump_stack_lvl+0x189/0x250
[ 297.644511][ T5912] ? __pfx____ratelimit+0x10/0x10
[ 297.644528][ T5912] ? __pfx_dump_stack_lvl+0x10/0x10
[ 297.644541][ T5912] ? __pfx__printk+0x10/0x10
[ 297.644560][ T5912] ? __pfx___might_resched+0x10/0x10
[ 297.644578][ T5912] ? fs_reclaim_acquire+0x7d/0x100
[ 297.644598][ T5912] should_fail_ex+0x414/0x560
[ 297.644615][ T5912] should_failslab+0xa8/0x100
[ 297.644632][ T5912] __kmalloc_noprof+0xcb/0x4f0
[ 297.644646][ T5912] ? tomoyo_init_log+0x1a6e/0x1f70
[ 297.644666][ T5912] tomoyo_init_log+0x1a6e/0x1f70
[ 297.644695][ T5912] ? __pfx_tomoyo_init_log+0x10/0x10
[ 297.644712][ T5912] ? tomoyo_profile+0x11/0x50
[ 297.644727][ T5912] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 297.644744][ T5912] tomoyo_supervisor+0x340/0x1480
[ 297.644762][ T5912] ? format_decode+0x5a3/0xe30
[ 297.644781][ T5912] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 297.644804][ T5912] ? snprintf+0xda/0x120
[ 297.644821][ T5912] ? __pfx_snprintf+0x10/0x10
[ 297.644836][ T5912] ? tomoyo_check_acl+0x386/0x400
[ 297.644853][ T5912] tomoyo_path_number_perm+0x438/0x5a0
[ 297.644867][ T5912] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 297.644881][ T5912] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 297.644900][ T5912] ? _raw_spin_lock_irq+0xae/0xf0
[ 297.644934][ T5912] ? __pfx_ptrace_notify+0x10/0x10
[ 297.644959][ T5912] security_file_ioctl+0xcb/0x2d0
[ 297.644973][ T5912] __se_sys_ioctl+0x47/0x170
[ 297.644989][ T5912] do_syscall_64+0xfa/0x3b0
[ 297.645004][ T5912] ? lockdep_hardirqs_on+0x9c/0x150
[ 297.645020][ T5912] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 297.645032][ T5912] ? clear_bhb_loop+0x60/0xb0
[ 297.645046][ T5912] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 297.645057][ T5912] RIP: 0033:0x7fea15a51869
[ 297.645069][ T5912] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 297.645079][ T5912] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5913 attached
, child_tidptr=0x555576720650) = 5913
[pid 5913] set_robust_list(0x555576720660, 24) = 0
[ 297.645094][ T5912] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 297.645102][ T5912] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 297.645110][ T5912] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 297.645117][ T5912] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 297.645124][ T5912] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 297.645141][ T5912]
[pid 5913] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5913] setpgid(0, 0) = 0
[pid 5913] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5913] write(3, "1000", 4) = 4
[pid 5913] close(3) = 0
[pid 5913] write(1, "executing program\n", 18executing program
) = 18
[pid 5913] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5913] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5913] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5913] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5913] write(6, "4", 1) = 1
[pid 5913] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5913] exit_group(0) = ?
[pid 5913] +++ exited with 0 +++
[ 298.012114][ T5913] FAULT_INJECTION: forcing a failure.
[ 298.012114][ T5913] name failslab, interval 1, probability 0, space 0, times 0
[ 298.026127][ T5913] CPU: 0 UID: 0 PID: 5913 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 298.026149][ T5913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 298.026157][ T5913] Call Trace:
[ 298.026163][ T5913]
[ 298.026168][ T5913] dump_stack_lvl+0x189/0x250
[ 298.026190][ T5913] ? __pfx____ratelimit+0x10/0x10
[ 298.026209][ T5913] ? __pfx_dump_stack_lvl+0x10/0x10
[ 298.026223][ T5913] ? __pfx__printk+0x10/0x10
[ 298.026243][ T5913] ? __pfx___might_resched+0x10/0x10
[ 298.026262][ T5913] ? fs_reclaim_acquire+0x7d/0x100
[ 298.026283][ T5913] should_fail_ex+0x414/0x560
[ 298.026302][ T5913] should_failslab+0xa8/0x100
[ 298.026320][ T5913] __kmalloc_noprof+0xcb/0x4f0
[ 298.026335][ T5913] ? tomoyo_init_log+0x1a6e/0x1f70
[ 298.026355][ T5913] tomoyo_init_log+0x1a6e/0x1f70
[ 298.026386][ T5913] ? __pfx_tomoyo_init_log+0x10/0x10
[ 298.026402][ T5913] ? tomoyo_profile+0x11/0x50
[ 298.026421][ T5913] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 298.026440][ T5913] tomoyo_supervisor+0x340/0x1480
[ 298.026458][ T5913] ? format_decode+0x5a3/0xe30
[ 298.026477][ T5913] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 298.026500][ T5913] ? snprintf+0xda/0x120
[ 298.026517][ T5913] ? __pfx_snprintf+0x10/0x10
[ 298.026531][ T5913] ? tomoyo_check_acl+0x386/0x400
[ 298.026550][ T5913] tomoyo_path_number_perm+0x438/0x5a0
[ 298.026563][ T5913] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 298.026578][ T5913] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 298.026597][ T5913] ? _raw_spin_lock_irq+0xae/0xf0
[ 298.026633][ T5913] ? __pfx_ptrace_notify+0x10/0x10
[ 298.026658][ T5913] security_file_ioctl+0xcb/0x2d0
[ 298.026681][ T5913] __se_sys_ioctl+0x47/0x170
[ 298.026698][ T5913] do_syscall_64+0xfa/0x3b0
[ 298.026715][ T5913] ? lockdep_hardirqs_on+0x9c/0x150
[ 298.026731][ T5913] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 298.026743][ T5913] ? clear_bhb_loop+0x60/0xb0
[ 298.026757][ T5913] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 298.026769][ T5913] RIP: 0033:0x7fea15a51869
[ 298.026783][ T5913] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 298.026793][ T5913] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5913, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5914 attached
, child_tidptr=0x555576720650) = 5914
[pid 5914] set_robust_list(0x555576720660, 24) = 0
[pid 5914] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5914] setpgid(0, 0) = 0
[pid 5914] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5914] write(3, "1000", 4) = 4
[pid 5914] close(3) = 0
executing program
[pid 5914] write(1, "executing program\n", 18) = 18
[pid 5914] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5914] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5914] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5914] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5914] write(6, "4", 1) = 1
[ 298.026808][ T5913] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 298.026817][ T5913] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 298.026825][ T5913] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 298.026832][ T5913] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 298.026839][ T5913] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 298.026857][ T5913]
[ 298.341493][ T5914] FAULT_INJECTION: forcing a failure.
[ 298.341493][ T5914] name failslab, interval 1, probability 0, space 0, times 0
[ 298.354694][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 298.354723][ T5914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 298.354734][ T5914] Call Trace:
[ 298.354742][ T5914]
[ 298.354749][ T5914] dump_stack_lvl+0x189/0x250
[ 298.354772][ T5914] ? __pfx____ratelimit+0x10/0x10
[ 298.354790][ T5914] ? __pfx_dump_stack_lvl+0x10/0x10
[ 298.354803][ T5914] ? __pfx__printk+0x10/0x10
[ 298.354822][ T5914] ? __pfx___might_resched+0x10/0x10
[ 298.354840][ T5914] ? fs_reclaim_acquire+0x7d/0x100
[ 298.354860][ T5914] should_fail_ex+0x414/0x560
[ 298.354878][ T5914] should_failslab+0xa8/0x100
[ 298.354895][ T5914] __kmalloc_noprof+0xcb/0x4f0
[ 298.354910][ T5914] ? tomoyo_init_log+0x1a6e/0x1f70
[ 298.354930][ T5914] tomoyo_init_log+0x1a6e/0x1f70
[ 298.354961][ T5914] ? __pfx_tomoyo_init_log+0x10/0x10
[ 298.354977][ T5914] ? tomoyo_profile+0x11/0x50
[ 298.354993][ T5914] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 298.355011][ T5914] tomoyo_supervisor+0x340/0x1480
[ 298.355029][ T5914] ? format_decode+0x5a3/0xe30
[ 298.355048][ T5914] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 298.355071][ T5914] ? snprintf+0xda/0x120
[ 298.355088][ T5914] ? __pfx_snprintf+0x10/0x10
[ 298.355103][ T5914] ? tomoyo_check_acl+0x386/0x400
[ 298.355121][ T5914] tomoyo_path_number_perm+0x438/0x5a0
[ 298.355135][ T5914] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 298.355149][ T5914] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 298.355174][ T5914] ? _raw_spin_lock_irq+0xae/0xf0
[ 298.355213][ T5914] ? __pfx_ptrace_notify+0x10/0x10
[ 298.355238][ T5914] security_file_ioctl+0xcb/0x2d0
[ 298.355253][ T5914] __se_sys_ioctl+0x47/0x170
[ 298.355269][ T5914] do_syscall_64+0xfa/0x3b0
[ 298.355285][ T5914] ? lockdep_hardirqs_on+0x9c/0x150
[ 298.355301][ T5914] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 298.355312][ T5914] ? clear_bhb_loop+0x60/0xb0
[ 298.355327][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 298.355338][ T5914] RIP: 0033:0x7fea15a51869
[ 298.355350][ T5914] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 298.355360][ T5914] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5914] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5914] exit_group(0) = ?
[pid 5914] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5914, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5915 attached
, child_tidptr=0x555576720650) = 5915
[ 298.355375][ T5914] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 298.355384][ T5914] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 298.355392][ T5914] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 298.355399][ T5914] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 298.355406][ T5914] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 298.355424][ T5914]
[pid 5915] set_robust_list(0x555576720660, 24) = 0
[pid 5915] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5915] setpgid(0, 0) = 0
[pid 5915] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5915] write(3, "1000", 4) = 4
[pid 5915] close(3) = 0
executing program
[pid 5915] write(1, "executing program\n", 18) = 18
[pid 5915] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5915] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5915] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5915] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5915] write(6, "4", 1) = 1
[pid 5915] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5915] exit_group(0) = ?
[pid 5915] +++ exited with 0 +++
[ 298.771968][ T5915] FAULT_INJECTION: forcing a failure.
[ 298.771968][ T5915] name failslab, interval 1, probability 0, space 0, times 0
[ 298.784913][ T5915] CPU: 1 UID: 0 PID: 5915 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 298.784942][ T5915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 298.784953][ T5915] Call Trace:
[ 298.784961][ T5915]
[ 298.784969][ T5915] dump_stack_lvl+0x189/0x250
[ 298.784995][ T5915] ? __pfx____ratelimit+0x10/0x10
[ 298.785022][ T5915] ? __pfx_dump_stack_lvl+0x10/0x10
[ 298.785044][ T5915] ? __pfx__printk+0x10/0x10
[ 298.785076][ T5915] ? __pfx___might_resched+0x10/0x10
[ 298.785102][ T5915] ? fs_reclaim_acquire+0x7d/0x100
[ 298.785137][ T5915] should_fail_ex+0x414/0x560
[ 298.785167][ T5915] should_failslab+0xa8/0x100
[ 298.785209][ T5915] __kmalloc_noprof+0xcb/0x4f0
[ 298.785232][ T5915] ? tomoyo_init_log+0x1a6e/0x1f70
[ 298.785265][ T5915] tomoyo_init_log+0x1a6e/0x1f70
[ 298.785317][ T5915] ? __pfx_tomoyo_init_log+0x10/0x10
[ 298.785344][ T5915] ? tomoyo_profile+0x11/0x50
[ 298.785370][ T5915] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 298.785391][ T5915] tomoyo_supervisor+0x340/0x1480
[ 298.785410][ T5915] ? format_decode+0x5a3/0xe30
[ 298.785427][ T5915] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 298.785451][ T5915] ? snprintf+0xda/0x120
[ 298.785467][ T5915] ? __pfx_snprintf+0x10/0x10
[ 298.785482][ T5915] ? tomoyo_check_acl+0x386/0x400
[ 298.785500][ T5915] tomoyo_path_number_perm+0x438/0x5a0
[ 298.785513][ T5915] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 298.785528][ T5915] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 298.785546][ T5915] ? _raw_spin_lock_irq+0xae/0xf0
[ 298.785581][ T5915] ? __pfx_ptrace_notify+0x10/0x10
[ 298.785605][ T5915] security_file_ioctl+0xcb/0x2d0
[ 298.785620][ T5915] __se_sys_ioctl+0x47/0x170
[ 298.785635][ T5915] do_syscall_64+0xfa/0x3b0
[ 298.785651][ T5915] ? lockdep_hardirqs_on+0x9c/0x150
[ 298.785667][ T5915] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 298.785679][ T5915] ? clear_bhb_loop+0x60/0xb0
[ 298.785693][ T5915] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 298.785705][ T5915] RIP: 0033:0x7fea15a51869
[ 298.785718][ T5915] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 298.785728][ T5915] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5915, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5916 attached
, child_tidptr=0x555576720650) = 5916
[pid 5916] set_robust_list(0x555576720660, 24) = 0
[pid 5916] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5916] setpgid(0, 0) = 0
[pid 5916] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5916] write(3, "1000", 4) = 4
[pid 5916] close(3) = 0
executing program
[pid 5916] write(1, "executing program\n", 18) = 18
[ 298.785743][ T5915] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 298.785752][ T5915] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 298.785759][ T5915] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 298.785766][ T5915] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 298.785773][ T5915] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 298.785791][ T5915]
[pid 5916] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5916] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5916] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5916] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5916] write(6, "4", 1) = 1
[pid 5916] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5916] exit_group(0) = ?
[pid 5916] +++ exited with 0 +++
[ 299.112206][ T5916] FAULT_INJECTION: forcing a failure.
[ 299.112206][ T5916] name failslab, interval 1, probability 0, space 0, times 0
[ 299.125334][ T5916] CPU: 0 UID: 0 PID: 5916 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 299.125353][ T5916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 299.125361][ T5916] Call Trace:
[ 299.125366][ T5916]
[ 299.125371][ T5916] dump_stack_lvl+0x189/0x250
[ 299.125390][ T5916] ? __pfx____ratelimit+0x10/0x10
[ 299.125408][ T5916] ? __pfx_dump_stack_lvl+0x10/0x10
[ 299.125421][ T5916] ? __pfx__printk+0x10/0x10
[ 299.125440][ T5916] ? __pfx___might_resched+0x10/0x10
[ 299.125457][ T5916] ? fs_reclaim_acquire+0x7d/0x100
[ 299.125477][ T5916] should_fail_ex+0x414/0x560
[ 299.125494][ T5916] should_failslab+0xa8/0x100
[ 299.125511][ T5916] __kmalloc_noprof+0xcb/0x4f0
[ 299.125525][ T5916] ? tomoyo_init_log+0x1a6e/0x1f70
[ 299.125545][ T5916] tomoyo_init_log+0x1a6e/0x1f70
[ 299.125575][ T5916] ? __pfx_tomoyo_init_log+0x10/0x10
[ 299.125592][ T5916] ? tomoyo_profile+0x11/0x50
[ 299.125607][ T5916] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 299.125624][ T5916] tomoyo_supervisor+0x340/0x1480
[ 299.125642][ T5916] ? format_decode+0x5a3/0xe30
[ 299.125661][ T5916] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 299.125684][ T5916] ? snprintf+0xda/0x120
[ 299.125701][ T5916] ? __pfx_snprintf+0x10/0x10
[ 299.125715][ T5916] ? tomoyo_check_acl+0x386/0x400
[ 299.125733][ T5916] tomoyo_path_number_perm+0x438/0x5a0
[ 299.125746][ T5916] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 299.125761][ T5916] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 299.125779][ T5916] ? _raw_spin_lock_irq+0xae/0xf0
[ 299.125815][ T5916] ? __pfx_ptrace_notify+0x10/0x10
[ 299.125839][ T5916] security_file_ioctl+0xcb/0x2d0
[ 299.125853][ T5916] __se_sys_ioctl+0x47/0x170
[ 299.125868][ T5916] do_syscall_64+0xfa/0x3b0
[ 299.125884][ T5916] ? lockdep_hardirqs_on+0x9c/0x150
[ 299.125900][ T5916] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 299.125911][ T5916] ? clear_bhb_loop+0x60/0xb0
[ 299.125926][ T5916] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 299.125937][ T5916] RIP: 0033:0x7fea15a51869
[ 299.125949][ T5916] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 299.125959][ T5916] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5916, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5917 attached
, child_tidptr=0x555576720650) = 5917
[pid 5917] set_robust_list(0x555576720660, 24) = 0
[pid 5917] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5917] setpgid(0, 0) = 0
[pid 5917] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5917] write(3, "1000", 4) = 4
[pid 5917] close(3) = 0
executing program
[pid 5917] write(1, "executing program\n", 18) = 18
[pid 5917] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5917] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5917] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5917] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[ 299.125974][ T5916] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 299.125983][ T5916] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 299.125990][ T5916] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 299.125997][ T5916] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 299.126004][ T5916] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 299.126021][ T5916]
[pid 5917] write(6, "4", 1) = 1
[pid 5917] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 299.451952][ T5917] FAULT_INJECTION: forcing a failure.
[ 299.451952][ T5917] name failslab, interval 1, probability 0, space 0, times 0
[ 299.464789][ T5917] CPU: 1 UID: 0 PID: 5917 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 299.464809][ T5917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 299.464816][ T5917] Call Trace:
[ 299.464821][ T5917]
[ 299.464826][ T5917] dump_stack_lvl+0x189/0x250
[ 299.464844][ T5917] ? __pfx____ratelimit+0x10/0x10
[ 299.464862][ T5917] ? __pfx_dump_stack_lvl+0x10/0x10
[ 299.464875][ T5917] ? __pfx__printk+0x10/0x10
[ 299.464894][ T5917] ? __pfx___might_resched+0x10/0x10
[ 299.464912][ T5917] ? fs_reclaim_acquire+0x7d/0x100
[ 299.464932][ T5917] should_fail_ex+0x414/0x560
[ 299.464948][ T5917] should_failslab+0xa8/0x100
[ 299.464965][ T5917] __kmalloc_noprof+0xcb/0x4f0
[ 299.464979][ T5917] ? tomoyo_init_log+0x1a6e/0x1f70
[ 299.464999][ T5917] tomoyo_init_log+0x1a6e/0x1f70
[ 299.465029][ T5917] ? __pfx_tomoyo_init_log+0x10/0x10
[ 299.465045][ T5917] ? tomoyo_profile+0x11/0x50
[ 299.465061][ T5917] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 299.465078][ T5917] tomoyo_supervisor+0x340/0x1480
[ 299.465097][ T5917] ? format_decode+0x5a3/0xe30
[ 299.465115][ T5917] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 299.465138][ T5917] ? snprintf+0xda/0x120
[ 299.465155][ T5917] ? __pfx_snprintf+0x10/0x10
[ 299.465172][ T5917] ? tomoyo_check_acl+0x386/0x400
[ 299.465190][ T5917] tomoyo_path_number_perm+0x438/0x5a0
[ 299.465204][ T5917] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 299.465218][ T5917] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 299.465237][ T5917] ? _raw_spin_lock_irq+0xae/0xf0
[ 299.465272][ T5917] ? __pfx_ptrace_notify+0x10/0x10
[ 299.465296][ T5917] security_file_ioctl+0xcb/0x2d0
[ 299.465310][ T5917] __se_sys_ioctl+0x47/0x170
[ 299.465326][ T5917] do_syscall_64+0xfa/0x3b0
[ 299.465342][ T5917] ? lockdep_hardirqs_on+0x9c/0x150
[ 299.465357][ T5917] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 299.465369][ T5917] ? clear_bhb_loop+0x60/0xb0
[ 299.465383][ T5917] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 299.465394][ T5917] RIP: 0033:0x7fea15a51869
[ 299.465406][ T5917] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 299.465425][ T5917] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5917] exit_group(0) = ?
[pid 5917] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5917, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5918 attached
, child_tidptr=0x555576720650) = 5918
[pid 5918] set_robust_list(0x555576720660, 24) = 0
[pid 5918] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5918] setpgid(0, 0) = 0
[ 299.465440][ T5917] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 299.465449][ T5917] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 299.465456][ T5917] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 299.465463][ T5917] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 299.465470][ T5917] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 299.465488][ T5917]
[pid 5918] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5918] write(3, "1000", 4) = 4
[pid 5918] close(3executing program
) = 0
[pid 5918] write(1, "executing program\n", 18) = 18
[pid 5918] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5918] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5918] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5918] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5918] write(6, "4", 1) = 1
[pid 5918] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 299.817590][ T5918] FAULT_INJECTION: forcing a failure.
[ 299.817590][ T5918] name failslab, interval 1, probability 0, space 0, times 0
[ 299.831308][ T5918] CPU: 1 UID: 0 PID: 5918 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 299.831336][ T5918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 299.831348][ T5918] Call Trace:
[ 299.831359][ T5918]
[ 299.831368][ T5918] dump_stack_lvl+0x189/0x250
[ 299.831396][ T5918] ? __pfx____ratelimit+0x10/0x10
[ 299.831433][ T5918] ? __pfx_dump_stack_lvl+0x10/0x10
[ 299.831454][ T5918] ? __pfx__printk+0x10/0x10
[ 299.831479][ T5918] ? __pfx___might_resched+0x10/0x10
[ 299.831496][ T5918] ? fs_reclaim_acquire+0x7d/0x100
[ 299.831516][ T5918] should_fail_ex+0x414/0x560
[ 299.831534][ T5918] should_failslab+0xa8/0x100
[ 299.831551][ T5918] __kmalloc_noprof+0xcb/0x4f0
[ 299.831565][ T5918] ? tomoyo_init_log+0x1a6e/0x1f70
[ 299.831586][ T5918] tomoyo_init_log+0x1a6e/0x1f70
[ 299.831616][ T5918] ? __pfx_tomoyo_init_log+0x10/0x10
[ 299.831633][ T5918] ? tomoyo_profile+0x11/0x50
[ 299.831649][ T5918] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 299.831667][ T5918] tomoyo_supervisor+0x340/0x1480
[ 299.831685][ T5918] ? format_decode+0x5a3/0xe30
[ 299.831703][ T5918] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 299.831727][ T5918] ? snprintf+0xda/0x120
[ 299.831743][ T5918] ? __pfx_snprintf+0x10/0x10
[ 299.831758][ T5918] ? tomoyo_check_acl+0x386/0x400
[ 299.831776][ T5918] tomoyo_path_number_perm+0x438/0x5a0
[ 299.831790][ T5918] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 299.831804][ T5918] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 299.831823][ T5918] ? _raw_spin_lock_irq+0xae/0xf0
[ 299.831858][ T5918] ? __pfx_ptrace_notify+0x10/0x10
[ 299.831882][ T5918] security_file_ioctl+0xcb/0x2d0
[ 299.831897][ T5918] __se_sys_ioctl+0x47/0x170
[ 299.831913][ T5918] do_syscall_64+0xfa/0x3b0
[ 299.831929][ T5918] ? lockdep_hardirqs_on+0x9c/0x150
[ 299.831944][ T5918] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 299.831956][ T5918] ? clear_bhb_loop+0x60/0xb0
[ 299.831970][ T5918] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 299.831982][ T5918] RIP: 0033:0x7fea15a51869
[ 299.831994][ T5918] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 299.832004][ T5918] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 299.832018][ T5918] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5918] exit_group(0) = ?
[pid 5918] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5918, si_uid=0, si_status=0, si_utime=0, si_stime=27 /* 0.27 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5919 attached
, child_tidptr=0x555576720650) = 5919
[pid 5919] set_robust_list(0x555576720660, 24) = 0
[pid 5919] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5919] setpgid(0, 0) = 0
[pid 5919] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5919] write(3, "1000", 4) = 4
[pid 5919] close(3) = 0
executing program
[pid 5919] write(1, "executing program\n", 18) = 18
[pid 5919] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[ 299.832027][ T5918] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 299.832034][ T5918] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 299.832042][ T5918] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 299.832049][ T5918] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 299.832066][ T5918]
[pid 5919] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5919] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5919] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5919] write(6, "4", 1) = 1
[ 300.158539][ T5919] FAULT_INJECTION: forcing a failure.
[ 300.158539][ T5919] name failslab, interval 1, probability 0, space 0, times 0
[ 300.171582][ T5919] CPU: 0 UID: 0 PID: 5919 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 300.171610][ T5919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 300.171621][ T5919] Call Trace:
[ 300.171629][ T5919]
[ 300.171638][ T5919] dump_stack_lvl+0x189/0x250
[ 300.171667][ T5919] ? __pfx____ratelimit+0x10/0x10
[ 300.171694][ T5919] ? __pfx_dump_stack_lvl+0x10/0x10
[ 300.171715][ T5919] ? __pfx__printk+0x10/0x10
[ 300.171736][ T5919] ? __pfx___might_resched+0x10/0x10
[ 300.171753][ T5919] ? fs_reclaim_acquire+0x7d/0x100
[ 300.171774][ T5919] should_fail_ex+0x414/0x560
[ 300.171791][ T5919] should_failslab+0xa8/0x100
[ 300.171808][ T5919] __kmalloc_cache_noprof+0x70/0x3d0
[ 300.171823][ T5919] ? tomoyo_init_log+0x183/0x1f70
[ 300.171843][ T5919] tomoyo_init_log+0x183/0x1f70
[ 300.171862][ T5919] ? kasan_save_track+0x4f/0x80
[ 300.171875][ T5919] ? kasan_save_track+0x3e/0x80
[ 300.171887][ T5919] ? __kasan_slab_free+0x5b/0x80
[ 300.171901][ T5919] ? format_decode+0xd9/0xe30
[ 300.171915][ T5919] ? string+0x279/0x2b0
[ 300.171930][ T5919] ? __pfx_tomoyo_init_log+0x10/0x10
[ 300.171945][ T5919] ? tomoyo_profile+0x11/0x50
[ 300.171960][ T5919] ? tomoyo_profile+0x11/0x50
[ 300.171975][ T5919] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 300.171992][ T5919] tomoyo_supervisor+0x340/0x1480
[ 300.172010][ T5919] ? format_decode+0x5a3/0xe30
[ 300.172028][ T5919] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 300.172051][ T5919] ? snprintf+0xda/0x120
[ 300.172068][ T5919] ? __pfx_snprintf+0x10/0x10
[ 300.172082][ T5919] ? tomoyo_check_acl+0x386/0x400
[ 300.172100][ T5919] tomoyo_path_number_perm+0x438/0x5a0
[ 300.172114][ T5919] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 300.172128][ T5919] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 300.172146][ T5919] ? _raw_spin_lock_irq+0xae/0xf0
[ 300.172181][ T5919] ? __pfx_ptrace_notify+0x10/0x10
[ 300.172232][ T5919] security_file_ioctl+0xcb/0x2d0
[ 300.172247][ T5919] __se_sys_ioctl+0x47/0x170
[ 300.172262][ T5919] do_syscall_64+0xfa/0x3b0
[ 300.172278][ T5919] ? lockdep_hardirqs_on+0x9c/0x150
[ 300.172294][ T5919] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 300.172305][ T5919] ? clear_bhb_loop+0x60/0xb0
[ 300.172320][ T5919] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 300.172331][ T5919] RIP: 0033:0x7fea15a51869
[ 300.172343][ T5919] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 300.172353][ T5919] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 300.172368][ T5919] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 300.172377][ T5919] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 300.172384][ T5919] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 300.172391][ T5919] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[pid 5919] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5919] exit_group(0) = ?
[pid 5919] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5919, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5920 attached
, child_tidptr=0x555576720650) = 5920
[pid 5920] set_robust_list(0x555576720660, 24) = 0
[ 300.172398][ T5919] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 300.172416][ T5919]
[pid 5920] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5920] setpgid(0, 0) = 0
[pid 5920] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5920] write(3, "1000", 4) = 4
[pid 5920] close(3) = 0
[pid 5920] write(1, "executing program\n", 18executing program
) = 18
[pid 5920] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5920] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5920] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5920] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5920] write(6, "4", 1) = 1
[pid 5920] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 300.577611][ T5920] FAULT_INJECTION: forcing a failure.
[ 300.577611][ T5920] name failslab, interval 1, probability 0, space 0, times 0
[ 300.590795][ T5920] CPU: 1 UID: 0 PID: 5920 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 300.590824][ T5920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 300.590835][ T5920] Call Trace:
[ 300.590843][ T5920]
[ 300.590852][ T5920] dump_stack_lvl+0x189/0x250
[ 300.590876][ T5920] ? __pfx____ratelimit+0x10/0x10
[ 300.590893][ T5920] ? __pfx_dump_stack_lvl+0x10/0x10
[ 300.590906][ T5920] ? __pfx__printk+0x10/0x10
[ 300.590925][ T5920] ? __pfx___might_resched+0x10/0x10
[ 300.590942][ T5920] ? fs_reclaim_acquire+0x7d/0x100
[ 300.590962][ T5920] should_fail_ex+0x414/0x560
[ 300.590979][ T5920] should_failslab+0xa8/0x100
[ 300.590995][ T5920] __kmalloc_cache_noprof+0x70/0x3d0
[ 300.591009][ T5920] ? tomoyo_init_log+0x183/0x1f70
[ 300.591029][ T5920] tomoyo_init_log+0x183/0x1f70
[ 300.591048][ T5920] ? kasan_save_track+0x4f/0x80
[ 300.591061][ T5920] ? kasan_save_track+0x3e/0x80
[ 300.591073][ T5920] ? __kasan_slab_free+0x5b/0x80
[ 300.591087][ T5920] ? format_decode+0xd9/0xe30
[ 300.591101][ T5920] ? string+0x279/0x2b0
[ 300.591116][ T5920] ? __pfx_tomoyo_init_log+0x10/0x10
[ 300.591131][ T5920] ? tomoyo_profile+0x11/0x50
[ 300.591147][ T5920] ? tomoyo_profile+0x11/0x50
[ 300.591162][ T5920] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 300.591182][ T5920] tomoyo_supervisor+0x340/0x1480
[ 300.591200][ T5920] ? format_decode+0x5a3/0xe30
[ 300.591218][ T5920] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 300.591241][ T5920] ? snprintf+0xda/0x120
[ 300.591258][ T5920] ? __pfx_snprintf+0x10/0x10
[ 300.591272][ T5920] ? tomoyo_check_acl+0x386/0x400
[ 300.591290][ T5920] tomoyo_path_number_perm+0x438/0x5a0
[ 300.591303][ T5920] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 300.591318][ T5920] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 300.591336][ T5920] ? _raw_spin_lock_irq+0xae/0xf0
[ 300.591370][ T5920] ? __pfx_ptrace_notify+0x10/0x10
[ 300.591394][ T5920] security_file_ioctl+0xcb/0x2d0
[ 300.591409][ T5920] __se_sys_ioctl+0x47/0x170
[ 300.591432][ T5920] do_syscall_64+0xfa/0x3b0
[ 300.591448][ T5920] ? lockdep_hardirqs_on+0x9c/0x150
[ 300.591464][ T5920] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 300.591475][ T5920] ? clear_bhb_loop+0x60/0xb0
[ 300.591490][ T5920] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 300.591501][ T5920] RIP: 0033:0x7fea15a51869
[ 300.591513][ T5920] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 300.591523][ T5920] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 300.591538][ T5920] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 300.591547][ T5920] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 300.591554][ T5920] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[pid 5920] exit_group(0) = ?
[pid 5920] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5920, si_uid=0, si_status=0, si_utime=0, si_stime=30 /* 0.30 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5921 attached
, child_tidptr=0x555576720650) = 5921
[pid 5921] set_robust_list(0x555576720660, 24) = 0
[pid 5921] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5921] setpgid(0, 0) = 0
[pid 5921] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[ 300.591561][ T5920] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 300.591568][ T5920] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 300.591586][ T5920]
[pid 5921] write(3, "1000", 4) = 4
[pid 5921] close(3) = 0
[pid 5921] write(1, "executing program\n", 18executing program
) = 18
[pid 5921] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5921] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5921] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5921] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5921] write(6, "4", 1) = 1
[pid 5921] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5921] exit_group(0) = ?
[pid 5921] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5921, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 301.011652][ T5921] FAULT_INJECTION: forcing a failure.
[ 301.011652][ T5921] name failslab, interval 1, probability 0, space 0, times 0
[ 301.024933][ T5921] CPU: 1 UID: 0 PID: 5921 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 301.024965][ T5921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 301.024976][ T5921] Call Trace:
[ 301.024984][ T5921]
[ 301.024992][ T5921] dump_stack_lvl+0x189/0x250
[ 301.025019][ T5921] ? __pfx____ratelimit+0x10/0x10
[ 301.025047][ T5921] ? __pfx_dump_stack_lvl+0x10/0x10
[ 301.025069][ T5921] ? __pfx__printk+0x10/0x10
[ 301.025102][ T5921] ? __pfx___might_resched+0x10/0x10
[ 301.025130][ T5921] ? fs_reclaim_acquire+0x7d/0x100
[ 301.025162][ T5921] should_fail_ex+0x414/0x560
[ 301.025191][ T5921] should_failslab+0xa8/0x100
[ 301.025215][ T5921] __kmalloc_noprof+0xcb/0x4f0
[ 301.025234][ T5921] ? tomoyo_init_log+0x1a6e/0x1f70
[ 301.025262][ T5921] tomoyo_init_log+0x1a6e/0x1f70
[ 301.025304][ T5921] ? __pfx_tomoyo_init_log+0x10/0x10
[ 301.025400][ T5921] ? tomoyo_profile+0x11/0x50
[ 301.025422][ T5921] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 301.025445][ T5921] tomoyo_supervisor+0x340/0x1480
[ 301.025471][ T5921] ? format_decode+0x5a3/0xe30
[ 301.025497][ T5921] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 301.025529][ T5921] ? snprintf+0xda/0x120
[ 301.025551][ T5921] ? __pfx_snprintf+0x10/0x10
[ 301.025571][ T5921] ? tomoyo_check_acl+0x386/0x400
[ 301.025595][ T5921] tomoyo_path_number_perm+0x438/0x5a0
[ 301.025613][ T5921] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 301.025633][ T5921] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 301.025658][ T5921] ? _raw_spin_lock_irq+0xae/0xf0
[ 301.025707][ T5921] ? __pfx_ptrace_notify+0x10/0x10
[ 301.025741][ T5921] security_file_ioctl+0xcb/0x2d0
[ 301.025762][ T5921] __se_sys_ioctl+0x47/0x170
[ 301.025782][ T5921] do_syscall_64+0xfa/0x3b0
[ 301.025805][ T5921] ? lockdep_hardirqs_on+0x9c/0x150
[ 301.025826][ T5921] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 301.025842][ T5921] ? clear_bhb_loop+0x60/0xb0
[ 301.025861][ T5921] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 301.025876][ T5921] RIP: 0033:0x7fea15a51869
[ 301.025892][ T5921] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 301.025905][ T5921] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLDexecuting program
./strace-static-x86_64: Process 5922 attached
, child_tidptr=0x555576720650) = 5922
[pid 5922] set_robust_list(0x555576720660, 24) = 0
[pid 5922] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5922] setpgid(0, 0) = 0
[pid 5922] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5922] write(3, "1000", 4) = 4
[pid 5922] close(3) = 0
[pid 5922] write(1, "executing program\n", 18) = 18
[pid 5922] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5922] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5922] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5922] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5922] write(6, "4", 1) = 1
[ 301.025924][ T5921] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 301.025935][ T5921] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 301.025945][ T5921] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 301.025955][ T5921] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 301.025965][ T5921] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 301.025989][ T5921]
[pid 5922] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 301.317545][ T5922] FAULT_INJECTION: forcing a failure.
[ 301.317545][ T5922] name failslab, interval 1, probability 0, space 0, times 0
[ 301.331202][ T5922] CPU: 1 UID: 0 PID: 5922 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 301.331231][ T5922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 301.331242][ T5922] Call Trace:
[ 301.331251][ T5922]
[ 301.331259][ T5922] dump_stack_lvl+0x189/0x250
[ 301.331288][ T5922] ? __pfx____ratelimit+0x10/0x10
[ 301.331318][ T5922] ? __pfx_dump_stack_lvl+0x10/0x10
[ 301.331340][ T5922] ? __pfx__printk+0x10/0x10
[ 301.331373][ T5922] ? __pfx___might_resched+0x10/0x10
[ 301.331402][ T5922] ? fs_reclaim_acquire+0x7d/0x100
[ 301.331438][ T5922] should_fail_ex+0x414/0x560
[ 301.331466][ T5922] should_failslab+0xa8/0x100
[ 301.331494][ T5922] __kmalloc_noprof+0xcb/0x4f0
[ 301.331517][ T5922] ? tomoyo_init_log+0x1a6e/0x1f70
[ 301.331552][ T5922] tomoyo_init_log+0x1a6e/0x1f70
[ 301.331607][ T5922] ? __pfx_tomoyo_init_log+0x10/0x10
[ 301.331635][ T5922] ? tomoyo_profile+0x11/0x50
[ 301.331663][ T5922] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 301.331693][ T5922] tomoyo_supervisor+0x340/0x1480
[ 301.331724][ T5922] ? format_decode+0x5a3/0xe30
[ 301.331757][ T5922] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 301.331799][ T5922] ? snprintf+0xda/0x120
[ 301.331828][ T5922] ? __pfx_snprintf+0x10/0x10
[ 301.331854][ T5922] ? tomoyo_check_acl+0x386/0x400
[ 301.331886][ T5922] tomoyo_path_number_perm+0x438/0x5a0
[ 301.331909][ T5922] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 301.331935][ T5922] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 301.331968][ T5922] ? _raw_spin_lock_irq+0xae/0xf0
[ 301.332032][ T5922] ? __pfx_ptrace_notify+0x10/0x10
[ 301.332075][ T5922] security_file_ioctl+0xcb/0x2d0
[ 301.332101][ T5922] __se_sys_ioctl+0x47/0x170
[ 301.332126][ T5922] do_syscall_64+0xfa/0x3b0
[ 301.332154][ T5922] ? lockdep_hardirqs_on+0x9c/0x150
[ 301.332181][ T5922] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 301.332209][ T5922] ? clear_bhb_loop+0x60/0xb0
[ 301.332234][ T5922] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 301.332253][ T5922] RIP: 0033:0x7fea15a51869
[ 301.332273][ T5922] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 301.332290][ T5922] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 301.332314][ T5922] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5922] exit_group(0) = ?
[pid 5922] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5922, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5923 attached
, child_tidptr=0x555576720650) = 5923
[pid 5923] set_robust_list(0x555576720660, 24) = 0
[ 301.332329][ T5922] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 301.332341][ T5922] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 301.332353][ T5922] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 301.332365][ T5922] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 301.332397][ T5922]
[pid 5923] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5923] setpgid(0, 0) = 0
[pid 5923] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5923] write(3, "1000", 4) = 4
[pid 5923] close(3) = 0
[pid 5923] write(1, "executing program\n", 18executing program
) = 18
[pid 5923] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5923] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5923] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5923] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5923] write(6, "4", 1) = 1
[ 301.717721][ T5923] FAULT_INJECTION: forcing a failure.
[ 301.717721][ T5923] name failslab, interval 1, probability 0, space 0, times 0
[ 301.730725][ T5923] CPU: 0 UID: 0 PID: 5923 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 301.730753][ T5923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 301.730764][ T5923] Call Trace:
[ 301.730773][ T5923]
[ 301.730782][ T5923] dump_stack_lvl+0x189/0x250
[ 301.730809][ T5923] ? __pfx____ratelimit+0x10/0x10
[ 301.730838][ T5923] ? __pfx_dump_stack_lvl+0x10/0x10
[ 301.730861][ T5923] ? __pfx__printk+0x10/0x10
[ 301.730892][ T5923] ? __pfx___might_resched+0x10/0x10
[ 301.730921][ T5923] ? fs_reclaim_acquire+0x7d/0x100
[ 301.730954][ T5923] should_fail_ex+0x414/0x560
[ 301.730983][ T5923] should_failslab+0xa8/0x100
[ 301.731012][ T5923] __kmalloc_noprof+0xcb/0x4f0
[ 301.731035][ T5923] ? tomoyo_init_log+0x1a6e/0x1f70
[ 301.731069][ T5923] tomoyo_init_log+0x1a6e/0x1f70
[ 301.731124][ T5923] ? __pfx_tomoyo_init_log+0x10/0x10
[ 301.731152][ T5923] ? tomoyo_profile+0x11/0x50
[ 301.731179][ T5923] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 301.731207][ T5923] tomoyo_supervisor+0x340/0x1480
[ 301.731239][ T5923] ? format_decode+0x5a3/0xe30
[ 301.731271][ T5923] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 301.731313][ T5923] ? snprintf+0xda/0x120
[ 301.731343][ T5923] ? __pfx_snprintf+0x10/0x10
[ 301.731367][ T5923] ? tomoyo_check_acl+0x386/0x400
[ 301.731399][ T5923] tomoyo_path_number_perm+0x438/0x5a0
[ 301.731422][ T5923] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 301.731455][ T5923] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 301.731489][ T5923] ? _raw_spin_lock_irq+0xae/0xf0
[ 301.731552][ T5923] ? __pfx_ptrace_notify+0x10/0x10
[ 301.731595][ T5923] security_file_ioctl+0xcb/0x2d0
[ 301.731621][ T5923] __se_sys_ioctl+0x47/0x170
[ 301.731648][ T5923] do_syscall_64+0xfa/0x3b0
[ 301.731675][ T5923] ? lockdep_hardirqs_on+0x9c/0x150
[ 301.731701][ T5923] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 301.731721][ T5923] ? clear_bhb_loop+0x60/0xb0
[ 301.731747][ T5923] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 301.731767][ T5923] RIP: 0033:0x7fea15a51869
[ 301.731786][ T5923] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 301.731802][ T5923] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 301.731825][ T5923] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5923] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5923] exit_group(0) = ?
[pid 5923] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5923, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5924 attached
, child_tidptr=0x555576720650) = 5924
[ 301.731839][ T5923] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 301.731851][ T5923] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 301.731863][ T5923] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 301.731874][ T5923] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 301.731906][ T5923]
[pid 5924] set_robust_list(0x555576720660, 24) = 0
[pid 5924] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5924] setpgid(0, 0) = 0
[pid 5924] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5924] write(3, "1000", 4) = 4
[pid 5924] close(3) = 0
executing program
[pid 5924] write(1, "executing program\n", 18) = 18
[pid 5924] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5924] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5924] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5924] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5924] write(6, "4", 1) = 1
[pid 5924] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5924] exit_group(0) = ?
[ 302.166644][ T5924] FAULT_INJECTION: forcing a failure.
[ 302.166644][ T5924] name failslab, interval 1, probability 0, space 0, times 0
[ 302.179533][ T5924] CPU: 1 UID: 0 PID: 5924 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 302.179552][ T5924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 302.179560][ T5924] Call Trace:
[ 302.179564][ T5924]
[ 302.179569][ T5924] dump_stack_lvl+0x189/0x250
[ 302.179588][ T5924] ? __pfx____ratelimit+0x10/0x10
[ 302.179605][ T5924] ? __pfx_dump_stack_lvl+0x10/0x10
[ 302.179618][ T5924] ? __pfx__printk+0x10/0x10
[ 302.179638][ T5924] ? __pfx___might_resched+0x10/0x10
[ 302.179655][ T5924] ? fs_reclaim_acquire+0x7d/0x100
[ 302.179674][ T5924] should_fail_ex+0x414/0x560
[ 302.179691][ T5924] should_failslab+0xa8/0x100
[ 302.179707][ T5924] __kmalloc_noprof+0xcb/0x4f0
[ 302.179721][ T5924] ? tomoyo_init_log+0x1a6e/0x1f70
[ 302.179742][ T5924] tomoyo_init_log+0x1a6e/0x1f70
[ 302.179771][ T5924] ? __pfx_tomoyo_init_log+0x10/0x10
[ 302.179788][ T5924] ? tomoyo_profile+0x11/0x50
[ 302.179804][ T5924] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 302.179820][ T5924] tomoyo_supervisor+0x340/0x1480
[ 302.179838][ T5924] ? format_decode+0x5a3/0xe30
[ 302.179856][ T5924] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 302.179880][ T5924] ? snprintf+0xda/0x120
[ 302.179896][ T5924] ? __pfx_snprintf+0x10/0x10
[ 302.179911][ T5924] ? tomoyo_check_acl+0x386/0x400
[ 302.179929][ T5924] tomoyo_path_number_perm+0x438/0x5a0
[ 302.179942][ T5924] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 302.179956][ T5924] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 302.179975][ T5924] ? _raw_spin_lock_irq+0xae/0xf0
[ 302.180009][ T5924] ? __pfx_ptrace_notify+0x10/0x10
[ 302.180033][ T5924] security_file_ioctl+0xcb/0x2d0
[ 302.180047][ T5924] __se_sys_ioctl+0x47/0x170
[ 302.180063][ T5924] do_syscall_64+0xfa/0x3b0
[ 302.180079][ T5924] ? lockdep_hardirqs_on+0x9c/0x150
[ 302.180094][ T5924] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 302.180106][ T5924] ? clear_bhb_loop+0x60/0xb0
[ 302.180120][ T5924] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 302.180131][ T5924] RIP: 0033:0x7fea15a51869
[ 302.180144][ T5924] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 302.180153][ T5924] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 302.180168][ T5924] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5924] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5924, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5925 attached
, child_tidptr=0x555576720650) = 5925
[pid 5925] set_robust_list(0x555576720660, 24) = 0
[pid 5925] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5925] setpgid(0, 0) = 0
[ 302.180177][ T5924] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 302.180184][ T5924] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 302.180191][ T5924] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 302.180198][ T5924] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 302.180216][ T5924]
[pid 5925] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5925] write(3, "1000", 4) = 4
[pid 5925] close(3) = 0
executing program
[pid 5925] write(1, "executing program\n", 18) = 18
[pid 5925] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5925] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5925] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5925] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5925] write(6, "4", 1) = 1
[pid 5925] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 302.542927][ T5925] FAULT_INJECTION: forcing a failure.
[ 302.542927][ T5925] name failslab, interval 1, probability 0, space 0, times 0
[ 302.556515][ T5925] CPU: 0 UID: 0 PID: 5925 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 302.556542][ T5925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 302.556553][ T5925] Call Trace:
[ 302.556562][ T5925]
[ 302.556570][ T5925] dump_stack_lvl+0x189/0x250
[ 302.556598][ T5925] ? __pfx____ratelimit+0x10/0x10
[ 302.556626][ T5925] ? __pfx_dump_stack_lvl+0x10/0x10
[ 302.556648][ T5925] ? __pfx__printk+0x10/0x10
[ 302.556681][ T5925] ? __pfx___might_resched+0x10/0x10
[ 302.556709][ T5925] ? fs_reclaim_acquire+0x7d/0x100
[ 302.556742][ T5925] should_fail_ex+0x414/0x560
[ 302.556771][ T5925] should_failslab+0xa8/0x100
[ 302.556797][ T5925] __kmalloc_noprof+0xcb/0x4f0
[ 302.556821][ T5925] ? tomoyo_init_log+0x1a6e/0x1f70
[ 302.556850][ T5925] tomoyo_init_log+0x1a6e/0x1f70
[ 302.556892][ T5925] ? __pfx_tomoyo_init_log+0x10/0x10
[ 302.556913][ T5925] ? tomoyo_profile+0x11/0x50
[ 302.556934][ T5925] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 302.556957][ T5925] tomoyo_supervisor+0x340/0x1480
[ 302.556981][ T5925] ? format_decode+0x5a3/0xe30
[ 302.557005][ T5925] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 302.557036][ T5925] ? snprintf+0xda/0x120
[ 302.557058][ T5925] ? __pfx_snprintf+0x10/0x10
[ 302.557077][ T5925] ? tomoyo_check_acl+0x386/0x400
[ 302.557101][ T5925] tomoyo_path_number_perm+0x438/0x5a0
[ 302.557119][ T5925] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 302.557137][ T5925] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 302.557162][ T5925] ? _raw_spin_lock_irq+0xae/0xf0
[ 302.557211][ T5925] ? __pfx_ptrace_notify+0x10/0x10
[ 302.557244][ T5925] security_file_ioctl+0xcb/0x2d0
[ 302.557263][ T5925] __se_sys_ioctl+0x47/0x170
[ 302.557283][ T5925] do_syscall_64+0xfa/0x3b0
[ 302.557304][ T5925] ? lockdep_hardirqs_on+0x9c/0x150
[ 302.557324][ T5925] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 302.557339][ T5925] ? clear_bhb_loop+0x60/0xb0
[ 302.557358][ T5925] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 302.557372][ T5925] RIP: 0033:0x7fea15a51869
[ 302.557387][ T5925] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 302.557399][ T5925] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5925] exit_group(0) = ?
[pid 5925] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5925, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5926 attached
, child_tidptr=0x555576720650) = 5926
executing program
[pid 5926] set_robust_list(0x555576720660, 24) = 0
[pid 5926] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5926] setpgid(0, 0) = 0
[pid 5926] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5926] write(3, "1000", 4) = 4
[pid 5926] close(3) = 0
[pid 5926] write(1, "executing program\n", 18) = 18
[pid 5926] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5926] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5926] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5926] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[ 302.557426][ T5925] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 302.557437][ T5925] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 302.557447][ T5925] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 302.557456][ T5925] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 302.557465][ T5925] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 302.557489][ T5925]
[pid 5926] write(6, "4", 1) = 1
[pid 5926] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 302.868266][ T5926] FAULT_INJECTION: forcing a failure.
[ 302.868266][ T5926] name failslab, interval 1, probability 0, space 0, times 0
[ 302.881660][ T5926] CPU: 0 UID: 0 PID: 5926 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 302.881690][ T5926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 302.881701][ T5926] Call Trace:
[ 302.881709][ T5926]
[ 302.881718][ T5926] dump_stack_lvl+0x189/0x250
[ 302.881747][ T5926] ? __pfx____ratelimit+0x10/0x10
[ 302.881776][ T5926] ? __pfx_dump_stack_lvl+0x10/0x10
[ 302.881798][ T5926] ? __pfx__printk+0x10/0x10
[ 302.881831][ T5926] ? __pfx___might_resched+0x10/0x10
[ 302.881858][ T5926] ? fs_reclaim_acquire+0x7d/0x100
[ 302.881892][ T5926] should_fail_ex+0x414/0x560
[ 302.881922][ T5926] should_failslab+0xa8/0x100
[ 302.881950][ T5926] __kmalloc_noprof+0xcb/0x4f0
[ 302.881972][ T5926] ? tomoyo_init_log+0x1a6e/0x1f70
[ 302.882003][ T5926] tomoyo_init_log+0x1a6e/0x1f70
[ 302.882055][ T5926] ? __pfx_tomoyo_init_log+0x10/0x10
[ 302.882083][ T5926] ? tomoyo_profile+0x11/0x50
[ 302.882111][ T5926] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 302.882142][ T5926] tomoyo_supervisor+0x340/0x1480
[ 302.882172][ T5926] ? format_decode+0x5a3/0xe30
[ 302.882202][ T5926] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 302.882243][ T5926] ? snprintf+0xda/0x120
[ 302.882259][ T5926] ? __pfx_snprintf+0x10/0x10
[ 302.882274][ T5926] ? tomoyo_check_acl+0x386/0x400
[ 302.882292][ T5926] tomoyo_path_number_perm+0x438/0x5a0
[ 302.882305][ T5926] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 302.882320][ T5926] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 302.882338][ T5926] ? _raw_spin_lock_irq+0xae/0xf0
[ 302.882373][ T5926] ? __pfx_ptrace_notify+0x10/0x10
[ 302.882398][ T5926] security_file_ioctl+0xcb/0x2d0
[ 302.882413][ T5926] __se_sys_ioctl+0x47/0x170
[ 302.882429][ T5926] do_syscall_64+0xfa/0x3b0
[ 302.882445][ T5926] ? lockdep_hardirqs_on+0x9c/0x150
[ 302.882460][ T5926] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 302.882476][ T5926] ? clear_bhb_loop+0x60/0xb0
[ 302.882490][ T5926] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 302.882501][ T5926] RIP: 0033:0x7fea15a51869
[ 302.882514][ T5926] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 302.882524][ T5926] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 302.882539][ T5926] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5926] exit_group(0) = ?
[pid 5926] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5926, si_uid=0, si_status=0, si_utime=0, si_stime=26 /* 0.26 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5927 attached
, child_tidptr=0x555576720650) = 5927
[pid 5927] set_robust_list(0x555576720660, 24) = 0
[pid 5927] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 302.882548][ T5926] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 302.882555][ T5926] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 302.882562][ T5926] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 302.882569][ T5926] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 302.882587][ T5926]
[pid 5927] setpgid(0, 0) = 0
[pid 5927] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5927] write(3, "1000", 4) = 4
[pid 5927] close(3) = 0
[pid 5927] write(1, "executing program\n", 18executing program
) = 18
[pid 5927] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5927] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5927] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5927] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5927] write(6, "4", 1) = 1
[pid 5927] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 303.288555][ T5927] FAULT_INJECTION: forcing a failure.
[ 303.288555][ T5927] name failslab, interval 1, probability 0, space 0, times 0
[ 303.301648][ T5927] CPU: 1 UID: 0 PID: 5927 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 303.301667][ T5927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 303.301675][ T5927] Call Trace:
[ 303.301680][ T5927]
[ 303.301685][ T5927] dump_stack_lvl+0x189/0x250
[ 303.301703][ T5927] ? __pfx____ratelimit+0x10/0x10
[ 303.301721][ T5927] ? __pfx_dump_stack_lvl+0x10/0x10
[ 303.301734][ T5927] ? __pfx__printk+0x10/0x10
[ 303.301752][ T5927] ? __pfx___might_resched+0x10/0x10
[ 303.301769][ T5927] ? fs_reclaim_acquire+0x7d/0x100
[ 303.301789][ T5927] should_fail_ex+0x414/0x560
[ 303.301806][ T5927] should_failslab+0xa8/0x100
[ 303.301823][ T5927] __kmalloc_noprof+0xcb/0x4f0
[ 303.301837][ T5927] ? tomoyo_init_log+0x1a6e/0x1f70
[ 303.301857][ T5927] tomoyo_init_log+0x1a6e/0x1f70
[ 303.301886][ T5927] ? __pfx_tomoyo_init_log+0x10/0x10
[ 303.301903][ T5927] ? tomoyo_profile+0x11/0x50
[ 303.301919][ T5927] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 303.301935][ T5927] tomoyo_supervisor+0x340/0x1480
[ 303.301953][ T5927] ? format_decode+0x5a3/0xe30
[ 303.301971][ T5927] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 303.301995][ T5927] ? snprintf+0xda/0x120
[ 303.302011][ T5927] ? __pfx_snprintf+0x10/0x10
[ 303.302026][ T5927] ? tomoyo_check_acl+0x386/0x400
[ 303.302043][ T5927] tomoyo_path_number_perm+0x438/0x5a0
[ 303.302057][ T5927] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 303.302071][ T5927] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 303.302090][ T5927] ? _raw_spin_lock_irq+0xae/0xf0
[ 303.302124][ T5927] ? __pfx_ptrace_notify+0x10/0x10
[ 303.302152][ T5927] security_file_ioctl+0xcb/0x2d0
[ 303.302167][ T5927] __se_sys_ioctl+0x47/0x170
[ 303.302183][ T5927] do_syscall_64+0xfa/0x3b0
[ 303.302199][ T5927] ? lockdep_hardirqs_on+0x9c/0x150
[ 303.302214][ T5927] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 303.302226][ T5927] ? clear_bhb_loop+0x60/0xb0
[ 303.302240][ T5927] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 303.302251][ T5927] RIP: 0033:0x7fea15a51869
[ 303.302263][ T5927] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 303.302273][ T5927] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 303.302297][ T5927] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5927] exit_group(0) = ?
[pid 5927] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5927, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5928 attached
, child_tidptr=0x555576720650) = 5928
[pid 5928] set_robust_list(0x555576720660, 24) = 0
[pid 5928] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 303.302306][ T5927] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 303.302317][ T5927] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 303.302325][ T5927] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 303.302332][ T5927] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 303.302349][ T5927]
[pid 5928] setpgid(0, 0) = 0
[pid 5928] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5928] write(3, "1000", 4) = 4
[pid 5928] close(3) = 0
executing program
[pid 5928] write(1, "executing program\n", 18) = 18
[pid 5928] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5928] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5928] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5928] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5928] write(6, "4", 1) = 1
[pid 5928] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5928] exit_group(0) = ?
[pid 5928] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5928, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
[ 303.662324][ T5928] FAULT_INJECTION: forcing a failure.
[ 303.662324][ T5928] name failslab, interval 1, probability 0, space 0, times 0
[ 303.675267][ T5928] CPU: 0 UID: 0 PID: 5928 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 303.675294][ T5928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 303.675304][ T5928] Call Trace:
[ 303.675312][ T5928]
[ 303.675319][ T5928] dump_stack_lvl+0x189/0x250
[ 303.675348][ T5928] ? __pfx____ratelimit+0x10/0x10
[ 303.675376][ T5928] ? __pfx_dump_stack_lvl+0x10/0x10
[ 303.675397][ T5928] ? __pfx__printk+0x10/0x10
[ 303.675427][ T5928] ? __pfx___might_resched+0x10/0x10
[ 303.675467][ T5928] ? fs_reclaim_acquire+0x7d/0x100
[ 303.675499][ T5928] should_fail_ex+0x414/0x560
[ 303.675529][ T5928] should_failslab+0xa8/0x100
[ 303.675559][ T5928] __kmalloc_cache_noprof+0x70/0x3d0
[ 303.675583][ T5928] ? tomoyo_init_log+0x183/0x1f70
[ 303.675616][ T5928] tomoyo_init_log+0x183/0x1f70
[ 303.675650][ T5928] ? kasan_save_track+0x4f/0x80
[ 303.675671][ T5928] ? kasan_save_track+0x3e/0x80
[ 303.675691][ T5928] ? __kasan_slab_free+0x5b/0x80
[ 303.675714][ T5928] ? format_decode+0xd9/0xe30
[ 303.675736][ T5928] ? string+0x279/0x2b0
[ 303.675753][ T5928] ? __pfx_tomoyo_init_log+0x10/0x10
[ 303.675768][ T5928] ? tomoyo_profile+0x11/0x50
[ 303.675784][ T5928] ? tomoyo_profile+0x11/0x50
[ 303.675799][ T5928] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 303.675817][ T5928] tomoyo_supervisor+0x340/0x1480
[ 303.675835][ T5928] ? format_decode+0x5a3/0xe30
[ 303.675853][ T5928] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 303.675877][ T5928] ? snprintf+0xda/0x120
[ 303.675893][ T5928] ? __pfx_snprintf+0x10/0x10
[ 303.675908][ T5928] ? tomoyo_check_acl+0x386/0x400
[ 303.675926][ T5928] tomoyo_path_number_perm+0x438/0x5a0
[ 303.675940][ T5928] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 303.675954][ T5928] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 303.675973][ T5928] ? _raw_spin_lock_irq+0xae/0xf0
[ 303.676010][ T5928] ? __pfx_ptrace_notify+0x10/0x10
[ 303.676034][ T5928] security_file_ioctl+0xcb/0x2d0
[ 303.676050][ T5928] __se_sys_ioctl+0x47/0x170
[ 303.676066][ T5928] do_syscall_64+0xfa/0x3b0
[ 303.676082][ T5928] ? lockdep_hardirqs_on+0x9c/0x150
[ 303.676098][ T5928] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 303.676110][ T5928] ? clear_bhb_loop+0x60/0xb0
[ 303.676124][ T5928] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 303.676136][ T5928] RIP: 0033:0x7fea15a51869
[ 303.676148][ T5928] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 303.676159][ T5928] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 303.676174][ T5928] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 303.676183][ T5928] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 303.676190][ T5928] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576720650) = 5929
./strace-static-x86_64: Process 5929 attached
[pid 5929] set_robust_list(0x555576720660, 24) = 0
[pid 5929] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5929] setpgid(0, 0) = 0
[pid 5929] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5929] write(3, "1000", 4) = 4
[pid 5929] close(3) = 0
executing program
[pid 5929] write(1, "executing program\n", 18) = 18
[pid 5929] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5929] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5929] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5929] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5929] write(6, "4", 1) = 1
[ 303.676198][ T5928] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 303.676208][ T5928] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 303.676226][ T5928]
[pid 5929] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 304.008496][ T5929] FAULT_INJECTION: forcing a failure.
[ 304.008496][ T5929] name failslab, interval 1, probability 0, space 0, times 0
[ 304.021561][ T5929] CPU: 1 UID: 0 PID: 5929 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 304.021592][ T5929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 304.021604][ T5929] Call Trace:
[ 304.021613][ T5929]
[ 304.021622][ T5929] dump_stack_lvl+0x189/0x250
[ 304.021651][ T5929] ? __pfx____ratelimit+0x10/0x10
[ 304.021679][ T5929] ? __pfx_dump_stack_lvl+0x10/0x10
[ 304.021703][ T5929] ? __pfx__printk+0x10/0x10
[ 304.021735][ T5929] ? __pfx___might_resched+0x10/0x10
[ 304.021763][ T5929] ? fs_reclaim_acquire+0x7d/0x100
[ 304.021795][ T5929] should_fail_ex+0x414/0x560
[ 304.021820][ T5929] should_failslab+0xa8/0x100
[ 304.021837][ T5929] __kmalloc_noprof+0xcb/0x4f0
[ 304.021852][ T5929] ? tomoyo_init_log+0x1a6e/0x1f70
[ 304.021872][ T5929] tomoyo_init_log+0x1a6e/0x1f70
[ 304.021901][ T5929] ? __pfx_tomoyo_init_log+0x10/0x10
[ 304.021918][ T5929] ? tomoyo_profile+0x11/0x50
[ 304.021934][ T5929] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 304.021952][ T5929] tomoyo_supervisor+0x340/0x1480
[ 304.021970][ T5929] ? format_decode+0x5a3/0xe30
[ 304.021988][ T5929] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 304.022012][ T5929] ? snprintf+0xda/0x120
[ 304.022028][ T5929] ? __pfx_snprintf+0x10/0x10
[ 304.022043][ T5929] ? tomoyo_check_acl+0x386/0x400
[ 304.022062][ T5929] tomoyo_path_number_perm+0x438/0x5a0
[ 304.022075][ T5929] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 304.022090][ T5929] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 304.022109][ T5929] ? _raw_spin_lock_irq+0xae/0xf0
[ 304.022154][ T5929] ? __pfx_ptrace_notify+0x10/0x10
[ 304.022178][ T5929] security_file_ioctl+0xcb/0x2d0
[ 304.022193][ T5929] __se_sys_ioctl+0x47/0x170
[ 304.022208][ T5929] do_syscall_64+0xfa/0x3b0
[ 304.022224][ T5929] ? lockdep_hardirqs_on+0x9c/0x150
[ 304.022240][ T5929] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 304.022252][ T5929] ? clear_bhb_loop+0x60/0xb0
[ 304.022267][ T5929] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 304.022278][ T5929] RIP: 0033:0x7fea15a51869
[ 304.022290][ T5929] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 304.022301][ T5929] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 304.022316][ T5929] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5929] exit_group(0) = ?
[pid 5929] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5929, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5930 attached
, child_tidptr=0x555576720650) = 5930
[pid 5930] set_robust_list(0x555576720660, 24) = 0
[pid 5930] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 304.022325][ T5929] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 304.022332][ T5929] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 304.022340][ T5929] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 304.022347][ T5929] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 304.022365][ T5929]
[pid 5930] setpgid(0, 0) = 0
[pid 5930] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5930] write(3, "1000", 4) = 4
[pid 5930] close(3) = 0
executing program
[pid 5930] write(1, "executing program\n", 18) = 18
[pid 5930] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5930] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5930] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5930] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5930] write(6, "4", 1) = 1
[pid 5930] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5930] exit_group(0) = ?
[pid 5930] +++ exited with 0 +++
[ 304.364972][ T5930] FAULT_INJECTION: forcing a failure.
[ 304.364972][ T5930] name failslab, interval 1, probability 0, space 0, times 0
[ 304.378314][ T5930] CPU: 0 UID: 0 PID: 5930 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 304.378335][ T5930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 304.378343][ T5930] Call Trace:
[ 304.378348][ T5930]
[ 304.378353][ T5930] dump_stack_lvl+0x189/0x250
[ 304.378372][ T5930] ? __pfx____ratelimit+0x10/0x10
[ 304.378390][ T5930] ? __pfx_dump_stack_lvl+0x10/0x10
[ 304.378403][ T5930] ? __pfx__printk+0x10/0x10
[ 304.378422][ T5930] ? __pfx___might_resched+0x10/0x10
[ 304.378439][ T5930] ? fs_reclaim_acquire+0x7d/0x100
[ 304.378459][ T5930] should_fail_ex+0x414/0x560
[ 304.378477][ T5930] should_failslab+0xa8/0x100
[ 304.378493][ T5930] __kmalloc_cache_noprof+0x70/0x3d0
[ 304.378508][ T5930] ? tomoyo_init_log+0x183/0x1f70
[ 304.378528][ T5930] tomoyo_init_log+0x183/0x1f70
[ 304.378547][ T5930] ? kasan_save_track+0x4f/0x80
[ 304.378560][ T5930] ? kasan_save_track+0x3e/0x80
[ 304.378572][ T5930] ? __kasan_slab_free+0x5b/0x80
[ 304.378587][ T5930] ? format_decode+0xd9/0xe30
[ 304.378602][ T5930] ? string+0x279/0x2b0
[ 304.378616][ T5930] ? __pfx_tomoyo_init_log+0x10/0x10
[ 304.378632][ T5930] ? tomoyo_profile+0x11/0x50
[ 304.378647][ T5930] ? tomoyo_profile+0x11/0x50
[ 304.378663][ T5930] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 304.378680][ T5930] tomoyo_supervisor+0x340/0x1480
[ 304.378698][ T5930] ? format_decode+0x5a3/0xe30
[ 304.378716][ T5930] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 304.378740][ T5930] ? snprintf+0xda/0x120
[ 304.378756][ T5930] ? __pfx_snprintf+0x10/0x10
[ 304.378771][ T5930] ? tomoyo_check_acl+0x386/0x400
[ 304.378790][ T5930] tomoyo_path_number_perm+0x438/0x5a0
[ 304.378803][ T5930] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 304.378818][ T5930] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 304.378837][ T5930] ? _raw_spin_lock_irq+0xae/0xf0
[ 304.378872][ T5930] ? __pfx_ptrace_notify+0x10/0x10
[ 304.378896][ T5930] security_file_ioctl+0xcb/0x2d0
[ 304.378911][ T5930] __se_sys_ioctl+0x47/0x170
[ 304.378927][ T5930] do_syscall_64+0xfa/0x3b0
[ 304.378943][ T5930] ? lockdep_hardirqs_on+0x9c/0x150
[ 304.378959][ T5930] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 304.378971][ T5930] ? clear_bhb_loop+0x60/0xb0
[ 304.378985][ T5930] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 304.378996][ T5930] RIP: 0033:0x7fea15a51869
[ 304.379009][ T5930] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 304.379019][ T5930] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 304.379034][ T5930] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 304.379043][ T5930] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 304.379051][ T5930] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5930, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5931 attached
, child_tidptr=0x555576720650) = 5931
[pid 5931] set_robust_list(0x555576720660, 24) = 0
[pid 5931] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5931] setpgid(0, 0) = 0
[ 304.379059][ T5930] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 304.379066][ T5930] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 304.379083][ T5930]
[pid 5931] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5931] write(3, "1000", 4) = 4
[pid 5931] close(3) = 0
[pid 5931] write(1, "executing program\n", 18executing program
) = 18
[pid 5931] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5931] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5931] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5931] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5931] write(6, "4", 1) = 1
[pid 5931] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5931] exit_group(0) = ?
[ 304.758184][ T5931] FAULT_INJECTION: forcing a failure.
[ 304.758184][ T5931] name failslab, interval 1, probability 0, space 0, times 0
[ 304.771000][ T5931] CPU: 1 UID: 0 PID: 5931 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 304.771026][ T5931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 304.771037][ T5931] Call Trace:
[ 304.771045][ T5931]
[ 304.771054][ T5931] dump_stack_lvl+0x189/0x250
[ 304.771080][ T5931] ? __pfx____ratelimit+0x10/0x10
[ 304.771106][ T5931] ? __pfx_dump_stack_lvl+0x10/0x10
[ 304.771126][ T5931] ? __pfx__printk+0x10/0x10
[ 304.771159][ T5931] ? __pfx___might_resched+0x10/0x10
[ 304.771186][ T5931] ? fs_reclaim_acquire+0x7d/0x100
[ 304.771219][ T5931] should_fail_ex+0x414/0x560
[ 304.771249][ T5931] should_failslab+0xa8/0x100
[ 304.771278][ T5931] __kmalloc_noprof+0xcb/0x4f0
[ 304.771301][ T5931] ? tomoyo_init_log+0x1a6e/0x1f70
[ 304.771334][ T5931] tomoyo_init_log+0x1a6e/0x1f70
[ 304.771399][ T5931] ? __pfx_tomoyo_init_log+0x10/0x10
[ 304.771427][ T5931] ? tomoyo_profile+0x11/0x50
[ 304.771444][ T5931] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 304.771461][ T5931] tomoyo_supervisor+0x340/0x1480
[ 304.771480][ T5931] ? format_decode+0x5a3/0xe30
[ 304.771498][ T5931] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 304.771522][ T5931] ? snprintf+0xda/0x120
[ 304.771538][ T5931] ? __pfx_snprintf+0x10/0x10
[ 304.771553][ T5931] ? tomoyo_check_acl+0x386/0x400
[ 304.771571][ T5931] tomoyo_path_number_perm+0x438/0x5a0
[ 304.771585][ T5931] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 304.771600][ T5931] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 304.771618][ T5931] ? _raw_spin_lock_irq+0xae/0xf0
[ 304.771653][ T5931] ? __pfx_ptrace_notify+0x10/0x10
[ 304.771677][ T5931] security_file_ioctl+0xcb/0x2d0
[ 304.771693][ T5931] __se_sys_ioctl+0x47/0x170
[ 304.771709][ T5931] do_syscall_64+0xfa/0x3b0
[ 304.771726][ T5931] ? lockdep_hardirqs_on+0x9c/0x150
[ 304.771742][ T5931] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 304.771753][ T5931] ? clear_bhb_loop+0x60/0xb0
[ 304.771768][ T5931] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 304.771780][ T5931] RIP: 0033:0x7fea15a51869
[ 304.771791][ T5931] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 304.771802][ T5931] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 304.771817][ T5931] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5931] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5931, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5932 attached
, child_tidptr=0x555576720650) = 5932
[pid 5932] set_robust_list(0x555576720660, 24) = 0
[pid 5932] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5932] setpgid(0, 0) = 0
[ 304.771827][ T5931] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 304.771834][ T5931] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 304.771842][ T5931] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 304.771849][ T5931] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 304.771867][ T5931]
[pid 5932] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5932] write(3, "1000", 4) = 4
[pid 5932] close(3) = 0
[pid 5932] write(1, "executing program\n", 18executing program
) = 18
[pid 5932] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5932] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5932] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5932] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5932] write(6, "4", 1) = 1
[pid 5932] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5932] exit_group(0) = ?
[pid 5932] +++ exited with 0 +++
[ 305.130631][ T5932] FAULT_INJECTION: forcing a failure.
[ 305.130631][ T5932] name failslab, interval 1, probability 0, space 0, times 0
[ 305.143519][ T5932] CPU: 0 UID: 0 PID: 5932 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 305.143547][ T5932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 305.143559][ T5932] Call Trace:
[ 305.143568][ T5932]
[ 305.143576][ T5932] dump_stack_lvl+0x189/0x250
[ 305.143603][ T5932] ? __pfx____ratelimit+0x10/0x10
[ 305.143631][ T5932] ? __pfx_dump_stack_lvl+0x10/0x10
[ 305.143652][ T5932] ? __pfx__printk+0x10/0x10
[ 305.143685][ T5932] ? __pfx___might_resched+0x10/0x10
[ 305.143715][ T5932] ? fs_reclaim_acquire+0x7d/0x100
[ 305.143749][ T5932] should_fail_ex+0x414/0x560
[ 305.143777][ T5932] should_failslab+0xa8/0x100
[ 305.143807][ T5932] __kmalloc_noprof+0xcb/0x4f0
[ 305.143830][ T5932] ? tomoyo_init_log+0x1a6e/0x1f70
[ 305.143864][ T5932] tomoyo_init_log+0x1a6e/0x1f70
[ 305.143914][ T5932] ? __pfx_tomoyo_init_log+0x10/0x10
[ 305.143938][ T5932] ? tomoyo_profile+0x11/0x50
[ 305.143954][ T5932] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 305.143971][ T5932] tomoyo_supervisor+0x340/0x1480
[ 305.143989][ T5932] ? format_decode+0x5a3/0xe30
[ 305.144008][ T5932] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 305.144031][ T5932] ? snprintf+0xda/0x120
[ 305.144048][ T5932] ? __pfx_snprintf+0x10/0x10
[ 305.144063][ T5932] ? tomoyo_check_acl+0x386/0x400
[ 305.144081][ T5932] tomoyo_path_number_perm+0x438/0x5a0
[ 305.144094][ T5932] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 305.144109][ T5932] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 305.144127][ T5932] ? _raw_spin_lock_irq+0xae/0xf0
[ 305.144161][ T5932] ? __pfx_ptrace_notify+0x10/0x10
[ 305.144186][ T5932] security_file_ioctl+0xcb/0x2d0
[ 305.144204][ T5932] __se_sys_ioctl+0x47/0x170
[ 305.144220][ T5932] do_syscall_64+0xfa/0x3b0
[ 305.144236][ T5932] ? lockdep_hardirqs_on+0x9c/0x150
[ 305.144252][ T5932] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 305.144264][ T5932] ? clear_bhb_loop+0x60/0xb0
[ 305.144278][ T5932] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 305.144290][ T5932] RIP: 0033:0x7fea15a51869
[ 305.144302][ T5932] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 305.144312][ T5932] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5932, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5933 attached
, child_tidptr=0x555576720650) = 5933
[pid 5933] set_robust_list(0x555576720660, 24) = 0
[pid 5933] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5933] setpgid(0, 0) = 0
[pid 5933] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5933] write(3, "1000", 4) = 4
[ 305.144328][ T5932] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 305.144337][ T5932] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 305.144344][ T5932] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 305.144352][ T5932] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 305.144359][ T5932] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 305.144377][ T5932]
[pid 5933] close(3) = 0
executing program
[pid 5933] write(1, "executing program\n", 18) = 18
[pid 5933] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5933] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5933] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5933] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5933] write(6, "4", 1) = 1
[ 305.511612][ T5933] FAULT_INJECTION: forcing a failure.
[ 305.511612][ T5933] name failslab, interval 1, probability 0, space 0, times 0
[ 305.525175][ T5933] CPU: 1 UID: 0 PID: 5933 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 305.525205][ T5933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 305.525216][ T5933] Call Trace:
[ 305.525225][ T5933]
[ 305.525233][ T5933] dump_stack_lvl+0x189/0x250
[ 305.525261][ T5933] ? __pfx____ratelimit+0x10/0x10
[ 305.525290][ T5933] ? __pfx_dump_stack_lvl+0x10/0x10
[ 305.525313][ T5933] ? __pfx__printk+0x10/0x10
[ 305.525346][ T5933] ? __pfx___might_resched+0x10/0x10
[ 305.525374][ T5933] ? fs_reclaim_acquire+0x7d/0x100
[ 305.525408][ T5933] should_fail_ex+0x414/0x560
[ 305.525435][ T5933] should_failslab+0xa8/0x100
[ 305.525474][ T5933] __kmalloc_noprof+0xcb/0x4f0
[ 305.525496][ T5933] ? tomoyo_init_log+0x1a6e/0x1f70
[ 305.525524][ T5933] tomoyo_init_log+0x1a6e/0x1f70
[ 305.525555][ T5933] ? __pfx_tomoyo_init_log+0x10/0x10
[ 305.525571][ T5933] ? tomoyo_profile+0x11/0x50
[ 305.525588][ T5933] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 305.525605][ T5933] tomoyo_supervisor+0x340/0x1480
[ 305.525623][ T5933] ? format_decode+0x5a3/0xe30
[ 305.525642][ T5933] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 305.525665][ T5933] ? snprintf+0xda/0x120
[ 305.525682][ T5933] ? __pfx_snprintf+0x10/0x10
[ 305.525696][ T5933] ? tomoyo_check_acl+0x386/0x400
[ 305.525714][ T5933] tomoyo_path_number_perm+0x438/0x5a0
[ 305.525728][ T5933] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 305.525743][ T5933] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 305.525762][ T5933] ? _raw_spin_lock_irq+0xae/0xf0
[ 305.525796][ T5933] ? __pfx_ptrace_notify+0x10/0x10
[ 305.525821][ T5933] security_file_ioctl+0xcb/0x2d0
[ 305.525836][ T5933] __se_sys_ioctl+0x47/0x170
[ 305.525852][ T5933] do_syscall_64+0xfa/0x3b0
[ 305.525868][ T5933] ? lockdep_hardirqs_on+0x9c/0x150
[ 305.525884][ T5933] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 305.525896][ T5933] ? clear_bhb_loop+0x60/0xb0
[ 305.525910][ T5933] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 305.525922][ T5933] RIP: 0033:0x7fea15a51869
[ 305.525934][ T5933] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 305.525945][ T5933] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 305.525960][ T5933] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5933] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5933] exit_group(0) = ?
[pid 5933] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5933, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5934 attached
, child_tidptr=0x555576720650) = 5934
[pid 5934] set_robust_list(0x555576720660, 24) = 0
[pid 5934] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 305.525969][ T5933] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 305.525977][ T5933] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 305.525984][ T5933] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 305.525991][ T5933] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 305.526009][ T5933]
[pid 5934] setpgid(0, 0) = 0
[pid 5934] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5934] write(3, "1000", 4) = 4
[pid 5934] close(3) = 0
[pid 5934] write(1, "executing program\n", 18) = 18
executing program
[pid 5934] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5934] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5934] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5934] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5934] write(6, "4", 1) = 1
[pid 5934] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5934] exit_group(0) = ?
[pid 5934] +++ exited with 0 +++
[ 305.924546][ T5934] FAULT_INJECTION: forcing a failure.
[ 305.924546][ T5934] name failslab, interval 1, probability 0, space 0, times 0
[ 305.937726][ T5934] CPU: 0 UID: 0 PID: 5934 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 305.937746][ T5934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 305.937753][ T5934] Call Trace:
[ 305.937759][ T5934]
[ 305.937763][ T5934] dump_stack_lvl+0x189/0x250
[ 305.937783][ T5934] ? __pfx____ratelimit+0x10/0x10
[ 305.937801][ T5934] ? __pfx_dump_stack_lvl+0x10/0x10
[ 305.937814][ T5934] ? __pfx__printk+0x10/0x10
[ 305.937833][ T5934] ? __pfx___might_resched+0x10/0x10
[ 305.937851][ T5934] ? fs_reclaim_acquire+0x7d/0x100
[ 305.937870][ T5934] should_fail_ex+0x414/0x560
[ 305.937887][ T5934] should_failslab+0xa8/0x100
[ 305.937904][ T5934] __kmalloc_noprof+0xcb/0x4f0
[ 305.937918][ T5934] ? tomoyo_init_log+0x1a6e/0x1f70
[ 305.937938][ T5934] tomoyo_init_log+0x1a6e/0x1f70
[ 305.937968][ T5934] ? __pfx_tomoyo_init_log+0x10/0x10
[ 305.937985][ T5934] ? tomoyo_profile+0x11/0x50
[ 305.938000][ T5934] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 305.938018][ T5934] tomoyo_supervisor+0x340/0x1480
[ 305.938036][ T5934] ? format_decode+0x5a3/0xe30
[ 305.938054][ T5934] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 305.938078][ T5934] ? snprintf+0xda/0x120
[ 305.938094][ T5934] ? __pfx_snprintf+0x10/0x10
[ 305.938128][ T5934] ? tomoyo_check_acl+0x386/0x400
[ 305.938146][ T5934] tomoyo_path_number_perm+0x438/0x5a0
[ 305.938160][ T5934] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 305.938190][ T5934] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 305.938209][ T5934] ? _raw_spin_lock_irq+0xae/0xf0
[ 305.938244][ T5934] ? __pfx_ptrace_notify+0x10/0x10
[ 305.938268][ T5934] security_file_ioctl+0xcb/0x2d0
[ 305.938283][ T5934] __se_sys_ioctl+0x47/0x170
[ 305.938298][ T5934] do_syscall_64+0xfa/0x3b0
[ 305.938315][ T5934] ? lockdep_hardirqs_on+0x9c/0x150
[ 305.938330][ T5934] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 305.938342][ T5934] ? clear_bhb_loop+0x60/0xb0
[ 305.938357][ T5934] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 305.938368][ T5934] RIP: 0033:0x7fea15a51869
[ 305.938380][ T5934] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 305.938390][ T5934] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5934, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5935 attached
, child_tidptr=0x555576720650) = 5935
[pid 5935] set_robust_list(0x555576720660, 24) = 0
[pid 5935] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5935] setpgid(0, 0) = 0
[pid 5935] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5935] write(3, "1000", 4) = 4
[pid 5935] close(3) = 0
[pid 5935] write(1, "executing program\n", 18executing program
) = 18
[pid 5935] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5935] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5935] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5935] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5935] write(6, "4", 1) = 1
[ 305.938405][ T5934] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 305.938414][ T5934] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 305.938421][ T5934] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 305.938429][ T5934] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 305.938436][ T5934] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 305.938454][ T5934]
[pid 5935] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 306.236841][ T5935] FAULT_INJECTION: forcing a failure.
[ 306.236841][ T5935] name failslab, interval 1, probability 0, space 0, times 0
[ 306.250660][ T5935] CPU: 0 UID: 0 PID: 5935 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 306.250680][ T5935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 306.250688][ T5935] Call Trace:
[ 306.250694][ T5935]
[ 306.250699][ T5935] dump_stack_lvl+0x189/0x250
[ 306.250719][ T5935] ? __pfx____ratelimit+0x10/0x10
[ 306.250736][ T5935] ? __pfx_dump_stack_lvl+0x10/0x10
[ 306.250750][ T5935] ? __pfx__printk+0x10/0x10
[ 306.250769][ T5935] ? __pfx___might_resched+0x10/0x10
[ 306.250786][ T5935] ? fs_reclaim_acquire+0x7d/0x100
[ 306.250806][ T5935] should_fail_ex+0x414/0x560
[ 306.250824][ T5935] should_failslab+0xa8/0x100
[ 306.250841][ T5935] __kmalloc_noprof+0xcb/0x4f0
[ 306.250855][ T5935] ? tomoyo_init_log+0x1a6e/0x1f70
[ 306.250876][ T5935] tomoyo_init_log+0x1a6e/0x1f70
[ 306.250906][ T5935] ? __pfx_tomoyo_init_log+0x10/0x10
[ 306.250922][ T5935] ? tomoyo_profile+0x11/0x50
[ 306.250938][ T5935] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 306.250955][ T5935] tomoyo_supervisor+0x340/0x1480
[ 306.250974][ T5935] ? format_decode+0x5a3/0xe30
[ 306.250992][ T5935] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 306.251015][ T5935] ? snprintf+0xda/0x120
[ 306.251032][ T5935] ? __pfx_snprintf+0x10/0x10
[ 306.251047][ T5935] ? tomoyo_check_acl+0x386/0x400
[ 306.251065][ T5935] tomoyo_path_number_perm+0x438/0x5a0
[ 306.251078][ T5935] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 306.251093][ T5935] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 306.251112][ T5935] ? _raw_spin_lock_irq+0xae/0xf0
[ 306.251155][ T5935] ? __pfx_ptrace_notify+0x10/0x10
[ 306.251180][ T5935] security_file_ioctl+0xcb/0x2d0
[ 306.251195][ T5935] __se_sys_ioctl+0x47/0x170
[ 306.251210][ T5935] do_syscall_64+0xfa/0x3b0
[ 306.251226][ T5935] ? lockdep_hardirqs_on+0x9c/0x150
[ 306.251242][ T5935] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 306.251254][ T5935] ? clear_bhb_loop+0x60/0xb0
[ 306.251269][ T5935] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 306.251280][ T5935] RIP: 0033:0x7fea15a51869
[ 306.251293][ T5935] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 306.251303][ T5935] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 306.251318][ T5935] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5935] exit_group(0) = ?
[pid 5935] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5935, si_uid=0, si_status=0, si_utime=0, si_stime=25 /* 0.25 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5936 attached
, child_tidptr=0x555576720650) = 5936
[pid 5936] set_robust_list(0x555576720660, 24) = 0
[pid 5936] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5936] setpgid(0, 0) = 0
[pid 5936] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5936] write(3, "1000", 4) = 4
[pid 5936] close(3) = 0
[pid 5936] write(1, "executing program\n", 18executing program
) = 18
[pid 5936] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[ 306.251327][ T5935] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 306.251335][ T5935] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 306.251342][ T5935] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 306.251349][ T5935] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 306.251368][ T5935]
[pid 5936] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5936] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5936] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5936] write(6, "4", 1) = 1
[pid 5936] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5936] exit_group(0) = ?
[pid 5936] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5936, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
[ 306.592775][ T5936] FAULT_INJECTION: forcing a failure.
[ 306.592775][ T5936] name failslab, interval 1, probability 0, space 0, times 0
[ 306.605998][ T5936] CPU: 0 UID: 0 PID: 5936 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 306.606027][ T5936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 306.606039][ T5936] Call Trace:
[ 306.606047][ T5936]
[ 306.606055][ T5936] dump_stack_lvl+0x189/0x250
[ 306.606083][ T5936] ? __pfx____ratelimit+0x10/0x10
[ 306.606104][ T5936] ? __pfx_dump_stack_lvl+0x10/0x10
[ 306.606117][ T5936] ? __pfx__printk+0x10/0x10
[ 306.606137][ T5936] ? __pfx___might_resched+0x10/0x10
[ 306.606161][ T5936] ? fs_reclaim_acquire+0x7d/0x100
[ 306.606181][ T5936] should_fail_ex+0x414/0x560
[ 306.606199][ T5936] should_failslab+0xa8/0x100
[ 306.606215][ T5936] __kmalloc_noprof+0xcb/0x4f0
[ 306.606229][ T5936] ? tomoyo_init_log+0x1a6e/0x1f70
[ 306.606249][ T5936] tomoyo_init_log+0x1a6e/0x1f70
[ 306.606280][ T5936] ? __pfx_tomoyo_init_log+0x10/0x10
[ 306.606297][ T5936] ? tomoyo_profile+0x11/0x50
[ 306.606313][ T5936] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 306.606330][ T5936] tomoyo_supervisor+0x340/0x1480
[ 306.606348][ T5936] ? format_decode+0x5a3/0xe30
[ 306.606367][ T5936] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 306.606399][ T5936] ? snprintf+0xda/0x120
[ 306.606417][ T5936] ? __pfx_snprintf+0x10/0x10
[ 306.606431][ T5936] ? tomoyo_check_acl+0x386/0x400
[ 306.606450][ T5936] tomoyo_path_number_perm+0x438/0x5a0
[ 306.606463][ T5936] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 306.606478][ T5936] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 306.606497][ T5936] ? _raw_spin_lock_irq+0xae/0xf0
[ 306.606533][ T5936] ? __pfx_ptrace_notify+0x10/0x10
[ 306.606558][ T5936] security_file_ioctl+0xcb/0x2d0
[ 306.606573][ T5936] __se_sys_ioctl+0x47/0x170
[ 306.606588][ T5936] do_syscall_64+0xfa/0x3b0
[ 306.606605][ T5936] ? lockdep_hardirqs_on+0x9c/0x150
[ 306.606620][ T5936] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 306.606632][ T5936] ? clear_bhb_loop+0x60/0xb0
[ 306.606647][ T5936] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 306.606659][ T5936] RIP: 0033:0x7fea15a51869
[ 306.606671][ T5936] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 306.606681][ T5936] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576720650) = 5937
./strace-static-x86_64: Process 5937 attached
[pid 5937] set_robust_list(0x555576720660, 24) = 0
[pid 5937] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5937] setpgid(0, 0) = 0
[pid 5937] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5937] write(3, "1000", 4) = 4
[pid 5937] close(3) = 0
executing program
[pid 5937] write(1, "executing program\n", 18) = 18
[pid 5937] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5937] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5937] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5937] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5937] write(6, "4", 1) = 1
[ 306.606696][ T5936] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 306.606706][ T5936] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 306.606714][ T5936] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 306.606721][ T5936] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 306.606729][ T5936] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 306.606747][ T5936]
[ 306.919601][ T5937] FAULT_INJECTION: forcing a failure.
[ 306.919601][ T5937] name failslab, interval 1, probability 0, space 0, times 0
[ 306.932879][ T5937] CPU: 1 UID: 0 PID: 5937 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 306.932900][ T5937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 306.932908][ T5937] Call Trace:
[ 306.932913][ T5937]
[ 306.932918][ T5937] dump_stack_lvl+0x189/0x250
[ 306.932937][ T5937] ? __pfx____ratelimit+0x10/0x10
[ 306.932955][ T5937] ? __pfx_dump_stack_lvl+0x10/0x10
[ 306.932968][ T5937] ? __pfx__printk+0x10/0x10
[ 306.932987][ T5937] ? __pfx___might_resched+0x10/0x10
[ 306.933004][ T5937] ? fs_reclaim_acquire+0x7d/0x100
[ 306.933024][ T5937] should_fail_ex+0x414/0x560
[ 306.933042][ T5937] should_failslab+0xa8/0x100
[ 306.933059][ T5937] __kmalloc_noprof+0xcb/0x4f0
[ 306.933073][ T5937] ? tomoyo_init_log+0x1a6e/0x1f70
[ 306.933093][ T5937] tomoyo_init_log+0x1a6e/0x1f70
[ 306.933148][ T5937] ? __pfx_tomoyo_init_log+0x10/0x10
[ 306.933176][ T5937] ? tomoyo_profile+0x11/0x50
[ 306.933201][ T5937] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 306.933229][ T5937] tomoyo_supervisor+0x340/0x1480
[ 306.933259][ T5937] ? format_decode+0x5a3/0xe30
[ 306.933290][ T5937] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 306.933318][ T5937] ? snprintf+0xda/0x120
[ 306.933335][ T5937] ? __pfx_snprintf+0x10/0x10
[ 306.933350][ T5937] ? tomoyo_check_acl+0x386/0x400
[ 306.933372][ T5937] tomoyo_path_number_perm+0x438/0x5a0
[ 306.933386][ T5937] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 306.933401][ T5937] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 306.933419][ T5937] ? _raw_spin_lock_irq+0xae/0xf0
[ 306.933455][ T5937] ? __pfx_ptrace_notify+0x10/0x10
[ 306.933480][ T5937] security_file_ioctl+0xcb/0x2d0
[ 306.933495][ T5937] __se_sys_ioctl+0x47/0x170
[ 306.933510][ T5937] do_syscall_64+0xfa/0x3b0
[ 306.933526][ T5937] ? lockdep_hardirqs_on+0x9c/0x150
[ 306.933542][ T5937] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 306.933554][ T5937] ? clear_bhb_loop+0x60/0xb0
[ 306.933569][ T5937] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 306.933580][ T5937] RIP: 0033:0x7fea15a51869
[ 306.933593][ T5937] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 306.933604][ T5937] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 306.933619][ T5937] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5937] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5937] exit_group(0) = ?
[pid 5937] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5937, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5938 attached
, child_tidptr=0x555576720650) = 5938
[pid 5938] set_robust_list(0x555576720660, 24) = 0
[pid 5938] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5938] setpgid(0, 0) = 0
[pid 5938] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5938] write(3, "1000", 4) = 4
[pid 5938] close(3) = 0
[pid 5938] write(1, "executing program\n", 18executing program
) = 18
[pid 5938] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5938] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5938] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5938] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5938] write(6, "4", 1) = 1
[ 306.933629][ T5937] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 306.933636][ T5937] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 306.933644][ T5937] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 306.933651][ T5937] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 306.933669][ T5937]
[pid 5938] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5938] exit_group(0) = ?
[ 307.244744][ T5938] FAULT_INJECTION: forcing a failure.
[ 307.244744][ T5938] name failslab, interval 1, probability 0, space 0, times 0
[ 307.258511][ T5938] CPU: 0 UID: 0 PID: 5938 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 307.258533][ T5938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 307.258540][ T5938] Call Trace:
[ 307.258545][ T5938]
[ 307.258550][ T5938] dump_stack_lvl+0x189/0x250
[ 307.258570][ T5938] ? __pfx____ratelimit+0x10/0x10
[ 307.258588][ T5938] ? __pfx_dump_stack_lvl+0x10/0x10
[ 307.258601][ T5938] ? __pfx__printk+0x10/0x10
[ 307.258621][ T5938] ? __pfx___might_resched+0x10/0x10
[ 307.258638][ T5938] ? fs_reclaim_acquire+0x7d/0x100
[ 307.258658][ T5938] should_fail_ex+0x414/0x560
[ 307.258677][ T5938] should_failslab+0xa8/0x100
[ 307.258693][ T5938] __kmalloc_noprof+0xcb/0x4f0
[ 307.258707][ T5938] ? tomoyo_init_log+0x1a6e/0x1f70
[ 307.258728][ T5938] tomoyo_init_log+0x1a6e/0x1f70
[ 307.258758][ T5938] ? __pfx_tomoyo_init_log+0x10/0x10
[ 307.258774][ T5938] ? tomoyo_profile+0x11/0x50
[ 307.258790][ T5938] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 307.258808][ T5938] tomoyo_supervisor+0x340/0x1480
[ 307.258828][ T5938] ? format_decode+0x5a3/0xe30
[ 307.258851][ T5938] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 307.258879][ T5938] ? snprintf+0xda/0x120
[ 307.258895][ T5938] ? __pfx_snprintf+0x10/0x10
[ 307.258910][ T5938] ? tomoyo_check_acl+0x386/0x400
[ 307.258929][ T5938] tomoyo_path_number_perm+0x438/0x5a0
[ 307.258942][ T5938] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 307.258957][ T5938] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 307.258976][ T5938] ? _raw_spin_lock_irq+0xae/0xf0
[ 307.259011][ T5938] ? __pfx_ptrace_notify+0x10/0x10
[ 307.259035][ T5938] security_file_ioctl+0xcb/0x2d0
[ 307.259050][ T5938] __se_sys_ioctl+0x47/0x170
[ 307.259066][ T5938] do_syscall_64+0xfa/0x3b0
[ 307.259082][ T5938] ? lockdep_hardirqs_on+0x9c/0x150
[ 307.259098][ T5938] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 307.259110][ T5938] ? clear_bhb_loop+0x60/0xb0
[ 307.259125][ T5938] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 307.259136][ T5938] RIP: 0033:0x7fea15a51869
[ 307.259148][ T5938] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 307.259159][ T5938] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 307.259182][ T5938] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5938] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5938, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5939 attached
, child_tidptr=0x555576720650) = 5939
[pid 5939] set_robust_list(0x555576720660, 24) = 0
[pid 5939] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5939] setpgid(0, 0) = 0
[pid 5939] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5939] write(3, "1000", 4) = 4
[ 307.259191][ T5938] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 307.259199][ T5938] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 307.259206][ T5938] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 307.259214][ T5938] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 307.259232][ T5938]
[pid 5939] close(3) = 0
executing program
[pid 5939] write(1, "executing program\n", 18) = 18
[pid 5939] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5939] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5939] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5939] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5939] write(6, "4", 1) = 1
[ 307.616291][ T5939] FAULT_INJECTION: forcing a failure.
[ 307.616291][ T5939] name failslab, interval 1, probability 0, space 0, times 0
[ 307.629274][ T5939] CPU: 0 UID: 0 PID: 5939 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 307.629303][ T5939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 307.629315][ T5939] Call Trace:
[ 307.629323][ T5939]
[ 307.629332][ T5939] dump_stack_lvl+0x189/0x250
[ 307.629361][ T5939] ? __pfx____ratelimit+0x10/0x10
[ 307.629389][ T5939] ? __pfx_dump_stack_lvl+0x10/0x10
[ 307.629411][ T5939] ? __pfx__printk+0x10/0x10
[ 307.629443][ T5939] ? __pfx___might_resched+0x10/0x10
[ 307.629472][ T5939] ? fs_reclaim_acquire+0x7d/0x100
[ 307.629505][ T5939] should_fail_ex+0x414/0x560
[ 307.629534][ T5939] should_failslab+0xa8/0x100
[ 307.629561][ T5939] __kmalloc_noprof+0xcb/0x4f0
[ 307.629577][ T5939] ? tomoyo_init_log+0x1a6e/0x1f70
[ 307.629598][ T5939] tomoyo_init_log+0x1a6e/0x1f70
[ 307.629628][ T5939] ? __pfx_tomoyo_init_log+0x10/0x10
[ 307.629645][ T5939] ? tomoyo_profile+0x11/0x50
[ 307.629661][ T5939] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 307.629678][ T5939] tomoyo_supervisor+0x340/0x1480
[ 307.629697][ T5939] ? format_decode+0x5a3/0xe30
[ 307.629716][ T5939] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 307.629740][ T5939] ? snprintf+0xda/0x120
[ 307.629756][ T5939] ? __pfx_snprintf+0x10/0x10
[ 307.629771][ T5939] ? tomoyo_check_acl+0x386/0x400
[ 307.629789][ T5939] tomoyo_path_number_perm+0x438/0x5a0
[ 307.629803][ T5939] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 307.629818][ T5939] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 307.629837][ T5939] ? _raw_spin_lock_irq+0xae/0xf0
[ 307.629873][ T5939] ? __pfx_ptrace_notify+0x10/0x10
[ 307.629898][ T5939] security_file_ioctl+0xcb/0x2d0
[ 307.629913][ T5939] __se_sys_ioctl+0x47/0x170
[ 307.629928][ T5939] do_syscall_64+0xfa/0x3b0
[ 307.629944][ T5939] ? lockdep_hardirqs_on+0x9c/0x150
[ 307.629960][ T5939] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 307.629972][ T5939] ? clear_bhb_loop+0x60/0xb0
[ 307.629987][ T5939] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 307.629998][ T5939] RIP: 0033:0x7fea15a51869
[ 307.630011][ T5939] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 307.630022][ T5939] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5939] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5939] exit_group(0) = ?
[pid 5939] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5939, si_uid=0, si_status=0, si_utime=0, si_stime=28 /* 0.28 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5940 attached
, child_tidptr=0x555576720650) = 5940
[pid 5940] set_robust_list(0x555576720660, 24) = 0
[pid 5940] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5940] setpgid(0, 0) = 0
[pid 5940] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5940] write(3, "1000", 4) = 4
[ 307.630037][ T5939] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 307.630046][ T5939] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 307.630054][ T5939] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 307.630061][ T5939] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 307.630069][ T5939] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 307.630087][ T5939]
[pid 5940] close(3) = 0
executing program
[pid 5940] write(1, "executing program\n", 18) = 18
[pid 5940] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5940] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5940] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5940] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5940] write(6, "4", 1) = 1
[pid 5940] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5940] exit_group(0) = ?
[pid 5940] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5940, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
[ 308.000577][ T5940] FAULT_INJECTION: forcing a failure.
[ 308.000577][ T5940] name failslab, interval 1, probability 0, space 0, times 0
[ 308.013709][ T5940] CPU: 1 UID: 0 PID: 5940 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 308.013737][ T5940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 308.013749][ T5940] Call Trace:
[ 308.013758][ T5940]
[ 308.013766][ T5940] dump_stack_lvl+0x189/0x250
[ 308.013793][ T5940] ? __pfx____ratelimit+0x10/0x10
[ 308.013823][ T5940] ? __pfx_dump_stack_lvl+0x10/0x10
[ 308.013844][ T5940] ? __pfx__printk+0x10/0x10
[ 308.013878][ T5940] ? __pfx___might_resched+0x10/0x10
[ 308.013906][ T5940] ? fs_reclaim_acquire+0x7d/0x100
[ 308.013930][ T5940] should_fail_ex+0x414/0x560
[ 308.013947][ T5940] should_failslab+0xa8/0x100
[ 308.013964][ T5940] __kmalloc_noprof+0xcb/0x4f0
[ 308.013979][ T5940] ? tomoyo_init_log+0x1a6e/0x1f70
[ 308.013999][ T5940] tomoyo_init_log+0x1a6e/0x1f70
[ 308.014029][ T5940] ? __pfx_tomoyo_init_log+0x10/0x10
[ 308.014045][ T5940] ? tomoyo_profile+0x11/0x50
[ 308.014061][ T5940] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 308.014079][ T5940] tomoyo_supervisor+0x340/0x1480
[ 308.014097][ T5940] ? format_decode+0x5a3/0xe30
[ 308.014115][ T5940] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 308.014141][ T5940] ? snprintf+0xda/0x120
[ 308.014157][ T5940] ? __pfx_snprintf+0x10/0x10
[ 308.014172][ T5940] ? tomoyo_check_acl+0x386/0x400
[ 308.014190][ T5940] tomoyo_path_number_perm+0x438/0x5a0
[ 308.014204][ T5940] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 308.014218][ T5940] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 308.014237][ T5940] ? _raw_spin_lock_irq+0xae/0xf0
[ 308.014272][ T5940] ? __pfx_ptrace_notify+0x10/0x10
[ 308.014296][ T5940] security_file_ioctl+0xcb/0x2d0
[ 308.014311][ T5940] __se_sys_ioctl+0x47/0x170
[ 308.014326][ T5940] do_syscall_64+0xfa/0x3b0
[ 308.014341][ T5940] ? lockdep_hardirqs_on+0x9c/0x150
[ 308.014357][ T5940] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 308.014369][ T5940] ? clear_bhb_loop+0x60/0xb0
[ 308.014392][ T5940] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 308.014403][ T5940] RIP: 0033:0x7fea15a51869
[ 308.014415][ T5940] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 308.014426][ T5940] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5941 attached
, child_tidptr=0x555576720650) = 5941
[pid 5941] set_robust_list(0x555576720660, 24) = 0
[pid 5941] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5941] setpgid(0, 0) = 0
[pid 5941] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[ 308.014441][ T5940] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 308.014450][ T5940] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 308.014457][ T5940] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 308.014465][ T5940] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 308.014472][ T5940] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 308.014490][ T5940]
[pid 5941] write(3, "1000", 4) = 4
[pid 5941] close(3) = 0
[pid 5941] write(1, "executing program\n", 18executing program
) = 18
[pid 5941] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5941] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5941] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5941] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5941] write(6, "4", 1) = 1
[ 308.389342][ T5941] FAULT_INJECTION: forcing a failure.
[ 308.389342][ T5941] name failslab, interval 1, probability 0, space 0, times 0
[ 308.402173][ T5941] CPU: 0 UID: 0 PID: 5941 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 308.402200][ T5941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 308.402212][ T5941] Call Trace:
[ 308.402221][ T5941]
[ 308.402229][ T5941] dump_stack_lvl+0x189/0x250
[ 308.402258][ T5941] ? __pfx____ratelimit+0x10/0x10
[ 308.402285][ T5941] ? __pfx_dump_stack_lvl+0x10/0x10
[ 308.402307][ T5941] ? __pfx__printk+0x10/0x10
[ 308.402341][ T5941] ? __pfx___might_resched+0x10/0x10
[ 308.402382][ T5941] ? fs_reclaim_acquire+0x7d/0x100
[ 308.402416][ T5941] should_fail_ex+0x414/0x560
[ 308.402445][ T5941] should_failslab+0xa8/0x100
[ 308.402474][ T5941] __kmalloc_noprof+0xcb/0x4f0
[ 308.402497][ T5941] ? tomoyo_init_log+0x1a6e/0x1f70
[ 308.402527][ T5941] tomoyo_init_log+0x1a6e/0x1f70
[ 308.402561][ T5941] ? __pfx_tomoyo_init_log+0x10/0x10
[ 308.402578][ T5941] ? tomoyo_profile+0x11/0x50
[ 308.402593][ T5941] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 308.402611][ T5941] tomoyo_supervisor+0x340/0x1480
[ 308.402629][ T5941] ? format_decode+0x5a3/0xe30
[ 308.402648][ T5941] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 308.402671][ T5941] ? snprintf+0xda/0x120
[ 308.402688][ T5941] ? __pfx_snprintf+0x10/0x10
[ 308.402703][ T5941] ? tomoyo_check_acl+0x386/0x400
[ 308.402720][ T5941] tomoyo_path_number_perm+0x438/0x5a0
[ 308.402734][ T5941] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 308.402749][ T5941] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 308.402768][ T5941] ? _raw_spin_lock_irq+0xae/0xf0
[ 308.402802][ T5941] ? __pfx_ptrace_notify+0x10/0x10
[ 308.402826][ T5941] security_file_ioctl+0xcb/0x2d0
[ 308.402841][ T5941] __se_sys_ioctl+0x47/0x170
[ 308.402857][ T5941] do_syscall_64+0xfa/0x3b0
[ 308.402873][ T5941] ? lockdep_hardirqs_on+0x9c/0x150
[ 308.402889][ T5941] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 308.402901][ T5941] ? clear_bhb_loop+0x60/0xb0
[ 308.402916][ T5941] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 308.402927][ T5941] RIP: 0033:0x7fea15a51869
[ 308.402939][ T5941] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 308.402950][ T5941] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 308.402965][ T5941] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5941] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5941] exit_group(0) = ?
[pid 5941] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5941, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5942 attached
, child_tidptr=0x555576720650) = 5942
[pid 5942] set_robust_list(0x555576720660, 24) = 0
[pid 5942] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5942] setpgid(0, 0) = 0
[ 308.402974][ T5941] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 308.402982][ T5941] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 308.402989][ T5941] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 308.402997][ T5941] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 308.403014][ T5941]
[pid 5942] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5942] write(3, "1000", 4) = 4
[pid 5942] close(3) = 0
executing program
[pid 5942] write(1, "executing program\n", 18) = 18
[pid 5942] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5942] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5942] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5942] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5942] write(6, "4", 1) = 1
[ 308.790123][ T5942] FAULT_INJECTION: forcing a failure.
[ 308.790123][ T5942] name failslab, interval 1, probability 0, space 0, times 0
[ 308.803537][ T5942] CPU: 0 UID: 0 PID: 5942 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 308.803567][ T5942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 308.803579][ T5942] Call Trace:
[ 308.803588][ T5942]
[ 308.803597][ T5942] dump_stack_lvl+0x189/0x250
[ 308.803627][ T5942] ? __pfx____ratelimit+0x10/0x10
[ 308.803654][ T5942] ? __pfx_dump_stack_lvl+0x10/0x10
[ 308.803677][ T5942] ? __pfx__printk+0x10/0x10
[ 308.803711][ T5942] ? __pfx___might_resched+0x10/0x10
[ 308.803739][ T5942] ? fs_reclaim_acquire+0x7d/0x100
[ 308.803774][ T5942] should_fail_ex+0x414/0x560
[ 308.803803][ T5942] should_failslab+0xa8/0x100
[ 308.803830][ T5942] __kmalloc_noprof+0xcb/0x4f0
[ 308.803851][ T5942] ? tomoyo_init_log+0x1a6e/0x1f70
[ 308.803881][ T5942] tomoyo_init_log+0x1a6e/0x1f70
[ 308.803918][ T5942] ? __pfx_tomoyo_init_log+0x10/0x10
[ 308.803935][ T5942] ? tomoyo_profile+0x11/0x50
[ 308.803951][ T5942] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 308.803970][ T5942] tomoyo_supervisor+0x340/0x1480
[ 308.803988][ T5942] ? format_decode+0x5a3/0xe30
[ 308.804007][ T5942] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 308.804031][ T5942] ? snprintf+0xda/0x120
[ 308.804049][ T5942] ? __pfx_snprintf+0x10/0x10
[ 308.804063][ T5942] ? tomoyo_check_acl+0x386/0x400
[ 308.804082][ T5942] tomoyo_path_number_perm+0x438/0x5a0
[ 308.804098][ T5942] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 308.804115][ T5942] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 308.804135][ T5942] ? _raw_spin_lock_irq+0xae/0xf0
[ 308.804174][ T5942] ? __pfx_ptrace_notify+0x10/0x10
[ 308.804199][ T5942] security_file_ioctl+0xcb/0x2d0
[ 308.804224][ T5942] __se_sys_ioctl+0x47/0x170
[ 308.804239][ T5942] do_syscall_64+0xfa/0x3b0
[ 308.804256][ T5942] ? lockdep_hardirqs_on+0x9c/0x150
[ 308.804272][ T5942] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 308.804284][ T5942] ? clear_bhb_loop+0x60/0xb0
[ 308.804298][ T5942] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 308.804310][ T5942] RIP: 0033:0x7fea15a51869
[ 308.804322][ T5942] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 308.804333][ T5942] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 308.804349][ T5942] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5942] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5942] exit_group(0) = ?
[pid 5942] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5942, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5943 attached
, child_tidptr=0x555576720650) = 5943
[pid 5943] set_robust_list(0x555576720660, 24) = 0
[pid 5943] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5943] setpgid(0, 0) = 0
[ 308.804358][ T5942] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 308.804366][ T5942] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 308.804374][ T5942] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 308.804381][ T5942] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 308.804399][ T5942]
[pid 5943] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5943] write(3, "1000", 4) = 4
[pid 5943] close(3) = 0
executing program
[pid 5943] write(1, "executing program\n", 18) = 18
[pid 5943] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5943] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5943] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5943] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5943] write(6, "4", 1) = 1
[pid 5943] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5943] exit_group(0) = ?
[ 309.155808][ T5943] FAULT_INJECTION: forcing a failure.
[ 309.155808][ T5943] name failslab, interval 1, probability 0, space 0, times 0
[ 309.168722][ T5943] CPU: 1 UID: 0 PID: 5943 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 309.168751][ T5943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 309.168763][ T5943] Call Trace:
[ 309.168772][ T5943]
[ 309.168780][ T5943] dump_stack_lvl+0x189/0x250
[ 309.168808][ T5943] ? __pfx____ratelimit+0x10/0x10
[ 309.168835][ T5943] ? __pfx_dump_stack_lvl+0x10/0x10
[ 309.168858][ T5943] ? __pfx__printk+0x10/0x10
[ 309.168892][ T5943] ? __pfx___might_resched+0x10/0x10
[ 309.168921][ T5943] ? fs_reclaim_acquire+0x7d/0x100
[ 309.168956][ T5943] should_fail_ex+0x414/0x560
[ 309.168986][ T5943] should_failslab+0xa8/0x100
[ 309.169014][ T5943] __kmalloc_cache_noprof+0x70/0x3d0
[ 309.169037][ T5943] ? tomoyo_init_log+0x183/0x1f70
[ 309.169069][ T5943] tomoyo_init_log+0x183/0x1f70
[ 309.169091][ T5943] ? kasan_save_track+0x4f/0x80
[ 309.169103][ T5943] ? kasan_save_track+0x3e/0x80
[ 309.169115][ T5943] ? __kasan_slab_free+0x5b/0x80
[ 309.169130][ T5943] ? format_decode+0xd9/0xe30
[ 309.169144][ T5943] ? string+0x279/0x2b0
[ 309.169159][ T5943] ? __pfx_tomoyo_init_log+0x10/0x10
[ 309.169175][ T5943] ? tomoyo_profile+0x11/0x50
[ 309.169199][ T5943] ? tomoyo_profile+0x11/0x50
[ 309.169215][ T5943] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 309.169232][ T5943] tomoyo_supervisor+0x340/0x1480
[ 309.169251][ T5943] ? format_decode+0x5a3/0xe30
[ 309.169269][ T5943] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 309.169292][ T5943] ? snprintf+0xda/0x120
[ 309.169309][ T5943] ? __pfx_snprintf+0x10/0x10
[ 309.169324][ T5943] ? tomoyo_check_acl+0x386/0x400
[ 309.169342][ T5943] tomoyo_path_number_perm+0x438/0x5a0
[ 309.169356][ T5943] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 309.169370][ T5943] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 309.169389][ T5943] ? _raw_spin_lock_irq+0xae/0xf0
[ 309.169424][ T5943] ? __pfx_ptrace_notify+0x10/0x10
[ 309.169448][ T5943] security_file_ioctl+0xcb/0x2d0
[ 309.169463][ T5943] __se_sys_ioctl+0x47/0x170
[ 309.169478][ T5943] do_syscall_64+0xfa/0x3b0
[ 309.169495][ T5943] ? lockdep_hardirqs_on+0x9c/0x150
[ 309.169511][ T5943] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 309.169522][ T5943] ? clear_bhb_loop+0x60/0xb0
[ 309.169537][ T5943] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 309.169549][ T5943] RIP: 0033:0x7fea15a51869
[ 309.169561][ T5943] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 309.169572][ T5943] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 309.169587][ T5943] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 309.169596][ T5943] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 309.169603][ T5943] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[pid 5943] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5943, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5944 attached
, child_tidptr=0x555576720650) = 5944
[pid 5944] set_robust_list(0x555576720660, 24) = 0
[pid 5944] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5944] setpgid(0, 0) = 0
[pid 5944] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5944] write(3, "1000", 4) = 4
[ 309.169611][ T5943] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 309.169618][ T5943] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 309.169636][ T5943]
[pid 5944] close(3) = 0
[pid 5944] write(1, "executing program\n", 18executing program
) = 18
[pid 5944] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5944] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5944] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5944] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5944] write(6, "4", 1) = 1
[pid 5944] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5944] exit_group(0) = ?
[ 309.555174][ T5944] FAULT_INJECTION: forcing a failure.
[ 309.555174][ T5944] name failslab, interval 1, probability 0, space 0, times 0
[ 309.568052][ T5944] CPU: 0 UID: 0 PID: 5944 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 309.568073][ T5944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 309.568080][ T5944] Call Trace:
[ 309.568086][ T5944]
[ 309.568091][ T5944] dump_stack_lvl+0x189/0x250
[ 309.568116][ T5944] ? __pfx____ratelimit+0x10/0x10
[ 309.568135][ T5944] ? __pfx_dump_stack_lvl+0x10/0x10
[ 309.568148][ T5944] ? __pfx__printk+0x10/0x10
[ 309.568167][ T5944] ? __pfx___might_resched+0x10/0x10
[ 309.568184][ T5944] ? fs_reclaim_acquire+0x7d/0x100
[ 309.568204][ T5944] should_fail_ex+0x414/0x560
[ 309.568221][ T5944] should_failslab+0xa8/0x100
[ 309.568239][ T5944] __kmalloc_noprof+0xcb/0x4f0
[ 309.568253][ T5944] ? tomoyo_init_log+0x1a6e/0x1f70
[ 309.568273][ T5944] tomoyo_init_log+0x1a6e/0x1f70
[ 309.568303][ T5944] ? __pfx_tomoyo_init_log+0x10/0x10
[ 309.568319][ T5944] ? tomoyo_profile+0x11/0x50
[ 309.568335][ T5944] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 309.568353][ T5944] tomoyo_supervisor+0x340/0x1480
[ 309.568371][ T5944] ? format_decode+0x5a3/0xe30
[ 309.568389][ T5944] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 309.568419][ T5944] ? snprintf+0xda/0x120
[ 309.568436][ T5944] ? __pfx_snprintf+0x10/0x10
[ 309.568451][ T5944] ? tomoyo_check_acl+0x386/0x400
[ 309.568469][ T5944] tomoyo_path_number_perm+0x438/0x5a0
[ 309.568483][ T5944] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 309.568497][ T5944] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 309.568516][ T5944] ? _raw_spin_lock_irq+0xae/0xf0
[ 309.568551][ T5944] ? __pfx_ptrace_notify+0x10/0x10
[ 309.568574][ T5944] security_file_ioctl+0xcb/0x2d0
[ 309.568589][ T5944] __se_sys_ioctl+0x47/0x170
[ 309.568604][ T5944] do_syscall_64+0xfa/0x3b0
[ 309.568621][ T5944] ? lockdep_hardirqs_on+0x9c/0x150
[ 309.568636][ T5944] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 309.568648][ T5944] ? clear_bhb_loop+0x60/0xb0
[ 309.568663][ T5944] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 309.568674][ T5944] RIP: 0033:0x7fea15a51869
[ 309.568686][ T5944] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 309.568697][ T5944] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5944] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5944, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5945 attached
, child_tidptr=0x555576720650) = 5945
[pid 5945] set_robust_list(0x555576720660, 24) = 0
[pid 5945] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5945] setpgid(0, 0) = 0
[pid 5945] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5945] write(3, "1000", 4) = 4
[pid 5945] close(3) = 0
[ 309.568712][ T5944] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 309.568722][ T5944] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 309.568729][ T5944] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 309.568737][ T5944] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 309.568744][ T5944] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 309.568762][ T5944]
[pid 5945] write(1, "executing program\n", 18executing program
) = 18
[pid 5945] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5945] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5945] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5945] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5945] write(6, "4", 1) = 1
[pid 5945] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5945] exit_group(0) = ?
[ 309.925710][ T5945] FAULT_INJECTION: forcing a failure.
[ 309.925710][ T5945] name failslab, interval 1, probability 0, space 0, times 0
[ 309.938539][ T5945] CPU: 1 UID: 0 PID: 5945 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 309.938564][ T5945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 309.938576][ T5945] Call Trace:
[ 309.938583][ T5945]
[ 309.938591][ T5945] dump_stack_lvl+0x189/0x250
[ 309.938619][ T5945] ? __pfx____ratelimit+0x10/0x10
[ 309.938648][ T5945] ? __pfx_dump_stack_lvl+0x10/0x10
[ 309.938669][ T5945] ? __pfx__printk+0x10/0x10
[ 309.938704][ T5945] ? __pfx___might_resched+0x10/0x10
[ 309.938733][ T5945] ? fs_reclaim_acquire+0x7d/0x100
[ 309.938767][ T5945] should_fail_ex+0x414/0x560
[ 309.938797][ T5945] should_failslab+0xa8/0x100
[ 309.938824][ T5945] __kmalloc_noprof+0xcb/0x4f0
[ 309.938848][ T5945] ? tomoyo_init_log+0x1a6e/0x1f70
[ 309.938879][ T5945] tomoyo_init_log+0x1a6e/0x1f70
[ 309.938915][ T5945] ? __pfx_tomoyo_init_log+0x10/0x10
[ 309.938931][ T5945] ? tomoyo_profile+0x11/0x50
[ 309.938947][ T5945] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 309.938965][ T5945] tomoyo_supervisor+0x340/0x1480
[ 309.938983][ T5945] ? format_decode+0x5a3/0xe30
[ 309.939002][ T5945] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 309.939025][ T5945] ? snprintf+0xda/0x120
[ 309.939042][ T5945] ? __pfx_snprintf+0x10/0x10
[ 309.939056][ T5945] ? tomoyo_check_acl+0x386/0x400
[ 309.939074][ T5945] tomoyo_path_number_perm+0x438/0x5a0
[ 309.939088][ T5945] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 309.939105][ T5945] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 309.939124][ T5945] ? _raw_spin_lock_irq+0xae/0xf0
[ 309.939159][ T5945] ? __pfx_ptrace_notify+0x10/0x10
[ 309.939183][ T5945] security_file_ioctl+0xcb/0x2d0
[ 309.939198][ T5945] __se_sys_ioctl+0x47/0x170
[ 309.939213][ T5945] do_syscall_64+0xfa/0x3b0
[ 309.939229][ T5945] ? lockdep_hardirqs_on+0x9c/0x150
[ 309.939245][ T5945] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 309.939257][ T5945] ? clear_bhb_loop+0x60/0xb0
[ 309.939271][ T5945] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 309.939283][ T5945] RIP: 0033:0x7fea15a51869
[ 309.939295][ T5945] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 309.939305][ T5945] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5945] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5945, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5946 attached
, child_tidptr=0x555576720650) = 5946
[pid 5946] set_robust_list(0x555576720660, 24) = 0
[pid 5946] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5946] setpgid(0, 0) = 0
[pid 5946] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5946] write(3, "1000", 4) = 4
[pid 5946] close(3) = 0
executing program
[pid 5946] write(1, "executing program\n", 18) = 18
[pid 5946] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5946] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5946] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5946] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5946] write(6, "4", 1) = 1
[ 309.939320][ T5945] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 309.939329][ T5945] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 309.939337][ T5945] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 309.939352][ T5945] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 309.939360][ T5945] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 309.939377][ T5945]
[pid 5946] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5946] exit_group(0) = ?
[pid 5946] +++ exited with 0 +++
[ 310.244466][ T5946] FAULT_INJECTION: forcing a failure.
[ 310.244466][ T5946] name failslab, interval 1, probability 0, space 0, times 0
[ 310.257574][ T5946] CPU: 0 UID: 0 PID: 5946 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 310.257594][ T5946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 310.257602][ T5946] Call Trace:
[ 310.257608][ T5946]
[ 310.257613][ T5946] dump_stack_lvl+0x189/0x250
[ 310.257632][ T5946] ? __pfx____ratelimit+0x10/0x10
[ 310.257649][ T5946] ? __pfx_dump_stack_lvl+0x10/0x10
[ 310.257662][ T5946] ? __pfx__printk+0x10/0x10
[ 310.257682][ T5946] ? __pfx___might_resched+0x10/0x10
[ 310.257699][ T5946] ? fs_reclaim_acquire+0x7d/0x100
[ 310.257720][ T5946] should_fail_ex+0x414/0x560
[ 310.257737][ T5946] should_failslab+0xa8/0x100
[ 310.257755][ T5946] __kmalloc_noprof+0xcb/0x4f0
[ 310.257769][ T5946] ? tomoyo_init_log+0x1a6e/0x1f70
[ 310.257789][ T5946] tomoyo_init_log+0x1a6e/0x1f70
[ 310.257818][ T5946] ? __pfx_tomoyo_init_log+0x10/0x10
[ 310.257835][ T5946] ? tomoyo_profile+0x11/0x50
[ 310.257851][ T5946] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 310.257868][ T5946] tomoyo_supervisor+0x340/0x1480
[ 310.257886][ T5946] ? format_decode+0x5a3/0xe30
[ 310.257904][ T5946] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 310.257928][ T5946] ? snprintf+0xda/0x120
[ 310.257945][ T5946] ? __pfx_snprintf+0x10/0x10
[ 310.257960][ T5946] ? tomoyo_check_acl+0x386/0x400
[ 310.257978][ T5946] tomoyo_path_number_perm+0x438/0x5a0
[ 310.257991][ T5946] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 310.258006][ T5946] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 310.258024][ T5946] ? _raw_spin_lock_irq+0xae/0xf0
[ 310.258059][ T5946] ? __pfx_ptrace_notify+0x10/0x10
[ 310.258098][ T5946] security_file_ioctl+0xcb/0x2d0
[ 310.258120][ T5946] __se_sys_ioctl+0x47/0x170
[ 310.258135][ T5946] do_syscall_64+0xfa/0x3b0
[ 310.258151][ T5946] ? lockdep_hardirqs_on+0x9c/0x150
[ 310.258167][ T5946] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 310.258179][ T5946] ? clear_bhb_loop+0x60/0xb0
[ 310.258193][ T5946] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 310.258204][ T5946] RIP: 0033:0x7fea15a51869
[ 310.258217][ T5946] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 310.258228][ T5946] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5946, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5947 attached
, child_tidptr=0x555576720650) = 5947
[pid 5947] set_robust_list(0x555576720660, 24) = 0
[pid 5947] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5947] setpgid(0, 0) = 0
[pid 5947] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5947] write(3, "1000", 4) = 4
[pid 5947] close(3) = 0
[pid 5947] write(1, "executing program\n", 18executing program
) = 18
[pid 5947] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5947] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5947] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5947] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5947] write(6, "4", 1) = 1
[ 310.258243][ T5946] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 310.258252][ T5946] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 310.258259][ T5946] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 310.258267][ T5946] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 310.258274][ T5946] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 310.258292][ T5946]
[pid 5947] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5947] exit_group(0) = ?
[pid 5947] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5947, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
[ 310.581393][ T5947] FAULT_INJECTION: forcing a failure.
[ 310.581393][ T5947] name failslab, interval 1, probability 0, space 0, times 0
[ 310.594555][ T5947] CPU: 1 UID: 0 PID: 5947 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 310.594584][ T5947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 310.594596][ T5947] Call Trace:
[ 310.594604][ T5947]
[ 310.594612][ T5947] dump_stack_lvl+0x189/0x250
[ 310.594641][ T5947] ? __pfx____ratelimit+0x10/0x10
[ 310.594669][ T5947] ? __pfx_dump_stack_lvl+0x10/0x10
[ 310.594691][ T5947] ? __pfx__printk+0x10/0x10
[ 310.594724][ T5947] ? __pfx___might_resched+0x10/0x10
[ 310.594753][ T5947] ? fs_reclaim_acquire+0x7d/0x100
[ 310.594786][ T5947] should_fail_ex+0x414/0x560
[ 310.594815][ T5947] should_failslab+0xa8/0x100
[ 310.594842][ T5947] __kmalloc_noprof+0xcb/0x4f0
[ 310.594863][ T5947] ? tomoyo_init_log+0x1a6e/0x1f70
[ 310.594884][ T5947] tomoyo_init_log+0x1a6e/0x1f70
[ 310.594914][ T5947] ? __pfx_tomoyo_init_log+0x10/0x10
[ 310.594931][ T5947] ? tomoyo_profile+0x11/0x50
[ 310.594947][ T5947] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 310.594964][ T5947] tomoyo_supervisor+0x340/0x1480
[ 310.594982][ T5947] ? format_decode+0x5a3/0xe30
[ 310.595000][ T5947] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 310.595024][ T5947] ? snprintf+0xda/0x120
[ 310.595040][ T5947] ? __pfx_snprintf+0x10/0x10
[ 310.595055][ T5947] ? tomoyo_check_acl+0x386/0x400
[ 310.595073][ T5947] tomoyo_path_number_perm+0x438/0x5a0
[ 310.595087][ T5947] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 310.595101][ T5947] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 310.595120][ T5947] ? _raw_spin_lock_irq+0xae/0xf0
[ 310.595169][ T5947] ? __pfx_ptrace_notify+0x10/0x10
[ 310.595198][ T5947] security_file_ioctl+0xcb/0x2d0
[ 310.595213][ T5947] __se_sys_ioctl+0x47/0x170
[ 310.595228][ T5947] do_syscall_64+0xfa/0x3b0
[ 310.595244][ T5947] ? lockdep_hardirqs_on+0x9c/0x150
[ 310.595260][ T5947] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 310.595272][ T5947] ? clear_bhb_loop+0x60/0xb0
[ 310.595287][ T5947] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 310.595298][ T5947] RIP: 0033:0x7fea15a51869
[ 310.595310][ T5947] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 310.595321][ T5947] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5948 attached
, child_tidptr=0x555576720650) = 5948
[pid 5948] set_robust_list(0x555576720660, 24) = 0
[pid 5948] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 310.595336][ T5947] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 310.595345][ T5947] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 310.595353][ T5947] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 310.595360][ T5947] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 310.595367][ T5947] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 310.595389][ T5947]
[pid 5948] setpgid(0, 0) = 0
[pid 5948] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5948] write(3, "1000", 4) = 4
[pid 5948] close(3) = 0
executing program
[pid 5948] write(1, "executing program\n", 18) = 18
[pid 5948] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5948] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5948] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5948] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5948] write(6, "4", 1) = 1
[pid 5948] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 310.961703][ T5948] FAULT_INJECTION: forcing a failure.
[ 310.961703][ T5948] name failslab, interval 1, probability 0, space 0, times 0
[ 310.975215][ T5948] CPU: 0 UID: 0 PID: 5948 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 310.975244][ T5948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 310.975265][ T5948] Call Trace:
[ 310.975276][ T5948]
[ 310.975286][ T5948] dump_stack_lvl+0x189/0x250
[ 310.975315][ T5948] ? __pfx____ratelimit+0x10/0x10
[ 310.975344][ T5948] ? __pfx_dump_stack_lvl+0x10/0x10
[ 310.975376][ T5948] ? __pfx__printk+0x10/0x10
[ 310.975410][ T5948] ? __pfx___might_resched+0x10/0x10
[ 310.975438][ T5948] ? fs_reclaim_acquire+0x7d/0x100
[ 310.975473][ T5948] should_fail_ex+0x414/0x560
[ 310.975504][ T5948] should_failslab+0xa8/0x100
[ 310.975531][ T5948] __kmalloc_noprof+0xcb/0x4f0
[ 310.975555][ T5948] ? tomoyo_init_log+0x1a6e/0x1f70
[ 310.975586][ T5948] tomoyo_init_log+0x1a6e/0x1f70
[ 310.975627][ T5948] ? __pfx_tomoyo_init_log+0x10/0x10
[ 310.975649][ T5948] ? tomoyo_profile+0x11/0x50
[ 310.975670][ T5948] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 310.975693][ T5948] tomoyo_supervisor+0x340/0x1480
[ 310.975717][ T5948] ? format_decode+0x5a3/0xe30
[ 310.975741][ T5948] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 310.975772][ T5948] ? snprintf+0xda/0x120
[ 310.975795][ T5948] ? __pfx_snprintf+0x10/0x10
[ 310.975814][ T5948] ? tomoyo_check_acl+0x386/0x400
[ 310.975838][ T5948] tomoyo_path_number_perm+0x438/0x5a0
[ 310.975856][ T5948] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 310.975874][ T5948] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 310.975900][ T5948] ? _raw_spin_lock_irq+0xae/0xf0
[ 310.975948][ T5948] ? __pfx_ptrace_notify+0x10/0x10
[ 310.975980][ T5948] security_file_ioctl+0xcb/0x2d0
[ 310.976000][ T5948] __se_sys_ioctl+0x47/0x170
[ 310.976021][ T5948] do_syscall_64+0xfa/0x3b0
[ 310.976042][ T5948] ? lockdep_hardirqs_on+0x9c/0x150
[ 310.976064][ T5948] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 310.976079][ T5948] ? clear_bhb_loop+0x60/0xb0
[ 310.976098][ T5948] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 310.976115][ T5948] RIP: 0033:0x7fea15a51869
[ 310.976130][ T5948] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 310.976144][ T5948] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5948] exit_group(0) = ?
[pid 5948] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5948, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5949 attached
, child_tidptr=0x555576720650) = 5949
[pid 5949] set_robust_list(0x555576720660, 24) = 0
[pid 5949] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5949] setpgid(0, 0) = 0
[pid 5949] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5949] write(3, "1000", 4) = 4
[pid 5949] close(3) = 0
executing program
[pid 5949] write(1, "executing program\n", 18) = 18
[pid 5949] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5949] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5949] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5949] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5949] write(6, "4", 1) = 1
[ 310.976163][ T5948] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 310.976174][ T5948] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 310.976184][ T5948] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 310.976193][ T5948] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 310.976203][ T5948] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 310.976227][ T5948]
[pid 5949] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5949] exit_group(0) = ?
[ 311.284750][ T5949] FAULT_INJECTION: forcing a failure.
[ 311.284750][ T5949] name failslab, interval 1, probability 0, space 0, times 0
[ 311.297668][ T5949] CPU: 1 UID: 0 PID: 5949 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 311.297698][ T5949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 311.297711][ T5949] Call Trace:
[ 311.297719][ T5949]
[ 311.297728][ T5949] dump_stack_lvl+0x189/0x250
[ 311.297756][ T5949] ? __pfx____ratelimit+0x10/0x10
[ 311.297785][ T5949] ? __pfx_dump_stack_lvl+0x10/0x10
[ 311.297808][ T5949] ? __pfx__printk+0x10/0x10
[ 311.297842][ T5949] ? __pfx___might_resched+0x10/0x10
[ 311.297870][ T5949] ? fs_reclaim_acquire+0x7d/0x100
[ 311.297904][ T5949] should_fail_ex+0x414/0x560
[ 311.297932][ T5949] should_failslab+0xa8/0x100
[ 311.297959][ T5949] __kmalloc_noprof+0xcb/0x4f0
[ 311.297982][ T5949] ? tomoyo_init_log+0x1a6e/0x1f70
[ 311.298002][ T5949] tomoyo_init_log+0x1a6e/0x1f70
[ 311.298033][ T5949] ? __pfx_tomoyo_init_log+0x10/0x10
[ 311.298049][ T5949] ? tomoyo_profile+0x11/0x50
[ 311.298081][ T5949] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 311.298100][ T5949] tomoyo_supervisor+0x340/0x1480
[ 311.298126][ T5949] ? format_decode+0x5a3/0xe30
[ 311.298144][ T5949] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 311.298168][ T5949] ? snprintf+0xda/0x120
[ 311.298184][ T5949] ? __pfx_snprintf+0x10/0x10
[ 311.298199][ T5949] ? tomoyo_check_acl+0x386/0x400
[ 311.298217][ T5949] tomoyo_path_number_perm+0x438/0x5a0
[ 311.298231][ T5949] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 311.298245][ T5949] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 311.298264][ T5949] ? _raw_spin_lock_irq+0xae/0xf0
[ 311.298300][ T5949] ? __pfx_ptrace_notify+0x10/0x10
[ 311.298324][ T5949] security_file_ioctl+0xcb/0x2d0
[ 311.298338][ T5949] __se_sys_ioctl+0x47/0x170
[ 311.298354][ T5949] do_syscall_64+0xfa/0x3b0
[ 311.298371][ T5949] ? lockdep_hardirqs_on+0x9c/0x150
[ 311.298386][ T5949] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 311.298398][ T5949] ? clear_bhb_loop+0x60/0xb0
[ 311.298413][ T5949] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 311.298424][ T5949] RIP: 0033:0x7fea15a51869
[ 311.298436][ T5949] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 311.298447][ T5949] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 311.298462][ T5949] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5949] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5949, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5950 attached
, child_tidptr=0x555576720650) = 5950
[ 311.298472][ T5949] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 311.298479][ T5949] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 311.298487][ T5949] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 311.298494][ T5949] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 311.298512][ T5949]
[pid 5950] set_robust_list(0x555576720660, 24) = 0
[pid 5950] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5950] setpgid(0, 0) = 0
[pid 5950] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5950] write(3, "1000", 4) = 4
executing program
[pid 5950] close(3) = 0
[pid 5950] write(1, "executing program\n", 18) = 18
[pid 5950] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5950] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5950] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5950] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5950] write(6, "4", 1) = 1
[pid 5950] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5950] exit_group(0) = ?
[ 311.688775][ T5950] FAULT_INJECTION: forcing a failure.
[ 311.688775][ T5950] name failslab, interval 1, probability 0, space 0, times 0
[ 311.701576][ T5950] CPU: 1 UID: 0 PID: 5950 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 311.701606][ T5950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 311.701617][ T5950] Call Trace:
[ 311.701626][ T5950]
[ 311.701634][ T5950] dump_stack_lvl+0x189/0x250
[ 311.701660][ T5950] ? __pfx____ratelimit+0x10/0x10
[ 311.701687][ T5950] ? __pfx_dump_stack_lvl+0x10/0x10
[ 311.701709][ T5950] ? __pfx__printk+0x10/0x10
[ 311.701741][ T5950] ? __pfx___might_resched+0x10/0x10
[ 311.701769][ T5950] ? fs_reclaim_acquire+0x7d/0x100
[ 311.701802][ T5950] should_fail_ex+0x414/0x560
[ 311.701831][ T5950] should_failslab+0xa8/0x100
[ 311.701851][ T5950] __kmalloc_noprof+0xcb/0x4f0
[ 311.701865][ T5950] ? tomoyo_init_log+0x1a6e/0x1f70
[ 311.701885][ T5950] tomoyo_init_log+0x1a6e/0x1f70
[ 311.701916][ T5950] ? __pfx_tomoyo_init_log+0x10/0x10
[ 311.701933][ T5950] ? tomoyo_profile+0x11/0x50
[ 311.701949][ T5950] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 311.701966][ T5950] tomoyo_supervisor+0x340/0x1480
[ 311.701985][ T5950] ? format_decode+0x5a3/0xe30
[ 311.702003][ T5950] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 311.702027][ T5950] ? snprintf+0xda/0x120
[ 311.702044][ T5950] ? __pfx_snprintf+0x10/0x10
[ 311.702059][ T5950] ? tomoyo_check_acl+0x386/0x400
[ 311.702080][ T5950] tomoyo_path_number_perm+0x438/0x5a0
[ 311.702094][ T5950] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 311.702109][ T5950] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 311.702128][ T5950] ? _raw_spin_lock_irq+0xae/0xf0
[ 311.702163][ T5950] ? __pfx_ptrace_notify+0x10/0x10
[ 311.702187][ T5950] security_file_ioctl+0xcb/0x2d0
[ 311.702203][ T5950] __se_sys_ioctl+0x47/0x170
[ 311.702218][ T5950] do_syscall_64+0xfa/0x3b0
[ 311.702234][ T5950] ? lockdep_hardirqs_on+0x9c/0x150
[ 311.702250][ T5950] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 311.702262][ T5950] ? clear_bhb_loop+0x60/0xb0
[ 311.702276][ T5950] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 311.702288][ T5950] RIP: 0033:0x7fea15a51869
[ 311.702300][ T5950] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 311.702311][ T5950] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 311.702337][ T5950] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5950] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5950, si_uid=0, si_status=0, si_utime=0, si_stime=27 /* 0.27 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576720650) = 5951
./strace-static-x86_64: Process 5951 attached
[pid 5951] set_robust_list(0x555576720660, 24) = 0
[pid 5951] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5951] setpgid(0, 0) = 0
[ 311.702346][ T5950] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 311.702354][ T5950] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 311.702362][ T5950] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 311.702369][ T5950] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 311.702388][ T5950]
[pid 5951] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5951] write(3, "1000", 4) = 4
[pid 5951] close(3) = 0
executing program
[pid 5951] write(1, "executing program\n", 18) = 18
[pid 5951] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5951] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5951] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5951] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5951] write(6, "4", 1) = 1
[ 312.052029][ T5951] FAULT_INJECTION: forcing a failure.
[ 312.052029][ T5951] name failslab, interval 1, probability 0, space 0, times 0
[ 312.065295][ T5951] CPU: 0 UID: 0 PID: 5951 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 312.065324][ T5951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 312.065345][ T5951] Call Trace:
[ 312.065353][ T5951]
[ 312.065361][ T5951] dump_stack_lvl+0x189/0x250
[ 312.065389][ T5951] ? __pfx____ratelimit+0x10/0x10
[ 312.065416][ T5951] ? __pfx_dump_stack_lvl+0x10/0x10
[ 312.065435][ T5951] ? __pfx__printk+0x10/0x10
[ 312.065467][ T5951] ? __pfx___might_resched+0x10/0x10
[ 312.065494][ T5951] ? fs_reclaim_acquire+0x7d/0x100
[ 312.065553][ T5951] should_fail_ex+0x414/0x560
[ 312.065571][ T5951] should_failslab+0xa8/0x100
[ 312.065589][ T5951] __kmalloc_noprof+0xcb/0x4f0
[ 312.065610][ T5951] ? tomoyo_init_log+0x1a6e/0x1f70
[ 312.065631][ T5951] tomoyo_init_log+0x1a6e/0x1f70
[ 312.065661][ T5951] ? __pfx_tomoyo_init_log+0x10/0x10
[ 312.065677][ T5951] ? tomoyo_profile+0x11/0x50
[ 312.065693][ T5951] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 312.065710][ T5951] tomoyo_supervisor+0x340/0x1480
[ 312.065729][ T5951] ? format_decode+0x5a3/0xe30
[ 312.065747][ T5951] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 312.065770][ T5951] ? snprintf+0xda/0x120
[ 312.065787][ T5951] ? __pfx_snprintf+0x10/0x10
[ 312.065801][ T5951] ? tomoyo_check_acl+0x386/0x400
[ 312.065819][ T5951] tomoyo_path_number_perm+0x438/0x5a0
[ 312.065833][ T5951] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 312.065847][ T5951] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 312.065866][ T5951] ? _raw_spin_lock_irq+0xae/0xf0
[ 312.065901][ T5951] ? __pfx_ptrace_notify+0x10/0x10
[ 312.065925][ T5951] security_file_ioctl+0xcb/0x2d0
[ 312.065940][ T5951] __se_sys_ioctl+0x47/0x170
[ 312.065955][ T5951] do_syscall_64+0xfa/0x3b0
[ 312.065971][ T5951] ? lockdep_hardirqs_on+0x9c/0x150
[ 312.065987][ T5951] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 312.065999][ T5951] ? clear_bhb_loop+0x60/0xb0
[ 312.066014][ T5951] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 312.066026][ T5951] RIP: 0033:0x7fea15a51869
[ 312.066039][ T5951] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 312.066050][ T5951] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5951] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5951] exit_group(0) = ?
[pid 5951] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5951, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5952 attached
, child_tidptr=0x555576720650) = 5952
[pid 5952] set_robust_list(0x555576720660, 24) = 0
[pid 5952] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 312.066064][ T5951] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 312.066073][ T5951] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 312.066081][ T5951] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 312.066092][ T5951] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 312.066100][ T5951] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 312.066117][ T5951]
[pid 5952] setpgid(0, 0) = 0
[pid 5952] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5952] write(3, "1000", 4) = 4
[pid 5952] close(3) = 0
[pid 5952] write(1, "executing program\n", 18executing program
) = 18
[pid 5952] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5952] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5952] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5952] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5952] write(6, "4", 1) = 1
[pid 5952] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5952] exit_group(0) = ?
[pid 5952] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5952, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 312.460238][ T5952] FAULT_INJECTION: forcing a failure.
[ 312.460238][ T5952] name failslab, interval 1, probability 0, space 0, times 0
[ 312.473395][ T5952] CPU: 0 UID: 0 PID: 5952 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 312.473422][ T5952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 312.473431][ T5952] Call Trace:
[ 312.473438][ T5952]
[ 312.473446][ T5952] dump_stack_lvl+0x189/0x250
[ 312.473471][ T5952] ? __pfx____ratelimit+0x10/0x10
[ 312.473495][ T5952] ? __pfx_dump_stack_lvl+0x10/0x10
[ 312.473513][ T5952] ? __pfx__printk+0x10/0x10
[ 312.473541][ T5952] ? __pfx___might_resched+0x10/0x10
[ 312.473564][ T5952] ? fs_reclaim_acquire+0x7d/0x100
[ 312.473594][ T5952] should_fail_ex+0x414/0x560
[ 312.473620][ T5952] should_failslab+0xa8/0x100
[ 312.473643][ T5952] __kmalloc_noprof+0xcb/0x4f0
[ 312.473663][ T5952] ? tomoyo_init_log+0x1a6e/0x1f70
[ 312.473693][ T5952] tomoyo_init_log+0x1a6e/0x1f70
[ 312.473741][ T5952] ? __pfx_tomoyo_init_log+0x10/0x10
[ 312.473764][ T5952] ? tomoyo_profile+0x11/0x50
[ 312.473785][ T5952] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 312.473808][ T5952] tomoyo_supervisor+0x340/0x1480
[ 312.473836][ T5952] ? format_decode+0x5a3/0xe30
[ 312.473866][ T5952] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 312.473905][ T5952] ? snprintf+0xda/0x120
[ 312.473931][ T5952] ? __pfx_snprintf+0x10/0x10
[ 312.473954][ T5952] ? tomoyo_check_acl+0x386/0x400
[ 312.473982][ T5952] tomoyo_path_number_perm+0x438/0x5a0
[ 312.474004][ T5952] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 312.474026][ T5952] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 312.474054][ T5952] ? _raw_spin_lock_irq+0xae/0xf0
[ 312.474110][ T5952] ? __pfx_ptrace_notify+0x10/0x10
[ 312.474148][ T5952] security_file_ioctl+0xcb/0x2d0
[ 312.474171][ T5952] __se_sys_ioctl+0x47/0x170
[ 312.474195][ T5952] do_syscall_64+0xfa/0x3b0
[ 312.474218][ T5952] ? lockdep_hardirqs_on+0x9c/0x150
[ 312.474242][ T5952] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 312.474261][ T5952] ? clear_bhb_loop+0x60/0xb0
[ 312.474284][ T5952] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 312.474303][ T5952] RIP: 0033:0x7fea15a51869
[ 312.474321][ T5952] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 312.474337][ T5952] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5953 attached
, child_tidptr=0x555576720650) = 5953
[pid 5953] set_robust_list(0x555576720660, 24) = 0
[pid 5953] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5953] setpgid(0, 0) = 0
[pid 5953] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5953] write(3, "1000", 4) = 4
[pid 5953] close(3) = 0
executing program
[pid 5953] write(1, "executing program\n", 18) = 18
[ 312.474370][ T5952] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 312.474385][ T5952] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 312.474396][ T5952] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 312.474407][ T5952] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 312.474418][ T5952] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 312.474444][ T5952]
[pid 5953] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5953] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5953] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5953] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5953] write(6, "4", 1) = 1
[pid 5953] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5953] exit_group(0) = ?
[pid 5953] +++ exited with 0 +++
[ 312.840182][ T5953] FAULT_INJECTION: forcing a failure.
[ 312.840182][ T5953] name failslab, interval 1, probability 0, space 0, times 0
[ 312.853316][ T5953] CPU: 1 UID: 0 PID: 5953 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 312.853336][ T5953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 312.853344][ T5953] Call Trace:
[ 312.853349][ T5953]
[ 312.853354][ T5953] dump_stack_lvl+0x189/0x250
[ 312.853373][ T5953] ? __pfx____ratelimit+0x10/0x10
[ 312.853391][ T5953] ? __pfx_dump_stack_lvl+0x10/0x10
[ 312.853404][ T5953] ? __pfx__printk+0x10/0x10
[ 312.853424][ T5953] ? __pfx___might_resched+0x10/0x10
[ 312.853441][ T5953] ? fs_reclaim_acquire+0x7d/0x100
[ 312.853461][ T5953] should_fail_ex+0x414/0x560
[ 312.853478][ T5953] should_failslab+0xa8/0x100
[ 312.853573][ T5953] __kmalloc_noprof+0xcb/0x4f0
[ 312.853590][ T5953] ? tomoyo_init_log+0x1a6e/0x1f70
[ 312.853610][ T5953] tomoyo_init_log+0x1a6e/0x1f70
[ 312.853641][ T5953] ? __pfx_tomoyo_init_log+0x10/0x10
[ 312.853658][ T5953] ? tomoyo_profile+0x11/0x50
[ 312.853682][ T5953] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 312.853699][ T5953] tomoyo_supervisor+0x340/0x1480
[ 312.853718][ T5953] ? format_decode+0x5a3/0xe30
[ 312.853737][ T5953] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 312.853760][ T5953] ? snprintf+0xda/0x120
[ 312.853777][ T5953] ? __pfx_snprintf+0x10/0x10
[ 312.853792][ T5953] ? tomoyo_check_acl+0x386/0x400
[ 312.853810][ T5953] tomoyo_path_number_perm+0x438/0x5a0
[ 312.853824][ T5953] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 312.853839][ T5953] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 312.853858][ T5953] ? _raw_spin_lock_irq+0xae/0xf0
[ 312.853894][ T5953] ? __pfx_ptrace_notify+0x10/0x10
[ 312.853918][ T5953] security_file_ioctl+0xcb/0x2d0
[ 312.853934][ T5953] __se_sys_ioctl+0x47/0x170
[ 312.853949][ T5953] do_syscall_64+0xfa/0x3b0
[ 312.853966][ T5953] ? lockdep_hardirqs_on+0x9c/0x150
[ 312.853982][ T5953] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 312.853995][ T5953] ? clear_bhb_loop+0x60/0xb0
[ 312.854009][ T5953] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 312.854022][ T5953] RIP: 0033:0x7fea15a51869
[ 312.854036][ T5953] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 312.854048][ T5953] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5953, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5954 attached
, child_tidptr=0x555576720650) = 5954
[pid 5954] set_robust_list(0x555576720660, 24) = 0
[pid 5954] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5954] setpgid(0, 0) = 0
[pid 5954] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5954] write(3, "1000", 4) = 4
[pid 5954] close(3) = 0
executing program
[pid 5954] write(1, "executing program\n", 18) = 18
[pid 5954] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5954] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5954] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5954] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5954] write(6, "4", 1) = 1
[ 312.854063][ T5953] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 312.854072][ T5953] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 312.854080][ T5953] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 312.854088][ T5953] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 312.854095][ T5953] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 312.854113][ T5953]
[ 313.163596][ T5954] FAULT_INJECTION: forcing a failure.
[ 313.163596][ T5954] name failslab, interval 1, probability 0, space 0, times 0
[ 313.176911][ T5954] CPU: 0 UID: 0 PID: 5954 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 313.176941][ T5954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 313.176954][ T5954] Call Trace:
[ 313.176963][ T5954]
[ 313.176972][ T5954] dump_stack_lvl+0x189/0x250
[ 313.177000][ T5954] ? __pfx____ratelimit+0x10/0x10
[ 313.177029][ T5954] ? __pfx_dump_stack_lvl+0x10/0x10
[ 313.177050][ T5954] ? __pfx__printk+0x10/0x10
[ 313.177082][ T5954] ? __pfx___might_resched+0x10/0x10
[ 313.177111][ T5954] ? fs_reclaim_acquire+0x7d/0x100
[ 313.177143][ T5954] should_fail_ex+0x414/0x560
[ 313.177174][ T5954] should_failslab+0xa8/0x100
[ 313.177191][ T5954] __kmalloc_noprof+0xcb/0x4f0
[ 313.177205][ T5954] ? tomoyo_init_log+0x1a6e/0x1f70
[ 313.177225][ T5954] tomoyo_init_log+0x1a6e/0x1f70
[ 313.177255][ T5954] ? __pfx_tomoyo_init_log+0x10/0x10
[ 313.177271][ T5954] ? tomoyo_profile+0x11/0x50
[ 313.177287][ T5954] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 313.177305][ T5954] tomoyo_supervisor+0x340/0x1480
[ 313.177323][ T5954] ? format_decode+0x5a3/0xe30
[ 313.177341][ T5954] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 313.177364][ T5954] ? snprintf+0xda/0x120
[ 313.177381][ T5954] ? __pfx_snprintf+0x10/0x10
[ 313.177396][ T5954] ? tomoyo_check_acl+0x386/0x400
[ 313.177416][ T5954] tomoyo_path_number_perm+0x438/0x5a0
[ 313.177430][ T5954] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 313.177444][ T5954] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 313.177463][ T5954] ? _raw_spin_lock_irq+0xae/0xf0
[ 313.177498][ T5954] ? __pfx_ptrace_notify+0x10/0x10
[ 313.177522][ T5954] security_file_ioctl+0xcb/0x2d0
[ 313.177537][ T5954] __se_sys_ioctl+0x47/0x170
[ 313.177552][ T5954] do_syscall_64+0xfa/0x3b0
[ 313.177569][ T5954] ? lockdep_hardirqs_on+0x9c/0x150
[ 313.177584][ T5954] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 313.177597][ T5954] ? clear_bhb_loop+0x60/0xb0
[ 313.177611][ T5954] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 313.177623][ T5954] RIP: 0033:0x7fea15a51869
[ 313.177635][ T5954] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 313.177646][ T5954] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5954] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5954] exit_group(0) = ?
[pid 5954] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5954, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5955 attached
, child_tidptr=0x555576720650) = 5955
[pid 5955] set_robust_list(0x555576720660, 24) = 0
[pid 5955] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5955] setpgid(0, 0) = 0
[pid 5955] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5955] write(3, "1000", 4) = 4
[pid 5955] close(3) = 0
executing program
[pid 5955] write(1, "executing program\n", 18) = 18
[pid 5955] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5955] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5955] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5955] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5955] write(6, "4", 1) = 1
[ 313.177661][ T5954] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 313.177670][ T5954] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 313.177681][ T5954] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 313.177688][ T5954] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 313.177696][ T5954] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 313.177714][ T5954]
[pid 5955] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5955] exit_group(0) = ?
[pid 5955] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5955, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
[ 313.482004][ T5955] FAULT_INJECTION: forcing a failure.
[ 313.482004][ T5955] name failslab, interval 1, probability 0, space 0, times 0
[ 313.495191][ T5955] CPU: 0 UID: 0 PID: 5955 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 313.495220][ T5955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 313.495231][ T5955] Call Trace:
[ 313.495239][ T5955]
[ 313.495245][ T5955] dump_stack_lvl+0x189/0x250
[ 313.495263][ T5955] ? __pfx____ratelimit+0x10/0x10
[ 313.495281][ T5955] ? __pfx_dump_stack_lvl+0x10/0x10
[ 313.495294][ T5955] ? __pfx__printk+0x10/0x10
[ 313.495314][ T5955] ? __pfx___might_resched+0x10/0x10
[ 313.495331][ T5955] ? fs_reclaim_acquire+0x7d/0x100
[ 313.495351][ T5955] should_fail_ex+0x414/0x560
[ 313.495369][ T5955] should_failslab+0xa8/0x100
[ 313.495386][ T5955] __kmalloc_noprof+0xcb/0x4f0
[ 313.495409][ T5955] ? tomoyo_init_log+0x1a6e/0x1f70
[ 313.495430][ T5955] tomoyo_init_log+0x1a6e/0x1f70
[ 313.495461][ T5955] ? __pfx_tomoyo_init_log+0x10/0x10
[ 313.495478][ T5955] ? tomoyo_profile+0x11/0x50
[ 313.495494][ T5955] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 313.495511][ T5955] tomoyo_supervisor+0x340/0x1480
[ 313.495529][ T5955] ? format_decode+0x5a3/0xe30
[ 313.495548][ T5955] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 313.495572][ T5955] ? snprintf+0xda/0x120
[ 313.495589][ T5955] ? __pfx_snprintf+0x10/0x10
[ 313.495604][ T5955] ? tomoyo_check_acl+0x386/0x400
[ 313.495622][ T5955] tomoyo_path_number_perm+0x438/0x5a0
[ 313.495636][ T5955] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 313.495650][ T5955] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 313.495677][ T5955] ? _raw_spin_lock_irq+0xae/0xf0
[ 313.495713][ T5955] ? __pfx_ptrace_notify+0x10/0x10
[ 313.495738][ T5955] security_file_ioctl+0xcb/0x2d0
[ 313.495753][ T5955] __se_sys_ioctl+0x47/0x170
[ 313.495770][ T5955] do_syscall_64+0xfa/0x3b0
[ 313.495786][ T5955] ? lockdep_hardirqs_on+0x9c/0x150
[ 313.495802][ T5955] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 313.495813][ T5955] ? clear_bhb_loop+0x60/0xb0
[ 313.495828][ T5955] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 313.495839][ T5955] RIP: 0033:0x7fea15a51869
[ 313.495851][ T5955] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 313.495862][ T5955] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5956 attached
, child_tidptr=0x555576720650) = 5956
[pid 5956] set_robust_list(0x555576720660, 24) = 0
[pid 5956] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5956] setpgid(0, 0) = 0
[pid 5956] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5956] write(3, "1000", 4) = 4
[pid 5956] close(3) = 0
executing program
[pid 5956] write(1, "executing program\n", 18) = 18
[pid 5956] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5956] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[ 313.495877][ T5955] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 313.495886][ T5955] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 313.495894][ T5955] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 313.495902][ T5955] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 313.495914][ T5955] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 313.495932][ T5955]
[pid 5956] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5956] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5956] write(6, "4", 1) = 1
[pid 5956] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5956] exit_group(0) = ?
[pid 5956] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5956, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
[ 313.827734][ T5956] FAULT_INJECTION: forcing a failure.
[ 313.827734][ T5956] name failslab, interval 1, probability 0, space 0, times 0
[ 313.843333][ T5956] CPU: 1 UID: 0 PID: 5956 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 313.843364][ T5956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 313.843376][ T5956] Call Trace:
[ 313.843387][ T5956]
[ 313.843396][ T5956] dump_stack_lvl+0x189/0x250
[ 313.843425][ T5956] ? __pfx____ratelimit+0x10/0x10
[ 313.843444][ T5956] ? __pfx_dump_stack_lvl+0x10/0x10
[ 313.843458][ T5956] ? __pfx__printk+0x10/0x10
[ 313.843476][ T5956] ? __pfx___might_resched+0x10/0x10
[ 313.843494][ T5956] ? fs_reclaim_acquire+0x7d/0x100
[ 313.843515][ T5956] should_fail_ex+0x414/0x560
[ 313.843532][ T5956] should_failslab+0xa8/0x100
[ 313.843549][ T5956] __kmalloc_noprof+0xcb/0x4f0
[ 313.843563][ T5956] ? tomoyo_init_log+0x1a6e/0x1f70
[ 313.843583][ T5956] tomoyo_init_log+0x1a6e/0x1f70
[ 313.843613][ T5956] ? __pfx_tomoyo_init_log+0x10/0x10
[ 313.843630][ T5956] ? tomoyo_profile+0x11/0x50
[ 313.843646][ T5956] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 313.843664][ T5956] tomoyo_supervisor+0x340/0x1480
[ 313.843682][ T5956] ? format_decode+0x5a3/0xe30
[ 313.843701][ T5956] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 313.843724][ T5956] ? snprintf+0xda/0x120
[ 313.843741][ T5956] ? __pfx_snprintf+0x10/0x10
[ 313.843755][ T5956] ? tomoyo_check_acl+0x386/0x400
[ 313.843774][ T5956] tomoyo_path_number_perm+0x438/0x5a0
[ 313.843788][ T5956] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 313.843802][ T5956] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 313.843821][ T5956] ? _raw_spin_lock_irq+0xae/0xf0
[ 313.843856][ T5956] ? __pfx_ptrace_notify+0x10/0x10
[ 313.843880][ T5956] security_file_ioctl+0xcb/0x2d0
[ 313.843895][ T5956] __se_sys_ioctl+0x47/0x170
[ 313.843911][ T5956] do_syscall_64+0xfa/0x3b0
[ 313.843927][ T5956] ? lockdep_hardirqs_on+0x9c/0x150
[ 313.843944][ T5956] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 313.843956][ T5956] ? clear_bhb_loop+0x60/0xb0
[ 313.843970][ T5956] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 313.843982][ T5956] RIP: 0033:0x7fea15a51869
[ 313.843995][ T5956] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 313.844006][ T5956] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5957 attached
, child_tidptr=0x555576720650) = 5957
[pid 5957] set_robust_list(0x555576720660, 24) = 0
[pid 5957] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5957] setpgid(0, 0) = 0
[pid 5957] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[ 313.844021][ T5956] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 313.844030][ T5956] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 313.844038][ T5956] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 313.844046][ T5956] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 313.844053][ T5956] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 313.844080][ T5956]
[pid 5957] write(3, "1000", 4) = 4
[pid 5957] close(3) = 0
[pid 5957] write(1, "executing program\n", 18executing program
) = 18
[pid 5957] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5957] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5957] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5957] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5957] write(6, "4", 1) = 1
[pid 5957] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5957] exit_group(0) = ?
[ 314.195756][ T5957] FAULT_INJECTION: forcing a failure.
[ 314.195756][ T5957] name failslab, interval 1, probability 0, space 0, times 0
[ 314.208610][ T5957] CPU: 0 UID: 0 PID: 5957 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 314.208634][ T5957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 314.208642][ T5957] Call Trace:
[ 314.208648][ T5957]
[ 314.208653][ T5957] dump_stack_lvl+0x189/0x250
[ 314.208672][ T5957] ? __pfx____ratelimit+0x10/0x10
[ 314.208689][ T5957] ? __pfx_dump_stack_lvl+0x10/0x10
[ 314.208702][ T5957] ? __pfx__printk+0x10/0x10
[ 314.208721][ T5957] ? __pfx___might_resched+0x10/0x10
[ 314.208739][ T5957] ? fs_reclaim_acquire+0x7d/0x100
[ 314.208760][ T5957] should_fail_ex+0x414/0x560
[ 314.208777][ T5957] should_failslab+0xa8/0x100
[ 314.208793][ T5957] __kmalloc_noprof+0xcb/0x4f0
[ 314.208807][ T5957] ? tomoyo_init_log+0x1a6e/0x1f70
[ 314.208827][ T5957] tomoyo_init_log+0x1a6e/0x1f70
[ 314.208857][ T5957] ? __pfx_tomoyo_init_log+0x10/0x10
[ 314.208874][ T5957] ? tomoyo_profile+0x11/0x50
[ 314.208890][ T5957] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 314.208907][ T5957] tomoyo_supervisor+0x340/0x1480
[ 314.208925][ T5957] ? format_decode+0x5a3/0xe30
[ 314.208943][ T5957] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 314.208966][ T5957] ? snprintf+0xda/0x120
[ 314.208983][ T5957] ? __pfx_snprintf+0x10/0x10
[ 314.208998][ T5957] ? tomoyo_check_acl+0x386/0x400
[ 314.209016][ T5957] tomoyo_path_number_perm+0x438/0x5a0
[ 314.209029][ T5957] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 314.209044][ T5957] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 314.209067][ T5957] ? _raw_spin_lock_irq+0xae/0xf0
[ 314.209104][ T5957] ? __pfx_ptrace_notify+0x10/0x10
[ 314.209128][ T5957] security_file_ioctl+0xcb/0x2d0
[ 314.209143][ T5957] __se_sys_ioctl+0x47/0x170
[ 314.209159][ T5957] do_syscall_64+0xfa/0x3b0
[ 314.209175][ T5957] ? lockdep_hardirqs_on+0x9c/0x150
[ 314.209200][ T5957] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 314.209212][ T5957] ? clear_bhb_loop+0x60/0xb0
[ 314.209226][ T5957] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 314.209237][ T5957] RIP: 0033:0x7fea15a51869
[ 314.209250][ T5957] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 314.209261][ T5957] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 314.209275][ T5957] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5957] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5957, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5959 attached
, child_tidptr=0x555576720650) = 5959
[pid 5959] set_robust_list(0x555576720660, 24) = 0
[pid 5959] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5959] setpgid(0, 0) = 0
[pid 5959] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5959] write(3, "1000", 4) = 4
[ 314.209285][ T5957] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 314.209292][ T5957] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 314.209300][ T5957] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 314.209314][ T5957] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 314.209331][ T5957]
[pid 5959] close(3) = 0
executing program
[pid 5959] write(1, "executing program\n", 18) = 18
[pid 5959] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5959] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5959] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5959] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5959] write(6, "4", 1) = 1
[pid 5959] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5959] exit_group(0) = ?
[pid 5959] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5959, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
[ 314.583309][ T5959] FAULT_INJECTION: forcing a failure.
[ 314.583309][ T5959] name failslab, interval 1, probability 0, space 0, times 0
[ 314.596645][ T5959] CPU: 1 UID: 0 PID: 5959 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 314.596676][ T5959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 314.596688][ T5959] Call Trace:
[ 314.596696][ T5959]
[ 314.596705][ T5959] dump_stack_lvl+0x189/0x250
[ 314.596732][ T5959] ? __pfx____ratelimit+0x10/0x10
[ 314.596762][ T5959] ? __pfx_dump_stack_lvl+0x10/0x10
[ 314.596783][ T5959] ? __pfx__printk+0x10/0x10
[ 314.596816][ T5959] ? __pfx___might_resched+0x10/0x10
[ 314.596843][ T5959] ? fs_reclaim_acquire+0x7d/0x100
[ 314.596871][ T5959] should_fail_ex+0x414/0x560
[ 314.596889][ T5959] should_failslab+0xa8/0x100
[ 314.596906][ T5959] __kmalloc_noprof+0xcb/0x4f0
[ 314.596920][ T5959] ? tomoyo_init_log+0x1a6e/0x1f70
[ 314.596940][ T5959] tomoyo_init_log+0x1a6e/0x1f70
[ 314.596970][ T5959] ? __pfx_tomoyo_init_log+0x10/0x10
[ 314.596987][ T5959] ? tomoyo_profile+0x11/0x50
[ 314.597003][ T5959] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 314.597020][ T5959] tomoyo_supervisor+0x340/0x1480
[ 314.597038][ T5959] ? format_decode+0x5a3/0xe30
[ 314.597056][ T5959] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 314.597080][ T5959] ? snprintf+0xda/0x120
[ 314.597097][ T5959] ? __pfx_snprintf+0x10/0x10
[ 314.597111][ T5959] ? tomoyo_check_acl+0x386/0x400
[ 314.597132][ T5959] tomoyo_path_number_perm+0x438/0x5a0
[ 314.597146][ T5959] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 314.597160][ T5959] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 314.597179][ T5959] ? _raw_spin_lock_irq+0xae/0xf0
[ 314.597214][ T5959] ? __pfx_ptrace_notify+0x10/0x10
[ 314.597238][ T5959] security_file_ioctl+0xcb/0x2d0
[ 314.597253][ T5959] __se_sys_ioctl+0x47/0x170
[ 314.597268][ T5959] do_syscall_64+0xfa/0x3b0
[ 314.597284][ T5959] ? lockdep_hardirqs_on+0x9c/0x150
[ 314.597300][ T5959] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 314.597312][ T5959] ? clear_bhb_loop+0x60/0xb0
[ 314.597326][ T5959] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 314.597338][ T5959] RIP: 0033:0x7fea15a51869
[ 314.597350][ T5959] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 314.597360][ T5959] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5960 attached
, child_tidptr=0x555576720650) = 5960
[pid 5960] set_robust_list(0x555576720660, 24) = 0
[pid 5960] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5960] setpgid(0, 0) = 0
[pid 5960] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5960] write(3, "1000", 4) = 4
[pid 5960] close(3) = 0
[pid 5960] write(1, "executing program\n", 18executing program
) = 18
[pid 5960] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5960] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[ 314.597384][ T5959] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 314.597394][ T5959] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 314.597401][ T5959] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 314.597409][ T5959] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 314.597416][ T5959] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 314.597434][ T5959]
[pid 5960] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5960] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5960] write(6, "4", 1) = 1
[ 314.919771][ T5960] FAULT_INJECTION: forcing a failure.
[ 314.919771][ T5960] name failslab, interval 1, probability 0, space 0, times 0
[ 314.932666][ T5960] CPU: 0 UID: 0 PID: 5960 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 314.932694][ T5960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 314.932705][ T5960] Call Trace:
[ 314.932714][ T5960]
[ 314.932722][ T5960] dump_stack_lvl+0x189/0x250
[ 314.932751][ T5960] ? __pfx____ratelimit+0x10/0x10
[ 314.932780][ T5960] ? __pfx_dump_stack_lvl+0x10/0x10
[ 314.932802][ T5960] ? __pfx__printk+0x10/0x10
[ 314.932830][ T5960] ? __pfx___might_resched+0x10/0x10
[ 314.932857][ T5960] ? fs_reclaim_acquire+0x7d/0x100
[ 314.932879][ T5960] should_fail_ex+0x414/0x560
[ 314.932896][ T5960] should_failslab+0xa8/0x100
[ 314.932914][ T5960] __kmalloc_noprof+0xcb/0x4f0
[ 314.932928][ T5960] ? tomoyo_encode+0x28b/0x550
[ 314.932947][ T5960] tomoyo_encode+0x28b/0x550
[ 314.932967][ T5960] tomoyo_realpath_from_path+0x58d/0x5d0
[ 314.932992][ T5960] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 314.933006][ T5960] tomoyo_path_number_perm+0x1e8/0x5a0
[ 314.933022][ T5960] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 314.933041][ T5960] ? _raw_spin_lock_irq+0xae/0xf0
[ 314.933075][ T5960] ? __pfx_ptrace_notify+0x10/0x10
[ 314.933100][ T5960] security_file_ioctl+0xcb/0x2d0
[ 314.933137][ T5960] __se_sys_ioctl+0x47/0x170
[ 314.933164][ T5960] do_syscall_64+0xfa/0x3b0
[ 314.933190][ T5960] ? lockdep_hardirqs_on+0x9c/0x150
[ 314.933215][ T5960] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 314.933235][ T5960] ? clear_bhb_loop+0x60/0xb0
[ 314.933250][ T5960] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 314.933262][ T5960] RIP: 0033:0x7fea15a51869
[ 314.933274][ T5960] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 314.933286][ T5960] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5960] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5960] exit_group(0) = ?
[pid 5960] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5960, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[ 314.933301][ T5960] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 314.933310][ T5960] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 314.933318][ T5960] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 314.933325][ T5960] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 314.933333][ T5960] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 314.933351][ T5960]
[ 315.161511][ T5960] ERROR: Out of memory at tomoyo_realpath_from_path.
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5961 attached
, child_tidptr=0x555576720650) = 5961
[pid 5961] set_robust_list(0x555576720660, 24) = 0
[pid 5961] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5961] setpgid(0, 0) = 0
[pid 5961] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5961] write(3, "1000", 4) = 4
[pid 5961] close(3) = 0
executing program
[pid 5961] write(1, "executing program\n", 18) = 18
[pid 5961] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5961] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5961] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5961] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5961] write(6, "4", 1) = 1
[ 315.225061][ T5961] FAULT_INJECTION: forcing a failure.
[ 315.225061][ T5961] name failslab, interval 1, probability 0, space 0, times 0
[ 315.238434][ T5961] CPU: 1 UID: 0 PID: 5961 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 315.238463][ T5961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 315.238474][ T5961] Call Trace:
[ 315.238481][ T5961]
[ 315.238489][ T5961] dump_stack_lvl+0x189/0x250
[ 315.238517][ T5961] ? __pfx____ratelimit+0x10/0x10
[ 315.238546][ T5961] ? __pfx_dump_stack_lvl+0x10/0x10
[ 315.238567][ T5961] ? __pfx__printk+0x10/0x10
[ 315.238601][ T5961] ? __pfx___might_resched+0x10/0x10
[ 315.238628][ T5961] ? fs_reclaim_acquire+0x7d/0x100
[ 315.238663][ T5961] should_fail_ex+0x414/0x560
[ 315.238693][ T5961] should_failslab+0xa8/0x100
[ 315.238721][ T5961] __kmalloc_noprof+0xcb/0x4f0
[ 315.238743][ T5961] ? tomoyo_init_log+0x1a6e/0x1f70
[ 315.238774][ T5961] tomoyo_init_log+0x1a6e/0x1f70
[ 315.238810][ T5961] ? __pfx_tomoyo_init_log+0x10/0x10
[ 315.238827][ T5961] ? tomoyo_profile+0x11/0x50
[ 315.238843][ T5961] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 315.238860][ T5961] tomoyo_supervisor+0x340/0x1480
[ 315.238879][ T5961] ? format_decode+0x5a3/0xe30
[ 315.238897][ T5961] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 315.238921][ T5961] ? snprintf+0xda/0x120
[ 315.238937][ T5961] ? __pfx_snprintf+0x10/0x10
[ 315.238952][ T5961] ? tomoyo_check_acl+0x386/0x400
[ 315.238970][ T5961] tomoyo_path_number_perm+0x438/0x5a0
[ 315.238983][ T5961] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 315.238998][ T5961] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 315.239017][ T5961] ? _raw_spin_lock_irq+0xae/0xf0
[ 315.239051][ T5961] ? __pfx_ptrace_notify+0x10/0x10
[ 315.239075][ T5961] security_file_ioctl+0xcb/0x2d0
[ 315.239091][ T5961] __se_sys_ioctl+0x47/0x170
[ 315.239106][ T5961] do_syscall_64+0xfa/0x3b0
[ 315.239122][ T5961] ? lockdep_hardirqs_on+0x9c/0x150
[ 315.239141][ T5961] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 315.239153][ T5961] ? clear_bhb_loop+0x60/0xb0
[ 315.239167][ T5961] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 315.239179][ T5961] RIP: 0033:0x7fea15a51869
[ 315.239191][ T5961] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 315.239201][ T5961] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5961] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5961] exit_group(0) = ?
[pid 5961] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5961, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5962 attached
, child_tidptr=0x555576720650) = 5962
[ 315.239216][ T5961] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 315.239226][ T5961] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 315.239234][ T5961] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 315.239241][ T5961] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 315.239249][ T5961] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 315.239266][ T5961]
[pid 5962] set_robust_list(0x555576720660, 24) = 0
[pid 5962] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5962] setpgid(0, 0) = 0
[pid 5962] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5962] write(3, "1000", 4) = 4
[pid 5962] close(3) = 0
[pid 5962] write(1, "executing program\n", 18executing program
) = 18
[pid 5962] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5962] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5962] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5962] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5962] write(6, "4", 1) = 1
[ 315.616956][ T5962] FAULT_INJECTION: forcing a failure.
[ 315.616956][ T5962] name failslab, interval 1, probability 0, space 0, times 0
[ 315.630864][ T5962] CPU: 1 UID: 0 PID: 5962 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 315.630894][ T5962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 315.630905][ T5962] Call Trace:
[ 315.630914][ T5962]
[ 315.630923][ T5962] dump_stack_lvl+0x189/0x250
[ 315.630951][ T5962] ? __pfx____ratelimit+0x10/0x10
[ 315.630979][ T5962] ? __pfx_dump_stack_lvl+0x10/0x10
[ 315.631001][ T5962] ? __pfx__printk+0x10/0x10
[ 315.631034][ T5962] ? __pfx___might_resched+0x10/0x10
[ 315.631062][ T5962] ? fs_reclaim_acquire+0x7d/0x100
[ 315.631096][ T5962] should_fail_ex+0x414/0x560
[ 315.631125][ T5962] should_failslab+0xa8/0x100
[ 315.631152][ T5962] __kmalloc_noprof+0xcb/0x4f0
[ 315.631175][ T5962] ? tomoyo_init_log+0x1a6e/0x1f70
[ 315.631207][ T5962] tomoyo_init_log+0x1a6e/0x1f70
[ 315.631256][ T5962] ? __pfx_tomoyo_init_log+0x10/0x10
[ 315.631277][ T5962] ? tomoyo_profile+0x11/0x50
[ 315.631298][ T5962] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 315.631322][ T5962] tomoyo_supervisor+0x340/0x1480
[ 315.631346][ T5962] ? format_decode+0x5a3/0xe30
[ 315.631370][ T5962] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 315.631412][ T5962] ? snprintf+0xda/0x120
[ 315.631434][ T5962] ? __pfx_snprintf+0x10/0x10
[ 315.631454][ T5962] ? tomoyo_check_acl+0x386/0x400
[ 315.631477][ T5962] tomoyo_path_number_perm+0x438/0x5a0
[ 315.631495][ T5962] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 315.631514][ T5962] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 315.631539][ T5962] ? _raw_spin_lock_irq+0xae/0xf0
[ 315.631587][ T5962] ? __pfx_ptrace_notify+0x10/0x10
[ 315.631620][ T5962] security_file_ioctl+0xcb/0x2d0
[ 315.631640][ T5962] __se_sys_ioctl+0x47/0x170
[ 315.631660][ T5962] do_syscall_64+0xfa/0x3b0
[ 315.631681][ T5962] ? lockdep_hardirqs_on+0x9c/0x150
[ 315.631701][ T5962] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 315.631717][ T5962] ? clear_bhb_loop+0x60/0xb0
[ 315.631737][ T5962] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 315.631752][ T5962] RIP: 0033:0x7fea15a51869
[ 315.631767][ T5962] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 315.631780][ T5962] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 315.631799][ T5962] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5962] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5962] exit_group(0) = ?
[pid 5962] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5962, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576720650) = 5963
./strace-static-x86_64: Process 5963 attached
[pid 5963] set_robust_list(0x555576720660, 24) = 0
[pid 5963] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5963] setpgid(0, 0) = 0
[pid 5963] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[ 315.631811][ T5962] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 315.631821][ T5962] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 315.631830][ T5962] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 315.631840][ T5962] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 315.631864][ T5962]
[pid 5963] write(3, "1000", 4) = 4
[pid 5963] close(3) = 0
executing program
[pid 5963] write(1, "executing program\n", 18) = 18
[pid 5963] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5963] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5963] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5963] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5963] write(6, "4", 1) = 1
[pid 5963] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5963] exit_group(0) = ?
[pid 5963] +++ exited with 0 +++
[ 315.974843][ T5963] FAULT_INJECTION: forcing a failure.
[ 315.974843][ T5963] name failslab, interval 1, probability 0, space 0, times 0
[ 315.988068][ T5963] CPU: 0 UID: 0 PID: 5963 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 315.988088][ T5963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 315.988096][ T5963] Call Trace:
[ 315.988101][ T5963]
[ 315.988108][ T5963] dump_stack_lvl+0x189/0x250
[ 315.988127][ T5963] ? __pfx____ratelimit+0x10/0x10
[ 315.988144][ T5963] ? __pfx_dump_stack_lvl+0x10/0x10
[ 315.988158][ T5963] ? __pfx__printk+0x10/0x10
[ 315.988177][ T5963] ? __pfx___might_resched+0x10/0x10
[ 315.988193][ T5963] ? fs_reclaim_acquire+0x7d/0x100
[ 315.988214][ T5963] should_fail_ex+0x414/0x560
[ 315.988231][ T5963] should_failslab+0xa8/0x100
[ 315.988249][ T5963] __kmalloc_noprof+0xcb/0x4f0
[ 315.988263][ T5963] ? tomoyo_init_log+0x1a6e/0x1f70
[ 315.988283][ T5963] tomoyo_init_log+0x1a6e/0x1f70
[ 315.988312][ T5963] ? __pfx_tomoyo_init_log+0x10/0x10
[ 315.988329][ T5963] ? tomoyo_profile+0x11/0x50
[ 315.988345][ T5963] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 315.988363][ T5963] tomoyo_supervisor+0x340/0x1480
[ 315.988381][ T5963] ? format_decode+0x5a3/0xe30
[ 315.988399][ T5963] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 315.988423][ T5963] ? snprintf+0xda/0x120
[ 315.988440][ T5963] ? __pfx_snprintf+0x10/0x10
[ 315.988454][ T5963] ? tomoyo_check_acl+0x386/0x400
[ 315.988472][ T5963] tomoyo_path_number_perm+0x438/0x5a0
[ 315.988486][ T5963] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 315.988501][ T5963] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 315.988519][ T5963] ? _raw_spin_lock_irq+0xae/0xf0
[ 315.988554][ T5963] ? __pfx_ptrace_notify+0x10/0x10
[ 315.988579][ T5963] security_file_ioctl+0xcb/0x2d0
[ 315.988594][ T5963] __se_sys_ioctl+0x47/0x170
[ 315.988609][ T5963] do_syscall_64+0xfa/0x3b0
[ 315.988625][ T5963] ? lockdep_hardirqs_on+0x9c/0x150
[ 315.988642][ T5963] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 315.988654][ T5963] ? clear_bhb_loop+0x60/0xb0
[ 315.988668][ T5963] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 315.988681][ T5963] RIP: 0033:0x7fea15a51869
[ 315.988693][ T5963] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 315.988703][ T5963] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 315.988718][ T5963] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5963, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5964 attached
, child_tidptr=0x555576720650) = 5964
[pid 5964] set_robust_list(0x555576720660, 24) = 0
[pid 5964] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5964] setpgid(0, 0) = 0
[pid 5964] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXECexecuting program
) = 3
[pid 5964] write(3, "1000", 4) = 4
[pid 5964] close(3) = 0
[pid 5964] write(1, "executing program\n", 18) = 18
[pid 5964] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5964] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5964] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5964] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5964] write(6, "4", 1) = 1
[ 315.988728][ T5963] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 315.988735][ T5963] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 315.988743][ T5963] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 315.988750][ T5963] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 315.988768][ T5963]
[pid 5964] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5964] exit_group(0) = ?
[pid 5964] +++ exited with 0 +++
[ 316.299585][ T5964] FAULT_INJECTION: forcing a failure.
[ 316.299585][ T5964] name failslab, interval 1, probability 0, space 0, times 0
[ 316.313972][ T5964] CPU: 1 UID: 0 PID: 5964 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 316.314003][ T5964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 316.314015][ T5964] Call Trace:
[ 316.314024][ T5964]
[ 316.314033][ T5964] dump_stack_lvl+0x189/0x250
[ 316.314062][ T5964] ? __pfx____ratelimit+0x10/0x10
[ 316.314092][ T5964] ? __pfx_dump_stack_lvl+0x10/0x10
[ 316.314114][ T5964] ? __pfx__printk+0x10/0x10
[ 316.314146][ T5964] ? __pfx___might_resched+0x10/0x10
[ 316.314176][ T5964] ? fs_reclaim_acquire+0x7d/0x100
[ 316.314211][ T5964] should_fail_ex+0x414/0x560
[ 316.314241][ T5964] should_failslab+0xa8/0x100
[ 316.314269][ T5964] __kmalloc_noprof+0xcb/0x4f0
[ 316.314293][ T5964] ? tomoyo_init_log+0x1a6e/0x1f70
[ 316.314327][ T5964] tomoyo_init_log+0x1a6e/0x1f70
[ 316.314391][ T5964] ? __pfx_tomoyo_init_log+0x10/0x10
[ 316.314418][ T5964] ? tomoyo_profile+0x11/0x50
[ 316.314445][ T5964] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 316.314475][ T5964] tomoyo_supervisor+0x340/0x1480
[ 316.314507][ T5964] ? format_decode+0x5a3/0xe30
[ 316.314539][ T5964] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 316.314581][ T5964] ? snprintf+0xda/0x120
[ 316.314611][ T5964] ? __pfx_snprintf+0x10/0x10
[ 316.314637][ T5964] ? tomoyo_check_acl+0x386/0x400
[ 316.314668][ T5964] tomoyo_path_number_perm+0x438/0x5a0
[ 316.314691][ T5964] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 316.314725][ T5964] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 316.314759][ T5964] ? _raw_spin_lock_irq+0xae/0xf0
[ 316.314823][ T5964] ? __pfx_ptrace_notify+0x10/0x10
[ 316.314867][ T5964] security_file_ioctl+0xcb/0x2d0
[ 316.314893][ T5964] __se_sys_ioctl+0x47/0x170
[ 316.314919][ T5964] do_syscall_64+0xfa/0x3b0
[ 316.314948][ T5964] ? lockdep_hardirqs_on+0x9c/0x150
[ 316.314975][ T5964] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 316.314994][ T5964] ? clear_bhb_loop+0x60/0xb0
[ 316.315020][ T5964] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 316.315039][ T5964] RIP: 0033:0x7fea15a51869
[ 316.315059][ T5964] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 316.315085][ T5964] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5964, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5967 attached
, child_tidptr=0x555576720650) = 5967
[pid 5967] set_robust_list(0x555576720660, 24executing program
) = 0
[pid 5967] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5967] setpgid(0, 0) = 0
[pid 5967] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5967] write(3, "1000", 4) = 4
[pid 5967] close(3) = 0
[pid 5967] write(1, "executing program\n", 18) = 18
[pid 5967] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5967] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5967] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5967] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[ 316.315134][ T5964] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 316.315156][ T5964] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 316.315169][ T5964] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 316.315188][ T5964] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 316.315199][ T5964] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 316.315232][ T5964]
[pid 5967] write(6, "4", 1) = 1
[pid 5967] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5967] exit_group(0) = ?
[pid 5967] +++ exited with 0 +++
[ 316.633652][ T5967] FAULT_INJECTION: forcing a failure.
[ 316.633652][ T5967] name failslab, interval 1, probability 0, space 0, times 0
[ 316.646440][ T5967] CPU: 0 UID: 0 PID: 5967 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 316.646460][ T5967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 316.646468][ T5967] Call Trace:
[ 316.646476][ T5967]
[ 316.646482][ T5967] dump_stack_lvl+0x189/0x250
[ 316.646501][ T5967] ? __pfx____ratelimit+0x10/0x10
[ 316.646518][ T5967] ? __pfx_dump_stack_lvl+0x10/0x10
[ 316.646531][ T5967] ? __pfx__printk+0x10/0x10
[ 316.646551][ T5967] ? fs_reclaim_acquire+0x7d/0x100
[ 316.646572][ T5967] should_fail_ex+0x414/0x560
[ 316.646589][ T5967] should_failslab+0xa8/0x100
[ 316.646607][ T5967] __kmalloc_noprof+0xcb/0x4f0
[ 316.646621][ T5967] ? tomoyo_init_log+0x1a6e/0x1f70
[ 316.646641][ T5967] tomoyo_init_log+0x1a6e/0x1f70
[ 316.646672][ T5967] ? __pfx_tomoyo_init_log+0x10/0x10
[ 316.646688][ T5967] ? tomoyo_profile+0x11/0x50
[ 316.646704][ T5967] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 316.646722][ T5967] tomoyo_supervisor+0x340/0x1480
[ 316.646740][ T5967] ? format_decode+0x5a3/0xe30
[ 316.646759][ T5967] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 316.646782][ T5967] ? snprintf+0xda/0x120
[ 316.646799][ T5967] ? __pfx_snprintf+0x10/0x10
[ 316.646814][ T5967] ? tomoyo_check_acl+0x386/0x400
[ 316.646832][ T5967] tomoyo_path_number_perm+0x438/0x5a0
[ 316.646846][ T5967] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 316.646861][ T5967] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 316.646879][ T5967] ? _raw_spin_lock_irq+0xae/0xf0
[ 316.646914][ T5967] ? __pfx_ptrace_notify+0x10/0x10
[ 316.646939][ T5967] security_file_ioctl+0xcb/0x2d0
[ 316.646954][ T5967] __se_sys_ioctl+0x47/0x170
[ 316.646970][ T5967] do_syscall_64+0xfa/0x3b0
[ 316.646987][ T5967] ? lockdep_hardirqs_on+0x9c/0x150
[ 316.647003][ T5967] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 316.647015][ T5967] ? clear_bhb_loop+0x60/0xb0
[ 316.647030][ T5967] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 316.647042][ T5967] RIP: 0033:0x7fea15a51869
[ 316.647055][ T5967] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 316.647066][ T5967] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 316.647080][ T5967] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5967, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5968 attached
, child_tidptr=0x555576720650) = 5968
[pid 5968] set_robust_list(0x555576720660, 24) = 0
[pid 5968] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5968] setpgid(0, 0) = 0
[pid 5968] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5968] write(3, "1000", 4) = 4
[pid 5968] close(3) = 0
[pid 5968] write(1, "executing program\n", 18executing program
) = 18
[pid 5968] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5968] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5968] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5968] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5968] write(6, "4", 1) = 1
[ 316.647089][ T5967] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 316.647097][ T5967] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 316.647105][ T5967] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 316.647112][ T5967] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 316.647130][ T5967]
[ 316.958302][ T5968] FAULT_INJECTION: forcing a failure.
[ 316.958302][ T5968] name failslab, interval 1, probability 0, space 0, times 0
[ 316.971475][ T5968] CPU: 1 UID: 0 PID: 5968 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 316.971505][ T5968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 316.971517][ T5968] Call Trace:
[ 316.971525][ T5968]
[ 316.971534][ T5968] dump_stack_lvl+0x189/0x250
[ 316.971562][ T5968] ? __pfx____ratelimit+0x10/0x10
[ 316.971590][ T5968] ? __pfx_dump_stack_lvl+0x10/0x10
[ 316.971612][ T5968] ? __pfx__printk+0x10/0x10
[ 316.971645][ T5968] ? __pfx___might_resched+0x10/0x10
[ 316.971673][ T5968] ? fs_reclaim_acquire+0x7d/0x100
[ 316.971709][ T5968] should_fail_ex+0x414/0x560
[ 316.971736][ T5968] should_failslab+0xa8/0x100
[ 316.971766][ T5968] __kmalloc_noprof+0xcb/0x4f0
[ 316.971789][ T5968] ? tomoyo_init_log+0x1a6e/0x1f70
[ 316.971821][ T5968] tomoyo_init_log+0x1a6e/0x1f70
[ 316.971876][ T5968] ? __pfx_tomoyo_init_log+0x10/0x10
[ 316.971904][ T5968] ? tomoyo_profile+0x11/0x50
[ 316.971929][ T5968] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 316.971958][ T5968] tomoyo_supervisor+0x340/0x1480
[ 316.971982][ T5968] ? format_decode+0x5a3/0xe30
[ 316.972000][ T5968] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 316.972023][ T5968] ? snprintf+0xda/0x120
[ 316.972040][ T5968] ? __pfx_snprintf+0x10/0x10
[ 316.972055][ T5968] ? tomoyo_check_acl+0x386/0x400
[ 316.972077][ T5968] tomoyo_path_number_perm+0x438/0x5a0
[ 316.972091][ T5968] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 316.972107][ T5968] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 316.972137][ T5968] ? _raw_spin_lock_irq+0xae/0xf0
[ 316.972172][ T5968] ? __pfx_ptrace_notify+0x10/0x10
[ 316.972196][ T5968] security_file_ioctl+0xcb/0x2d0
[ 316.972212][ T5968] __se_sys_ioctl+0x47/0x170
[ 316.972230][ T5968] do_syscall_64+0xfa/0x3b0
[ 316.972246][ T5968] ? lockdep_hardirqs_on+0x9c/0x150
[ 316.972262][ T5968] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 316.972274][ T5968] ? clear_bhb_loop+0x60/0xb0
[ 316.972288][ T5968] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 316.972300][ T5968] RIP: 0033:0x7fea15a51869
[ 316.972314][ T5968] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 316.972325][ T5968] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 316.972341][ T5968] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5968] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5968] exit_group(0) = ?
[pid 5968] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5968, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5969 attached
, child_tidptr=0x555576720650) = 5969
[pid 5969] set_robust_list(0x555576720660, 24) = 0
[pid 5969] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5969] setpgid(0, 0) = 0
[pid 5969] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5969] write(3, "1000", 4) = 4
[pid 5969] close(3) = 0
[pid 5969] write(1, "executing program\n", 18executing program
) = 18
[pid 5969] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[ 316.972350][ T5968] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 316.972357][ T5968] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 316.972365][ T5968] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 316.972375][ T5968] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 316.972393][ T5968]
[pid 5969] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5969] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5969] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5969] write(6, "4", 1) = 1
[ 317.300712][ T5969] FAULT_INJECTION: forcing a failure.
[ 317.300712][ T5969] name failslab, interval 1, probability 0, space 0, times 0
[ 317.313819][ T5969] CPU: 0 UID: 0 PID: 5969 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 317.313848][ T5969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 317.313860][ T5969] Call Trace:
[ 317.313869][ T5969]
[ 317.313878][ T5969] dump_stack_lvl+0x189/0x250
[ 317.313906][ T5969] ? __pfx____ratelimit+0x10/0x10
[ 317.313934][ T5969] ? __pfx_dump_stack_lvl+0x10/0x10
[ 317.313955][ T5969] ? __pfx__printk+0x10/0x10
[ 317.313979][ T5969] ? __pfx___might_resched+0x10/0x10
[ 317.313996][ T5969] ? fs_reclaim_acquire+0x7d/0x100
[ 317.314016][ T5969] should_fail_ex+0x414/0x560
[ 317.314033][ T5969] should_failslab+0xa8/0x100
[ 317.314050][ T5969] __kmalloc_noprof+0xcb/0x4f0
[ 317.314065][ T5969] ? tomoyo_init_log+0x1a6e/0x1f70
[ 317.314085][ T5969] tomoyo_init_log+0x1a6e/0x1f70
[ 317.314122][ T5969] ? __pfx_tomoyo_init_log+0x10/0x10
[ 317.314139][ T5969] ? tomoyo_profile+0x11/0x50
[ 317.314155][ T5969] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 317.314178][ T5969] tomoyo_supervisor+0x340/0x1480
[ 317.314196][ T5969] ? format_decode+0x5a3/0xe30
[ 317.314214][ T5969] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 317.314237][ T5969] ? snprintf+0xda/0x120
[ 317.314254][ T5969] ? __pfx_snprintf+0x10/0x10
[ 317.314269][ T5969] ? tomoyo_check_acl+0x386/0x400
[ 317.314286][ T5969] tomoyo_path_number_perm+0x438/0x5a0
[ 317.314300][ T5969] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 317.314314][ T5969] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 317.314333][ T5969] ? _raw_spin_lock_irq+0xae/0xf0
[ 317.314372][ T5969] ? __pfx_ptrace_notify+0x10/0x10
[ 317.314396][ T5969] security_file_ioctl+0xcb/0x2d0
[ 317.314411][ T5969] __se_sys_ioctl+0x47/0x170
[ 317.314426][ T5969] do_syscall_64+0xfa/0x3b0
[ 317.314443][ T5969] ? lockdep_hardirqs_on+0x9c/0x150
[ 317.314458][ T5969] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 317.314470][ T5969] ? clear_bhb_loop+0x60/0xb0
[ 317.314485][ T5969] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 317.314496][ T5969] RIP: 0033:0x7fea15a51869
[ 317.314508][ T5969] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 317.314519][ T5969] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5969] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5969] exit_group(0) = ?
[pid 5969] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5969, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 317.314535][ T5969] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 317.314544][ T5969] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 317.314552][ T5969] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 317.314560][ T5969] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 317.314567][ T5969] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 317.314584][ T5969]
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5971 attached
, child_tidptr=0x555576720650) = 5971
[pid 5971] set_robust_list(0x555576720660, 24) = 0
[pid 5971] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5971] setpgid(0, 0) = 0
[pid 5971] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5971] write(3, "1000", 4) = 4
[pid 5971] close(3) = 0
[pid 5971] write(1, "executing program\n", 18executing program
) = 18
[pid 5971] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5971] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5971] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5971] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5971] write(6, "4", 1) = 1
[pid 5971] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5971] exit_group(0) = ?
[pid 5971] +++ exited with 0 +++
[ 317.732348][ T5971] FAULT_INJECTION: forcing a failure.
[ 317.732348][ T5971] name failslab, interval 1, probability 0, space 0, times 0
[ 317.745420][ T5971] CPU: 1 UID: 0 PID: 5971 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 317.745450][ T5971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 317.745462][ T5971] Call Trace:
[ 317.745471][ T5971]
[ 317.745480][ T5971] dump_stack_lvl+0x189/0x250
[ 317.745507][ T5971] ? __pfx____ratelimit+0x10/0x10
[ 317.745537][ T5971] ? __pfx_dump_stack_lvl+0x10/0x10
[ 317.745561][ T5971] ? __pfx__printk+0x10/0x10
[ 317.745593][ T5971] ? __pfx___might_resched+0x10/0x10
[ 317.745621][ T5971] ? fs_reclaim_acquire+0x7d/0x100
[ 317.745656][ T5971] should_fail_ex+0x414/0x560
[ 317.745685][ T5971] should_failslab+0xa8/0x100
[ 317.745712][ T5971] __kmalloc_noprof+0xcb/0x4f0
[ 317.745735][ T5971] ? tomoyo_init_log+0x1a6e/0x1f70
[ 317.745756][ T5971] tomoyo_init_log+0x1a6e/0x1f70
[ 317.745786][ T5971] ? __pfx_tomoyo_init_log+0x10/0x10
[ 317.745803][ T5971] ? tomoyo_profile+0x11/0x50
[ 317.745818][ T5971] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 317.745836][ T5971] tomoyo_supervisor+0x340/0x1480
[ 317.745854][ T5971] ? format_decode+0x5a3/0xe30
[ 317.745872][ T5971] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 317.745895][ T5971] ? snprintf+0xda/0x120
[ 317.745911][ T5971] ? __pfx_snprintf+0x10/0x10
[ 317.745926][ T5971] ? tomoyo_check_acl+0x386/0x400
[ 317.745945][ T5971] tomoyo_path_number_perm+0x438/0x5a0
[ 317.745958][ T5971] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 317.745973][ T5971] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 317.745991][ T5971] ? _raw_spin_lock_irq+0xae/0xf0
[ 317.746026][ T5971] ? __pfx_ptrace_notify+0x10/0x10
[ 317.746050][ T5971] security_file_ioctl+0xcb/0x2d0
[ 317.746065][ T5971] __se_sys_ioctl+0x47/0x170
[ 317.746080][ T5971] do_syscall_64+0xfa/0x3b0
[ 317.746097][ T5971] ? lockdep_hardirqs_on+0x9c/0x150
[ 317.746122][ T5971] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 317.746134][ T5971] ? clear_bhb_loop+0x60/0xb0
[ 317.746148][ T5971] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 317.746159][ T5971] RIP: 0033:0x7fea15a51869
[ 317.746172][ T5971] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 317.746183][ T5971] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5971, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5972 attached
, child_tidptr=0x555576720650) = 5972
[pid 5972] set_robust_list(0x555576720660, 24) = 0
[pid 5972] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 317.746197][ T5971] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 317.746207][ T5971] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 317.746214][ T5971] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 317.746222][ T5971] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 317.746229][ T5971] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 317.746247][ T5971]
[pid 5972] setpgid(0, 0) = 0
[pid 5972] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5972] write(3, "1000", 4) = 4
[pid 5972] close(3) = 0
[pid 5972] write(1, "executing program\n", 18executing program
) = 18
[pid 5972] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5972] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5972] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5972] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5972] write(6, "4", 1) = 1
[ 318.112430][ T5972] FAULT_INJECTION: forcing a failure.
[ 318.112430][ T5972] name failslab, interval 1, probability 0, space 0, times 0
[ 318.125447][ T5972] CPU: 0 UID: 0 PID: 5972 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 318.125476][ T5972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 318.125486][ T5972] Call Trace:
[ 318.125497][ T5972]
[ 318.125507][ T5972] dump_stack_lvl+0x189/0x250
[ 318.125534][ T5972] ? __pfx____ratelimit+0x10/0x10
[ 318.125563][ T5972] ? __pfx_dump_stack_lvl+0x10/0x10
[ 318.125585][ T5972] ? __pfx__printk+0x10/0x10
[ 318.125618][ T5972] ? __pfx___might_resched+0x10/0x10
[ 318.125648][ T5972] ? fs_reclaim_acquire+0x7d/0x100
[ 318.125682][ T5972] should_fail_ex+0x414/0x560
[ 318.125711][ T5972] should_failslab+0xa8/0x100
[ 318.125740][ T5972] __kmalloc_noprof+0xcb/0x4f0
[ 318.125763][ T5972] ? tomoyo_init_log+0x1a6e/0x1f70
[ 318.125797][ T5972] tomoyo_init_log+0x1a6e/0x1f70
[ 318.125846][ T5972] ? __pfx_tomoyo_init_log+0x10/0x10
[ 318.125864][ T5972] ? tomoyo_profile+0x11/0x50
[ 318.125879][ T5972] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 318.125897][ T5972] tomoyo_supervisor+0x340/0x1480
[ 318.125916][ T5972] ? format_decode+0x5a3/0xe30
[ 318.125934][ T5972] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 318.125958][ T5972] ? snprintf+0xda/0x120
[ 318.125974][ T5972] ? __pfx_snprintf+0x10/0x10
[ 318.125989][ T5972] ? tomoyo_check_acl+0x386/0x400
[ 318.126008][ T5972] tomoyo_path_number_perm+0x438/0x5a0
[ 318.126025][ T5972] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 318.126040][ T5972] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 318.126059][ T5972] ? _raw_spin_lock_irq+0xae/0xf0
[ 318.126094][ T5972] ? __pfx_ptrace_notify+0x10/0x10
[ 318.126119][ T5972] security_file_ioctl+0xcb/0x2d0
[ 318.126135][ T5972] __se_sys_ioctl+0x47/0x170
[ 318.126151][ T5972] do_syscall_64+0xfa/0x3b0
[ 318.126167][ T5972] ? lockdep_hardirqs_on+0x9c/0x150
[ 318.126183][ T5972] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 318.126195][ T5972] ? clear_bhb_loop+0x60/0xb0
[ 318.126209][ T5972] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 318.126221][ T5972] RIP: 0033:0x7fea15a51869
[ 318.126234][ T5972] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 318.126244][ T5972] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 318.126259][ T5972] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5972] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5972] exit_group(0) = ?
[pid 5972] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5972, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5973 attached
, child_tidptr=0x555576720650) = 5973
[pid 5973] set_robust_list(0x555576720660, 24) = 0
[ 318.126277][ T5972] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 318.126285][ T5972] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 318.126293][ T5972] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 318.126300][ T5972] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 318.126318][ T5972]
[pid 5973] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5973] setpgid(0, 0) = 0
[pid 5973] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5973] write(3, "1000", 4) = 4
[pid 5973] close(3) = 0
executing program
[pid 5973] write(1, "executing program\n", 18) = 18
[pid 5973] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5973] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5973] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5973] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5973] write(6, "4", 1) = 1
[ 318.515282][ T5973] FAULT_INJECTION: forcing a failure.
[ 318.515282][ T5973] name failslab, interval 1, probability 0, space 0, times 0
[ 318.528381][ T5973] CPU: 1 UID: 0 PID: 5973 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 318.528409][ T5973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 318.528419][ T5973] Call Trace:
[ 318.528425][ T5973]
[ 318.528431][ T5973] dump_stack_lvl+0x189/0x250
[ 318.528450][ T5973] ? __pfx____ratelimit+0x10/0x10
[ 318.528467][ T5973] ? __pfx_dump_stack_lvl+0x10/0x10
[ 318.528480][ T5973] ? __pfx__printk+0x10/0x10
[ 318.528499][ T5973] ? __pfx___might_resched+0x10/0x10
[ 318.528516][ T5973] ? fs_reclaim_acquire+0x7d/0x100
[ 318.528536][ T5973] should_fail_ex+0x414/0x560
[ 318.528554][ T5973] should_failslab+0xa8/0x100
[ 318.528571][ T5973] __kmalloc_noprof+0xcb/0x4f0
[ 318.528584][ T5973] ? tomoyo_init_log+0x1a6e/0x1f70
[ 318.528604][ T5973] tomoyo_init_log+0x1a6e/0x1f70
[ 318.528634][ T5973] ? __pfx_tomoyo_init_log+0x10/0x10
[ 318.528651][ T5973] ? tomoyo_profile+0x11/0x50
[ 318.528667][ T5973] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 318.528684][ T5973] tomoyo_supervisor+0x340/0x1480
[ 318.528702][ T5973] ? format_decode+0x5a3/0xe30
[ 318.528720][ T5973] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 318.528744][ T5973] ? snprintf+0xda/0x120
[ 318.528761][ T5973] ? __pfx_snprintf+0x10/0x10
[ 318.528776][ T5973] ? tomoyo_check_acl+0x386/0x400
[ 318.528794][ T5973] tomoyo_path_number_perm+0x438/0x5a0
[ 318.528807][ T5973] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 318.528854][ T5973] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 318.528879][ T5973] ? _raw_spin_lock_irq+0xae/0xf0
[ 318.528914][ T5973] ? __pfx_ptrace_notify+0x10/0x10
[ 318.528943][ T5973] security_file_ioctl+0xcb/0x2d0
[ 318.528958][ T5973] __se_sys_ioctl+0x47/0x170
[ 318.528974][ T5973] do_syscall_64+0xfa/0x3b0
[ 318.528991][ T5973] ? lockdep_hardirqs_on+0x9c/0x150
[ 318.529006][ T5973] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 318.529018][ T5973] ? clear_bhb_loop+0x60/0xb0
[ 318.529033][ T5973] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 318.529044][ T5973] RIP: 0033:0x7fea15a51869
[ 318.529056][ T5973] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 318.529067][ T5973] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5973] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5973] exit_group(0) = ?
[pid 5973] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5973, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5974 attached
, child_tidptr=0x555576720650) = 5974
[pid 5974] set_robust_list(0x555576720660, 24) = 0
[pid 5974] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5974] setpgid(0, 0) = 0
[pid 5974] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXECexecuting program
) = 3
[pid 5974] write(3, "1000", 4) = 4
[pid 5974] close(3) = 0
[pid 5974] write(1, "executing program\n", 18) = 18
[pid 5974] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5974] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5974] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[ 318.529082][ T5973] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 318.529091][ T5973] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 318.529099][ T5973] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 318.529107][ T5973] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 318.529114][ T5973] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 318.529132][ T5973]
[pid 5974] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5974] write(6, "4", 1) = 1
[ 318.859128][ T5974] FAULT_INJECTION: forcing a failure.
[ 318.859128][ T5974] name failslab, interval 1, probability 0, space 0, times 0
[ 318.872577][ T5974] CPU: 0 UID: 0 PID: 5974 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 318.872600][ T5974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 318.872607][ T5974] Call Trace:
[ 318.872612][ T5974]
[ 318.872617][ T5974] dump_stack_lvl+0x189/0x250
[ 318.872738][ T5974] ? __pfx____ratelimit+0x10/0x10
[ 318.872758][ T5974] ? __pfx_dump_stack_lvl+0x10/0x10
[ 318.872772][ T5974] ? __pfx__printk+0x10/0x10
[ 318.872792][ T5974] ? __pfx___might_resched+0x10/0x10
[ 318.872809][ T5974] ? fs_reclaim_acquire+0x7d/0x100
[ 318.872830][ T5974] should_fail_ex+0x414/0x560
[ 318.872847][ T5974] should_failslab+0xa8/0x100
[ 318.872865][ T5974] __kmalloc_noprof+0xcb/0x4f0
[ 318.872880][ T5974] ? tomoyo_init_log+0x1a6e/0x1f70
[ 318.872902][ T5974] tomoyo_init_log+0x1a6e/0x1f70
[ 318.872932][ T5974] ? __pfx_tomoyo_init_log+0x10/0x10
[ 318.872949][ T5974] ? tomoyo_profile+0x11/0x50
[ 318.872965][ T5974] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 318.872983][ T5974] tomoyo_supervisor+0x340/0x1480
[ 318.873002][ T5974] ? format_decode+0x5a3/0xe30
[ 318.873020][ T5974] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 318.873044][ T5974] ? snprintf+0xda/0x120
[ 318.873062][ T5974] ? __pfx_snprintf+0x10/0x10
[ 318.873076][ T5974] ? tomoyo_check_acl+0x386/0x400
[ 318.873095][ T5974] tomoyo_path_number_perm+0x438/0x5a0
[ 318.873129][ T5974] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 318.873155][ T5974] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 318.873187][ T5974] ? _raw_spin_lock_irq+0xae/0xf0
[ 318.873249][ T5974] ? __pfx_ptrace_notify+0x10/0x10
[ 318.873289][ T5974] security_file_ioctl+0xcb/0x2d0
[ 318.873315][ T5974] __se_sys_ioctl+0x47/0x170
[ 318.873340][ T5974] do_syscall_64+0xfa/0x3b0
[ 318.873365][ T5974] ? lockdep_hardirqs_on+0x9c/0x150
[ 318.873392][ T5974] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 318.873411][ T5974] ? clear_bhb_loop+0x60/0xb0
[ 318.873436][ T5974] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 318.873454][ T5974] RIP: 0033:0x7fea15a51869
[ 318.873468][ T5974] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 318.873479][ T5974] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 318.873495][ T5974] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5974] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5974] exit_group(0) = ?
[pid 5974] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5974, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5975 attached
, child_tidptr=0x555576720650) = 5975
[pid 5975] set_robust_list(0x555576720660, 24) = 0
[pid 5975] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5975] setpgid(0, 0) = 0
[ 318.873504][ T5974] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 318.873512][ T5974] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 318.873521][ T5974] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 318.873528][ T5974] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 318.873548][ T5974]
[pid 5975] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5975] write(3, "1000", 4) = 4
[pid 5975] close(3) = 0
executing program
[pid 5975] write(1, "executing program\n", 18) = 18
[pid 5975] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5975] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5975] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5975] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5975] write(6, "4", 1) = 1
[pid 5975] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5975] exit_group(0) = ?
[pid 5975] +++ exited with 0 +++
[ 319.262345][ T5975] FAULT_INJECTION: forcing a failure.
[ 319.262345][ T5975] name failslab, interval 1, probability 0, space 0, times 0
[ 319.275974][ T5975] CPU: 1 UID: 0 PID: 5975 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 319.276002][ T5975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 319.276014][ T5975] Call Trace:
[ 319.276022][ T5975]
[ 319.276029][ T5975] dump_stack_lvl+0x189/0x250
[ 319.276056][ T5975] ? __pfx____ratelimit+0x10/0x10
[ 319.276074][ T5975] ? __pfx_dump_stack_lvl+0x10/0x10
[ 319.276093][ T5975] ? __pfx__printk+0x10/0x10
[ 319.276124][ T5975] ? __pfx___might_resched+0x10/0x10
[ 319.276151][ T5975] ? fs_reclaim_acquire+0x7d/0x100
[ 319.276184][ T5975] should_fail_ex+0x414/0x560
[ 319.276212][ T5975] should_failslab+0xa8/0x100
[ 319.276240][ T5975] __kmalloc_noprof+0xcb/0x4f0
[ 319.276264][ T5975] ? tomoyo_init_log+0x1a6e/0x1f70
[ 319.276309][ T5975] tomoyo_init_log+0x1a6e/0x1f70
[ 319.276362][ T5975] ? __pfx_tomoyo_init_log+0x10/0x10
[ 319.276390][ T5975] ? tomoyo_profile+0x11/0x50
[ 319.276414][ T5975] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 319.276432][ T5975] tomoyo_supervisor+0x340/0x1480
[ 319.276451][ T5975] ? format_decode+0x5a3/0xe30
[ 319.276469][ T5975] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 319.276493][ T5975] ? snprintf+0xda/0x120
[ 319.276509][ T5975] ? __pfx_snprintf+0x10/0x10
[ 319.276524][ T5975] ? tomoyo_check_acl+0x386/0x400
[ 319.276541][ T5975] tomoyo_path_number_perm+0x438/0x5a0
[ 319.276555][ T5975] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 319.276569][ T5975] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 319.276588][ T5975] ? _raw_spin_lock_irq+0xae/0xf0
[ 319.276622][ T5975] ? __pfx_ptrace_notify+0x10/0x10
[ 319.276647][ T5975] security_file_ioctl+0xcb/0x2d0
[ 319.276662][ T5975] __se_sys_ioctl+0x47/0x170
[ 319.276678][ T5975] do_syscall_64+0xfa/0x3b0
[ 319.276694][ T5975] ? lockdep_hardirqs_on+0x9c/0x150
[ 319.276710][ T5975] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 319.276722][ T5975] ? clear_bhb_loop+0x60/0xb0
[ 319.276736][ T5975] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 319.276748][ T5975] RIP: 0033:0x7fea15a51869
[ 319.276760][ T5975] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 319.276772][ T5975] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
executing program
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5975, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5978 attached
, child_tidptr=0x555576720650) = 5978
[pid 5978] set_robust_list(0x555576720660, 24) = 0
[pid 5978] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5978] setpgid(0, 0) = 0
[pid 5978] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5978] write(3, "1000", 4) = 4
[pid 5978] close(3) = 0
[pid 5978] write(1, "executing program\n", 18) = 18
[pid 5978] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5978] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5978] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5978] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5978] write(6, "4", 1) = 1
[ 319.276787][ T5975] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 319.276796][ T5975] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 319.276804][ T5975] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 319.276812][ T5975] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 319.276820][ T5975] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 319.276837][ T5975]
[pid 5978] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 319.591691][ T5978] FAULT_INJECTION: forcing a failure.
[ 319.591691][ T5978] name failslab, interval 1, probability 0, space 0, times 0
[ 319.605002][ T5978] CPU: 0 UID: 0 PID: 5978 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 319.605033][ T5978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 319.605045][ T5978] Call Trace:
[ 319.605054][ T5978]
[ 319.605063][ T5978] dump_stack_lvl+0x189/0x250
[ 319.605100][ T5978] ? __pfx____ratelimit+0x10/0x10
[ 319.605127][ T5978] ? __pfx_dump_stack_lvl+0x10/0x10
[ 319.605151][ T5978] ? __pfx__printk+0x10/0x10
[ 319.605183][ T5978] ? __pfx___might_resched+0x10/0x10
[ 319.605212][ T5978] ? fs_reclaim_acquire+0x7d/0x100
[ 319.605244][ T5978] should_fail_ex+0x414/0x560
[ 319.605274][ T5978] should_failslab+0xa8/0x100
[ 319.605302][ T5978] __kmalloc_noprof+0xcb/0x4f0
[ 319.605325][ T5978] ? tomoyo_init_log+0x1a6e/0x1f70
[ 319.605369][ T5978] tomoyo_init_log+0x1a6e/0x1f70
[ 319.605424][ T5978] ? __pfx_tomoyo_init_log+0x10/0x10
[ 319.605451][ T5978] ? tomoyo_profile+0x11/0x50
[ 319.605476][ T5978] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 319.605505][ T5978] tomoyo_supervisor+0x340/0x1480
[ 319.605533][ T5978] ? format_decode+0x5a3/0xe30
[ 319.605562][ T5978] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 319.605602][ T5978] ? snprintf+0xda/0x120
[ 319.605630][ T5978] ? __pfx_snprintf+0x10/0x10
[ 319.605656][ T5978] ? tomoyo_check_acl+0x386/0x400
[ 319.605686][ T5978] tomoyo_path_number_perm+0x438/0x5a0
[ 319.605707][ T5978] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 319.605723][ T5978] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 319.605742][ T5978] ? _raw_spin_lock_irq+0xae/0xf0
[ 319.605776][ T5978] ? __pfx_ptrace_notify+0x10/0x10
[ 319.605866][ T5978] security_file_ioctl+0xcb/0x2d0
[ 319.605895][ T5978] __se_sys_ioctl+0x47/0x170
[ 319.605912][ T5978] do_syscall_64+0xfa/0x3b0
[ 319.605929][ T5978] ? lockdep_hardirqs_on+0x9c/0x150
[ 319.605947][ T5978] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 319.605959][ T5978] ? clear_bhb_loop+0x60/0xb0
[ 319.605974][ T5978] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 319.605985][ T5978] RIP: 0033:0x7fea15a51869
[ 319.605999][ T5978] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 319.606010][ T5978] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5978] exit_group(0) = ?
[pid 5978] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5978, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5979 attached
, child_tidptr=0x555576720650) = 5979
[ 319.606025][ T5978] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 319.606037][ T5978] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 319.606046][ T5978] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 319.606054][ T5978] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 319.606061][ T5978] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 319.606122][ T5978]
[pid 5979] set_robust_list(0x555576720660, 24) = 0
[pid 5979] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5979] setpgid(0, 0) = 0
[pid 5979] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5979] write(3, "1000", 4) = 4
[pid 5979] close(3) = 0
executing program
[pid 5979] write(1, "executing program\n", 18) = 18
[pid 5979] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5979] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5979] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5979] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5979] write(6, "4", 1) = 1
[pid 5979] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5979] exit_group(0) = ?
[pid 5979] +++ exited with 0 +++
[ 319.974492][ T5979] FAULT_INJECTION: forcing a failure.
[ 319.974492][ T5979] name failslab, interval 1, probability 0, space 0, times 0
[ 319.987462][ T5979] CPU: 1 UID: 0 PID: 5979 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 319.987482][ T5979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 319.987490][ T5979] Call Trace:
[ 319.987495][ T5979]
[ 319.987500][ T5979] dump_stack_lvl+0x189/0x250
[ 319.987519][ T5979] ? __pfx____ratelimit+0x10/0x10
[ 319.987538][ T5979] ? __pfx_dump_stack_lvl+0x10/0x10
[ 319.987551][ T5979] ? __pfx__printk+0x10/0x10
[ 319.987570][ T5979] ? __pfx___might_resched+0x10/0x10
[ 319.987587][ T5979] ? fs_reclaim_acquire+0x7d/0x100
[ 319.987607][ T5979] should_fail_ex+0x414/0x560
[ 319.987625][ T5979] should_failslab+0xa8/0x100
[ 319.987642][ T5979] __kmalloc_noprof+0xcb/0x4f0
[ 319.987656][ T5979] ? tomoyo_init_log+0x1a6e/0x1f70
[ 319.987676][ T5979] tomoyo_init_log+0x1a6e/0x1f70
[ 319.987705][ T5979] ? __pfx_tomoyo_init_log+0x10/0x10
[ 319.987722][ T5979] ? tomoyo_profile+0x11/0x50
[ 319.987737][ T5979] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 319.987755][ T5979] tomoyo_supervisor+0x340/0x1480
[ 319.987773][ T5979] ? format_decode+0x5a3/0xe30
[ 319.987791][ T5979] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 319.987815][ T5979] ? snprintf+0xda/0x120
[ 319.987831][ T5979] ? __pfx_snprintf+0x10/0x10
[ 319.987846][ T5979] ? tomoyo_check_acl+0x386/0x400
[ 319.987864][ T5979] tomoyo_path_number_perm+0x438/0x5a0
[ 319.987878][ T5979] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 319.987893][ T5979] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 319.987911][ T5979] ? _raw_spin_lock_irq+0xae/0xf0
[ 319.987946][ T5979] ? __pfx_ptrace_notify+0x10/0x10
[ 319.987971][ T5979] security_file_ioctl+0xcb/0x2d0
[ 319.987986][ T5979] __se_sys_ioctl+0x47/0x170
[ 319.988002][ T5979] do_syscall_64+0xfa/0x3b0
[ 319.988041][ T5979] ? lockdep_hardirqs_on+0x9c/0x150
[ 319.988057][ T5979] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 319.988069][ T5979] ? clear_bhb_loop+0x60/0xb0
[ 319.988084][ T5979] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 319.988095][ T5979] RIP: 0033:0x7fea15a51869
[ 319.988107][ T5979] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 319.988118][ T5979] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5979, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5980 attached
, child_tidptr=0x555576720650) = 5980
[pid 5980] set_robust_list(0x555576720660, 24) = 0
[pid 5980] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5980] setpgid(0, 0) = 0
[pid 5980] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5980] write(3, "1000", 4) = 4
[pid 5980] close(3) = 0
[pid 5980] write(1, "executing program\n", 18executing program
) = 18
[pid 5980] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5980] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5980] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5980] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[ 319.988133][ T5979] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 319.988142][ T5979] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 319.988150][ T5979] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 319.988157][ T5979] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 319.988165][ T5979] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 319.988182][ T5979]
[pid 5980] write(6, "4", 1) = 1
[pid 5980] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5980] exit_group(0) = ?
[pid 5980] +++ exited with 0 +++
[ 320.311421][ T5980] FAULT_INJECTION: forcing a failure.
[ 320.311421][ T5980] name failslab, interval 1, probability 0, space 0, times 0
[ 320.324288][ T5980] CPU: 0 UID: 0 PID: 5980 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 320.324318][ T5980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 320.324330][ T5980] Call Trace:
[ 320.324340][ T5980]
[ 320.324348][ T5980] dump_stack_lvl+0x189/0x250
[ 320.324376][ T5980] ? __pfx____ratelimit+0x10/0x10
[ 320.324404][ T5980] ? __pfx_dump_stack_lvl+0x10/0x10
[ 320.324426][ T5980] ? __pfx__printk+0x10/0x10
[ 320.324458][ T5980] ? __pfx___might_resched+0x10/0x10
[ 320.324485][ T5980] ? fs_reclaim_acquire+0x7d/0x100
[ 320.324520][ T5980] should_fail_ex+0x414/0x560
[ 320.324549][ T5980] should_failslab+0xa8/0x100
[ 320.324576][ T5980] __kmalloc_noprof+0xcb/0x4f0
[ 320.324601][ T5980] ? tomoyo_init_log+0x1a6e/0x1f70
[ 320.324634][ T5980] tomoyo_init_log+0x1a6e/0x1f70
[ 320.324688][ T5980] ? __pfx_tomoyo_init_log+0x10/0x10
[ 320.324713][ T5980] ? tomoyo_profile+0x11/0x50
[ 320.324729][ T5980] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 320.324748][ T5980] tomoyo_supervisor+0x340/0x1480
[ 320.324766][ T5980] ? format_decode+0x5a3/0xe30
[ 320.324784][ T5980] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 320.324807][ T5980] ? snprintf+0xda/0x120
[ 320.324824][ T5980] ? __pfx_snprintf+0x10/0x10
[ 320.324839][ T5980] ? tomoyo_check_acl+0x386/0x400
[ 320.324856][ T5980] tomoyo_path_number_perm+0x438/0x5a0
[ 320.324870][ T5980] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 320.324885][ T5980] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 320.324903][ T5980] ? _raw_spin_lock_irq+0xae/0xf0
[ 320.324938][ T5980] ? __pfx_ptrace_notify+0x10/0x10
[ 320.324962][ T5980] security_file_ioctl+0xcb/0x2d0
[ 320.324977][ T5980] __se_sys_ioctl+0x47/0x170
[ 320.324993][ T5980] do_syscall_64+0xfa/0x3b0
[ 320.325020][ T5980] ? lockdep_hardirqs_on+0x9c/0x150
[ 320.325037][ T5980] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 320.325049][ T5980] ? clear_bhb_loop+0x60/0xb0
[ 320.325063][ T5980] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 320.325075][ T5980] RIP: 0033:0x7fea15a51869
[ 320.325088][ T5980] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 320.325099][ T5980] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5980, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5981 attached
, child_tidptr=0x555576720650) = 5981
[pid 5981] set_robust_list(0x555576720660, 24) = 0
[pid 5981] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5981] setpgid(0, 0) = 0
[pid 5981] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5981] write(3, "1000", 4) = 4
[ 320.325114][ T5980] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 320.325124][ T5980] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 320.325131][ T5980] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 320.325139][ T5980] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 320.325146][ T5980] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 320.325164][ T5980]
[pid 5981] close(3) = 0
executing program
[pid 5981] write(1, "executing program\n", 18) = 18
[pid 5981] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5981] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5981] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5981] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5981] write(6, "4", 1) = 1
[pid 5981] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 320.722348][ T5981] FAULT_INJECTION: forcing a failure.
[ 320.722348][ T5981] name failslab, interval 1, probability 0, space 0, times 0
[ 320.735559][ T5981] CPU: 1 UID: 0 PID: 5981 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 320.735588][ T5981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 320.735599][ T5981] Call Trace:
[ 320.735608][ T5981]
[ 320.735617][ T5981] dump_stack_lvl+0x189/0x250
[ 320.735643][ T5981] ? __pfx____ratelimit+0x10/0x10
[ 320.735661][ T5981] ? __pfx_dump_stack_lvl+0x10/0x10
[ 320.735674][ T5981] ? __pfx__printk+0x10/0x10
[ 320.735693][ T5981] ? __pfx___might_resched+0x10/0x10
[ 320.735710][ T5981] ? fs_reclaim_acquire+0x7d/0x100
[ 320.735730][ T5981] should_fail_ex+0x414/0x560
[ 320.735748][ T5981] should_failslab+0xa8/0x100
[ 320.735764][ T5981] __kmalloc_noprof+0xcb/0x4f0
[ 320.735779][ T5981] ? tomoyo_init_log+0x1a6e/0x1f70
[ 320.735799][ T5981] tomoyo_init_log+0x1a6e/0x1f70
[ 320.735829][ T5981] ? __pfx_tomoyo_init_log+0x10/0x10
[ 320.735845][ T5981] ? tomoyo_profile+0x11/0x50
[ 320.735861][ T5981] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 320.735879][ T5981] tomoyo_supervisor+0x340/0x1480
[ 320.735897][ T5981] ? format_decode+0x5a3/0xe30
[ 320.735915][ T5981] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 320.735939][ T5981] ? snprintf+0xda/0x120
[ 320.735955][ T5981] ? __pfx_snprintf+0x10/0x10
[ 320.735970][ T5981] ? tomoyo_check_acl+0x386/0x400
[ 320.735988][ T5981] tomoyo_path_number_perm+0x438/0x5a0
[ 320.736002][ T5981] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 320.736017][ T5981] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 320.736035][ T5981] ? _raw_spin_lock_irq+0xae/0xf0
[ 320.736070][ T5981] ? __pfx_ptrace_notify+0x10/0x10
[ 320.736097][ T5981] security_file_ioctl+0xcb/0x2d0
[ 320.736112][ T5981] __se_sys_ioctl+0x47/0x170
[ 320.736127][ T5981] do_syscall_64+0xfa/0x3b0
[ 320.736143][ T5981] ? lockdep_hardirqs_on+0x9c/0x150
[ 320.736159][ T5981] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 320.736171][ T5981] ? clear_bhb_loop+0x60/0xb0
[ 320.736185][ T5981] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 320.736197][ T5981] RIP: 0033:0x7fea15a51869
[ 320.736209][ T5981] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 320.736219][ T5981] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5981] exit_group(0) = ?
[pid 5981] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5981, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5982 attached
, child_tidptr=0x555576720650) = 5982
[pid 5982] set_robust_list(0x555576720660, 24) = 0
[ 320.736234][ T5981] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 320.736243][ T5981] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 320.736251][ T5981] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 320.736258][ T5981] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 320.736265][ T5981] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 320.736283][ T5981]
[pid 5982] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5982] setpgid(0, 0) = 0
[pid 5982] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5982] write(3, "1000", 4) = 4
executing program
[pid 5982] close(3) = 0
[pid 5982] write(1, "executing program\n", 18) = 18
[pid 5982] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5982] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5982] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5982] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5982] write(6, "4", 1) = 1
[pid 5982] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 321.067731][ T5982] FAULT_INJECTION: forcing a failure.
[ 321.067731][ T5982] name failslab, interval 1, probability 0, space 0, times 0
[ 321.080804][ T5982] CPU: 0 UID: 0 PID: 5982 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 321.080832][ T5982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 321.080844][ T5982] Call Trace:
[ 321.080852][ T5982]
[ 321.080861][ T5982] dump_stack_lvl+0x189/0x250
[ 321.080881][ T5982] ? __pfx____ratelimit+0x10/0x10
[ 321.080898][ T5982] ? __pfx_dump_stack_lvl+0x10/0x10
[ 321.080911][ T5982] ? __pfx__printk+0x10/0x10
[ 321.080931][ T5982] ? __pfx___might_resched+0x10/0x10
[ 321.080948][ T5982] ? fs_reclaim_acquire+0x7d/0x100
[ 321.080968][ T5982] should_fail_ex+0x414/0x560
[ 321.080985][ T5982] should_failslab+0xa8/0x100
[ 321.081002][ T5982] __kmalloc_noprof+0xcb/0x4f0
[ 321.081016][ T5982] ? tomoyo_init_log+0x1a6e/0x1f70
[ 321.081036][ T5982] tomoyo_init_log+0x1a6e/0x1f70
[ 321.081066][ T5982] ? __pfx_tomoyo_init_log+0x10/0x10
[ 321.081083][ T5982] ? tomoyo_profile+0x11/0x50
[ 321.081104][ T5982] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 321.081122][ T5982] tomoyo_supervisor+0x340/0x1480
[ 321.081140][ T5982] ? format_decode+0x5a3/0xe30
[ 321.081158][ T5982] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 321.081182][ T5982] ? snprintf+0xda/0x120
[ 321.081199][ T5982] ? __pfx_snprintf+0x10/0x10
[ 321.081214][ T5982] ? tomoyo_check_acl+0x386/0x400
[ 321.081232][ T5982] tomoyo_path_number_perm+0x438/0x5a0
[ 321.081245][ T5982] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 321.081260][ T5982] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 321.081279][ T5982] ? _raw_spin_lock_irq+0xae/0xf0
[ 321.081313][ T5982] ? __pfx_ptrace_notify+0x10/0x10
[ 321.081348][ T5982] security_file_ioctl+0xcb/0x2d0
[ 321.081363][ T5982] __se_sys_ioctl+0x47/0x170
[ 321.081379][ T5982] do_syscall_64+0xfa/0x3b0
[ 321.081395][ T5982] ? lockdep_hardirqs_on+0x9c/0x150
[ 321.081411][ T5982] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 321.081423][ T5982] ? clear_bhb_loop+0x60/0xb0
[ 321.081437][ T5982] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 321.081455][ T5982] RIP: 0033:0x7fea15a51869
[ 321.081473][ T5982] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 321.081484][ T5982] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 321.081499][ T5982] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5982] exit_group(0) = ?
[pid 5982] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5982, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5983 attached
, child_tidptr=0x555576720650) = 5983
[pid 5983] set_robust_list(0x555576720660, 24) = 0
[pid 5983] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5983] setpgid(0, 0) = 0
[pid 5983] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5983] write(3, "1000", 4) = 4
[pid 5983] close(3) = 0
executing program
[pid 5983] write(1, "executing program\n", 18) = 18
[pid 5983] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5983] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5983] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5983] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[ 321.081508][ T5982] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 321.081516][ T5982] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 321.081523][ T5982] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 321.081531][ T5982] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 321.081548][ T5982]
[pid 5983] write(6, "4", 1) = 1
[ 321.399956][ T5983] FAULT_INJECTION: forcing a failure.
[ 321.399956][ T5983] name failslab, interval 1, probability 0, space 0, times 0
[ 321.412772][ T5983] CPU: 1 UID: 0 PID: 5983 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 321.412800][ T5983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 321.412812][ T5983] Call Trace:
[ 321.412821][ T5983]
[ 321.412827][ T5983] dump_stack_lvl+0x189/0x250
[ 321.412845][ T5983] ? __pfx____ratelimit+0x10/0x10
[ 321.412875][ T5983] ? __pfx_dump_stack_lvl+0x10/0x10
[ 321.412889][ T5983] ? __pfx__printk+0x10/0x10
[ 321.412908][ T5983] ? __pfx___might_resched+0x10/0x10
[ 321.412925][ T5983] ? fs_reclaim_acquire+0x7d/0x100
[ 321.412951][ T5983] should_fail_ex+0x414/0x560
[ 321.412969][ T5983] should_failslab+0xa8/0x100
[ 321.412986][ T5983] __kmalloc_noprof+0xcb/0x4f0
[ 321.413000][ T5983] ? tomoyo_init_log+0x1a6e/0x1f70
[ 321.413020][ T5983] tomoyo_init_log+0x1a6e/0x1f70
[ 321.413050][ T5983] ? __pfx_tomoyo_init_log+0x10/0x10
[ 321.413067][ T5983] ? tomoyo_profile+0x11/0x50
[ 321.413084][ T5983] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 321.413110][ T5983] tomoyo_supervisor+0x340/0x1480
[ 321.413140][ T5983] ? format_decode+0x5a3/0xe30
[ 321.413178][ T5983] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 321.413219][ T5983] ? snprintf+0xda/0x120
[ 321.413247][ T5983] ? __pfx_snprintf+0x10/0x10
[ 321.413273][ T5983] ? tomoyo_check_acl+0x386/0x400
[ 321.413304][ T5983] tomoyo_path_number_perm+0x438/0x5a0
[ 321.413329][ T5983] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 321.413362][ T5983] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 321.413395][ T5983] ? _raw_spin_lock_irq+0xae/0xf0
[ 321.413459][ T5983] ? __pfx_ptrace_notify+0x10/0x10
[ 321.413502][ T5983] security_file_ioctl+0xcb/0x2d0
[ 321.413528][ T5983] __se_sys_ioctl+0x47/0x170
[ 321.413556][ T5983] do_syscall_64+0xfa/0x3b0
[ 321.413583][ T5983] ? lockdep_hardirqs_on+0x9c/0x150
[ 321.413610][ T5983] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 321.413630][ T5983] ? clear_bhb_loop+0x60/0xb0
[ 321.413653][ T5983] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 321.413667][ T5983] RIP: 0033:0x7fea15a51869
[ 321.413680][ T5983] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 321.413690][ T5983] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 321.413706][ T5983] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5983] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5983] exit_group(0) = ?
[pid 5983] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5983, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5984 attached
, child_tidptr=0x555576720650) = 5984
[pid 5984] set_robust_list(0x555576720660, 24) = 0
[pid 5984] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5984] setpgid(0, 0) = 0
[pid 5984] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5984] write(3, "1000", 4) = 4
executing program
[pid 5984] close(3) = 0
[pid 5984] write(1, "executing program\n", 18) = 18
[pid 5984] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5984] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5984] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5984] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5984] write(6, "4", 1) = 1
[ 321.413715][ T5983] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 321.413723][ T5983] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 321.413730][ T5983] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 321.413738][ T5983] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 321.413756][ T5983]
[pid 5984] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 321.708048][ T5984] FAULT_INJECTION: forcing a failure.
[ 321.708048][ T5984] name failslab, interval 1, probability 0, space 0, times 0
[ 321.720766][ T5984] CPU: 1 UID: 0 PID: 5984 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 321.720793][ T5984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 321.720804][ T5984] Call Trace:
[ 321.720813][ T5984]
[ 321.720821][ T5984] dump_stack_lvl+0x189/0x250
[ 321.720848][ T5984] ? __pfx____ratelimit+0x10/0x10
[ 321.720874][ T5984] ? __pfx_dump_stack_lvl+0x10/0x10
[ 321.720894][ T5984] ? __pfx__printk+0x10/0x10
[ 321.720927][ T5984] ? __pfx___might_resched+0x10/0x10
[ 321.720953][ T5984] ? fs_reclaim_acquire+0x7d/0x100
[ 321.720984][ T5984] should_fail_ex+0x414/0x560
[ 321.721012][ T5984] should_failslab+0xa8/0x100
[ 321.721040][ T5984] __kmalloc_noprof+0xcb/0x4f0
[ 321.721064][ T5984] ? tomoyo_init_log+0x1a6e/0x1f70
[ 321.721096][ T5984] tomoyo_init_log+0x1a6e/0x1f70
[ 321.721144][ T5984] ? __pfx_tomoyo_init_log+0x10/0x10
[ 321.721161][ T5984] ? tomoyo_profile+0x11/0x50
[ 321.721177][ T5984] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 321.721195][ T5984] tomoyo_supervisor+0x340/0x1480
[ 321.721214][ T5984] ? format_decode+0x5a3/0xe30
[ 321.721232][ T5984] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 321.721256][ T5984] ? snprintf+0xda/0x120
[ 321.721273][ T5984] ? __pfx_snprintf+0x10/0x10
[ 321.721288][ T5984] ? tomoyo_check_acl+0x386/0x400
[ 321.721306][ T5984] tomoyo_path_number_perm+0x438/0x5a0
[ 321.721320][ T5984] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 321.721342][ T5984] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 321.721362][ T5984] ? _raw_spin_lock_irq+0xae/0xf0
[ 321.721397][ T5984] ? __pfx_ptrace_notify+0x10/0x10
[ 321.721422][ T5984] security_file_ioctl+0xcb/0x2d0
[ 321.721437][ T5984] __se_sys_ioctl+0x47/0x170
[ 321.721453][ T5984] do_syscall_64+0xfa/0x3b0
[ 321.721470][ T5984] ? lockdep_hardirqs_on+0x9c/0x150
[ 321.721486][ T5984] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 321.721498][ T5984] ? clear_bhb_loop+0x60/0xb0
[ 321.721513][ T5984] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 321.721525][ T5984] RIP: 0033:0x7fea15a51869
[ 321.721537][ T5984] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 321.721548][ T5984] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5984] exit_group(0) = ?
[pid 5984] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5984, si_uid=0, si_status=0, si_utime=0, si_stime=29 /* 0.29 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5985 attached
, child_tidptr=0x555576720650) = 5985
[pid 5985] set_robust_list(0x555576720660, 24) = 0
[pid 5985] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5985] setpgid(0, 0) = 0
[ 321.721563][ T5984] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 321.721572][ T5984] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 321.721580][ T5984] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 321.721587][ T5984] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 321.721594][ T5984] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 321.721612][ T5984]
[pid 5985] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5985] write(3, "1000", 4) = 4
[pid 5985] close(3) = 0
executing program
[pid 5985] write(1, "executing program\n", 18) = 18
[pid 5985] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5985] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5985] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5985] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5985] write(6, "4", 1) = 1
[pid 5985] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5985] exit_group(0) = ?
[ 322.087319][ T5985] FAULT_INJECTION: forcing a failure.
[ 322.087319][ T5985] name failslab, interval 1, probability 0, space 0, times 0
[ 322.100468][ T5985] CPU: 0 UID: 0 PID: 5985 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 322.100490][ T5985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 322.100498][ T5985] Call Trace:
[ 322.100503][ T5985]
[ 322.100508][ T5985] dump_stack_lvl+0x189/0x250
[ 322.100527][ T5985] ? __pfx____ratelimit+0x10/0x10
[ 322.100545][ T5985] ? __pfx_dump_stack_lvl+0x10/0x10
[ 322.100558][ T5985] ? __pfx__printk+0x10/0x10
[ 322.100577][ T5985] ? __pfx___might_resched+0x10/0x10
[ 322.100594][ T5985] ? fs_reclaim_acquire+0x7d/0x100
[ 322.100614][ T5985] should_fail_ex+0x414/0x560
[ 322.100631][ T5985] should_failslab+0xa8/0x100
[ 322.100648][ T5985] __kmalloc_noprof+0xcb/0x4f0
[ 322.100662][ T5985] ? tomoyo_init_log+0x1a6e/0x1f70
[ 322.100682][ T5985] tomoyo_init_log+0x1a6e/0x1f70
[ 322.100697][ T5985] ? lockdep_hardirqs_on+0x9c/0x150
[ 322.100727][ T5985] ? __pfx_tomoyo_init_log+0x10/0x10
[ 322.100744][ T5985] ? tomoyo_profile+0x11/0x50
[ 322.100760][ T5985] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 322.100777][ T5985] tomoyo_supervisor+0x340/0x1480
[ 322.100795][ T5985] ? format_decode+0x5a3/0xe30
[ 322.100813][ T5985] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 322.100837][ T5985] ? snprintf+0xda/0x120
[ 322.100854][ T5985] ? __pfx_snprintf+0x10/0x10
[ 322.100868][ T5985] ? tomoyo_check_acl+0x386/0x400
[ 322.100886][ T5985] tomoyo_path_number_perm+0x438/0x5a0
[ 322.100900][ T5985] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 322.100915][ T5985] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 322.100934][ T5985] ? _raw_spin_lock_irq+0xae/0xf0
[ 322.100968][ T5985] ? __pfx_ptrace_notify+0x10/0x10
[ 322.101002][ T5985] security_file_ioctl+0xcb/0x2d0
[ 322.101017][ T5985] __se_sys_ioctl+0x47/0x170
[ 322.101033][ T5985] do_syscall_64+0xfa/0x3b0
[ 322.101049][ T5985] ? lockdep_hardirqs_on+0x9c/0x150
[ 322.101065][ T5985] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 322.101077][ T5985] ? clear_bhb_loop+0x60/0xb0
[ 322.101092][ T5985] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 322.101103][ T5985] RIP: 0033:0x7fea15a51869
[ 322.101116][ T5985] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 322.101127][ T5985] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5985] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5985, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5986 attached
, child_tidptr=0x555576720650) = 5986
[pid 5986] set_robust_list(0x555576720660, 24) = 0
[pid 5986] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5986] setpgid(0, 0) = 0
[pid 5986] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5986] write(3, "1000", 4) = 4
[pid 5986] close(3) = 0
[pid 5986] write(1, "executing program\n", 18) = 18
executing program
[ 322.101142][ T5985] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 322.101151][ T5985] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 322.101159][ T5985] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 322.101166][ T5985] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 322.101174][ T5985] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 322.101191][ T5985]
[pid 5986] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5986] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5986] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5986] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5986] write(6, "4", 1) = 1
[pid 5986] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5986] exit_group(0) = ?
[ 322.475679][ T5986] FAULT_INJECTION: forcing a failure.
[ 322.475679][ T5986] name failslab, interval 1, probability 0, space 0, times 0
[ 322.488660][ T5986] CPU: 1 UID: 0 PID: 5986 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 322.488680][ T5986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 322.488687][ T5986] Call Trace:
[ 322.488692][ T5986]
[ 322.488697][ T5986] dump_stack_lvl+0x189/0x250
[ 322.488716][ T5986] ? __pfx____ratelimit+0x10/0x10
[ 322.488733][ T5986] ? __pfx_dump_stack_lvl+0x10/0x10
[ 322.488746][ T5986] ? __pfx__printk+0x10/0x10
[ 322.488766][ T5986] ? __pfx___might_resched+0x10/0x10
[ 322.488782][ T5986] ? fs_reclaim_acquire+0x7d/0x100
[ 322.488802][ T5986] should_fail_ex+0x414/0x560
[ 322.488820][ T5986] should_failslab+0xa8/0x100
[ 322.488836][ T5986] __kmalloc_noprof+0xcb/0x4f0
[ 322.488851][ T5986] ? tomoyo_init_log+0x1a6e/0x1f70
[ 322.488870][ T5986] tomoyo_init_log+0x1a6e/0x1f70
[ 322.488900][ T5986] ? __pfx_tomoyo_init_log+0x10/0x10
[ 322.488916][ T5986] ? tomoyo_profile+0x11/0x50
[ 322.488932][ T5986] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 322.488957][ T5986] tomoyo_supervisor+0x340/0x1480
[ 322.488975][ T5986] ? format_decode+0x5a3/0xe30
[ 322.488993][ T5986] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 322.489017][ T5986] ? snprintf+0xda/0x120
[ 322.489034][ T5986] ? __pfx_snprintf+0x10/0x10
[ 322.489049][ T5986] ? tomoyo_check_acl+0x386/0x400
[ 322.489067][ T5986] tomoyo_path_number_perm+0x438/0x5a0
[ 322.489081][ T5986] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 322.489096][ T5986] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 322.489115][ T5986] ? _raw_spin_lock_irq+0xae/0xf0
[ 322.489150][ T5986] ? __pfx_ptrace_notify+0x10/0x10
[ 322.489174][ T5986] security_file_ioctl+0xcb/0x2d0
[ 322.489190][ T5986] __se_sys_ioctl+0x47/0x170
[ 322.489205][ T5986] do_syscall_64+0xfa/0x3b0
[ 322.489221][ T5986] ? lockdep_hardirqs_on+0x9c/0x150
[ 322.489237][ T5986] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 322.489249][ T5986] ? clear_bhb_loop+0x60/0xb0
[ 322.489264][ T5986] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 322.489275][ T5986] RIP: 0033:0x7fea15a51869
[ 322.489287][ T5986] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 322.489298][ T5986] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 322.489313][ T5986] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5986] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5986, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5987 attached
, child_tidptr=0x555576720650) = 5987
[pid 5987] set_robust_list(0x555576720660, 24) = 0
[pid 5987] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 322.489328][ T5986] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 322.489336][ T5986] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 322.489344][ T5986] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 322.489351][ T5986] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 322.489369][ T5986]
[pid 5987] setpgid(0, 0) = 0
[pid 5987] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5987] write(3, "1000", 4) = 4
[pid 5987] close(3) = 0
[pid 5987] write(1, "executing program\n", 18executing program
) = 18
[pid 5987] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5987] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5987] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5987] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5987] write(6, "4", 1) = 1
[pid 5987] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5987] exit_group(0) = ?
[pid 5987] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5987, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
[ 322.872586][ T5987] FAULT_INJECTION: forcing a failure.
[ 322.872586][ T5987] name failslab, interval 1, probability 0, space 0, times 0
[ 322.886107][ T5987] CPU: 0 UID: 0 PID: 5987 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 322.886127][ T5987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 322.886135][ T5987] Call Trace:
[ 322.886141][ T5987]
[ 322.886146][ T5987] dump_stack_lvl+0x189/0x250
[ 322.886165][ T5987] ? __pfx____ratelimit+0x10/0x10
[ 322.886183][ T5987] ? __pfx_dump_stack_lvl+0x10/0x10
[ 322.886201][ T5987] ? __pfx__printk+0x10/0x10
[ 322.886224][ T5987] ? __pfx___might_resched+0x10/0x10
[ 322.886241][ T5987] ? fs_reclaim_acquire+0x7d/0x100
[ 322.886261][ T5987] should_fail_ex+0x414/0x560
[ 322.886279][ T5987] should_failslab+0xa8/0x100
[ 322.886295][ T5987] __kmalloc_noprof+0xcb/0x4f0
[ 322.886309][ T5987] ? tomoyo_init_log+0x1a6e/0x1f70
[ 322.886330][ T5987] tomoyo_init_log+0x1a6e/0x1f70
[ 322.886360][ T5987] ? __pfx_tomoyo_init_log+0x10/0x10
[ 322.886376][ T5987] ? tomoyo_profile+0x11/0x50
[ 322.886392][ T5987] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 322.886410][ T5987] tomoyo_supervisor+0x340/0x1480
[ 322.886428][ T5987] ? format_decode+0x5a3/0xe30
[ 322.886447][ T5987] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 322.886470][ T5987] ? snprintf+0xda/0x120
[ 322.886487][ T5987] ? __pfx_snprintf+0x10/0x10
[ 322.886501][ T5987] ? tomoyo_check_acl+0x386/0x400
[ 322.886519][ T5987] tomoyo_path_number_perm+0x438/0x5a0
[ 322.886533][ T5987] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 322.886548][ T5987] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 322.886567][ T5987] ? _raw_spin_lock_irq+0xae/0xf0
[ 322.886601][ T5987] ? __pfx_ptrace_notify+0x10/0x10
[ 322.886628][ T5987] security_file_ioctl+0xcb/0x2d0
[ 322.886643][ T5987] __se_sys_ioctl+0x47/0x170
[ 322.886659][ T5987] do_syscall_64+0xfa/0x3b0
[ 322.886675][ T5987] ? lockdep_hardirqs_on+0x9c/0x150
[ 322.886691][ T5987] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 322.886704][ T5987] ? clear_bhb_loop+0x60/0xb0
[ 322.886718][ T5987] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 322.886729][ T5987] RIP: 0033:0x7fea15a51869
[ 322.886742][ T5987] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 322.886752][ T5987] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5988 attached
, child_tidptr=0x555576720650) = 5988
[pid 5988] set_robust_list(0x555576720660, 24) = 0
[pid 5988] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5988] setpgid(0, 0) = 0
[pid 5988] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5988] write(3, "1000", 4) = 4
[pid 5988] close(3) = 0
[pid 5988] write(1, "executing program\n", 18executing program
) = 18
[pid 5988] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5988] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5988] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[ 322.886767][ T5987] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 322.886776][ T5987] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 322.886784][ T5987] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 322.886792][ T5987] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 322.886799][ T5987] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 322.886817][ T5987]
[pid 5988] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5988] write(6, "4", 1) = 1
[pid 5988] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5988] exit_group(0) = ?
[pid 5988] +++ exited with 0 +++
[ 323.234529][ T5988] FAULT_INJECTION: forcing a failure.
[ 323.234529][ T5988] name failslab, interval 1, probability 0, space 0, times 0
[ 323.247405][ T5988] CPU: 1 UID: 0 PID: 5988 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 323.247425][ T5988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 323.247433][ T5988] Call Trace:
[ 323.247441][ T5988]
[ 323.247448][ T5988] dump_stack_lvl+0x189/0x250
[ 323.247467][ T5988] ? __pfx____ratelimit+0x10/0x10
[ 323.247485][ T5988] ? __pfx_dump_stack_lvl+0x10/0x10
[ 323.247498][ T5988] ? __pfx__printk+0x10/0x10
[ 323.247517][ T5988] ? __pfx___might_resched+0x10/0x10
[ 323.247535][ T5988] ? fs_reclaim_acquire+0x7d/0x100
[ 323.247555][ T5988] should_fail_ex+0x414/0x560
[ 323.247572][ T5988] should_failslab+0xa8/0x100
[ 323.247590][ T5988] __kmalloc_noprof+0xcb/0x4f0
[ 323.247603][ T5988] ? tomoyo_init_log+0x1a6e/0x1f70
[ 323.247623][ T5988] tomoyo_init_log+0x1a6e/0x1f70
[ 323.247654][ T5988] ? __pfx_tomoyo_init_log+0x10/0x10
[ 323.247670][ T5988] ? tomoyo_profile+0x11/0x50
[ 323.247686][ T5988] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 323.247703][ T5988] tomoyo_supervisor+0x340/0x1480
[ 323.247722][ T5988] ? format_decode+0x5a3/0xe30
[ 323.247740][ T5988] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 323.247764][ T5988] ? snprintf+0xda/0x120
[ 323.247781][ T5988] ? __pfx_snprintf+0x10/0x10
[ 323.247795][ T5988] ? tomoyo_check_acl+0x386/0x400
[ 323.247813][ T5988] tomoyo_path_number_perm+0x438/0x5a0
[ 323.247828][ T5988] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 323.247843][ T5988] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 323.247862][ T5988] ? _raw_spin_lock_irq+0xae/0xf0
[ 323.247896][ T5988] ? __pfx_ptrace_notify+0x10/0x10
[ 323.247926][ T5988] security_file_ioctl+0xcb/0x2d0
[ 323.247941][ T5988] __se_sys_ioctl+0x47/0x170
[ 323.247957][ T5988] do_syscall_64+0xfa/0x3b0
[ 323.247973][ T5988] ? lockdep_hardirqs_on+0x9c/0x150
[ 323.247989][ T5988] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 323.248002][ T5988] ? clear_bhb_loop+0x60/0xb0
[ 323.248023][ T5988] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 323.248035][ T5988] RIP: 0033:0x7fea15a51869
[ 323.248048][ T5988] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 323.248059][ T5988] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5988, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5989 attached
, child_tidptr=0x555576720650) = 5989
[pid 5989] set_robust_list(0x555576720660, 24) = 0
[pid 5989] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5989] setpgid(0, 0) = 0
[pid 5989] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5989] write(3, "1000", 4) = 4
[pid 5989] close(3executing program
) = 0
[pid 5989] write(1, "executing program\n", 18) = 18
[pid 5989] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5989] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5989] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5989] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5989] write(6, "4", 1) = 1
[ 323.248074][ T5988] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 323.248083][ T5988] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 323.248091][ T5988] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 323.248099][ T5988] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 323.248106][ T5988] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 323.248129][ T5988]
[pid 5989] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5989] exit_group(0) = ?
[pid 5989] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5989, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
[ 323.561064][ T5989] FAULT_INJECTION: forcing a failure.
[ 323.561064][ T5989] name failslab, interval 1, probability 0, space 0, times 0
[ 323.574555][ T5989] CPU: 0 UID: 0 PID: 5989 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 323.574585][ T5989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 323.574597][ T5989] Call Trace:
[ 323.574606][ T5989]
[ 323.574615][ T5989] dump_stack_lvl+0x189/0x250
[ 323.574642][ T5989] ? __pfx____ratelimit+0x10/0x10
[ 323.574669][ T5989] ? __pfx_dump_stack_lvl+0x10/0x10
[ 323.574690][ T5989] ? __pfx__printk+0x10/0x10
[ 323.574724][ T5989] ? __pfx___might_resched+0x10/0x10
[ 323.574752][ T5989] ? fs_reclaim_acquire+0x7d/0x100
[ 323.574787][ T5989] should_fail_ex+0x414/0x560
[ 323.574816][ T5989] should_failslab+0xa8/0x100
[ 323.574844][ T5989] __kmalloc_noprof+0xcb/0x4f0
[ 323.574868][ T5989] ? tomoyo_init_log+0x1a6e/0x1f70
[ 323.574901][ T5989] tomoyo_init_log+0x1a6e/0x1f70
[ 323.574955][ T5989] ? __pfx_tomoyo_init_log+0x10/0x10
[ 323.574997][ T5989] ? tomoyo_profile+0x11/0x50
[ 323.575014][ T5989] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 323.575031][ T5989] tomoyo_supervisor+0x340/0x1480
[ 323.575056][ T5989] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 323.575080][ T5989] ? snprintf+0xda/0x120
[ 323.575097][ T5989] ? __pfx_snprintf+0x10/0x10
[ 323.575112][ T5989] ? tomoyo_check_acl+0x386/0x400
[ 323.575130][ T5989] tomoyo_path_number_perm+0x438/0x5a0
[ 323.575144][ T5989] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 323.575158][ T5989] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 323.575177][ T5989] ? _raw_spin_lock_irq+0xae/0xf0
[ 323.575216][ T5989] ? __pfx_ptrace_notify+0x10/0x10
[ 323.575244][ T5989] security_file_ioctl+0xcb/0x2d0
[ 323.575259][ T5989] __se_sys_ioctl+0x47/0x170
[ 323.575274][ T5989] do_syscall_64+0xfa/0x3b0
[ 323.575291][ T5989] ? lockdep_hardirqs_on+0x9c/0x150
[ 323.575307][ T5989] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 323.575319][ T5989] ? clear_bhb_loop+0x60/0xb0
[ 323.575334][ T5989] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 323.575346][ T5989] RIP: 0033:0x7fea15a51869
[ 323.575359][ T5989] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 323.575369][ T5989] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5990 attached
, child_tidptr=0x555576720650) = 5990
[pid 5990] set_robust_list(0x555576720660, 24) = 0
[pid 5990] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5990] setpgid(0, 0) = 0
[pid 5990] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5990] write(3, "1000", 4) = 4
[pid 5990] close(3) = 0
executing program
[pid 5990] write(1, "executing program\n", 18) = 18
[pid 5990] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5990] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5990] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5990] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5990] write(6, "4", 1) = 1
[ 323.575384][ T5989] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 323.575394][ T5989] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 323.575402][ T5989] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 323.575409][ T5989] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 323.575417][ T5989] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 323.575435][ T5989]
[pid 5990] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5990] exit_group(0) = ?
[ 323.891531][ T5990] FAULT_INJECTION: forcing a failure.
[ 323.891531][ T5990] name failslab, interval 1, probability 0, space 0, times 0
[ 323.904932][ T5990] CPU: 1 UID: 0 PID: 5990 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 323.904965][ T5990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 323.904978][ T5990] Call Trace:
[ 323.904986][ T5990]
[ 323.904991][ T5990] dump_stack_lvl+0x189/0x250
[ 323.905012][ T5990] ? __pfx____ratelimit+0x10/0x10
[ 323.905032][ T5990] ? __pfx_dump_stack_lvl+0x10/0x10
[ 323.905045][ T5990] ? __pfx__printk+0x10/0x10
[ 323.905065][ T5990] ? __pfx___might_resched+0x10/0x10
[ 323.905083][ T5990] ? fs_reclaim_acquire+0x7d/0x100
[ 323.905114][ T5990] should_fail_ex+0x414/0x560
[ 323.905132][ T5990] should_failslab+0xa8/0x100
[ 323.905149][ T5990] __kmalloc_noprof+0xcb/0x4f0
[ 323.905164][ T5990] ? tomoyo_init_log+0x1a6e/0x1f70
[ 323.905185][ T5990] tomoyo_init_log+0x1a6e/0x1f70
[ 323.905216][ T5990] ? __pfx_tomoyo_init_log+0x10/0x10
[ 323.905233][ T5990] ? tomoyo_profile+0x11/0x50
[ 323.905249][ T5990] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 323.905275][ T5990] tomoyo_supervisor+0x340/0x1480
[ 323.905299][ T5990] ? format_decode+0x5a3/0xe30
[ 323.905317][ T5990] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 323.905341][ T5990] ? snprintf+0xda/0x120
[ 323.905361][ T5990] ? __pfx_snprintf+0x10/0x10
[ 323.905376][ T5990] ? tomoyo_check_acl+0x386/0x400
[ 323.905395][ T5990] tomoyo_path_number_perm+0x438/0x5a0
[ 323.905409][ T5990] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 323.905424][ T5990] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 323.905443][ T5990] ? _raw_spin_lock_irq+0xae/0xf0
[ 323.905479][ T5990] ? __pfx_ptrace_notify+0x10/0x10
[ 323.905505][ T5990] security_file_ioctl+0xcb/0x2d0
[ 323.905521][ T5990] __se_sys_ioctl+0x47/0x170
[ 323.905536][ T5990] do_syscall_64+0xfa/0x3b0
[ 323.905554][ T5990] ? lockdep_hardirqs_on+0x9c/0x150
[ 323.905570][ T5990] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 323.905582][ T5990] ? clear_bhb_loop+0x60/0xb0
[ 323.905597][ T5990] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 323.905609][ T5990] RIP: 0033:0x7fea15a51869
[ 323.905623][ T5990] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 323.905634][ T5990] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5990] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5990, si_uid=0, si_status=0, si_utime=0, si_stime=28 /* 0.28 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5991 attached
, child_tidptr=0x555576720650) = 5991
[pid 5991] set_robust_list(0x555576720660, 24) = 0
[pid 5991] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5991] setpgid(0, 0) = 0
[pid 5991] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5991] write(3, "1000", 4executing program
) = 4
[pid 5991] close(3) = 0
[pid 5991] write(1, "executing program\n", 18) = 18
[pid 5991] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5991] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5991] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5991] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5991] write(6, "4", 1) = 1
[ 323.905649][ T5990] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 323.905659][ T5990] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 323.905667][ T5990] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 323.905674][ T5990] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 323.905681][ T5990] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 323.905699][ T5990]
[pid 5991] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5991] exit_group(0) = ?
[ 324.215063][ T5991] FAULT_INJECTION: forcing a failure.
[ 324.215063][ T5991] name failslab, interval 1, probability 0, space 0, times 0
[ 324.229482][ T5991] CPU: 0 UID: 0 PID: 5991 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 324.229504][ T5991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 324.229512][ T5991] Call Trace:
[ 324.229517][ T5991]
[ 324.229523][ T5991] dump_stack_lvl+0x189/0x250
[ 324.229545][ T5991] ? __pfx____ratelimit+0x10/0x10
[ 324.229563][ T5991] ? __pfx_dump_stack_lvl+0x10/0x10
[ 324.229576][ T5991] ? __pfx__printk+0x10/0x10
[ 324.229595][ T5991] ? __pfx___might_resched+0x10/0x10
[ 324.229614][ T5991] ? fs_reclaim_acquire+0x7d/0x100
[ 324.229634][ T5991] should_fail_ex+0x414/0x560
[ 324.229652][ T5991] should_failslab+0xa8/0x100
[ 324.229671][ T5991] __kmalloc_noprof+0xcb/0x4f0
[ 324.229686][ T5991] ? tomoyo_init_log+0x1a6e/0x1f70
[ 324.229706][ T5991] tomoyo_init_log+0x1a6e/0x1f70
[ 324.229737][ T5991] ? __pfx_tomoyo_init_log+0x10/0x10
[ 324.229753][ T5991] ? tomoyo_profile+0x11/0x50
[ 324.229769][ T5991] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 324.229787][ T5991] tomoyo_supervisor+0x340/0x1480
[ 324.229805][ T5991] ? format_decode+0x5a3/0xe30
[ 324.229824][ T5991] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 324.229847][ T5991] ? snprintf+0xda/0x120
[ 324.229864][ T5991] ? __pfx_snprintf+0x10/0x10
[ 324.229879][ T5991] ? tomoyo_check_acl+0x386/0x400
[ 324.229897][ T5991] tomoyo_path_number_perm+0x438/0x5a0
[ 324.229911][ T5991] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 324.229928][ T5991] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 324.229947][ T5991] ? _raw_spin_lock_irq+0xae/0xf0
[ 324.229982][ T5991] ? __pfx_ptrace_notify+0x10/0x10
[ 324.230018][ T5991] security_file_ioctl+0xcb/0x2d0
[ 324.230033][ T5991] __se_sys_ioctl+0x47/0x170
[ 324.230049][ T5991] do_syscall_64+0xfa/0x3b0
[ 324.230066][ T5991] ? lockdep_hardirqs_on+0x9c/0x150
[ 324.230082][ T5991] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 324.230094][ T5991] ? clear_bhb_loop+0x60/0xb0
[ 324.230109][ T5991] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 324.230120][ T5991] RIP: 0033:0x7fea15a51869
[ 324.230134][ T5991] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 324.230145][ T5991] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5991] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5991, si_uid=0, si_status=0, si_utime=0, si_stime=29 /* 0.29 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5992 attached
, child_tidptr=0x555576720650) = 5992
[ 324.230160][ T5991] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 324.230169][ T5991] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 324.230177][ T5991] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 324.230184][ T5991] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 324.230191][ T5991] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 324.230209][ T5991]
[pid 5992] set_robust_list(0x555576720660, 24) = 0
[pid 5992] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5992] setpgid(0, 0) = 0
[pid 5992] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5992] write(3, "1000", 4) = 4
[pid 5992] close(3executing program
) = 0
[pid 5992] write(1, "executing program\n", 18) = 18
[pid 5992] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5992] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5992] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5992] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5992] write(6, "4", 1) = 1
[pid 5992] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5992] exit_group(0) = ?
[ 324.665922][ T5992] FAULT_INJECTION: forcing a failure.
[ 324.665922][ T5992] name failslab, interval 1, probability 0, space 0, times 0
[ 324.679098][ T5992] CPU: 1 UID: 0 PID: 5992 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 324.679119][ T5992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 324.679127][ T5992] Call Trace:
[ 324.679135][ T5992]
[ 324.679142][ T5992] dump_stack_lvl+0x189/0x250
[ 324.679160][ T5992] ? __pfx____ratelimit+0x10/0x10
[ 324.679179][ T5992] ? __pfx_dump_stack_lvl+0x10/0x10
[ 324.679192][ T5992] ? __pfx__printk+0x10/0x10
[ 324.679211][ T5992] ? __pfx___might_resched+0x10/0x10
[ 324.679228][ T5992] ? fs_reclaim_acquire+0x7d/0x100
[ 324.679248][ T5992] should_fail_ex+0x414/0x560
[ 324.679265][ T5992] should_failslab+0xa8/0x100
[ 324.679282][ T5992] __kmalloc_noprof+0xcb/0x4f0
[ 324.679297][ T5992] ? tomoyo_init_log+0x1a6e/0x1f70
[ 324.679320][ T5992] tomoyo_init_log+0x1a6e/0x1f70
[ 324.679351][ T5992] ? __pfx_tomoyo_init_log+0x10/0x10
[ 324.679368][ T5992] ? tomoyo_profile+0x11/0x50
[ 324.679384][ T5992] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 324.679405][ T5992] tomoyo_supervisor+0x340/0x1480
[ 324.679428][ T5992] ? format_decode+0x5a3/0xe30
[ 324.679446][ T5992] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 324.679470][ T5992] ? snprintf+0xda/0x120
[ 324.679486][ T5992] ? __pfx_snprintf+0x10/0x10
[ 324.679501][ T5992] ? tomoyo_check_acl+0x386/0x400
[ 324.679519][ T5992] tomoyo_path_number_perm+0x438/0x5a0
[ 324.679533][ T5992] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 324.679548][ T5992] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 324.679567][ T5992] ? _raw_spin_lock_irq+0xae/0xf0
[ 324.679602][ T5992] ? __pfx_ptrace_notify+0x10/0x10
[ 324.679627][ T5992] security_file_ioctl+0xcb/0x2d0
[ 324.679643][ T5992] __se_sys_ioctl+0x47/0x170
[ 324.679658][ T5992] do_syscall_64+0xfa/0x3b0
[ 324.679675][ T5992] ? lockdep_hardirqs_on+0x9c/0x150
[ 324.679691][ T5992] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 324.679706][ T5992] ? clear_bhb_loop+0x60/0xb0
[ 324.679721][ T5992] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 324.679735][ T5992] RIP: 0033:0x7fea15a51869
[ 324.679749][ T5992] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 324.679760][ T5992] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5992] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5992, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5993 attached
, child_tidptr=0x555576720650) = 5993
[pid 5993] set_robust_list(0x555576720660, 24) = 0
[ 324.679774][ T5992] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 324.679784][ T5992] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 324.679792][ T5992] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 324.679799][ T5992] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 324.679806][ T5992] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 324.679824][ T5992]
[pid 5993] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5993] setpgid(0, 0) = 0
[pid 5993] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5993] write(3, "1000", 4) = 4
[pid 5993] close(3) = 0
[pid 5993] write(1, "executing program\n", 18executing program
) = 18
[pid 5993] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5993] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5993] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5993] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5993] write(6, "4", 1) = 1
[pid 5993] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 325.058302][ T5993] FAULT_INJECTION: forcing a failure.
[ 325.058302][ T5993] name failslab, interval 1, probability 0, space 0, times 0
[ 325.071407][ T5993] CPU: 0 UID: 0 PID: 5993 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 325.071437][ T5993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 325.071449][ T5993] Call Trace:
[ 325.071458][ T5993]
[ 325.071466][ T5993] dump_stack_lvl+0x189/0x250
[ 325.071495][ T5993] ? __pfx____ratelimit+0x10/0x10
[ 325.071525][ T5993] ? __pfx_dump_stack_lvl+0x10/0x10
[ 325.071548][ T5993] ? __pfx__printk+0x10/0x10
[ 325.071581][ T5993] ? __pfx___might_resched+0x10/0x10
[ 325.071610][ T5993] ? fs_reclaim_acquire+0x7d/0x100
[ 325.071643][ T5993] should_fail_ex+0x414/0x560
[ 325.071671][ T5993] should_failslab+0xa8/0x100
[ 325.071698][ T5993] __kmalloc_noprof+0xcb/0x4f0
[ 325.071719][ T5993] ? tomoyo_init_log+0x1a6e/0x1f70
[ 325.071751][ T5993] tomoyo_init_log+0x1a6e/0x1f70
[ 325.071800][ T5993] ? __pfx_tomoyo_init_log+0x10/0x10
[ 325.071827][ T5993] ? tomoyo_profile+0x11/0x50
[ 325.071855][ T5993] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 325.071886][ T5993] tomoyo_supervisor+0x340/0x1480
[ 325.071917][ T5993] ? format_decode+0x5a3/0xe30
[ 325.071966][ T5993] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 325.072017][ T5993] ? snprintf+0xda/0x120
[ 325.072041][ T5993] ? __pfx_snprintf+0x10/0x10
[ 325.072060][ T5993] ? tomoyo_check_acl+0x386/0x400
[ 325.072084][ T5993] tomoyo_path_number_perm+0x438/0x5a0
[ 325.072102][ T5993] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 325.072121][ T5993] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 325.072146][ T5993] ? _raw_spin_lock_irq+0xae/0xf0
[ 325.072194][ T5993] ? __pfx_ptrace_notify+0x10/0x10
[ 325.072226][ T5993] security_file_ioctl+0xcb/0x2d0
[ 325.072248][ T5993] __se_sys_ioctl+0x47/0x170
[ 325.072267][ T5993] do_syscall_64+0xfa/0x3b0
[ 325.072289][ T5993] ? lockdep_hardirqs_on+0x9c/0x150
[ 325.072309][ T5993] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 325.072325][ T5993] ? clear_bhb_loop+0x60/0xb0
[ 325.072344][ T5993] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 325.072359][ T5993] RIP: 0033:0x7fea15a51869
[ 325.072375][ T5993] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 325.072389][ T5993] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 325.072408][ T5993] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5993] exit_group(0) = ?
[pid 5993] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5993, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5994 attached
, child_tidptr=0x555576720650) = 5994
[pid 5994] set_robust_list(0x555576720660, 24) = 0
[pid 5994] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5994] setpgid(0, 0) = 0
[pid 5994] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5994] write(3, "1000", 4) = 4
[pid 5994] close(3) = 0
[pid 5994] write(1, "executing program\n", 18executing program
) = 18
[pid 5994] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5994] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5994] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5994] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5994] write(6, "4", 1) = 1
[ 325.072420][ T5993] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 325.072430][ T5993] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 325.072439][ T5993] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 325.072448][ T5993] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 325.072472][ T5993]
[ 325.387723][ T5994] FAULT_INJECTION: forcing a failure.
[ 325.387723][ T5994] name failslab, interval 1, probability 0, space 0, times 0
[ 325.400786][ T5994] CPU: 1 UID: 0 PID: 5994 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 325.400817][ T5994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 325.400828][ T5994] Call Trace:
[ 325.400836][ T5994]
[ 325.400846][ T5994] dump_stack_lvl+0x189/0x250
[ 325.400875][ T5994] ? __pfx____ratelimit+0x10/0x10
[ 325.400903][ T5994] ? __pfx_dump_stack_lvl+0x10/0x10
[ 325.400923][ T5994] ? __pfx__printk+0x10/0x10
[ 325.400956][ T5994] ? __pfx___might_resched+0x10/0x10
[ 325.400983][ T5994] ? fs_reclaim_acquire+0x7d/0x100
[ 325.401013][ T5994] should_fail_ex+0x414/0x560
[ 325.401039][ T5994] should_failslab+0xa8/0x100
[ 325.401066][ T5994] __kmalloc_noprof+0xcb/0x4f0
[ 325.401088][ T5994] ? tomoyo_init_log+0x1a6e/0x1f70
[ 325.401197][ T5994] tomoyo_init_log+0x1a6e/0x1f70
[ 325.401248][ T5994] ? __pfx_tomoyo_init_log+0x10/0x10
[ 325.401274][ T5994] ? tomoyo_profile+0x11/0x50
[ 325.401299][ T5994] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 325.401329][ T5994] tomoyo_supervisor+0x340/0x1480
[ 325.401356][ T5994] ? format_decode+0x5a3/0xe30
[ 325.401385][ T5994] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 325.401431][ T5994] ? snprintf+0xda/0x120
[ 325.401464][ T5994] ? __pfx_snprintf+0x10/0x10
[ 325.401479][ T5994] ? tomoyo_check_acl+0x386/0x400
[ 325.401498][ T5994] tomoyo_path_number_perm+0x438/0x5a0
[ 325.401512][ T5994] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 325.401526][ T5994] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 325.401545][ T5994] ? _raw_spin_lock_irq+0xae/0xf0
[ 325.401580][ T5994] ? __pfx_ptrace_notify+0x10/0x10
[ 325.401604][ T5994] security_file_ioctl+0xcb/0x2d0
[ 325.401620][ T5994] __se_sys_ioctl+0x47/0x170
[ 325.401635][ T5994] do_syscall_64+0xfa/0x3b0
[ 325.401653][ T5994] ? lockdep_hardirqs_on+0x9c/0x150
[ 325.401669][ T5994] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 325.401681][ T5994] ? clear_bhb_loop+0x60/0xb0
[ 325.401696][ T5994] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 325.401708][ T5994] RIP: 0033:0x7fea15a51869
[ 325.401722][ T5994] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 325.401733][ T5994] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 325.401750][ T5994] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5994] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5994] exit_group(0) = ?
[pid 5994] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5994, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5995 attached
, child_tidptr=0x555576720650) = 5995
[pid 5995] set_robust_list(0x555576720660, 24) = 0
[pid 5995] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5995] setpgid(0, 0) = 0
[ 325.401759][ T5994] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 325.401767][ T5994] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 325.401774][ T5994] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 325.401781][ T5994] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 325.401799][ T5994]
[pid 5995] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5995] write(3, "1000", 4) = 4
[pid 5995] close(3) = 0
executing program
[pid 5995] write(1, "executing program\n", 18) = 18
[pid 5995] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5995] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5995] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5995] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5995] write(6, "4", 1) = 1
[pid 5995] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5995] exit_group(0) = ?
[pid 5995] +++ exited with 0 +++
[ 325.743669][ T5995] FAULT_INJECTION: forcing a failure.
[ 325.743669][ T5995] name failslab, interval 1, probability 0, space 0, times 0
[ 325.757008][ T5995] CPU: 0 UID: 0 PID: 5995 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 325.757038][ T5995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 325.757049][ T5995] Call Trace:
[ 325.757059][ T5995]
[ 325.757069][ T5995] dump_stack_lvl+0x189/0x250
[ 325.757097][ T5995] ? __pfx____ratelimit+0x10/0x10
[ 325.757126][ T5995] ? __pfx_dump_stack_lvl+0x10/0x10
[ 325.757147][ T5995] ? __pfx__printk+0x10/0x10
[ 325.757179][ T5995] ? __pfx___might_resched+0x10/0x10
[ 325.757202][ T5995] ? fs_reclaim_acquire+0x7d/0x100
[ 325.757222][ T5995] should_fail_ex+0x414/0x560
[ 325.757240][ T5995] should_failslab+0xa8/0x100
[ 325.757258][ T5995] __kmalloc_noprof+0xcb/0x4f0
[ 325.757272][ T5995] ? tomoyo_init_log+0x1a6e/0x1f70
[ 325.757293][ T5995] tomoyo_init_log+0x1a6e/0x1f70
[ 325.757331][ T5995] ? __pfx_tomoyo_init_log+0x10/0x10
[ 325.757347][ T5995] ? tomoyo_profile+0x11/0x50
[ 325.757363][ T5995] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 325.757381][ T5995] tomoyo_supervisor+0x340/0x1480
[ 325.757399][ T5995] ? format_decode+0x5a3/0xe30
[ 325.757417][ T5995] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 325.757441][ T5995] ? snprintf+0xda/0x120
[ 325.757458][ T5995] ? __pfx_snprintf+0x10/0x10
[ 325.757473][ T5995] ? tomoyo_check_acl+0x386/0x400
[ 325.757490][ T5995] tomoyo_path_number_perm+0x438/0x5a0
[ 325.757504][ T5995] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 325.757519][ T5995] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 325.757538][ T5995] ? _raw_spin_lock_irq+0xae/0xf0
[ 325.757573][ T5995] ? __pfx_ptrace_notify+0x10/0x10
[ 325.757597][ T5995] security_file_ioctl+0xcb/0x2d0
[ 325.757612][ T5995] __se_sys_ioctl+0x47/0x170
[ 325.757627][ T5995] do_syscall_64+0xfa/0x3b0
[ 325.757644][ T5995] ? lockdep_hardirqs_on+0x9c/0x150
[ 325.757660][ T5995] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 325.757671][ T5995] ? clear_bhb_loop+0x60/0xb0
[ 325.757686][ T5995] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 325.757698][ T5995] RIP: 0033:0x7fea15a51869
[ 325.757710][ T5995] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 325.757721][ T5995] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5995, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5996 attached
, child_tidptr=0x555576720650) = 5996
[pid 5996] set_robust_list(0x555576720660, 24) = 0
[ 325.757736][ T5995] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 325.757745][ T5995] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 325.757753][ T5995] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 325.757760][ T5995] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 325.757767][ T5995] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 325.757785][ T5995]
[pid 5996] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5996] setpgid(0, 0) = 0
[pid 5996] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5996] write(3, "1000", 4) = 4
[pid 5996] close(3) = 0
executing program
[pid 5996] write(1, "executing program\n", 18) = 18
[pid 5996] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5996] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5996] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5996] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5996] write(6, "4", 1) = 1
[ 326.133756][ T5996] FAULT_INJECTION: forcing a failure.
[ 326.133756][ T5996] name failslab, interval 1, probability 0, space 0, times 0
[ 326.147862][ T5996] CPU: 1 UID: 0 PID: 5996 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 326.147892][ T5996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 326.147900][ T5996] Call Trace:
[ 326.147906][ T5996]
[ 326.147912][ T5996] dump_stack_lvl+0x189/0x250
[ 326.147933][ T5996] ? __pfx____ratelimit+0x10/0x10
[ 326.147952][ T5996] ? __pfx_dump_stack_lvl+0x10/0x10
[ 326.147965][ T5996] ? __pfx__printk+0x10/0x10
[ 326.147984][ T5996] ? __pfx___might_resched+0x10/0x10
[ 326.148003][ T5996] ? fs_reclaim_acquire+0x7d/0x100
[ 326.148024][ T5996] should_fail_ex+0x414/0x560
[ 326.148042][ T5996] should_failslab+0xa8/0x100
[ 326.148060][ T5996] __kmalloc_noprof+0xcb/0x4f0
[ 326.148074][ T5996] ? tomoyo_init_log+0x1a6e/0x1f70
[ 326.148095][ T5996] tomoyo_init_log+0x1a6e/0x1f70
[ 326.148144][ T5996] ? __pfx_tomoyo_init_log+0x10/0x10
[ 326.148164][ T5996] ? tomoyo_profile+0x11/0x50
[ 326.148180][ T5996] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 326.148199][ T5996] tomoyo_supervisor+0x340/0x1480
[ 326.148217][ T5996] ? format_decode+0x5a3/0xe30
[ 326.148236][ T5996] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 326.148260][ T5996] ? snprintf+0xda/0x120
[ 326.148277][ T5996] ? __pfx_snprintf+0x10/0x10
[ 326.148292][ T5996] ? tomoyo_check_acl+0x386/0x400
[ 326.148313][ T5996] tomoyo_path_number_perm+0x438/0x5a0
[ 326.148327][ T5996] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 326.148341][ T5996] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 326.148368][ T5996] ? _raw_spin_lock_irq+0xae/0xf0
[ 326.148403][ T5996] ? __pfx_ptrace_notify+0x10/0x10
[ 326.148429][ T5996] security_file_ioctl+0xcb/0x2d0
[ 326.148444][ T5996] __se_sys_ioctl+0x47/0x170
[ 326.148461][ T5996] do_syscall_64+0xfa/0x3b0
[ 326.148477][ T5996] ? lockdep_hardirqs_on+0x9c/0x150
[ 326.148493][ T5996] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 326.148506][ T5996] ? clear_bhb_loop+0x60/0xb0
[ 326.148521][ T5996] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 326.148533][ T5996] RIP: 0033:0x7fea15a51869
[ 326.148547][ T5996] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 326.148558][ T5996] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 5996] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5996] exit_group(0) = ?
[pid 5996] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5996, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5997 attached
, child_tidptr=0x555576720650) = 5997
[pid 5997] set_robust_list(0x555576720660, 24) = 0
[ 326.148574][ T5996] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 326.148583][ T5996] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 326.148594][ T5996] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 326.148601][ T5996] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 326.148609][ T5996] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 326.148626][ T5996]
[pid 5997] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5997] setpgid(0, 0) = 0
[pid 5997] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5997] write(3, "1000", 4) = 4
[pid 5997] close(3) = 0
[pid 5997] write(1, "executing program\n", 18executing program
) = 18
[pid 5997] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5997] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5997] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5997] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5997] write(6, "4", 1) = 1
[pid 5997] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 326.558399][ T5997] FAULT_INJECTION: forcing a failure.
[ 326.558399][ T5997] name failslab, interval 1, probability 0, space 0, times 0
[ 326.571651][ T5997] CPU: 0 UID: 0 PID: 5997 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 326.571681][ T5997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 326.571693][ T5997] Call Trace:
[ 326.571702][ T5997]
[ 326.571708][ T5997] dump_stack_lvl+0x189/0x250
[ 326.571728][ T5997] ? __pfx____ratelimit+0x10/0x10
[ 326.571746][ T5997] ? __pfx_dump_stack_lvl+0x10/0x10
[ 326.571760][ T5997] ? __pfx__printk+0x10/0x10
[ 326.571779][ T5997] ? __pfx___might_resched+0x10/0x10
[ 326.571796][ T5997] ? fs_reclaim_acquire+0x7d/0x100
[ 326.571816][ T5997] should_fail_ex+0x414/0x560
[ 326.571834][ T5997] should_failslab+0xa8/0x100
[ 326.571851][ T5997] __kmalloc_noprof+0xcb/0x4f0
[ 326.571865][ T5997] ? tomoyo_init_log+0x1a6e/0x1f70
[ 326.571885][ T5997] tomoyo_init_log+0x1a6e/0x1f70
[ 326.571916][ T5997] ? __pfx_tomoyo_init_log+0x10/0x10
[ 326.571932][ T5997] ? tomoyo_profile+0x11/0x50
[ 326.571948][ T5997] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 326.571966][ T5997] tomoyo_supervisor+0x340/0x1480
[ 326.571984][ T5997] ? format_decode+0x5a3/0xe30
[ 326.572002][ T5997] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 326.572026][ T5997] ? snprintf+0xda/0x120
[ 326.572050][ T5997] ? __pfx_snprintf+0x10/0x10
[ 326.572065][ T5997] ? tomoyo_check_acl+0x386/0x400
[ 326.572084][ T5997] tomoyo_path_number_perm+0x438/0x5a0
[ 326.572097][ T5997] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 326.572112][ T5997] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 326.572131][ T5997] ? _raw_spin_lock_irq+0xae/0xf0
[ 326.572166][ T5997] ? __pfx_ptrace_notify+0x10/0x10
[ 326.572191][ T5997] security_file_ioctl+0xcb/0x2d0
[ 326.572206][ T5997] __se_sys_ioctl+0x47/0x170
[ 326.572221][ T5997] do_syscall_64+0xfa/0x3b0
[ 326.572237][ T5997] ? lockdep_hardirqs_on+0x9c/0x150
[ 326.572254][ T5997] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 326.572266][ T5997] ? clear_bhb_loop+0x60/0xb0
[ 326.572283][ T5997] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 326.572296][ T5997] RIP: 0033:0x7fea15a51869
[ 326.572308][ T5997] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 326.572319][ T5997] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 326.572334][ T5997] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5997] exit_group(0) = ?
[pid 5997] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5997, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5998 attached
, child_tidptr=0x555576720650) = 5998
[pid 5998] set_robust_list(0x555576720660, 24) = 0
[pid 5998] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5998] setpgid(0, 0) = 0
[ 326.572344][ T5997] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 326.572352][ T5997] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 326.572359][ T5997] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 326.572366][ T5997] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 326.572384][ T5997]
[pid 5998] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5998] write(3, "1000", 4) = 4
[pid 5998] close(3) = 0
executing program
[pid 5998] write(1, "executing program\n", 18) = 18
[pid 5998] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5998] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5998] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5998] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5998] write(6, "4", 1) = 1
[pid 5998] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5998] exit_group(0) = ?
[ 326.966758][ T5998] FAULT_INJECTION: forcing a failure.
[ 326.966758][ T5998] name failslab, interval 1, probability 0, space 0, times 0
[ 326.979740][ T5998] CPU: 1 UID: 0 PID: 5998 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 326.979771][ T5998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 326.979782][ T5998] Call Trace:
[ 326.979791][ T5998]
[ 326.979799][ T5998] dump_stack_lvl+0x189/0x250
[ 326.979827][ T5998] ? __pfx____ratelimit+0x10/0x10
[ 326.979857][ T5998] ? __pfx_dump_stack_lvl+0x10/0x10
[ 326.979880][ T5998] ? __pfx__printk+0x10/0x10
[ 326.979913][ T5998] ? __pfx___might_resched+0x10/0x10
[ 326.979941][ T5998] ? fs_reclaim_acquire+0x7d/0x100
[ 326.979974][ T5998] should_fail_ex+0x414/0x560
[ 326.980003][ T5998] should_failslab+0xa8/0x100
[ 326.980030][ T5998] __kmalloc_noprof+0xcb/0x4f0
[ 326.980069][ T5998] ? tomoyo_init_log+0x1a6e/0x1f70
[ 326.980102][ T5998] tomoyo_init_log+0x1a6e/0x1f70
[ 326.980148][ T5998] ? __pfx_tomoyo_init_log+0x10/0x10
[ 326.980165][ T5998] ? tomoyo_profile+0x11/0x50
[ 326.980181][ T5998] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 326.980201][ T5998] tomoyo_supervisor+0x340/0x1480
[ 326.980224][ T5998] ? format_decode+0x5a3/0xe30
[ 326.980243][ T5998] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 326.980267][ T5998] ? snprintf+0xda/0x120
[ 326.980284][ T5998] ? __pfx_snprintf+0x10/0x10
[ 326.980302][ T5998] ? tomoyo_check_acl+0x386/0x400
[ 326.980320][ T5998] tomoyo_path_number_perm+0x438/0x5a0
[ 326.980334][ T5998] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 326.980349][ T5998] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 326.980368][ T5998] ? _raw_spin_lock_irq+0xae/0xf0
[ 326.980404][ T5998] ? __pfx_ptrace_notify+0x10/0x10
[ 326.980428][ T5998] security_file_ioctl+0xcb/0x2d0
[ 326.980443][ T5998] __se_sys_ioctl+0x47/0x170
[ 326.980460][ T5998] do_syscall_64+0xfa/0x3b0
[ 326.980476][ T5998] ? lockdep_hardirqs_on+0x9c/0x150
[ 326.980492][ T5998] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 326.980504][ T5998] ? clear_bhb_loop+0x60/0xb0
[ 326.980519][ T5998] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 326.980530][ T5998] RIP: 0033:0x7fea15a51869
[ 326.980543][ T5998] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 326.980554][ T5998] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 326.980569][ T5998] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5998] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5998, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5999 attached
, child_tidptr=0x555576720650) = 5999
[pid 5999] set_robust_list(0x555576720660, 24) = 0
[pid 5999] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5999] setpgid(0, 0) = 0
[pid 5999] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[ 326.980579][ T5998] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 326.980587][ T5998] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 326.980594][ T5998] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 326.980601][ T5998] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 326.980620][ T5998]
[pid 5999] write(3, "1000", 4) = 4
[pid 5999] close(3) = 0
executing program
[pid 5999] write(1, "executing program\n", 18) = 18
[pid 5999] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 5999] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 5999] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 5999] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5999] write(6, "4", 1) = 1
[ 327.349542][ T5999] FAULT_INJECTION: forcing a failure.
[ 327.349542][ T5999] name failslab, interval 1, probability 0, space 0, times 0
[ 327.362543][ T5999] CPU: 0 UID: 0 PID: 5999 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 327.362572][ T5999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 327.362584][ T5999] Call Trace:
[ 327.362595][ T5999]
[ 327.362605][ T5999] dump_stack_lvl+0x189/0x250
[ 327.362631][ T5999] ? __pfx____ratelimit+0x10/0x10
[ 327.362658][ T5999] ? __pfx_dump_stack_lvl+0x10/0x10
[ 327.362679][ T5999] ? __pfx__printk+0x10/0x10
[ 327.362710][ T5999] ? __pfx___might_resched+0x10/0x10
[ 327.362738][ T5999] ? fs_reclaim_acquire+0x7d/0x100
[ 327.362771][ T5999] should_fail_ex+0x414/0x560
[ 327.362801][ T5999] should_failslab+0xa8/0x100
[ 327.362831][ T5999] __kmalloc_noprof+0xcb/0x4f0
[ 327.362853][ T5999] ? tomoyo_init_log+0x1a6e/0x1f70
[ 327.362888][ T5999] tomoyo_init_log+0x1a6e/0x1f70
[ 327.362942][ T5999] ? __pfx_tomoyo_init_log+0x10/0x10
[ 327.362970][ T5999] ? tomoyo_profile+0x11/0x50
[ 327.362994][ T5999] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 327.363023][ T5999] tomoyo_supervisor+0x340/0x1480
[ 327.363047][ T5999] ? format_decode+0x5a3/0xe30
[ 327.363065][ T5999] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 327.363089][ T5999] ? snprintf+0xda/0x120
[ 327.363116][ T5999] ? __pfx_snprintf+0x10/0x10
[ 327.363140][ T5999] ? tomoyo_check_acl+0x386/0x400
[ 327.363172][ T5999] tomoyo_path_number_perm+0x438/0x5a0
[ 327.363193][ T5999] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 327.363213][ T5999] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 327.363232][ T5999] ? _raw_spin_lock_irq+0xae/0xf0
[ 327.363279][ T5999] ? __pfx_ptrace_notify+0x10/0x10
[ 327.363304][ T5999] security_file_ioctl+0xcb/0x2d0
[ 327.363320][ T5999] __se_sys_ioctl+0x47/0x170
[ 327.363335][ T5999] do_syscall_64+0xfa/0x3b0
[ 327.363352][ T5999] ? lockdep_hardirqs_on+0x9c/0x150
[ 327.363368][ T5999] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 327.363380][ T5999] ? clear_bhb_loop+0x60/0xb0
[ 327.363394][ T5999] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 327.363406][ T5999] RIP: 0033:0x7fea15a51869
[ 327.363419][ T5999] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 327.363430][ T5999] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 327.363446][ T5999] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 5999] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 5999] exit_group(0) = ?
[pid 5999] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5999, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6000 attached
, child_tidptr=0x555576720650) = 6000
[ 327.363455][ T5999] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 327.363463][ T5999] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 327.363470][ T5999] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 327.363477][ T5999] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 327.363495][ T5999]
[pid 6000] set_robust_list(0x555576720660, 24) = 0
[pid 6000] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6000] setpgid(0, 0) = 0
[pid 6000] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6000] write(3, "1000", 4) = 4
[pid 6000] close(3) = 0
executing program
[pid 6000] write(1, "executing program\n", 18) = 18
[pid 6000] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6000] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6000] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6000] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6000] write(6, "4", 1) = 1
[pid 6000] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6000] exit_group(0) = ?
[pid 6000] +++ exited with 0 +++
[ 327.775337][ T6000] FAULT_INJECTION: forcing a failure.
[ 327.775337][ T6000] name failslab, interval 1, probability 0, space 0, times 0
[ 327.788154][ T6000] CPU: 1 UID: 0 PID: 6000 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 327.788182][ T6000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 327.788193][ T6000] Call Trace:
[ 327.788202][ T6000]
[ 327.788210][ T6000] dump_stack_lvl+0x189/0x250
[ 327.788238][ T6000] ? __pfx____ratelimit+0x10/0x10
[ 327.788265][ T6000] ? __pfx_dump_stack_lvl+0x10/0x10
[ 327.788286][ T6000] ? __pfx__printk+0x10/0x10
[ 327.788314][ T6000] ? __pfx___might_resched+0x10/0x10
[ 327.788341][ T6000] ? fs_reclaim_acquire+0x7d/0x100
[ 327.788373][ T6000] should_fail_ex+0x414/0x560
[ 327.788402][ T6000] should_failslab+0xa8/0x100
[ 327.788429][ T6000] __kmalloc_noprof+0xcb/0x4f0
[ 327.788453][ T6000] ? tomoyo_init_log+0x1a6e/0x1f70
[ 327.788488][ T6000] tomoyo_init_log+0x1a6e/0x1f70
[ 327.788542][ T6000] ? __pfx_tomoyo_init_log+0x10/0x10
[ 327.788571][ T6000] ? tomoyo_profile+0x11/0x50
[ 327.788598][ T6000] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 327.788627][ T6000] tomoyo_supervisor+0x340/0x1480
[ 327.788655][ T6000] ? format_decode+0x5a3/0xe30
[ 327.788677][ T6000] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 327.788701][ T6000] ? snprintf+0xda/0x120
[ 327.788718][ T6000] ? __pfx_snprintf+0x10/0x10
[ 327.788733][ T6000] ? tomoyo_check_acl+0x386/0x400
[ 327.788751][ T6000] tomoyo_path_number_perm+0x438/0x5a0
[ 327.788765][ T6000] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 327.788779][ T6000] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 327.788799][ T6000] ? _raw_spin_lock_irq+0xae/0xf0
[ 327.788834][ T6000] ? __pfx_ptrace_notify+0x10/0x10
[ 327.788859][ T6000] security_file_ioctl+0xcb/0x2d0
[ 327.788875][ T6000] __se_sys_ioctl+0x47/0x170
[ 327.788890][ T6000] do_syscall_64+0xfa/0x3b0
[ 327.788906][ T6000] ? lockdep_hardirqs_on+0x9c/0x150
[ 327.788922][ T6000] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 327.788934][ T6000] ? clear_bhb_loop+0x60/0xb0
[ 327.788949][ T6000] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 327.788961][ T6000] RIP: 0033:0x7fea15a51869
[ 327.788973][ T6000] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 327.788984][ T6000] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6000, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6001 attached
, child_tidptr=0x555576720650) = 6001
[pid 6001] set_robust_list(0x555576720660, 24) = 0
[pid 6001] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6001] setpgid(0, 0) = 0
[pid 6001] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6001] write(3, "1000", 4) = 4
[pid 6001] close(3) = 0
[pid 6001] write(1, "executing program\n", 18) = 18
executing program
[pid 6001] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6001] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6001] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6001] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6001] write(6, "4", 1) = 1
[ 327.788999][ T6000] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 327.789017][ T6000] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 327.789025][ T6000] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 327.789033][ T6000] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 327.789040][ T6000] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 327.789058][ T6000]
[pid 6001] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 328.098043][ T6001] FAULT_INJECTION: forcing a failure.
[ 328.098043][ T6001] name failslab, interval 1, probability 0, space 0, times 0
[ 328.111766][ T6001] CPU: 1 UID: 0 PID: 6001 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 328.111787][ T6001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 328.111794][ T6001] Call Trace:
[ 328.111800][ T6001]
[ 328.111805][ T6001] dump_stack_lvl+0x189/0x250
[ 328.111830][ T6001] ? __pfx____ratelimit+0x10/0x10
[ 328.111848][ T6001] ? __pfx_dump_stack_lvl+0x10/0x10
[ 328.111861][ T6001] ? __pfx__printk+0x10/0x10
[ 328.111880][ T6001] ? __pfx___might_resched+0x10/0x10
[ 328.111898][ T6001] ? fs_reclaim_acquire+0x7d/0x100
[ 328.111918][ T6001] should_fail_ex+0x414/0x560
[ 328.111936][ T6001] should_failslab+0xa8/0x100
[ 328.111952][ T6001] __kmalloc_noprof+0xcb/0x4f0
[ 328.111966][ T6001] ? tomoyo_init_log+0x1a6e/0x1f70
[ 328.111986][ T6001] tomoyo_init_log+0x1a6e/0x1f70
[ 328.112026][ T6001] ? __pfx_tomoyo_init_log+0x10/0x10
[ 328.112043][ T6001] ? tomoyo_profile+0x11/0x50
[ 328.112059][ T6001] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 328.112076][ T6001] tomoyo_supervisor+0x340/0x1480
[ 328.112095][ T6001] ? format_decode+0x5a3/0xe30
[ 328.112113][ T6001] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 328.112137][ T6001] ? snprintf+0xda/0x120
[ 328.112153][ T6001] ? __pfx_snprintf+0x10/0x10
[ 328.112168][ T6001] ? tomoyo_check_acl+0x386/0x400
[ 328.112186][ T6001] tomoyo_path_number_perm+0x438/0x5a0
[ 328.112200][ T6001] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 328.112214][ T6001] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 328.112234][ T6001] ? _raw_spin_lock_irq+0xae/0xf0
[ 328.112268][ T6001] ? __pfx_ptrace_notify+0x10/0x10
[ 328.112292][ T6001] security_file_ioctl+0xcb/0x2d0
[ 328.112307][ T6001] __se_sys_ioctl+0x47/0x170
[ 328.112322][ T6001] do_syscall_64+0xfa/0x3b0
[ 328.112339][ T6001] ? lockdep_hardirqs_on+0x9c/0x150
[ 328.112355][ T6001] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 328.112367][ T6001] ? clear_bhb_loop+0x60/0xb0
[ 328.112381][ T6001] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 328.112393][ T6001] RIP: 0033:0x7fea15a51869
[ 328.112406][ T6001] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 328.112416][ T6001] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 328.112431][ T6001] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6001] exit_group(0) = ?
[pid 6001] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6001, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6002 attached
, child_tidptr=0x555576720650) = 6002
[pid 6002] set_robust_list(0x555576720660, 24) = 0
[pid 6002] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6002] setpgid(0, 0) = 0
[pid 6002] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXECexecuting program
) = 3
[pid 6002] write(3, "1000", 4) = 4
[pid 6002] close(3) = 0
[pid 6002] write(1, "executing program\n", 18) = 18
[pid 6002] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6002] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6002] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6002] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6002] write(6, "4", 1) = 1
[ 328.112441][ T6001] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 328.112448][ T6001] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 328.112456][ T6001] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 328.112463][ T6001] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 328.112480][ T6001]
[pid 6002] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 328.428739][ T6002] FAULT_INJECTION: forcing a failure.
[ 328.428739][ T6002] name failslab, interval 1, probability 0, space 0, times 0
[ 328.441537][ T6002] CPU: 0 UID: 0 PID: 6002 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 328.441580][ T6002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 328.441591][ T6002] Call Trace:
[ 328.441600][ T6002]
[ 328.441607][ T6002] dump_stack_lvl+0x189/0x250
[ 328.441626][ T6002] ? __pfx____ratelimit+0x10/0x10
[ 328.441644][ T6002] ? __pfx_dump_stack_lvl+0x10/0x10
[ 328.441657][ T6002] ? __pfx__printk+0x10/0x10
[ 328.441675][ T6002] ? __pfx___might_resched+0x10/0x10
[ 328.441692][ T6002] ? fs_reclaim_acquire+0x7d/0x100
[ 328.441712][ T6002] should_fail_ex+0x414/0x560
[ 328.441730][ T6002] should_failslab+0xa8/0x100
[ 328.441746][ T6002] __kmalloc_noprof+0xcb/0x4f0
[ 328.441761][ T6002] ? tomoyo_init_log+0x1a6e/0x1f70
[ 328.441781][ T6002] tomoyo_init_log+0x1a6e/0x1f70
[ 328.441812][ T6002] ? __pfx_tomoyo_init_log+0x10/0x10
[ 328.441828][ T6002] ? tomoyo_profile+0x11/0x50
[ 328.441844][ T6002] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 328.441862][ T6002] tomoyo_supervisor+0x340/0x1480
[ 328.441880][ T6002] ? format_decode+0x5a3/0xe30
[ 328.441899][ T6002] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 328.441922][ T6002] ? snprintf+0xda/0x120
[ 328.441939][ T6002] ? __pfx_snprintf+0x10/0x10
[ 328.441954][ T6002] ? tomoyo_check_acl+0x386/0x400
[ 328.441972][ T6002] tomoyo_path_number_perm+0x438/0x5a0
[ 328.441987][ T6002] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 328.442032][ T6002] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 328.442051][ T6002] ? _raw_spin_lock_irq+0xae/0xf0
[ 328.442086][ T6002] ? __pfx_ptrace_notify+0x10/0x10
[ 328.442111][ T6002] security_file_ioctl+0xcb/0x2d0
[ 328.442126][ T6002] __se_sys_ioctl+0x47/0x170
[ 328.442142][ T6002] do_syscall_64+0xfa/0x3b0
[ 328.442158][ T6002] ? lockdep_hardirqs_on+0x9c/0x150
[ 328.442174][ T6002] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 328.442186][ T6002] ? clear_bhb_loop+0x60/0xb0
[ 328.442201][ T6002] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 328.442213][ T6002] RIP: 0033:0x7fea15a51869
[ 328.442225][ T6002] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 328.442236][ T6002] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 328.442253][ T6002] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6002] exit_group(0) = ?
[pid 6002] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6002, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6003 attached
, child_tidptr=0x555576720650) = 6003
[pid 6003] set_robust_list(0x555576720660, 24) = 0
[pid 6003] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 328.442265][ T6002] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 328.442273][ T6002] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 328.442280][ T6002] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 328.442287][ T6002] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 328.442305][ T6002]
[pid 6003] setpgid(0, 0) = 0
[pid 6003] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6003] write(3, "1000", 4) = 4
[pid 6003] close(3) = 0
executing program
[pid 6003] write(1, "executing program\n", 18) = 18
[pid 6003] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6003] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6003] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6003] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6003] write(6, "4", 1) = 1
[pid 6003] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 328.832335][ T6003] FAULT_INJECTION: forcing a failure.
[ 328.832335][ T6003] name failslab, interval 1, probability 0, space 0, times 0
[ 328.845455][ T6003] CPU: 0 UID: 0 PID: 6003 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 328.845486][ T6003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 328.845497][ T6003] Call Trace:
[ 328.845505][ T6003]
[ 328.845513][ T6003] dump_stack_lvl+0x189/0x250
[ 328.845541][ T6003] ? __pfx____ratelimit+0x10/0x10
[ 328.845571][ T6003] ? __pfx_dump_stack_lvl+0x10/0x10
[ 328.845593][ T6003] ? __pfx__printk+0x10/0x10
[ 328.845624][ T6003] ? __pfx___might_resched+0x10/0x10
[ 328.845653][ T6003] ? fs_reclaim_acquire+0x7d/0x100
[ 328.845683][ T6003] should_fail_ex+0x414/0x560
[ 328.845703][ T6003] should_failslab+0xa8/0x100
[ 328.845719][ T6003] __kmalloc_noprof+0xcb/0x4f0
[ 328.845733][ T6003] ? tomoyo_init_log+0x1a6e/0x1f70
[ 328.845754][ T6003] tomoyo_init_log+0x1a6e/0x1f70
[ 328.845785][ T6003] ? __pfx_tomoyo_init_log+0x10/0x10
[ 328.845802][ T6003] ? tomoyo_profile+0x11/0x50
[ 328.845818][ T6003] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 328.845835][ T6003] tomoyo_supervisor+0x340/0x1480
[ 328.845853][ T6003] ? format_decode+0x5a3/0xe30
[ 328.845872][ T6003] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 328.845896][ T6003] ? snprintf+0xda/0x120
[ 328.845913][ T6003] ? __pfx_snprintf+0x10/0x10
[ 328.845928][ T6003] ? tomoyo_check_acl+0x386/0x400
[ 328.845954][ T6003] tomoyo_path_number_perm+0x438/0x5a0
[ 328.845968][ T6003] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 328.845983][ T6003] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 328.846002][ T6003] ? _raw_spin_lock_irq+0xae/0xf0
[ 328.846038][ T6003] ? __pfx_ptrace_notify+0x10/0x10
[ 328.846063][ T6003] security_file_ioctl+0xcb/0x2d0
[ 328.846078][ T6003] __se_sys_ioctl+0x47/0x170
[ 328.846093][ T6003] do_syscall_64+0xfa/0x3b0
[ 328.846109][ T6003] ? lockdep_hardirqs_on+0x9c/0x150
[ 328.846125][ T6003] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 328.846137][ T6003] ? clear_bhb_loop+0x60/0xb0
[ 328.846152][ T6003] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 328.846163][ T6003] RIP: 0033:0x7fea15a51869
[ 328.846175][ T6003] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 328.846186][ T6003] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6003] exit_group(0) = ?
[pid 6003] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6003, si_uid=0, si_status=0, si_utime=0, si_stime=26 /* 0.26 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6004 attached
, child_tidptr=0x555576720650) = 6004
[pid 6004] set_robust_list(0x555576720660, 24) = 0
[pid 6004] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6004] setpgid(0, 0) = 0
[ 328.846201][ T6003] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 328.846212][ T6003] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 328.846220][ T6003] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 328.846227][ T6003] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 328.846234][ T6003] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 328.846252][ T6003]
[pid 6004] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6004] write(3, "1000", 4) = 4
[pid 6004] close(3) = 0
[pid 6004] write(1, "executing program\n", 18executing program
) = 18
[pid 6004] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6004] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6004] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6004] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6004] write(6, "4", 1) = 1
[pid 6004] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6004] exit_group(0) = ?
[ 329.220883][ T6004] FAULT_INJECTION: forcing a failure.
[ 329.220883][ T6004] name failslab, interval 1, probability 0, space 0, times 0
[ 329.235039][ T6004] CPU: 0 UID: 0 PID: 6004 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 329.235066][ T6004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 329.235075][ T6004] Call Trace:
[ 329.235082][ T6004]
[ 329.235090][ T6004] dump_stack_lvl+0x189/0x250
[ 329.235114][ T6004] ? __pfx____ratelimit+0x10/0x10
[ 329.235137][ T6004] ? __pfx_dump_stack_lvl+0x10/0x10
[ 329.235154][ T6004] ? __pfx__printk+0x10/0x10
[ 329.235179][ T6004] ? __pfx___might_resched+0x10/0x10
[ 329.235201][ T6004] ? fs_reclaim_acquire+0x7d/0x100
[ 329.235228][ T6004] should_fail_ex+0x414/0x560
[ 329.235251][ T6004] should_failslab+0xa8/0x100
[ 329.235273][ T6004] __kmalloc_noprof+0xcb/0x4f0
[ 329.235292][ T6004] ? tomoyo_init_log+0x1a6e/0x1f70
[ 329.235319][ T6004] tomoyo_init_log+0x1a6e/0x1f70
[ 329.235361][ T6004] ? __pfx_tomoyo_init_log+0x10/0x10
[ 329.235382][ T6004] ? tomoyo_profile+0x11/0x50
[ 329.235403][ T6004] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 329.235426][ T6004] tomoyo_supervisor+0x340/0x1480
[ 329.235451][ T6004] ? format_decode+0x5a3/0xe30
[ 329.235476][ T6004] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 329.235508][ T6004] ? snprintf+0xda/0x120
[ 329.235530][ T6004] ? __pfx_snprintf+0x10/0x10
[ 329.235550][ T6004] ? tomoyo_check_acl+0x386/0x400
[ 329.235573][ T6004] tomoyo_path_number_perm+0x438/0x5a0
[ 329.235592][ T6004] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 329.235611][ T6004] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 329.235636][ T6004] ? _raw_spin_lock_irq+0xae/0xf0
[ 329.235685][ T6004] ? __pfx_ptrace_notify+0x10/0x10
[ 329.235717][ T6004] security_file_ioctl+0xcb/0x2d0
[ 329.235737][ T6004] __se_sys_ioctl+0x47/0x170
[ 329.235758][ T6004] do_syscall_64+0xfa/0x3b0
[ 329.235779][ T6004] ? lockdep_hardirqs_on+0x9c/0x150
[ 329.235800][ T6004] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 329.235924][ T6004] ? clear_bhb_loop+0x60/0xb0
[ 329.235946][ T6004] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 329.235964][ T6004] RIP: 0033:0x7fea15a51869
[ 329.235982][ T6004] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 329.235996][ T6004] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6004] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6004, si_uid=0, si_status=0, si_utime=0, si_stime=27 /* 0.27 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6005 attached
, child_tidptr=0x555576720650) = 6005
[pid 6005] set_robust_list(0x555576720660, 24) = 0
[pid 6005] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6005] setpgid(0, 0) = 0
[pid 6005] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6005] write(3, "1000", 4) = 4
[ 329.236016][ T6004] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 329.236028][ T6004] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 329.236038][ T6004] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 329.236048][ T6004] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 329.236057][ T6004] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 329.236082][ T6004]
[pid 6005] close(3) = 0
executing program
[pid 6005] write(1, "executing program\n", 18) = 18
[pid 6005] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6005] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6005] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6005] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6005] write(6, "4", 1) = 1
[ 329.578817][ T6005] FAULT_INJECTION: forcing a failure.
[ 329.578817][ T6005] name failslab, interval 1, probability 0, space 0, times 0
[ 329.591924][ T6005] CPU: 1 UID: 0 PID: 6005 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 329.591952][ T6005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 329.591963][ T6005] Call Trace:
[ 329.591972][ T6005]
[ 329.591980][ T6005] dump_stack_lvl+0x189/0x250
[ 329.592008][ T6005] ? __pfx____ratelimit+0x10/0x10
[ 329.592036][ T6005] ? __pfx_dump_stack_lvl+0x10/0x10
[ 329.592056][ T6005] ? __pfx__printk+0x10/0x10
[ 329.592089][ T6005] ? __pfx___might_resched+0x10/0x10
[ 329.592118][ T6005] ? fs_reclaim_acquire+0x7d/0x100
[ 329.592151][ T6005] should_fail_ex+0x414/0x560
[ 329.592181][ T6005] should_failslab+0xa8/0x100
[ 329.592210][ T6005] __kmalloc_noprof+0xcb/0x4f0
[ 329.592232][ T6005] ? tomoyo_init_log+0x1a6e/0x1f70
[ 329.592275][ T6005] tomoyo_init_log+0x1a6e/0x1f70
[ 329.592321][ T6005] ? __pfx_tomoyo_init_log+0x10/0x10
[ 329.592338][ T6005] ? tomoyo_profile+0x11/0x50
[ 329.592354][ T6005] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 329.592371][ T6005] tomoyo_supervisor+0x340/0x1480
[ 329.592390][ T6005] ? format_decode+0x5a3/0xe30
[ 329.592408][ T6005] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 329.592432][ T6005] ? snprintf+0xda/0x120
[ 329.592449][ T6005] ? __pfx_snprintf+0x10/0x10
[ 329.592464][ T6005] ? tomoyo_check_acl+0x386/0x400
[ 329.592481][ T6005] tomoyo_path_number_perm+0x438/0x5a0
[ 329.592495][ T6005] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 329.592510][ T6005] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 329.592529][ T6005] ? _raw_spin_lock_irq+0xae/0xf0
[ 329.592563][ T6005] ? __pfx_ptrace_notify+0x10/0x10
[ 329.592588][ T6005] security_file_ioctl+0xcb/0x2d0
[ 329.592603][ T6005] __se_sys_ioctl+0x47/0x170
[ 329.592618][ T6005] do_syscall_64+0xfa/0x3b0
[ 329.592634][ T6005] ? lockdep_hardirqs_on+0x9c/0x150
[ 329.592650][ T6005] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 329.592662][ T6005] ? clear_bhb_loop+0x60/0xb0
[ 329.592676][ T6005] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 329.592687][ T6005] RIP: 0033:0x7fea15a51869
[ 329.592700][ T6005] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 329.592711][ T6005] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 329.592726][ T6005] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6005] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6005] exit_group(0) = ?
[pid 6005] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6005, si_uid=0, si_status=0, si_utime=0, si_stime=27 /* 0.27 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6006 attached
, child_tidptr=0x555576720650) = 6006
[pid 6006] set_robust_list(0x555576720660, 24) = 0
[pid 6006] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6006] setpgid(0, 0) = 0
[pid 6006] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXECexecuting program
) = 3
[pid 6006] write(3, "1000", 4) = 4
[pid 6006] close(3) = 0
[pid 6006] write(1, "executing program\n", 18) = 18
[pid 6006] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6006] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6006] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6006] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6006] write(6, "4", 1) = 1
[ 329.592735][ T6005] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 329.592743][ T6005] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 329.592750][ T6005] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 329.592757][ T6005] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 329.592775][ T6005]
[pid 6006] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 329.890256][ T6006] FAULT_INJECTION: forcing a failure.
[ 329.890256][ T6006] name failslab, interval 1, probability 0, space 0, times 0
[ 329.903306][ T6006] CPU: 0 UID: 0 PID: 6006 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 329.903337][ T6006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 329.903348][ T6006] Call Trace:
[ 329.903357][ T6006]
[ 329.903367][ T6006] dump_stack_lvl+0x189/0x250
[ 329.903394][ T6006] ? __pfx____ratelimit+0x10/0x10
[ 329.903421][ T6006] ? __pfx_dump_stack_lvl+0x10/0x10
[ 329.903441][ T6006] ? __pfx__printk+0x10/0x10
[ 329.903593][ T6006] ? __pfx___might_resched+0x10/0x10
[ 329.903620][ T6006] ? fs_reclaim_acquire+0x7d/0x100
[ 329.903641][ T6006] should_fail_ex+0x414/0x560
[ 329.903662][ T6006] should_failslab+0xa8/0x100
[ 329.903680][ T6006] __kmalloc_noprof+0xcb/0x4f0
[ 329.903694][ T6006] ? tomoyo_init_log+0x1a6e/0x1f70
[ 329.903715][ T6006] tomoyo_init_log+0x1a6e/0x1f70
[ 329.903746][ T6006] ? __pfx_tomoyo_init_log+0x10/0x10
[ 329.903763][ T6006] ? tomoyo_profile+0x11/0x50
[ 329.903779][ T6006] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 329.903797][ T6006] tomoyo_supervisor+0x340/0x1480
[ 329.903816][ T6006] ? format_decode+0x5a3/0xe30
[ 329.903835][ T6006] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 329.903859][ T6006] ? snprintf+0xda/0x120
[ 329.903876][ T6006] ? __pfx_snprintf+0x10/0x10
[ 329.903891][ T6006] ? tomoyo_check_acl+0x386/0x400
[ 329.903909][ T6006] tomoyo_path_number_perm+0x438/0x5a0
[ 329.903924][ T6006] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 329.903938][ T6006] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 329.903958][ T6006] ? _raw_spin_lock_irq+0xae/0xf0
[ 329.904000][ T6006] ? __pfx_ptrace_notify+0x10/0x10
[ 329.904025][ T6006] security_file_ioctl+0xcb/0x2d0
[ 329.904042][ T6006] __se_sys_ioctl+0x47/0x170
[ 329.904059][ T6006] do_syscall_64+0xfa/0x3b0
[ 329.904077][ T6006] ? lockdep_hardirqs_on+0x9c/0x150
[ 329.904093][ T6006] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 329.904106][ T6006] ? clear_bhb_loop+0x60/0xb0
[ 329.904164][ T6006] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 329.904176][ T6006] RIP: 0033:0x7fea15a51869
[ 329.904191][ T6006] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 329.904202][ T6006] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6006] exit_group(0) = ?
[pid 6006] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6006, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6007 attached
, child_tidptr=0x555576720650) = 6007
[pid 6007] set_robust_list(0x555576720660, 24) = 0
[pid 6007] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6007] setpgid(0, 0) = 0
[pid 6007] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6007] write(3, "1000", 4) = 4
[pid 6007] close(3) = 0
[pid 6007] write(1, "executing program\n", 18executing program
) = 18
[pid 6007] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6007] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6007] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[ 329.904218][ T6006] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 329.904227][ T6006] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 329.904238][ T6006] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 329.904247][ T6006] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 329.904254][ T6006] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 329.904276][ T6006]
[pid 6007] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6007] write(6, "4", 1) = 1
[pid 6007] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 330.243027][ T6007] FAULT_INJECTION: forcing a failure.
[ 330.243027][ T6007] name failslab, interval 1, probability 0, space 0, times 0
[ 330.255873][ T6007] CPU: 1 UID: 0 PID: 6007 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 330.255893][ T6007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 330.255901][ T6007] Call Trace:
[ 330.255906][ T6007]
[ 330.255911][ T6007] dump_stack_lvl+0x189/0x250
[ 330.255930][ T6007] ? __pfx____ratelimit+0x10/0x10
[ 330.255948][ T6007] ? __pfx_dump_stack_lvl+0x10/0x10
[ 330.255961][ T6007] ? __pfx__printk+0x10/0x10
[ 330.255980][ T6007] ? __pfx___might_resched+0x10/0x10
[ 330.255998][ T6007] ? fs_reclaim_acquire+0x7d/0x100
[ 330.256030][ T6007] should_fail_ex+0x414/0x560
[ 330.256048][ T6007] should_failslab+0xa8/0x100
[ 330.256065][ T6007] __kmalloc_noprof+0xcb/0x4f0
[ 330.256080][ T6007] ? tomoyo_init_log+0x1a6e/0x1f70
[ 330.256101][ T6007] tomoyo_init_log+0x1a6e/0x1f70
[ 330.256131][ T6007] ? __pfx_tomoyo_init_log+0x10/0x10
[ 330.256147][ T6007] ? tomoyo_profile+0x11/0x50
[ 330.256163][ T6007] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 330.256181][ T6007] tomoyo_supervisor+0x340/0x1480
[ 330.256199][ T6007] ? format_decode+0x5a3/0xe30
[ 330.256218][ T6007] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 330.256241][ T6007] ? snprintf+0xda/0x120
[ 330.256261][ T6007] ? __pfx_snprintf+0x10/0x10
[ 330.256276][ T6007] ? tomoyo_check_acl+0x386/0x400
[ 330.256294][ T6007] tomoyo_path_number_perm+0x438/0x5a0
[ 330.256308][ T6007] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 330.256323][ T6007] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 330.256342][ T6007] ? _raw_spin_lock_irq+0xae/0xf0
[ 330.256377][ T6007] ? __pfx_ptrace_notify+0x10/0x10
[ 330.256402][ T6007] security_file_ioctl+0xcb/0x2d0
[ 330.256418][ T6007] __se_sys_ioctl+0x47/0x170
[ 330.256433][ T6007] do_syscall_64+0xfa/0x3b0
[ 330.256450][ T6007] ? lockdep_hardirqs_on+0x9c/0x150
[ 330.256466][ T6007] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 330.256483][ T6007] ? clear_bhb_loop+0x60/0xb0
[ 330.256508][ T6007] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 330.256526][ T6007] RIP: 0033:0x7fea15a51869
[ 330.256545][ T6007] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 330.256625][ T6007] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6007] exit_group(0) = ?
[pid 6007] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6007, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6008 attached
, child_tidptr=0x555576720650) = 6008
[pid 6008] set_robust_list(0x555576720660, 24) = 0
[pid 6008] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6008] setpgid(0, 0) = 0
[pid 6008] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6008] write(3, "1000", 4) = 4
executing program
[pid 6008] close(3) = 0
[pid 6008] write(1, "executing program\n", 18) = 18
[pid 6008] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6008] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6008] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6008] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6008] write(6, "4", 1) = 1
[ 330.256649][ T6007] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 330.256663][ T6007] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 330.256675][ T6007] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 330.256686][ T6007] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 330.256697][ T6007] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 330.256730][ T6007]
[pid 6008] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 330.551127][ T6008] FAULT_INJECTION: forcing a failure.
[ 330.551127][ T6008] name failslab, interval 1, probability 0, space 0, times 0
[ 330.564562][ T6008] CPU: 1 UID: 0 PID: 6008 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 330.564581][ T6008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 330.564589][ T6008] Call Trace:
[ 330.564594][ T6008]
[ 330.564599][ T6008] dump_stack_lvl+0x189/0x250
[ 330.564618][ T6008] ? __pfx____ratelimit+0x10/0x10
[ 330.564637][ T6008] ? __pfx_dump_stack_lvl+0x10/0x10
[ 330.564650][ T6008] ? __pfx__printk+0x10/0x10
[ 330.564669][ T6008] ? __pfx___might_resched+0x10/0x10
[ 330.564686][ T6008] ? fs_reclaim_acquire+0x7d/0x100
[ 330.564706][ T6008] should_fail_ex+0x414/0x560
[ 330.564724][ T6008] should_failslab+0xa8/0x100
[ 330.564740][ T6008] __kmalloc_noprof+0xcb/0x4f0
[ 330.564754][ T6008] ? tomoyo_init_log+0x1a6e/0x1f70
[ 330.564774][ T6008] tomoyo_init_log+0x1a6e/0x1f70
[ 330.564789][ T6008] ? lockdep_hardirqs_on+0x9c/0x150
[ 330.564820][ T6008] ? __pfx_tomoyo_init_log+0x10/0x10
[ 330.564836][ T6008] ? tomoyo_profile+0x11/0x50
[ 330.564852][ T6008] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 330.564870][ T6008] tomoyo_supervisor+0x340/0x1480
[ 330.564888][ T6008] ? format_decode+0x5a3/0xe30
[ 330.564907][ T6008] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 330.564930][ T6008] ? snprintf+0xda/0x120
[ 330.564947][ T6008] ? __pfx_snprintf+0x10/0x10
[ 330.564962][ T6008] ? tomoyo_check_acl+0x386/0x400
[ 330.564980][ T6008] tomoyo_path_number_perm+0x438/0x5a0
[ 330.564994][ T6008] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 330.565009][ T6008] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 330.565028][ T6008] ? _raw_spin_lock_irq+0xae/0xf0
[ 330.565062][ T6008] ? __pfx_ptrace_notify+0x10/0x10
[ 330.565087][ T6008] security_file_ioctl+0xcb/0x2d0
[ 330.565102][ T6008] __se_sys_ioctl+0x47/0x170
[ 330.565117][ T6008] do_syscall_64+0xfa/0x3b0
[ 330.565133][ T6008] ? lockdep_hardirqs_on+0x9c/0x150
[ 330.565149][ T6008] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 330.565161][ T6008] ? clear_bhb_loop+0x60/0xb0
[ 330.565176][ T6008] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 330.565188][ T6008] RIP: 0033:0x7fea15a51869
[ 330.565200][ T6008] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[pid 6008] exit_group(0) = ?
[pid 6008] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6008, si_uid=0, si_status=0, si_utime=0, si_stime=27 /* 0.27 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6009 attached
, child_tidptr=0x555576720650) = 6009
[pid 6009] set_robust_list(0x555576720660, 24) = 0
[ 330.565211][ T6008] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 330.565226][ T6008] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 330.565235][ T6008] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 330.565243][ T6008] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 330.565250][ T6008] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 330.565265][ T6008] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 330.565283][ T6008]
[pid 6009] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6009] setpgid(0, 0) = 0
[pid 6009] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6009] write(3, "1000", 4) = 4
[pid 6009] close(3) = 0
executing program
[pid 6009] write(1, "executing program\n", 18) = 18
[pid 6009] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6009] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6009] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6009] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6009] write(6, "4", 1) = 1
[ 330.912292][ T6009] FAULT_INJECTION: forcing a failure.
[ 330.912292][ T6009] name failslab, interval 1, probability 0, space 0, times 0
[ 330.925272][ T6009] CPU: 1 UID: 0 PID: 6009 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 330.925304][ T6009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 330.925311][ T6009] Call Trace:
[ 330.925320][ T6009]
[ 330.925326][ T6009] dump_stack_lvl+0x189/0x250
[ 330.925347][ T6009] ? __pfx____ratelimit+0x10/0x10
[ 330.925364][ T6009] ? __pfx_dump_stack_lvl+0x10/0x10
[ 330.925377][ T6009] ? __pfx__printk+0x10/0x10
[ 330.925397][ T6009] ? __pfx___might_resched+0x10/0x10
[ 330.925414][ T6009] ? fs_reclaim_acquire+0x7d/0x100
[ 330.925435][ T6009] should_fail_ex+0x414/0x560
[ 330.925452][ T6009] should_failslab+0xa8/0x100
[ 330.925470][ T6009] __kmalloc_cache_noprof+0x70/0x3d0
[ 330.925485][ T6009] ? tomoyo_init_log+0x183/0x1f70
[ 330.925505][ T6009] tomoyo_init_log+0x183/0x1f70
[ 330.925525][ T6009] ? kasan_save_track+0x4f/0x80
[ 330.925537][ T6009] ? kasan_save_track+0x3e/0x80
[ 330.925549][ T6009] ? __kasan_slab_free+0x5b/0x80
[ 330.925564][ T6009] ? format_decode+0xd9/0xe30
[ 330.925578][ T6009] ? string+0x279/0x2b0
[ 330.925593][ T6009] ? __pfx_tomoyo_init_log+0x10/0x10
[ 330.925609][ T6009] ? tomoyo_profile+0x11/0x50
[ 330.925624][ T6009] ? tomoyo_profile+0x11/0x50
[ 330.925640][ T6009] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 330.925657][ T6009] tomoyo_supervisor+0x340/0x1480
[ 330.925676][ T6009] ? format_decode+0x5a3/0xe30
[ 330.925694][ T6009] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 330.925718][ T6009] ? snprintf+0xda/0x120
[ 330.925735][ T6009] ? __pfx_snprintf+0x10/0x10
[ 330.925750][ T6009] ? tomoyo_check_acl+0x386/0x400
[ 330.925768][ T6009] tomoyo_path_number_perm+0x438/0x5a0
[ 330.925782][ T6009] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 330.925797][ T6009] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 330.925816][ T6009] ? _raw_spin_lock_irq+0xae/0xf0
[ 330.925851][ T6009] ? __pfx_ptrace_notify+0x10/0x10
[ 330.925876][ T6009] security_file_ioctl+0xcb/0x2d0
[ 330.925891][ T6009] __se_sys_ioctl+0x47/0x170
[ 330.925907][ T6009] do_syscall_64+0xfa/0x3b0
[ 330.925923][ T6009] ? lockdep_hardirqs_on+0x9c/0x150
[ 330.925939][ T6009] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 330.925951][ T6009] ? clear_bhb_loop+0x60/0xb0
[ 330.925966][ T6009] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 330.925978][ T6009] RIP: 0033:0x7fea15a51869
[ 330.926001][ T6009] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 330.926011][ T6009] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 330.926026][ T6009] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 330.926035][ T6009] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 330.926043][ T6009] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[pid 6009] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6009] exit_group(0) = ?
[pid 6009] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6009, si_uid=0, si_status=0, si_utime=0, si_stime=28 /* 0.28 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6010 attached
, child_tidptr=0x555576720650) = 6010
[pid 6010] set_robust_list(0x555576720660, 24) = 0
[pid 6010] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6010] setpgid(0, 0) = 0
[ 330.926050][ T6009] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 330.926058][ T6009] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 330.926076][ T6009]
[pid 6010] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6010] write(3, "1000", 4) = 4
[pid 6010] close(3) = 0
executing program
[pid 6010] write(1, "executing program\n", 18) = 18
[pid 6010] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6010] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6010] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6010] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6010] write(6, "4", 1) = 1
[ 331.322309][ T6010] FAULT_INJECTION: forcing a failure.
[ 331.322309][ T6010] name failslab, interval 1, probability 0, space 0, times 0
[ 331.335295][ T6010] CPU: 0 UID: 0 PID: 6010 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 331.335325][ T6010] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 331.335337][ T6010] Call Trace:
[ 331.335347][ T6010]
[ 331.335357][ T6010] dump_stack_lvl+0x189/0x250
[ 331.335386][ T6010] ? __pfx____ratelimit+0x10/0x10
[ 331.335414][ T6010] ? __pfx_dump_stack_lvl+0x10/0x10
[ 331.335436][ T6010] ? __pfx__printk+0x10/0x10
[ 331.335470][ T6010] ? __pfx___might_resched+0x10/0x10
[ 331.335498][ T6010] ? fs_reclaim_acquire+0x7d/0x100
[ 331.335532][ T6010] should_fail_ex+0x414/0x560
[ 331.335560][ T6010] should_failslab+0xa8/0x100
[ 331.335589][ T6010] __kmalloc_noprof+0xcb/0x4f0
[ 331.335613][ T6010] ? tomoyo_init_log+0x1a6e/0x1f70
[ 331.335647][ T6010] tomoyo_init_log+0x1a6e/0x1f70
[ 331.335701][ T6010] ? __pfx_tomoyo_init_log+0x10/0x10
[ 331.335729][ T6010] ? tomoyo_profile+0x11/0x50
[ 331.335757][ T6010] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 331.335786][ T6010] tomoyo_supervisor+0x340/0x1480
[ 331.335816][ T6010] ? format_decode+0x5a3/0xe30
[ 331.335847][ T6010] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 331.335882][ T6010] ? snprintf+0xda/0x120
[ 331.335904][ T6010] ? __pfx_snprintf+0x10/0x10
[ 331.335923][ T6010] ? tomoyo_check_acl+0x386/0x400
[ 331.335947][ T6010] tomoyo_path_number_perm+0x438/0x5a0
[ 331.335965][ T6010] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 331.335984][ T6010] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 331.336019][ T6010] ? _raw_spin_lock_irq+0xae/0xf0
[ 331.336068][ T6010] ? __pfx_ptrace_notify+0x10/0x10
[ 331.336102][ T6010] security_file_ioctl+0xcb/0x2d0
[ 331.336121][ T6010] __se_sys_ioctl+0x47/0x170
[ 331.336142][ T6010] do_syscall_64+0xfa/0x3b0
[ 331.336164][ T6010] ? lockdep_hardirqs_on+0x9c/0x150
[ 331.336185][ T6010] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 331.336200][ T6010] ? clear_bhb_loop+0x60/0xb0
[ 331.336219][ T6010] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 331.336234][ T6010] RIP: 0033:0x7fea15a51869
[ 331.336249][ T6010] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 331.336264][ T6010] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6010] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6010] exit_group(0) = ?
[pid 6010] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6010, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 331.336281][ T6010] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 331.336294][ T6010] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 331.336303][ T6010] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 331.336313][ T6010] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 331.336323][ T6010] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 331.336347][ T6010]
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6011 attached
, child_tidptr=0x555576720650) = 6011
[pid 6011] set_robust_list(0x555576720660, 24) = 0
[pid 6011] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6011] setpgid(0, 0) = 0
[pid 6011] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6011] write(3, "1000", 4) = 4
[pid 6011] close(3) = 0
[pid 6011] write(1, "executing program\n", 18executing program
) = 18
[pid 6011] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6011] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6011] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6011] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6011] write(6, "4", 1) = 1
[pid 6011] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6011] exit_group(0) = ?
[pid 6011] +++ exited with 0 +++
[ 331.805044][ T6011] FAULT_INJECTION: forcing a failure.
[ 331.805044][ T6011] name failslab, interval 1, probability 0, space 0, times 0
[ 331.818351][ T6011] CPU: 1 UID: 0 PID: 6011 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 331.818379][ T6011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 331.818390][ T6011] Call Trace:
[ 331.818398][ T6011]
[ 331.818406][ T6011] dump_stack_lvl+0x189/0x250
[ 331.818434][ T6011] ? __pfx____ratelimit+0x10/0x10
[ 331.818462][ T6011] ? __pfx_dump_stack_lvl+0x10/0x10
[ 331.818484][ T6011] ? __pfx__printk+0x10/0x10
[ 331.818517][ T6011] ? __pfx___might_resched+0x10/0x10
[ 331.818545][ T6011] ? fs_reclaim_acquire+0x7d/0x100
[ 331.818571][ T6011] should_fail_ex+0x414/0x560
[ 331.818589][ T6011] should_failslab+0xa8/0x100
[ 331.818605][ T6011] __kmalloc_noprof+0xcb/0x4f0
[ 331.818619][ T6011] ? tomoyo_init_log+0x1a6e/0x1f70
[ 331.818640][ T6011] tomoyo_init_log+0x1a6e/0x1f70
[ 331.818670][ T6011] ? __pfx_tomoyo_init_log+0x10/0x10
[ 331.818687][ T6011] ? tomoyo_profile+0x11/0x50
[ 331.818703][ T6011] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 331.818720][ T6011] tomoyo_supervisor+0x340/0x1480
[ 331.818739][ T6011] ? format_decode+0x5a3/0xe30
[ 331.818757][ T6011] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 331.818781][ T6011] ? snprintf+0xda/0x120
[ 331.818797][ T6011] ? __pfx_snprintf+0x10/0x10
[ 331.818812][ T6011] ? tomoyo_check_acl+0x386/0x400
[ 331.818830][ T6011] tomoyo_path_number_perm+0x438/0x5a0
[ 331.818844][ T6011] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 331.818859][ T6011] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 331.818878][ T6011] ? _raw_spin_lock_irq+0xae/0xf0
[ 331.818912][ T6011] ? __pfx_ptrace_notify+0x10/0x10
[ 331.818936][ T6011] security_file_ioctl+0xcb/0x2d0
[ 331.818950][ T6011] __se_sys_ioctl+0x47/0x170
[ 331.818966][ T6011] do_syscall_64+0xfa/0x3b0
[ 331.818982][ T6011] ? lockdep_hardirqs_on+0x9c/0x150
[ 331.819000][ T6011] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 331.819013][ T6011] ? clear_bhb_loop+0x60/0xb0
[ 331.819028][ T6011] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 331.819039][ T6011] RIP: 0033:0x7fea15a51869
[ 331.819051][ T6011] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 331.819062][ T6011] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6011, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6012 attached
, child_tidptr=0x555576720650) = 6012
[pid 6012] set_robust_list(0x555576720660, 24) = 0
[pid 6012] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6012] setpgid(0, 0) = 0
[pid 6012] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6012] write(3, "1000", 4) = 4
[pid 6012] close(3executing program
) = 0
[pid 6012] write(1, "executing program\n", 18) = 18
[pid 6012] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6012] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6012] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6012] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6012] write(6, "4", 1) = 1
[ 331.819076][ T6011] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 331.819085][ T6011] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 331.819093][ T6011] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 331.819101][ T6011] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 331.819108][ T6011] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 331.819126][ T6011]
[ 332.130245][ T6012] FAULT_INJECTION: forcing a failure.
[ 332.130245][ T6012] name failslab, interval 1, probability 0, space 0, times 0
[ 332.142992][ T6012] CPU: 0 UID: 0 PID: 6012 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 332.143023][ T6012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 332.143035][ T6012] Call Trace:
[ 332.143044][ T6012]
[ 332.143050][ T6012] dump_stack_lvl+0x189/0x250
[ 332.143069][ T6012] ? __pfx____ratelimit+0x10/0x10
[ 332.143087][ T6012] ? __pfx_dump_stack_lvl+0x10/0x10
[ 332.143110][ T6012] ? __pfx__printk+0x10/0x10
[ 332.143142][ T6012] ? __pfx___might_resched+0x10/0x10
[ 332.143168][ T6012] ? fs_reclaim_acquire+0x7d/0x100
[ 332.143201][ T6012] should_fail_ex+0x414/0x560
[ 332.143229][ T6012] should_failslab+0xa8/0x100
[ 332.143257][ T6012] __kmalloc_noprof+0xcb/0x4f0
[ 332.143281][ T6012] ? tomoyo_init_log+0x1a6e/0x1f70
[ 332.143316][ T6012] tomoyo_init_log+0x1a6e/0x1f70
[ 332.143371][ T6012] ? __pfx_tomoyo_init_log+0x10/0x10
[ 332.143400][ T6012] ? tomoyo_profile+0x11/0x50
[ 332.143427][ T6012] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 332.143457][ T6012] tomoyo_supervisor+0x340/0x1480
[ 332.143489][ T6012] ? format_decode+0x5a3/0xe30
[ 332.143522][ T6012] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 332.143562][ T6012] ? snprintf+0xda/0x120
[ 332.143585][ T6012] ? __pfx_snprintf+0x10/0x10
[ 332.143600][ T6012] ? tomoyo_check_acl+0x386/0x400
[ 332.143619][ T6012] tomoyo_path_number_perm+0x438/0x5a0
[ 332.143632][ T6012] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 332.143647][ T6012] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 332.143666][ T6012] ? _raw_spin_lock_irq+0xae/0xf0
[ 332.143702][ T6012] ? __pfx_ptrace_notify+0x10/0x10
[ 332.143727][ T6012] security_file_ioctl+0xcb/0x2d0
[ 332.143742][ T6012] __se_sys_ioctl+0x47/0x170
[ 332.143757][ T6012] do_syscall_64+0xfa/0x3b0
[ 332.143774][ T6012] ? lockdep_hardirqs_on+0x9c/0x150
[ 332.143790][ T6012] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 332.143802][ T6012] ? clear_bhb_loop+0x60/0xb0
[ 332.143816][ T6012] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 332.143828][ T6012] RIP: 0033:0x7fea15a51869
[ 332.143841][ T6012] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 332.143852][ T6012] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 332.143867][ T6012] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6012] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6012] exit_group(0) = ?
[pid 6012] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6012, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6013 attached
[pid 6013] set_robust_list(0x555576720660, 24) = 0
[pid 5883] <... clone resumed>, child_tidptr=0x555576720650) = 6013
[pid 6013] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6013] setpgid(0, 0) = 0
[pid 6013] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6013] write(3, "1000", 4) = 4
[pid 6013] close(3) = 0
[pid 6013] write(1, "executing program\n", 18executing program
) = 18
[pid 6013] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[ 332.143876][ T6012] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 332.143883][ T6012] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 332.143891][ T6012] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 332.143899][ T6012] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 332.143917][ T6012]
[pid 6013] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6013] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6013] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6013] write(6, "4", 1) = 1
[pid 6013] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6013] exit_group(0) = ?
[pid 6013] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6013, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
[ 332.490379][ T6013] FAULT_INJECTION: forcing a failure.
[ 332.490379][ T6013] name failslab, interval 1, probability 0, space 0, times 0
[ 332.503716][ T6013] CPU: 0 UID: 0 PID: 6013 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 332.503746][ T6013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 332.503758][ T6013] Call Trace:
[ 332.503766][ T6013]
[ 332.503775][ T6013] dump_stack_lvl+0x189/0x250
[ 332.503802][ T6013] ? __pfx____ratelimit+0x10/0x10
[ 332.503827][ T6013] ? __pfx_dump_stack_lvl+0x10/0x10
[ 332.503842][ T6013] ? __pfx__printk+0x10/0x10
[ 332.503861][ T6013] ? __pfx___might_resched+0x10/0x10
[ 332.503878][ T6013] ? fs_reclaim_acquire+0x7d/0x100
[ 332.503898][ T6013] should_fail_ex+0x414/0x560
[ 332.503917][ T6013] should_failslab+0xa8/0x100
[ 332.503934][ T6013] __kmalloc_noprof+0xcb/0x4f0
[ 332.503948][ T6013] ? tomoyo_init_log+0x1a6e/0x1f70
[ 332.503971][ T6013] tomoyo_init_log+0x1a6e/0x1f70
[ 332.504002][ T6013] ? __pfx_tomoyo_init_log+0x10/0x10
[ 332.504018][ T6013] ? tomoyo_profile+0x11/0x50
[ 332.504034][ T6013] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 332.504052][ T6013] tomoyo_supervisor+0x340/0x1480
[ 332.504071][ T6013] ? format_decode+0x5a3/0xe30
[ 332.504089][ T6013] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 332.504113][ T6013] ? snprintf+0xda/0x120
[ 332.504129][ T6013] ? __pfx_snprintf+0x10/0x10
[ 332.504144][ T6013] ? tomoyo_check_acl+0x386/0x400
[ 332.504163][ T6013] tomoyo_path_number_perm+0x438/0x5a0
[ 332.504177][ T6013] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 332.504192][ T6013] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 332.504221][ T6013] ? _raw_spin_lock_irq+0xae/0xf0
[ 332.504257][ T6013] ? __pfx_ptrace_notify+0x10/0x10
[ 332.504281][ T6013] security_file_ioctl+0xcb/0x2d0
[ 332.504297][ T6013] __se_sys_ioctl+0x47/0x170
[ 332.504313][ T6013] do_syscall_64+0xfa/0x3b0
[ 332.504329][ T6013] ? lockdep_hardirqs_on+0x9c/0x150
[ 332.504345][ T6013] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 332.504357][ T6013] ? clear_bhb_loop+0x60/0xb0
[ 332.504372][ T6013] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 332.504383][ T6013] RIP: 0033:0x7fea15a51869
[ 332.504395][ T6013] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 332.504406][ T6013] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6014 attached
, child_tidptr=0x555576720650) = 6014
[pid 6014] set_robust_list(0x555576720660, 24) = 0
[pid 6014] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6014] setpgid(0, 0) = 0
[pid 6014] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[ 332.504421][ T6013] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 332.504430][ T6013] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 332.504437][ T6013] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 332.504445][ T6013] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 332.504452][ T6013] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 332.504470][ T6013]
[pid 6014] write(3, "1000", 4) = 4
[pid 6014] close(3) = 0
[pid 6014] write(1, "executing program\n", 18executing program
) = 18
[pid 6014] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6014] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6014] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6014] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6014] write(6, "4", 1) = 1
[pid 6014] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6014] exit_group(0) = ?
[pid 6014] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6014, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
[ 332.871722][ T6014] FAULT_INJECTION: forcing a failure.
[ 332.871722][ T6014] name failslab, interval 1, probability 0, space 0, times 0
[ 332.884556][ T6014] CPU: 1 UID: 0 PID: 6014 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 332.884588][ T6014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 332.884600][ T6014] Call Trace:
[ 332.884608][ T6014]
[ 332.884616][ T6014] dump_stack_lvl+0x189/0x250
[ 332.884636][ T6014] ? __pfx____ratelimit+0x10/0x10
[ 332.884653][ T6014] ? __pfx_dump_stack_lvl+0x10/0x10
[ 332.884666][ T6014] ? __pfx__printk+0x10/0x10
[ 332.884686][ T6014] ? __pfx___might_resched+0x10/0x10
[ 332.884704][ T6014] ? fs_reclaim_acquire+0x7d/0x100
[ 332.884724][ T6014] should_fail_ex+0x414/0x560
[ 332.884742][ T6014] should_failslab+0xa8/0x100
[ 332.884758][ T6014] __kmalloc_noprof+0xcb/0x4f0
[ 332.884772][ T6014] ? tomoyo_init_log+0x1a6e/0x1f70
[ 332.884792][ T6014] tomoyo_init_log+0x1a6e/0x1f70
[ 332.884822][ T6014] ? __pfx_tomoyo_init_log+0x10/0x10
[ 332.884839][ T6014] ? tomoyo_profile+0x11/0x50
[ 332.884855][ T6014] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 332.884873][ T6014] tomoyo_supervisor+0x340/0x1480
[ 332.884891][ T6014] ? format_decode+0x5a3/0xe30
[ 332.884917][ T6014] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 332.884941][ T6014] ? snprintf+0xda/0x120
[ 332.884958][ T6014] ? __pfx_snprintf+0x10/0x10
[ 332.884973][ T6014] ? tomoyo_check_acl+0x386/0x400
[ 332.884991][ T6014] tomoyo_path_number_perm+0x438/0x5a0
[ 332.885004][ T6014] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 332.885019][ T6014] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 332.885038][ T6014] ? _raw_spin_lock_irq+0xae/0xf0
[ 332.885073][ T6014] ? __pfx_ptrace_notify+0x10/0x10
[ 332.885098][ T6014] security_file_ioctl+0xcb/0x2d0
[ 332.885113][ T6014] __se_sys_ioctl+0x47/0x170
[ 332.885128][ T6014] do_syscall_64+0xfa/0x3b0
[ 332.885144][ T6014] ? lockdep_hardirqs_on+0x9c/0x150
[ 332.885160][ T6014] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 332.885173][ T6014] ? clear_bhb_loop+0x60/0xb0
[ 332.885187][ T6014] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 332.885199][ T6014] RIP: 0033:0x7fea15a51869
[ 332.885212][ T6014] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 332.885223][ T6014] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6015 attached
, child_tidptr=0x555576720650) = 6015
[pid 6015] set_robust_list(0x555576720660, 24) = 0
[pid 6015] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6015] setpgid(0, 0) = 0
[pid 6015] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6015] write(3, "1000", 4) = 4
[pid 6015] close(3) = 0
[pid 6015] write(1, "executing program\n", 18executing program
) = 18
[pid 6015] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6015] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6015] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6015] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6015] write(6, "4", 1) = 1
[ 332.885237][ T6014] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 332.885247][ T6014] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 332.885254][ T6014] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 332.885262][ T6014] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 332.885269][ T6014] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 332.885287][ T6014]
[pid 6015] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6015] exit_group(0) = ?
[ 333.202232][ T6015] FAULT_INJECTION: forcing a failure.
[ 333.202232][ T6015] name failslab, interval 1, probability 0, space 0, times 0
[ 333.215772][ T6015] CPU: 1 UID: 0 PID: 6015 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 333.215803][ T6015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 333.215815][ T6015] Call Trace:
[ 333.215823][ T6015]
[ 333.215832][ T6015] dump_stack_lvl+0x189/0x250
[ 333.215862][ T6015] ? __pfx____ratelimit+0x10/0x10
[ 333.215891][ T6015] ? __pfx_dump_stack_lvl+0x10/0x10
[ 333.215914][ T6015] ? __pfx__printk+0x10/0x10
[ 333.215949][ T6015] ? __pfx___might_resched+0x10/0x10
[ 333.215978][ T6015] ? fs_reclaim_acquire+0x7d/0x100
[ 333.216023][ T6015] should_fail_ex+0x414/0x560
[ 333.216053][ T6015] should_failslab+0xa8/0x100
[ 333.216082][ T6015] __kmalloc_noprof+0xcb/0x4f0
[ 333.216105][ T6015] ? tomoyo_init_log+0x1a6e/0x1f70
[ 333.216139][ T6015] tomoyo_init_log+0x1a6e/0x1f70
[ 333.216195][ T6015] ? __pfx_tomoyo_init_log+0x10/0x10
[ 333.216224][ T6015] ? tomoyo_profile+0x11/0x50
[ 333.216250][ T6015] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 333.216281][ T6015] tomoyo_supervisor+0x340/0x1480
[ 333.216312][ T6015] ? format_decode+0x5a3/0xe30
[ 333.216345][ T6015] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 333.216389][ T6015] ? snprintf+0xda/0x120
[ 333.216418][ T6015] ? __pfx_snprintf+0x10/0x10
[ 333.216442][ T6015] ? tomoyo_check_acl+0x386/0x400
[ 333.216472][ T6015] tomoyo_path_number_perm+0x438/0x5a0
[ 333.216495][ T6015] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 333.216520][ T6015] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 333.216553][ T6015] ? _raw_spin_lock_irq+0xae/0xf0
[ 333.216617][ T6015] ? __pfx_ptrace_notify+0x10/0x10
[ 333.216661][ T6015] security_file_ioctl+0xcb/0x2d0
[ 333.216686][ T6015] __se_sys_ioctl+0x47/0x170
[ 333.216713][ T6015] do_syscall_64+0xfa/0x3b0
[ 333.216741][ T6015] ? lockdep_hardirqs_on+0x9c/0x150
[ 333.216768][ T6015] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 333.216789][ T6015] ? clear_bhb_loop+0x60/0xb0
[ 333.216814][ T6015] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 333.216834][ T6015] RIP: 0033:0x7fea15a51869
[ 333.216854][ T6015] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 333.216872][ T6015] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6015] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6015, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6016 attached
, child_tidptr=0x555576720650) = 6016
[pid 6016] set_robust_list(0x555576720660, 24) = 0
[pid 6016] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 333.216894][ T6015] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 333.216909][ T6015] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 333.216921][ T6015] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 333.216934][ T6015] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 333.216945][ T6015] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 333.216978][ T6015]
[pid 6016] setpgid(0, 0) = 0
[pid 6016] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6016] write(3, "1000", 4) = 4
[pid 6016] close(3) = 0
[pid 6016] write(1, "executing program\n", 18executing program
) = 18
[pid 6016] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6016] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6016] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6016] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6016] write(6, "4", 1) = 1
[pid 6016] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6016] exit_group(0) = ?
[ 333.566279][ T6016] FAULT_INJECTION: forcing a failure.
[ 333.566279][ T6016] name failslab, interval 1, probability 0, space 0, times 0
[ 333.579578][ T6016] CPU: 0 UID: 0 PID: 6016 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 333.579608][ T6016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 333.579618][ T6016] Call Trace:
[ 333.579627][ T6016]
[ 333.579635][ T6016] dump_stack_lvl+0x189/0x250
[ 333.579664][ T6016] ? __pfx____ratelimit+0x10/0x10
[ 333.579691][ T6016] ? __pfx_dump_stack_lvl+0x10/0x10
[ 333.579714][ T6016] ? __pfx__printk+0x10/0x10
[ 333.579747][ T6016] ? __pfx___might_resched+0x10/0x10
[ 333.579775][ T6016] ? fs_reclaim_acquire+0x7d/0x100
[ 333.579809][ T6016] should_fail_ex+0x414/0x560
[ 333.579838][ T6016] should_failslab+0xa8/0x100
[ 333.579867][ T6016] __kmalloc_noprof+0xcb/0x4f0
[ 333.579890][ T6016] ? tomoyo_init_log+0x1a6e/0x1f70
[ 333.579922][ T6016] tomoyo_init_log+0x1a6e/0x1f70
[ 333.579971][ T6016] ? __pfx_tomoyo_init_log+0x10/0x10
[ 333.579989][ T6016] ? tomoyo_profile+0x11/0x50
[ 333.580005][ T6016] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 333.580023][ T6016] tomoyo_supervisor+0x340/0x1480
[ 333.580042][ T6016] ? format_decode+0x5a3/0xe30
[ 333.580061][ T6016] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 333.580085][ T6016] ? snprintf+0xda/0x120
[ 333.580101][ T6016] ? __pfx_snprintf+0x10/0x10
[ 333.580116][ T6016] ? tomoyo_check_acl+0x386/0x400
[ 333.580134][ T6016] tomoyo_path_number_perm+0x438/0x5a0
[ 333.580160][ T6016] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 333.580176][ T6016] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 333.580195][ T6016] ? _raw_spin_lock_irq+0xae/0xf0
[ 333.580230][ T6016] ? __pfx_ptrace_notify+0x10/0x10
[ 333.580255][ T6016] security_file_ioctl+0xcb/0x2d0
[ 333.580270][ T6016] __se_sys_ioctl+0x47/0x170
[ 333.580286][ T6016] do_syscall_64+0xfa/0x3b0
[ 333.580302][ T6016] ? lockdep_hardirqs_on+0x9c/0x150
[ 333.580318][ T6016] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 333.580330][ T6016] ? clear_bhb_loop+0x60/0xb0
[ 333.580345][ T6016] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 333.580356][ T6016] RIP: 0033:0x7fea15a51869
[ 333.580368][ T6016] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 333.580379][ T6016] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 333.580394][ T6016] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6016] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6016, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6017 attached
, child_tidptr=0x555576720650) = 6017
[ 333.580403][ T6016] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 333.580411][ T6016] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 333.580419][ T6016] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 333.580426][ T6016] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 333.580444][ T6016]
[pid 6017] set_robust_list(0x555576720660, 24) = 0
[pid 6017] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6017] setpgid(0, 0) = 0
[pid 6017] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6017] write(3, "1000", 4) = 4
[pid 6017] close(3) = 0
[pid 6017] write(1, "executing program\n", 18executing program
) = 18
[pid 6017] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6017] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6017] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6017] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6017] write(6, "4", 1) = 1
[pid 6017] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6017] exit_group(0) = ?
[pid 6017] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6017, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 333.985052][ T6017] FAULT_INJECTION: forcing a failure.
[ 333.985052][ T6017] name failslab, interval 1, probability 0, space 0, times 0
[ 333.998331][ T6017] CPU: 1 UID: 0 PID: 6017 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 333.998359][ T6017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 333.998371][ T6017] Call Trace:
[ 333.998379][ T6017]
[ 333.998388][ T6017] dump_stack_lvl+0x189/0x250
[ 333.998414][ T6017] ? __pfx____ratelimit+0x10/0x10
[ 333.998440][ T6017] ? __pfx_dump_stack_lvl+0x10/0x10
[ 333.998462][ T6017] ? __pfx__printk+0x10/0x10
[ 333.998495][ T6017] ? __pfx___might_resched+0x10/0x10
[ 333.998523][ T6017] ? fs_reclaim_acquire+0x7d/0x100
[ 333.998558][ T6017] should_fail_ex+0x414/0x560
[ 333.998588][ T6017] should_failslab+0xa8/0x100
[ 333.998616][ T6017] __kmalloc_noprof+0xcb/0x4f0
[ 333.998639][ T6017] ? tomoyo_init_log+0x1a6e/0x1f70
[ 333.998674][ T6017] tomoyo_init_log+0x1a6e/0x1f70
[ 333.998726][ T6017] ? __pfx_tomoyo_init_log+0x10/0x10
[ 333.998754][ T6017] ? tomoyo_profile+0x11/0x50
[ 333.998778][ T6017] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 333.998806][ T6017] tomoyo_supervisor+0x340/0x1480
[ 333.998825][ T6017] ? format_decode+0x5a3/0xe30
[ 333.998843][ T6017] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 333.998866][ T6017] ? snprintf+0xda/0x120
[ 333.998883][ T6017] ? __pfx_snprintf+0x10/0x10
[ 333.998898][ T6017] ? tomoyo_check_acl+0x386/0x400
[ 333.998916][ T6017] tomoyo_path_number_perm+0x438/0x5a0
[ 333.998929][ T6017] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 333.998944][ T6017] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 333.998963][ T6017] ? _raw_spin_lock_irq+0xae/0xf0
[ 333.999001][ T6017] ? __pfx_ptrace_notify+0x10/0x10
[ 333.999026][ T6017] security_file_ioctl+0xcb/0x2d0
[ 333.999041][ T6017] __se_sys_ioctl+0x47/0x170
[ 333.999056][ T6017] do_syscall_64+0xfa/0x3b0
[ 333.999073][ T6017] ? lockdep_hardirqs_on+0x9c/0x150
[ 333.999089][ T6017] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 333.999101][ T6017] ? clear_bhb_loop+0x60/0xb0
[ 333.999115][ T6017] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 333.999127][ T6017] RIP: 0033:0x7fea15a51869
[ 333.999140][ T6017] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 333.999150][ T6017] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 333.999165][ T6017] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6018 attached
, child_tidptr=0x555576720650) = 6018
[pid 6018] set_robust_list(0x555576720660, 24) = 0
[pid 6018] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6018] setpgid(0, 0) = 0
[pid 6018] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6018] write(3, "1000", 4) = 4
[pid 6018] close(3) = 0
[ 333.999174][ T6017] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 333.999182][ T6017] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 333.999189][ T6017] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 333.999197][ T6017] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 333.999214][ T6017]
executing program
[pid 6018] write(1, "executing program\n", 18) = 18
[pid 6018] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6018] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6018] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6018] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6018] write(6, "4", 1) = 1
[ 334.328870][ T6018] FAULT_INJECTION: forcing a failure.
[ 334.328870][ T6018] name failslab, interval 1, probability 0, space 0, times 0
[ 334.341960][ T6018] CPU: 0 UID: 0 PID: 6018 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 334.341989][ T6018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 334.342000][ T6018] Call Trace:
[ 334.342009][ T6018]
[ 334.342017][ T6018] dump_stack_lvl+0x189/0x250
[ 334.342046][ T6018] ? __pfx____ratelimit+0x10/0x10
[ 334.342073][ T6018] ? __pfx_dump_stack_lvl+0x10/0x10
[ 334.342093][ T6018] ? __pfx__printk+0x10/0x10
[ 334.342113][ T6018] ? __pfx___might_resched+0x10/0x10
[ 334.342152][ T6018] ? fs_reclaim_acquire+0x7d/0x100
[ 334.342172][ T6018] should_fail_ex+0x414/0x560
[ 334.342189][ T6018] should_failslab+0xa8/0x100
[ 334.342206][ T6018] __kmalloc_noprof+0xcb/0x4f0
[ 334.342220][ T6018] ? tomoyo_init_log+0x1a6e/0x1f70
[ 334.342240][ T6018] tomoyo_init_log+0x1a6e/0x1f70
[ 334.342270][ T6018] ? __pfx_tomoyo_init_log+0x10/0x10
[ 334.342287][ T6018] ? tomoyo_profile+0x11/0x50
[ 334.342303][ T6018] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 334.342320][ T6018] tomoyo_supervisor+0x340/0x1480
[ 334.342339][ T6018] ? format_decode+0x5a3/0xe30
[ 334.342357][ T6018] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 334.342380][ T6018] ? snprintf+0xda/0x120
[ 334.342397][ T6018] ? __pfx_snprintf+0x10/0x10
[ 334.342412][ T6018] ? tomoyo_check_acl+0x386/0x400
[ 334.342430][ T6018] tomoyo_path_number_perm+0x438/0x5a0
[ 334.342444][ T6018] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 334.342458][ T6018] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 334.342477][ T6018] ? _raw_spin_lock_irq+0xae/0xf0
[ 334.342512][ T6018] ? __pfx_ptrace_notify+0x10/0x10
[ 334.342536][ T6018] security_file_ioctl+0xcb/0x2d0
[ 334.342551][ T6018] __se_sys_ioctl+0x47/0x170
[ 334.342566][ T6018] do_syscall_64+0xfa/0x3b0
[ 334.342583][ T6018] ? lockdep_hardirqs_on+0x9c/0x150
[ 334.342599][ T6018] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 334.342611][ T6018] ? clear_bhb_loop+0x60/0xb0
[ 334.342625][ T6018] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 334.342637][ T6018] RIP: 0033:0x7fea15a51869
[ 334.342650][ T6018] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 334.342661][ T6018] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 334.342675][ T6018] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6018] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6018] exit_group(0) = ?
[pid 6018] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6018, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6019 attached
, child_tidptr=0x555576720650) = 6019
[pid 6019] set_robust_list(0x555576720660, 24) = 0
[pid 6019] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6019] setpgid(0, 0) = 0
[pid 6019] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6019] write(3, "1000", 4) = 4
[pid 6019] close(3) = 0
[pid 6019] write(1, "executing program\n", 18executing program
) = 18
[ 334.342684][ T6018] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 334.342692][ T6018] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 334.342699][ T6018] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 334.342706][ T6018] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 334.342724][ T6018]
[pid 6019] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6019] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6019] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6019] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6019] write(6, "4", 1) = 1
[ 334.638669][ T6019] FAULT_INJECTION: forcing a failure.
[ 334.638669][ T6019] name failslab, interval 1, probability 0, space 0, times 0
[ 334.651829][ T6019] CPU: 1 UID: 0 PID: 6019 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 334.651859][ T6019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 334.651871][ T6019] Call Trace:
[ 334.651879][ T6019]
[ 334.651888][ T6019] dump_stack_lvl+0x189/0x250
[ 334.651915][ T6019] ? __pfx____ratelimit+0x10/0x10
[ 334.651933][ T6019] ? __pfx_dump_stack_lvl+0x10/0x10
[ 334.651946][ T6019] ? __pfx__printk+0x10/0x10
[ 334.651972][ T6019] ? __pfx___might_resched+0x10/0x10
[ 334.651990][ T6019] ? fs_reclaim_acquire+0x7d/0x100
[ 334.652010][ T6019] should_fail_ex+0x414/0x560
[ 334.652028][ T6019] should_failslab+0xa8/0x100
[ 334.652046][ T6019] __kmalloc_noprof+0xcb/0x4f0
[ 334.652059][ T6019] ? tomoyo_init_log+0x1a6e/0x1f70
[ 334.652079][ T6019] tomoyo_init_log+0x1a6e/0x1f70
[ 334.652110][ T6019] ? __pfx_tomoyo_init_log+0x10/0x10
[ 334.652127][ T6019] ? tomoyo_profile+0x11/0x50
[ 334.652143][ T6019] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 334.652161][ T6019] tomoyo_supervisor+0x340/0x1480
[ 334.652179][ T6019] ? format_decode+0x5a3/0xe30
[ 334.652198][ T6019] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 334.652226][ T6019] ? snprintf+0xda/0x120
[ 334.652243][ T6019] ? __pfx_snprintf+0x10/0x10
[ 334.652258][ T6019] ? tomoyo_check_acl+0x386/0x400
[ 334.652276][ T6019] tomoyo_path_number_perm+0x438/0x5a0
[ 334.652290][ T6019] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 334.652305][ T6019] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 334.652324][ T6019] ? _raw_spin_lock_irq+0xae/0xf0
[ 334.652360][ T6019] ? __pfx_ptrace_notify+0x10/0x10
[ 334.652385][ T6019] security_file_ioctl+0xcb/0x2d0
[ 334.652400][ T6019] __se_sys_ioctl+0x47/0x170
[ 334.652416][ T6019] do_syscall_64+0xfa/0x3b0
[ 334.652433][ T6019] ? lockdep_hardirqs_on+0x9c/0x150
[ 334.652449][ T6019] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 334.652461][ T6019] ? clear_bhb_loop+0x60/0xb0
[ 334.652476][ T6019] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 334.652487][ T6019] RIP: 0033:0x7fea15a51869
[ 334.652499][ T6019] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 334.652510][ T6019] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 334.652525][ T6019] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6019] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6019] exit_group(0) = ?
[pid 6019] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6019, si_uid=0, si_status=0, si_utime=0, si_stime=29 /* 0.29 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6020 attached
, child_tidptr=0x555576720650) = 6020
[pid 6020] set_robust_list(0x555576720660, 24) = 0
[pid 6020] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6020] setpgid(0, 0) = 0
[ 334.652535][ T6019] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 334.652543][ T6019] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 334.652551][ T6019] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 334.652559][ T6019] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 334.652577][ T6019]
[pid 6020] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6020] write(3, "1000", 4) = 4
[pid 6020] close(3) = 0
[pid 6020] write(1, "executing program\n", 18executing program
) = 18
[pid 6020] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6020] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6020] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6020] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6020] write(6, "4", 1) = 1
[ 335.003073][ T6020] FAULT_INJECTION: forcing a failure.
[ 335.003073][ T6020] name failslab, interval 1, probability 0, space 0, times 0
[ 335.016115][ T6020] CPU: 0 UID: 0 PID: 6020 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 335.016141][ T6020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 335.016149][ T6020] Call Trace:
[ 335.016156][ T6020]
[ 335.016162][ T6020] dump_stack_lvl+0x189/0x250
[ 335.016182][ T6020] ? __pfx____ratelimit+0x10/0x10
[ 335.016200][ T6020] ? __pfx_dump_stack_lvl+0x10/0x10
[ 335.016214][ T6020] ? __pfx__printk+0x10/0x10
[ 335.016249][ T6020] ? __pfx___might_resched+0x10/0x10
[ 335.016267][ T6020] ? fs_reclaim_acquire+0x7d/0x100
[ 335.016288][ T6020] should_fail_ex+0x414/0x560
[ 335.016306][ T6020] should_failslab+0xa8/0x100
[ 335.016323][ T6020] __kmalloc_noprof+0xcb/0x4f0
[ 335.016338][ T6020] ? tomoyo_init_log+0x1a6e/0x1f70
[ 335.016360][ T6020] tomoyo_init_log+0x1a6e/0x1f70
[ 335.016396][ T6020] ? __pfx_tomoyo_init_log+0x10/0x10
[ 335.016413][ T6020] ? tomoyo_profile+0x11/0x50
[ 335.016430][ T6020] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 335.016448][ T6020] tomoyo_supervisor+0x340/0x1480
[ 335.016467][ T6020] ? format_decode+0x5a3/0xe30
[ 335.016486][ T6020] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 335.016510][ T6020] ? snprintf+0xda/0x120
[ 335.016527][ T6020] ? __pfx_snprintf+0x10/0x10
[ 335.016542][ T6020] ? tomoyo_check_acl+0x386/0x400
[ 335.016561][ T6020] tomoyo_path_number_perm+0x438/0x5a0
[ 335.016575][ T6020] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 335.016591][ T6020] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 335.016610][ T6020] ? _raw_spin_lock_irq+0xae/0xf0
[ 335.016645][ T6020] ? __pfx_ptrace_notify+0x10/0x10
[ 335.016671][ T6020] security_file_ioctl+0xcb/0x2d0
[ 335.016686][ T6020] __se_sys_ioctl+0x47/0x170
[ 335.016703][ T6020] do_syscall_64+0xfa/0x3b0
[ 335.016720][ T6020] ? lockdep_hardirqs_on+0x9c/0x150
[ 335.016736][ T6020] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 335.016748][ T6020] ? clear_bhb_loop+0x60/0xb0
[ 335.016764][ T6020] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 335.016776][ T6020] RIP: 0033:0x7fea15a51869
[ 335.016790][ T6020] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 335.016801][ T6020] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6020] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6020] exit_group(0) = ?
[pid 6020] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6020, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6021 attached
, child_tidptr=0x555576720650) = 6021
[pid 6021] set_robust_list(0x555576720660, 24) = 0
[pid 6021] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6021] setpgid(0, 0) = 0
[pid 6021] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6021] write(3, "1000", 4) = 4
[pid 6021] close(3) = 0
executing program
[pid 6021] write(1, "executing program\n", 18) = 18
[pid 6021] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6021] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6021] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6021] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[ 335.016815][ T6020] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 335.016825][ T6020] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 335.016833][ T6020] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 335.016841][ T6020] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 335.016848][ T6020] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 335.016867][ T6020]
[pid 6021] write(6, "4", 1) = 1
[pid 6021] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6021] exit_group(0) = ?
[ 335.321859][ T6021] FAULT_INJECTION: forcing a failure.
[ 335.321859][ T6021] name failslab, interval 1, probability 0, space 0, times 0
[ 335.334766][ T6021] CPU: 1 UID: 0 PID: 6021 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 335.334787][ T6021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 335.334795][ T6021] Call Trace:
[ 335.334800][ T6021]
[ 335.334806][ T6021] dump_stack_lvl+0x189/0x250
[ 335.334825][ T6021] ? __pfx____ratelimit+0x10/0x10
[ 335.334843][ T6021] ? __pfx_dump_stack_lvl+0x10/0x10
[ 335.334856][ T6021] ? __pfx__printk+0x10/0x10
[ 335.334877][ T6021] ? __pfx___might_resched+0x10/0x10
[ 335.334894][ T6021] ? fs_reclaim_acquire+0x7d/0x100
[ 335.334926][ T6021] should_fail_ex+0x414/0x560
[ 335.334944][ T6021] should_failslab+0xa8/0x100
[ 335.334961][ T6021] __kmalloc_noprof+0xcb/0x4f0
[ 335.334975][ T6021] ? tomoyo_init_log+0x1a6e/0x1f70
[ 335.334995][ T6021] tomoyo_init_log+0x1a6e/0x1f70
[ 335.335026][ T6021] ? __pfx_tomoyo_init_log+0x10/0x10
[ 335.335044][ T6021] ? tomoyo_profile+0x11/0x50
[ 335.335060][ T6021] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 335.335078][ T6021] tomoyo_supervisor+0x340/0x1480
[ 335.335096][ T6021] ? format_decode+0x5a3/0xe30
[ 335.335115][ T6021] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 335.335139][ T6021] ? snprintf+0xda/0x120
[ 335.335156][ T6021] ? __pfx_snprintf+0x10/0x10
[ 335.335171][ T6021] ? tomoyo_check_acl+0x386/0x400
[ 335.335190][ T6021] tomoyo_path_number_perm+0x438/0x5a0
[ 335.335204][ T6021] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 335.335219][ T6021] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 335.335239][ T6021] ? _raw_spin_lock_irq+0xae/0xf0
[ 335.335274][ T6021] ? __pfx_ptrace_notify+0x10/0x10
[ 335.335299][ T6021] security_file_ioctl+0xcb/0x2d0
[ 335.335315][ T6021] __se_sys_ioctl+0x47/0x170
[ 335.335331][ T6021] do_syscall_64+0xfa/0x3b0
[ 335.335348][ T6021] ? lockdep_hardirqs_on+0x9c/0x150
[ 335.335365][ T6021] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 335.335377][ T6021] ? clear_bhb_loop+0x60/0xb0
[ 335.335392][ T6021] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 335.335404][ T6021] RIP: 0033:0x7fea15a51869
[ 335.335418][ T6021] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 335.335429][ T6021] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6021] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6021, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6022 attached
, child_tidptr=0x555576720650) = 6022
[pid 6022] set_robust_list(0x555576720660, 24) = 0
[pid 6022] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6022] setpgid(0, 0) = 0
[pid 6022] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6022] write(3, "1000", 4) = 4
[pid 6022] close(3) = 0
executing program
[pid 6022] write(1, "executing program\n", 18) = 18
[pid 6022] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[ 335.335444][ T6021] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 335.335453][ T6021] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 335.335461][ T6021] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 335.335469][ T6021] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 335.335476][ T6021] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 335.335495][ T6021]
[pid 6022] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6022] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6022] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6022] write(6, "4", 1) = 1
[pid 6022] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 335.668638][ T6022] FAULT_INJECTION: forcing a failure.
[ 335.668638][ T6022] name failslab, interval 1, probability 0, space 0, times 0
[ 335.681690][ T6022] CPU: 0 UID: 0 PID: 6022 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 335.681711][ T6022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 335.681719][ T6022] Call Trace:
[ 335.681724][ T6022]
[ 335.681730][ T6022] dump_stack_lvl+0x189/0x250
[ 335.681750][ T6022] ? __pfx____ratelimit+0x10/0x10
[ 335.681768][ T6022] ? __pfx_dump_stack_lvl+0x10/0x10
[ 335.681795][ T6022] ? __pfx__printk+0x10/0x10
[ 335.681816][ T6022] ? __pfx___might_resched+0x10/0x10
[ 335.681834][ T6022] ? fs_reclaim_acquire+0x7d/0x100
[ 335.681855][ T6022] should_fail_ex+0x414/0x560
[ 335.681873][ T6022] should_failslab+0xa8/0x100
[ 335.681894][ T6022] __kmalloc_noprof+0xcb/0x4f0
[ 335.681908][ T6022] ? tomoyo_init_log+0x1a6e/0x1f70
[ 335.681929][ T6022] tomoyo_init_log+0x1a6e/0x1f70
[ 335.681959][ T6022] ? __pfx_tomoyo_init_log+0x10/0x10
[ 335.681976][ T6022] ? tomoyo_profile+0x11/0x50
[ 335.681993][ T6022] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 335.682011][ T6022] tomoyo_supervisor+0x340/0x1480
[ 335.682030][ T6022] ? format_decode+0x5a3/0xe30
[ 335.682048][ T6022] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 335.682072][ T6022] ? snprintf+0xda/0x120
[ 335.682089][ T6022] ? __pfx_snprintf+0x10/0x10
[ 335.682104][ T6022] ? tomoyo_check_acl+0x386/0x400
[ 335.682123][ T6022] tomoyo_path_number_perm+0x438/0x5a0
[ 335.682151][ T6022] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 335.682166][ T6022] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 335.682186][ T6022] ? _raw_spin_lock_irq+0xae/0xf0
[ 335.682221][ T6022] ? __pfx_ptrace_notify+0x10/0x10
[ 335.682246][ T6022] security_file_ioctl+0xcb/0x2d0
[ 335.682261][ T6022] __se_sys_ioctl+0x47/0x170
[ 335.682277][ T6022] do_syscall_64+0xfa/0x3b0
[ 335.682294][ T6022] ? lockdep_hardirqs_on+0x9c/0x150
[ 335.682310][ T6022] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 335.682322][ T6022] ? clear_bhb_loop+0x60/0xb0
[ 335.682338][ T6022] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 335.682349][ T6022] RIP: 0033:0x7fea15a51869
[ 335.682362][ T6022] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 335.682373][ T6022] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 335.682388][ T6022] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6022] exit_group(0) = ?
[pid 6022] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6022, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6023 attached
, child_tidptr=0x555576720650) = 6023
[pid 6023] set_robust_list(0x555576720660, 24) = 0
[pid 6023] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6023] setpgid(0, 0) = 0
[pid 6023] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6023] write(3, "1000", 4) = 4
[pid 6023] close(3) = 0
[ 335.682397][ T6022] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 335.682406][ T6022] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 335.682414][ T6022] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 335.682421][ T6022] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 335.682439][ T6022]
[pid 6023] write(1, "executing program\n", 18executing program
) = 18
[pid 6023] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6023] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6023] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6023] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6023] write(6, "4", 1) = 1
[pid 6023] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6023] exit_group(0) = ?
[pid 6023] +++ exited with 0 +++
[ 336.034169][ T6023] FAULT_INJECTION: forcing a failure.
[ 336.034169][ T6023] name failslab, interval 1, probability 0, space 0, times 0
[ 336.047098][ T6023] CPU: 1 UID: 0 PID: 6023 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 336.047119][ T6023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 336.047127][ T6023] Call Trace:
[ 336.047133][ T6023]
[ 336.047139][ T6023] dump_stack_lvl+0x189/0x250
[ 336.047158][ T6023] ? __pfx____ratelimit+0x10/0x10
[ 336.047176][ T6023] ? __pfx_dump_stack_lvl+0x10/0x10
[ 336.047190][ T6023] ? __pfx__printk+0x10/0x10
[ 336.047210][ T6023] ? __pfx___might_resched+0x10/0x10
[ 336.047228][ T6023] ? fs_reclaim_acquire+0x7d/0x100
[ 336.047248][ T6023] should_fail_ex+0x414/0x560
[ 336.047266][ T6023] should_failslab+0xa8/0x100
[ 336.047284][ T6023] __kmalloc_noprof+0xcb/0x4f0
[ 336.047298][ T6023] ? tomoyo_init_log+0x1a6e/0x1f70
[ 336.047318][ T6023] tomoyo_init_log+0x1a6e/0x1f70
[ 336.047349][ T6023] ? __pfx_tomoyo_init_log+0x10/0x10
[ 336.047366][ T6023] ? tomoyo_profile+0x11/0x50
[ 336.047383][ T6023] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 336.047400][ T6023] tomoyo_supervisor+0x340/0x1480
[ 336.047419][ T6023] ? format_decode+0x5a3/0xe30
[ 336.047438][ T6023] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 336.047462][ T6023] ? snprintf+0xda/0x120
[ 336.047479][ T6023] ? __pfx_snprintf+0x10/0x10
[ 336.047494][ T6023] ? tomoyo_check_acl+0x386/0x400
[ 336.047513][ T6023] tomoyo_path_number_perm+0x438/0x5a0
[ 336.047527][ T6023] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 336.047543][ T6023] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 336.047562][ T6023] ? _raw_spin_lock_irq+0xae/0xf0
[ 336.047597][ T6023] ? __pfx_ptrace_notify+0x10/0x10
[ 336.047621][ T6023] security_file_ioctl+0xcb/0x2d0
[ 336.047636][ T6023] __se_sys_ioctl+0x47/0x170
[ 336.047652][ T6023] do_syscall_64+0xfa/0x3b0
[ 336.047669][ T6023] ? lockdep_hardirqs_on+0x9c/0x150
[ 336.047685][ T6023] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 336.047697][ T6023] ? clear_bhb_loop+0x60/0xb0
[ 336.047712][ T6023] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 336.047724][ T6023] RIP: 0033:0x7fea15a51869
[ 336.047737][ T6023] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 336.047748][ T6023] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 336.047763][ T6023] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6023, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6024 attached
, child_tidptr=0x555576720650) = 6024
[pid 6024] set_robust_list(0x555576720660, 24) = 0
[pid 6024] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6024] setpgid(0, 0) = 0
[pid 6024] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6024] write(3, "1000", 4executing program
) = 4
[pid 6024] close(3) = 0
[pid 6024] write(1, "executing program\n", 18) = 18
[pid 6024] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6024] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6024] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6024] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6024] write(6, "4", 1) = 1
[ 336.047772][ T6023] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 336.047780][ T6023] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 336.047788][ T6023] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 336.047796][ T6023] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 336.047814][ T6023]
[ 336.359416][ T6024] FAULT_INJECTION: forcing a failure.
[ 336.359416][ T6024] name failslab, interval 1, probability 0, space 0, times 0
[ 336.372675][ T6024] CPU: 0 UID: 0 PID: 6024 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 336.372697][ T6024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 336.372705][ T6024] Call Trace:
[ 336.372711][ T6024]
[ 336.372717][ T6024] dump_stack_lvl+0x189/0x250
[ 336.372738][ T6024] ? __pfx____ratelimit+0x10/0x10
[ 336.372757][ T6024] ? __pfx_dump_stack_lvl+0x10/0x10
[ 336.372771][ T6024] ? __pfx__printk+0x10/0x10
[ 336.372792][ T6024] ? __pfx___might_resched+0x10/0x10
[ 336.372811][ T6024] ? fs_reclaim_acquire+0x7d/0x100
[ 336.372833][ T6024] should_fail_ex+0x414/0x560
[ 336.372852][ T6024] should_failslab+0xa8/0x100
[ 336.372870][ T6024] __kmalloc_noprof+0xcb/0x4f0
[ 336.372885][ T6024] ? tomoyo_init_log+0x1a6e/0x1f70
[ 336.372906][ T6024] tomoyo_init_log+0x1a6e/0x1f70
[ 336.372938][ T6024] ? __pfx_tomoyo_init_log+0x10/0x10
[ 336.372956][ T6024] ? tomoyo_profile+0x11/0x50
[ 336.372982][ T6024] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 336.373000][ T6024] tomoyo_supervisor+0x340/0x1480
[ 336.373020][ T6024] ? format_decode+0x5a3/0xe30
[ 336.373039][ T6024] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 336.373064][ T6024] ? snprintf+0xda/0x120
[ 336.373082][ T6024] ? __pfx_snprintf+0x10/0x10
[ 336.373107][ T6024] ? tomoyo_check_acl+0x386/0x400
[ 336.373137][ T6024] tomoyo_path_number_perm+0x438/0x5a0
[ 336.373159][ T6024] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 336.373185][ T6024] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 336.373216][ T6024] ? _raw_spin_lock_irq+0xae/0xf0
[ 336.373277][ T6024] ? __pfx_ptrace_notify+0x10/0x10
[ 336.373310][ T6024] security_file_ioctl+0xcb/0x2d0
[ 336.373325][ T6024] __se_sys_ioctl+0x47/0x170
[ 336.373341][ T6024] do_syscall_64+0xfa/0x3b0
[ 336.373358][ T6024] ? lockdep_hardirqs_on+0x9c/0x150
[ 336.373374][ T6024] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 336.373387][ T6024] ? clear_bhb_loop+0x60/0xb0
[ 336.373402][ T6024] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 336.373414][ T6024] RIP: 0033:0x7fea15a51869
[ 336.373428][ T6024] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 336.373439][ T6024] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 336.373455][ T6024] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6024] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6024] exit_group(0) = ?
[pid 6024] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6024, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 336.373464][ T6024] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 336.373473][ T6024] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 336.373481][ T6024] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 336.373488][ T6024] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 336.373507][ T6024]
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6025 attached
, child_tidptr=0x555576720650) = 6025
[pid 6025] set_robust_list(0x555576720660, 24) = 0
[pid 6025] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6025] setpgid(0, 0) = 0
[pid 6025] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6025] write(3, "1000", 4) = 4
[pid 6025] close(3) = 0
executing program
[pid 6025] write(1, "executing program\n", 18) = 18
[pid 6025] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6025] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6025] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6025] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6025] write(6, "4", 1) = 1
[pid 6025] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6025] exit_group(0) = ?
[ 336.765562][ T6025] FAULT_INJECTION: forcing a failure.
[ 336.765562][ T6025] name failslab, interval 1, probability 0, space 0, times 0
[ 336.778291][ T6025] CPU: 1 UID: 0 PID: 6025 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 336.778321][ T6025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 336.778333][ T6025] Call Trace:
[ 336.778345][ T6025]
[ 336.778355][ T6025] dump_stack_lvl+0x189/0x250
[ 336.778377][ T6025] ? __pfx____ratelimit+0x10/0x10
[ 336.778477][ T6025] ? __pfx_dump_stack_lvl+0x10/0x10
[ 336.778511][ T6025] ? __pfx__printk+0x10/0x10
[ 336.778533][ T6025] ? __pfx___might_resched+0x10/0x10
[ 336.778558][ T6025] ? fs_reclaim_acquire+0x7d/0x100
[ 336.778581][ T6025] should_fail_ex+0x414/0x560
[ 336.778603][ T6025] should_failslab+0xa8/0x100
[ 336.778622][ T6025] __kmalloc_noprof+0xcb/0x4f0
[ 336.778638][ T6025] ? tomoyo_init_log+0x1a6e/0x1f70
[ 336.778659][ T6025] tomoyo_init_log+0x1a6e/0x1f70
[ 336.778690][ T6025] ? __pfx_tomoyo_init_log+0x10/0x10
[ 336.778708][ T6025] ? tomoyo_profile+0x11/0x50
[ 336.778724][ T6025] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 336.778743][ T6025] tomoyo_supervisor+0x340/0x1480
[ 336.778762][ T6025] ? format_decode+0x5a3/0xe30
[ 336.778782][ T6025] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 336.778806][ T6025] ? snprintf+0xda/0x120
[ 336.778824][ T6025] ? __pfx_snprintf+0x10/0x10
[ 336.778839][ T6025] ? tomoyo_check_acl+0x386/0x400
[ 336.778858][ T6025] tomoyo_path_number_perm+0x438/0x5a0
[ 336.778873][ T6025] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 336.778888][ T6025] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 336.778908][ T6025] ? _raw_spin_lock_irq+0xae/0xf0
[ 336.778943][ T6025] ? __pfx_ptrace_notify+0x10/0x10
[ 336.778969][ T6025] security_file_ioctl+0xcb/0x2d0
[ 336.778985][ T6025] __se_sys_ioctl+0x47/0x170
[ 336.779064][ T6025] do_syscall_64+0xfa/0x3b0
[ 336.779103][ T6025] ? lockdep_hardirqs_on+0x9c/0x150
[ 336.779121][ T6025] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 336.779134][ T6025] ? clear_bhb_loop+0x60/0xb0
[ 336.779149][ T6025] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 336.779163][ T6025] RIP: 0033:0x7fea15a51869
[ 336.779179][ T6025] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 336.779190][ T6025] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6025] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6025, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6026 attached
, child_tidptr=0x555576720650) = 6026
[pid 6026] set_robust_list(0x555576720660, 24) = 0
[pid 6026] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6026] setpgid(0, 0) = 0
[pid 6026] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6026] write(3, "1000", 4) = 4
[ 336.779205][ T6025] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 336.779215][ T6025] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 336.779223][ T6025] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 336.779231][ T6025] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 336.779238][ T6025] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 336.779260][ T6025]
[pid 6026] close(3) = 0
[pid 6026] write(1, "executing program\n", 18executing program
) = 18
[pid 6026] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6026] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6026] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6026] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6026] write(6, "4", 1) = 1
[ 337.124326][ T6026] FAULT_INJECTION: forcing a failure.
[ 337.124326][ T6026] name failslab, interval 1, probability 0, space 0, times 0
[ 337.137381][ T6026] CPU: 0 UID: 0 PID: 6026 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 337.137413][ T6026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 337.137426][ T6026] Call Trace:
[ 337.137435][ T6026]
[ 337.137443][ T6026] dump_stack_lvl+0x189/0x250
[ 337.137472][ T6026] ? __pfx____ratelimit+0x10/0x10
[ 337.137499][ T6026] ? __pfx_dump_stack_lvl+0x10/0x10
[ 337.137521][ T6026] ? __pfx__printk+0x10/0x10
[ 337.137554][ T6026] ? __pfx___might_resched+0x10/0x10
[ 337.137581][ T6026] ? fs_reclaim_acquire+0x7d/0x100
[ 337.137605][ T6026] should_fail_ex+0x414/0x560
[ 337.137622][ T6026] should_failslab+0xa8/0x100
[ 337.137640][ T6026] __kmalloc_noprof+0xcb/0x4f0
[ 337.137656][ T6026] ? tomoyo_init_log+0x1a6e/0x1f70
[ 337.137676][ T6026] tomoyo_init_log+0x1a6e/0x1f70
[ 337.137707][ T6026] ? __pfx_tomoyo_init_log+0x10/0x10
[ 337.137724][ T6026] ? tomoyo_profile+0x11/0x50
[ 337.137740][ T6026] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 337.137758][ T6026] tomoyo_supervisor+0x340/0x1480
[ 337.137777][ T6026] ? format_decode+0x5a3/0xe30
[ 337.137796][ T6026] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 337.137820][ T6026] ? snprintf+0xda/0x120
[ 337.137837][ T6026] ? __pfx_snprintf+0x10/0x10
[ 337.137871][ T6026] ? tomoyo_check_acl+0x386/0x400
[ 337.137890][ T6026] tomoyo_path_number_perm+0x438/0x5a0
[ 337.137904][ T6026] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 337.137919][ T6026] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 337.137939][ T6026] ? _raw_spin_lock_irq+0xae/0xf0
[ 337.137974][ T6026] ? __pfx_ptrace_notify+0x10/0x10
[ 337.137999][ T6026] security_file_ioctl+0xcb/0x2d0
[ 337.138015][ T6026] __se_sys_ioctl+0x47/0x170
[ 337.138031][ T6026] do_syscall_64+0xfa/0x3b0
[ 337.138048][ T6026] ? lockdep_hardirqs_on+0x9c/0x150
[ 337.138064][ T6026] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 337.138077][ T6026] ? clear_bhb_loop+0x60/0xb0
[ 337.138092][ T6026] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 337.138104][ T6026] RIP: 0033:0x7fea15a51869
[ 337.138198][ T6026] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 337.138242][ T6026] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6026] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6026] exit_group(0) = ?
[pid 6026] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6026, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 337.138260][ T6026] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 337.138271][ T6026] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 337.138280][ T6026] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 337.138288][ T6026] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 337.138296][ T6026] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 337.138321][ T6026]
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6027 attached
, child_tidptr=0x555576720650) = 6027
[pid 6027] set_robust_list(0x555576720660, 24) = 0
[pid 6027] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6027] setpgid(0, 0) = 0
[pid 6027] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6027] write(3, "1000", 4) = 4
[pid 6027] close(3) = 0
executing program
[pid 6027] write(1, "executing program\n", 18) = 18
[pid 6027] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6027] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6027] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6027] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6027] write(6, "4", 1) = 1
[pid 6027] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6027] exit_group(0) = ?
[pid 6027] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6027, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
[ 337.583371][ T6027] FAULT_INJECTION: forcing a failure.
[ 337.583371][ T6027] name failslab, interval 1, probability 0, space 0, times 0
[ 337.596130][ T6027] CPU: 1 UID: 0 PID: 6027 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 337.596153][ T6027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 337.596161][ T6027] Call Trace:
[ 337.596167][ T6027]
[ 337.596173][ T6027] dump_stack_lvl+0x189/0x250
[ 337.596195][ T6027] ? __pfx____ratelimit+0x10/0x10
[ 337.596214][ T6027] ? __pfx_dump_stack_lvl+0x10/0x10
[ 337.596227][ T6027] ? __pfx__printk+0x10/0x10
[ 337.596248][ T6027] ? __pfx___might_resched+0x10/0x10
[ 337.596266][ T6027] ? fs_reclaim_acquire+0x7d/0x100
[ 337.596288][ T6027] should_fail_ex+0x414/0x560
[ 337.596306][ T6027] should_failslab+0xa8/0x100
[ 337.596324][ T6027] __kmalloc_noprof+0xcb/0x4f0
[ 337.596339][ T6027] ? tomoyo_init_log+0x1a6e/0x1f70
[ 337.596474][ T6027] tomoyo_init_log+0x1a6e/0x1f70
[ 337.596508][ T6027] ? __pfx_tomoyo_init_log+0x10/0x10
[ 337.596527][ T6027] ? tomoyo_profile+0x11/0x50
[ 337.596543][ T6027] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 337.596570][ T6027] tomoyo_supervisor+0x340/0x1480
[ 337.596597][ T6027] ? format_decode+0x5a3/0xe30
[ 337.596617][ T6027] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 337.596642][ T6027] ? snprintf+0xda/0x120
[ 337.596661][ T6027] ? __pfx_snprintf+0x10/0x10
[ 337.596681][ T6027] ? tomoyo_check_acl+0x386/0x400
[ 337.596701][ T6027] tomoyo_path_number_perm+0x438/0x5a0
[ 337.596719][ T6027] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 337.596734][ T6027] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 337.596754][ T6027] ? _raw_spin_lock_irq+0xae/0xf0
[ 337.596789][ T6027] ? __pfx_ptrace_notify+0x10/0x10
[ 337.596814][ T6027] security_file_ioctl+0xcb/0x2d0
[ 337.596829][ T6027] __se_sys_ioctl+0x47/0x170
[ 337.596846][ T6027] do_syscall_64+0xfa/0x3b0
[ 337.596864][ T6027] ? lockdep_hardirqs_on+0x9c/0x150
[ 337.596889][ T6027] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 337.596901][ T6027] ? clear_bhb_loop+0x60/0xb0
[ 337.596916][ T6027] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 337.596929][ T6027] RIP: 0033:0x7fea15a51869
[ 337.596944][ T6027] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 337.596956][ T6027] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6028 attached
, child_tidptr=0x555576720650) = 6028
[pid 6028] set_robust_list(0x555576720660, 24) = 0
[pid 6028] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6028] setpgid(0, 0) = 0
[pid 6028] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
executing program
[pid 6028] write(3, "1000", 4) = 4
[pid 6028] close(3) = 0
[pid 6028] write(1, "executing program\n", 18) = 18
[pid 6028] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6028] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6028] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6028] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6028] write(6, "4", 1) = 1
[ 337.596971][ T6027] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 337.596981][ T6027] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 337.596989][ T6027] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 337.596997][ T6027] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 337.597005][ T6027] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 337.597023][ T6027]
[pid 6028] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 337.908252][ T6028] FAULT_INJECTION: forcing a failure.
[ 337.908252][ T6028] name failslab, interval 1, probability 0, space 0, times 0
[ 337.921890][ T6028] CPU: 1 UID: 0 PID: 6028 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 337.921914][ T6028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 337.921923][ T6028] Call Trace:
[ 337.921929][ T6028]
[ 337.921935][ T6028] dump_stack_lvl+0x189/0x250
[ 337.921957][ T6028] ? __pfx____ratelimit+0x10/0x10
[ 337.921978][ T6028] ? __pfx_dump_stack_lvl+0x10/0x10
[ 337.921991][ T6028] ? __pfx__printk+0x10/0x10
[ 337.922012][ T6028] ? __pfx___might_resched+0x10/0x10
[ 337.922030][ T6028] ? fs_reclaim_acquire+0x7d/0x100
[ 337.922052][ T6028] should_fail_ex+0x414/0x560
[ 337.922098][ T6028] should_failslab+0xa8/0x100
[ 337.922116][ T6028] __kmalloc_noprof+0xcb/0x4f0
[ 337.922144][ T6028] ? tomoyo_init_log+0x1a6e/0x1f70
[ 337.922165][ T6028] tomoyo_init_log+0x1a6e/0x1f70
[ 337.922196][ T6028] ? __pfx_tomoyo_init_log+0x10/0x10
[ 337.922213][ T6028] ? tomoyo_profile+0x11/0x50
[ 337.922229][ T6028] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 337.922248][ T6028] tomoyo_supervisor+0x340/0x1480
[ 337.922267][ T6028] ? format_decode+0x5a3/0xe30
[ 337.922287][ T6028] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 337.922311][ T6028] ? snprintf+0xda/0x120
[ 337.922418][ T6028] ? __pfx_snprintf+0x10/0x10
[ 337.922435][ T6028] ? tomoyo_check_acl+0x386/0x400
[ 337.922458][ T6028] tomoyo_path_number_perm+0x438/0x5a0
[ 337.922476][ T6028] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 337.922492][ T6028] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 337.922513][ T6028] ? _raw_spin_lock_irq+0xae/0xf0
[ 337.922550][ T6028] ? __pfx_ptrace_notify+0x10/0x10
[ 337.922576][ T6028] security_file_ioctl+0xcb/0x2d0
[ 337.922592][ T6028] __se_sys_ioctl+0x47/0x170
[ 337.922609][ T6028] do_syscall_64+0xfa/0x3b0
[ 337.922627][ T6028] ? lockdep_hardirqs_on+0x9c/0x150
[ 337.922644][ T6028] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 337.922656][ T6028] ? clear_bhb_loop+0x60/0xb0
[ 337.922671][ T6028] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 337.922683][ T6028] RIP: 0033:0x7fea15a51869
[ 337.922698][ T6028] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 337.922710][ T6028] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 337.922725][ T6028] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6028] exit_group(0) = ?
[pid 6028] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6028, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 337.922735][ T6028] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 337.922743][ T6028] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 337.922751][ T6028] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 337.922759][ T6028] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 337.922778][ T6028]
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6029 attached
, child_tidptr=0x555576720650) = 6029
[pid 6029] set_robust_list(0x555576720660, 24) = 0
[pid 6029] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6029] setpgid(0, 0) = 0
[pid 6029] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6029] write(3, "1000", 4) = 4
[pid 6029] close(3) = 0
[pid 6029] write(1, "executing program\n", 18executing program
) = 18
[pid 6029] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6029] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6029] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6029] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6029] write(6, "4", 1) = 1
[pid 6029] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6029] exit_group(0) = ?
[pid 6029] +++ exited with 0 +++
[ 338.322845][ T6029] FAULT_INJECTION: forcing a failure.
[ 338.322845][ T6029] name failslab, interval 1, probability 0, space 0, times 0
[ 338.335859][ T6029] CPU: 0 UID: 0 PID: 6029 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 338.335880][ T6029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 338.335890][ T6029] Call Trace:
[ 338.335897][ T6029]
[ 338.335903][ T6029] dump_stack_lvl+0x189/0x250
[ 338.335922][ T6029] ? __pfx____ratelimit+0x10/0x10
[ 338.335942][ T6029] ? __pfx_dump_stack_lvl+0x10/0x10
[ 338.335955][ T6029] ? __pfx__printk+0x10/0x10
[ 338.335975][ T6029] ? __pfx___might_resched+0x10/0x10
[ 338.335993][ T6029] ? fs_reclaim_acquire+0x7d/0x100
[ 338.336014][ T6029] should_fail_ex+0x414/0x560
[ 338.336032][ T6029] should_failslab+0xa8/0x100
[ 338.336049][ T6029] __kmalloc_noprof+0xcb/0x4f0
[ 338.336064][ T6029] ? tomoyo_init_log+0x1a6e/0x1f70
[ 338.336086][ T6029] tomoyo_init_log+0x1a6e/0x1f70
[ 338.336116][ T6029] ? __pfx_tomoyo_init_log+0x10/0x10
[ 338.336133][ T6029] ? tomoyo_profile+0x11/0x50
[ 338.336161][ T6029] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 338.336180][ T6029] tomoyo_supervisor+0x340/0x1480
[ 338.336199][ T6029] ? format_decode+0x5a3/0xe30
[ 338.336217][ T6029] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 338.336241][ T6029] ? snprintf+0xda/0x120
[ 338.336259][ T6029] ? __pfx_snprintf+0x10/0x10
[ 338.336274][ T6029] ? tomoyo_check_acl+0x386/0x400
[ 338.336292][ T6029] tomoyo_path_number_perm+0x438/0x5a0
[ 338.336306][ T6029] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 338.336321][ T6029] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 338.336341][ T6029] ? _raw_spin_lock_irq+0xae/0xf0
[ 338.336375][ T6029] ? __pfx_ptrace_notify+0x10/0x10
[ 338.336400][ T6029] security_file_ioctl+0xcb/0x2d0
[ 338.336415][ T6029] __se_sys_ioctl+0x47/0x170
[ 338.336431][ T6029] do_syscall_64+0xfa/0x3b0
[ 338.336448][ T6029] ? lockdep_hardirqs_on+0x9c/0x150
[ 338.336464][ T6029] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 338.336477][ T6029] ? clear_bhb_loop+0x60/0xb0
[ 338.336492][ T6029] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 338.336504][ T6029] RIP: 0033:0x7fea15a51869
[ 338.336517][ T6029] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 338.336529][ T6029] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6029, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6030 attached
, child_tidptr=0x555576720650) = 6030
[ 338.336544][ T6029] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 338.336554][ T6029] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 338.336562][ T6029] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 338.336570][ T6029] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 338.336578][ T6029] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 338.336596][ T6029]
[pid 6030] set_robust_list(0x555576720660, 24) = 0
[pid 6030] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6030] setpgid(0, 0) = 0
[pid 6030] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6030] write(3, "1000", 4) = 4
executing program
[pid 6030] close(3) = 0
[pid 6030] write(1, "executing program\n", 18) = 18
[pid 6030] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6030] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6030] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6030] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6030] write(6, "4", 1) = 1
[pid 6030] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6030] exit_group(0) = ?
[pid 6030] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6030, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
[ 338.750582][ T6030] FAULT_INJECTION: forcing a failure.
[ 338.750582][ T6030] name failslab, interval 1, probability 0, space 0, times 0
[ 338.763650][ T6030] CPU: 1 UID: 0 PID: 6030 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 338.763680][ T6030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 338.763692][ T6030] Call Trace:
[ 338.763701][ T6030]
[ 338.763709][ T6030] dump_stack_lvl+0x189/0x250
[ 338.763739][ T6030] ? __pfx____ratelimit+0x10/0x10
[ 338.763770][ T6030] ? __pfx_dump_stack_lvl+0x10/0x10
[ 338.763792][ T6030] ? __pfx__printk+0x10/0x10
[ 338.763826][ T6030] ? __pfx___might_resched+0x10/0x10
[ 338.763855][ T6030] ? fs_reclaim_acquire+0x7d/0x100
[ 338.763890][ T6030] should_fail_ex+0x414/0x560
[ 338.763920][ T6030] should_failslab+0xa8/0x100
[ 338.763957][ T6030] __kmalloc_noprof+0xcb/0x4f0
[ 338.763973][ T6030] ? tomoyo_init_log+0x1a6e/0x1f70
[ 338.763994][ T6030] tomoyo_init_log+0x1a6e/0x1f70
[ 338.764024][ T6030] ? __pfx_tomoyo_init_log+0x10/0x10
[ 338.764041][ T6030] ? tomoyo_profile+0x11/0x50
[ 338.764057][ T6030] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 338.764075][ T6030] tomoyo_supervisor+0x340/0x1480
[ 338.764094][ T6030] ? format_decode+0x5a3/0xe30
[ 338.764113][ T6030] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 338.764137][ T6030] ? snprintf+0xda/0x120
[ 338.764154][ T6030] ? __pfx_snprintf+0x10/0x10
[ 338.764170][ T6030] ? tomoyo_check_acl+0x386/0x400
[ 338.764190][ T6030] tomoyo_path_number_perm+0x438/0x5a0
[ 338.764204][ T6030] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 338.764219][ T6030] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 338.764239][ T6030] ? _raw_spin_lock_irq+0xae/0xf0
[ 338.764277][ T6030] ? __pfx_ptrace_notify+0x10/0x10
[ 338.764302][ T6030] security_file_ioctl+0xcb/0x2d0
[ 338.764317][ T6030] __se_sys_ioctl+0x47/0x170
[ 338.764333][ T6030] do_syscall_64+0xfa/0x3b0
[ 338.764350][ T6030] ? lockdep_hardirqs_on+0x9c/0x150
[ 338.764366][ T6030] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 338.764378][ T6030] ? clear_bhb_loop+0x60/0xb0
[ 338.764393][ T6030] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 338.764405][ T6030] RIP: 0033:0x7fea15a51869
[ 338.764419][ T6030] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 338.764430][ T6030] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6031 attached
, child_tidptr=0x555576720650) = 6031
[pid 6031] set_robust_list(0x555576720660, 24) = 0
[pid 6031] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6031] setpgid(0, 0) = 0
[pid 6031] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6031] write(3, "1000", 4) = 4
[pid 6031] close(3) = 0
executing program
[pid 6031] write(1, "executing program\n", 18) = 18
[pid 6031] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6031] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6031] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6031] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6031] write(6, "4", 1) = 1
[ 338.764445][ T6030] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 338.764455][ T6030] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 338.764464][ T6030] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 338.764472][ T6030] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 338.764479][ T6030] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 338.764497][ T6030]
[pid 6031] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6031] exit_group(0) = ?
[pid 6031] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6031, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
[ 339.081887][ T6031] FAULT_INJECTION: forcing a failure.
[ 339.081887][ T6031] name failslab, interval 1, probability 0, space 0, times 0
[ 339.094888][ T6031] CPU: 1 UID: 0 PID: 6031 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 339.094919][ T6031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 339.094931][ T6031] Call Trace:
[ 339.094939][ T6031]
[ 339.094958][ T6031] dump_stack_lvl+0x189/0x250
[ 339.094987][ T6031] ? __pfx____ratelimit+0x10/0x10
[ 339.095015][ T6031] ? __pfx_dump_stack_lvl+0x10/0x10
[ 339.095037][ T6031] ? __pfx__printk+0x10/0x10
[ 339.095071][ T6031] ? __pfx___might_resched+0x10/0x10
[ 339.095099][ T6031] ? fs_reclaim_acquire+0x7d/0x100
[ 339.095133][ T6031] should_fail_ex+0x414/0x560
[ 339.095161][ T6031] should_failslab+0xa8/0x100
[ 339.095184][ T6031] __kmalloc_noprof+0xcb/0x4f0
[ 339.095202][ T6031] ? tomoyo_init_log+0x1a6e/0x1f70
[ 339.095223][ T6031] tomoyo_init_log+0x1a6e/0x1f70
[ 339.095254][ T6031] ? __pfx_tomoyo_init_log+0x10/0x10
[ 339.095271][ T6031] ? tomoyo_profile+0x11/0x50
[ 339.095288][ T6031] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 339.095305][ T6031] tomoyo_supervisor+0x340/0x1480
[ 339.095325][ T6031] ? format_decode+0x5a3/0xe30
[ 339.095343][ T6031] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 339.095368][ T6031] ? snprintf+0xda/0x120
[ 339.095385][ T6031] ? __pfx_snprintf+0x10/0x10
[ 339.095400][ T6031] ? tomoyo_check_acl+0x386/0x400
[ 339.095419][ T6031] tomoyo_path_number_perm+0x438/0x5a0
[ 339.095433][ T6031] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 339.095448][ T6031] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 339.095468][ T6031] ? _raw_spin_lock_irq+0xae/0xf0
[ 339.095504][ T6031] ? __pfx_ptrace_notify+0x10/0x10
[ 339.095529][ T6031] security_file_ioctl+0xcb/0x2d0
[ 339.095545][ T6031] __se_sys_ioctl+0x47/0x170
[ 339.095562][ T6031] do_syscall_64+0xfa/0x3b0
[ 339.095578][ T6031] ? lockdep_hardirqs_on+0x9c/0x150
[ 339.095595][ T6031] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 339.095607][ T6031] ? clear_bhb_loop+0x60/0xb0
[ 339.095622][ T6031] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 339.095635][ T6031] RIP: 0033:0x7fea15a51869
[ 339.095648][ T6031] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 339.095660][ T6031] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6032 attached
, child_tidptr=0x555576720650) = 6032
[pid 6032] set_robust_list(0x555576720660, 24) = 0
[pid 6032] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6032] setpgid(0, 0) = 0
[pid 6032] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6032] write(3, "1000", 4) = 4
[pid 6032] close(3) = 0
executing program
[pid 6032] write(1, "executing program\n", 18) = 18
[pid 6032] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[ 339.095675][ T6031] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 339.095685][ T6031] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 339.095693][ T6031] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 339.095701][ T6031] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 339.095709][ T6031] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 339.095728][ T6031]
[pid 6032] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6032] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6032] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6032] write(6, "4", 1) = 1
[pid 6032] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6032] exit_group(0) = ?
[pid 6032] +++ exited with 0 +++
[ 339.431365][ T6032] FAULT_INJECTION: forcing a failure.
[ 339.431365][ T6032] name failslab, interval 1, probability 0, space 0, times 0
[ 339.444674][ T6032] CPU: 0 UID: 0 PID: 6032 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 339.444695][ T6032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 339.444703][ T6032] Call Trace:
[ 339.444708][ T6032]
[ 339.444714][ T6032] dump_stack_lvl+0x189/0x250
[ 339.444732][ T6032] ? __pfx____ratelimit+0x10/0x10
[ 339.444751][ T6032] ? __pfx_dump_stack_lvl+0x10/0x10
[ 339.444764][ T6032] ? __pfx__printk+0x10/0x10
[ 339.444784][ T6032] ? __pfx___might_resched+0x10/0x10
[ 339.444801][ T6032] ? fs_reclaim_acquire+0x7d/0x100
[ 339.444822][ T6032] should_fail_ex+0x414/0x560
[ 339.444839][ T6032] should_failslab+0xa8/0x100
[ 339.444856][ T6032] __kmalloc_noprof+0xcb/0x4f0
[ 339.444871][ T6032] ? tomoyo_init_log+0x1a6e/0x1f70
[ 339.444891][ T6032] tomoyo_init_log+0x1a6e/0x1f70
[ 339.444927][ T6032] ? __pfx_tomoyo_init_log+0x10/0x10
[ 339.444945][ T6032] ? tomoyo_profile+0x11/0x50
[ 339.444961][ T6032] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 339.444979][ T6032] tomoyo_supervisor+0x340/0x1480
[ 339.444998][ T6032] ? format_decode+0x5a3/0xe30
[ 339.445016][ T6032] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 339.445040][ T6032] ? snprintf+0xda/0x120
[ 339.445057][ T6032] ? __pfx_snprintf+0x10/0x10
[ 339.445073][ T6032] ? tomoyo_check_acl+0x386/0x400
[ 339.445091][ T6032] tomoyo_path_number_perm+0x438/0x5a0
[ 339.445105][ T6032] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 339.445121][ T6032] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 339.445140][ T6032] ? _raw_spin_lock_irq+0xae/0xf0
[ 339.445176][ T6032] ? __pfx_ptrace_notify+0x10/0x10
[ 339.445201][ T6032] security_file_ioctl+0xcb/0x2d0
[ 339.445216][ T6032] __se_sys_ioctl+0x47/0x170
[ 339.445232][ T6032] do_syscall_64+0xfa/0x3b0
[ 339.445248][ T6032] ? lockdep_hardirqs_on+0x9c/0x150
[ 339.445264][ T6032] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 339.445276][ T6032] ? clear_bhb_loop+0x60/0xb0
[ 339.445291][ T6032] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 339.445304][ T6032] RIP: 0033:0x7fea15a51869
[ 339.445317][ T6032] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 339.445328][ T6032] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6032, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6033 attached
, child_tidptr=0x555576720650) = 6033
[pid 6033] set_robust_list(0x555576720660, 24) = 0
[pid 6033] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6033] setpgid(0, 0) = 0
[ 339.445343][ T6032] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 339.445353][ T6032] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 339.445361][ T6032] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 339.445369][ T6032] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 339.445377][ T6032] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 339.445395][ T6032]
[pid 6033] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6033] write(3, "1000", 4) = 4
[pid 6033] close(3) = 0
executing program
[pid 6033] write(1, "executing program\n", 18) = 18
[pid 6033] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6033] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6033] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6033] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6033] write(6, "4", 1) = 1
[pid 6033] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6033] exit_group(0) = ?
[pid 6033] +++ exited with 0 +++
[ 339.830663][ T6033] FAULT_INJECTION: forcing a failure.
[ 339.830663][ T6033] name failslab, interval 1, probability 0, space 0, times 0
[ 339.844248][ T6033] CPU: 1 UID: 0 PID: 6033 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 339.844279][ T6033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 339.844292][ T6033] Call Trace:
[ 339.844300][ T6033]
[ 339.844309][ T6033] dump_stack_lvl+0x189/0x250
[ 339.844340][ T6033] ? __pfx____ratelimit+0x10/0x10
[ 339.844370][ T6033] ? __pfx_dump_stack_lvl+0x10/0x10
[ 339.844393][ T6033] ? __pfx__printk+0x10/0x10
[ 339.844427][ T6033] ? __pfx___might_resched+0x10/0x10
[ 339.844457][ T6033] ? fs_reclaim_acquire+0x7d/0x100
[ 339.844492][ T6033] should_fail_ex+0x414/0x560
[ 339.844520][ T6033] should_failslab+0xa8/0x100
[ 339.844546][ T6033] __kmalloc_noprof+0xcb/0x4f0
[ 339.844569][ T6033] ? tomoyo_init_log+0x1a6e/0x1f70
[ 339.844600][ T6033] tomoyo_init_log+0x1a6e/0x1f70
[ 339.844638][ T6033] ? __pfx_tomoyo_init_log+0x10/0x10
[ 339.844656][ T6033] ? tomoyo_profile+0x11/0x50
[ 339.844672][ T6033] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 339.844690][ T6033] tomoyo_supervisor+0x340/0x1480
[ 339.844709][ T6033] ? format_decode+0x5a3/0xe30
[ 339.844728][ T6033] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 339.844752][ T6033] ? snprintf+0xda/0x120
[ 339.844770][ T6033] ? __pfx_snprintf+0x10/0x10
[ 339.844785][ T6033] ? tomoyo_check_acl+0x386/0x400
[ 339.844804][ T6033] tomoyo_path_number_perm+0x438/0x5a0
[ 339.844818][ T6033] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 339.844833][ T6033] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 339.844853][ T6033] ? _raw_spin_lock_irq+0xae/0xf0
[ 339.844889][ T6033] ? __pfx_ptrace_notify+0x10/0x10
[ 339.844914][ T6033] security_file_ioctl+0xcb/0x2d0
[ 339.844929][ T6033] __se_sys_ioctl+0x47/0x170
[ 339.844949][ T6033] do_syscall_64+0xfa/0x3b0
[ 339.844966][ T6033] ? lockdep_hardirqs_on+0x9c/0x150
[ 339.844982][ T6033] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 339.844995][ T6033] ? clear_bhb_loop+0x60/0xb0
[ 339.845011][ T6033] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 339.845023][ T6033] RIP: 0033:0x7fea15a51869
[ 339.845037][ T6033] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 339.845048][ T6033] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6033, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6034 attached
, child_tidptr=0x555576720650) = 6034
[pid 6034] set_robust_list(0x555576720660, 24) = 0
[pid 6034] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6034] setpgid(0, 0) = 0
[pid 6034] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6034] write(3, "1000", 4) = 4
[pid 6034] close(3) = 0
executing program
[pid 6034] write(1, "executing program\n", 18) = 18
[pid 6034] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6034] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6034] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6034] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6034] write(6, "4", 1) = 1
[ 339.845063][ T6033] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 339.845073][ T6033] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 339.845081][ T6033] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 339.845089][ T6033] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 339.845097][ T6033] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 339.845116][ T6033]
[ 340.140772][ T6034] FAULT_INJECTION: forcing a failure.
[ 340.140772][ T6034] name failslab, interval 1, probability 0, space 0, times 0
[ 340.153771][ T6034] CPU: 1 UID: 0 PID: 6034 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 340.153804][ T6034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 340.153816][ T6034] Call Trace:
[ 340.153829][ T6034]
[ 340.153839][ T6034] dump_stack_lvl+0x189/0x250
[ 340.153861][ T6034] ? __pfx____ratelimit+0x10/0x10
[ 340.153900][ T6034] ? __pfx_dump_stack_lvl+0x10/0x10
[ 340.153914][ T6034] ? __pfx__printk+0x10/0x10
[ 340.153934][ T6034] ? __pfx___might_resched+0x10/0x10
[ 340.153951][ T6034] ? fs_reclaim_acquire+0x7d/0x100
[ 340.153972][ T6034] should_fail_ex+0x414/0x560
[ 340.153990][ T6034] should_failslab+0xa8/0x100
[ 340.154007][ T6034] __kmalloc_noprof+0xcb/0x4f0
[ 340.154022][ T6034] ? tomoyo_init_log+0x1a6e/0x1f70
[ 340.154042][ T6034] tomoyo_init_log+0x1a6e/0x1f70
[ 340.154073][ T6034] ? __pfx_tomoyo_init_log+0x10/0x10
[ 340.154090][ T6034] ? tomoyo_profile+0x11/0x50
[ 340.154106][ T6034] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 340.154128][ T6034] tomoyo_supervisor+0x340/0x1480
[ 340.154148][ T6034] ? format_decode+0x5a3/0xe30
[ 340.154166][ T6034] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 340.154190][ T6034] ? snprintf+0xda/0x120
[ 340.154207][ T6034] ? __pfx_snprintf+0x10/0x10
[ 340.154223][ T6034] ? tomoyo_check_acl+0x386/0x400
[ 340.154241][ T6034] tomoyo_path_number_perm+0x438/0x5a0
[ 340.154255][ T6034] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 340.154270][ T6034] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 340.154290][ T6034] ? _raw_spin_lock_irq+0xae/0xf0
[ 340.154325][ T6034] ? __pfx_ptrace_notify+0x10/0x10
[ 340.154350][ T6034] security_file_ioctl+0xcb/0x2d0
[ 340.154365][ T6034] __se_sys_ioctl+0x47/0x170
[ 340.154381][ T6034] do_syscall_64+0xfa/0x3b0
[ 340.154398][ T6034] ? lockdep_hardirqs_on+0x9c/0x150
[ 340.154415][ T6034] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 340.154427][ T6034] ? clear_bhb_loop+0x60/0xb0
[ 340.154442][ T6034] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 340.154455][ T6034] RIP: 0033:0x7fea15a51869
[ 340.154468][ T6034] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 340.154479][ T6034] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6034] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6034] exit_group(0) = ?
[pid 6034] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6034, si_uid=0, si_status=0, si_utime=0, si_stime=26 /* 0.26 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 340.154496][ T6034] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 340.154505][ T6034] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 340.154513][ T6034] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 340.154521][ T6034] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 340.154529][ T6034] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 340.154547][ T6034]
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6035 attached
, child_tidptr=0x555576720650) = 6035
[pid 6035] set_robust_list(0x555576720660, 24) = 0
[pid 6035] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6035] setpgid(0, 0) = 0
[pid 6035] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6035] write(3, "1000", 4) = 4
[pid 6035] close(3) = 0
[pid 6035] write(1, "executing program\n", 18executing program
) = 18
[pid 6035] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6035] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6035] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6035] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6035] write(6, "4", 1) = 1
[pid 6035] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 340.550543][ T6035] FAULT_INJECTION: forcing a failure.
[ 340.550543][ T6035] name failslab, interval 1, probability 0, space 0, times 0
[ 340.563757][ T6035] CPU: 1 UID: 0 PID: 6035 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 340.563785][ T6035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 340.563795][ T6035] Call Trace:
[ 340.563802][ T6035]
[ 340.563809][ T6035] dump_stack_lvl+0x189/0x250
[ 340.563833][ T6035] ? __pfx____ratelimit+0x10/0x10
[ 340.563857][ T6035] ? __pfx_dump_stack_lvl+0x10/0x10
[ 340.563874][ T6035] ? __pfx__printk+0x10/0x10
[ 340.563901][ T6035] ? __pfx___might_resched+0x10/0x10
[ 340.563923][ T6035] ? fs_reclaim_acquire+0x7d/0x100
[ 340.563951][ T6035] should_fail_ex+0x414/0x560
[ 340.563975][ T6035] should_failslab+0xa8/0x100
[ 340.563997][ T6035] __kmalloc_noprof+0xcb/0x4f0
[ 340.564016][ T6035] ? tomoyo_init_log+0x1a6e/0x1f70
[ 340.564042][ T6035] tomoyo_init_log+0x1a6e/0x1f70
[ 340.564111][ T6035] ? __pfx_tomoyo_init_log+0x10/0x10
[ 340.564145][ T6035] ? tomoyo_profile+0x11/0x50
[ 340.564178][ T6035] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 340.564202][ T6035] tomoyo_supervisor+0x340/0x1480
[ 340.564232][ T6035] ? format_decode+0x5a3/0xe30
[ 340.564257][ T6035] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 340.564289][ T6035] ? snprintf+0xda/0x120
[ 340.564312][ T6035] ? __pfx_snprintf+0x10/0x10
[ 340.564332][ T6035] ? tomoyo_check_acl+0x386/0x400
[ 340.564357][ T6035] tomoyo_path_number_perm+0x438/0x5a0
[ 340.564375][ T6035] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 340.564395][ T6035] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 340.564421][ T6035] ? _raw_spin_lock_irq+0xae/0xf0
[ 340.564476][ T6035] ? __pfx_ptrace_notify+0x10/0x10
[ 340.564509][ T6035] security_file_ioctl+0xcb/0x2d0
[ 340.564529][ T6035] __se_sys_ioctl+0x47/0x170
[ 340.564556][ T6035] do_syscall_64+0xfa/0x3b0
[ 340.564578][ T6035] ? lockdep_hardirqs_on+0x9c/0x150
[ 340.564599][ T6035] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 340.564616][ T6035] ? clear_bhb_loop+0x60/0xb0
[ 340.564636][ T6035] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 340.564652][ T6035] RIP: 0033:0x7fea15a51869
[ 340.564668][ T6035] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 340.564683][ T6035] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6035] exit_group(0) = ?
[pid 6035] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6035, si_uid=0, si_status=0, si_utime=0, si_stime=27 /* 0.27 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6036 attached
, child_tidptr=0x555576720650) = 6036
[pid 6036] set_robust_list(0x555576720660, 24) = 0
[pid 6036] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 340.564702][ T6035] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 340.564714][ T6035] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 340.564725][ T6035] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 340.564735][ T6035] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 340.564745][ T6035] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 340.564771][ T6035]
[pid 6036] setpgid(0, 0) = 0
[pid 6036] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6036] write(3, "1000", 4) = 4
[pid 6036] close(3) = 0
executing program
[pid 6036] write(1, "executing program\n", 18) = 18
[pid 6036] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6036] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6036] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6036] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6036] write(6, "4", 1) = 1
[pid 6036] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6036] exit_group(0) = ?
[ 340.956698][ T6036] FAULT_INJECTION: forcing a failure.
[ 340.956698][ T6036] name failslab, interval 1, probability 0, space 0, times 0
[ 340.969848][ T6036] CPU: 1 UID: 0 PID: 6036 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 340.969877][ T6036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 340.969888][ T6036] Call Trace:
[ 340.969896][ T6036]
[ 340.969906][ T6036] dump_stack_lvl+0x189/0x250
[ 340.969933][ T6036] ? __pfx____ratelimit+0x10/0x10
[ 340.969958][ T6036] ? __pfx_dump_stack_lvl+0x10/0x10
[ 340.969981][ T6036] ? __pfx__printk+0x10/0x10
[ 340.970014][ T6036] ? __pfx___might_resched+0x10/0x10
[ 340.970053][ T6036] ? fs_reclaim_acquire+0x7d/0x100
[ 340.970091][ T6036] should_fail_ex+0x414/0x560
[ 340.970119][ T6036] should_failslab+0xa8/0x100
[ 340.970138][ T6036] __kmalloc_noprof+0xcb/0x4f0
[ 340.970153][ T6036] ? tomoyo_init_log+0x1a6e/0x1f70
[ 340.970184][ T6036] tomoyo_init_log+0x1a6e/0x1f70
[ 340.970215][ T6036] ? __pfx_tomoyo_init_log+0x10/0x10
[ 340.970232][ T6036] ? tomoyo_profile+0x11/0x50
[ 340.970248][ T6036] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 340.970267][ T6036] tomoyo_supervisor+0x340/0x1480
[ 340.970288][ T6036] ? format_decode+0x5a3/0xe30
[ 340.970310][ T6036] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 340.970334][ T6036] ? snprintf+0xda/0x120
[ 340.970353][ T6036] ? __pfx_snprintf+0x10/0x10
[ 340.970369][ T6036] ? tomoyo_check_acl+0x386/0x400
[ 340.970388][ T6036] tomoyo_path_number_perm+0x438/0x5a0
[ 340.970402][ T6036] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 340.970417][ T6036] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 340.970437][ T6036] ? _raw_spin_lock_irq+0xae/0xf0
[ 340.970474][ T6036] ? __pfx_ptrace_notify+0x10/0x10
[ 340.970518][ T6036] security_file_ioctl+0xcb/0x2d0
[ 340.970534][ T6036] __se_sys_ioctl+0x47/0x170
[ 340.970550][ T6036] do_syscall_64+0xfa/0x3b0
[ 340.970567][ T6036] ? lockdep_hardirqs_on+0x9c/0x150
[ 340.970583][ T6036] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 340.970596][ T6036] ? clear_bhb_loop+0x60/0xb0
[ 340.970611][ T6036] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 340.970623][ T6036] RIP: 0033:0x7fea15a51869
[ 340.970637][ T6036] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 340.970648][ T6036] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 340.970663][ T6036] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6036] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6036, si_uid=0, si_status=0, si_utime=0, si_stime=28 /* 0.28 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6037 attached
, child_tidptr=0x555576720650) = 6037
[pid 6037] set_robust_list(0x555576720660, 24) = 0
[pid 6037] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6037] setpgid(0, 0) = 0
[pid 6037] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6037] write(3, "1000", 4) = 4
[pid 6037] close(3) = 0
executing program
[pid 6037] write(1, "executing program\n", 18) = 18
[pid 6037] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6037] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[ 340.970673][ T6036] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 340.970682][ T6036] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 340.970690][ T6036] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 340.970697][ T6036] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 340.970716][ T6036]
[pid 6037] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6037] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6037] write(6, "4", 1) = 1
[ 341.293983][ T6037] FAULT_INJECTION: forcing a failure.
[ 341.293983][ T6037] name failslab, interval 1, probability 0, space 0, times 0
[ 341.307117][ T6037] CPU: 0 UID: 0 PID: 6037 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 341.307145][ T6037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 341.307153][ T6037] Call Trace:
[ 341.307160][ T6037]
[ 341.307166][ T6037] dump_stack_lvl+0x189/0x250
[ 341.307185][ T6037] ? __pfx____ratelimit+0x10/0x10
[ 341.307203][ T6037] ? __pfx_dump_stack_lvl+0x10/0x10
[ 341.307217][ T6037] ? __pfx__printk+0x10/0x10
[ 341.307236][ T6037] ? __pfx___might_resched+0x10/0x10
[ 341.307254][ T6037] ? fs_reclaim_acquire+0x7d/0x100
[ 341.307274][ T6037] should_fail_ex+0x414/0x560
[ 341.307293][ T6037] should_failslab+0xa8/0x100
[ 341.307310][ T6037] __kmalloc_noprof+0xcb/0x4f0
[ 341.307324][ T6037] ? tomoyo_init_log+0x1a6e/0x1f70
[ 341.307345][ T6037] tomoyo_init_log+0x1a6e/0x1f70
[ 341.307375][ T6037] ? __pfx_tomoyo_init_log+0x10/0x10
[ 341.307392][ T6037] ? tomoyo_profile+0x11/0x50
[ 341.307408][ T6037] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 341.307426][ T6037] tomoyo_supervisor+0x340/0x1480
[ 341.307444][ T6037] ? format_decode+0x5a3/0xe30
[ 341.307463][ T6037] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 341.307487][ T6037] ? snprintf+0xda/0x120
[ 341.307504][ T6037] ? __pfx_snprintf+0x10/0x10
[ 341.307519][ T6037] ? tomoyo_check_acl+0x386/0x400
[ 341.307537][ T6037] tomoyo_path_number_perm+0x438/0x5a0
[ 341.307551][ T6037] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 341.307566][ T6037] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 341.307585][ T6037] ? _raw_spin_lock_irq+0xae/0xf0
[ 341.307620][ T6037] ? __pfx_ptrace_notify+0x10/0x10
[ 341.307645][ T6037] security_file_ioctl+0xcb/0x2d0
[ 341.307660][ T6037] __se_sys_ioctl+0x47/0x170
[ 341.307676][ T6037] do_syscall_64+0xfa/0x3b0
[ 341.307692][ T6037] ? lockdep_hardirqs_on+0x9c/0x150
[ 341.307709][ T6037] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 341.307721][ T6037] ? clear_bhb_loop+0x60/0xb0
[ 341.307736][ T6037] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 341.307748][ T6037] RIP: 0033:0x7fea15a51869
[ 341.307762][ T6037] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 341.307773][ T6037] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 341.307788][ T6037] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6037] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6037] exit_group(0) = ?
[pid 6037] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6037, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6038 attached
, child_tidptr=0x555576720650) = 6038
[pid 6038] set_robust_list(0x555576720660, 24) = 0
[pid 6038] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6038] setpgid(0, 0) = 0
[ 341.307798][ T6037] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 341.307806][ T6037] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 341.307815][ T6037] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 341.307822][ T6037] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 341.307840][ T6037]
[pid 6038] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6038] write(3, "1000", 4) = 4
[pid 6038] close(3) = 0
[pid 6038] write(1, "executing program\n", 18executing program
) = 18
[pid 6038] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6038] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6038] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6038] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6038] write(6, "4", 1) = 1
[pid 6038] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 341.704129][ T6038] FAULT_INJECTION: forcing a failure.
[ 341.704129][ T6038] name failslab, interval 1, probability 0, space 0, times 0
[ 341.717008][ T6038] CPU: 1 UID: 0 PID: 6038 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 341.717037][ T6038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 341.717049][ T6038] Call Trace:
[ 341.717058][ T6038]
[ 341.717067][ T6038] dump_stack_lvl+0x189/0x250
[ 341.717092][ T6038] ? __pfx____ratelimit+0x10/0x10
[ 341.717120][ T6038] ? __pfx_dump_stack_lvl+0x10/0x10
[ 341.717133][ T6038] ? __pfx__printk+0x10/0x10
[ 341.717153][ T6038] ? __pfx___might_resched+0x10/0x10
[ 341.717171][ T6038] ? fs_reclaim_acquire+0x7d/0x100
[ 341.717191][ T6038] should_fail_ex+0x414/0x560
[ 341.717209][ T6038] should_failslab+0xa8/0x100
[ 341.717226][ T6038] __kmalloc_noprof+0xcb/0x4f0
[ 341.717241][ T6038] ? tomoyo_init_log+0x1a6e/0x1f70
[ 341.717262][ T6038] tomoyo_init_log+0x1a6e/0x1f70
[ 341.717299][ T6038] ? __pfx_tomoyo_init_log+0x10/0x10
[ 341.717316][ T6038] ? tomoyo_profile+0x11/0x50
[ 341.717332][ T6038] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 341.717350][ T6038] tomoyo_supervisor+0x340/0x1480
[ 341.717368][ T6038] ? format_decode+0x5a3/0xe30
[ 341.717387][ T6038] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 341.717411][ T6038] ? snprintf+0xda/0x120
[ 341.717428][ T6038] ? __pfx_snprintf+0x10/0x10
[ 341.717443][ T6038] ? tomoyo_check_acl+0x386/0x400
[ 341.717461][ T6038] tomoyo_path_number_perm+0x438/0x5a0
[ 341.717475][ T6038] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 341.717490][ T6038] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 341.717509][ T6038] ? _raw_spin_lock_irq+0xae/0xf0
[ 341.717544][ T6038] ? __pfx_ptrace_notify+0x10/0x10
[ 341.717569][ T6038] security_file_ioctl+0xcb/0x2d0
[ 341.717585][ T6038] __se_sys_ioctl+0x47/0x170
[ 341.717601][ T6038] do_syscall_64+0xfa/0x3b0
[ 341.717617][ T6038] ? lockdep_hardirqs_on+0x9c/0x150
[ 341.717634][ T6038] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 341.717646][ T6038] ? clear_bhb_loop+0x60/0xb0
[ 341.717661][ T6038] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 341.717673][ T6038] RIP: 0033:0x7fea15a51869
[ 341.717690][ T6038] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 341.717702][ T6038] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 341.717717][ T6038] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6038] exit_group(0) = ?
[pid 6038] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6038, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 341.717727][ T6038] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 341.717735][ T6038] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 341.717743][ T6038] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 341.717751][ T6038] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 341.717769][ T6038]
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLDexecuting program
./strace-static-x86_64: Process 6039 attached
, child_tidptr=0x555576720650) = 6039
[pid 6039] set_robust_list(0x555576720660, 24) = 0
[pid 6039] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6039] setpgid(0, 0) = 0
[pid 6039] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6039] write(3, "1000", 4) = 4
[pid 6039] close(3) = 0
[pid 6039] write(1, "executing program\n", 18) = 18
[pid 6039] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6039] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6039] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6039] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6039] write(6, "4", 1) = 1
[ 342.044531][ T6039] FAULT_INJECTION: forcing a failure.
[ 342.044531][ T6039] name failslab, interval 1, probability 0, space 0, times 0
[ 342.057870][ T6039] CPU: 0 UID: 0 PID: 6039 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 342.057903][ T6039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 342.057916][ T6039] Call Trace:
[ 342.057925][ T6039]
[ 342.057936][ T6039] dump_stack_lvl+0x189/0x250
[ 342.057967][ T6039] ? __pfx____ratelimit+0x10/0x10
[ 342.057996][ T6039] ? __pfx_dump_stack_lvl+0x10/0x10
[ 342.058020][ T6039] ? __pfx__printk+0x10/0x10
[ 342.058056][ T6039] ? __pfx___might_resched+0x10/0x10
[ 342.058086][ T6039] ? fs_reclaim_acquire+0x7d/0x100
[ 342.058121][ T6039] should_fail_ex+0x414/0x560
[ 342.058161][ T6039] should_failslab+0xa8/0x100
[ 342.058199][ T6039] __kmalloc_noprof+0xcb/0x4f0
[ 342.058224][ T6039] ? tomoyo_init_log+0x1a6e/0x1f70
[ 342.058259][ T6039] tomoyo_init_log+0x1a6e/0x1f70
[ 342.058311][ T6039] ? __pfx_tomoyo_init_log+0x10/0x10
[ 342.058341][ T6039] ? tomoyo_profile+0x11/0x50
[ 342.058368][ T6039] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 342.058396][ T6039] tomoyo_supervisor+0x340/0x1480
[ 342.058425][ T6039] ? format_decode+0x5a3/0xe30
[ 342.058455][ T6039] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 342.058480][ T6039] ? snprintf+0xda/0x120
[ 342.058497][ T6039] ? __pfx_snprintf+0x10/0x10
[ 342.058512][ T6039] ? tomoyo_check_acl+0x386/0x400
[ 342.058531][ T6039] tomoyo_path_number_perm+0x438/0x5a0
[ 342.058544][ T6039] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 342.058559][ T6039] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 342.058579][ T6039] ? _raw_spin_lock_irq+0xae/0xf0
[ 342.058614][ T6039] ? __pfx_ptrace_notify+0x10/0x10
[ 342.058640][ T6039] security_file_ioctl+0xcb/0x2d0
[ 342.058655][ T6039] __se_sys_ioctl+0x47/0x170
[ 342.058671][ T6039] do_syscall_64+0xfa/0x3b0
[ 342.058688][ T6039] ? lockdep_hardirqs_on+0x9c/0x150
[ 342.058704][ T6039] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 342.058717][ T6039] ? clear_bhb_loop+0x60/0xb0
[ 342.058732][ T6039] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 342.058744][ T6039] RIP: 0033:0x7fea15a51869
[ 342.058757][ T6039] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 342.058769][ T6039] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 342.058784][ T6039] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6039] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6039] exit_group(0) = ?
[pid 6039] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6039, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6040 attached
, child_tidptr=0x555576720650) = 6040
[pid 6040] set_robust_list(0x555576720660, 24) = 0
[pid 6040] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6040] setpgid(0, 0) = 0
[ 342.058794][ T6039] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 342.058802][ T6039] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 342.058811][ T6039] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 342.058818][ T6039] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 342.058837][ T6039]
[pid 6040] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6040] write(3, "1000", 4) = 4
[pid 6040] close(3) = 0
executing program
[pid 6040] write(1, "executing program\n", 18) = 18
[pid 6040] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6040] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6040] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6040] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6040] write(6, "4", 1) = 1
[pid 6040] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 342.430987][ T6040] FAULT_INJECTION: forcing a failure.
[ 342.430987][ T6040] name failslab, interval 1, probability 0, space 0, times 0
[ 342.444086][ T6040] CPU: 1 UID: 0 PID: 6040 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 342.444111][ T6040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 342.444120][ T6040] Call Trace:
[ 342.444126][ T6040]
[ 342.444132][ T6040] dump_stack_lvl+0x189/0x250
[ 342.444151][ T6040] ? __pfx____ratelimit+0x10/0x10
[ 342.444170][ T6040] ? __pfx_dump_stack_lvl+0x10/0x10
[ 342.444183][ T6040] ? __pfx__printk+0x10/0x10
[ 342.444203][ T6040] ? __pfx___might_resched+0x10/0x10
[ 342.444221][ T6040] ? fs_reclaim_acquire+0x7d/0x100
[ 342.444241][ T6040] should_fail_ex+0x414/0x560
[ 342.444259][ T6040] should_failslab+0xa8/0x100
[ 342.444287][ T6040] __kmalloc_noprof+0xcb/0x4f0
[ 342.444302][ T6040] ? tomoyo_init_log+0x1a6e/0x1f70
[ 342.444324][ T6040] tomoyo_init_log+0x1a6e/0x1f70
[ 342.444355][ T6040] ? __pfx_tomoyo_init_log+0x10/0x10
[ 342.444372][ T6040] ? tomoyo_profile+0x11/0x50
[ 342.444389][ T6040] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 342.444406][ T6040] tomoyo_supervisor+0x340/0x1480
[ 342.444425][ T6040] ? format_decode+0x5a3/0xe30
[ 342.444444][ T6040] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 342.444471][ T6040] ? snprintf+0xda/0x120
[ 342.444488][ T6040] ? __pfx_snprintf+0x10/0x10
[ 342.444510][ T6040] ? tomoyo_check_acl+0x386/0x400
[ 342.444533][ T6040] tomoyo_path_number_perm+0x438/0x5a0
[ 342.444547][ T6040] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 342.444562][ T6040] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 342.444581][ T6040] ? _raw_spin_lock_irq+0xae/0xf0
[ 342.444617][ T6040] ? __pfx_ptrace_notify+0x10/0x10
[ 342.444642][ T6040] security_file_ioctl+0xcb/0x2d0
[ 342.444657][ T6040] __se_sys_ioctl+0x47/0x170
[ 342.444673][ T6040] do_syscall_64+0xfa/0x3b0
[ 342.444690][ T6040] ? lockdep_hardirqs_on+0x9c/0x150
[ 342.444707][ T6040] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 342.444719][ T6040] ? clear_bhb_loop+0x60/0xb0
[ 342.444734][ T6040] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 342.444746][ T6040] RIP: 0033:0x7fea15a51869
[ 342.444758][ T6040] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 342.444769][ T6040] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6040] exit_group(0) = ?
[pid 6040] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6040, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6041 attached
, child_tidptr=0x555576720650) = 6041
[pid 6041] set_robust_list(0x555576720660, 24) = 0
[ 342.444784][ T6040] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 342.444794][ T6040] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 342.444802][ T6040] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 342.444810][ T6040] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 342.444818][ T6040] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 342.444837][ T6040]
[pid 6041] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6041] setpgid(0, 0) = 0
[pid 6041] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6041] write(3, "1000", 4) = 4
[pid 6041] close(3) = 0
[pid 6041] write(1, "executing program\n", 18executing program
) = 18
[pid 6041] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6041] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6041] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6041] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6041] write(6, "4", 1) = 1
[ 342.848891][ T6041] FAULT_INJECTION: forcing a failure.
[ 342.848891][ T6041] name failslab, interval 1, probability 0, space 0, times 0
[ 342.862352][ T6041] CPU: 0 UID: 0 PID: 6041 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 342.862373][ T6041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 342.862382][ T6041] Call Trace:
[ 342.862387][ T6041]
[ 342.862393][ T6041] dump_stack_lvl+0x189/0x250
[ 342.862413][ T6041] ? __pfx____ratelimit+0x10/0x10
[ 342.862430][ T6041] ? __pfx_dump_stack_lvl+0x10/0x10
[ 342.862444][ T6041] ? __pfx__printk+0x10/0x10
[ 342.862463][ T6041] ? __pfx___might_resched+0x10/0x10
[ 342.862482][ T6041] ? fs_reclaim_acquire+0x7d/0x100
[ 342.862502][ T6041] should_fail_ex+0x414/0x560
[ 342.862520][ T6041] should_failslab+0xa8/0x100
[ 342.862537][ T6041] __kmalloc_noprof+0xcb/0x4f0
[ 342.862552][ T6041] ? tomoyo_init_log+0x1a6e/0x1f70
[ 342.862572][ T6041] tomoyo_init_log+0x1a6e/0x1f70
[ 342.862603][ T6041] ? __pfx_tomoyo_init_log+0x10/0x10
[ 342.862619][ T6041] ? tomoyo_profile+0x11/0x50
[ 342.862636][ T6041] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 342.862654][ T6041] tomoyo_supervisor+0x340/0x1480
[ 342.862672][ T6041] ? format_decode+0x5a3/0xe30
[ 342.862691][ T6041] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 342.862715][ T6041] ? snprintf+0xda/0x120
[ 342.862732][ T6041] ? __pfx_snprintf+0x10/0x10
[ 342.862747][ T6041] ? tomoyo_check_acl+0x386/0x400
[ 342.862765][ T6041] tomoyo_path_number_perm+0x438/0x5a0
[ 342.862779][ T6041] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 342.862794][ T6041] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 342.862824][ T6041] ? _raw_spin_lock_irq+0xae/0xf0
[ 342.862860][ T6041] ? __pfx_ptrace_notify+0x10/0x10
[ 342.862884][ T6041] security_file_ioctl+0xcb/0x2d0
[ 342.862900][ T6041] __se_sys_ioctl+0x47/0x170
[ 342.862916][ T6041] do_syscall_64+0xfa/0x3b0
[ 342.862932][ T6041] ? lockdep_hardirqs_on+0x9c/0x150
[ 342.862949][ T6041] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 342.862961][ T6041] ? clear_bhb_loop+0x60/0xb0
[ 342.862977][ T6041] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 342.862988][ T6041] RIP: 0033:0x7fea15a51869
[ 342.863001][ T6041] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 342.863013][ T6041] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 342.863029][ T6041] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6041] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6041] exit_group(0) = ?
[pid 6041] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6041, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6042 attached
, child_tidptr=0x555576720650) = 6042
[ 342.863039][ T6041] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 342.863047][ T6041] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 342.863055][ T6041] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 342.863064][ T6041] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 342.863084][ T6041]
[pid 6042] set_robust_list(0x555576720660, 24) = 0
[pid 6042] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6042] setpgid(0, 0) = 0
[pid 6042] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6042] write(3, "1000", 4) = 4
[pid 6042] close(3executing program
) = 0
[pid 6042] write(1, "executing program\n", 18) = 18
[pid 6042] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6042] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6042] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6042] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6042] write(6, "4", 1) = 1
[ 343.244952][ T6042] FAULT_INJECTION: forcing a failure.
[ 343.244952][ T6042] name failslab, interval 1, probability 0, space 0, times 0
[ 343.257942][ T6042] CPU: 1 UID: 0 PID: 6042 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 343.257971][ T6042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 343.257984][ T6042] Call Trace:
[ 343.257993][ T6042]
[ 343.258002][ T6042] dump_stack_lvl+0x189/0x250
[ 343.258029][ T6042] ? __pfx____ratelimit+0x10/0x10
[ 343.258056][ T6042] ? __pfx_dump_stack_lvl+0x10/0x10
[ 343.258078][ T6042] ? __pfx__printk+0x10/0x10
[ 343.258110][ T6042] ? __pfx___might_resched+0x10/0x10
[ 343.258148][ T6042] ? fs_reclaim_acquire+0x7d/0x100
[ 343.258181][ T6042] should_fail_ex+0x414/0x560
[ 343.258209][ T6042] should_failslab+0xa8/0x100
[ 343.258228][ T6042] __kmalloc_noprof+0xcb/0x4f0
[ 343.258243][ T6042] ? tomoyo_init_log+0x1a6e/0x1f70
[ 343.258263][ T6042] tomoyo_init_log+0x1a6e/0x1f70
[ 343.258294][ T6042] ? __pfx_tomoyo_init_log+0x10/0x10
[ 343.258310][ T6042] ? tomoyo_profile+0x11/0x50
[ 343.258327][ T6042] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 343.258344][ T6042] tomoyo_supervisor+0x340/0x1480
[ 343.258363][ T6042] ? format_decode+0x5a3/0xe30
[ 343.258382][ T6042] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 343.258405][ T6042] ? snprintf+0xda/0x120
[ 343.258422][ T6042] ? __pfx_snprintf+0x10/0x10
[ 343.258437][ T6042] ? tomoyo_check_acl+0x386/0x400
[ 343.258456][ T6042] tomoyo_path_number_perm+0x438/0x5a0
[ 343.258469][ T6042] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 343.258484][ T6042] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 343.258503][ T6042] ? _raw_spin_lock_irq+0xae/0xf0
[ 343.258538][ T6042] ? __pfx_ptrace_notify+0x10/0x10
[ 343.258563][ T6042] security_file_ioctl+0xcb/0x2d0
[ 343.258578][ T6042] __se_sys_ioctl+0x47/0x170
[ 343.258594][ T6042] do_syscall_64+0xfa/0x3b0
[ 343.258611][ T6042] ? lockdep_hardirqs_on+0x9c/0x150
[ 343.258627][ T6042] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 343.258639][ T6042] ? clear_bhb_loop+0x60/0xb0
[ 343.258654][ T6042] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 343.258667][ T6042] RIP: 0033:0x7fea15a51869
[ 343.258680][ T6042] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 343.258691][ T6042] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 343.258706][ T6042] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6042] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6042] exit_group(0) = ?
[pid 6042] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6042, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6043 attached
, child_tidptr=0x555576720650) = 6043
[ 343.258716][ T6042] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 343.258724][ T6042] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 343.258733][ T6042] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 343.258740][ T6042] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 343.258758][ T6042]
[pid 6043] set_robust_list(0x555576720660, 24) = 0
[pid 6043] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6043] setpgid(0, 0) = 0
[pid 6043] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6043] write(3, "1000", 4) = 4
[pid 6043] close(3) = 0
[pid 6043] write(1, "executing program\n", 18executing program
) = 18
[pid 6043] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6043] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6043] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6043] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6043] write(6, "4", 1) = 1
[ 343.643531][ T6043] FAULT_INJECTION: forcing a failure.
[ 343.643531][ T6043] name failslab, interval 1, probability 0, space 0, times 0
[ 343.656584][ T6043] CPU: 0 UID: 0 PID: 6043 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 343.656615][ T6043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 343.656628][ T6043] Call Trace:
[ 343.656638][ T6043]
[ 343.656648][ T6043] dump_stack_lvl+0x189/0x250
[ 343.656676][ T6043] ? __pfx____ratelimit+0x10/0x10
[ 343.656705][ T6043] ? __pfx_dump_stack_lvl+0x10/0x10
[ 343.656729][ T6043] ? __pfx__printk+0x10/0x10
[ 343.656762][ T6043] ? __pfx___might_resched+0x10/0x10
[ 343.656791][ T6043] ? fs_reclaim_acquire+0x7d/0x100
[ 343.656824][ T6043] should_fail_ex+0x414/0x560
[ 343.656848][ T6043] should_failslab+0xa8/0x100
[ 343.656866][ T6043] __kmalloc_noprof+0xcb/0x4f0
[ 343.656880][ T6043] ? tomoyo_init_log+0x1a6e/0x1f70
[ 343.656910][ T6043] tomoyo_init_log+0x1a6e/0x1f70
[ 343.656940][ T6043] ? __pfx_tomoyo_init_log+0x10/0x10
[ 343.656957][ T6043] ? tomoyo_profile+0x11/0x50
[ 343.656973][ T6043] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 343.656991][ T6043] tomoyo_supervisor+0x340/0x1480
[ 343.657009][ T6043] ? format_decode+0x5a3/0xe30
[ 343.657028][ T6043] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 343.657052][ T6043] ? snprintf+0xda/0x120
[ 343.657069][ T6043] ? __pfx_snprintf+0x10/0x10
[ 343.657084][ T6043] ? tomoyo_check_acl+0x386/0x400
[ 343.657103][ T6043] tomoyo_path_number_perm+0x438/0x5a0
[ 343.657117][ T6043] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 343.657131][ T6043] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 343.657154][ T6043] ? _raw_spin_lock_irq+0xae/0xf0
[ 343.657190][ T6043] ? __pfx_ptrace_notify+0x10/0x10
[ 343.657215][ T6043] security_file_ioctl+0xcb/0x2d0
[ 343.657230][ T6043] __se_sys_ioctl+0x47/0x170
[ 343.657246][ T6043] do_syscall_64+0xfa/0x3b0
[ 343.657263][ T6043] ? lockdep_hardirqs_on+0x9c/0x150
[ 343.657279][ T6043] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 343.657292][ T6043] ? clear_bhb_loop+0x60/0xb0
[ 343.657307][ T6043] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 343.657319][ T6043] RIP: 0033:0x7fea15a51869
[ 343.657331][ T6043] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 343.657343][ T6043] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 343.657359][ T6043] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6043] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6043] exit_group(0) = ?
[pid 6043] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6043, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6044 attached
, child_tidptr=0x555576720650) = 6044
[pid 6044] set_robust_list(0x555576720660, 24) = 0
[ 343.657368][ T6043] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 343.657376][ T6043] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 343.657384][ T6043] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 343.657392][ T6043] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 343.657410][ T6043]
[pid 6044] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
executing program
[pid 6044] setpgid(0, 0) = 0
[pid 6044] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6044] write(3, "1000", 4) = 4
[pid 6044] close(3) = 0
[pid 6044] write(1, "executing program\n", 18) = 18
[pid 6044] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6044] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6044] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6044] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6044] write(6, "4", 1) = 1
[pid 6044] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6044] exit_group(0) = ?
[ 344.024703][ T6044] FAULT_INJECTION: forcing a failure.
[ 344.024703][ T6044] name failslab, interval 1, probability 0, space 0, times 0
[ 344.038593][ T6044] CPU: 1 UID: 0 PID: 6044 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 344.038623][ T6044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 344.038637][ T6044] Call Trace:
[ 344.038647][ T6044]
[ 344.038657][ T6044] dump_stack_lvl+0x189/0x250
[ 344.038687][ T6044] ? __pfx____ratelimit+0x10/0x10
[ 344.038716][ T6044] ? __pfx_dump_stack_lvl+0x10/0x10
[ 344.038739][ T6044] ? __pfx__printk+0x10/0x10
[ 344.038773][ T6044] ? __pfx___might_resched+0x10/0x10
[ 344.038801][ T6044] ? fs_reclaim_acquire+0x7d/0x100
[ 344.038833][ T6044] should_fail_ex+0x414/0x560
[ 344.038857][ T6044] should_failslab+0xa8/0x100
[ 344.038874][ T6044] __kmalloc_noprof+0xcb/0x4f0
[ 344.038889][ T6044] ? tomoyo_init_log+0x1a6e/0x1f70
[ 344.038911][ T6044] tomoyo_init_log+0x1a6e/0x1f70
[ 344.038942][ T6044] ? __pfx_tomoyo_init_log+0x10/0x10
[ 344.038959][ T6044] ? tomoyo_profile+0x11/0x50
[ 344.038975][ T6044] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 344.038993][ T6044] tomoyo_supervisor+0x340/0x1480
[ 344.039011][ T6044] ? format_decode+0x5a3/0xe30
[ 344.039030][ T6044] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 344.039054][ T6044] ? snprintf+0xda/0x120
[ 344.039071][ T6044] ? __pfx_snprintf+0x10/0x10
[ 344.039086][ T6044] ? tomoyo_check_acl+0x386/0x400
[ 344.039114][ T6044] tomoyo_path_number_perm+0x438/0x5a0
[ 344.039128][ T6044] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 344.039143][ T6044] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 344.039162][ T6044] ? _raw_spin_lock_irq+0xae/0xf0
[ 344.039198][ T6044] ? __pfx_ptrace_notify+0x10/0x10
[ 344.039223][ T6044] security_file_ioctl+0xcb/0x2d0
[ 344.039238][ T6044] __se_sys_ioctl+0x47/0x170
[ 344.039255][ T6044] do_syscall_64+0xfa/0x3b0
[ 344.039271][ T6044] ? lockdep_hardirqs_on+0x9c/0x150
[ 344.039288][ T6044] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 344.039300][ T6044] ? clear_bhb_loop+0x60/0xb0
[ 344.039315][ T6044] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 344.039327][ T6044] RIP: 0033:0x7fea15a51869
[ 344.039340][ T6044] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 344.039352][ T6044] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6044] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6044, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6045 attached
, child_tidptr=0x555576720650) = 6045
[pid 6045] set_robust_list(0x555576720660, 24) = 0
[pid 6045] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6045] setpgid(0, 0) = 0
[pid 6045] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6045] write(3, "1000", 4) = 4
[pid 6045] close(3) = 0
[pid 6045] write(1, "executing program\n", 18executing program
) = 18
[pid 6045] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6045] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6045] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6045] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6045] write(6, "4", 1) = 1
[ 344.039367][ T6044] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 344.039377][ T6044] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 344.039385][ T6044] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 344.039393][ T6044] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 344.039401][ T6044] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 344.039419][ T6044]
[ 344.329374][ T6045] FAULT_INJECTION: forcing a failure.
[ 344.329374][ T6045] name failslab, interval 1, probability 0, space 0, times 0
[ 344.342702][ T6045] CPU: 0 UID: 0 PID: 6045 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 344.342730][ T6045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 344.342742][ T6045] Call Trace:
[ 344.342748][ T6045]
[ 344.342754][ T6045] dump_stack_lvl+0x189/0x250
[ 344.342773][ T6045] ? __pfx____ratelimit+0x10/0x10
[ 344.342791][ T6045] ? __pfx_dump_stack_lvl+0x10/0x10
[ 344.342805][ T6045] ? __pfx__printk+0x10/0x10
[ 344.342825][ T6045] ? __pfx___might_resched+0x10/0x10
[ 344.342842][ T6045] ? fs_reclaim_acquire+0x7d/0x100
[ 344.342863][ T6045] should_fail_ex+0x414/0x560
[ 344.342881][ T6045] should_failslab+0xa8/0x100
[ 344.342906][ T6045] __kmalloc_noprof+0xcb/0x4f0
[ 344.342921][ T6045] ? tomoyo_init_log+0x1a6e/0x1f70
[ 344.342941][ T6045] tomoyo_init_log+0x1a6e/0x1f70
[ 344.342972][ T6045] ? __pfx_tomoyo_init_log+0x10/0x10
[ 344.342989][ T6045] ? tomoyo_profile+0x11/0x50
[ 344.343006][ T6045] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 344.343023][ T6045] tomoyo_supervisor+0x340/0x1480
[ 344.343042][ T6045] ? format_decode+0x5a3/0xe30
[ 344.343061][ T6045] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 344.343085][ T6045] ? snprintf+0xda/0x120
[ 344.343113][ T6045] ? __pfx_snprintf+0x10/0x10
[ 344.343140][ T6045] ? tomoyo_check_acl+0x386/0x400
[ 344.343171][ T6045] tomoyo_path_number_perm+0x438/0x5a0
[ 344.343186][ T6045] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 344.343201][ T6045] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 344.343220][ T6045] ? _raw_spin_lock_irq+0xae/0xf0
[ 344.343258][ T6045] ? __pfx_ptrace_notify+0x10/0x10
[ 344.343283][ T6045] security_file_ioctl+0xcb/0x2d0
[ 344.343299][ T6045] __se_sys_ioctl+0x47/0x170
[ 344.343315][ T6045] do_syscall_64+0xfa/0x3b0
[ 344.343332][ T6045] ? lockdep_hardirqs_on+0x9c/0x150
[ 344.343348][ T6045] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 344.343361][ T6045] ? clear_bhb_loop+0x60/0xb0
[ 344.343376][ T6045] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 344.343388][ T6045] RIP: 0033:0x7fea15a51869
[ 344.343400][ T6045] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 344.343412][ T6045] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 344.343427][ T6045] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6045] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6045] exit_group(0) = ?
[pid 6045] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6045, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6046 attached
, child_tidptr=0x555576720650) = 6046
[pid 6046] set_robust_list(0x555576720660, 24) = 0
[ 344.343437][ T6045] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 344.343445][ T6045] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 344.343454][ T6045] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 344.343461][ T6045] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 344.343480][ T6045]
[pid 6046] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6046] setpgid(0, 0) = 0
[pid 6046] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6046] write(3, "1000", 4) = 4
[pid 6046] close(3executing program
) = 0
[pid 6046] write(1, "executing program\n", 18) = 18
[pid 6046] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6046] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6046] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6046] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6046] write(6, "4", 1) = 1
[ 344.723194][ T6046] FAULT_INJECTION: forcing a failure.
[ 344.723194][ T6046] name failslab, interval 1, probability 0, space 0, times 0
[ 344.736393][ T6046] CPU: 1 UID: 0 PID: 6046 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 344.736423][ T6046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 344.736436][ T6046] Call Trace:
[ 344.736444][ T6046]
[ 344.736453][ T6046] dump_stack_lvl+0x189/0x250
[ 344.736482][ T6046] ? __pfx____ratelimit+0x10/0x10
[ 344.736509][ T6046] ? __pfx_dump_stack_lvl+0x10/0x10
[ 344.736530][ T6046] ? __pfx__printk+0x10/0x10
[ 344.736560][ T6046] ? __pfx___might_resched+0x10/0x10
[ 344.736588][ T6046] ? fs_reclaim_acquire+0x7d/0x100
[ 344.736622][ T6046] should_fail_ex+0x414/0x560
[ 344.736649][ T6046] should_failslab+0xa8/0x100
[ 344.736677][ T6046] __kmalloc_noprof+0xcb/0x4f0
[ 344.736698][ T6046] ? tomoyo_init_log+0x1a6e/0x1f70
[ 344.736729][ T6046] tomoyo_init_log+0x1a6e/0x1f70
[ 344.736782][ T6046] ? __pfx_tomoyo_init_log+0x10/0x10
[ 344.736809][ T6046] ? tomoyo_profile+0x11/0x50
[ 344.736851][ T6046] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 344.736882][ T6046] tomoyo_supervisor+0x340/0x1480
[ 344.736914][ T6046] ? format_decode+0x5a3/0xe30
[ 344.736945][ T6046] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 344.736986][ T6046] ? snprintf+0xda/0x120
[ 344.737015][ T6046] ? __pfx_snprintf+0x10/0x10
[ 344.737041][ T6046] ? tomoyo_check_acl+0x386/0x400
[ 344.737073][ T6046] tomoyo_path_number_perm+0x438/0x5a0
[ 344.737095][ T6046] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 344.737122][ T6046] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 344.737155][ T6046] ? _raw_spin_lock_irq+0xae/0xf0
[ 344.737218][ T6046] ? __pfx_ptrace_notify+0x10/0x10
[ 344.737262][ T6046] security_file_ioctl+0xcb/0x2d0
[ 344.737288][ T6046] __se_sys_ioctl+0x47/0x170
[ 344.737315][ T6046] do_syscall_64+0xfa/0x3b0
[ 344.737343][ T6046] ? lockdep_hardirqs_on+0x9c/0x150
[ 344.737371][ T6046] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 344.737392][ T6046] ? clear_bhb_loop+0x60/0xb0
[ 344.737417][ T6046] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 344.737437][ T6046] RIP: 0033:0x7fea15a51869
[ 344.737457][ T6046] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 344.737475][ T6046] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6046] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6046] exit_group(0) = ?
[pid 6046] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6046, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6047 attached
, child_tidptr=0x555576720650) = 6047
[pid 6047] set_robust_list(0x555576720660, 24) = 0
[pid 6047] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6047] setpgid(0, 0) = 0
[pid 6047] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6047] write(3, "1000", 4) = 4
[pid 6047] close(3) = 0
[pid 6047] write(1, "executing program\n", 18executing program
) = 18
[pid 6047] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6047] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6047] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6047] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6047] write(6, "4", 1) = 1
[ 344.737499][ T6046] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 344.737514][ T6046] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 344.737528][ T6046] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 344.737541][ T6046] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 344.737553][ T6046] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 344.737587][ T6046]
[ 345.045794][ T6047] FAULT_INJECTION: forcing a failure.
[ 345.045794][ T6047] name failslab, interval 1, probability 0, space 0, times 0
[ 345.059328][ T6047] CPU: 0 UID: 0 PID: 6047 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 345.059361][ T6047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 345.059375][ T6047] Call Trace:
[ 345.059384][ T6047]
[ 345.059407][ T6047] dump_stack_lvl+0x189/0x250
[ 345.059437][ T6047] ? __pfx____ratelimit+0x10/0x10
[ 345.059467][ T6047] ? __pfx_dump_stack_lvl+0x10/0x10
[ 345.059490][ T6047] ? __pfx__printk+0x10/0x10
[ 345.059525][ T6047] ? __pfx___might_resched+0x10/0x10
[ 345.059555][ T6047] ? fs_reclaim_acquire+0x7d/0x100
[ 345.059590][ T6047] should_fail_ex+0x414/0x560
[ 345.059621][ T6047] should_failslab+0xa8/0x100
[ 345.059650][ T6047] __kmalloc_noprof+0xcb/0x4f0
[ 345.059674][ T6047] ? tomoyo_init_log+0x1a6e/0x1f70
[ 345.059705][ T6047] tomoyo_init_log+0x1a6e/0x1f70
[ 345.059761][ T6047] ? __pfx_tomoyo_init_log+0x10/0x10
[ 345.059787][ T6047] ? tomoyo_profile+0x11/0x50
[ 345.059813][ T6047] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 345.059842][ T6047] tomoyo_supervisor+0x340/0x1480
[ 345.059870][ T6047] ? format_decode+0x5a3/0xe30
[ 345.059889][ T6047] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 345.059913][ T6047] ? snprintf+0xda/0x120
[ 345.059930][ T6047] ? __pfx_snprintf+0x10/0x10
[ 345.059945][ T6047] ? tomoyo_check_acl+0x386/0x400
[ 345.059964][ T6047] tomoyo_path_number_perm+0x438/0x5a0
[ 345.059978][ T6047] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 345.059993][ T6047] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 345.060012][ T6047] ? _raw_spin_lock_irq+0xae/0xf0
[ 345.060048][ T6047] ? __pfx_ptrace_notify+0x10/0x10
[ 345.060073][ T6047] security_file_ioctl+0xcb/0x2d0
[ 345.060088][ T6047] __se_sys_ioctl+0x47/0x170
[ 345.060104][ T6047] do_syscall_64+0xfa/0x3b0
[ 345.060204][ T6047] ? lockdep_hardirqs_on+0x9c/0x150
[ 345.060287][ T6047] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 345.060305][ T6047] ? clear_bhb_loop+0x60/0xb0
[ 345.060321][ T6047] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 345.060335][ T6047] RIP: 0033:0x7fea15a51869
[ 345.060351][ T6047] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 345.060362][ T6047] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 345.060378][ T6047] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6047] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6047] exit_group(0) = ?
[pid 6047] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6047, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6048 attached
, child_tidptr=0x555576720650) = 6048
[pid 6048] set_robust_list(0x555576720660, 24) = 0
[pid 6048] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 345.060388][ T6047] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 345.060396][ T6047] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 345.060405][ T6047] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 345.060412][ T6047] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 345.060431][ T6047]
[pid 6048] setpgid(0, 0) = 0
[pid 6048] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6048] write(3, "1000", 4) = 4
[pid 6048] close(3) = 0
executing program
[pid 6048] write(1, "executing program\n", 18) = 18
[pid 6048] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6048] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6048] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6048] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6048] write(6, "4", 1) = 1
[pid 6048] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6048] exit_group(0) = ?
[ 345.488067][ T6048] FAULT_INJECTION: forcing a failure.
[ 345.488067][ T6048] name failslab, interval 1, probability 0, space 0, times 0
[ 345.500885][ T6048] CPU: 1 UID: 0 PID: 6048 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 345.500906][ T6048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 345.500914][ T6048] Call Trace:
[ 345.500920][ T6048]
[ 345.500926][ T6048] dump_stack_lvl+0x189/0x250
[ 345.500946][ T6048] ? __pfx____ratelimit+0x10/0x10
[ 345.500963][ T6048] ? __pfx_dump_stack_lvl+0x10/0x10
[ 345.500977][ T6048] ? __pfx__printk+0x10/0x10
[ 345.500996][ T6048] ? __pfx___might_resched+0x10/0x10
[ 345.501014][ T6048] ? fs_reclaim_acquire+0x7d/0x100
[ 345.501034][ T6048] should_fail_ex+0x414/0x560
[ 345.501053][ T6048] should_failslab+0xa8/0x100
[ 345.501070][ T6048] __kmalloc_noprof+0xcb/0x4f0
[ 345.501085][ T6048] ? tomoyo_init_log+0x1a6e/0x1f70
[ 345.501105][ T6048] tomoyo_init_log+0x1a6e/0x1f70
[ 345.501135][ T6048] ? __pfx_tomoyo_init_log+0x10/0x10
[ 345.501152][ T6048] ? tomoyo_profile+0x11/0x50
[ 345.501168][ T6048] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 345.501186][ T6048] tomoyo_supervisor+0x340/0x1480
[ 345.501205][ T6048] ? format_decode+0x5a3/0xe30
[ 345.501224][ T6048] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 345.501248][ T6048] ? snprintf+0xda/0x120
[ 345.501264][ T6048] ? __pfx_snprintf+0x10/0x10
[ 345.501279][ T6048] ? tomoyo_check_acl+0x386/0x400
[ 345.501298][ T6048] tomoyo_path_number_perm+0x438/0x5a0
[ 345.501312][ T6048] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 345.501327][ T6048] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 345.501346][ T6048] ? _raw_spin_lock_irq+0xae/0xf0
[ 345.501380][ T6048] ? __pfx_ptrace_notify+0x10/0x10
[ 345.501405][ T6048] security_file_ioctl+0xcb/0x2d0
[ 345.501420][ T6048] __se_sys_ioctl+0x47/0x170
[ 345.501436][ T6048] do_syscall_64+0xfa/0x3b0
[ 345.501453][ T6048] ? lockdep_hardirqs_on+0x9c/0x150
[ 345.501469][ T6048] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 345.501482][ T6048] ? clear_bhb_loop+0x60/0xb0
[ 345.501496][ T6048] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 345.501508][ T6048] RIP: 0033:0x7fea15a51869
[ 345.501521][ T6048] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 345.501532][ T6048] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 345.501548][ T6048] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6048] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6048, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6049 attached
, child_tidptr=0x555576720650) = 6049
[pid 6049] set_robust_list(0x555576720660, 24) = 0
[pid 6049] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6049] setpgid(0, 0) = 0
[pid 6049] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6049] write(3, "1000", 4) = 4
[ 345.501558][ T6048] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 345.501566][ T6048] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 345.501574][ T6048] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 345.501582][ T6048] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 345.501600][ T6048]
[pid 6049] close(3) = 0
executing program
[pid 6049] write(1, "executing program\n", 18) = 18
[pid 6049] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6049] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6049] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6049] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6049] write(6, "4", 1) = 1
[pid 6049] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6049] exit_group(0) = ?
[ 345.844857][ T6049] FAULT_INJECTION: forcing a failure.
[ 345.844857][ T6049] name failslab, interval 1, probability 0, space 0, times 0
[ 345.858471][ T6049] CPU: 0 UID: 0 PID: 6049 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 345.858492][ T6049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 345.858500][ T6049] Call Trace:
[ 345.858506][ T6049]
[ 345.858512][ T6049] dump_stack_lvl+0x189/0x250
[ 345.858531][ T6049] ? __pfx____ratelimit+0x10/0x10
[ 345.858565][ T6049] ? __pfx_dump_stack_lvl+0x10/0x10
[ 345.858584][ T6049] ? __pfx__printk+0x10/0x10
[ 345.858617][ T6049] ? __pfx___might_resched+0x10/0x10
[ 345.858649][ T6049] ? fs_reclaim_acquire+0x7d/0x100
[ 345.858679][ T6049] should_fail_ex+0x414/0x560
[ 345.858707][ T6049] should_failslab+0xa8/0x100
[ 345.858734][ T6049] __kmalloc_noprof+0xcb/0x4f0
[ 345.858756][ T6049] ? tomoyo_init_log+0x1a6e/0x1f70
[ 345.858788][ T6049] tomoyo_init_log+0x1a6e/0x1f70
[ 345.858841][ T6049] ? __pfx_tomoyo_init_log+0x10/0x10
[ 345.858868][ T6049] ? tomoyo_profile+0x11/0x50
[ 345.858896][ T6049] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 345.858927][ T6049] tomoyo_supervisor+0x340/0x1480
[ 345.858958][ T6049] ? format_decode+0x5a3/0xe30
[ 345.858990][ T6049] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 345.859033][ T6049] ? snprintf+0xda/0x120
[ 345.859063][ T6049] ? __pfx_snprintf+0x10/0x10
[ 345.859087][ T6049] ? tomoyo_check_acl+0x386/0x400
[ 345.859125][ T6049] tomoyo_path_number_perm+0x438/0x5a0
[ 345.859140][ T6049] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 345.859155][ T6049] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 345.859174][ T6049] ? _raw_spin_lock_irq+0xae/0xf0
[ 345.859209][ T6049] ? __pfx_ptrace_notify+0x10/0x10
[ 345.859235][ T6049] security_file_ioctl+0xcb/0x2d0
[ 345.859250][ T6049] __se_sys_ioctl+0x47/0x170
[ 345.859266][ T6049] do_syscall_64+0xfa/0x3b0
[ 345.859282][ T6049] ? lockdep_hardirqs_on+0x9c/0x150
[ 345.859299][ T6049] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 345.859311][ T6049] ? clear_bhb_loop+0x60/0xb0
[ 345.859326][ T6049] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 345.859338][ T6049] RIP: 0033:0x7fea15a51869
[ 345.859352][ T6049] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 345.859364][ T6049] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 345.859380][ T6049] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6049] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6049, si_uid=0, si_status=0, si_utime=0, si_stime=29 /* 0.29 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576720650) = 6050
./strace-static-x86_64: Process 6050 attached
[pid 6050] set_robust_list(0x555576720660, 24) = 0
[pid 6050] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6050] setpgid(0, 0) = 0
[pid 6050] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6050] write(3, "1000", 4) = 4
[pid 6050] close(3) = 0
executing program
[pid 6050] write(1, "executing program\n", 18) = 18
[pid 6050] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6050] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6050] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[ 345.859390][ T6049] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 345.859398][ T6049] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 345.859406][ T6049] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 345.859414][ T6049] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 345.859432][ T6049]
[pid 6050] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6050] write(6, "4", 1) = 1
[pid 6050] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6050] exit_group(0) = ?
[pid 6050] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6050, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
[ 346.191366][ T6050] FAULT_INJECTION: forcing a failure.
[ 346.191366][ T6050] name failslab, interval 1, probability 0, space 0, times 0
[ 346.204112][ T6050] CPU: 1 UID: 0 PID: 6050 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 346.204144][ T6050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 346.204157][ T6050] Call Trace:
[ 346.204170][ T6050]
[ 346.204180][ T6050] dump_stack_lvl+0x189/0x250
[ 346.204200][ T6050] ? __pfx____ratelimit+0x10/0x10
[ 346.204219][ T6050] ? __pfx_dump_stack_lvl+0x10/0x10
[ 346.204232][ T6050] ? __pfx__printk+0x10/0x10
[ 346.204252][ T6050] ? __pfx___might_resched+0x10/0x10
[ 346.204270][ T6050] ? fs_reclaim_acquire+0x7d/0x100
[ 346.204291][ T6050] should_fail_ex+0x414/0x560
[ 346.204308][ T6050] should_failslab+0xa8/0x100
[ 346.204326][ T6050] __kmalloc_noprof+0xcb/0x4f0
[ 346.204340][ T6050] ? tomoyo_init_log+0x1a6e/0x1f70
[ 346.204361][ T6050] tomoyo_init_log+0x1a6e/0x1f70
[ 346.204392][ T6050] ? __pfx_tomoyo_init_log+0x10/0x10
[ 346.204409][ T6050] ? tomoyo_profile+0x11/0x50
[ 346.204425][ T6050] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 346.204443][ T6050] tomoyo_supervisor+0x340/0x1480
[ 346.204462][ T6050] ? format_decode+0x5a3/0xe30
[ 346.204480][ T6050] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 346.204504][ T6050] ? snprintf+0xda/0x120
[ 346.204521][ T6050] ? __pfx_snprintf+0x10/0x10
[ 346.204536][ T6050] ? tomoyo_check_acl+0x386/0x400
[ 346.204555][ T6050] tomoyo_path_number_perm+0x438/0x5a0
[ 346.204569][ T6050] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 346.204584][ T6050] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 346.204604][ T6050] ? _raw_spin_lock_irq+0xae/0xf0
[ 346.204638][ T6050] ? __pfx_ptrace_notify+0x10/0x10
[ 346.204663][ T6050] security_file_ioctl+0xcb/0x2d0
[ 346.204679][ T6050] __se_sys_ioctl+0x47/0x170
[ 346.204695][ T6050] do_syscall_64+0xfa/0x3b0
[ 346.204712][ T6050] ? lockdep_hardirqs_on+0x9c/0x150
[ 346.204728][ T6050] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 346.204741][ T6050] ? clear_bhb_loop+0x60/0xb0
[ 346.204756][ T6050] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 346.204768][ T6050] RIP: 0033:0x7fea15a51869
[ 346.204781][ T6050] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 346.204793][ T6050] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6051 attached
, child_tidptr=0x555576720650) = 6051
[pid 6051] set_robust_list(0x555576720660, 24) = 0
[pid 6051] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6051] setpgid(0, 0) = 0
executing program
[pid 6051] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6051] write(3, "1000", 4) = 4
[pid 6051] close(3) = 0
[pid 6051] write(1, "executing program\n", 18) = 18
[pid 6051] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6051] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6051] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6051] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6051] write(6, "4", 1) = 1
[ 346.204816][ T6050] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 346.204826][ T6050] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 346.204834][ T6050] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 346.204842][ T6050] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 346.204850][ T6050] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 346.204869][ T6050]
[pid 6051] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6051] exit_group(0) = ?
[ 346.510028][ T6051] FAULT_INJECTION: forcing a failure.
[ 346.510028][ T6051] name failslab, interval 1, probability 0, space 0, times 0
[ 346.523344][ T6051] CPU: 1 UID: 0 PID: 6051 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 346.523364][ T6051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 346.523373][ T6051] Call Trace:
[ 346.523379][ T6051]
[ 346.523385][ T6051] dump_stack_lvl+0x189/0x250
[ 346.523404][ T6051] ? __pfx____ratelimit+0x10/0x10
[ 346.523423][ T6051] ? __pfx_dump_stack_lvl+0x10/0x10
[ 346.523437][ T6051] ? __pfx__printk+0x10/0x10
[ 346.523456][ T6051] ? __pfx___might_resched+0x10/0x10
[ 346.523473][ T6051] ? fs_reclaim_acquire+0x7d/0x100
[ 346.523495][ T6051] should_fail_ex+0x414/0x560
[ 346.523513][ T6051] should_failslab+0xa8/0x100
[ 346.523530][ T6051] __kmalloc_noprof+0xcb/0x4f0
[ 346.523545][ T6051] ? tomoyo_init_log+0x1a6e/0x1f70
[ 346.523565][ T6051] tomoyo_init_log+0x1a6e/0x1f70
[ 346.523596][ T6051] ? __pfx_tomoyo_init_log+0x10/0x10
[ 346.523612][ T6051] ? tomoyo_profile+0x11/0x50
[ 346.523629][ T6051] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 346.523648][ T6051] tomoyo_supervisor+0x340/0x1480
[ 346.523666][ T6051] ? format_decode+0x5a3/0xe30
[ 346.523684][ T6051] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 346.523708][ T6051] ? snprintf+0xda/0x120
[ 346.523725][ T6051] ? __pfx_snprintf+0x10/0x10
[ 346.523741][ T6051] ? tomoyo_check_acl+0x386/0x400
[ 346.523759][ T6051] tomoyo_path_number_perm+0x438/0x5a0
[ 346.523773][ T6051] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 346.523788][ T6051] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 346.523814][ T6051] ? _raw_spin_lock_irq+0xae/0xf0
[ 346.523850][ T6051] ? __pfx_ptrace_notify+0x10/0x10
[ 346.523874][ T6051] security_file_ioctl+0xcb/0x2d0
[ 346.523889][ T6051] __se_sys_ioctl+0x47/0x170
[ 346.523904][ T6051] do_syscall_64+0xfa/0x3b0
[ 346.523920][ T6051] ? lockdep_hardirqs_on+0x9c/0x150
[ 346.523937][ T6051] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 346.523949][ T6051] ? clear_bhb_loop+0x60/0xb0
[ 346.523964][ T6051] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 346.523976][ T6051] RIP: 0033:0x7fea15a51869
[ 346.523989][ T6051] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 346.524001][ T6051] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6051] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6051, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6052 attached
, child_tidptr=0x555576720650) = 6052
[pid 6052] set_robust_list(0x555576720660, 24) = 0
[pid 6052] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6052] setpgid(0, 0) = 0
[pid 6052] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6052] write(3, "1000", 4) = 4
[pid 6052] close(3) = 0
executing program
[pid 6052] write(1, "executing program\n", 18) = 18
[ 346.524016][ T6051] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 346.524026][ T6051] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 346.524034][ T6051] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 346.524042][ T6051] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 346.524050][ T6051] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 346.524068][ T6051]
[pid 6052] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6052] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6052] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6052] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6052] write(6, "4", 1) = 1
[pid 6052] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6052] exit_group(0) = ?
[ 346.886762][ T6052] FAULT_INJECTION: forcing a failure.
[ 346.886762][ T6052] name failslab, interval 1, probability 0, space 0, times 0
[ 346.900159][ T6052] CPU: 0 UID: 0 PID: 6052 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 346.900181][ T6052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 346.900189][ T6052] Call Trace:
[ 346.900195][ T6052]
[ 346.900201][ T6052] dump_stack_lvl+0x189/0x250
[ 346.900221][ T6052] ? __pfx____ratelimit+0x10/0x10
[ 346.900239][ T6052] ? __pfx_dump_stack_lvl+0x10/0x10
[ 346.900252][ T6052] ? __pfx__printk+0x10/0x10
[ 346.900273][ T6052] ? __pfx___might_resched+0x10/0x10
[ 346.900290][ T6052] ? fs_reclaim_acquire+0x7d/0x100
[ 346.900311][ T6052] should_fail_ex+0x414/0x560
[ 346.900329][ T6052] should_failslab+0xa8/0x100
[ 346.900346][ T6052] __kmalloc_noprof+0xcb/0x4f0
[ 346.900361][ T6052] ? tomoyo_init_log+0x1a6e/0x1f70
[ 346.900381][ T6052] tomoyo_init_log+0x1a6e/0x1f70
[ 346.900412][ T6052] ? __pfx_tomoyo_init_log+0x10/0x10
[ 346.900428][ T6052] ? tomoyo_profile+0x11/0x50
[ 346.900445][ T6052] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 346.900462][ T6052] tomoyo_supervisor+0x340/0x1480
[ 346.900481][ T6052] ? format_decode+0x5a3/0xe30
[ 346.900500][ T6052] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 346.900524][ T6052] ? snprintf+0xda/0x120
[ 346.900541][ T6052] ? __pfx_snprintf+0x10/0x10
[ 346.900556][ T6052] ? tomoyo_check_acl+0x386/0x400
[ 346.900574][ T6052] tomoyo_path_number_perm+0x438/0x5a0
[ 346.900588][ T6052] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 346.900604][ T6052] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 346.900623][ T6052] ? _raw_spin_lock_irq+0xae/0xf0
[ 346.900658][ T6052] ? __pfx_ptrace_notify+0x10/0x10
[ 346.900683][ T6052] security_file_ioctl+0xcb/0x2d0
[ 346.900698][ T6052] __se_sys_ioctl+0x47/0x170
[ 346.900714][ T6052] do_syscall_64+0xfa/0x3b0
[ 346.900731][ T6052] ? lockdep_hardirqs_on+0x9c/0x150
[ 346.900747][ T6052] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 346.900760][ T6052] ? clear_bhb_loop+0x60/0xb0
[ 346.900775][ T6052] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 346.900787][ T6052] RIP: 0033:0x7fea15a51869
[ 346.900800][ T6052] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 346.900811][ T6052] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 346.900827][ T6052] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6052] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6052, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6053 attached
, child_tidptr=0x555576720650) = 6053
[pid 6053] set_robust_list(0x555576720660, 24) = 0
[pid 6053] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6053] setpgid(0, 0) = 0
[pid 6053] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6053] write(3, "1000", 4) = 4
[pid 6053] close(3) = 0
[pid 6053] write(1, "executing program\n", 18executing program
) = 18
[pid 6053] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6053] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6053] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6053] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6053] write(6, "4", 1) = 1
[ 346.900837][ T6052] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 346.900845][ T6052] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 346.900853][ T6052] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 346.900861][ T6052] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 346.900879][ T6052]
[pid 6053] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6053] exit_group(0) = ?
[pid 6053] +++ exited with 0 +++
[ 347.209686][ T6053] FAULT_INJECTION: forcing a failure.
[ 347.209686][ T6053] name failslab, interval 1, probability 0, space 0, times 0
[ 347.223208][ T6053] CPU: 1 UID: 0 PID: 6053 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 347.223239][ T6053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 347.223251][ T6053] Call Trace:
[ 347.223259][ T6053]
[ 347.223265][ T6053] dump_stack_lvl+0x189/0x250
[ 347.223284][ T6053] ? __pfx____ratelimit+0x10/0x10
[ 347.223302][ T6053] ? __pfx_dump_stack_lvl+0x10/0x10
[ 347.223316][ T6053] ? __pfx__printk+0x10/0x10
[ 347.223335][ T6053] ? __pfx___might_resched+0x10/0x10
[ 347.223354][ T6053] ? fs_reclaim_acquire+0x7d/0x100
[ 347.223374][ T6053] should_fail_ex+0x414/0x560
[ 347.223391][ T6053] should_failslab+0xa8/0x100
[ 347.223409][ T6053] __kmalloc_noprof+0xcb/0x4f0
[ 347.223423][ T6053] ? tomoyo_init_log+0x1a6e/0x1f70
[ 347.223444][ T6053] tomoyo_init_log+0x1a6e/0x1f70
[ 347.223474][ T6053] ? __pfx_tomoyo_init_log+0x10/0x10
[ 347.223491][ T6053] ? tomoyo_profile+0x11/0x50
[ 347.223507][ T6053] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 347.223525][ T6053] tomoyo_supervisor+0x340/0x1480
[ 347.223544][ T6053] ? format_decode+0x5a3/0xe30
[ 347.223562][ T6053] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 347.223586][ T6053] ? snprintf+0xda/0x120
[ 347.223603][ T6053] ? __pfx_snprintf+0x10/0x10
[ 347.223619][ T6053] ? tomoyo_check_acl+0x386/0x400
[ 347.223637][ T6053] tomoyo_path_number_perm+0x438/0x5a0
[ 347.223651][ T6053] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 347.223666][ T6053] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 347.223685][ T6053] ? _raw_spin_lock_irq+0xae/0xf0
[ 347.223720][ T6053] ? __pfx_ptrace_notify+0x10/0x10
[ 347.223744][ T6053] security_file_ioctl+0xcb/0x2d0
[ 347.223759][ T6053] __se_sys_ioctl+0x47/0x170
[ 347.223776][ T6053] do_syscall_64+0xfa/0x3b0
[ 347.223792][ T6053] ? lockdep_hardirqs_on+0x9c/0x150
[ 347.223808][ T6053] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 347.223821][ T6053] ? clear_bhb_loop+0x60/0xb0
[ 347.223836][ T6053] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 347.223848][ T6053] RIP: 0033:0x7fea15a51869
[ 347.223860][ T6053] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 347.223872][ T6053] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6053, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6054 attached
, child_tidptr=0x555576720650) = 6054
[pid 6054] set_robust_list(0x555576720660, 24) = 0
[pid 6054] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6054] setpgid(0, 0) = 0
[pid 6054] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6054] write(3, "1000", 4) = 4
[pid 6054] close(3) = 0
executing program
[pid 6054] write(1, "executing program\n", 18) = 18
[pid 6054] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6054] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6054] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6054] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[ 347.223887][ T6053] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 347.223897][ T6053] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 347.223905][ T6053] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 347.223913][ T6053] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 347.223921][ T6053] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 347.223939][ T6053]
[pid 6054] write(6, "4", 1) = 1
[ 347.549016][ T6054] FAULT_INJECTION: forcing a failure.
[ 347.549016][ T6054] name failslab, interval 1, probability 0, space 0, times 0
[ 347.562386][ T6054] CPU: 0 UID: 0 PID: 6054 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 347.562415][ T6054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 347.562427][ T6054] Call Trace:
[ 347.562438][ T6054]
[ 347.562447][ T6054] dump_stack_lvl+0x189/0x250
[ 347.562476][ T6054] ? __pfx____ratelimit+0x10/0x10
[ 347.562506][ T6054] ? __pfx_dump_stack_lvl+0x10/0x10
[ 347.562528][ T6054] ? __pfx__printk+0x10/0x10
[ 347.562561][ T6054] ? __pfx___might_resched+0x10/0x10
[ 347.562589][ T6054] ? fs_reclaim_acquire+0x7d/0x100
[ 347.562616][ T6054] should_fail_ex+0x414/0x560
[ 347.562634][ T6054] should_failslab+0xa8/0x100
[ 347.562652][ T6054] __kmalloc_noprof+0xcb/0x4f0
[ 347.562666][ T6054] ? tomoyo_init_log+0x1a6e/0x1f70
[ 347.562687][ T6054] tomoyo_init_log+0x1a6e/0x1f70
[ 347.562718][ T6054] ? __pfx_tomoyo_init_log+0x10/0x10
[ 347.562735][ T6054] ? tomoyo_profile+0x11/0x50
[ 347.562751][ T6054] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 347.562769][ T6054] tomoyo_supervisor+0x340/0x1480
[ 347.562788][ T6054] ? format_decode+0x5a3/0xe30
[ 347.562807][ T6054] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 347.562831][ T6054] ? snprintf+0xda/0x120
[ 347.562941][ T6054] ? __pfx_snprintf+0x10/0x10
[ 347.562962][ T6054] ? tomoyo_check_acl+0x386/0x400
[ 347.562982][ T6054] tomoyo_path_number_perm+0x438/0x5a0
[ 347.562998][ T6054] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 347.563014][ T6054] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 347.563045][ T6054] ? _raw_spin_lock_irq+0xae/0xf0
[ 347.563082][ T6054] ? __pfx_ptrace_notify+0x10/0x10
[ 347.563130][ T6054] security_file_ioctl+0xcb/0x2d0
[ 347.563157][ T6054] __se_sys_ioctl+0x47/0x170
[ 347.563184][ T6054] do_syscall_64+0xfa/0x3b0
[ 347.563211][ T6054] ? lockdep_hardirqs_on+0x9c/0x150
[ 347.563237][ T6054] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 347.563257][ T6054] ? clear_bhb_loop+0x60/0xb0
[ 347.563280][ T6054] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 347.563299][ T6054] RIP: 0033:0x7fea15a51869
[ 347.563320][ T6054] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 347.563339][ T6054] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 347.563363][ T6054] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6054] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6054] exit_group(0) = ?
[pid 6054] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6054, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6055 attached
, child_tidptr=0x555576720650) = 6055
[pid 6055] set_robust_list(0x555576720660, 24) = 0
[pid 6055] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6055] setpgid(0, 0) = 0
[pid 6055] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[ 347.563379][ T6054] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 347.563391][ T6054] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 347.563404][ T6054] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 347.563417][ T6054] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 347.563448][ T6054]
[pid 6055] write(3, "1000", 4) = 4
[pid 6055] close(3) = 0
executing program
[pid 6055] write(1, "executing program\n", 18) = 18
[pid 6055] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6055] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6055] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6055] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6055] write(6, "4", 1) = 1
[pid 6055] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6055] exit_group(0) = ?
[pid 6055] +++ exited with 0 +++
[ 347.953425][ T6055] FAULT_INJECTION: forcing a failure.
[ 347.953425][ T6055] name failslab, interval 1, probability 0, space 0, times 0
[ 347.966510][ T6055] CPU: 1 UID: 0 PID: 6055 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 347.966545][ T6055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 347.966558][ T6055] Call Trace:
[ 347.966564][ T6055]
[ 347.966570][ T6055] dump_stack_lvl+0x189/0x250
[ 347.966590][ T6055] ? __pfx____ratelimit+0x10/0x10
[ 347.966608][ T6055] ? __pfx_dump_stack_lvl+0x10/0x10
[ 347.966621][ T6055] ? __pfx__printk+0x10/0x10
[ 347.966641][ T6055] ? __pfx___might_resched+0x10/0x10
[ 347.966659][ T6055] ? fs_reclaim_acquire+0x7d/0x100
[ 347.966680][ T6055] should_fail_ex+0x414/0x560
[ 347.966697][ T6055] should_failslab+0xa8/0x100
[ 347.966714][ T6055] __kmalloc_noprof+0xcb/0x4f0
[ 347.966728][ T6055] ? tomoyo_init_log+0x1a6e/0x1f70
[ 347.966749][ T6055] tomoyo_init_log+0x1a6e/0x1f70
[ 347.966786][ T6055] ? __pfx_tomoyo_init_log+0x10/0x10
[ 347.966803][ T6055] ? tomoyo_profile+0x11/0x50
[ 347.966820][ T6055] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 347.966838][ T6055] tomoyo_supervisor+0x340/0x1480
[ 347.966856][ T6055] ? format_decode+0x5a3/0xe30
[ 347.966875][ T6055] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 347.966899][ T6055] ? snprintf+0xda/0x120
[ 347.966916][ T6055] ? __pfx_snprintf+0x10/0x10
[ 347.966931][ T6055] ? tomoyo_check_acl+0x386/0x400
[ 347.966950][ T6055] tomoyo_path_number_perm+0x438/0x5a0
[ 347.966964][ T6055] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 347.966979][ T6055] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 347.966998][ T6055] ? _raw_spin_lock_irq+0xae/0xf0
[ 347.967033][ T6055] ? __pfx_ptrace_notify+0x10/0x10
[ 347.967058][ T6055] security_file_ioctl+0xcb/0x2d0
[ 347.967073][ T6055] __se_sys_ioctl+0x47/0x170
[ 347.967089][ T6055] do_syscall_64+0xfa/0x3b0
[ 347.967106][ T6055] ? lockdep_hardirqs_on+0x9c/0x150
[ 347.967122][ T6055] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 347.967135][ T6055] ? clear_bhb_loop+0x60/0xb0
[ 347.967150][ T6055] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 347.967162][ T6055] RIP: 0033:0x7fea15a51869
[ 347.967175][ T6055] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 347.967186][ T6055] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6055, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6056 attached
, child_tidptr=0x555576720650) = 6056
[pid 6056] set_robust_list(0x555576720660, 24) = 0
[pid 6056] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 347.967201][ T6055] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 347.967211][ T6055] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 347.967219][ T6055] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 347.967227][ T6055] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 347.967234][ T6055] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 347.967253][ T6055]
[pid 6056] setpgid(0, 0) = 0
[pid 6056] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6056] write(3, "1000", 4) = 4
[pid 6056] close(3) = 0
executing program
[pid 6056] write(1, "executing program\n", 18) = 18
[pid 6056] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6056] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6056] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6056] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6056] write(6, "4", 1) = 1
[pid 6056] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6056] exit_group(0) = ?
[pid 6056] +++ exited with 0 +++
[ 348.331107][ T6056] FAULT_INJECTION: forcing a failure.
[ 348.331107][ T6056] name failslab, interval 1, probability 0, space 0, times 0
[ 348.344197][ T6056] CPU: 0 UID: 0 PID: 6056 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 348.344218][ T6056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 348.344226][ T6056] Call Trace:
[ 348.344232][ T6056]
[ 348.344238][ T6056] dump_stack_lvl+0x189/0x250
[ 348.344257][ T6056] ? __pfx____ratelimit+0x10/0x10
[ 348.344276][ T6056] ? __pfx_dump_stack_lvl+0x10/0x10
[ 348.344290][ T6056] ? __pfx__printk+0x10/0x10
[ 348.344309][ T6056] ? __pfx___might_resched+0x10/0x10
[ 348.344327][ T6056] ? fs_reclaim_acquire+0x7d/0x100
[ 348.344348][ T6056] should_fail_ex+0x414/0x560
[ 348.344365][ T6056] should_failslab+0xa8/0x100
[ 348.344382][ T6056] __kmalloc_noprof+0xcb/0x4f0
[ 348.344397][ T6056] ? tomoyo_init_log+0x1a6e/0x1f70
[ 348.344417][ T6056] tomoyo_init_log+0x1a6e/0x1f70
[ 348.344447][ T6056] ? __pfx_tomoyo_init_log+0x10/0x10
[ 348.344464][ T6056] ? tomoyo_profile+0x11/0x50
[ 348.344480][ T6056] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 348.344498][ T6056] tomoyo_supervisor+0x340/0x1480
[ 348.344516][ T6056] ? format_decode+0x5a3/0xe30
[ 348.344535][ T6056] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 348.344559][ T6056] ? snprintf+0xda/0x120
[ 348.344576][ T6056] ? __pfx_snprintf+0x10/0x10
[ 348.344591][ T6056] ? tomoyo_check_acl+0x386/0x400
[ 348.344610][ T6056] tomoyo_path_number_perm+0x438/0x5a0
[ 348.344623][ T6056] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 348.344639][ T6056] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 348.344658][ T6056] ? _raw_spin_lock_irq+0xae/0xf0
[ 348.344692][ T6056] ? __pfx_ptrace_notify+0x10/0x10
[ 348.344717][ T6056] security_file_ioctl+0xcb/0x2d0
[ 348.344732][ T6056] __se_sys_ioctl+0x47/0x170
[ 348.344747][ T6056] do_syscall_64+0xfa/0x3b0
[ 348.344764][ T6056] ? lockdep_hardirqs_on+0x9c/0x150
[ 348.344780][ T6056] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 348.344801][ T6056] ? clear_bhb_loop+0x60/0xb0
[ 348.344816][ T6056] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 348.344828][ T6056] RIP: 0033:0x7fea15a51869
[ 348.344841][ T6056] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 348.344853][ T6056] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6056, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6057 attached
, child_tidptr=0x555576720650) = 6057
[pid 6057] set_robust_list(0x555576720660, 24) = 0
[ 348.344868][ T6056] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 348.344878][ T6056] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 348.344886][ T6056] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 348.344894][ T6056] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 348.344902][ T6056] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 348.344920][ T6056]
[pid 6057] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6057] setpgid(0, 0) = 0
[pid 6057] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6057] write(3, "1000", 4) = 4
[pid 6057] close(3) = 0
[pid 6057] write(1, "executing program\n", 18executing program
) = 18
[pid 6057] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6057] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6057] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6057] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6057] write(6, "4", 1) = 1
[pid 6057] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6057] exit_group(0) = ?
[ 348.758356][ T6057] FAULT_INJECTION: forcing a failure.
[ 348.758356][ T6057] name failslab, interval 1, probability 0, space 0, times 0
[ 348.771152][ T6057] CPU: 1 UID: 0 PID: 6057 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 348.771180][ T6057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 348.771191][ T6057] Call Trace:
[ 348.771200][ T6057]
[ 348.771209][ T6057] dump_stack_lvl+0x189/0x250
[ 348.771237][ T6057] ? __pfx____ratelimit+0x10/0x10
[ 348.771264][ T6057] ? __pfx_dump_stack_lvl+0x10/0x10
[ 348.771286][ T6057] ? __pfx__printk+0x10/0x10
[ 348.771321][ T6057] ? __pfx___might_resched+0x10/0x10
[ 348.771349][ T6057] ? fs_reclaim_acquire+0x7d/0x100
[ 348.771385][ T6057] should_fail_ex+0x414/0x560
[ 348.771414][ T6057] should_failslab+0xa8/0x100
[ 348.771443][ T6057] __kmalloc_noprof+0xcb/0x4f0
[ 348.771467][ T6057] ? tomoyo_init_log+0x1a6e/0x1f70
[ 348.771500][ T6057] tomoyo_init_log+0x1a6e/0x1f70
[ 348.771553][ T6057] ? __pfx_tomoyo_init_log+0x10/0x10
[ 348.771579][ T6057] ? tomoyo_profile+0x11/0x50
[ 348.771597][ T6057] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 348.771615][ T6057] tomoyo_supervisor+0x340/0x1480
[ 348.771634][ T6057] ? format_decode+0x5a3/0xe30
[ 348.771652][ T6057] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 348.771676][ T6057] ? snprintf+0xda/0x120
[ 348.771693][ T6057] ? __pfx_snprintf+0x10/0x10
[ 348.771708][ T6057] ? tomoyo_check_acl+0x386/0x400
[ 348.771726][ T6057] tomoyo_path_number_perm+0x438/0x5a0
[ 348.771740][ T6057] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 348.771755][ T6057] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 348.771774][ T6057] ? _raw_spin_lock_irq+0xae/0xf0
[ 348.771811][ T6057] ? __pfx_ptrace_notify+0x10/0x10
[ 348.771839][ T6057] security_file_ioctl+0xcb/0x2d0
[ 348.771854][ T6057] __se_sys_ioctl+0x47/0x170
[ 348.771870][ T6057] do_syscall_64+0xfa/0x3b0
[ 348.771886][ T6057] ? lockdep_hardirqs_on+0x9c/0x150
[ 348.771902][ T6057] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 348.771915][ T6057] ? clear_bhb_loop+0x60/0xb0
[ 348.771930][ T6057] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 348.771942][ T6057] RIP: 0033:0x7fea15a51869
[ 348.771955][ T6057] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 348.771966][ T6057] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 348.771982][ T6057] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6057] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6057, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6058 attached
, child_tidptr=0x555576720650) = 6058
[pid 6058] set_robust_list(0x555576720660, 24) = 0
[pid 6058] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6058] setpgid(0, 0) = 0
[pid 6058] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6058] write(3, "1000", 4) = 4
[pid 6058] close(3) = 0
[pid 6058] write(1, "executing program\n", 18) = 18
executing program
[pid 6058] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6058] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[ 348.771991][ T6057] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 348.771999][ T6057] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 348.772008][ T6057] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 348.772016][ T6057] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 348.772034][ T6057]
[pid 6058] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6058] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6058] write(6, "4", 1) = 1
[pid 6058] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 349.108328][ T6058] FAULT_INJECTION: forcing a failure.
[ 349.108328][ T6058] name failslab, interval 1, probability 0, space 0, times 0
[ 349.121466][ T6058] CPU: 0 UID: 0 PID: 6058 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 349.121488][ T6058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 349.121496][ T6058] Call Trace:
[ 349.121502][ T6058]
[ 349.121509][ T6058] dump_stack_lvl+0x189/0x250
[ 349.121529][ T6058] ? __pfx____ratelimit+0x10/0x10
[ 349.121547][ T6058] ? __pfx_dump_stack_lvl+0x10/0x10
[ 349.121561][ T6058] ? __pfx__printk+0x10/0x10
[ 349.121581][ T6058] ? __pfx___might_resched+0x10/0x10
[ 349.121598][ T6058] ? fs_reclaim_acquire+0x7d/0x100
[ 349.121619][ T6058] should_fail_ex+0x414/0x560
[ 349.121637][ T6058] should_failslab+0xa8/0x100
[ 349.121654][ T6058] __kmalloc_noprof+0xcb/0x4f0
[ 349.121669][ T6058] ? tomoyo_init_log+0x1a6e/0x1f70
[ 349.121690][ T6058] tomoyo_init_log+0x1a6e/0x1f70
[ 349.121721][ T6058] ? __pfx_tomoyo_init_log+0x10/0x10
[ 349.121738][ T6058] ? tomoyo_profile+0x11/0x50
[ 349.121754][ T6058] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 349.121772][ T6058] tomoyo_supervisor+0x340/0x1480
[ 349.121791][ T6058] ? format_decode+0x5a3/0xe30
[ 349.121809][ T6058] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 349.121833][ T6058] ? snprintf+0xda/0x120
[ 349.121851][ T6058] ? __pfx_snprintf+0x10/0x10
[ 349.121866][ T6058] ? tomoyo_check_acl+0x386/0x400
[ 349.121884][ T6058] tomoyo_path_number_perm+0x438/0x5a0
[ 349.121898][ T6058] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 349.121913][ T6058] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 349.121932][ T6058] ? _raw_spin_lock_irq+0xae/0xf0
[ 349.121967][ T6058] ? __pfx_ptrace_notify+0x10/0x10
[ 349.121992][ T6058] security_file_ioctl+0xcb/0x2d0
[ 349.122007][ T6058] __se_sys_ioctl+0x47/0x170
[ 349.122023][ T6058] do_syscall_64+0xfa/0x3b0
[ 349.122040][ T6058] ? lockdep_hardirqs_on+0x9c/0x150
[ 349.122056][ T6058] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 349.122069][ T6058] ? clear_bhb_loop+0x60/0xb0
[ 349.122094][ T6058] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 349.122107][ T6058] RIP: 0033:0x7fea15a51869
[ 349.122120][ T6058] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 349.122131][ T6058] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 349.122146][ T6058] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6058] exit_group(0) = ?
[pid 6058] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6058, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6059 attached
, child_tidptr=0x555576720650) = 6059
[pid 6059] set_robust_list(0x555576720660, 24) = 0
[pid 6059] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6059] setpgid(0, 0) = 0
[ 349.122156][ T6058] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 349.122164][ T6058] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 349.122173][ T6058] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 349.122180][ T6058] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 349.122199][ T6058]
[pid 6059] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6059] write(3, "1000", 4) = 4
[pid 6059] close(3) = 0
[pid 6059] write(1, "executing program\n", 18executing program
) = 18
[pid 6059] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6059] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6059] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6059] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6059] write(6, "4", 1) = 1
[pid 6059] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6059] exit_group(0) = ?
[pid 6059] +++ exited with 0 +++
[ 349.525276][ T6059] FAULT_INJECTION: forcing a failure.
[ 349.525276][ T6059] name failslab, interval 1, probability 0, space 0, times 0
[ 349.538003][ T6059] CPU: 1 UID: 0 PID: 6059 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 349.538026][ T6059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 349.538035][ T6059] Call Trace:
[ 349.538043][ T6059]
[ 349.538050][ T6059] dump_stack_lvl+0x189/0x250
[ 349.538069][ T6059] ? __pfx____ratelimit+0x10/0x10
[ 349.538094][ T6059] ? __pfx_dump_stack_lvl+0x10/0x10
[ 349.538108][ T6059] ? __pfx__printk+0x10/0x10
[ 349.538132][ T6059] ? __pfx___might_resched+0x10/0x10
[ 349.538150][ T6059] ? fs_reclaim_acquire+0x7d/0x100
[ 349.538170][ T6059] should_fail_ex+0x414/0x560
[ 349.538188][ T6059] should_failslab+0xa8/0x100
[ 349.538206][ T6059] __kmalloc_noprof+0xcb/0x4f0
[ 349.538220][ T6059] ? tomoyo_init_log+0x1a6e/0x1f70
[ 349.538240][ T6059] tomoyo_init_log+0x1a6e/0x1f70
[ 349.538271][ T6059] ? __pfx_tomoyo_init_log+0x10/0x10
[ 349.538288][ T6059] ? tomoyo_profile+0x11/0x50
[ 349.538305][ T6059] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 349.538323][ T6059] tomoyo_supervisor+0x340/0x1480
[ 349.538357][ T6059] ? format_decode+0x5a3/0xe30
[ 349.538375][ T6059] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 349.538399][ T6059] ? snprintf+0xda/0x120
[ 349.538416][ T6059] ? __pfx_snprintf+0x10/0x10
[ 349.538431][ T6059] ? tomoyo_check_acl+0x386/0x400
[ 349.538450][ T6059] tomoyo_path_number_perm+0x438/0x5a0
[ 349.538464][ T6059] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 349.538479][ T6059] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 349.538498][ T6059] ? _raw_spin_lock_irq+0xae/0xf0
[ 349.538533][ T6059] ? __pfx_ptrace_notify+0x10/0x10
[ 349.538557][ T6059] security_file_ioctl+0xcb/0x2d0
[ 349.538573][ T6059] __se_sys_ioctl+0x47/0x170
[ 349.538589][ T6059] do_syscall_64+0xfa/0x3b0
[ 349.538606][ T6059] ? lockdep_hardirqs_on+0x9c/0x150
[ 349.538622][ T6059] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 349.538635][ T6059] ? clear_bhb_loop+0x60/0xb0
[ 349.538650][ T6059] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 349.538662][ T6059] RIP: 0033:0x7fea15a51869
[ 349.538676][ T6059] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 349.538687][ T6059] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 349.538702][ T6059] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6059, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6060 attached
, child_tidptr=0x555576720650) = 6060
[pid 6060] set_robust_list(0x555576720660, 24) = 0
[pid 6060] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6060] setpgid(0, 0) = 0
[pid 6060] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6060] write(3, "1000", 4) = 4
[pid 6060] close(3executing program
) = 0
[pid 6060] write(1, "executing program\n", 18) = 18
[pid 6060] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6060] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6060] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6060] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6060] write(6, "4", 1) = 1
[ 349.538712][ T6059] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 349.538720][ T6059] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 349.538728][ T6059] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 349.538736][ T6059] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 349.538754][ T6059]
[ 349.845433][ T6060] FAULT_INJECTION: forcing a failure.
[ 349.845433][ T6060] name failslab, interval 1, probability 0, space 0, times 0
[ 349.858317][ T6060] CPU: 0 UID: 0 PID: 6060 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 349.858345][ T6060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 349.858354][ T6060] Call Trace:
[ 349.858360][ T6060]
[ 349.858366][ T6060] dump_stack_lvl+0x189/0x250
[ 349.858385][ T6060] ? __pfx____ratelimit+0x10/0x10
[ 349.858404][ T6060] ? __pfx_dump_stack_lvl+0x10/0x10
[ 349.858418][ T6060] ? __pfx__printk+0x10/0x10
[ 349.858437][ T6060] ? __pfx___might_resched+0x10/0x10
[ 349.858455][ T6060] ? fs_reclaim_acquire+0x7d/0x100
[ 349.858476][ T6060] should_fail_ex+0x414/0x560
[ 349.858494][ T6060] should_failslab+0xa8/0x100
[ 349.858511][ T6060] __kmalloc_noprof+0xcb/0x4f0
[ 349.858525][ T6060] ? tomoyo_init_log+0x1a6e/0x1f70
[ 349.858545][ T6060] tomoyo_init_log+0x1a6e/0x1f70
[ 349.858575][ T6060] ? __pfx_tomoyo_init_log+0x10/0x10
[ 349.858592][ T6060] ? tomoyo_profile+0x11/0x50
[ 349.858608][ T6060] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 349.858626][ T6060] tomoyo_supervisor+0x340/0x1480
[ 349.858645][ T6060] ? format_decode+0x5a3/0xe30
[ 349.858663][ T6060] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 349.858686][ T6060] ? snprintf+0xda/0x120
[ 349.858704][ T6060] ? __pfx_snprintf+0x10/0x10
[ 349.858719][ T6060] ? tomoyo_check_acl+0x386/0x400
[ 349.858737][ T6060] tomoyo_path_number_perm+0x438/0x5a0
[ 349.858751][ T6060] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 349.858766][ T6060] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 349.858785][ T6060] ? _raw_spin_lock_irq+0xae/0xf0
[ 349.858828][ T6060] ? __pfx_ptrace_notify+0x10/0x10
[ 349.858853][ T6060] security_file_ioctl+0xcb/0x2d0
[ 349.858868][ T6060] __se_sys_ioctl+0x47/0x170
[ 349.858884][ T6060] do_syscall_64+0xfa/0x3b0
[ 349.858901][ T6060] ? lockdep_hardirqs_on+0x9c/0x150
[ 349.858917][ T6060] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 349.858929][ T6060] ? clear_bhb_loop+0x60/0xb0
[ 349.858944][ T6060] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 349.858956][ T6060] RIP: 0033:0x7fea15a51869
[ 349.858969][ T6060] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 349.858981][ T6060] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 349.858997][ T6060] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6060] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6060] exit_group(0) = ?
[pid 6060] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6060, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6061 attached
, child_tidptr=0x555576720650) = 6061
[pid 6061] set_robust_list(0x555576720660, 24) = 0
[pid 6061] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6061] setpgid(0, 0) = 0
[pid 6061] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6061] write(3, "1000", 4) = 4
[pid 6061] close(3) = 0
[pid 6061] write(1, "executing program\n", 18executing program
) = 18
[pid 6061] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[ 349.859006][ T6060] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 349.859014][ T6060] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 349.859023][ T6060] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 349.859099][ T6060] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 349.859129][ T6060]
[pid 6061] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6061] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6061] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6061] write(6, "4", 1) = 1
[pid 6061] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6061] exit_group(0) = ?
[pid 6061] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6061, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
[ 350.214517][ T6061] FAULT_INJECTION: forcing a failure.
[ 350.214517][ T6061] name failslab, interval 1, probability 0, space 0, times 0
[ 350.227285][ T6061] CPU: 1 UID: 0 PID: 6061 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 350.227314][ T6061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 350.227326][ T6061] Call Trace:
[ 350.227338][ T6061]
[ 350.227348][ T6061] dump_stack_lvl+0x189/0x250
[ 350.227376][ T6061] ? __pfx____ratelimit+0x10/0x10
[ 350.227404][ T6061] ? __pfx_dump_stack_lvl+0x10/0x10
[ 350.227425][ T6061] ? __pfx__printk+0x10/0x10
[ 350.227455][ T6061] ? __pfx___might_resched+0x10/0x10
[ 350.227483][ T6061] ? fs_reclaim_acquire+0x7d/0x100
[ 350.227517][ T6061] should_fail_ex+0x414/0x560
[ 350.227547][ T6061] should_failslab+0xa8/0x100
[ 350.227576][ T6061] __kmalloc_noprof+0xcb/0x4f0
[ 350.227601][ T6061] ? tomoyo_init_log+0x1a6e/0x1f70
[ 350.227635][ T6061] tomoyo_init_log+0x1a6e/0x1f70
[ 350.227690][ T6061] ? __pfx_tomoyo_init_log+0x10/0x10
[ 350.227718][ T6061] ? tomoyo_profile+0x11/0x50
[ 350.227745][ T6061] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 350.227772][ T6061] tomoyo_supervisor+0x340/0x1480
[ 350.227801][ T6061] ? format_decode+0x5a3/0xe30
[ 350.227826][ T6061] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 350.227850][ T6061] ? snprintf+0xda/0x120
[ 350.227868][ T6061] ? __pfx_snprintf+0x10/0x10
[ 350.227883][ T6061] ? tomoyo_check_acl+0x386/0x400
[ 350.227902][ T6061] tomoyo_path_number_perm+0x438/0x5a0
[ 350.227916][ T6061] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 350.227931][ T6061] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 350.227950][ T6061] ? _raw_spin_lock_irq+0xae/0xf0
[ 350.227986][ T6061] ? __pfx_ptrace_notify+0x10/0x10
[ 350.228020][ T6061] security_file_ioctl+0xcb/0x2d0
[ 350.228036][ T6061] __se_sys_ioctl+0x47/0x170
[ 350.228052][ T6061] do_syscall_64+0xfa/0x3b0
[ 350.228069][ T6061] ? lockdep_hardirqs_on+0x9c/0x150
[ 350.228085][ T6061] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 350.228098][ T6061] ? clear_bhb_loop+0x60/0xb0
[ 350.228113][ T6061] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 350.228126][ T6061] RIP: 0033:0x7fea15a51869
[ 350.228139][ T6061] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 350.228151][ T6061] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 350.228166][ T6061] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6062 attached
, child_tidptr=0x555576720650) = 6062
[pid 6062] set_robust_list(0x555576720660, 24) = 0
[pid 6062] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6062] setpgid(0, 0) = 0
[pid 6062] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6062] write(3, "1000", 4) = 4
[pid 6062] close(3) = 0
[pid 6062] write(1, "executing program\n", 18executing program
) = 18
[pid 6062] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6062] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[ 350.228176][ T6061] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 350.228184][ T6061] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 350.228192][ T6061] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 350.228200][ T6061] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 350.228219][ T6061]
[pid 6062] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6062] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6062] write(6, "4", 1) = 1
[pid 6062] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6062] exit_group(0) = ?
[ 350.556711][ T6062] FAULT_INJECTION: forcing a failure.
[ 350.556711][ T6062] name failslab, interval 1, probability 0, space 0, times 0
[ 350.569590][ T6062] CPU: 0 UID: 0 PID: 6062 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 350.569618][ T6062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 350.569630][ T6062] Call Trace:
[ 350.569641][ T6062]
[ 350.569651][ T6062] dump_stack_lvl+0x189/0x250
[ 350.569678][ T6062] ? __pfx____ratelimit+0x10/0x10
[ 350.569708][ T6062] ? __pfx_dump_stack_lvl+0x10/0x10
[ 350.569731][ T6062] ? __pfx__printk+0x10/0x10
[ 350.569765][ T6062] ? __pfx___might_resched+0x10/0x10
[ 350.569794][ T6062] ? fs_reclaim_acquire+0x7d/0x100
[ 350.569827][ T6062] should_fail_ex+0x414/0x560
[ 350.569856][ T6062] should_failslab+0xa8/0x100
[ 350.569886][ T6062] __kmalloc_noprof+0xcb/0x4f0
[ 350.569910][ T6062] ? tomoyo_init_log+0x1a6e/0x1f70
[ 350.569945][ T6062] tomoyo_init_log+0x1a6e/0x1f70
[ 350.569993][ T6062] ? __pfx_tomoyo_init_log+0x10/0x10
[ 350.570010][ T6062] ? tomoyo_profile+0x11/0x50
[ 350.570027][ T6062] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 350.570060][ T6062] tomoyo_supervisor+0x340/0x1480
[ 350.570079][ T6062] ? format_decode+0x5a3/0xe30
[ 350.570098][ T6062] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 350.570121][ T6062] ? snprintf+0xda/0x120
[ 350.570139][ T6062] ? __pfx_snprintf+0x10/0x10
[ 350.570154][ T6062] ? tomoyo_check_acl+0x386/0x400
[ 350.570172][ T6062] tomoyo_path_number_perm+0x438/0x5a0
[ 350.570186][ T6062] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 350.570202][ T6062] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 350.570221][ T6062] ? _raw_spin_lock_irq+0xae/0xf0
[ 350.570256][ T6062] ? __pfx_ptrace_notify+0x10/0x10
[ 350.570281][ T6062] security_file_ioctl+0xcb/0x2d0
[ 350.570296][ T6062] __se_sys_ioctl+0x47/0x170
[ 350.570312][ T6062] do_syscall_64+0xfa/0x3b0
[ 350.570329][ T6062] ? lockdep_hardirqs_on+0x9c/0x150
[ 350.570345][ T6062] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 350.570358][ T6062] ? clear_bhb_loop+0x60/0xb0
[ 350.570373][ T6062] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 350.570385][ T6062] RIP: 0033:0x7fea15a51869
[ 350.570398][ T6062] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 350.570409][ T6062] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 350.570424][ T6062] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6062] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6062, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6063 attached
, child_tidptr=0x555576720650) = 6063
[pid 6063] set_robust_list(0x555576720660, 24) = 0
[pid 6063] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6063] setpgid(0, 0) = 0
[pid 6063] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6063] write(3, "1000", 4) = 4
[ 350.570434][ T6062] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 350.570442][ T6062] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 350.570450][ T6062] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 350.570458][ T6062] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 350.570477][ T6062]
[pid 6063] close(3) = 0
executing program
[pid 6063] write(1, "executing program\n", 18) = 18
[pid 6063] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6063] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6063] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6063] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6063] write(6, "4", 1) = 1
[pid 6063] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6063] exit_group(0) = ?
[ 350.918133][ T6063] FAULT_INJECTION: forcing a failure.
[ 350.918133][ T6063] name failslab, interval 1, probability 0, space 0, times 0
[ 350.930918][ T6063] CPU: 1 UID: 0 PID: 6063 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 350.930948][ T6063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 350.930960][ T6063] Call Trace:
[ 350.930974][ T6063]
[ 350.930984][ T6063] dump_stack_lvl+0x189/0x250
[ 350.931013][ T6063] ? __pfx____ratelimit+0x10/0x10
[ 350.931042][ T6063] ? __pfx_dump_stack_lvl+0x10/0x10
[ 350.931063][ T6063] ? __pfx__printk+0x10/0x10
[ 350.931093][ T6063] ? __pfx___might_resched+0x10/0x10
[ 350.931120][ T6063] ? fs_reclaim_acquire+0x7d/0x100
[ 350.931154][ T6063] should_fail_ex+0x414/0x560
[ 350.931184][ T6063] should_failslab+0xa8/0x100
[ 350.931213][ T6063] __kmalloc_noprof+0xcb/0x4f0
[ 350.931237][ T6063] ? tomoyo_init_log+0x1a6e/0x1f70
[ 350.931272][ T6063] tomoyo_init_log+0x1a6e/0x1f70
[ 350.931328][ T6063] ? __pfx_tomoyo_init_log+0x10/0x10
[ 350.931356][ T6063] ? tomoyo_profile+0x11/0x50
[ 350.931384][ T6063] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 350.931414][ T6063] tomoyo_supervisor+0x340/0x1480
[ 350.931441][ T6063] ? format_decode+0x5a3/0xe30
[ 350.931460][ T6063] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 350.931484][ T6063] ? snprintf+0xda/0x120
[ 350.931502][ T6063] ? __pfx_snprintf+0x10/0x10
[ 350.931517][ T6063] ? tomoyo_check_acl+0x386/0x400
[ 350.931536][ T6063] tomoyo_path_number_perm+0x438/0x5a0
[ 350.931550][ T6063] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 350.931565][ T6063] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 350.931584][ T6063] ? _raw_spin_lock_irq+0xae/0xf0
[ 350.931620][ T6063] ? __pfx_ptrace_notify+0x10/0x10
[ 350.931646][ T6063] security_file_ioctl+0xcb/0x2d0
[ 350.931662][ T6063] __se_sys_ioctl+0x47/0x170
[ 350.931678][ T6063] do_syscall_64+0xfa/0x3b0
[ 350.931695][ T6063] ? lockdep_hardirqs_on+0x9c/0x150
[ 350.931711][ T6063] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 350.931724][ T6063] ? clear_bhb_loop+0x60/0xb0
[ 350.931739][ T6063] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 350.931751][ T6063] RIP: 0033:0x7fea15a51869
[ 350.931764][ T6063] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 350.931776][ T6063] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 350.931791][ T6063] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6063] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6063, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6064 attached
, child_tidptr=0x555576720650) = 6064
[pid 6064] set_robust_list(0x555576720660, 24) = 0
[ 350.931801][ T6063] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 350.931809][ T6063] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 350.931817][ T6063] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 350.931833][ T6063] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 350.931852][ T6063]
[pid 6064] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6064] setpgid(0, 0) = 0
[pid 6064] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6064] write(3, "1000", 4) = 4
[pid 6064] close(3) = 0
[pid 6064] write(1, "executing program\n", 18executing program
) = 18
[pid 6064] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6064] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6064] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6064] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6064] write(6, "4", 1) = 1
[pid 6064] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6064] exit_group(0) = ?
[pid 6064] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6064, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
[ 351.343426][ T6064] FAULT_INJECTION: forcing a failure.
[ 351.343426][ T6064] name failslab, interval 1, probability 0, space 0, times 0
[ 351.356684][ T6064] CPU: 1 UID: 0 PID: 6064 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 351.356716][ T6064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 351.356729][ T6064] Call Trace:
[ 351.356738][ T6064]
[ 351.356749][ T6064] dump_stack_lvl+0x189/0x250
[ 351.356778][ T6064] ? __pfx____ratelimit+0x10/0x10
[ 351.356819][ T6064] ? __pfx_dump_stack_lvl+0x10/0x10
[ 351.356842][ T6064] ? __pfx__printk+0x10/0x10
[ 351.356876][ T6064] ? __pfx___might_resched+0x10/0x10
[ 351.356903][ T6064] ? fs_reclaim_acquire+0x7d/0x100
[ 351.356935][ T6064] should_fail_ex+0x414/0x560
[ 351.356956][ T6064] should_failslab+0xa8/0x100
[ 351.356974][ T6064] __kmalloc_noprof+0xcb/0x4f0
[ 351.356988][ T6064] ? tomoyo_init_log+0x1a6e/0x1f70
[ 351.357008][ T6064] tomoyo_init_log+0x1a6e/0x1f70
[ 351.357040][ T6064] ? __pfx_tomoyo_init_log+0x10/0x10
[ 351.357058][ T6064] ? tomoyo_profile+0x11/0x50
[ 351.357076][ T6064] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 351.357094][ T6064] tomoyo_supervisor+0x340/0x1480
[ 351.357113][ T6064] ? format_decode+0x5a3/0xe30
[ 351.357132][ T6064] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 351.357156][ T6064] ? snprintf+0xda/0x120
[ 351.357173][ T6064] ? __pfx_snprintf+0x10/0x10
[ 351.357188][ T6064] ? tomoyo_check_acl+0x386/0x400
[ 351.357207][ T6064] tomoyo_path_number_perm+0x438/0x5a0
[ 351.357221][ T6064] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 351.357236][ T6064] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 351.357256][ T6064] ? _raw_spin_lock_irq+0xae/0xf0
[ 351.357292][ T6064] ? __pfx_ptrace_notify+0x10/0x10
[ 351.357317][ T6064] security_file_ioctl+0xcb/0x2d0
[ 351.357332][ T6064] __se_sys_ioctl+0x47/0x170
[ 351.357349][ T6064] do_syscall_64+0xfa/0x3b0
[ 351.357366][ T6064] ? lockdep_hardirqs_on+0x9c/0x150
[ 351.357382][ T6064] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 351.357395][ T6064] ? clear_bhb_loop+0x60/0xb0
[ 351.357410][ T6064] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 351.357423][ T6064] RIP: 0033:0x7fea15a51869
[ 351.357436][ T6064] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 351.357448][ T6064] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6065 attached
, child_tidptr=0x555576720650) = 6065
[pid 6065] set_robust_list(0x555576720660, 24) = 0
[pid 6065] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6065] setpgid(0, 0) = 0
[pid 6065] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6065] write(3, "1000", 4) = 4
[pid 6065] close(3) = 0
executing program
[pid 6065] write(1, "executing program\n", 18) = 18
[pid 6065] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[ 351.357463][ T6064] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 351.357473][ T6064] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 351.357481][ T6064] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 351.357489][ T6064] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 351.357497][ T6064] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 351.357516][ T6064]
[pid 6065] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6065] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6065] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6065] write(6, "4", 1) = 1
[ 351.699938][ T6065] FAULT_INJECTION: forcing a failure.
[ 351.699938][ T6065] name failslab, interval 1, probability 0, space 0, times 0
[ 351.712742][ T6065] CPU: 1 UID: 0 PID: 6065 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 351.712772][ T6065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 351.712784][ T6065] Call Trace:
[ 351.712796][ T6065]
[ 351.712807][ T6065] dump_stack_lvl+0x189/0x250
[ 351.712835][ T6065] ? __pfx____ratelimit+0x10/0x10
[ 351.712869][ T6065] ? __pfx_dump_stack_lvl+0x10/0x10
[ 351.712883][ T6065] ? __pfx__printk+0x10/0x10
[ 351.712903][ T6065] ? __pfx___might_resched+0x10/0x10
[ 351.712921][ T6065] ? fs_reclaim_acquire+0x7d/0x100
[ 351.712942][ T6065] should_fail_ex+0x414/0x560
[ 351.712959][ T6065] should_failslab+0xa8/0x100
[ 351.712977][ T6065] __kmalloc_noprof+0xcb/0x4f0
[ 351.712992][ T6065] ? tomoyo_init_log+0x1a6e/0x1f70
[ 351.713012][ T6065] tomoyo_init_log+0x1a6e/0x1f70
[ 351.713044][ T6065] ? __pfx_tomoyo_init_log+0x10/0x10
[ 351.713061][ T6065] ? tomoyo_profile+0x11/0x50
[ 351.713077][ T6065] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 351.713107][ T6065] tomoyo_supervisor+0x340/0x1480
[ 351.713137][ T6065] ? format_decode+0x5a3/0xe30
[ 351.713169][ T6065] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 351.713209][ T6065] ? snprintf+0xda/0x120
[ 351.713239][ T6065] ? __pfx_snprintf+0x10/0x10
[ 351.713264][ T6065] ? tomoyo_check_acl+0x386/0x400
[ 351.713285][ T6065] tomoyo_path_number_perm+0x438/0x5a0
[ 351.713299][ T6065] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 351.713314][ T6065] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 351.713334][ T6065] ? _raw_spin_lock_irq+0xae/0xf0
[ 351.713370][ T6065] ? __pfx_ptrace_notify+0x10/0x10
[ 351.713395][ T6065] security_file_ioctl+0xcb/0x2d0
[ 351.713412][ T6065] __se_sys_ioctl+0x47/0x170
[ 351.713428][ T6065] do_syscall_64+0xfa/0x3b0
[ 351.713445][ T6065] ? lockdep_hardirqs_on+0x9c/0x150
[ 351.713462][ T6065] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 351.713474][ T6065] ? clear_bhb_loop+0x60/0xb0
[ 351.713489][ T6065] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 351.713502][ T6065] RIP: 0033:0x7fea15a51869
[ 351.713514][ T6065] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 351.713526][ T6065] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 351.713542][ T6065] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6065] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6065] exit_group(0) = ?
[pid 6065] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6065, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6066 attached
, child_tidptr=0x555576720650) = 6066
[pid 6066] set_robust_list(0x555576720660, 24) = 0
[pid 6066] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6066] setpgid(0, 0) = 0
[pid 6066] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[ 351.713552][ T6065] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 351.713560][ T6065] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 351.713568][ T6065] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 351.713576][ T6065] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 351.713594][ T6065]
[pid 6066] write(3, "1000", 4) = 4
[pid 6066] close(3) = 0
[pid 6066] write(1, "executing program\n", 18executing program
) = 18
[pid 6066] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6066] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6066] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6066] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6066] write(6, "4", 1) = 1
[pid 6066] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 352.055145][ T6066] FAULT_INJECTION: forcing a failure.
[ 352.055145][ T6066] name failslab, interval 1, probability 0, space 0, times 0
[ 352.067925][ T6066] CPU: 1 UID: 0 PID: 6066 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 352.067956][ T6066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 352.067968][ T6066] Call Trace:
[ 352.067981][ T6066]
[ 352.067991][ T6066] dump_stack_lvl+0x189/0x250
[ 352.068019][ T6066] ? __pfx____ratelimit+0x10/0x10
[ 352.068039][ T6066] ? __pfx_dump_stack_lvl+0x10/0x10
[ 352.068052][ T6066] ? __pfx__printk+0x10/0x10
[ 352.068080][ T6066] ? __pfx___might_resched+0x10/0x10
[ 352.068098][ T6066] ? fs_reclaim_acquire+0x7d/0x100
[ 352.068119][ T6066] should_fail_ex+0x414/0x560
[ 352.068142][ T6066] should_failslab+0xa8/0x100
[ 352.068160][ T6066] __kmalloc_noprof+0xcb/0x4f0
[ 352.068175][ T6066] ? tomoyo_init_log+0x1a6e/0x1f70
[ 352.068196][ T6066] tomoyo_init_log+0x1a6e/0x1f70
[ 352.068227][ T6066] ? __pfx_tomoyo_init_log+0x10/0x10
[ 352.068244][ T6066] ? tomoyo_profile+0x11/0x50
[ 352.068260][ T6066] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 352.068279][ T6066] tomoyo_supervisor+0x340/0x1480
[ 352.068298][ T6066] ? format_decode+0x5a3/0xe30
[ 352.068317][ T6066] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 352.068341][ T6066] ? snprintf+0xda/0x120
[ 352.068358][ T6066] ? __pfx_snprintf+0x10/0x10
[ 352.068373][ T6066] ? tomoyo_check_acl+0x386/0x400
[ 352.068392][ T6066] tomoyo_path_number_perm+0x438/0x5a0
[ 352.068406][ T6066] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 352.068421][ T6066] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 352.068441][ T6066] ? _raw_spin_lock_irq+0xae/0xf0
[ 352.068478][ T6066] ? __pfx_ptrace_notify+0x10/0x10
[ 352.068506][ T6066] security_file_ioctl+0xcb/0x2d0
[ 352.068523][ T6066] __se_sys_ioctl+0x47/0x170
[ 352.068539][ T6066] do_syscall_64+0xfa/0x3b0
[ 352.068557][ T6066] ? lockdep_hardirqs_on+0x9c/0x150
[ 352.068573][ T6066] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 352.068585][ T6066] ? clear_bhb_loop+0x60/0xb0
[ 352.068600][ T6066] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 352.068613][ T6066] RIP: 0033:0x7fea15a51869
[ 352.068626][ T6066] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 352.068637][ T6066] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6066] exit_group(0) = ?
[pid 6066] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6066, si_uid=0, si_status=0, si_utime=0, si_stime=26 /* 0.26 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6067 attached
, child_tidptr=0x555576720650) = 6067
[pid 6067] set_robust_list(0x555576720660, 24) = 0
[pid 6067] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6067] setpgid(0, 0) = 0
[pid 6067] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6067] write(3, "1000", 4) = 4
[pid 6067] close(3) = 0
[pid 6067] write(1, "executing program\n", 18executing program
) = 18
[ 352.068653][ T6066] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 352.068662][ T6066] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 352.068671][ T6066] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 352.068679][ T6066] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 352.068686][ T6066] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 352.068705][ T6066]
[pid 6067] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6067] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6067] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6067] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6067] write(6, "4", 1) = 1
[ 352.428929][ T6067] FAULT_INJECTION: forcing a failure.
[ 352.428929][ T6067] name failslab, interval 1, probability 0, space 0, times 0
[ 352.442405][ T6067] CPU: 1 UID: 0 PID: 6067 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 352.442438][ T6067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 352.442451][ T6067] Call Trace:
[ 352.442459][ T6067]
[ 352.442468][ T6067] dump_stack_lvl+0x189/0x250
[ 352.442496][ T6067] ? __pfx____ratelimit+0x10/0x10
[ 352.442516][ T6067] ? __pfx_dump_stack_lvl+0x10/0x10
[ 352.442530][ T6067] ? __pfx__printk+0x10/0x10
[ 352.442562][ T6067] ? __pfx___might_resched+0x10/0x10
[ 352.442579][ T6067] ? fs_reclaim_acquire+0x7d/0x100
[ 352.442600][ T6067] should_fail_ex+0x414/0x560
[ 352.442618][ T6067] should_failslab+0xa8/0x100
[ 352.442635][ T6067] __kmalloc_noprof+0xcb/0x4f0
[ 352.442649][ T6067] ? tomoyo_init_log+0x1a6e/0x1f70
[ 352.442670][ T6067] tomoyo_init_log+0x1a6e/0x1f70
[ 352.442701][ T6067] ? __pfx_tomoyo_init_log+0x10/0x10
[ 352.442719][ T6067] ? tomoyo_profile+0x11/0x50
[ 352.442735][ T6067] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 352.442753][ T6067] tomoyo_supervisor+0x340/0x1480
[ 352.442772][ T6067] ? format_decode+0x5a3/0xe30
[ 352.442793][ T6067] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 352.442817][ T6067] ? snprintf+0xda/0x120
[ 352.442835][ T6067] ? __pfx_snprintf+0x10/0x10
[ 352.442850][ T6067] ? tomoyo_check_acl+0x386/0x400
[ 352.442869][ T6067] tomoyo_path_number_perm+0x438/0x5a0
[ 352.442883][ T6067] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 352.442898][ T6067] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 352.442918][ T6067] ? _raw_spin_lock_irq+0xae/0xf0
[ 352.442954][ T6067] ? __pfx_ptrace_notify+0x10/0x10
[ 352.442979][ T6067] security_file_ioctl+0xcb/0x2d0
[ 352.442995][ T6067] __se_sys_ioctl+0x47/0x170
[ 352.443011][ T6067] do_syscall_64+0xfa/0x3b0
[ 352.443027][ T6067] ? lockdep_hardirqs_on+0x9c/0x150
[ 352.443051][ T6067] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 352.443063][ T6067] ? clear_bhb_loop+0x60/0xb0
[ 352.443079][ T6067] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 352.443097][ T6067] RIP: 0033:0x7fea15a51869
[ 352.443110][ T6067] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 352.443121][ T6067] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 352.443137][ T6067] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6067] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6067] exit_group(0) = ?
[pid 6067] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6067, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 352.443147][ T6067] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 352.443155][ T6067] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 352.443163][ T6067] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 352.443171][ T6067] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 352.443190][ T6067]
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6068 attached
, child_tidptr=0x555576720650) = 6068
[pid 6068] set_robust_list(0x555576720660, 24) = 0
[pid 6068] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6068] setpgid(0, 0) = 0
[pid 6068] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6068] write(3, "1000", 4) = 4
[pid 6068] close(3) = 0
executing program
[pid 6068] write(1, "executing program\n", 18) = 18
[pid 6068] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6068] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6068] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6068] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6068] write(6, "4", 1) = 1
[ 352.838842][ T6068] FAULT_INJECTION: forcing a failure.
[ 352.838842][ T6068] name failslab, interval 1, probability 0, space 0, times 0
[ 352.852097][ T6068] CPU: 0 UID: 0 PID: 6068 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 352.852119][ T6068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 352.852127][ T6068] Call Trace:
[ 352.852133][ T6068]
[ 352.852139][ T6068] dump_stack_lvl+0x189/0x250
[ 352.852159][ T6068] ? __pfx____ratelimit+0x10/0x10
[ 352.852176][ T6068] ? __pfx_dump_stack_lvl+0x10/0x10
[ 352.852190][ T6068] ? __pfx__printk+0x10/0x10
[ 352.852209][ T6068] ? __pfx___might_resched+0x10/0x10
[ 352.852227][ T6068] ? fs_reclaim_acquire+0x7d/0x100
[ 352.852247][ T6068] should_fail_ex+0x414/0x560
[ 352.852265][ T6068] should_failslab+0xa8/0x100
[ 352.852282][ T6068] __kmalloc_noprof+0xcb/0x4f0
[ 352.852297][ T6068] ? tomoyo_init_log+0x1a6e/0x1f70
[ 352.852317][ T6068] tomoyo_init_log+0x1a6e/0x1f70
[ 352.852347][ T6068] ? __pfx_tomoyo_init_log+0x10/0x10
[ 352.852364][ T6068] ? tomoyo_profile+0x11/0x50
[ 352.852381][ T6068] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 352.852398][ T6068] tomoyo_supervisor+0x340/0x1480
[ 352.852417][ T6068] ? format_decode+0x5a3/0xe30
[ 352.852436][ T6068] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 352.852460][ T6068] ? snprintf+0xda/0x120
[ 352.852477][ T6068] ? __pfx_snprintf+0x10/0x10
[ 352.852492][ T6068] ? tomoyo_check_acl+0x386/0x400
[ 352.852510][ T6068] tomoyo_path_number_perm+0x438/0x5a0
[ 352.852524][ T6068] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 352.852539][ T6068] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 352.852558][ T6068] ? _raw_spin_lock_irq+0xae/0xf0
[ 352.852593][ T6068] ? __pfx_ptrace_notify+0x10/0x10
[ 352.852618][ T6068] security_file_ioctl+0xcb/0x2d0
[ 352.852633][ T6068] __se_sys_ioctl+0x47/0x170
[ 352.852649][ T6068] do_syscall_64+0xfa/0x3b0
[ 352.852666][ T6068] ? lockdep_hardirqs_on+0x9c/0x150
[ 352.852682][ T6068] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 352.852695][ T6068] ? clear_bhb_loop+0x60/0xb0
[ 352.852710][ T6068] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 352.852722][ T6068] RIP: 0033:0x7fea15a51869
[ 352.852735][ T6068] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 352.852746][ T6068] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 352.852761][ T6068] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6068] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6068] exit_group(0) = ?
[pid 6068] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6068, si_uid=0, si_status=0, si_utime=0, si_stime=29 /* 0.29 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6069 attached
, child_tidptr=0x555576720650) = 6069
[ 352.852771][ T6068] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 352.852779][ T6068] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 352.852787][ T6068] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 352.852795][ T6068] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 352.852816][ T6068]
[pid 6069] set_robust_list(0x555576720660, 24) = 0
[pid 6069] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6069] setpgid(0, 0) = 0
[pid 6069] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6069] write(3, "1000", 4) = 4
[pid 6069] close(3) = 0
[pid 6069] write(1, "executing program\n", 18executing program
) = 18
[pid 6069] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6069] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6069] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6069] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6069] write(6, "4", 1) = 1
[ 353.217489][ T6069] FAULT_INJECTION: forcing a failure.
[ 353.217489][ T6069] name failslab, interval 1, probability 0, space 0, times 0
[ 353.230445][ T6069] CPU: 1 UID: 0 PID: 6069 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 353.230475][ T6069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 353.230488][ T6069] Call Trace:
[ 353.230497][ T6069]
[ 353.230506][ T6069] dump_stack_lvl+0x189/0x250
[ 353.230531][ T6069] ? __pfx____ratelimit+0x10/0x10
[ 353.230560][ T6069] ? __pfx_dump_stack_lvl+0x10/0x10
[ 353.230582][ T6069] ? __pfx__printk+0x10/0x10
[ 353.230615][ T6069] ? __pfx___might_resched+0x10/0x10
[ 353.230643][ T6069] ? fs_reclaim_acquire+0x7d/0x100
[ 353.230677][ T6069] should_fail_ex+0x414/0x560
[ 353.230706][ T6069] should_failslab+0xa8/0x100
[ 353.230734][ T6069] __kmalloc_noprof+0xcb/0x4f0
[ 353.230758][ T6069] ? tomoyo_init_log+0x1a6e/0x1f70
[ 353.230793][ T6069] tomoyo_init_log+0x1a6e/0x1f70
[ 353.230847][ T6069] ? __pfx_tomoyo_init_log+0x10/0x10
[ 353.230877][ T6069] ? tomoyo_profile+0x11/0x50
[ 353.230904][ T6069] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 353.230932][ T6069] tomoyo_supervisor+0x340/0x1480
[ 353.230962][ T6069] ? format_decode+0x5a3/0xe30
[ 353.230983][ T6069] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 353.231007][ T6069] ? snprintf+0xda/0x120
[ 353.231024][ T6069] ? __pfx_snprintf+0x10/0x10
[ 353.231047][ T6069] ? tomoyo_check_acl+0x386/0x400
[ 353.231065][ T6069] tomoyo_path_number_perm+0x438/0x5a0
[ 353.231079][ T6069] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 353.231094][ T6069] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 353.231113][ T6069] ? _raw_spin_lock_irq+0xae/0xf0
[ 353.231148][ T6069] ? __pfx_ptrace_notify+0x10/0x10
[ 353.231173][ T6069] security_file_ioctl+0xcb/0x2d0
[ 353.231188][ T6069] __se_sys_ioctl+0x47/0x170
[ 353.231204][ T6069] do_syscall_64+0xfa/0x3b0
[ 353.231221][ T6069] ? lockdep_hardirqs_on+0x9c/0x150
[ 353.231237][ T6069] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 353.231250][ T6069] ? clear_bhb_loop+0x60/0xb0
[ 353.231265][ T6069] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 353.231278][ T6069] RIP: 0033:0x7fea15a51869
[ 353.231291][ T6069] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 353.231302][ T6069] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 353.231317][ T6069] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6069] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6069] exit_group(0) = ?
[pid 6069] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6069, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 353.231327][ T6069] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 353.231335][ T6069] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 353.231343][ T6069] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 353.231351][ T6069] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 353.231369][ T6069]
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6070 attached
, child_tidptr=0x555576720650) = 6070
[pid 6070] set_robust_list(0x555576720660, 24) = 0
[pid 6070] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6070] setpgid(0, 0) = 0
[pid 6070] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6070] write(3, "1000", 4) = 4
[pid 6070] close(3) = 0
[pid 6070] write(1, "executing program\n", 18executing program
) = 18
[pid 6070] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6070] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6070] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6070] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6070] write(6, "4", 1) = 1
[pid 6070] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6070] exit_group(0) = ?
[ 353.625729][ T6070] FAULT_INJECTION: forcing a failure.
[ 353.625729][ T6070] name failslab, interval 1, probability 0, space 0, times 0
[ 353.639121][ T6070] CPU: 0 UID: 0 PID: 6070 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 353.639152][ T6070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 353.639165][ T6070] Call Trace:
[ 353.639173][ T6070]
[ 353.639184][ T6070] dump_stack_lvl+0x189/0x250
[ 353.639212][ T6070] ? __pfx____ratelimit+0x10/0x10
[ 353.639241][ T6070] ? __pfx_dump_stack_lvl+0x10/0x10
[ 353.639263][ T6070] ? __pfx__printk+0x10/0x10
[ 353.639295][ T6070] ? __pfx___might_resched+0x10/0x10
[ 353.639315][ T6070] ? fs_reclaim_acquire+0x7d/0x100
[ 353.639336][ T6070] should_fail_ex+0x414/0x560
[ 353.639354][ T6070] should_failslab+0xa8/0x100
[ 353.639371][ T6070] __kmalloc_noprof+0xcb/0x4f0
[ 353.639385][ T6070] ? tomoyo_init_log+0x1a6e/0x1f70
[ 353.639406][ T6070] tomoyo_init_log+0x1a6e/0x1f70
[ 353.639436][ T6070] ? __pfx_tomoyo_init_log+0x10/0x10
[ 353.639453][ T6070] ? tomoyo_profile+0x11/0x50
[ 353.639470][ T6070] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 353.639487][ T6070] tomoyo_supervisor+0x340/0x1480
[ 353.639506][ T6070] ? format_decode+0x5a3/0xe30
[ 353.639525][ T6070] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 353.639548][ T6070] ? snprintf+0xda/0x120
[ 353.639566][ T6070] ? __pfx_snprintf+0x10/0x10
[ 353.639581][ T6070] ? tomoyo_check_acl+0x386/0x400
[ 353.639599][ T6070] tomoyo_path_number_perm+0x438/0x5a0
[ 353.639613][ T6070] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 353.639628][ T6070] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 353.639647][ T6070] ? _raw_spin_lock_irq+0xae/0xf0
[ 353.639683][ T6070] ? __pfx_ptrace_notify+0x10/0x10
[ 353.639707][ T6070] security_file_ioctl+0xcb/0x2d0
[ 353.639723][ T6070] __se_sys_ioctl+0x47/0x170
[ 353.639740][ T6070] do_syscall_64+0xfa/0x3b0
[ 353.639757][ T6070] ? lockdep_hardirqs_on+0x9c/0x150
[ 353.639773][ T6070] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 353.639785][ T6070] ? clear_bhb_loop+0x60/0xb0
[ 353.639800][ T6070] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 353.639812][ T6070] RIP: 0033:0x7fea15a51869
[ 353.639825][ T6070] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 353.639836][ T6070] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 353.639852][ T6070] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6070] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6070, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6071 attached
, child_tidptr=0x555576720650) = 6071
[pid 6071] set_robust_list(0x555576720660, 24) = 0
[ 353.639861][ T6070] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 353.639869][ T6070] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 353.639878][ T6070] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 353.639885][ T6070] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 353.639903][ T6070]
[pid 6071] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6071] setpgid(0, 0executing program
) = 0
[pid 6071] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6071] write(3, "1000", 4) = 4
[pid 6071] close(3) = 0
[pid 6071] write(1, "executing program\n", 18) = 18
[pid 6071] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6071] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6071] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6071] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6071] write(6, "4", 1) = 1
[pid 6071] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6071] exit_group(0) = ?
[ 354.036024][ T6071] FAULT_INJECTION: forcing a failure.
[ 354.036024][ T6071] name failslab, interval 1, probability 0, space 0, times 0
[ 354.048953][ T6071] CPU: 1 UID: 0 PID: 6071 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 354.048981][ T6071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 354.048993][ T6071] Call Trace:
[ 354.049002][ T6071]
[ 354.049011][ T6071] dump_stack_lvl+0x189/0x250
[ 354.049041][ T6071] ? __pfx____ratelimit+0x10/0x10
[ 354.049069][ T6071] ? __pfx_dump_stack_lvl+0x10/0x10
[ 354.049091][ T6071] ? __pfx__printk+0x10/0x10
[ 354.049124][ T6071] ? __pfx___might_resched+0x10/0x10
[ 354.049154][ T6071] ? fs_reclaim_acquire+0x7d/0x100
[ 354.049187][ T6071] should_fail_ex+0x414/0x560
[ 354.049216][ T6071] should_failslab+0xa8/0x100
[ 354.049244][ T6071] __kmalloc_noprof+0xcb/0x4f0
[ 354.049267][ T6071] ? tomoyo_init_log+0x1a6e/0x1f70
[ 354.049301][ T6071] tomoyo_init_log+0x1a6e/0x1f70
[ 354.049353][ T6071] ? __pfx_tomoyo_init_log+0x10/0x10
[ 354.049380][ T6071] ? tomoyo_profile+0x11/0x50
[ 354.049397][ T6071] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 354.049415][ T6071] tomoyo_supervisor+0x340/0x1480
[ 354.049433][ T6071] ? format_decode+0x5a3/0xe30
[ 354.049451][ T6071] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 354.049475][ T6071] ? snprintf+0xda/0x120
[ 354.049492][ T6071] ? __pfx_snprintf+0x10/0x10
[ 354.049507][ T6071] ? tomoyo_check_acl+0x386/0x400
[ 354.049526][ T6071] tomoyo_path_number_perm+0x438/0x5a0
[ 354.049539][ T6071] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 354.049554][ T6071] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 354.049574][ T6071] ? _raw_spin_lock_irq+0xae/0xf0
[ 354.049610][ T6071] ? __pfx_ptrace_notify+0x10/0x10
[ 354.049635][ T6071] security_file_ioctl+0xcb/0x2d0
[ 354.049650][ T6071] __se_sys_ioctl+0x47/0x170
[ 354.049666][ T6071] do_syscall_64+0xfa/0x3b0
[ 354.049682][ T6071] ? lockdep_hardirqs_on+0x9c/0x150
[ 354.049699][ T6071] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 354.049711][ T6071] ? clear_bhb_loop+0x60/0xb0
[ 354.049726][ T6071] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 354.049738][ T6071] RIP: 0033:0x7fea15a51869
[ 354.049751][ T6071] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 354.049762][ T6071] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 354.049778][ T6071] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6071] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6071, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6072 attached
, child_tidptr=0x555576720650) = 6072
[ 354.049788][ T6071] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 354.049805][ T6071] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 354.049813][ T6071] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 354.049821][ T6071] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 354.049839][ T6071]
[pid 6072] set_robust_list(0x555576720660, 24) = 0
[pid 6072] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6072] setpgid(0, 0) = 0
[pid 6072] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6072] write(3, "1000", 4) = 4
[pid 6072] close(3) = 0
executing program
[pid 6072] write(1, "executing program\n", 18) = 18
[pid 6072] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6072] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6072] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6072] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6072] write(6, "4", 1) = 1
[ 354.425712][ T6072] FAULT_INJECTION: forcing a failure.
[ 354.425712][ T6072] name failslab, interval 1, probability 0, space 0, times 0
[ 354.439061][ T6072] CPU: 1 UID: 0 PID: 6072 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 354.439104][ T6072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 354.439116][ T6072] Call Trace:
[ 354.439126][ T6072]
[ 354.439136][ T6072] dump_stack_lvl+0x189/0x250
[ 354.439164][ T6072] ? __pfx____ratelimit+0x10/0x10
[ 354.439188][ T6072] ? __pfx_dump_stack_lvl+0x10/0x10
[ 354.439206][ T6072] ? __pfx__printk+0x10/0x10
[ 354.439232][ T6072] ? __pfx___might_resched+0x10/0x10
[ 354.439254][ T6072] ? fs_reclaim_acquire+0x7d/0x100
[ 354.439281][ T6072] should_fail_ex+0x414/0x560
[ 354.439305][ T6072] should_failslab+0xa8/0x100
[ 354.439327][ T6072] __kmalloc_noprof+0xcb/0x4f0
[ 354.439346][ T6072] ? tomoyo_init_log+0x1a6e/0x1f70
[ 354.439373][ T6072] tomoyo_init_log+0x1a6e/0x1f70
[ 354.439415][ T6072] ? __pfx_tomoyo_init_log+0x10/0x10
[ 354.439437][ T6072] ? tomoyo_profile+0x11/0x50
[ 354.439458][ T6072] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 354.439482][ T6072] tomoyo_supervisor+0x340/0x1480
[ 354.439507][ T6072] ? format_decode+0x5a3/0xe30
[ 354.439531][ T6072] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 354.439564][ T6072] ? snprintf+0xda/0x120
[ 354.439586][ T6072] ? __pfx_snprintf+0x10/0x10
[ 354.439606][ T6072] ? tomoyo_check_acl+0x386/0x400
[ 354.439632][ T6072] tomoyo_path_number_perm+0x438/0x5a0
[ 354.439650][ T6072] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 354.439669][ T6072] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 354.439695][ T6072] ? _raw_spin_lock_irq+0xae/0xf0
[ 354.439745][ T6072] ? __pfx_ptrace_notify+0x10/0x10
[ 354.439778][ T6072] security_file_ioctl+0xcb/0x2d0
[ 354.439798][ T6072] __se_sys_ioctl+0x47/0x170
[ 354.439819][ T6072] do_syscall_64+0xfa/0x3b0
[ 354.439841][ T6072] ? lockdep_hardirqs_on+0x9c/0x150
[ 354.439862][ T6072] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 354.439879][ T6072] ? clear_bhb_loop+0x60/0xb0
[ 354.439899][ T6072] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 354.439915][ T6072] RIP: 0033:0x7fea15a51869
[ 354.439930][ T6072] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 354.439945][ T6072] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 354.439965][ T6072] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6072] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6072] exit_group(0) = ?
[pid 6072] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6072, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6073 attached
, child_tidptr=0x555576720650) = 6073
[pid 6073] set_robust_list(0x555576720660, 24) = 0
[pid 6073] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 354.439984][ T6072] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 354.439995][ T6072] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 354.440006][ T6072] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 354.440016][ T6072] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 354.440042][ T6072]
[pid 6073] setpgid(0, 0) = 0
[pid 6073] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6073] write(3, "1000", 4executing program
) = 4
[pid 6073] close(3) = 0
[pid 6073] write(1, "executing program\n", 18) = 18
[pid 6073] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6073] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6073] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6073] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6073] write(6, "4", 1) = 1
[pid 6073] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6073] exit_group(0) = ?
[ 354.787793][ T6073] FAULT_INJECTION: forcing a failure.
[ 354.787793][ T6073] name failslab, interval 1, probability 0, space 0, times 0
[ 354.800788][ T6073] CPU: 0 UID: 0 PID: 6073 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 354.800820][ T6073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 354.800832][ T6073] Call Trace:
[ 354.800842][ T6073]
[ 354.800850][ T6073] dump_stack_lvl+0x189/0x250
[ 354.800869][ T6073] ? __pfx____ratelimit+0x10/0x10
[ 354.800888][ T6073] ? __pfx_dump_stack_lvl+0x10/0x10
[ 354.800901][ T6073] ? __pfx__printk+0x10/0x10
[ 354.800921][ T6073] ? __pfx___might_resched+0x10/0x10
[ 354.800939][ T6073] ? fs_reclaim_acquire+0x7d/0x100
[ 354.800959][ T6073] should_fail_ex+0x414/0x560
[ 354.800978][ T6073] should_failslab+0xa8/0x100
[ 354.800998][ T6073] __kmalloc_noprof+0xcb/0x4f0
[ 354.801013][ T6073] ? tomoyo_init_log+0x1a6e/0x1f70
[ 354.801033][ T6073] tomoyo_init_log+0x1a6e/0x1f70
[ 354.801070][ T6073] ? __pfx_tomoyo_init_log+0x10/0x10
[ 354.801087][ T6073] ? tomoyo_profile+0x11/0x50
[ 354.801103][ T6073] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 354.801121][ T6073] tomoyo_supervisor+0x340/0x1480
[ 354.801140][ T6073] ? format_decode+0x5a3/0xe30
[ 354.801159][ T6073] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 354.801183][ T6073] ? snprintf+0xda/0x120
[ 354.801201][ T6073] ? __pfx_snprintf+0x10/0x10
[ 354.801216][ T6073] ? tomoyo_check_acl+0x386/0x400
[ 354.801235][ T6073] tomoyo_path_number_perm+0x438/0x5a0
[ 354.801249][ T6073] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 354.801264][ T6073] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 354.801283][ T6073] ? _raw_spin_lock_irq+0xae/0xf0
[ 354.801321][ T6073] ? __pfx_ptrace_notify+0x10/0x10
[ 354.801346][ T6073] security_file_ioctl+0xcb/0x2d0
[ 354.801362][ T6073] __se_sys_ioctl+0x47/0x170
[ 354.801378][ T6073] do_syscall_64+0xfa/0x3b0
[ 354.801395][ T6073] ? lockdep_hardirqs_on+0x9c/0x150
[ 354.801411][ T6073] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 354.801424][ T6073] ? clear_bhb_loop+0x60/0xb0
[ 354.801439][ T6073] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 354.801452][ T6073] RIP: 0033:0x7fea15a51869
[ 354.801465][ T6073] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 354.801476][ T6073] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6073] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6073, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6074 attached
, child_tidptr=0x555576720650) = 6074
[pid 6074] set_robust_list(0x555576720660, 24) = 0
[pid 6074] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6074] setpgid(0, 0) = 0
[ 354.801491][ T6073] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 354.801501][ T6073] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 354.801509][ T6073] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 354.801517][ T6073] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 354.801525][ T6073] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 354.801544][ T6073]
[pid 6074] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6074] write(3, "1000", 4) = 4
[pid 6074] close(3) = 0
executing program
[pid 6074] write(1, "executing program\n", 18) = 18
[pid 6074] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6074] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6074] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6074] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6074] write(6, "4", 1) = 1
[pid 6074] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6074] exit_group(0) = ?
[ 355.186202][ T6074] FAULT_INJECTION: forcing a failure.
[ 355.186202][ T6074] name failslab, interval 1, probability 0, space 0, times 0
[ 355.199283][ T6074] CPU: 1 UID: 0 PID: 6074 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 355.199314][ T6074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 355.199327][ T6074] Call Trace:
[ 355.199335][ T6074]
[ 355.199344][ T6074] dump_stack_lvl+0x189/0x250
[ 355.199371][ T6074] ? __pfx____ratelimit+0x10/0x10
[ 355.199399][ T6074] ? __pfx_dump_stack_lvl+0x10/0x10
[ 355.199422][ T6074] ? __pfx__printk+0x10/0x10
[ 355.199455][ T6074] ? __pfx___might_resched+0x10/0x10
[ 355.199483][ T6074] ? fs_reclaim_acquire+0x7d/0x100
[ 355.199518][ T6074] should_fail_ex+0x414/0x560
[ 355.199549][ T6074] should_failslab+0xa8/0x100
[ 355.199578][ T6074] __kmalloc_noprof+0xcb/0x4f0
[ 355.199603][ T6074] ? tomoyo_init_log+0x1a6e/0x1f70
[ 355.199638][ T6074] tomoyo_init_log+0x1a6e/0x1f70
[ 355.199692][ T6074] ? __pfx_tomoyo_init_log+0x10/0x10
[ 355.199720][ T6074] ? tomoyo_profile+0x11/0x50
[ 355.199740][ T6074] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 355.199758][ T6074] tomoyo_supervisor+0x340/0x1480
[ 355.199777][ T6074] ? format_decode+0x5a3/0xe30
[ 355.199795][ T6074] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 355.199834][ T6074] ? snprintf+0xda/0x120
[ 355.199851][ T6074] ? __pfx_snprintf+0x10/0x10
[ 355.199866][ T6074] ? tomoyo_check_acl+0x386/0x400
[ 355.199884][ T6074] tomoyo_path_number_perm+0x438/0x5a0
[ 355.199898][ T6074] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 355.199913][ T6074] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 355.199933][ T6074] ? _raw_spin_lock_irq+0xae/0xf0
[ 355.199968][ T6074] ? __pfx_ptrace_notify+0x10/0x10
[ 355.199992][ T6074] security_file_ioctl+0xcb/0x2d0
[ 355.200008][ T6074] __se_sys_ioctl+0x47/0x170
[ 355.200024][ T6074] do_syscall_64+0xfa/0x3b0
[ 355.200040][ T6074] ? lockdep_hardirqs_on+0x9c/0x150
[ 355.200057][ T6074] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 355.200069][ T6074] ? clear_bhb_loop+0x60/0xb0
[ 355.200084][ T6074] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 355.200096][ T6074] RIP: 0033:0x7fea15a51869
[ 355.200109][ T6074] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[pid 6074] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6074, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6075 attached
, child_tidptr=0x555576720650) = 6075
[pid 6075] set_robust_list(0x555576720660, 24) = 0
[pid 6075] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6075] setpgid(0, 0) = 0
[pid 6075] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[ 355.200120][ T6074] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 355.200135][ T6074] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 355.200145][ T6074] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 355.200153][ T6074] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 355.200161][ T6074] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 355.200169][ T6074] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 355.200187][ T6074]
[pid 6075] write(3, "1000", 4) = 4
[pid 6075] close(3) = 0
[pid 6075] write(1, "executing program\n", 18executing program
) = 18
[pid 6075] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6075] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6075] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6075] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6075] write(6, "4", 1) = 1
[ 355.525575][ T6075] FAULT_INJECTION: forcing a failure.
[ 355.525575][ T6075] name failslab, interval 1, probability 0, space 0, times 0
[ 355.538970][ T6075] CPU: 0 UID: 0 PID: 6075 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 355.539001][ T6075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 355.539014][ T6075] Call Trace:
[ 355.539022][ T6075]
[ 355.539031][ T6075] dump_stack_lvl+0x189/0x250
[ 355.539060][ T6075] ? __pfx____ratelimit+0x10/0x10
[ 355.539099][ T6075] ? __pfx_dump_stack_lvl+0x10/0x10
[ 355.539123][ T6075] ? __pfx__printk+0x10/0x10
[ 355.539157][ T6075] ? __pfx___might_resched+0x10/0x10
[ 355.539186][ T6075] ? fs_reclaim_acquire+0x7d/0x100
[ 355.539221][ T6075] should_fail_ex+0x414/0x560
[ 355.539251][ T6075] should_failslab+0xa8/0x100
[ 355.539281][ T6075] __kmalloc_noprof+0xcb/0x4f0
[ 355.539303][ T6075] ? tomoyo_init_log+0x1a6e/0x1f70
[ 355.539336][ T6075] tomoyo_init_log+0x1a6e/0x1f70
[ 355.539373][ T6075] ? __pfx_tomoyo_init_log+0x10/0x10
[ 355.539390][ T6075] ? tomoyo_profile+0x11/0x50
[ 355.539406][ T6075] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 355.539424][ T6075] tomoyo_supervisor+0x340/0x1480
[ 355.539442][ T6075] ? format_decode+0x5a3/0xe30
[ 355.539461][ T6075] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 355.539485][ T6075] ? snprintf+0xda/0x120
[ 355.539502][ T6075] ? __pfx_snprintf+0x10/0x10
[ 355.539517][ T6075] ? tomoyo_check_acl+0x386/0x400
[ 355.539535][ T6075] tomoyo_path_number_perm+0x438/0x5a0
[ 355.539549][ T6075] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 355.539564][ T6075] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 355.539584][ T6075] ? _raw_spin_lock_irq+0xae/0xf0
[ 355.539619][ T6075] ? __pfx_ptrace_notify+0x10/0x10
[ 355.539644][ T6075] security_file_ioctl+0xcb/0x2d0
[ 355.539659][ T6075] __se_sys_ioctl+0x47/0x170
[ 355.539675][ T6075] do_syscall_64+0xfa/0x3b0
[ 355.539691][ T6075] ? lockdep_hardirqs_on+0x9c/0x150
[ 355.539707][ T6075] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 355.539720][ T6075] ? clear_bhb_loop+0x60/0xb0
[ 355.539735][ T6075] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 355.539747][ T6075] RIP: 0033:0x7fea15a51869
[ 355.539760][ T6075] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 355.539771][ T6075] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6075] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6075] exit_group(0) = ?
[pid 6075] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6075, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6076 attached
, child_tidptr=0x555576720650) = 6076
[pid 6076] set_robust_list(0x555576720660, 24) = 0
[ 355.539787][ T6075] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 355.539796][ T6075] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 355.539806][ T6075] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 355.539814][ T6075] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 355.539822][ T6075] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 355.539840][ T6075]
[pid 6076] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6076] setpgid(0, 0) = 0
[pid 6076] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6076] write(3, "1000", 4) = 4
[pid 6076] close(3) = 0
executing program
[pid 6076] write(1, "executing program\n", 18) = 18
[pid 6076] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6076] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6076] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6076] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6076] write(6, "4", 1) = 1
[ 355.978851][ T6076] FAULT_INJECTION: forcing a failure.
[ 355.978851][ T6076] name failslab, interval 1, probability 0, space 0, times 0
[ 355.991881][ T6076] CPU: 1 UID: 0 PID: 6076 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 355.991904][ T6076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 355.991912][ T6076] Call Trace:
[ 355.991918][ T6076]
[ 355.991923][ T6076] dump_stack_lvl+0x189/0x250
[ 355.991943][ T6076] ? __pfx____ratelimit+0x10/0x10
[ 355.991961][ T6076] ? __pfx_dump_stack_lvl+0x10/0x10
[ 355.991975][ T6076] ? __pfx__printk+0x10/0x10
[ 355.991995][ T6076] ? __pfx___might_resched+0x10/0x10
[ 355.992019][ T6076] ? fs_reclaim_acquire+0x7d/0x100
[ 355.992040][ T6076] should_fail_ex+0x414/0x560
[ 355.992058][ T6076] should_failslab+0xa8/0x100
[ 355.992075][ T6076] __kmalloc_noprof+0xcb/0x4f0
[ 355.992089][ T6076] ? tomoyo_init_log+0x1a6e/0x1f70
[ 355.992110][ T6076] tomoyo_init_log+0x1a6e/0x1f70
[ 355.992140][ T6076] ? __pfx_tomoyo_init_log+0x10/0x10
[ 355.992157][ T6076] ? tomoyo_profile+0x11/0x50
[ 355.992173][ T6076] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 355.992191][ T6076] tomoyo_supervisor+0x340/0x1480
[ 355.992209][ T6076] ? format_decode+0x5a3/0xe30
[ 355.992228][ T6076] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 355.992252][ T6076] ? snprintf+0xda/0x120
[ 355.992269][ T6076] ? __pfx_snprintf+0x10/0x10
[ 355.992284][ T6076] ? tomoyo_check_acl+0x386/0x400
[ 355.992302][ T6076] tomoyo_path_number_perm+0x438/0x5a0
[ 355.992316][ T6076] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 355.992332][ T6076] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 355.992351][ T6076] ? _raw_spin_lock_irq+0xae/0xf0
[ 355.992387][ T6076] ? __pfx_ptrace_notify+0x10/0x10
[ 355.992412][ T6076] security_file_ioctl+0xcb/0x2d0
[ 355.992427][ T6076] __se_sys_ioctl+0x47/0x170
[ 355.992443][ T6076] do_syscall_64+0xfa/0x3b0
[ 355.992460][ T6076] ? lockdep_hardirqs_on+0x9c/0x150
[ 355.992476][ T6076] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 355.992489][ T6076] ? clear_bhb_loop+0x60/0xb0
[ 355.992504][ T6076] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 355.992516][ T6076] RIP: 0033:0x7fea15a51869
[ 355.992528][ T6076] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 355.992539][ T6076] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6076] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6076] exit_group(0) = ?
[pid 6076] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6076, si_uid=0, si_status=0, si_utime=0, si_stime=29 /* 0.29 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6077 attached
, child_tidptr=0x555576720650) = 6077
[pid 6077] set_robust_list(0x555576720660, 24) = 0
[pid 6077] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6077] setpgid(0, 0) = 0
[pid 6077] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6077] write(3, "1000", 4) = 4
[pid 6077] close(3) = 0
[pid 6077] write(1, "executing program\n", 18executing program
) = 18
[pid 6077] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6077] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6077] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6077] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6077] write(6, "4", 1) = 1
[ 355.992555][ T6076] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 355.992565][ T6076] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 355.992573][ T6076] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 355.992581][ T6076] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 355.992589][ T6076] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 355.992607][ T6076]
[pid 6077] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 356.298418][ T6077] FAULT_INJECTION: forcing a failure.
[ 356.298418][ T6077] name failslab, interval 1, probability 0, space 0, times 0
[ 356.311477][ T6077] CPU: 0 UID: 0 PID: 6077 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 356.311508][ T6077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 356.311521][ T6077] Call Trace:
[ 356.311532][ T6077]
[ 356.311542][ T6077] dump_stack_lvl+0x189/0x250
[ 356.311569][ T6077] ? __pfx____ratelimit+0x10/0x10
[ 356.311597][ T6077] ? __pfx_dump_stack_lvl+0x10/0x10
[ 356.311619][ T6077] ? __pfx__printk+0x10/0x10
[ 356.311652][ T6077] ? __pfx___might_resched+0x10/0x10
[ 356.311681][ T6077] ? fs_reclaim_acquire+0x7d/0x100
[ 356.311717][ T6077] should_fail_ex+0x414/0x560
[ 356.311760][ T6077] should_failslab+0xa8/0x100
[ 356.311790][ T6077] __kmalloc_noprof+0xcb/0x4f0
[ 356.311815][ T6077] ? tomoyo_init_log+0x1a6e/0x1f70
[ 356.311850][ T6077] tomoyo_init_log+0x1a6e/0x1f70
[ 356.311901][ T6077] ? __pfx_tomoyo_init_log+0x10/0x10
[ 356.311923][ T6077] ? tomoyo_profile+0x11/0x50
[ 356.311940][ T6077] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 356.311958][ T6077] tomoyo_supervisor+0x340/0x1480
[ 356.311977][ T6077] ? format_decode+0x5a3/0xe30
[ 356.312010][ T6077] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 356.312039][ T6077] ? snprintf+0xda/0x120
[ 356.312056][ T6077] ? __pfx_snprintf+0x10/0x10
[ 356.312072][ T6077] ? tomoyo_check_acl+0x386/0x400
[ 356.312090][ T6077] tomoyo_path_number_perm+0x438/0x5a0
[ 356.312104][ T6077] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 356.312119][ T6077] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 356.312139][ T6077] ? _raw_spin_lock_irq+0xae/0xf0
[ 356.312174][ T6077] ? __pfx_ptrace_notify+0x10/0x10
[ 356.312199][ T6077] security_file_ioctl+0xcb/0x2d0
[ 356.312214][ T6077] __se_sys_ioctl+0x47/0x170
[ 356.312230][ T6077] do_syscall_64+0xfa/0x3b0
[ 356.312248][ T6077] ? lockdep_hardirqs_on+0x9c/0x150
[ 356.312264][ T6077] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 356.312277][ T6077] ? clear_bhb_loop+0x60/0xb0
[ 356.312292][ T6077] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 356.312305][ T6077] RIP: 0033:0x7fea15a51869
[ 356.312318][ T6077] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 356.312330][ T6077] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6077] exit_group(0) = ?
[pid 6077] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6077, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 356.312346][ T6077] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 356.312356][ T6077] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 356.312364][ T6077] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 356.312372][ T6077] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 356.312380][ T6077] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 356.312398][ T6077]
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6078 attached
, child_tidptr=0x555576720650) = 6078
[pid 6078] set_robust_list(0x555576720660, 24) = 0
[pid 6078] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6078] setpgid(0, 0) = 0
[pid 6078] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6078] write(3, "1000", 4) = 4
[pid 6078] close(3) = 0
executing program
[pid 6078] write(1, "executing program\n", 18) = 18
[pid 6078] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6078] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6078] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6078] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6078] write(6, "4", 1) = 1
[pid 6078] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6078] exit_group(0) = ?
[ 356.736133][ T6078] FAULT_INJECTION: forcing a failure.
[ 356.736133][ T6078] name failslab, interval 1, probability 0, space 0, times 0
[ 356.749497][ T6078] CPU: 1 UID: 0 PID: 6078 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 356.749530][ T6078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 356.749542][ T6078] Call Trace:
[ 356.749551][ T6078]
[ 356.749560][ T6078] dump_stack_lvl+0x189/0x250
[ 356.749587][ T6078] ? __pfx____ratelimit+0x10/0x10
[ 356.749609][ T6078] ? __pfx_dump_stack_lvl+0x10/0x10
[ 356.749625][ T6078] ? __pfx__printk+0x10/0x10
[ 356.749644][ T6078] ? __pfx___might_resched+0x10/0x10
[ 356.749662][ T6078] ? fs_reclaim_acquire+0x7d/0x100
[ 356.749682][ T6078] should_fail_ex+0x414/0x560
[ 356.749699][ T6078] should_failslab+0xa8/0x100
[ 356.749716][ T6078] __kmalloc_noprof+0xcb/0x4f0
[ 356.749731][ T6078] ? tomoyo_init_log+0x1a6e/0x1f70
[ 356.749754][ T6078] tomoyo_init_log+0x1a6e/0x1f70
[ 356.749785][ T6078] ? __pfx_tomoyo_init_log+0x10/0x10
[ 356.749823][ T6078] ? tomoyo_profile+0x11/0x50
[ 356.749839][ T6078] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 356.749857][ T6078] tomoyo_supervisor+0x340/0x1480
[ 356.749876][ T6078] ? format_decode+0x5a3/0xe30
[ 356.749894][ T6078] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 356.749918][ T6078] ? snprintf+0xda/0x120
[ 356.749935][ T6078] ? __pfx_snprintf+0x10/0x10
[ 356.749950][ T6078] ? tomoyo_check_acl+0x386/0x400
[ 356.749968][ T6078] tomoyo_path_number_perm+0x438/0x5a0
[ 356.749982][ T6078] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 356.749997][ T6078] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 356.750017][ T6078] ? _raw_spin_lock_irq+0xae/0xf0
[ 356.750055][ T6078] ? __pfx_ptrace_notify+0x10/0x10
[ 356.750080][ T6078] security_file_ioctl+0xcb/0x2d0
[ 356.750096][ T6078] __se_sys_ioctl+0x47/0x170
[ 356.750112][ T6078] do_syscall_64+0xfa/0x3b0
[ 356.750128][ T6078] ? lockdep_hardirqs_on+0x9c/0x150
[ 356.750145][ T6078] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 356.750157][ T6078] ? clear_bhb_loop+0x60/0xb0
[ 356.750172][ T6078] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 356.750184][ T6078] RIP: 0033:0x7fea15a51869
[ 356.750197][ T6078] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 356.750209][ T6078] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6078] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6078, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576720650) = 6079
./strace-static-x86_64: Process 6079 attached
[pid 6079] set_robust_list(0x555576720660, 24) = 0
[pid 6079] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 356.750225][ T6078] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 356.750235][ T6078] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 356.750243][ T6078] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 356.750251][ T6078] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 356.750259][ T6078] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 356.750277][ T6078]
[pid 6079] setpgid(0, 0) = 0
[pid 6079] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6079] write(3, "1000", 4) = 4
[pid 6079] close(3) = 0
executing program
[pid 6079] write(1, "executing program\n", 18) = 18
[pid 6079] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6079] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6079] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6079] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6079] write(6, "4", 1) = 1
[pid 6079] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 357.118272][ T6079] FAULT_INJECTION: forcing a failure.
[ 357.118272][ T6079] name failslab, interval 1, probability 0, space 0, times 0
[ 357.131816][ T6079] CPU: 0 UID: 0 PID: 6079 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 357.131837][ T6079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 357.131846][ T6079] Call Trace:
[ 357.131852][ T6079]
[ 357.131857][ T6079] dump_stack_lvl+0x189/0x250
[ 357.131877][ T6079] ? __pfx____ratelimit+0x10/0x10
[ 357.131895][ T6079] ? __pfx_dump_stack_lvl+0x10/0x10
[ 357.131908][ T6079] ? __pfx__printk+0x10/0x10
[ 357.131927][ T6079] ? __pfx___might_resched+0x10/0x10
[ 357.131945][ T6079] ? fs_reclaim_acquire+0x7d/0x100
[ 357.131965][ T6079] should_fail_ex+0x414/0x560
[ 357.131983][ T6079] should_failslab+0xa8/0x100
[ 357.132000][ T6079] __kmalloc_noprof+0xcb/0x4f0
[ 357.132014][ T6079] ? tomoyo_init_log+0x1a6e/0x1f70
[ 357.132034][ T6079] tomoyo_init_log+0x1a6e/0x1f70
[ 357.132064][ T6079] ? __pfx_tomoyo_init_log+0x10/0x10
[ 357.132081][ T6079] ? tomoyo_profile+0x11/0x50
[ 357.132097][ T6079] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 357.132116][ T6079] tomoyo_supervisor+0x340/0x1480
[ 357.132134][ T6079] ? format_decode+0x5a3/0xe30
[ 357.132153][ T6079] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 357.132176][ T6079] ? snprintf+0xda/0x120
[ 357.132193][ T6079] ? __pfx_snprintf+0x10/0x10
[ 357.132208][ T6079] ? tomoyo_check_acl+0x386/0x400
[ 357.132227][ T6079] tomoyo_path_number_perm+0x438/0x5a0
[ 357.132240][ T6079] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 357.132255][ T6079] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 357.132275][ T6079] ? _raw_spin_lock_irq+0xae/0xf0
[ 357.132309][ T6079] ? __pfx_ptrace_notify+0x10/0x10
[ 357.132334][ T6079] security_file_ioctl+0xcb/0x2d0
[ 357.132349][ T6079] __se_sys_ioctl+0x47/0x170
[ 357.132365][ T6079] do_syscall_64+0xfa/0x3b0
[ 357.132382][ T6079] ? lockdep_hardirqs_on+0x9c/0x150
[ 357.132398][ T6079] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 357.132411][ T6079] ? clear_bhb_loop+0x60/0xb0
[ 357.132425][ T6079] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 357.132437][ T6079] RIP: 0033:0x7fea15a51869
[ 357.132450][ T6079] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 357.132461][ T6079] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6079] exit_group(0) = ?
[pid 6079] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6079, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6080 attached
, child_tidptr=0x555576720650) = 6080
[ 357.132477][ T6079] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 357.132487][ T6079] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 357.132495][ T6079] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 357.132503][ T6079] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 357.132511][ T6079] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 357.132529][ T6079]
[pid 6080] set_robust_list(0x555576720660, 24) = 0
[pid 6080] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6080] setpgid(0, 0) = 0
[pid 6080] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6080] write(3, "1000", 4) = 4
[pid 6080] close(3) = 0
executing program
[pid 6080] write(1, "executing program\n", 18) = 18
[pid 6080] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6080] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6080] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6080] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6080] write(6, "4", 1) = 1
[pid 6080] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6080] exit_group(0) = ?
[pid 6080] +++ exited with 0 +++
[ 357.571539][ T6080] FAULT_INJECTION: forcing a failure.
[ 357.571539][ T6080] name failslab, interval 1, probability 0, space 0, times 0
[ 357.584451][ T6080] CPU: 1 UID: 0 PID: 6080 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 357.584481][ T6080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 357.584493][ T6080] Call Trace:
[ 357.584502][ T6080]
[ 357.584511][ T6080] dump_stack_lvl+0x189/0x250
[ 357.584540][ T6080] ? __pfx____ratelimit+0x10/0x10
[ 357.584566][ T6080] ? __pfx_dump_stack_lvl+0x10/0x10
[ 357.584587][ T6080] ? __pfx__printk+0x10/0x10
[ 357.584619][ T6080] ? __pfx___might_resched+0x10/0x10
[ 357.584647][ T6080] ? fs_reclaim_acquire+0x7d/0x100
[ 357.584682][ T6080] should_fail_ex+0x414/0x560
[ 357.584712][ T6080] should_failslab+0xa8/0x100
[ 357.584742][ T6080] __kmalloc_noprof+0xcb/0x4f0
[ 357.584780][ T6080] ? tomoyo_init_log+0x1a6e/0x1f70
[ 357.584815][ T6080] tomoyo_init_log+0x1a6e/0x1f70
[ 357.584868][ T6080] ? __pfx_tomoyo_init_log+0x10/0x10
[ 357.584897][ T6080] ? tomoyo_profile+0x11/0x50
[ 357.584922][ T6080] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 357.584946][ T6080] tomoyo_supervisor+0x340/0x1480
[ 357.584966][ T6080] ? format_decode+0x5a3/0xe30
[ 357.584984][ T6080] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 357.585011][ T6080] ? snprintf+0xda/0x120
[ 357.585028][ T6080] ? __pfx_snprintf+0x10/0x10
[ 357.585044][ T6080] ? tomoyo_check_acl+0x386/0x400
[ 357.585062][ T6080] tomoyo_path_number_perm+0x438/0x5a0
[ 357.585076][ T6080] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 357.585091][ T6080] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 357.585111][ T6080] ? _raw_spin_lock_irq+0xae/0xf0
[ 357.585147][ T6080] ? __pfx_ptrace_notify+0x10/0x10
[ 357.585172][ T6080] security_file_ioctl+0xcb/0x2d0
[ 357.585187][ T6080] __se_sys_ioctl+0x47/0x170
[ 357.585203][ T6080] do_syscall_64+0xfa/0x3b0
[ 357.585231][ T6080] ? lockdep_hardirqs_on+0x9c/0x150
[ 357.585248][ T6080] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 357.585267][ T6080] ? clear_bhb_loop+0x60/0xb0
[ 357.585284][ T6080] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 357.585297][ T6080] RIP: 0033:0x7fea15a51869
[ 357.585310][ T6080] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 357.585321][ T6080] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6080, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6081 attached
, child_tidptr=0x555576720650) = 6081
[pid 6081] set_robust_list(0x555576720660, 24) = 0
[pid 6081] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6081] setpgid(0, 0) = 0
[pid 6081] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6081] write(3, "1000", 4) = 4
[pid 6081] close(3) = 0
[pid 6081] write(1, "executing program\n", 18executing program
) = 18
[pid 6081] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6081] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6081] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6081] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6081] write(6, "4", 1) = 1
[ 357.585337][ T6080] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 357.585347][ T6080] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 357.585355][ T6080] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 357.585363][ T6080] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 357.585371][ T6080] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 357.585390][ T6080]
[pid 6081] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6081] exit_group(0) = ?
[ 357.896535][ T6081] FAULT_INJECTION: forcing a failure.
[ 357.896535][ T6081] name failslab, interval 1, probability 0, space 0, times 0
[ 357.909714][ T6081] CPU: 0 UID: 0 PID: 6081 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 357.909737][ T6081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 357.909746][ T6081] Call Trace:
[ 357.909760][ T6081]
[ 357.909767][ T6081] dump_stack_lvl+0x189/0x250
[ 357.909787][ T6081] ? __pfx____ratelimit+0x10/0x10
[ 357.909805][ T6081] ? __pfx_dump_stack_lvl+0x10/0x10
[ 357.909819][ T6081] ? __pfx__printk+0x10/0x10
[ 357.909839][ T6081] ? __pfx___might_resched+0x10/0x10
[ 357.909856][ T6081] ? fs_reclaim_acquire+0x7d/0x100
[ 357.909876][ T6081] should_fail_ex+0x414/0x560
[ 357.909895][ T6081] should_failslab+0xa8/0x100
[ 357.909913][ T6081] __kmalloc_noprof+0xcb/0x4f0
[ 357.909928][ T6081] ? tomoyo_init_log+0x1a6e/0x1f70
[ 357.909948][ T6081] tomoyo_init_log+0x1a6e/0x1f70
[ 357.909978][ T6081] ? __pfx_tomoyo_init_log+0x10/0x10
[ 357.909995][ T6081] ? tomoyo_profile+0x11/0x50
[ 357.910012][ T6081] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 357.910030][ T6081] tomoyo_supervisor+0x340/0x1480
[ 357.910048][ T6081] ? format_decode+0x5a3/0xe30
[ 357.910067][ T6081] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 357.910091][ T6081] ? snprintf+0xda/0x120
[ 357.910108][ T6081] ? __pfx_snprintf+0x10/0x10
[ 357.910123][ T6081] ? tomoyo_check_acl+0x386/0x400
[ 357.910141][ T6081] tomoyo_path_number_perm+0x438/0x5a0
[ 357.910155][ T6081] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 357.910170][ T6081] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 357.910190][ T6081] ? _raw_spin_lock_irq+0xae/0xf0
[ 357.910225][ T6081] ? __pfx_ptrace_notify+0x10/0x10
[ 357.910250][ T6081] security_file_ioctl+0xcb/0x2d0
[ 357.910265][ T6081] __se_sys_ioctl+0x47/0x170
[ 357.910281][ T6081] do_syscall_64+0xfa/0x3b0
[ 357.910298][ T6081] ? lockdep_hardirqs_on+0x9c/0x150
[ 357.910314][ T6081] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 357.910328][ T6081] ? clear_bhb_loop+0x60/0xb0
[ 357.910342][ T6081] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 357.910355][ T6081] RIP: 0033:0x7fea15a51869
[ 357.910368][ T6081] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 357.910379][ T6081] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6081] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6081, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576720650) = 6082
./strace-static-x86_64: Process 6082 attached
[pid 6082] set_robust_list(0x555576720660, 24) = 0
[pid 6082] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6082] setpgid(0, 0) = 0
[pid 6082] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6082] write(3, "1000", 4) = 4
[pid 6082] close(3) = 0
executing program
[pid 6082] write(1, "executing program\n", 18) = 18
[ 357.910395][ T6081] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 357.910404][ T6081] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 357.910413][ T6081] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 357.910421][ T6081] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 357.910428][ T6081] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 357.910447][ T6081]
[pid 6082] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6082] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6082] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6082] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6082] write(6, "4", 1) = 1
[pid 6082] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6082] exit_group(0) = ?
[pid 6082] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6082, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 358.271422][ T6082] FAULT_INJECTION: forcing a failure.
[ 358.271422][ T6082] name failslab, interval 1, probability 0, space 0, times 0
[ 358.284550][ T6082] CPU: 1 UID: 0 PID: 6082 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 358.284571][ T6082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 358.284579][ T6082] Call Trace:
[ 358.284585][ T6082]
[ 358.284590][ T6082] dump_stack_lvl+0x189/0x250
[ 358.284609][ T6082] ? __pfx____ratelimit+0x10/0x10
[ 358.284627][ T6082] ? __pfx_dump_stack_lvl+0x10/0x10
[ 358.284640][ T6082] ? __pfx__printk+0x10/0x10
[ 358.284660][ T6082] ? __pfx___might_resched+0x10/0x10
[ 358.284678][ T6082] ? fs_reclaim_acquire+0x7d/0x100
[ 358.284698][ T6082] should_fail_ex+0x414/0x560
[ 358.284715][ T6082] should_failslab+0xa8/0x100
[ 358.284732][ T6082] __kmalloc_noprof+0xcb/0x4f0
[ 358.284747][ T6082] ? tomoyo_init_log+0x1a6e/0x1f70
[ 358.284769][ T6082] tomoyo_init_log+0x1a6e/0x1f70
[ 358.284799][ T6082] ? __pfx_tomoyo_init_log+0x10/0x10
[ 358.284816][ T6082] ? tomoyo_profile+0x11/0x50
[ 358.284832][ T6082] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 358.284851][ T6082] tomoyo_supervisor+0x340/0x1480
[ 358.284870][ T6082] ? format_decode+0x5a3/0xe30
[ 358.284888][ T6082] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 358.284912][ T6082] ? snprintf+0xda/0x120
[ 358.284929][ T6082] ? __pfx_snprintf+0x10/0x10
[ 358.284951][ T6082] ? tomoyo_check_acl+0x386/0x400
[ 358.284970][ T6082] tomoyo_path_number_perm+0x438/0x5a0
[ 358.284984][ T6082] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 358.284999][ T6082] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 358.285018][ T6082] ? _raw_spin_lock_irq+0xae/0xf0
[ 358.285053][ T6082] ? __pfx_ptrace_notify+0x10/0x10
[ 358.285078][ T6082] security_file_ioctl+0xcb/0x2d0
[ 358.285094][ T6082] __se_sys_ioctl+0x47/0x170
[ 358.285110][ T6082] do_syscall_64+0xfa/0x3b0
[ 358.285126][ T6082] ? lockdep_hardirqs_on+0x9c/0x150
[ 358.285143][ T6082] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 358.285155][ T6082] ? clear_bhb_loop+0x60/0xb0
[ 358.285170][ T6082] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 358.285182][ T6082] RIP: 0033:0x7fea15a51869
[ 358.285196][ T6082] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 358.285207][ T6082] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6083 attached
, child_tidptr=0x555576720650) = 6083
[pid 6083] set_robust_list(0x555576720660, 24) = 0
[pid 6083] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6083] setpgid(0, 0) = 0
[pid 6083] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6083] write(3, "1000", 4) = 4
[pid 6083] close(3) = 0
[pid 6083] write(1, "executing program\n", 18executing program
) = 18
[pid 6083] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6083] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6083] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6083] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6083] write(6, "4", 1) = 1
[ 358.285223][ T6082] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 358.285232][ T6082] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 358.285240][ T6082] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 358.285249][ T6082] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 358.285256][ T6082] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 358.285275][ T6082]
[pid 6083] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 358.581530][ T6083] FAULT_INJECTION: forcing a failure.
[ 358.581530][ T6083] name failslab, interval 1, probability 0, space 0, times 0
[ 358.594771][ T6083] CPU: 1 UID: 0 PID: 6083 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 358.594805][ T6083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 358.594818][ T6083] Call Trace:
[ 358.594831][ T6083]
[ 358.594842][ T6083] dump_stack_lvl+0x189/0x250
[ 358.594873][ T6083] ? __pfx____ratelimit+0x10/0x10
[ 358.595012][ T6083] ? __pfx_dump_stack_lvl+0x10/0x10
[ 358.595036][ T6083] ? __pfx__printk+0x10/0x10
[ 358.595057][ T6083] ? __pfx___might_resched+0x10/0x10
[ 358.595074][ T6083] ? fs_reclaim_acquire+0x7d/0x100
[ 358.595095][ T6083] should_fail_ex+0x414/0x560
[ 358.595114][ T6083] should_failslab+0xa8/0x100
[ 358.595133][ T6083] __kmalloc_noprof+0xcb/0x4f0
[ 358.595148][ T6083] ? tomoyo_init_log+0x1a6e/0x1f70
[ 358.595169][ T6083] tomoyo_init_log+0x1a6e/0x1f70
[ 358.595200][ T6083] ? __pfx_tomoyo_init_log+0x10/0x10
[ 358.595217][ T6083] ? tomoyo_profile+0x11/0x50
[ 358.595233][ T6083] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 358.595251][ T6083] tomoyo_supervisor+0x340/0x1480
[ 358.595270][ T6083] ? format_decode+0x5a3/0xe30
[ 358.595289][ T6083] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 358.595313][ T6083] ? snprintf+0xda/0x120
[ 358.595338][ T6083] ? __pfx_snprintf+0x10/0x10
[ 358.595353][ T6083] ? tomoyo_check_acl+0x386/0x400
[ 358.595376][ T6083] tomoyo_path_number_perm+0x438/0x5a0
[ 358.595390][ T6083] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 358.595405][ T6083] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 358.595425][ T6083] ? _raw_spin_lock_irq+0xae/0xf0
[ 358.595460][ T6083] ? __pfx_ptrace_notify+0x10/0x10
[ 358.595485][ T6083] security_file_ioctl+0xcb/0x2d0
[ 358.595501][ T6083] __se_sys_ioctl+0x47/0x170
[ 358.595516][ T6083] do_syscall_64+0xfa/0x3b0
[ 358.595533][ T6083] ? lockdep_hardirqs_on+0x9c/0x150
[ 358.595550][ T6083] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 358.595563][ T6083] ? clear_bhb_loop+0x60/0xb0
[ 358.595578][ T6083] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 358.595590][ T6083] RIP: 0033:0x7fea15a51869
[ 358.595605][ T6083] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 358.595616][ T6083] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6083] exit_group(0) = ?
[pid 6083] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6083, si_uid=0, si_status=0, si_utime=0, si_stime=27 /* 0.27 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6084 attached
[pid 6084] set_robust_list(0x555576720660, 24
[pid 5883] <... clone resumed>, child_tidptr=0x555576720650) = 6084
[pid 6084] <... set_robust_list resumed>) = 0
[pid 6084] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 358.595632][ T6083] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 358.595642][ T6083] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 358.595650][ T6083] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 358.595659][ T6083] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 358.595666][ T6083] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 358.595684][ T6083]
[pid 6084] setpgid(0, 0) = 0
[pid 6084] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6084] write(3, "1000", 4) = 4
[pid 6084] close(3) = 0
[pid 6084] write(1, "executing program\n", 18executing program
) = 18
[pid 6084] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6084] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6084] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6084] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6084] write(6, "4", 1) = 1
[pid 6084] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6084] exit_group(0) = ?
[pid 6084] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6084, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
[ 358.984752][ T6084] FAULT_INJECTION: forcing a failure.
[ 358.984752][ T6084] name failslab, interval 1, probability 0, space 0, times 0
[ 358.997795][ T6084] CPU: 0 UID: 0 PID: 6084 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 358.997826][ T6084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 358.997838][ T6084] Call Trace:
[ 358.997848][ T6084]
[ 358.997857][ T6084] dump_stack_lvl+0x189/0x250
[ 358.997878][ T6084] ? __pfx____ratelimit+0x10/0x10
[ 358.997895][ T6084] ? __pfx_dump_stack_lvl+0x10/0x10
[ 358.997909][ T6084] ? __pfx__printk+0x10/0x10
[ 358.997929][ T6084] ? __pfx___might_resched+0x10/0x10
[ 358.997949][ T6084] ? fs_reclaim_acquire+0x7d/0x100
[ 358.997969][ T6084] should_fail_ex+0x414/0x560
[ 358.997987][ T6084] should_failslab+0xa8/0x100
[ 358.998005][ T6084] __kmalloc_noprof+0xcb/0x4f0
[ 358.998019][ T6084] ? tomoyo_init_log+0x1a6e/0x1f70
[ 358.998039][ T6084] tomoyo_init_log+0x1a6e/0x1f70
[ 358.998070][ T6084] ? __pfx_tomoyo_init_log+0x10/0x10
[ 358.998087][ T6084] ? tomoyo_profile+0x11/0x50
[ 358.998103][ T6084] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 358.998121][ T6084] tomoyo_supervisor+0x340/0x1480
[ 358.998140][ T6084] ? format_decode+0x5a3/0xe30
[ 358.998158][ T6084] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 358.998182][ T6084] ? snprintf+0xda/0x120
[ 358.998199][ T6084] ? __pfx_snprintf+0x10/0x10
[ 358.998214][ T6084] ? tomoyo_check_acl+0x386/0x400
[ 358.998232][ T6084] tomoyo_path_number_perm+0x438/0x5a0
[ 358.998246][ T6084] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 358.998261][ T6084] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 358.998281][ T6084] ? _raw_spin_lock_irq+0xae/0xf0
[ 358.998316][ T6084] ? __pfx_ptrace_notify+0x10/0x10
[ 358.998341][ T6084] security_file_ioctl+0xcb/0x2d0
[ 358.998356][ T6084] __se_sys_ioctl+0x47/0x170
[ 358.998372][ T6084] do_syscall_64+0xfa/0x3b0
[ 358.998389][ T6084] ? lockdep_hardirqs_on+0x9c/0x150
[ 358.998406][ T6084] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 358.998419][ T6084] ? clear_bhb_loop+0x60/0xb0
[ 358.998434][ T6084] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 358.998446][ T6084] RIP: 0033:0x7fea15a51869
[ 358.998459][ T6084] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 358.998470][ T6084] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6085 attached
, child_tidptr=0x555576720650) = 6085
[pid 6085] set_robust_list(0x555576720660, 24) = 0
[pid 6085] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 358.998487][ T6084] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 358.998496][ T6084] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 358.998505][ T6084] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 358.998513][ T6084] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 358.998520][ T6084] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 358.998539][ T6084]
[pid 6085] setpgid(0, 0) = 0
[pid 6085] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6085] write(3, "1000", 4) = 4
[pid 6085] close(3executing program
) = 0
[pid 6085] write(1, "executing program\n", 18) = 18
[pid 6085] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6085] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6085] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6085] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6085] write(6, "4", 1) = 1
[pid 6085] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 359.367479][ T6085] FAULT_INJECTION: forcing a failure.
[ 359.367479][ T6085] name failslab, interval 1, probability 0, space 0, times 0
[ 359.380673][ T6085] CPU: 1 UID: 0 PID: 6085 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 359.380706][ T6085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 359.380717][ T6085] Call Trace:
[ 359.380727][ T6085]
[ 359.380736][ T6085] dump_stack_lvl+0x189/0x250
[ 359.380775][ T6085] ? __pfx____ratelimit+0x10/0x10
[ 359.380804][ T6085] ? __pfx_dump_stack_lvl+0x10/0x10
[ 359.380828][ T6085] ? __pfx__printk+0x10/0x10
[ 359.380861][ T6085] ? __pfx___might_resched+0x10/0x10
[ 359.380889][ T6085] ? fs_reclaim_acquire+0x7d/0x100
[ 359.380924][ T6085] should_fail_ex+0x414/0x560
[ 359.380954][ T6085] should_failslab+0xa8/0x100
[ 359.380982][ T6085] __kmalloc_noprof+0xcb/0x4f0
[ 359.381006][ T6085] ? tomoyo_init_log+0x1a6e/0x1f70
[ 359.381033][ T6085] tomoyo_init_log+0x1a6e/0x1f70
[ 359.381064][ T6085] ? __pfx_tomoyo_init_log+0x10/0x10
[ 359.381081][ T6085] ? tomoyo_profile+0x11/0x50
[ 359.381097][ T6085] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 359.381115][ T6085] tomoyo_supervisor+0x340/0x1480
[ 359.381134][ T6085] ? format_decode+0x5a3/0xe30
[ 359.381152][ T6085] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 359.381176][ T6085] ? snprintf+0xda/0x120
[ 359.381193][ T6085] ? __pfx_snprintf+0x10/0x10
[ 359.381208][ T6085] ? tomoyo_check_acl+0x386/0x400
[ 359.381227][ T6085] tomoyo_path_number_perm+0x438/0x5a0
[ 359.381241][ T6085] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 359.381256][ T6085] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 359.381275][ T6085] ? _raw_spin_lock_irq+0xae/0xf0
[ 359.381310][ T6085] ? __pfx_ptrace_notify+0x10/0x10
[ 359.381335][ T6085] security_file_ioctl+0xcb/0x2d0
[ 359.381350][ T6085] __se_sys_ioctl+0x47/0x170
[ 359.381367][ T6085] do_syscall_64+0xfa/0x3b0
[ 359.381384][ T6085] ? lockdep_hardirqs_on+0x9c/0x150
[ 359.381400][ T6085] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 359.381413][ T6085] ? clear_bhb_loop+0x60/0xb0
[ 359.381428][ T6085] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 359.381440][ T6085] RIP: 0033:0x7fea15a51869
[ 359.381453][ T6085] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 359.381464][ T6085] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 359.381479][ T6085] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6085] exit_group(0) = ?
[pid 6085] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6085, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 359.381489][ T6085] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 359.381497][ T6085] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 359.381506][ T6085] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 359.381513][ T6085] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 359.381532][ T6085]
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6086 attached
, child_tidptr=0x555576720650) = 6086
[pid 6086] set_robust_list(0x555576720660, 24) = 0
[pid 6086] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6086] setpgid(0, 0) = 0
[pid 6086] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXECexecuting program
) = 3
[pid 6086] write(3, "1000", 4) = 4
[pid 6086] close(3) = 0
[pid 6086] write(1, "executing program\n", 18) = 18
[pid 6086] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6086] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6086] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6086] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6086] write(6, "4", 1) = 1
[pid 6086] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 359.732388][ T6086] FAULT_INJECTION: forcing a failure.
[ 359.732388][ T6086] name failslab, interval 1, probability 0, space 0, times 0
[ 359.745816][ T6086] CPU: 1 UID: 0 PID: 6086 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 359.745849][ T6086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 359.745863][ T6086] Call Trace:
[ 359.745872][ T6086]
[ 359.745881][ T6086] dump_stack_lvl+0x189/0x250
[ 359.745911][ T6086] ? __pfx____ratelimit+0x10/0x10
[ 359.745939][ T6086] ? __pfx_dump_stack_lvl+0x10/0x10
[ 359.745962][ T6086] ? __pfx__printk+0x10/0x10
[ 359.745994][ T6086] ? __pfx___might_resched+0x10/0x10
[ 359.746021][ T6086] ? fs_reclaim_acquire+0x7d/0x100
[ 359.746043][ T6086] should_fail_ex+0x414/0x560
[ 359.746062][ T6086] should_failslab+0xa8/0x100
[ 359.746080][ T6086] __kmalloc_noprof+0xcb/0x4f0
[ 359.746094][ T6086] ? tomoyo_init_log+0x1a6e/0x1f70
[ 359.746115][ T6086] tomoyo_init_log+0x1a6e/0x1f70
[ 359.746148][ T6086] ? __pfx_tomoyo_init_log+0x10/0x10
[ 359.746165][ T6086] ? tomoyo_profile+0x11/0x50
[ 359.746181][ T6086] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 359.746199][ T6086] tomoyo_supervisor+0x340/0x1480
[ 359.746219][ T6086] ? format_decode+0x5a3/0xe30
[ 359.746237][ T6086] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 359.746262][ T6086] ? snprintf+0xda/0x120
[ 359.746280][ T6086] ? __pfx_snprintf+0x10/0x10
[ 359.746296][ T6086] ? tomoyo_check_acl+0x386/0x400
[ 359.746314][ T6086] tomoyo_path_number_perm+0x438/0x5a0
[ 359.746329][ T6086] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 359.746345][ T6086] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 359.746365][ T6086] ? _raw_spin_lock_irq+0xae/0xf0
[ 359.746401][ T6086] ? __pfx_ptrace_notify+0x10/0x10
[ 359.746427][ T6086] security_file_ioctl+0xcb/0x2d0
[ 359.746442][ T6086] __se_sys_ioctl+0x47/0x170
[ 359.746459][ T6086] do_syscall_64+0xfa/0x3b0
[ 359.746476][ T6086] ? lockdep_hardirqs_on+0x9c/0x150
[ 359.746494][ T6086] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 359.746506][ T6086] ? clear_bhb_loop+0x60/0xb0
[ 359.746522][ T6086] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 359.746535][ T6086] RIP: 0033:0x7fea15a51869
[ 359.746548][ T6086] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 359.746559][ T6086] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6086] exit_group(0) = ?
[pid 6086] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6086, si_uid=0, si_status=0, si_utime=0, si_stime=28 /* 0.28 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6087 attached
, child_tidptr=0x555576720650) = 6087
[pid 6087] set_robust_list(0x555576720660, 24) = 0
[pid 6087] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6087] setpgid(0, 0) = 0
[ 359.746576][ T6086] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 359.746586][ T6086] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 359.746594][ T6086] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 359.746602][ T6086] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 359.746610][ T6086] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 359.746629][ T6086]
[pid 6087] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6087] write(3, "1000", 4) = 4
[pid 6087] close(3) = 0
[pid 6087] write(1, "executing program\n", 18executing program
) = 18
[pid 6087] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6087] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6087] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6087] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6087] write(6, "4", 1) = 1
[pid 6087] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6087] exit_group(0) = ?
[ 360.116837][ T6087] FAULT_INJECTION: forcing a failure.
[ 360.116837][ T6087] name failslab, interval 1, probability 0, space 0, times 0
[ 360.130278][ T6087] CPU: 0 UID: 0 PID: 6087 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 360.130310][ T6087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 360.130322][ T6087] Call Trace:
[ 360.130331][ T6087]
[ 360.130341][ T6087] dump_stack_lvl+0x189/0x250
[ 360.130369][ T6087] ? __pfx____ratelimit+0x10/0x10
[ 360.130398][ T6087] ? __pfx_dump_stack_lvl+0x10/0x10
[ 360.130421][ T6087] ? __pfx__printk+0x10/0x10
[ 360.130456][ T6087] ? __pfx___might_resched+0x10/0x10
[ 360.130484][ T6087] ? fs_reclaim_acquire+0x7d/0x100
[ 360.130520][ T6087] should_fail_ex+0x414/0x560
[ 360.130550][ T6087] should_failslab+0xa8/0x100
[ 360.130579][ T6087] __kmalloc_noprof+0xcb/0x4f0
[ 360.130603][ T6087] ? tomoyo_init_log+0x1a6e/0x1f70
[ 360.130632][ T6087] tomoyo_init_log+0x1a6e/0x1f70
[ 360.130663][ T6087] ? __pfx_tomoyo_init_log+0x10/0x10
[ 360.130681][ T6087] ? tomoyo_profile+0x11/0x50
[ 360.130697][ T6087] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 360.130715][ T6087] tomoyo_supervisor+0x340/0x1480
[ 360.130752][ T6087] ? format_decode+0x5a3/0xe30
[ 360.130771][ T6087] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 360.130794][ T6087] ? snprintf+0xda/0x120
[ 360.130812][ T6087] ? __pfx_snprintf+0x10/0x10
[ 360.130827][ T6087] ? tomoyo_check_acl+0x386/0x400
[ 360.130844][ T6087] tomoyo_path_number_perm+0x438/0x5a0
[ 360.130858][ T6087] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 360.130873][ T6087] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 360.130892][ T6087] ? _raw_spin_lock_irq+0xae/0xf0
[ 360.130927][ T6087] ? __pfx_ptrace_notify+0x10/0x10
[ 360.130952][ T6087] security_file_ioctl+0xcb/0x2d0
[ 360.130968][ T6087] __se_sys_ioctl+0x47/0x170
[ 360.130987][ T6087] do_syscall_64+0xfa/0x3b0
[ 360.131004][ T6087] ? lockdep_hardirqs_on+0x9c/0x150
[ 360.131021][ T6087] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 360.131033][ T6087] ? clear_bhb_loop+0x60/0xb0
[ 360.131048][ T6087] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 360.131060][ T6087] RIP: 0033:0x7fea15a51869
[ 360.131074][ T6087] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 360.131085][ T6087] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6087] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6087, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6088 attached
, child_tidptr=0x555576720650) = 6088
[pid 6088] set_robust_list(0x555576720660, 24) = 0
[pid 6088] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 360.131100][ T6087] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 360.131110][ T6087] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 360.131118][ T6087] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 360.131127][ T6087] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 360.131134][ T6087] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 360.131153][ T6087]
[pid 6088] setpgid(0, 0) = 0
[pid 6088] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6088] write(3, "1000", 4) = 4
executing program
[pid 6088] close(3) = 0
[pid 6088] write(1, "executing program\n", 18) = 18
[pid 6088] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6088] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6088] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6088] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6088] write(6, "4", 1) = 1
[pid 6088] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 360.528185][ T6088] FAULT_INJECTION: forcing a failure.
[ 360.528185][ T6088] name failslab, interval 1, probability 0, space 0, times 0
[ 360.541566][ T6088] CPU: 1 UID: 0 PID: 6088 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 360.541587][ T6088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 360.541596][ T6088] Call Trace:
[ 360.541601][ T6088]
[ 360.541607][ T6088] dump_stack_lvl+0x189/0x250
[ 360.541626][ T6088] ? __pfx____ratelimit+0x10/0x10
[ 360.541645][ T6088] ? __pfx_dump_stack_lvl+0x10/0x10
[ 360.541658][ T6088] ? __pfx__printk+0x10/0x10
[ 360.541679][ T6088] ? __pfx___might_resched+0x10/0x10
[ 360.541696][ T6088] ? fs_reclaim_acquire+0x7d/0x100
[ 360.541726][ T6088] should_fail_ex+0x414/0x560
[ 360.541744][ T6088] should_failslab+0xa8/0x100
[ 360.541761][ T6088] __kmalloc_noprof+0xcb/0x4f0
[ 360.541776][ T6088] ? tomoyo_init_log+0x1a6e/0x1f70
[ 360.541797][ T6088] tomoyo_init_log+0x1a6e/0x1f70
[ 360.541827][ T6088] ? __pfx_tomoyo_init_log+0x10/0x10
[ 360.541844][ T6088] ? tomoyo_profile+0x11/0x50
[ 360.541861][ T6088] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 360.541878][ T6088] tomoyo_supervisor+0x340/0x1480
[ 360.541897][ T6088] ? format_decode+0x5a3/0xe30
[ 360.541916][ T6088] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 360.541941][ T6088] ? snprintf+0xda/0x120
[ 360.541958][ T6088] ? __pfx_snprintf+0x10/0x10
[ 360.541979][ T6088] ? tomoyo_check_acl+0x386/0x400
[ 360.541997][ T6088] tomoyo_path_number_perm+0x438/0x5a0
[ 360.542011][ T6088] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 360.542026][ T6088] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 360.542046][ T6088] ? _raw_spin_lock_irq+0xae/0xf0
[ 360.542082][ T6088] ? __pfx_ptrace_notify+0x10/0x10
[ 360.542107][ T6088] security_file_ioctl+0xcb/0x2d0
[ 360.542132][ T6088] __se_sys_ioctl+0x47/0x170
[ 360.542153][ T6088] do_syscall_64+0xfa/0x3b0
[ 360.542173][ T6088] ? lockdep_hardirqs_on+0x9c/0x150
[ 360.542190][ T6088] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 360.542205][ T6088] ? clear_bhb_loop+0x60/0xb0
[ 360.542223][ T6088] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 360.542236][ T6088] RIP: 0033:0x7fea15a51869
[ 360.542251][ T6088] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 360.542262][ T6088] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6088] exit_group(0) = ?
[pid 6088] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6088, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6089 attached
, child_tidptr=0x555576720650) = 6089
[pid 6089] set_robust_list(0x555576720660, 24) = 0
[pid 6089] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6089] setpgid(0, 0) = 0
[pid 6089] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6089] write(3, "1000", 4) = 4
[pid 6089] close(3) = 0
executing program
[pid 6089] write(1, "executing program\n", 18) = 18
[pid 6089] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6089] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[ 360.542278][ T6088] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 360.542288][ T6088] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 360.542296][ T6088] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 360.542304][ T6088] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 360.542312][ T6088] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 360.542330][ T6088]
[pid 6089] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6089] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6089] write(6, "4", 1) = 1
[pid 6089] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 360.907513][ T6089] FAULT_INJECTION: forcing a failure.
[ 360.907513][ T6089] name failslab, interval 1, probability 0, space 0, times 0
[ 360.921318][ T6089] CPU: 0 UID: 0 PID: 6089 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 360.921352][ T6089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 360.921364][ T6089] Call Trace:
[ 360.921375][ T6089]
[ 360.921386][ T6089] dump_stack_lvl+0x189/0x250
[ 360.921417][ T6089] ? __pfx____ratelimit+0x10/0x10
[ 360.921446][ T6089] ? __pfx_dump_stack_lvl+0x10/0x10
[ 360.921469][ T6089] ? __pfx__printk+0x10/0x10
[ 360.921504][ T6089] ? __pfx___might_resched+0x10/0x10
[ 360.921534][ T6089] ? fs_reclaim_acquire+0x7d/0x100
[ 360.921569][ T6089] should_fail_ex+0x414/0x560
[ 360.921599][ T6089] should_failslab+0xa8/0x100
[ 360.921629][ T6089] __kmalloc_noprof+0xcb/0x4f0
[ 360.921653][ T6089] ? tomoyo_init_log+0x1a6e/0x1f70
[ 360.921686][ T6089] tomoyo_init_log+0x1a6e/0x1f70
[ 360.921733][ T6089] ? __pfx_tomoyo_init_log+0x10/0x10
[ 360.921751][ T6089] ? tomoyo_profile+0x11/0x50
[ 360.921768][ T6089] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 360.921791][ T6089] tomoyo_supervisor+0x340/0x1480
[ 360.921817][ T6089] ? format_decode+0x5a3/0xe30
[ 360.921844][ T6089] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 360.921874][ T6089] ? snprintf+0xda/0x120
[ 360.921892][ T6089] ? __pfx_snprintf+0x10/0x10
[ 360.921907][ T6089] ? tomoyo_check_acl+0x386/0x400
[ 360.921925][ T6089] tomoyo_path_number_perm+0x438/0x5a0
[ 360.921940][ T6089] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 360.921955][ T6089] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 360.921975][ T6089] ? _raw_spin_lock_irq+0xae/0xf0
[ 360.922011][ T6089] ? __pfx_ptrace_notify+0x10/0x10
[ 360.922137][ T6089] security_file_ioctl+0xcb/0x2d0
[ 360.922167][ T6089] __se_sys_ioctl+0x47/0x170
[ 360.922184][ T6089] do_syscall_64+0xfa/0x3b0
[ 360.922203][ T6089] ? lockdep_hardirqs_on+0x9c/0x150
[ 360.922221][ T6089] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 360.922233][ T6089] ? clear_bhb_loop+0x60/0xb0
[ 360.922248][ T6089] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 360.922267][ T6089] RIP: 0033:0x7fea15a51869
[ 360.922281][ T6089] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 360.922297][ T6089] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 360.922313][ T6089] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6089] exit_group(0) = ?
[pid 6089] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6089, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6090 attached
, child_tidptr=0x555576720650) = 6090
[pid 6090] set_robust_list(0x555576720660, 24) = 0
[pid 6090] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6090] setpgid(0, 0) = 0
[pid 6090] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6090] write(3, "1000", 4) = 4
[pid 6090] close(3) = 0
[pid 6090] write(1, "executing program\n", 18executing program
) = 18
[ 360.922323][ T6089] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 360.922331][ T6089] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 360.922339][ T6089] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 360.922347][ T6089] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 360.922366][ T6089]
[pid 6090] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6090] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6090] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6090] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6090] write(6, "4", 1) = 1
[ 361.266331][ T6090] FAULT_INJECTION: forcing a failure.
[ 361.266331][ T6090] name failslab, interval 1, probability 0, space 0, times 0
[ 361.279506][ T6090] CPU: 0 UID: 0 PID: 6090 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 361.279535][ T6090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 361.279547][ T6090] Call Trace:
[ 361.279558][ T6090]
[ 361.279570][ T6090] dump_stack_lvl+0x189/0x250
[ 361.279598][ T6090] ? __pfx____ratelimit+0x10/0x10
[ 361.279627][ T6090] ? __pfx_dump_stack_lvl+0x10/0x10
[ 361.279649][ T6090] ? __pfx__printk+0x10/0x10
[ 361.279682][ T6090] ? __pfx___might_resched+0x10/0x10
[ 361.279712][ T6090] ? fs_reclaim_acquire+0x7d/0x100
[ 361.279745][ T6090] should_fail_ex+0x414/0x560
[ 361.279775][ T6090] should_failslab+0xa8/0x100
[ 361.279804][ T6090] __kmalloc_noprof+0xcb/0x4f0
[ 361.279828][ T6090] ? tomoyo_init_log+0x1a6e/0x1f70
[ 361.279858][ T6090] tomoyo_init_log+0x1a6e/0x1f70
[ 361.279889][ T6090] ? __pfx_tomoyo_init_log+0x10/0x10
[ 361.279907][ T6090] ? tomoyo_profile+0x11/0x50
[ 361.279923][ T6090] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 361.279941][ T6090] tomoyo_supervisor+0x340/0x1480
[ 361.279960][ T6090] ? format_decode+0x5a3/0xe30
[ 361.279990][ T6090] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 361.280014][ T6090] ? snprintf+0xda/0x120
[ 361.280031][ T6090] ? __pfx_snprintf+0x10/0x10
[ 361.280046][ T6090] ? tomoyo_check_acl+0x386/0x400
[ 361.280065][ T6090] tomoyo_path_number_perm+0x438/0x5a0
[ 361.280079][ T6090] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 361.280095][ T6090] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 361.280114][ T6090] ? _raw_spin_lock_irq+0xae/0xf0
[ 361.280151][ T6090] ? __pfx_ptrace_notify+0x10/0x10
[ 361.280177][ T6090] security_file_ioctl+0xcb/0x2d0
[ 361.280192][ T6090] __se_sys_ioctl+0x47/0x170
[ 361.280209][ T6090] do_syscall_64+0xfa/0x3b0
[ 361.280226][ T6090] ? lockdep_hardirqs_on+0x9c/0x150
[ 361.280242][ T6090] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 361.280255][ T6090] ? clear_bhb_loop+0x60/0xb0
[ 361.280270][ T6090] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 361.280283][ T6090] RIP: 0033:0x7fea15a51869
[ 361.280295][ T6090] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 361.280307][ T6090] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 361.280322][ T6090] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6090] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6090] exit_group(0) = ?
[pid 6090] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6090, si_uid=0, si_status=0, si_utime=0, si_stime=25 /* 0.25 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6091 attached
, child_tidptr=0x555576720650) = 6091
[pid 6091] set_robust_list(0x555576720660, 24) = 0
[pid 6091] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6091] setpgid(0, 0) = 0
[pid 6091] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6091] write(3, "1000", 4) = 4
[pid 6091] close(3executing program
) = 0
[pid 6091] write(1, "executing program\n", 18) = 18
[pid 6091] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6091] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6091] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6091] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6091] write(6, "4", 1) = 1
[ 361.280332][ T6090] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 361.280340][ T6090] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 361.280348][ T6090] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 361.280356][ T6090] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 361.280374][ T6090]
[pid 6091] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6091] exit_group(0) = ?
[pid 6091] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6091, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
[ 361.582778][ T6091] FAULT_INJECTION: forcing a failure.
[ 361.582778][ T6091] name failslab, interval 1, probability 0, space 0, times 0
[ 361.595736][ T6091] CPU: 1 UID: 0 PID: 6091 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 361.595757][ T6091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 361.595765][ T6091] Call Trace:
[ 361.595773][ T6091]
[ 361.595780][ T6091] dump_stack_lvl+0x189/0x250
[ 361.595799][ T6091] ? __pfx____ratelimit+0x10/0x10
[ 361.595817][ T6091] ? __pfx_dump_stack_lvl+0x10/0x10
[ 361.595831][ T6091] ? __pfx__printk+0x10/0x10
[ 361.595850][ T6091] ? __pfx___might_resched+0x10/0x10
[ 361.595868][ T6091] ? fs_reclaim_acquire+0x7d/0x100
[ 361.595888][ T6091] should_fail_ex+0x414/0x560
[ 361.595906][ T6091] should_failslab+0xa8/0x100
[ 361.595924][ T6091] __kmalloc_noprof+0xcb/0x4f0
[ 361.595938][ T6091] ? tomoyo_init_log+0x1a6e/0x1f70
[ 361.595959][ T6091] tomoyo_init_log+0x1a6e/0x1f70
[ 361.595990][ T6091] ? __pfx_tomoyo_init_log+0x10/0x10
[ 361.596014][ T6091] ? tomoyo_profile+0x11/0x50
[ 361.596030][ T6091] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 361.596048][ T6091] tomoyo_supervisor+0x340/0x1480
[ 361.596067][ T6091] ? format_decode+0x5a3/0xe30
[ 361.596085][ T6091] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 361.596109][ T6091] ? snprintf+0xda/0x120
[ 361.596126][ T6091] ? __pfx_snprintf+0x10/0x10
[ 361.596141][ T6091] ? tomoyo_check_acl+0x386/0x400
[ 361.596160][ T6091] tomoyo_path_number_perm+0x438/0x5a0
[ 361.596174][ T6091] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 361.596189][ T6091] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 361.596209][ T6091] ? _raw_spin_lock_irq+0xae/0xf0
[ 361.596244][ T6091] ? __pfx_ptrace_notify+0x10/0x10
[ 361.596269][ T6091] security_file_ioctl+0xcb/0x2d0
[ 361.596284][ T6091] __se_sys_ioctl+0x47/0x170
[ 361.596300][ T6091] do_syscall_64+0xfa/0x3b0
[ 361.596318][ T6091] ? lockdep_hardirqs_on+0x9c/0x150
[ 361.596334][ T6091] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 361.596347][ T6091] ? clear_bhb_loop+0x60/0xb0
[ 361.596363][ T6091] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 361.596375][ T6091] RIP: 0033:0x7fea15a51869
[ 361.596388][ T6091] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 361.596400][ T6091] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6092 attached
, child_tidptr=0x555576720650) = 6092
[pid 6092] set_robust_list(0x555576720660, 24) = 0
[pid 6092] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6092] setpgid(0, 0) = 0
[pid 6092] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6092] write(3, "1000", 4) = 4
[pid 6092] close(3) = 0
[pid 6092] write(1, "executing program\n", 18executing program
) = 18
[pid 6092] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6092] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6092] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6092] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6092] write(6, "4", 1) = 1
[ 361.596415][ T6091] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 361.596425][ T6091] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 361.596433][ T6091] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 361.596441][ T6091] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 361.596449][ T6091] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 361.596468][ T6091]
[pid 6092] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6092] exit_group(0) = ?
[pid 6092] +++ exited with 0 +++
[ 361.913407][ T6092] FAULT_INJECTION: forcing a failure.
[ 361.913407][ T6092] name failslab, interval 1, probability 0, space 0, times 0
[ 361.927020][ T6092] CPU: 0 UID: 0 PID: 6092 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 361.927042][ T6092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 361.927050][ T6092] Call Trace:
[ 361.927056][ T6092]
[ 361.927062][ T6092] dump_stack_lvl+0x189/0x250
[ 361.927081][ T6092] ? __pfx____ratelimit+0x10/0x10
[ 361.927099][ T6092] ? __pfx_dump_stack_lvl+0x10/0x10
[ 361.927113][ T6092] ? __pfx__printk+0x10/0x10
[ 361.927132][ T6092] ? __pfx___might_resched+0x10/0x10
[ 361.927151][ T6092] ? fs_reclaim_acquire+0x7d/0x100
[ 361.927171][ T6092] should_fail_ex+0x414/0x560
[ 361.927188][ T6092] should_failslab+0xa8/0x100
[ 361.927205][ T6092] __kmalloc_noprof+0xcb/0x4f0
[ 361.927220][ T6092] ? tomoyo_init_log+0x1a6e/0x1f70
[ 361.927240][ T6092] tomoyo_init_log+0x1a6e/0x1f70
[ 361.927271][ T6092] ? __pfx_tomoyo_init_log+0x10/0x10
[ 361.927288][ T6092] ? tomoyo_profile+0x11/0x50
[ 361.927304][ T6092] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 361.927322][ T6092] tomoyo_supervisor+0x340/0x1480
[ 361.927341][ T6092] ? format_decode+0x5a3/0xe30
[ 361.927359][ T6092] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 361.927383][ T6092] ? snprintf+0xda/0x120
[ 361.927400][ T6092] ? __pfx_snprintf+0x10/0x10
[ 361.927415][ T6092] ? tomoyo_check_acl+0x386/0x400
[ 361.927434][ T6092] tomoyo_path_number_perm+0x438/0x5a0
[ 361.927448][ T6092] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 361.927463][ T6092] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 361.927482][ T6092] ? _raw_spin_lock_irq+0xae/0xf0
[ 361.927517][ T6092] ? __pfx_ptrace_notify+0x10/0x10
[ 361.927542][ T6092] security_file_ioctl+0xcb/0x2d0
[ 361.927557][ T6092] __se_sys_ioctl+0x47/0x170
[ 361.927573][ T6092] do_syscall_64+0xfa/0x3b0
[ 361.927590][ T6092] ? lockdep_hardirqs_on+0x9c/0x150
[ 361.927606][ T6092] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 361.927619][ T6092] ? clear_bhb_loop+0x60/0xb0
[ 361.927633][ T6092] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 361.927646][ T6092] RIP: 0033:0x7fea15a51869
[ 361.927658][ T6092] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 361.927669][ T6092] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6092, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6093 attached
, child_tidptr=0x555576720650) = 6093
[pid 6093] set_robust_list(0x555576720660, 24) = 0
[pid 6093] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6093] setpgid(0, 0) = 0
[pid 6093] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6093] write(3, "1000", 4) = 4
[pid 6093] close(3) = 0
[pid 6093] write(1, "executing program\n", 18executing program
) = 18
[pid 6093] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6093] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6093] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[ 361.927684][ T6092] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 361.927694][ T6092] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 361.927702][ T6092] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 361.927718][ T6092] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 361.927726][ T6092] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 361.927745][ T6092]
[pid 6093] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6093] write(6, "4", 1) = 1
[pid 6093] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6093] exit_group(0) = ?
[ 362.275986][ T6093] FAULT_INJECTION: forcing a failure.
[ 362.275986][ T6093] name failslab, interval 1, probability 0, space 0, times 0
[ 362.289204][ T6093] CPU: 1 UID: 0 PID: 6093 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 362.289230][ T6093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 362.289239][ T6093] Call Trace:
[ 362.289249][ T6093]
[ 362.289257][ T6093] dump_stack_lvl+0x189/0x250
[ 362.289279][ T6093] ? __pfx____ratelimit+0x10/0x10
[ 362.289298][ T6093] ? __pfx_dump_stack_lvl+0x10/0x10
[ 362.289312][ T6093] ? __pfx__printk+0x10/0x10
[ 362.289332][ T6093] ? __pfx___might_resched+0x10/0x10
[ 362.289351][ T6093] ? fs_reclaim_acquire+0x7d/0x100
[ 362.289373][ T6093] should_fail_ex+0x414/0x560
[ 362.289392][ T6093] should_failslab+0xa8/0x100
[ 362.289411][ T6093] __kmalloc_noprof+0xcb/0x4f0
[ 362.289429][ T6093] ? tomoyo_init_log+0x1a6e/0x1f70
[ 362.289451][ T6093] tomoyo_init_log+0x1a6e/0x1f70
[ 362.289482][ T6093] ? __pfx_tomoyo_init_log+0x10/0x10
[ 362.289500][ T6093] ? tomoyo_profile+0x11/0x50
[ 362.289516][ T6093] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 362.289534][ T6093] tomoyo_supervisor+0x340/0x1480
[ 362.289553][ T6093] ? format_decode+0x5a3/0xe30
[ 362.289572][ T6093] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 362.289596][ T6093] ? snprintf+0xda/0x120
[ 362.289613][ T6093] ? __pfx_snprintf+0x10/0x10
[ 362.289628][ T6093] ? tomoyo_check_acl+0x386/0x400
[ 362.289647][ T6093] tomoyo_path_number_perm+0x438/0x5a0
[ 362.289661][ T6093] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 362.289677][ T6093] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 362.289696][ T6093] ? _raw_spin_lock_irq+0xae/0xf0
[ 362.289733][ T6093] ? __pfx_ptrace_notify+0x10/0x10
[ 362.289759][ T6093] security_file_ioctl+0xcb/0x2d0
[ 362.289776][ T6093] __se_sys_ioctl+0x47/0x170
[ 362.289793][ T6093] do_syscall_64+0xfa/0x3b0
[ 362.289811][ T6093] ? lockdep_hardirqs_on+0x9c/0x150
[ 362.289835][ T6093] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 362.289848][ T6093] ? clear_bhb_loop+0x60/0xb0
[ 362.289864][ T6093] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 362.289877][ T6093] RIP: 0033:0x7fea15a51869
[ 362.289892][ T6093] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 362.289904][ T6093] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6093] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6093, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6094 attached
, child_tidptr=0x555576720650) = 6094
[pid 6094] set_robust_list(0x555576720660, 24) = 0
[pid 6094] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6094] setpgid(0, 0) = 0
[pid 6094] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6094] write(3, "1000", 4) = 4
executing program
[pid 6094] close(3) = 0
[pid 6094] write(1, "executing program\n", 18) = 18
[pid 6094] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6094] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6094] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6094] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6094] write(6, "4", 1) = 1
[ 362.289920][ T6093] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 362.289930][ T6093] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 362.289938][ T6093] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 362.289952][ T6093] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 362.289960][ T6093] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 362.289979][ T6093]
[pid 6094] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 362.606121][ T6094] FAULT_INJECTION: forcing a failure.
[ 362.606121][ T6094] name failslab, interval 1, probability 0, space 0, times 0
[ 362.619460][ T6094] CPU: 0 UID: 0 PID: 6094 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 362.619491][ T6094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 362.619504][ T6094] Call Trace:
[ 362.619517][ T6094]
[ 362.619526][ T6094] dump_stack_lvl+0x189/0x250
[ 362.619547][ T6094] ? __pfx____ratelimit+0x10/0x10
[ 362.619564][ T6094] ? __pfx_dump_stack_lvl+0x10/0x10
[ 362.619578][ T6094] ? __pfx__printk+0x10/0x10
[ 362.619598][ T6094] ? __pfx___might_resched+0x10/0x10
[ 362.619616][ T6094] ? fs_reclaim_acquire+0x7d/0x100
[ 362.619636][ T6094] should_fail_ex+0x414/0x560
[ 362.619658][ T6094] should_failslab+0xa8/0x100
[ 362.619676][ T6094] __kmalloc_noprof+0xcb/0x4f0
[ 362.619691][ T6094] ? tomoyo_init_log+0x1a6e/0x1f70
[ 362.619711][ T6094] tomoyo_init_log+0x1a6e/0x1f70
[ 362.619742][ T6094] ? __pfx_tomoyo_init_log+0x10/0x10
[ 362.619759][ T6094] ? tomoyo_profile+0x11/0x50
[ 362.619775][ T6094] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 362.619793][ T6094] tomoyo_supervisor+0x340/0x1480
[ 362.619813][ T6094] ? format_decode+0x5a3/0xe30
[ 362.619831][ T6094] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 362.619855][ T6094] ? snprintf+0xda/0x120
[ 362.619872][ T6094] ? __pfx_snprintf+0x10/0x10
[ 362.619887][ T6094] ? tomoyo_check_acl+0x386/0x400
[ 362.619917][ T6094] tomoyo_path_number_perm+0x438/0x5a0
[ 362.619931][ T6094] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 362.619946][ T6094] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 362.619965][ T6094] ? _raw_spin_lock_irq+0xae/0xf0
[ 362.620000][ T6094] ? __pfx_ptrace_notify+0x10/0x10
[ 362.620026][ T6094] security_file_ioctl+0xcb/0x2d0
[ 362.620041][ T6094] __se_sys_ioctl+0x47/0x170
[ 362.620058][ T6094] do_syscall_64+0xfa/0x3b0
[ 362.620076][ T6094] ? lockdep_hardirqs_on+0x9c/0x150
[ 362.620092][ T6094] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 362.620104][ T6094] ? clear_bhb_loop+0x60/0xb0
[ 362.620119][ T6094] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 362.620132][ T6094] RIP: 0033:0x7fea15a51869
[ 362.620145][ T6094] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 362.620156][ T6094] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6094] exit_group(0) = ?
[pid 6094] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6094, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6095 attached
, child_tidptr=0x555576720650) = 6095
[ 362.620171][ T6094] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 362.620181][ T6094] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 362.620189][ T6094] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 362.620197][ T6094] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 362.620205][ T6094] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 362.620223][ T6094]
[pid 6095] set_robust_list(0x555576720660, 24) = 0
[pid 6095] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6095] setpgid(0, 0) = 0
[pid 6095] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6095] write(3, "1000", 4) = 4
[pid 6095] close(3) = 0
executing program
[pid 6095] write(1, "executing program\n", 18) = 18
[pid 6095] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6095] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6095] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6095] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6095] write(6, "4", 1) = 1
[pid 6095] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6095] exit_group(0) = ?
[pid 6095] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6095, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
[ 363.041177][ T6095] FAULT_INJECTION: forcing a failure.
[ 363.041177][ T6095] name failslab, interval 1, probability 0, space 0, times 0
[ 363.054357][ T6095] CPU: 1 UID: 0 PID: 6095 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 363.054388][ T6095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 363.054401][ T6095] Call Trace:
[ 363.054411][ T6095]
[ 363.054420][ T6095] dump_stack_lvl+0x189/0x250
[ 363.054448][ T6095] ? __pfx____ratelimit+0x10/0x10
[ 363.054474][ T6095] ? __pfx_dump_stack_lvl+0x10/0x10
[ 363.054497][ T6095] ? __pfx__printk+0x10/0x10
[ 363.054530][ T6095] ? __pfx___might_resched+0x10/0x10
[ 363.054559][ T6095] ? fs_reclaim_acquire+0x7d/0x100
[ 363.054593][ T6095] should_fail_ex+0x414/0x560
[ 363.054624][ T6095] should_failslab+0xa8/0x100
[ 363.054652][ T6095] __kmalloc_noprof+0xcb/0x4f0
[ 363.054677][ T6095] ? tomoyo_init_log+0x1a6e/0x1f70
[ 363.054720][ T6095] tomoyo_init_log+0x1a6e/0x1f70
[ 363.054774][ T6095] ? __pfx_tomoyo_init_log+0x10/0x10
[ 363.054802][ T6095] ? tomoyo_profile+0x11/0x50
[ 363.054823][ T6095] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 363.054841][ T6095] tomoyo_supervisor+0x340/0x1480
[ 363.054859][ T6095] ? format_decode+0x5a3/0xe30
[ 363.054878][ T6095] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 363.054902][ T6095] ? snprintf+0xda/0x120
[ 363.054919][ T6095] ? __pfx_snprintf+0x10/0x10
[ 363.054934][ T6095] ? tomoyo_check_acl+0x386/0x400
[ 363.054952][ T6095] tomoyo_path_number_perm+0x438/0x5a0
[ 363.054969][ T6095] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 363.054984][ T6095] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 363.055003][ T6095] ? _raw_spin_lock_irq+0xae/0xf0
[ 363.055038][ T6095] ? __pfx_ptrace_notify+0x10/0x10
[ 363.055063][ T6095] security_file_ioctl+0xcb/0x2d0
[ 363.055078][ T6095] __se_sys_ioctl+0x47/0x170
[ 363.055095][ T6095] do_syscall_64+0xfa/0x3b0
[ 363.055111][ T6095] ? lockdep_hardirqs_on+0x9c/0x150
[ 363.055127][ T6095] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 363.055140][ T6095] ? clear_bhb_loop+0x60/0xb0
[ 363.055155][ T6095] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 363.055167][ T6095] RIP: 0033:0x7fea15a51869
[ 363.055180][ T6095] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 363.055192][ T6095] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6096 attached
, child_tidptr=0x555576720650) = 6096
[pid 6096] set_robust_list(0x555576720660, 24) = 0
[pid 6096] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6096] setpgid(0, 0) = 0
[pid 6096] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6096] write(3, "1000", 4) = 4
[pid 6096] close(3) = 0
[pid 6096] write(1, "executing program\n", 18executing program
) = 18
[pid 6096] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6096] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6096] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[ 363.055207][ T6095] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 363.055217][ T6095] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 363.055225][ T6095] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 363.055234][ T6095] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 363.055241][ T6095] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 363.055260][ T6095]
[pid 6096] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6096] write(6, "4", 1) = 1
[pid 6096] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6096] exit_group(0) = ?
[ 363.375859][ T6096] FAULT_INJECTION: forcing a failure.
[ 363.375859][ T6096] name failslab, interval 1, probability 0, space 0, times 0
[ 363.388561][ T6096] CPU: 0 UID: 0 PID: 6096 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 363.388582][ T6096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 363.388591][ T6096] Call Trace:
[ 363.388596][ T6096]
[ 363.388603][ T6096] dump_stack_lvl+0x189/0x250
[ 363.388622][ T6096] ? __pfx____ratelimit+0x10/0x10
[ 363.388648][ T6096] ? __pfx_dump_stack_lvl+0x10/0x10
[ 363.388662][ T6096] ? __pfx__printk+0x10/0x10
[ 363.388681][ T6096] ? __pfx___might_resched+0x10/0x10
[ 363.388699][ T6096] ? fs_reclaim_acquire+0x7d/0x100
[ 363.388720][ T6096] should_fail_ex+0x414/0x560
[ 363.388840][ T6096] should_failslab+0xa8/0x100
[ 363.388858][ T6096] __kmalloc_noprof+0xcb/0x4f0
[ 363.388874][ T6096] ? tomoyo_init_log+0x1a6e/0x1f70
[ 363.388903][ T6096] tomoyo_init_log+0x1a6e/0x1f70
[ 363.388939][ T6096] ? __pfx_tomoyo_init_log+0x10/0x10
[ 363.389079][ T6096] ? tomoyo_profile+0x11/0x50
[ 363.389097][ T6096] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 363.389116][ T6096] tomoyo_supervisor+0x340/0x1480
[ 363.389138][ T6096] ? format_decode+0x5a3/0xe30
[ 363.389157][ T6096] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 363.389181][ T6096] ? snprintf+0xda/0x120
[ 363.389199][ T6096] ? __pfx_snprintf+0x10/0x10
[ 363.389214][ T6096] ? tomoyo_check_acl+0x386/0x400
[ 363.389232][ T6096] tomoyo_path_number_perm+0x438/0x5a0
[ 363.389247][ T6096] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 363.389262][ T6096] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 363.389281][ T6096] ? _raw_spin_lock_irq+0xae/0xf0
[ 363.389317][ T6096] ? __pfx_ptrace_notify+0x10/0x10
[ 363.389347][ T6096] security_file_ioctl+0xcb/0x2d0
[ 363.389364][ T6096] __se_sys_ioctl+0x47/0x170
[ 363.389381][ T6096] do_syscall_64+0xfa/0x3b0
[ 363.389399][ T6096] ? lockdep_hardirqs_on+0x9c/0x150
[ 363.389420][ T6096] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 363.389433][ T6096] ? clear_bhb_loop+0x60/0xb0
[ 363.389448][ T6096] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 363.389461][ T6096] RIP: 0033:0x7fea15a51869
[ 363.389476][ T6096] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 363.389488][ T6096] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6096] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6096, si_uid=0, si_status=0, si_utime=0, si_stime=28 /* 0.28 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6097 attached
, child_tidptr=0x555576720650) = 6097
[pid 6097] set_robust_list(0x555576720660, 24) = 0
[pid 6097] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6097] setpgid(0, 0) = 0
[pid 6097] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6097] write(3, "1000", 4) = 4
[pid 6097] close(3) = 0
[pid 6097] write(1, "executing program\n", 18executing program
) = 18
[pid 6097] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6097] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6097] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6097] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6097] write(6, "4", 1) = 1
[ 363.389504][ T6096] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 363.389513][ T6096] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 363.389522][ T6096] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 363.389530][ T6096] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 363.389538][ T6096] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 363.389556][ T6096]
[ 363.701880][ T6097] FAULT_INJECTION: forcing a failure.
[ 363.701880][ T6097] name failslab, interval 1, probability 0, space 0, times 0
[ 363.715108][ T6097] CPU: 1 UID: 0 PID: 6097 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 363.715139][ T6097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 363.715151][ T6097] Call Trace:
[ 363.715160][ T6097]
[ 363.715169][ T6097] dump_stack_lvl+0x189/0x250
[ 363.715199][ T6097] ? __pfx____ratelimit+0x10/0x10
[ 363.715228][ T6097] ? __pfx_dump_stack_lvl+0x10/0x10
[ 363.715251][ T6097] ? __pfx__printk+0x10/0x10
[ 363.715283][ T6097] ? __pfx___might_resched+0x10/0x10
[ 363.715312][ T6097] ? fs_reclaim_acquire+0x7d/0x100
[ 363.715345][ T6097] should_fail_ex+0x414/0x560
[ 363.715376][ T6097] should_failslab+0xa8/0x100
[ 363.715406][ T6097] __kmalloc_noprof+0xcb/0x4f0
[ 363.715430][ T6097] ? strlen+0x1f/0x70
[ 363.715446][ T6097] ? tomoyo_init_log+0x1a6e/0x1f70
[ 363.715482][ T6097] tomoyo_init_log+0x1a6e/0x1f70
[ 363.715535][ T6097] ? __pfx_tomoyo_init_log+0x10/0x10
[ 363.715565][ T6097] ? tomoyo_profile+0x11/0x50
[ 363.715592][ T6097] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 363.715624][ T6097] tomoyo_supervisor+0x340/0x1480
[ 363.715655][ T6097] ? format_decode+0x5a3/0xe30
[ 363.715687][ T6097] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 363.715727][ T6097] ? snprintf+0xda/0x120
[ 363.715754][ T6097] ? __pfx_snprintf+0x10/0x10
[ 363.715777][ T6097] ? tomoyo_check_acl+0x386/0x400
[ 363.715795][ T6097] tomoyo_path_number_perm+0x438/0x5a0
[ 363.715809][ T6097] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 363.715824][ T6097] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 363.715847][ T6097] ? _raw_spin_lock_irq+0xae/0xf0
[ 363.715883][ T6097] ? __pfx_ptrace_notify+0x10/0x10
[ 363.715907][ T6097] security_file_ioctl+0xcb/0x2d0
[ 363.715931][ T6097] __se_sys_ioctl+0x47/0x170
[ 363.715947][ T6097] do_syscall_64+0xfa/0x3b0
[ 363.715964][ T6097] ? lockdep_hardirqs_on+0x9c/0x150
[ 363.715980][ T6097] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 363.715993][ T6097] ? clear_bhb_loop+0x60/0xb0
[ 363.716007][ T6097] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 363.716019][ T6097] RIP: 0033:0x7fea15a51869
[ 363.716033][ T6097] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[pid 6097] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6097] exit_group(0) = ?
[pid 6097] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6097, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6098 attached
, child_tidptr=0x555576720650) = 6098
[ 363.716044][ T6097] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 363.716060][ T6097] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 363.716070][ T6097] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 363.716078][ T6097] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 363.716086][ T6097] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 363.716094][ T6097] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 363.716112][ T6097]
[pid 6098] set_robust_list(0x555576720660, 24) = 0
[pid 6098] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6098] setpgid(0, 0) = 0
[pid 6098] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6098] write(3, "1000", 4) = 4
[pid 6098] close(3) = 0
[pid 6098] write(1, "executing program\n", 18executing program
) = 18
[pid 6098] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6098] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6098] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6098] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6098] write(6, "4", 1) = 1
[pid 6098] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 364.103068][ T6098] FAULT_INJECTION: forcing a failure.
[ 364.103068][ T6098] name failslab, interval 1, probability 0, space 0, times 0
[ 364.117695][ T6098] CPU: 0 UID: 0 PID: 6098 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 364.117725][ T6098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 364.117735][ T6098] Call Trace:
[ 364.117743][ T6098]
[ 364.117751][ T6098] dump_stack_lvl+0x189/0x250
[ 364.117774][ T6098] ? __pfx____ratelimit+0x10/0x10
[ 364.117901][ T6098] ? __pfx_dump_stack_lvl+0x10/0x10
[ 364.117930][ T6098] ? __pfx__printk+0x10/0x10
[ 364.117957][ T6098] ? __pfx___might_resched+0x10/0x10
[ 364.117980][ T6098] ? fs_reclaim_acquire+0x7d/0x100
[ 364.118008][ T6098] should_fail_ex+0x414/0x560
[ 364.118033][ T6098] should_failslab+0xa8/0x100
[ 364.118057][ T6098] __kmalloc_noprof+0xcb/0x4f0
[ 364.118077][ T6098] ? tomoyo_init_log+0x1a6e/0x1f70
[ 364.118105][ T6098] tomoyo_init_log+0x1a6e/0x1f70
[ 364.118154][ T6098] ? __pfx_tomoyo_init_log+0x10/0x10
[ 364.118177][ T6098] ? tomoyo_profile+0x11/0x50
[ 364.118200][ T6098] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 364.118225][ T6098] tomoyo_supervisor+0x340/0x1480
[ 364.118250][ T6098] ? format_decode+0x5a3/0xe30
[ 364.118277][ T6098] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 364.118309][ T6098] ? snprintf+0xda/0x120
[ 364.118332][ T6098] ? __pfx_snprintf+0x10/0x10
[ 364.118354][ T6098] ? tomoyo_check_acl+0x386/0x400
[ 364.118379][ T6098] tomoyo_path_number_perm+0x438/0x5a0
[ 364.118398][ T6098] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 364.118419][ T6098] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 364.118446][ T6098] ? _raw_spin_lock_irq+0xae/0xf0
[ 364.118498][ T6098] ? __pfx_ptrace_notify+0x10/0x10
[ 364.118535][ T6098] security_file_ioctl+0xcb/0x2d0
[ 364.118556][ T6098] __se_sys_ioctl+0x47/0x170
[ 364.118578][ T6098] do_syscall_64+0xfa/0x3b0
[ 364.118602][ T6098] ? lockdep_hardirqs_on+0x9c/0x150
[ 364.118624][ T6098] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 364.118641][ T6098] ? clear_bhb_loop+0x60/0xb0
[ 364.118663][ T6098] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 364.118680][ T6098] RIP: 0033:0x7fea15a51869
[ 364.118698][ T6098] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 364.118714][ T6098] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6098] exit_group(0) = ?
[pid 6098] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6098, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6099 attached
, child_tidptr=0x555576720650) = 6099
[ 364.118735][ T6098] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 364.118748][ T6098] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 364.118759][ T6098] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 364.118770][ T6098] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 364.118781][ T6098] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 364.118808][ T6098]
[pid 6099] set_robust_list(0x555576720660, 24) = 0
[pid 6099] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6099] setpgid(0, 0) = 0
[pid 6099] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6099] write(3, "1000", 4) = 4
[pid 6099] close(3) = 0
[pid 6099] write(1, "executing program\n", 18executing program
) = 18
[pid 6099] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6099] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6099] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6099] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6099] write(6, "4", 1) = 1
[ 364.507677][ T6099] FAULT_INJECTION: forcing a failure.
[ 364.507677][ T6099] name failslab, interval 1, probability 0, space 0, times 0
[ 364.520904][ T6099] CPU: 1 UID: 0 PID: 6099 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 364.520933][ T6099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 364.520954][ T6099] Call Trace:
[ 364.520963][ T6099]
[ 364.520972][ T6099] dump_stack_lvl+0x189/0x250
[ 364.521000][ T6099] ? __pfx____ratelimit+0x10/0x10
[ 364.521029][ T6099] ? __pfx_dump_stack_lvl+0x10/0x10
[ 364.521050][ T6099] ? __pfx__printk+0x10/0x10
[ 364.521080][ T6099] ? __pfx___might_resched+0x10/0x10
[ 364.521110][ T6099] ? fs_reclaim_acquire+0x7d/0x100
[ 364.521146][ T6099] should_fail_ex+0x414/0x560
[ 364.521174][ T6099] should_failslab+0xa8/0x100
[ 364.521202][ T6099] __kmalloc_noprof+0xcb/0x4f0
[ 364.521225][ T6099] ? tomoyo_init_log+0x1a6e/0x1f70
[ 364.521259][ T6099] tomoyo_init_log+0x1a6e/0x1f70
[ 364.521312][ T6099] ? __pfx_tomoyo_init_log+0x10/0x10
[ 364.521341][ T6099] ? tomoyo_profile+0x11/0x50
[ 364.521369][ T6099] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 364.521400][ T6099] tomoyo_supervisor+0x340/0x1480
[ 364.521433][ T6099] ? format_decode+0x5a3/0xe30
[ 364.521467][ T6099] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 364.521509][ T6099] ? snprintf+0xda/0x120
[ 364.521540][ T6099] ? __pfx_snprintf+0x10/0x10
[ 364.521566][ T6099] ? tomoyo_check_acl+0x386/0x400
[ 364.521595][ T6099] tomoyo_path_number_perm+0x438/0x5a0
[ 364.521617][ T6099] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 364.521632][ T6099] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 364.521652][ T6099] ? _raw_spin_lock_irq+0xae/0xf0
[ 364.521687][ T6099] ? __pfx_ptrace_notify+0x10/0x10
[ 364.521714][ T6099] security_file_ioctl+0xcb/0x2d0
[ 364.521729][ T6099] __se_sys_ioctl+0x47/0x170
[ 364.521746][ T6099] do_syscall_64+0xfa/0x3b0
[ 364.521762][ T6099] ? lockdep_hardirqs_on+0x9c/0x150
[ 364.521779][ T6099] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 364.521791][ T6099] ? clear_bhb_loop+0x60/0xb0
[ 364.521806][ T6099] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 364.521818][ T6099] RIP: 0033:0x7fea15a51869
[ 364.521832][ T6099] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 364.521844][ T6099] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[pid 6099] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6099] exit_group(0) = ?
[pid 6099] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6099, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6100 attached
, child_tidptr=0x555576720650) = 6100
[pid 6100] set_robust_list(0x555576720660, 24) = 0
[pid 6100] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6100] setpgid(0, 0) = 0
[pid 6100] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6100] write(3, "1000", 4) = 4
[pid 6100] close(3) = 0
executing program
[pid 6100] write(1, "executing program\n", 18) = 18
[pid 6100] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[ 364.521859][ T6099] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 364.521869][ T6099] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 364.521877][ T6099] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 364.521885][ T6099] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 364.521893][ T6099] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 364.521912][ T6099]
[pid 6100] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6100] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6100] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6100] write(6, "4", 1) = 1
[pid 6100] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 364.858269][ T6100] FAULT_INJECTION: forcing a failure.
[ 364.858269][ T6100] name failslab, interval 1, probability 0, space 0, times 0
[ 364.871458][ T6100] CPU: 0 UID: 0 PID: 6100 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 364.871489][ T6100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 364.871500][ T6100] Call Trace:
[ 364.871511][ T6100]
[ 364.871522][ T6100] dump_stack_lvl+0x189/0x250
[ 364.871551][ T6100] ? __pfx____ratelimit+0x10/0x10
[ 364.871580][ T6100] ? __pfx_dump_stack_lvl+0x10/0x10
[ 364.871601][ T6100] ? __pfx__printk+0x10/0x10
[ 364.871631][ T6100] ? __pfx___might_resched+0x10/0x10
[ 364.871671][ T6100] ? fs_reclaim_acquire+0x7d/0x100
[ 364.871706][ T6100] should_fail_ex+0x414/0x560
[ 364.871736][ T6100] should_failslab+0xa8/0x100
[ 364.871765][ T6100] __kmalloc_noprof+0xcb/0x4f0
[ 364.871791][ T6100] ? tomoyo_init_log+0x1a6e/0x1f70
[ 364.871825][ T6100] tomoyo_init_log+0x1a6e/0x1f70
[ 364.871880][ T6100] ? __pfx_tomoyo_init_log+0x10/0x10
[ 364.871907][ T6100] ? tomoyo_profile+0x11/0x50
[ 364.871935][ T6100] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 364.871963][ T6100] tomoyo_supervisor+0x340/0x1480
[ 364.871992][ T6100] ? format_decode+0x5a3/0xe30
[ 364.872015][ T6100] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 364.872039][ T6100] ? snprintf+0xda/0x120
[ 364.872056][ T6100] ? __pfx_snprintf+0x10/0x10
[ 364.872071][ T6100] ? tomoyo_check_acl+0x386/0x400
[ 364.872089][ T6100] tomoyo_path_number_perm+0x438/0x5a0
[ 364.872104][ T6100] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 364.872119][ T6100] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 364.872138][ T6100] ? _raw_spin_lock_irq+0xae/0xf0
[ 364.872173][ T6100] ? __pfx_ptrace_notify+0x10/0x10
[ 364.872198][ T6100] security_file_ioctl+0xcb/0x2d0
[ 364.872214][ T6100] __se_sys_ioctl+0x47/0x170
[ 364.872230][ T6100] do_syscall_64+0xfa/0x3b0
[ 364.872247][ T6100] ? lockdep_hardirqs_on+0x9c/0x150
[ 364.872264][ T6100] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 364.872276][ T6100] ? clear_bhb_loop+0x60/0xb0
[ 364.872291][ T6100] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 364.872303][ T6100] RIP: 0033:0x7fea15a51869
[ 364.872316][ T6100] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 364.872328][ T6100] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 364.872345][ T6100] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6100] exit_group(0) = ?
[pid 6100] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6100, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6101 attached
, child_tidptr=0x555576720650) = 6101
[pid 6101] set_robust_list(0x555576720660, 24) = 0
[pid 6101] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 364.872355][ T6100] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 364.872363][ T6100] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 364.872371][ T6100] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 364.872379][ T6100] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 364.872397][ T6100]
[pid 6101] setpgid(0, 0) = 0
[pid 6101] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6101] write(3, "1000", 4) = 4
[pid 6101] close(3) = 0
executing program
[pid 6101] write(1, "executing program\n", 18) = 18
[pid 6101] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6101] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6101] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6101] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6101] write(6, "4", 1) = 1
[pid 6101] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 365.277247][ T6101] FAULT_INJECTION: forcing a failure.
[ 365.277247][ T6101] name failslab, interval 1, probability 0, space 0, times 0
[ 365.290330][ T6101] CPU: 1 UID: 0 PID: 6101 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 365.290361][ T6101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 365.290374][ T6101] Call Trace:
[ 365.290383][ T6101]
[ 365.290393][ T6101] dump_stack_lvl+0x189/0x250
[ 365.290423][ T6101] ? __pfx____ratelimit+0x10/0x10
[ 365.290452][ T6101] ? __pfx_dump_stack_lvl+0x10/0x10
[ 365.290474][ T6101] ? __pfx__printk+0x10/0x10
[ 365.290509][ T6101] ? __pfx___might_resched+0x10/0x10
[ 365.290538][ T6101] ? fs_reclaim_acquire+0x7d/0x100
[ 365.290573][ T6101] should_fail_ex+0x414/0x560
[ 365.290602][ T6101] should_failslab+0xa8/0x100
[ 365.290737][ T6101] __kmalloc_noprof+0xcb/0x4f0
[ 365.290767][ T6101] ? tomoyo_init_log+0x1a6e/0x1f70
[ 365.290794][ T6101] tomoyo_init_log+0x1a6e/0x1f70
[ 365.290825][ T6101] ? __pfx_tomoyo_init_log+0x10/0x10
[ 365.290842][ T6101] ? tomoyo_profile+0x11/0x50
[ 365.290859][ T6101] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 365.290878][ T6101] tomoyo_supervisor+0x340/0x1480
[ 365.290899][ T6101] ? format_decode+0x5a3/0xe30
[ 365.290922][ T6101] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 365.290947][ T6101] ? snprintf+0xda/0x120
[ 365.290965][ T6101] ? __pfx_snprintf+0x10/0x10
[ 365.290981][ T6101] ? tomoyo_check_acl+0x386/0x400
[ 365.290999][ T6101] tomoyo_path_number_perm+0x438/0x5a0
[ 365.291014][ T6101] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 365.291030][ T6101] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 365.291050][ T6101] ? _raw_spin_lock_irq+0xae/0xf0
[ 365.291085][ T6101] ? __pfx_ptrace_notify+0x10/0x10
[ 365.291111][ T6101] security_file_ioctl+0xcb/0x2d0
[ 365.291128][ T6101] __se_sys_ioctl+0x47/0x170
[ 365.291145][ T6101] do_syscall_64+0xfa/0x3b0
[ 365.291162][ T6101] ? lockdep_hardirqs_on+0x9c/0x150
[ 365.291179][ T6101] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 365.291192][ T6101] ? clear_bhb_loop+0x60/0xb0
[ 365.291208][ T6101] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 365.291221][ T6101] RIP: 0033:0x7fea15a51869
[ 365.291235][ T6101] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 365.291251][ T6101] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 365.291269][ T6101] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6101] exit_group(0) = ?
[pid 6101] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6101, si_uid=0, si_status=0, si_utime=0, si_stime=27 /* 0.27 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6102 attached
, child_tidptr=0x555576720650) = 6102
[pid 6102] set_robust_list(0x555576720660, 24) = 0
[pid 6102] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 365.291279][ T6101] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 365.291287][ T6101] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 365.291295][ T6101] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 365.291303][ T6101] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 365.291323][ T6101]
[pid 6102] setpgid(0, 0) = 0
[pid 6102] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6102] write(3, "1000", 4) = 4
[pid 6102] close(3) = 0
[pid 6102] write(1, "executing program\n", 18executing program
) = 18
[pid 6102] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6102] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6102] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6102] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6102] write(6, "4", 1) = 1
[ 365.639184][ T6102] FAULT_INJECTION: forcing a failure.
[ 365.639184][ T6102] name failslab, interval 1, probability 0, space 0, times 0
[ 365.652965][ T6102] CPU: 1 UID: 0 PID: 6102 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 365.652999][ T6102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 365.653017][ T6102] Call Trace:
[ 365.653026][ T6102]
[ 365.653036][ T6102] dump_stack_lvl+0x189/0x250
[ 365.653064][ T6102] ? __pfx____ratelimit+0x10/0x10
[ 365.653099][ T6102] ? __pfx_dump_stack_lvl+0x10/0x10
[ 365.653122][ T6102] ? __pfx__printk+0x10/0x10
[ 365.653155][ T6102] ? __pfx___might_resched+0x10/0x10
[ 365.653183][ T6102] ? fs_reclaim_acquire+0x7d/0x100
[ 365.653218][ T6102] should_fail_ex+0x414/0x560
[ 365.653250][ T6102] should_failslab+0xa8/0x100
[ 365.653279][ T6102] __kmalloc_noprof+0xcb/0x4f0
[ 365.653303][ T6102] ? tomoyo_init_log+0x1a6e/0x1f70
[ 365.653337][ T6102] tomoyo_init_log+0x1a6e/0x1f70
[ 365.653389][ T6102] ? __pfx_tomoyo_init_log+0x10/0x10
[ 365.653419][ T6102] ? tomoyo_profile+0x11/0x50
[ 365.653444][ T6102] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 365.653474][ T6102] tomoyo_supervisor+0x340/0x1480
[ 365.653502][ T6102] ? format_decode+0x5a3/0xe30
[ 365.653533][ T6102] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 365.653572][ T6102] ? snprintf+0xda/0x120
[ 365.653600][ T6102] ? __pfx_snprintf+0x10/0x10
[ 365.653626][ T6102] ? tomoyo_check_acl+0x386/0x400
[ 365.653655][ T6102] tomoyo_path_number_perm+0x438/0x5a0
[ 365.653674][ T6102] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 365.653694][ T6102] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 365.653726][ T6102] ? _raw_spin_lock_irq+0xae/0xf0
[ 365.653786][ T6102] ? __pfx_ptrace_notify+0x10/0x10
[ 365.653826][ T6102] security_file_ioctl+0xcb/0x2d0
[ 365.653852][ T6102] __se_sys_ioctl+0x47/0x170
[ 365.653878][ T6102] do_syscall_64+0xfa/0x3b0
[ 365.653916][ T6102] ? lockdep_hardirqs_on+0x9c/0x150
[ 365.653944][ T6102] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 365.653964][ T6102] ? clear_bhb_loop+0x60/0xb0
[ 365.653988][ T6102] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 365.654006][ T6102] RIP: 0033:0x7fea15a51869
[ 365.654024][ T6102] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 365.654036][ T6102] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 365.654051][ T6102] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[pid 6102] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6102] exit_group(0) = ?
[pid 6102] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6102, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6103 attached
, child_tidptr=0x555576720650) = 6103
[ 365.654061][ T6102] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 365.654069][ T6102] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 365.654077][ T6102] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 365.654085][ T6102] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 365.654104][ T6102]
[pid 6103] set_robust_list(0x555576720660, 24) = 0
[pid 6103] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6103] setpgid(0, 0) = 0
[pid 6103] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6103] write(3, "1000", 4) = 4
[pid 6103] close(3) = 0
[pid 6103] write(1, "executing program\n", 18executing program
) = 18
[pid 6103] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6103] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6103] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6103] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6103] write(6, "4", 1) = 1
[ 366.050950][ T6103] FAULT_INJECTION: forcing a failure.
[ 366.050950][ T6103] name fail_usercopy, interval 1, probability 0, space 0, times 1
[ 366.051507][ T6103]
[ 366.051514][ T6103] ======================================================
[ 366.051519][ T6103] WARNING: possible circular locking dependency detected
[ 366.051525][ T6103] 6.16.0-next-20250731-syzkaller #0 Not tainted
[ 366.051532][ T6103] ------------------------------------------------------
[ 366.051537][ T6103] syz-executor165/6103 is trying to acquire lock:
[ 366.051543][ T6103] ffffffff8e12e160 (console_owner){-.-.}-{0:0}, at: console_flush_all+0x13a/0xc40
[ 366.051578][ T6103]
[ 366.051578][ T6103] but task is already holding lock:
[ 366.051582][ T6103] ffff8880b8639f58 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[ 366.051612][ T6103]
[ 366.051612][ T6103] which lock already depends on the new lock.
[ 366.051612][ T6103]
[ 366.051616][ T6103]
[ 366.051616][ T6103] the existing dependency chain (in reverse order) is:
[ 366.051621][ T6103]
[ 366.051621][ T6103] -> #4 (&rq->__lock){-.-.}-{2:2}:
[ 366.051637][ T6103] lock_acquire+0x120/0x360
[ 366.051652][ T6103] _raw_spin_lock_nested+0x32/0x50
[ 366.051681][ T6103] raw_spin_rq_lock_nested+0x2a/0x140
[ 366.051700][ T6103] task_rq_lock+0xbc/0x470
[ 366.051714][ T6103] cgroup_move_task+0x92/0x2a0
[ 366.051724][ T6103] css_set_move_task+0x658/0x9e0
[ 366.051736][ T6103] cgroup_post_fork+0x1ef/0x790
[ 366.051747][ T6103] copy_process+0x3862/0x3c00
[ 366.051757][ T6103] kernel_clone+0x21e/0x840
[ 366.051767][ T6103] user_mode_thread+0xdd/0x140
[ 366.051779][ T6103] rest_init+0x23/0x300
[ 366.051789][ T6103] start_kernel+0x3a9/0x410
[ 366.051812][ T6103] x86_64_start_reservations+0x24/0x30
[ 366.051824][ T6103] x86_64_start_kernel+0x143/0x1c0
[ 366.051835][ T6103] common_startup_64+0x13e/0x147
[ 366.051849][ T6103]
[ 366.051849][ T6103] -> #3 (&p->pi_lock){-.-.}-{2:2}:
[ 366.051865][ T6103] lock_acquire+0x120/0x360
[ 366.051879][ T6103] _raw_spin_lock_irqsave+0xa7/0xf0
[ 366.051892][ T6103] try_to_wake_up+0x67/0x12b0
[ 366.051904][ T6103] __wake_up_common_lock+0x134/0x1f0
[ 366.051920][ T6103] tty_port_default_wakeup+0xa2/0xf0
[ 366.051942][ T6103] serial8250_tx_chars+0x72e/0x970
[ 366.051957][ T6103] serial8250_handle_irq+0x633/0xbb0
[ 366.051972][ T6103] serial8250_default_handle_irq+0xbf/0x1e0
[ 366.051983][ T6103] serial8250_interrupt+0x8d/0x160
[ 366.051995][ T6103] __handle_irq_event_percpu+0x28c/0x980
[ 366.052007][ T6103] handle_irq_event+0x8b/0x1e0
[ 366.052019][ T6103] handle_edge_irq+0x23b/0xa10
[ 366.052029][ T6103] __common_interrupt+0x143/0x250
[ 366.052044][ T6103] common_interrupt+0xb6/0xe0
[ 366.052055][ T6103] asm_common_interrupt+0x26/0x40
[ 366.052066][ T6103] pv_native_safe_halt+0x13/0x20
[ 366.052080][ T6103] default_idle+0x13/0x20
[ 366.052090][ T6103] default_idle_call+0x74/0xb0
[ 366.052100][ T6103] do_idle+0x1e8/0x510
[ 366.052115][ T6103] cpu_startup_entry+0x44/0x60
[ 366.052131][ T6103] rest_init+0x2de/0x300
[ 366.052141][ T6103] start_kernel+0x3a9/0x410
[ 366.052155][ T6103] x86_64_start_reservations+0x24/0x30
[ 366.052167][ T6103] x86_64_start_kernel+0x143/0x1c0
[ 366.052178][ T6103] common_startup_64+0x13e/0x147
[ 366.052191][ T6103]
[ 366.052191][ T6103] -> #2 (&tty->write_wait){-.-.}-{3:3}:
[ 366.052207][ T6103] lock_acquire+0x120/0x360
[ 366.052220][ T6103] _raw_spin_lock_irqsave+0xa7/0xf0
[ 366.052233][ T6103] __wake_up_common_lock+0x2f/0x1f0
[ 366.052245][ T6103] tty_port_default_wakeup+0xa2/0xf0
[ 366.052261][ T6103] serial8250_tx_chars+0x72e/0x970
[ 366.052276][ T6103] serial8250_handle_irq+0x633/0xbb0
[ 366.052290][ T6103] serial8250_default_handle_irq+0xbf/0x1e0
[ 366.052301][ T6103] serial8250_interrupt+0x8d/0x160
[ 366.052313][ T6103] __handle_irq_event_percpu+0x28c/0x980
[ 366.052325][ T6103] handle_irq_event+0x8b/0x1e0
[ 366.052336][ T6103] handle_edge_irq+0x23b/0xa10
[ 366.052346][ T6103] __common_interrupt+0x143/0x250
[ 366.052361][ T6103] common_interrupt+0xb6/0xe0
[ 366.052372][ T6103] asm_common_interrupt+0x26/0x40
[ 366.052382][ T6103] _raw_spin_unlock_irqrestore+0xa8/0x110
[ 366.052396][ T6103] uart_port_unlock_deref+0x111/0x2f0
[ 366.052410][ T6103] uart_write+0xe8/0x130
[ 366.052423][ T6103] n_tty_write+0xd2c/0x1200
[ 366.052433][ T6103] file_tty_write+0x554/0xa20
[ 366.052447][ T6103] vfs_write+0x54b/0xa90
[ 366.052459][ T6103] ksys_write+0x145/0x250
[ 366.052472][ T6103] do_syscall_64+0xfa/0x3b0
[ 366.052488][ T6103] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 366.052499][ T6103]
[ 366.052499][ T6103] -> #1 (&port_lock_key){-.-.}-{3:3}:
[ 366.052514][ T6103] lock_acquire+0x120/0x360
[ 366.052528][ T6103] _raw_spin_lock_irqsave+0xa7/0xf0
[ 366.052541][ T6103] serial8250_console_write+0x17e/0x1ba0
[ 366.052557][ T6103] console_flush_all+0x728/0xc40
[ 366.052569][ T6103] console_unlock+0xc4/0x270
[ 366.052579][ T6103] vprintk_emit+0x5b7/0x7a0
[ 366.052588][ T6103] _printk+0xcf/0x120
[ 366.052601][ T6103] register_console+0xa8b/0xf90
[ 366.052613][ T6103] univ8250_console_init+0x3a/0x70
[ 366.052624][ T6103] console_init+0x10e/0x430
[ 366.052635][ T6103] start_kernel+0x254/0x410
[ 366.052649][ T6103] x86_64_start_reservations+0x24/0x30
[ 366.052660][ T6103] x86_64_start_kernel+0x143/0x1c0
[ 366.052678][ T6103] common_startup_64+0x13e/0x147
[ 366.052691][ T6103]
[ 366.052691][ T6103] -> #0 (console_owner){-.-.}-{0:0}:
[ 366.052707][ T6103] validate_chain+0xb9b/0x2140
[ 366.052716][ T6103] __lock_acquire+0xab9/0xd20
[ 366.052730][ T6103] lock_acquire+0x120/0x360
[ 366.052743][ T6103] console_flush_all+0x6d2/0xc40
[ 366.052755][ T6103] console_unlock+0xc4/0x270
[ 366.052764][ T6103] vprintk_emit+0x5b7/0x7a0
[ 366.052774][ T6103] _printk+0xcf/0x120
[ 366.052786][ T6103] should_fail_ex+0x3f5/0x560
[ 366.052798][ T6103] strncpy_from_user+0x36/0x290
[ 366.052808][ T6103] strncpy_from_user_nofault+0x72/0x150
[ 366.052820][ T6103] bpf_bprintf_prepare+0xbbc/0x13d0
[ 366.052834][ T6103] bpf_trace_printk+0xdb/0x190
[ 366.052849][ T6103] bpf_prog_7c77c7e0f6645ad8+0x3e/0x44
[ 366.052859][ T6103] bpf_trace_run2+0x284/0x4b0
[ 366.052870][ T6103] __bpf_trace_contention_begin+0xdc/0x130
[ 366.052887][ T6103] trace_contention_begin+0x114/0x140
[ 366.052898][ T6103] __pv_queued_spin_lock_slowpath+0xf0/0xb60
[ 366.052915][ T6103] queued_spin_lock_slowpath+0x43/0x50
[ 366.052928][ T6103] do_raw_spin_lock+0x21f/0x290
[ 366.052939][ T6103] raw_spin_rq_lock_nested+0x2a/0x140
[ 366.052954][ T6103] __schedule+0x36b/0x4cc0
[ 366.052967][ T6103] preempt_schedule_irq+0xb5/0x150
[ 366.052981][ T6103] irqentry_exit+0x6f/0x90
[ 366.052995][ T6103] asm_sysvec_reschedule_ipi+0x1a/0x20
[ 366.053006][ T6103] __sanitizer_cov_trace_pc+0x18/0x70
[ 366.053018][ T6103] number+0x919/0xf60
[ 366.053030][ T6103] vsnprintf+0x91b/0xf00
[ 366.053041][ T6103] snprintf+0xda/0x120
[ 366.053052][ T6103] tomoyo_init_log+0xbc0/0x1f70
[ 366.053068][ T6103] tomoyo_supervisor+0x340/0x1480
[ 366.053090][ T6103] tomoyo_path_number_perm+0x438/0x5a0
[ 366.053109][ T6103] security_file_ioctl+0xcb/0x2d0
[ 366.053126][ T6103] __se_sys_ioctl+0x47/0x170
[ 366.053142][ T6103] do_syscall_64+0xfa/0x3b0
[ 366.053166][ T6103] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 366.053183][ T6103]
[ 366.053183][ T6103] other info that might help us debug this:
[ 366.053183][ T6103]
[ 366.053190][ T6103] Chain exists of:
[ 366.053190][ T6103] console_owner --> &p->pi_lock --> &rq->__lock
[ 366.053190][ T6103]
[ 366.053220][ T6103] Possible unsafe locking scenario:
[ 366.053220][ T6103]
[ 366.053226][ T6103] CPU0 CPU1
[ 366.053232][ T6103] ---- ----
[ 366.053238][ T6103] lock(&rq->__lock);
[ 366.053250][ T6103] lock(&p->pi_lock);
[ 366.053260][ T6103] lock(&rq->__lock);
[ 366.053268][ T6103] lock(console_owner);
[ 366.053276][ T6103]
[ 366.053276][ T6103] *** DEADLOCK ***
[ 366.053276][ T6103]
[ 366.053280][ T6103] 5 locks held by syz-executor165/6103:
[ 366.053288][ T6103] #0: ffffffff8e845390 (tomoyo_ss){.+.+}-{0:0}, at: tomoyo_path_number_perm+0x1bc/0x5a0
[ 366.053318][ T6103] #1: ffff8880b8639f58 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[ 366.053350][ T6103] #2: ffffffff8e139f20 (rcu_read_lock){....}-{1:3}, at: bpf_trace_run2+0x186/0x4b0
[ 366.053379][ T6103] #3: ffffffff8e12e1c0 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x120
[ 366.053408][ T6103] #4: ffffffff8e015a90 (console_srcu){....}-{0:0}, at: console_flush_all+0x13a/0xc40
[ 366.053436][ T6103]
[ 366.053436][ T6103] stack backtrace:
[ 366.053444][ T6103] CPU: 0 UID: 0 PID: 6103 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 366.053459][ T6103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 366.053467][ T6103] Call Trace:
[ 366.053472][ T6103]
[ 366.053477][ T6103] dump_stack_lvl+0x189/0x250
[ 366.053493][ T6103] ? __pfx_dump_stack_lvl+0x10/0x10
[ 366.053505][ T6103] ? __pfx__printk+0x10/0x10
[ 366.053520][ T6103] ? print_lock_name+0xde/0x100
[ 366.053535][ T6103] print_circular_bug+0x2ee/0x310
[ 366.053547][ T6103] check_noncircular+0x134/0x160
[ 366.053560][ T6103] validate_chain+0xb9b/0x2140
[ 366.053576][ T6103] __lock_acquire+0xab9/0xd20
[ 366.053592][ T6103] ? console_flush_all+0x13a/0xc40
[ 366.053604][ T6103] lock_acquire+0x120/0x360
[ 366.053619][ T6103] ? console_flush_all+0x13a/0xc40
[ 366.053633][ T6103] ? do_raw_spin_unlock+0x122/0x240
[ 366.053645][ T6103] ? console_flush_all+0x13a/0xc40
[ 366.053657][ T6103] console_flush_all+0x6d2/0xc40
[ 366.053676][ T6103] ? console_flush_all+0x13a/0xc40
[ 366.053689][ T6103] ? console_flush_all+0x13a/0xc40
[ 366.053703][ T6103] ? __pfx_console_flush_all+0x10/0x10
[ 366.053717][ T6103] ? is_printk_cpu_sync_owner+0x32/0x40
[ 366.053733][ T6103] console_unlock+0xc4/0x270
[ 366.053744][ T6103] ? __pfx_console_unlock+0x10/0x10
[ 366.053756][ T6103] ? is_printk_cpu_sync_owner+0x32/0x40
[ 366.053770][ T6103] vprintk_emit+0x5b7/0x7a0
[ 366.053782][ T6103] ? __pfx_vprintk_emit+0x10/0x10
[ 366.053793][ T6103] ? __lock_acquire+0xab9/0xd20
[ 366.053811][ T6103] _printk+0xcf/0x120
[ 366.053824][ T6103] ? __pfx____ratelimit+0x10/0x10
[ 366.053840][ T6103] ? __pfx__printk+0x10/0x10
[ 366.053857][ T6103] should_fail_ex+0x3f5/0x560
[ 366.053871][ T6103] strncpy_from_user+0x36/0x290
[ 366.053884][ T6103] strncpy_from_user_nofault+0x72/0x150
[ 366.053897][ T6103] bpf_bprintf_prepare+0xbbc/0x13d0
[ 366.053914][ T6103] ? __pfx_bpf_bprintf_prepare+0x10/0x10
[ 366.053928][ T6103] ? cmp_ex_search+0x1e/0x80
[ 366.053944][ T6103] ? cmp_ex_search+0x1e/0x80
[ 366.053959][ T6103] ? bpf_trace_printk+0xc1/0x190
[ 366.053977][ T6103] bpf_trace_printk+0xdb/0x190
[ 366.053993][ T6103] ? __lock_acquire+0xab9/0xd20
[ 366.054009][ T6103] ? __pfx_bpf_trace_printk+0x10/0x10
[ 366.054026][ T6103] ? bpf_trace_run2+0x186/0x4b0
[ 366.054040][ T6103] ? fixup_exception+0xe2d/0x1d30
[ 366.054053][ T6103] bpf_prog_7c77c7e0f6645ad8+0x3e/0x44
[ 366.054064][ T6103] bpf_trace_run2+0x284/0x4b0
[ 366.054077][ T6103] ? rb_read_data_buffer+0x4e8/0x580
[ 366.054092][ T6103] ? bpf_trace_run2+0x186/0x4b0
[ 366.054105][ T6103] ? __pfx_bpf_trace_run2+0x10/0x10
[ 366.054119][ T6103] ? __bpf_trace_contention_begin+0xcd/0x130
[ 366.054138][ T6103] __bpf_trace_contention_begin+0xdc/0x130
[ 366.054156][ T6103] ? __pfx___bpf_trace_contention_begin+0x10/0x10
[ 366.054177][ T6103] trace_contention_begin+0x114/0x140
[ 366.054190][ T6103] __pv_queued_spin_lock_slowpath+0xf0/0xb60
[ 366.054208][ T6103] ? rcu_qs+0xc4/0x170
[ 366.054224][ T6103] ? __pfx_rcu_qs+0x10/0x10
[ 366.054239][ T6103] ? __lock_acquire+0xab9/0xd20
[ 366.054254][ T6103] ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[ 366.054274][ T6103] queued_spin_lock_slowpath+0x43/0x50
[ 366.054288][ T6103] do_raw_spin_lock+0x21f/0x290
[ 366.054301][ T6103] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 366.054316][ T6103] raw_spin_rq_lock_nested+0x2a/0x140
[ 366.054334][ T6103] __schedule+0x36b/0x4cc0
[ 366.054348][ T6103] ? __lock_acquire+0xab9/0xd20
[ 366.054366][ T6103] ? __lock_acquire+0xab9/0xd20
[ 366.054382][ T6103] ? __pfx___schedule+0x10/0x10
[ 366.054398][ T6103] ? is_bpf_text_address+0x26/0x2b0
[ 366.054414][ T6103] ? preempt_schedule_irq+0xaa/0x150
[ 366.054430][ T6103] preempt_schedule_irq+0xb5/0x150
[ 366.054445][ T6103] ? __pfx_preempt_schedule_irq+0x10/0x10
[ 366.054460][ T6103] ? __kernel_text_address+0xd/0x40
[ 366.054476][ T6103] ? rcu_irq_exit_check_preempt+0xdf/0x210
[ 366.054495][ T6103] irqentry_exit+0x6f/0x90
[ 366.054509][ T6103] asm_sysvec_reschedule_ipi+0x1a/0x20
[ 366.054522][ T6103] RIP: 0010:__sanitizer_cov_trace_pc+0x18/0x70
[ 366.054537][ T6103] Code: cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 04 24 65 48 8b 0c 25 08 d0 9d 92 65 8b 15 d8 1c de 10 <81> e2 00 01 ff 00 74 11 81 fa 00 01 00 00 75 35 83 b9 3c 16 00 00
[ 366.054548][ T6103] RSP: 0018:ffffc900046df578 EFLAGS: 00000287
[ 366.054559][ T6103] RAX: ffffffff8b736cd9 RBX: 00000000fffffffd RCX: ffff888020a80000
[ 366.054568][ T6103] RDX: 0000000080000000 RSI: 00000000fffffffc RDI: 00000000ffffffff
[ 366.054576][ T6103] RBP: ffffc900046df6a0 R08: ffffc900046df617 R09: 0000000000000000
[ 366.054585][ T6103] R10: ffffc900046df600 R11: fffff520008dbec3 R12: 00000000fffffffc
[ 366.054594][ T6103] R13: 0000000000000001 R14: ffff88804ffe210e R15: 00000000ffff0a00
[ 366.054605][ T6103] ? number+0x919/0xf60
[ 366.054618][ T6103] number+0x919/0xf60
[ 366.054632][ T6103] ? number+0x41/0xf60
[ 366.054644][ T6103] ? __pfx_number+0x10/0x10
[ 366.054658][ T6103] ? format_decode+0x5a3/0xe30
[ 366.054677][ T6103] vsnprintf+0x91b/0xf00
[ 366.054692][ T6103] snprintf+0xda/0x120
[ 366.054705][ T6103] ? snprintf+0xda/0x120
[ 366.054718][ T6103] ? __pfx_snprintf+0x10/0x10
[ 366.054730][ T6103] ? from_kgid+0x1b0/0x650
[ 366.054745][ T6103] ? __pfx_from_kgid+0x10/0x10
[ 366.054760][ T6103] tomoyo_init_log+0xbc0/0x1f70
[ 366.054781][ T6103] ? __pfx_tomoyo_init_log+0x10/0x10
[ 366.054797][ T6103] ? tomoyo_profile+0x11/0x50
[ 366.054813][ T6103] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 366.054827][ T6103] tomoyo_supervisor+0x340/0x1480
[ 366.054844][ T6103] ? format_decode+0x5a3/0xe30
[ 366.054858][ T6103] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 366.054877][ T6103] ? snprintf+0xda/0x120
[ 366.054890][ T6103] ? __pfx_snprintf+0x10/0x10
[ 366.054903][ T6103] ? tomoyo_check_acl+0x386/0x400
[ 366.054917][ T6103] tomoyo_path_number_perm+0x438/0x5a0
[ 366.054930][ T6103] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 366.054944][ T6103] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 366.054959][ T6103] ? _raw_spin_lock_irq+0xae/0xf0
[ 366.054980][ T6103] ? __pfx_ptrace_notify+0x10/0x10
[ 366.055001][ T6103] security_file_ioctl+0xcb/0x2d0
[ 366.055014][ T6103] __se_sys_ioctl+0x47/0x170
[ 366.055027][ T6103] do_syscall_64+0xfa/0x3b0
[ 366.055044][ T6103] ? lockdep_hardirqs_on+0x9c/0x150
[ 366.055059][ T6103] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 366.055071][ T6103] ? clear_bhb_loop+0x60/0xb0
[ 366.055083][ T6103] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 366.055095][ T6103] RIP: 0033:0x7fea15a51869
[ 366.055106][ T6103] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 366.055116][ T6103] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 366.055128][ T6103] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 366.055137][ T6103] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 366.055144][ T6103] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 366.055152][ T6103] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 366.055160][ T6103] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 366.055171][ T6103]
[ 367.638854][ T6103] CPU: 0 UID: 0 PID: 6103 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 367.638885][ T6103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 367.638895][ T6103] Call Trace:
[ 367.638906][ T6103]
[ 367.638913][ T6103] dump_stack_lvl+0x189/0x250
[ 367.638937][ T6103] ? __pfx____ratelimit+0x10/0x10
[ 367.638959][ T6103] ? __pfx_dump_stack_lvl+0x10/0x10
[ 367.638975][ T6103] ? __pfx__printk+0x10/0x10
[ 367.638998][ T6103] should_fail_ex+0x414/0x560
[ 367.639018][ T6103] strncpy_from_user+0x36/0x290
[ 367.639036][ T6103] strncpy_from_user_nofault+0x72/0x150
[ 367.639054][ T6103] bpf_bprintf_prepare+0xbbc/0x13d0
[ 367.639077][ T6103] ? __pfx_bpf_bprintf_prepare+0x10/0x10
[ 367.639095][ T6103] ? cmp_ex_search+0x1e/0x80
[ 367.639116][ T6103] ? cmp_ex_search+0x1e/0x80
[ 367.639137][ T6103] ? bpf_trace_printk+0xc1/0x190
[ 367.639160][ T6103] bpf_trace_printk+0xdb/0x190
[ 367.639182][ T6103] ? __lock_acquire+0xab9/0xd20
[ 367.639202][ T6103] ? __pfx_bpf_trace_printk+0x10/0x10
[ 367.639226][ T6103] ? bpf_trace_run2+0x186/0x4b0
[ 367.639244][ T6103] ? fixup_exception+0xe2d/0x1d30
[ 367.639262][ T6103] bpf_prog_7c77c7e0f6645ad8+0x3e/0x44
[ 367.639276][ T6103] bpf_trace_run2+0x284/0x4b0
[ 367.639293][ T6103] ? rb_read_data_buffer+0x4e8/0x580
[ 367.639313][ T6103] ? bpf_trace_run2+0x186/0x4b0
[ 367.639331][ T6103] ? __pfx_bpf_trace_run2+0x10/0x10
[ 367.639349][ T6103] ? __bpf_trace_contention_begin+0xcd/0x130
[ 367.639375][ T6103] __bpf_trace_contention_begin+0xdc/0x130
[ 367.639398][ T6103] ? __pfx___bpf_trace_contention_begin+0x10/0x10
[ 367.639427][ T6103] trace_contention_begin+0x114/0x140
[ 367.639444][ T6103] __pv_queued_spin_lock_slowpath+0xf0/0xb60
[ 367.639468][ T6103] ? rcu_qs+0xc4/0x170
[ 367.639489][ T6103] ? __pfx_rcu_qs+0x10/0x10
[ 367.639509][ T6103] ? __lock_acquire+0xab9/0xd20
[ 367.639529][ T6103] ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[ 367.639556][ T6103] queued_spin_lock_slowpath+0x43/0x50
[ 367.639574][ T6103] do_raw_spin_lock+0x21f/0x290
[ 367.639591][ T6103] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 367.639611][ T6103] raw_spin_rq_lock_nested+0x2a/0x140
[ 367.639635][ T6103] __schedule+0x36b/0x4cc0
[ 367.639655][ T6103] ? __lock_acquire+0xab9/0xd20
[ 367.639678][ T6103] ? __lock_acquire+0xab9/0xd20
[ 367.639699][ T6103] ? __pfx___schedule+0x10/0x10
[ 367.639721][ T6103] ? is_bpf_text_address+0x26/0x2b0
[ 367.639742][ T6103] ? preempt_schedule_irq+0xaa/0x150
[ 367.639763][ T6103] preempt_schedule_irq+0xb5/0x150
[ 367.639782][ T6103] ? __pfx_preempt_schedule_irq+0x10/0x10
[ 367.639802][ T6103] ? __kernel_text_address+0xd/0x40
[ 367.639824][ T6103] ? rcu_irq_exit_check_preempt+0xdf/0x210
[ 367.639847][ T6103] irqentry_exit+0x6f/0x90
[ 367.639867][ T6103] asm_sysvec_reschedule_ipi+0x1a/0x20
[ 367.639891][ T6103] RIP: 0010:__sanitizer_cov_trace_pc+0x18/0x70
[ 367.639912][ T6103] Code: cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 04 24 65 48 8b 0c 25 08 d0 9d 92 65 8b 15 d8 1c de 10 <81> e2 00 01 ff 00 74 11 81 fa 00 01 00 00 75 35 83 b9 3c 16 00 00
[ 367.639926][ T6103] RSP: 0018:ffffc900046df578 EFLAGS: 00000287
[ 367.639942][ T6103] RAX: ffffffff8b736cd9 RBX: 00000000fffffffd RCX: ffff888020a80000
[ 367.639954][ T6103] RDX: 0000000080000000 RSI: 00000000fffffffc RDI: 00000000ffffffff
[ 367.639964][ T6103] RBP: ffffc900046df6a0 R08: ffffc900046df617 R09: 0000000000000000
[ 367.639976][ T6103] R10: ffffc900046df600 R11: fffff520008dbec3 R12: 00000000fffffffc
[ 367.639988][ T6103] R13: 0000000000000001 R14: ffff88804ffe210e R15: 00000000ffff0a00
[ 367.640002][ T6103] ? number+0x919/0xf60
[ 367.640021][ T6103] number+0x919/0xf60
[ 367.640038][ T6103] ? number+0x41/0xf60
[ 367.640054][ T6103] ? __pfx_number+0x10/0x10
[ 367.640072][ T6103] ? format_decode+0x5a3/0xe30
[ 367.640090][ T6103] vsnprintf+0x91b/0xf00
[ 367.640110][ T6103] snprintf+0xda/0x120
[ 367.640126][ T6103] ? snprintf+0xda/0x120
[ 367.640143][ T6103] ? __pfx_snprintf+0x10/0x10
[ 367.640159][ T6103] ? from_kgid+0x1b0/0x650
[ 367.640179][ T6103] ? __pfx_from_kgid+0x10/0x10
[ 367.640199][ T6103] tomoyo_init_log+0xbc0/0x1f70
[ 367.640229][ T6103] ? __pfx_tomoyo_init_log+0x10/0x10
[ 367.640249][ T6103] ? tomoyo_profile+0x11/0x50
[ 367.640269][ T6103] ? tomoyo_domain_quota_is_ok+0x42b/0x570
[ 367.640288][ T6103] tomoyo_supervisor+0x340/0x1480
[ 367.640310][ T6103] ? format_decode+0x5a3/0xe30
[ 367.640329][ T6103] ? __pfx_tomoyo_supervisor+0x10/0x10
[ 367.640353][ T6103] ? snprintf+0xda/0x120
[ 367.640371][ T6103] ? __pfx_snprintf+0x10/0x10
[ 367.640388][ T6103] ? tomoyo_check_acl+0x386/0x400
[ 367.640407][ T6103] tomoyo_path_number_perm+0x438/0x5a0
[ 367.640424][ T6103] ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 367.640442][ T6103] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 367.640461][ T6103] ? _raw_spin_lock_irq+0xae/0xf0
[ 367.640489][ T6103] ? __pfx_ptrace_notify+0x10/0x10
[ 367.640514][ T6103] security_file_ioctl+0xcb/0x2d0
[ 367.640532][ T6103] __se_sys_ioctl+0x47/0x170
[ 367.640549][ T6103] do_syscall_64+0xfa/0x3b0
[ 367.640570][ T6103] ? lockdep_hardirqs_on+0x9c/0x150
[ 367.640590][ T6103] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 367.640605][ T6103] ? clear_bhb_loop+0x60/0xb0
[ 367.640622][ T6103] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 367.640639][ T6103] RIP: 0033:0x7fea15a51869
[ 367.640653][ T6103] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 367.640666][ T6103] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 367.640681][ T6103] RAX: ffffffffffffffda RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 367.640693][ T6103] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[ 367.640703][ T6103] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 367.640713][ T6103] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[pid 6103] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6103] exit_group(0) = ?
[pid 6103] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6103, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6104 attached
, child_tidptr=0x555576720650) = 6104
[pid 6104] set_robust_list(0x555576720660, 24) = 0
[pid 6104] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6104] setpgid(0, 0) = 0
[pid 6104] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6104] write(3, "1000", 4executing program
) = 4
[pid 6104] close(3) = 0
[pid 6104] write(1, "executing program\n", 18) = 18
[pid 6104] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6104] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6104] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6104] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6104] write(6, "4", 1) = 1
[pid 6104] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 367.640722][ T6103] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 367.640737][ T6103]
[ 368.257958][ T6104] FAULT_INJECTION: forcing a failure.
[ 368.257958][ T6104] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[ 368.271500][ T6104] CPU: 1 UID: 0 PID: 6104 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 368.271529][ T6104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 368.271542][ T6104] Call Trace:
[ 368.271550][ T6104]
[ 368.271559][ T6104] dump_stack_lvl+0x189/0x250
[ 368.271587][ T6104] ? __pfx____ratelimit+0x10/0x10
[ 368.271615][ T6104] ? __pfx_dump_stack_lvl+0x10/0x10
[ 368.271648][ T6104] ? __pfx__printk+0x10/0x10
[ 368.271672][ T6104] ? lock_acquire+0x5f/0x360
[ 368.271700][ T6104] should_fail_ex+0x414/0x560
[ 368.271721][ T6104] prepare_alloc_pages+0x213/0x610
[ 368.271742][ T6104] __alloc_frozen_pages_noprof+0x123/0x370
[ 368.271761][ T6104] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 368.271780][ T6104] ? policy_nodemask+0x27c/0x720
[ 368.271796][ T6104] alloc_pages_mpol+0x232/0x4a0
[ 368.271812][ T6104] vma_alloc_folio_noprof+0xe4/0x200
[ 368.271828][ T6104] ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 368.271844][ T6104] ? rcu_is_watching+0x15/0xb0
[ 368.271861][ T6104] ? lock_release+0x4b/0x3e0
[ 368.271880][ T6104] folio_prealloc+0x30/0x180
[ 368.271895][ T6104] do_wp_page+0x1231/0x5800
[ 368.271913][ T6104] ? __pfx_do_wp_page+0x10/0x10
[ 368.271925][ T6104] ? do_raw_spin_lock+0x121/0x290
[ 368.271939][ T6104] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 368.271951][ T6104] ? ___pte_offset_map+0x45/0x250
[ 368.271966][ T6104] __handle_mm_fault+0x1033/0x5440
[ 368.271989][ T6104] ? __pfx___handle_mm_fault+0x10/0x10
[ 368.272005][ T6104] ? lock_release+0x4b/0x3e0
[ 368.272022][ T6104] ? lock_vma_under_rcu+0xdf/0x3d0
[ 368.272037][ T6104] ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 368.272051][ T6104] ? rcu_is_watching+0x15/0xb0
[ 368.272070][ T6104] handle_mm_fault+0x40a/0x8e0
[ 368.272086][ T6104] do_user_addr_fault+0xa81/0x1390
[ 368.272105][ T6104] ? rcu_is_watching+0x15/0xb0
[ 368.272122][ T6104] ? trace_page_fault_user+0x84/0x1e0
[ 368.272139][ T6104] exc_page_fault+0x76/0xf0
[ 368.272156][ T6104] asm_exc_page_fault+0x26/0x30
[ 368.272168][ T6104] RIP: 0033:0x7fea15a20050
[ 368.272181][ T6104] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 9d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 50 3d 0a 00 0f 85 0f 02 00 00 4c 8d 25 43 3d 0a 00 4c
[ 368.272192][ T6104] RSP: 002b:00007ffe55dafd80 EFLAGS: 00010246
[ 368.272205][ T6104] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[pid 6104] exit_group(0) = ?
[pid 6104] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6104, si_uid=0, si_status=0, si_utime=0, si_stime=28 /* 0.28 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 368.272213][ T6104] RDX: 0000000000000001 RSI: 00007fea15ac1118 RDI: 0000000000000000
[ 368.272221][ T6104] RBP: 00007fea15ac1118 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 368.272229][ T6104] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 368.272237][ T6104] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 368.272248][ T6104]
[ 368.272260][ T6104] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6105 attached
, child_tidptr=0x555576720650) = 6105
[pid 6105] set_robust_list(0x555576720660, 24) = 0
[pid 6105] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6105] setpgid(0, 0) = 0
[pid 6105] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6105] write(3, "1000", 4) = 4
[pid 6105] close(3) = 0
[pid 6105] write(1, "executing program\n", 18executing program
) = 18
[pid 6105] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6105] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6105] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6105] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6105] write(6, "4", 1) = 1
[ 368.666606][ T6105] FAULT_INJECTION: forcing a failure.
[ 368.666606][ T6105] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 368.680294][ T6105] CPU: 0 UID: 0 PID: 6105 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 368.680315][ T6105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 368.680323][ T6105] Call Trace:
[ 368.680329][ T6105]
[ 368.680335][ T6105] dump_stack_lvl+0x189/0x250
[ 368.680354][ T6105] ? __pfx____ratelimit+0x10/0x10
[ 368.680372][ T6105] ? __pfx_dump_stack_lvl+0x10/0x10
[ 368.680384][ T6105] ? __pfx__printk+0x10/0x10
[ 368.680398][ T6105] ? rcu_is_watching+0x15/0xb0
[ 368.680416][ T6105] ? rcu_is_watching+0x15/0xb0
[ 368.680433][ T6105] ? lock_release+0x4b/0x3e0
[ 368.680448][ T6105] ? stack_depot_save_flags+0x40/0x860
[ 368.680464][ T6105] should_fail_ex+0x414/0x560
[ 368.680479][ T6105] strncpy_from_user+0x36/0x290
[ 368.680491][ T6105] ? do_dentry_open+0x384/0x13f0
[ 368.680511][ T6105] strncpy_from_user_nofault+0x72/0x150
[ 368.680525][ T6105] bpf_bprintf_prepare+0xbbc/0x13d0
[ 368.680542][ T6105] ? __pfx_bpf_bprintf_prepare+0x10/0x10
[ 368.680557][ T6105] ? unwind_next_frame+0xa5/0x2390
[ 368.680569][ T6105] ? rcu_is_watching+0x15/0xb0
[ 368.680586][ T6105] ? bpf_trace_printk+0xc1/0x190
[ 368.680610][ T6105] bpf_trace_printk+0xdb/0x190
[ 368.680627][ T6105] ? __pfx_bpf_trace_printk+0x10/0x10
[ 368.680645][ T6105] ? bpf_trace_run2+0x186/0x4b0
[ 368.680657][ T6105] ? rcu_is_watching+0x15/0xb0
[ 368.680674][ T6105] ? lock_acquire+0x5f/0x360
[ 368.680688][ T6105] ? unwind_next_frame+0xa5/0x2390
[ 368.680702][ T6105] bpf_prog_7c77c7e0f6645ad8+0x3e/0x44
[ 368.680714][ T6105] bpf_trace_run2+0x284/0x4b0
[ 368.680727][ T6105] ? bpf_trace_run2+0x186/0x4b0
[ 368.680741][ T6105] ? __pfx_bpf_trace_run2+0x10/0x10
[ 368.680753][ T6105] ? cmp_ex_search+0x1e/0x80
[ 368.680769][ T6105] ? bsearch+0x95/0xc0
[ 368.680781][ T6105] ? __bpf_trace_contention_begin+0xcd/0x130
[ 368.680801][ T6105] __bpf_trace_contention_begin+0xdc/0x130
[ 368.680819][ T6105] ? __pfx___bpf_trace_contention_begin+0x10/0x10
[ 368.680837][ T6105] ? rep_movs_alternative+0x4a/0x90
[ 368.680851][ T6105] ? fixup_exception+0xe2d/0x1d30
[ 368.680863][ T6105] trace_contention_begin+0x114/0x140
[ 368.680876][ T6105] __pv_queued_spin_lock_slowpath+0xf0/0xb60
[ 368.680896][ T6105] ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[ 368.680914][ T6105] ? select_task_rq_fair+0x309/0x3570
[ 368.680929][ T6105] queued_spin_lock_slowpath+0x43/0x50
[ 368.680942][ T6105] do_raw_spin_lock+0x21f/0x290
[ 368.680955][ T6105] ? lock_acquire+0x5f/0x360
[ 368.680970][ T6105] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 368.680985][ T6105] raw_spin_rq_lock_nested+0x2a/0x140
[ 368.681003][ T6105] try_to_wake_up+0x635/0x12b0
[ 368.681018][ T6105] __wake_up_common_lock+0x134/0x1f0
[ 368.681034][ T6105] do_notify_parent_cldstop+0x872/0x9a0
[ 368.681052][ T6105] ? __pfx_do_notify_parent_cldstop+0x10/0x10
[ 368.681070][ T6105] ? ptrace_stop+0x3d7/0x940
[ 368.681084][ T6105] ? rcu_is_watching+0x15/0xb0
[ 368.681101][ T6105] ? lock_acquire+0x5f/0x360
[ 368.681119][ T6105] ptrace_stop+0x41f/0x940
[ 368.681137][ T6105] ptrace_notify+0x20f/0x2c0
[ 368.681153][ T6105] ? __pfx_ptrace_notify+0x10/0x10
[ 368.681171][ T6105] ? bpf_lsm_file_ioctl+0x9/0x20
[ 368.681186][ T6105] syscall_exit_work+0xc6/0x1d0
[ 368.681203][ T6105] do_syscall_64+0x2ad/0x3b0
[ 368.681220][ T6105] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 368.681232][ T6105] ? clear_bhb_loop+0x60/0xb0
[ 368.681245][ T6105] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 368.681257][ T6105] RIP: 0033:0x7fea15a51869
[ 368.681269][ T6105] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 368.681280][ T6105] RSP: 002b:00007ffe55dafdd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 368.681296][ T6105] RAX: fffffffffffffff2 RBX: 00007ffe55dafdf0 RCX: 00007fea15a51869
[ 368.681305][ T6105] RDX: 0000000000000000 RSI: 0000000000004606 RDI: 0000000000000005
[pid 6105] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[pid 6105] exit_group(0) = ?
[pid 6105] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6105, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 368.681314][ T6105] RBP: 0000000000000001 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 368.681322][ T6105] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 368.681330][ T6105] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 368.681341][ T6105]
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6106 attached
, child_tidptr=0x555576720650) = 6106
[pid 6106] set_robust_list(0x555576720660, 24) = 0
[pid 6106] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6106] setpgid(0, 0) = 0
[pid 6106] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6106] write(3, "1000", 4) = 4
[pid 6106] close(3) = 0
executing program
[pid 6106] write(1, "executing program\n", 18) = 18
[pid 6106] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6106] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6106] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6106] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6106] write(6, "4", 1) = 1
[pid 6106] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 369.228330][ T6106] FAULT_INJECTION: forcing a failure.
[ 369.228330][ T6106] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 369.242004][ T6106] CPU: 1 UID: 0 PID: 6106 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 369.242033][ T6106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 369.242046][ T6106] Call Trace:
[ 369.242053][ T6106]
[ 369.242063][ T6106] dump_stack_lvl+0x189/0x250
[ 369.242090][ T6106] ? __pfx____ratelimit+0x10/0x10
[ 369.242119][ T6106] ? __pfx_dump_stack_lvl+0x10/0x10
[ 369.242139][ T6106] ? __pfx__printk+0x10/0x10
[ 369.242166][ T6106] ? lock_acquire+0x5f/0x360
[ 369.242193][ T6106] should_fail_ex+0x414/0x560
[ 369.242217][ T6106] prepare_alloc_pages+0x213/0x610
[ 369.242245][ T6106] __alloc_frozen_pages_noprof+0x123/0x370
[ 369.242264][ T6106] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 369.242283][ T6106] ? policy_nodemask+0x27c/0x720
[ 369.242300][ T6106] alloc_pages_mpol+0x232/0x4a0
[ 369.242316][ T6106] vma_alloc_folio_noprof+0xe4/0x200
[ 369.242331][ T6106] ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 369.242347][ T6106] ? rcu_is_watching+0x15/0xb0
[ 369.242364][ T6106] ? lock_release+0x4b/0x3e0
[ 369.242380][ T6106] folio_prealloc+0x30/0x180
[ 369.242396][ T6106] do_wp_page+0x1231/0x5800
[ 369.242414][ T6106] ? __pfx_do_wp_page+0x10/0x10
[ 369.242426][ T6106] ? do_raw_spin_lock+0x121/0x290
[ 369.242439][ T6106] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 369.242451][ T6106] ? ___pte_offset_map+0x45/0x250
[ 369.242467][ T6106] __handle_mm_fault+0x1033/0x5440
[ 369.242484][ T6106] ? __pfx___handle_mm_fault+0x10/0x10
[ 369.242498][ T6106] ? lock_release+0x4b/0x3e0
[ 369.242515][ T6106] ? lock_vma_under_rcu+0xdf/0x3d0
[ 369.242530][ T6106] ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 369.242544][ T6106] ? rcu_is_watching+0x15/0xb0
[ 369.242562][ T6106] handle_mm_fault+0x40a/0x8e0
[ 369.242578][ T6106] do_user_addr_fault+0xa81/0x1390
[ 369.242596][ T6106] ? rcu_is_watching+0x15/0xb0
[ 369.242629][ T6106] ? trace_page_fault_user+0x84/0x1e0
[ 369.242646][ T6106] exc_page_fault+0x76/0xf0
[ 369.242662][ T6106] asm_exc_page_fault+0x26/0x30
[ 369.242674][ T6106] RIP: 0033:0x7fea15a20050
[ 369.242686][ T6106] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 9d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 50 3d 0a 00 0f 85 0f 02 00 00 4c 8d 25 43 3d 0a 00 4c
[ 369.242698][ T6106] RSP: 002b:00007ffe55dafd80 EFLAGS: 00010246
[ 369.242711][ T6106] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[pid 6106] exit_group(0) = ?
[pid 6106] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6106, si_uid=0, si_status=0, si_utime=0, si_stime=28 /* 0.28 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6107 attached
, child_tidptr=0x555576720650) = 6107
[pid 6107] set_robust_list(0x555576720660, 24) = 0
[pid 6107] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6107] setpgid(0, 0) = 0
[ 369.242720][ T6106] RDX: 0000000000000001 RSI: 00007fea15ac1118 RDI: 0000000000000000
[ 369.242728][ T6106] RBP: 00007fea15ac1118 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 369.242736][ T6106] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 369.242744][ T6106] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 369.242755][ T6106]
[ 369.242767][ T6106] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[pid 6107] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6107] write(3, "1000", 4) = 4
[pid 6107] close(3) = 0
[pid 6107] write(1, "executing program\n", 18executing program
) = 18
[pid 6107] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6107] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6107] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6107] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6107] write(6, "4", 1) = 1
[pid 6107] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 369.590399][ T6107] FAULT_INJECTION: forcing a failure.
[ 369.590399][ T6107] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 369.603976][ T6107] CPU: 0 UID: 0 PID: 6107 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 369.604005][ T6107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 369.604018][ T6107] Call Trace:
[ 369.604027][ T6107]
[ 369.604035][ T6107] dump_stack_lvl+0x189/0x250
[ 369.604062][ T6107] ? __pfx____ratelimit+0x10/0x10
[ 369.604089][ T6107] ? __pfx_dump_stack_lvl+0x10/0x10
[ 369.604102][ T6107] ? __pfx__printk+0x10/0x10
[ 369.604117][ T6107] ? lock_acquire+0x5f/0x360
[ 369.604135][ T6107] should_fail_ex+0x414/0x560
[ 369.604150][ T6107] prepare_alloc_pages+0x213/0x610
[ 369.604169][ T6107] __alloc_frozen_pages_noprof+0x123/0x370
[ 369.604187][ T6107] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 369.604206][ T6107] ? policy_nodemask+0x27c/0x720
[ 369.604223][ T6107] alloc_pages_mpol+0x232/0x4a0
[ 369.604238][ T6107] vma_alloc_folio_noprof+0xe4/0x200
[ 369.604254][ T6107] ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 369.604270][ T6107] ? rcu_is_watching+0x15/0xb0
[ 369.604287][ T6107] ? lock_release+0x4b/0x3e0
[ 369.604303][ T6107] folio_prealloc+0x30/0x180
[ 369.604318][ T6107] do_wp_page+0x1231/0x5800
[ 369.604336][ T6107] ? __pfx_do_wp_page+0x10/0x10
[ 369.604347][ T6107] ? do_raw_spin_lock+0x121/0x290
[ 369.604361][ T6107] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 369.604373][ T6107] ? ___pte_offset_map+0x45/0x250
[ 369.604388][ T6107] __handle_mm_fault+0x1033/0x5440
[ 369.604411][ T6107] ? __pfx___handle_mm_fault+0x10/0x10
[ 369.604425][ T6107] ? lock_release+0x4b/0x3e0
[ 369.604442][ T6107] ? lock_vma_under_rcu+0xdf/0x3d0
[ 369.604457][ T6107] ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 369.604471][ T6107] ? rcu_is_watching+0x15/0xb0
[ 369.604489][ T6107] handle_mm_fault+0x40a/0x8e0
[ 369.604505][ T6107] do_user_addr_fault+0xa81/0x1390
[ 369.604523][ T6107] ? rcu_is_watching+0x15/0xb0
[ 369.604540][ T6107] ? trace_page_fault_user+0x84/0x1e0
[ 369.604557][ T6107] exc_page_fault+0x76/0xf0
[ 369.604573][ T6107] asm_exc_page_fault+0x26/0x30
[ 369.604585][ T6107] RIP: 0033:0x7fea15a20050
[ 369.604598][ T6107] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 9d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 50 3d 0a 00 0f 85 0f 02 00 00 4c 8d 25 43 3d 0a 00 4c
[ 369.604609][ T6107] RSP: 002b:00007ffe55dafd80 EFLAGS: 00010246
[ 369.604622][ T6107] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[pid 6107] exit_group(0) = ?
[pid 6107] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6107, si_uid=0, si_status=0, si_utime=0, si_stime=26 /* 0.26 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 369.604631][ T6107] RDX: 0000000000000001 RSI: 00007fea15ac1118 RDI: 0000000000000000
[ 369.604639][ T6107] RBP: 00007fea15ac1118 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 369.604648][ T6107] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 369.604655][ T6107] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 369.604676][ T6107]
[ 369.604738][ T6107] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6108 attached
, child_tidptr=0x555576720650) = 6108
[pid 6108] set_robust_list(0x555576720660, 24) = 0
[pid 6108] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6108] setpgid(0, 0) = 0
[pid 6108] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6108] write(3, "1000", 4) = 4
[pid 6108] close(3) = 0
[pid 6108] write(1, "executing program\n", 18executing program
) = 18
[pid 6108] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6108] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6108] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6108] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6108] write(6, "4", 1) = 1
[pid 6108] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 370.038545][ T6108] FAULT_INJECTION: forcing a failure.
[ 370.038545][ T6108] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 370.052289][ T6108] CPU: 1 UID: 0 PID: 6108 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 370.052310][ T6108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 370.052318][ T6108] Call Trace:
[ 370.052323][ T6108]
[ 370.052328][ T6108] dump_stack_lvl+0x189/0x250
[ 370.052347][ T6108] ? __pfx____ratelimit+0x10/0x10
[ 370.052365][ T6108] ? __pfx_dump_stack_lvl+0x10/0x10
[ 370.052377][ T6108] ? __pfx__printk+0x10/0x10
[ 370.052392][ T6108] ? lock_acquire+0x5f/0x360
[ 370.052410][ T6108] should_fail_ex+0x414/0x560
[ 370.052423][ T6108] prepare_alloc_pages+0x213/0x610
[ 370.052442][ T6108] __alloc_frozen_pages_noprof+0x123/0x370
[ 370.052461][ T6108] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 370.052480][ T6108] ? policy_nodemask+0x27c/0x720
[ 370.052496][ T6108] alloc_pages_mpol+0x232/0x4a0
[ 370.052511][ T6108] vma_alloc_folio_noprof+0xe4/0x200
[ 370.052527][ T6108] ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 370.052543][ T6108] ? rcu_is_watching+0x15/0xb0
[ 370.052561][ T6108] ? lock_release+0x4b/0x3e0
[ 370.052576][ T6108] folio_prealloc+0x30/0x180
[ 370.052592][ T6108] do_wp_page+0x1231/0x5800
[ 370.052609][ T6108] ? __pfx_do_wp_page+0x10/0x10
[ 370.052621][ T6108] ? do_raw_spin_lock+0x121/0x290
[ 370.052634][ T6108] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 370.052654][ T6108] ? ___pte_offset_map+0x45/0x250
[ 370.052669][ T6108] __handle_mm_fault+0x1033/0x5440
[ 370.052686][ T6108] ? __pfx___handle_mm_fault+0x10/0x10
[ 370.052700][ T6108] ? lock_release+0x4b/0x3e0
[ 370.052717][ T6108] ? lock_vma_under_rcu+0xdf/0x3d0
[ 370.052732][ T6108] ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 370.052746][ T6108] ? rcu_is_watching+0x15/0xb0
[ 370.052764][ T6108] handle_mm_fault+0x40a/0x8e0
[ 370.052779][ T6108] do_user_addr_fault+0xa81/0x1390
[ 370.052798][ T6108] ? rcu_is_watching+0x15/0xb0
[ 370.052815][ T6108] ? trace_page_fault_user+0x84/0x1e0
[ 370.052832][ T6108] exc_page_fault+0x76/0xf0
[ 370.052848][ T6108] asm_exc_page_fault+0x26/0x30
[ 370.052860][ T6108] RIP: 0033:0x7fea15a20050
[ 370.052873][ T6108] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 9d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 50 3d 0a 00 0f 85 0f 02 00 00 4c 8d 25 43 3d 0a 00 4c
[ 370.052884][ T6108] RSP: 002b:00007ffe55dafd80 EFLAGS: 00010246
[ 370.052897][ T6108] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[pid 6108] exit_group(0) = ?
[pid 6108] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6108, si_uid=0, si_status=0, si_utime=0, si_stime=26 /* 0.26 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6109 attached
, child_tidptr=0x555576720650) = 6109
[pid 6109] set_robust_list(0x555576720660, 24) = 0
[pid 6109] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 370.052906][ T6108] RDX: 0000000000000001 RSI: 00007fea15ac1118 RDI: 0000000000000000
[ 370.052914][ T6108] RBP: 00007fea15ac1118 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 370.052922][ T6108] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 370.052930][ T6108] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 370.052941][ T6108]
[ 370.052953][ T6108] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[pid 6109] setpgid(0, 0) = 0
[pid 6109] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6109] write(3, "1000", 4) = 4
[pid 6109] close(3) = 0
executing program
[pid 6109] write(1, "executing program\n", 18) = 18
[pid 6109] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6109] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6109] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6109] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6109] write(6, "4", 1) = 1
[pid 6109] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 370.433407][ T6109] FAULT_INJECTION: forcing a failure.
[ 370.433407][ T6109] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 370.446807][ T6109] CPU: 1 UID: 0 PID: 6109 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 370.446838][ T6109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 370.446851][ T6109] Call Trace:
[ 370.446860][ T6109]
[ 370.446868][ T6109] dump_stack_lvl+0x189/0x250
[ 370.446896][ T6109] ? __pfx____ratelimit+0x10/0x10
[ 370.446925][ T6109] ? __pfx_dump_stack_lvl+0x10/0x10
[ 370.446946][ T6109] ? __pfx__printk+0x10/0x10
[ 370.446972][ T6109] ? lock_acquire+0x5f/0x360
[ 370.447001][ T6109] should_fail_ex+0x414/0x560
[ 370.447025][ T6109] prepare_alloc_pages+0x213/0x610
[ 370.447057][ T6109] __alloc_frozen_pages_noprof+0x123/0x370
[ 370.447087][ T6109] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 370.447121][ T6109] ? policy_nodemask+0x27c/0x720
[ 370.447147][ T6109] alloc_pages_mpol+0x232/0x4a0
[ 370.447174][ T6109] vma_alloc_folio_noprof+0xe4/0x200
[ 370.447200][ T6109] ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 370.447225][ T6109] ? rcu_is_watching+0x15/0xb0
[ 370.447250][ T6109] ? lock_release+0x4b/0x3e0
[ 370.447270][ T6109] folio_prealloc+0x30/0x180
[ 370.447290][ T6109] do_wp_page+0x1231/0x5800
[ 370.447313][ T6109] ? __pfx_do_wp_page+0x10/0x10
[ 370.447329][ T6109] ? do_raw_spin_lock+0x121/0x290
[ 370.447346][ T6109] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 370.447362][ T6109] ? ___pte_offset_map+0x45/0x250
[ 370.447383][ T6109] __handle_mm_fault+0x1033/0x5440
[ 370.447405][ T6109] ? __pfx___handle_mm_fault+0x10/0x10
[ 370.447423][ T6109] ? lock_release+0x4b/0x3e0
[ 370.447445][ T6109] ? lock_vma_under_rcu+0xdf/0x3d0
[ 370.447465][ T6109] ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 370.447483][ T6109] ? rcu_is_watching+0x15/0xb0
[ 370.447507][ T6109] handle_mm_fault+0x40a/0x8e0
[ 370.447528][ T6109] do_user_addr_fault+0xa81/0x1390
[ 370.447554][ T6109] ? rcu_is_watching+0x15/0xb0
[ 370.447576][ T6109] ? trace_page_fault_user+0x84/0x1e0
[ 370.447598][ T6109] exc_page_fault+0x76/0xf0
[ 370.447630][ T6109] asm_exc_page_fault+0x26/0x30
[ 370.447644][ T6109] RIP: 0033:0x7fea15a20050
[ 370.447659][ T6109] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 9d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 50 3d 0a 00 0f 85 0f 02 00 00 4c 8d 25 43 3d 0a 00 4c
[ 370.447673][ T6109] RSP: 002b:00007ffe55dafd80 EFLAGS: 00010246
[ 370.447689][ T6109] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[pid 6109] exit_group(0) = ?
[pid 6109] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6109, si_uid=0, si_status=0, si_utime=0, si_stime=28 /* 0.28 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 370.447700][ T6109] RDX: 0000000000000001 RSI: 00007fea15ac1118 RDI: 0000000000000000
[ 370.447711][ T6109] RBP: 00007fea15ac1118 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 370.447722][ T6109] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 370.447732][ T6109] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 370.447747][ T6109]
[ 370.447767][ T6109] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6110 attached
, child_tidptr=0x555576720650) = 6110
[pid 6110] set_robust_list(0x555576720660, 24) = 0
[pid 6110] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6110] setpgid(0, 0) = 0
[pid 6110] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6110] write(3, "1000", 4) = 4
[pid 6110] close(3) = 0
executing program
[pid 6110] write(1, "executing program\n", 18) = 18
[pid 6110] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6110] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6110] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6110] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6110] write(6, "4", 1) = 1
[pid 6110] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 370.886009][ T6110] FAULT_INJECTION: forcing a failure.
[ 370.886009][ T6110] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 370.899419][ T6110] CPU: 1 UID: 0 PID: 6110 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 370.899440][ T6110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 370.899448][ T6110] Call Trace:
[ 370.899453][ T6110]
[ 370.899458][ T6110] dump_stack_lvl+0x189/0x250
[ 370.899476][ T6110] ? __pfx____ratelimit+0x10/0x10
[ 370.899493][ T6110] ? __pfx_dump_stack_lvl+0x10/0x10
[ 370.899506][ T6110] ? __pfx__printk+0x10/0x10
[ 370.899521][ T6110] ? lock_acquire+0x5f/0x360
[ 370.899538][ T6110] should_fail_ex+0x414/0x560
[ 370.899552][ T6110] prepare_alloc_pages+0x213/0x610
[ 370.899570][ T6110] __alloc_frozen_pages_noprof+0x123/0x370
[ 370.899589][ T6110] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 370.899608][ T6110] ? policy_nodemask+0x27c/0x720
[ 370.899624][ T6110] alloc_pages_mpol+0x232/0x4a0
[ 370.899640][ T6110] vma_alloc_folio_noprof+0xe4/0x200
[ 370.899655][ T6110] ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 370.899671][ T6110] ? rcu_is_watching+0x15/0xb0
[ 370.899689][ T6110] ? lock_release+0x4b/0x3e0
[ 370.899704][ T6110] folio_prealloc+0x30/0x180
[ 370.899720][ T6110] do_wp_page+0x1231/0x5800
[ 370.899737][ T6110] ? __pfx_do_wp_page+0x10/0x10
[ 370.899749][ T6110] ? do_raw_spin_lock+0x121/0x290
[ 370.899763][ T6110] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 370.899774][ T6110] ? ___pte_offset_map+0x45/0x250
[ 370.899790][ T6110] __handle_mm_fault+0x1033/0x5440
[ 370.899807][ T6110] ? __pfx___handle_mm_fault+0x10/0x10
[ 370.899821][ T6110] ? lock_release+0x4b/0x3e0
[ 370.899838][ T6110] ? lock_vma_under_rcu+0xdf/0x3d0
[ 370.899852][ T6110] ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 370.899867][ T6110] ? rcu_is_watching+0x15/0xb0
[ 370.899894][ T6110] handle_mm_fault+0x40a/0x8e0
[ 370.899910][ T6110] do_user_addr_fault+0xa81/0x1390
[ 370.899928][ T6110] ? rcu_is_watching+0x15/0xb0
[ 370.899945][ T6110] ? trace_page_fault_user+0x84/0x1e0
[ 370.899962][ T6110] exc_page_fault+0x76/0xf0
[ 370.899978][ T6110] asm_exc_page_fault+0x26/0x30
[ 370.899989][ T6110] RIP: 0033:0x7fea15a20050
[ 370.900001][ T6110] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 9d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 50 3d 0a 00 0f 85 0f 02 00 00 4c 8d 25 43 3d 0a 00 4c
[ 370.900013][ T6110] RSP: 002b:00007ffe55dafd80 EFLAGS: 00010246
[ 370.900026][ T6110] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[pid 6110] exit_group(0) = ?
[pid 6110] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6110, si_uid=0, si_status=0, si_utime=0, si_stime=28 /* 0.28 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6111 attached
, child_tidptr=0x555576720650) = 6111
[pid 6111] set_robust_list(0x555576720660, 24) = 0
[pid 6111] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6111] setpgid(0, 0) = 0
[pid 6111] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6111] write(3, "1000", 4) = 4
[pid 6111] close(3) = 0
[pid 6111] write(1, "executing program\n", 18executing program
) = 18
[ 370.900034][ T6110] RDX: 0000000000000001 RSI: 00007fea15ac1118 RDI: 0000000000000000
[ 370.900042][ T6110] RBP: 00007fea15ac1118 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 370.900051][ T6110] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 370.900058][ T6110] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 370.900070][ T6110]
[ 370.900082][ T6110] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[pid 6111] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6111] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6111] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6111] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6111] write(6, "4", 1) = 1
[pid 6111] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 371.223662][ T6111] FAULT_INJECTION: forcing a failure.
[ 371.223662][ T6111] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 371.237866][ T6111] CPU: 0 UID: 0 PID: 6111 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 371.237887][ T6111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 371.237895][ T6111] Call Trace:
[ 371.237900][ T6111]
[ 371.237906][ T6111] dump_stack_lvl+0x189/0x250
[ 371.237924][ T6111] ? __pfx____ratelimit+0x10/0x10
[ 371.237941][ T6111] ? __pfx_dump_stack_lvl+0x10/0x10
[ 371.237953][ T6111] ? __pfx__printk+0x10/0x10
[ 371.237968][ T6111] ? lock_acquire+0x5f/0x360
[ 371.237985][ T6111] should_fail_ex+0x414/0x560
[ 371.237999][ T6111] prepare_alloc_pages+0x213/0x610
[ 371.238018][ T6111] __alloc_frozen_pages_noprof+0x123/0x370
[ 371.238036][ T6111] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 371.238055][ T6111] ? policy_nodemask+0x27c/0x720
[ 371.238071][ T6111] alloc_pages_mpol+0x232/0x4a0
[ 371.238087][ T6111] vma_alloc_folio_noprof+0xe4/0x200
[ 371.238102][ T6111] ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 371.238118][ T6111] ? rcu_is_watching+0x15/0xb0
[ 371.238136][ T6111] ? lock_release+0x4b/0x3e0
[ 371.238154][ T6111] folio_prealloc+0x30/0x180
[ 371.238169][ T6111] do_wp_page+0x1231/0x5800
[ 371.238187][ T6111] ? __pfx_do_wp_page+0x10/0x10
[ 371.238199][ T6111] ? do_raw_spin_lock+0x121/0x290
[ 371.238212][ T6111] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 371.238224][ T6111] ? ___pte_offset_map+0x45/0x250
[ 371.238240][ T6111] __handle_mm_fault+0x1033/0x5440
[ 371.238257][ T6111] ? __pfx___handle_mm_fault+0x10/0x10
[ 371.238270][ T6111] ? lock_release+0x4b/0x3e0
[ 371.238287][ T6111] ? lock_vma_under_rcu+0xdf/0x3d0
[ 371.238303][ T6111] ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 371.238317][ T6111] ? rcu_is_watching+0x15/0xb0
[ 371.238335][ T6111] handle_mm_fault+0x40a/0x8e0
[ 371.238351][ T6111] do_user_addr_fault+0xa81/0x1390
[ 371.238369][ T6111] ? rcu_is_watching+0x15/0xb0
[ 371.238386][ T6111] ? trace_page_fault_user+0x84/0x1e0
[ 371.238403][ T6111] exc_page_fault+0x76/0xf0
[ 371.238420][ T6111] asm_exc_page_fault+0x26/0x30
[ 371.238431][ T6111] RIP: 0033:0x7fea15a20050
[ 371.238443][ T6111] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 9d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 50 3d 0a 00 0f 85 0f 02 00 00 4c 8d 25 43 3d 0a 00 4c
[ 371.238454][ T6111] RSP: 002b:00007ffe55dafd80 EFLAGS: 00010246
[ 371.238468][ T6111] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[pid 6111] exit_group(0) = ?
[pid 6111] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6111, si_uid=0, si_status=0, si_utime=0, si_stime=27 /* 0.27 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6112 attached
, child_tidptr=0x555576720650) = 6112
[ 371.238477][ T6111] RDX: 0000000000000001 RSI: 00007fea15ac1118 RDI: 0000000000000000
[ 371.238485][ T6111] RBP: 00007fea15ac1118 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 371.238493][ T6111] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 371.238501][ T6111] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 371.238512][ T6111]
[ 371.238523][ T6111] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[pid 6112] set_robust_list(0x555576720660, 24) = 0
[pid 6112] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6112] setpgid(0, 0) = 0
[pid 6112] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6112] write(3, "1000", 4) = 4
[pid 6112] close(3) = 0
executing program
[pid 6112] write(1, "executing program\n", 18) = 18
[pid 6112] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6112] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6112] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6112] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6112] write(6, "4", 1) = 1
[pid 6112] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 371.672247][ T6112] FAULT_INJECTION: forcing a failure.
[ 371.672247][ T6112] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 371.686077][ T6112] CPU: 0 UID: 0 PID: 6112 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 371.686099][ T6112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 371.686107][ T6112] Call Trace:
[ 371.686113][ T6112]
[ 371.686118][ T6112] dump_stack_lvl+0x189/0x250
[ 371.686142][ T6112] ? __pfx____ratelimit+0x10/0x10
[ 371.686160][ T6112] ? __pfx_dump_stack_lvl+0x10/0x10
[ 371.686172][ T6112] ? __pfx__printk+0x10/0x10
[ 371.686187][ T6112] ? lock_acquire+0x5f/0x360
[ 371.686206][ T6112] should_fail_ex+0x414/0x560
[ 371.686221][ T6112] prepare_alloc_pages+0x213/0x610
[ 371.686241][ T6112] __alloc_frozen_pages_noprof+0x123/0x370
[ 371.686259][ T6112] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 371.686278][ T6112] ? policy_nodemask+0x27c/0x720
[ 371.686295][ T6112] alloc_pages_mpol+0x232/0x4a0
[ 371.686311][ T6112] vma_alloc_folio_noprof+0xe4/0x200
[ 371.686327][ T6112] ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 371.686343][ T6112] ? rcu_is_watching+0x15/0xb0
[ 371.686361][ T6112] ? lock_release+0x4b/0x3e0
[ 371.686377][ T6112] folio_prealloc+0x30/0x180
[ 371.686393][ T6112] do_wp_page+0x1231/0x5800
[ 371.686410][ T6112] ? __pfx_do_wp_page+0x10/0x10
[ 371.686422][ T6112] ? do_raw_spin_lock+0x121/0x290
[ 371.686436][ T6112] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 371.686447][ T6112] ? ___pte_offset_map+0x45/0x250
[ 371.686463][ T6112] __handle_mm_fault+0x1033/0x5440
[ 371.686480][ T6112] ? __pfx___handle_mm_fault+0x10/0x10
[ 371.686494][ T6112] ? lock_release+0x4b/0x3e0
[ 371.686511][ T6112] ? lock_vma_under_rcu+0xdf/0x3d0
[ 371.686526][ T6112] ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 371.686541][ T6112] ? rcu_is_watching+0x15/0xb0
[ 371.686559][ T6112] handle_mm_fault+0x40a/0x8e0
[ 371.686575][ T6112] do_user_addr_fault+0xa81/0x1390
[ 371.686594][ T6112] ? rcu_is_watching+0x15/0xb0
[ 371.686611][ T6112] ? trace_page_fault_user+0x84/0x1e0
[ 371.686628][ T6112] exc_page_fault+0x76/0xf0
[ 371.686645][ T6112] asm_exc_page_fault+0x26/0x30
[ 371.686657][ T6112] RIP: 0033:0x7fea15a20050
[ 371.686671][ T6112] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 9d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 50 3d 0a 00 0f 85 0f 02 00 00 4c 8d 25 43 3d 0a 00 4c
[ 371.686682][ T6112] RSP: 002b:00007ffe55dafd80 EFLAGS: 00010246
[ 371.686696][ T6112] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[pid 6112] exit_group(0) = ?
[pid 6112] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6112, si_uid=0, si_status=0, si_utime=0, si_stime=27 /* 0.27 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6113 attached
, child_tidptr=0x555576720650) = 6113
[ 371.686705][ T6112] RDX: 0000000000000001 RSI: 00007fea15ac1118 RDI: 0000000000000000
[ 371.686713][ T6112] RBP: 00007fea15ac1118 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 371.686722][ T6112] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 371.686729][ T6112] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 371.686741][ T6112]
[ 371.686867][ T6112] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[pid 6113] set_robust_list(0x555576720660, 24) = 0
[pid 6113] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6113] setpgid(0, 0) = 0
[pid 6113] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6113] write(3, "1000", 4) = 4
[pid 6113] close(3) = 0
executing program
[pid 6113] write(1, "executing program\n", 18) = 18
[pid 6113] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6113] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6113] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6113] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6113] write(6, "4", 1) = 1
[pid 6113] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 372.015969][ T6113] FAULT_INJECTION: forcing a failure.
[ 372.015969][ T6113] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 372.029517][ T6113] CPU: 1 UID: 0 PID: 6113 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 372.029548][ T6113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 372.029560][ T6113] Call Trace:
[ 372.029567][ T6113]
[ 372.029576][ T6113] dump_stack_lvl+0x189/0x250
[ 372.029598][ T6113] ? __pfx____ratelimit+0x10/0x10
[ 372.029615][ T6113] ? __pfx_dump_stack_lvl+0x10/0x10
[ 372.029627][ T6113] ? __pfx__printk+0x10/0x10
[ 372.029642][ T6113] ? lock_acquire+0x5f/0x360
[ 372.029660][ T6113] should_fail_ex+0x414/0x560
[ 372.029678][ T6113] prepare_alloc_pages+0x213/0x610
[ 372.029698][ T6113] __alloc_frozen_pages_noprof+0x123/0x370
[ 372.029716][ T6113] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 372.029735][ T6113] ? policy_nodemask+0x27c/0x720
[ 372.029752][ T6113] alloc_pages_mpol+0x232/0x4a0
[ 372.029768][ T6113] vma_alloc_folio_noprof+0xe4/0x200
[ 372.029784][ T6113] ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 372.029800][ T6113] ? rcu_is_watching+0x15/0xb0
[ 372.029818][ T6113] ? lock_release+0x4b/0x3e0
[ 372.029834][ T6113] folio_prealloc+0x30/0x180
[ 372.029850][ T6113] do_wp_page+0x1231/0x5800
[ 372.029867][ T6113] ? __pfx_do_wp_page+0x10/0x10
[ 372.029879][ T6113] ? do_raw_spin_lock+0x121/0x290
[ 372.029892][ T6113] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 372.029904][ T6113] ? ___pte_offset_map+0x45/0x250
[ 372.029931][ T6113] __handle_mm_fault+0x1033/0x5440
[ 372.029949][ T6113] ? __pfx___handle_mm_fault+0x10/0x10
[ 372.029963][ T6113] ? lock_release+0x4b/0x3e0
[ 372.029980][ T6113] ? lock_vma_under_rcu+0xdf/0x3d0
[ 372.029995][ T6113] ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 372.030010][ T6113] ? rcu_is_watching+0x15/0xb0
[ 372.030028][ T6113] handle_mm_fault+0x40a/0x8e0
[ 372.030044][ T6113] do_user_addr_fault+0xa81/0x1390
[ 372.030063][ T6113] ? rcu_is_watching+0x15/0xb0
[ 372.030080][ T6113] ? trace_page_fault_user+0x84/0x1e0
[ 372.030097][ T6113] exc_page_fault+0x76/0xf0
[ 372.030114][ T6113] asm_exc_page_fault+0x26/0x30
[ 372.030126][ T6113] RIP: 0033:0x7fea15a20050
[ 372.030139][ T6113] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 9d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 50 3d 0a 00 0f 85 0f 02 00 00 4c 8d 25 43 3d 0a 00 4c
[ 372.030150][ T6113] RSP: 002b:00007ffe55dafd80 EFLAGS: 00010246
[ 372.030163][ T6113] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[pid 6113] exit_group(0) = ?
[pid 6113] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6113, si_uid=0, si_status=0, si_utime=0, si_stime=27 /* 0.27 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576720650) = 6114
./strace-static-x86_64: Process 6114 attached
[ 372.030172][ T6113] RDX: 0000000000000001 RSI: 00007fea15ac1118 RDI: 0000000000000000
[ 372.030180][ T6113] RBP: 00007fea15ac1118 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 372.030188][ T6113] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 372.030196][ T6113] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 372.030207][ T6113]
[ 372.030219][ T6113] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[pid 6114] set_robust_list(0x555576720660, 24) = 0
[pid 6114] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6114] setpgid(0, 0) = 0
[pid 6114] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6114] write(3, "1000", 4) = 4
[pid 6114] close(3) = 0
executing program
[pid 6114] write(1, "executing program\n", 18) = 18
[pid 6114] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6114] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6114] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6114] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6114] write(6, "4", 1) = 1
[pid 6114] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 372.453528][ T6114] FAULT_INJECTION: forcing a failure.
[ 372.453528][ T6114] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 372.466990][ T6114] CPU: 0 UID: 0 PID: 6114 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 372.467012][ T6114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 372.467021][ T6114] Call Trace:
[ 372.467026][ T6114]
[ 372.467032][ T6114] dump_stack_lvl+0x189/0x250
[ 372.467050][ T6114] ? __pfx____ratelimit+0x10/0x10
[ 372.467068][ T6114] ? __pfx_dump_stack_lvl+0x10/0x10
[ 372.467080][ T6114] ? __pfx__printk+0x10/0x10
[ 372.467095][ T6114] ? lock_acquire+0x5f/0x360
[ 372.467112][ T6114] should_fail_ex+0x414/0x560
[ 372.467127][ T6114] prepare_alloc_pages+0x213/0x610
[ 372.467146][ T6114] __alloc_frozen_pages_noprof+0x123/0x370
[ 372.467164][ T6114] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 372.467183][ T6114] ? policy_nodemask+0x27c/0x720
[ 372.467199][ T6114] alloc_pages_mpol+0x232/0x4a0
[ 372.467216][ T6114] vma_alloc_folio_noprof+0xe4/0x200
[ 372.467232][ T6114] ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 372.467247][ T6114] ? rcu_is_watching+0x15/0xb0
[ 372.467265][ T6114] ? lock_release+0x4b/0x3e0
[ 372.467286][ T6114] folio_prealloc+0x30/0x180
[ 372.467302][ T6114] do_wp_page+0x1231/0x5800
[ 372.467320][ T6114] ? __pfx_do_wp_page+0x10/0x10
[ 372.467332][ T6114] ? do_raw_spin_lock+0x121/0x290
[ 372.467345][ T6114] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 372.467357][ T6114] ? ___pte_offset_map+0x45/0x250
[ 372.467372][ T6114] __handle_mm_fault+0x1033/0x5440
[ 372.467390][ T6114] ? __pfx___handle_mm_fault+0x10/0x10
[ 372.467404][ T6114] ? lock_release+0x4b/0x3e0
[ 372.467421][ T6114] ? lock_vma_under_rcu+0xdf/0x3d0
[ 372.467437][ T6114] ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 372.467451][ T6114] ? rcu_is_watching+0x15/0xb0
[ 372.467469][ T6114] handle_mm_fault+0x40a/0x8e0
[ 372.467485][ T6114] do_user_addr_fault+0xa81/0x1390
[ 372.467504][ T6114] ? rcu_is_watching+0x15/0xb0
[ 372.467521][ T6114] ? trace_page_fault_user+0x84/0x1e0
[ 372.467538][ T6114] exc_page_fault+0x76/0xf0
[ 372.467554][ T6114] asm_exc_page_fault+0x26/0x30
[ 372.467566][ T6114] RIP: 0033:0x7fea15a20050
[ 372.467578][ T6114] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 9d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 50 3d 0a 00 0f 85 0f 02 00 00 4c 8d 25 43 3d 0a 00 4c
[ 372.467589][ T6114] RSP: 002b:00007ffe55dafd80 EFLAGS: 00010246
[ 372.467602][ T6114] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[pid 6114] exit_group(0) = ?
[pid 6114] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6114, si_uid=0, si_status=0, si_utime=0, si_stime=28 /* 0.28 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6115 attached
, child_tidptr=0x555576720650) = 6115
[pid 6115] set_robust_list(0x555576720660, 24) = 0
[pid 6115] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 372.467611][ T6114] RDX: 0000000000000001 RSI: 00007fea15ac1118 RDI: 0000000000000000
[ 372.467628][ T6114] RBP: 00007fea15ac1118 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 372.467637][ T6114] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 372.467644][ T6114] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 372.467656][ T6114]
[ 372.467668][ T6114] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[pid 6115] setpgid(0, 0) = 0
[pid 6115] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6115] write(3, "1000", 4) = 4
[pid 6115] close(3) = 0
executing program
[pid 6115] write(1, "executing program\n", 18) = 18
[pid 6115] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6115] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6115] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6115] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6115] write(6, "4", 1) = 1
[pid 6115] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 372.873613][ T6115] FAULT_INJECTION: forcing a failure.
[ 372.873613][ T6115] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 372.886961][ T6115] CPU: 1 UID: 0 PID: 6115 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 372.886991][ T6115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 372.887002][ T6115] Call Trace:
[ 372.887010][ T6115]
[ 372.887018][ T6115] dump_stack_lvl+0x189/0x250
[ 372.887041][ T6115] ? __pfx____ratelimit+0x10/0x10
[ 372.887068][ T6115] ? __pfx_dump_stack_lvl+0x10/0x10
[ 372.887088][ T6115] ? __pfx__printk+0x10/0x10
[ 372.887112][ T6115] ? lock_acquire+0x5f/0x360
[ 372.887141][ T6115] should_fail_ex+0x414/0x560
[ 372.887164][ T6115] prepare_alloc_pages+0x213/0x610
[ 372.887194][ T6115] __alloc_frozen_pages_noprof+0x123/0x370
[ 372.887217][ T6115] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 372.887237][ T6115] ? policy_nodemask+0x27c/0x720
[ 372.887252][ T6115] alloc_pages_mpol+0x232/0x4a0
[ 372.887268][ T6115] vma_alloc_folio_noprof+0xe4/0x200
[ 372.887284][ T6115] ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 372.887300][ T6115] ? rcu_is_watching+0x15/0xb0
[ 372.887317][ T6115] ? lock_release+0x4b/0x3e0
[ 372.887333][ T6115] folio_prealloc+0x30/0x180
[ 372.887348][ T6115] do_wp_page+0x1231/0x5800
[ 372.887365][ T6115] ? __pfx_do_wp_page+0x10/0x10
[ 372.887377][ T6115] ? do_raw_spin_lock+0x121/0x290
[ 372.887391][ T6115] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 372.887403][ T6115] ? ___pte_offset_map+0x45/0x250
[ 372.887418][ T6115] __handle_mm_fault+0x1033/0x5440
[ 372.887436][ T6115] ? __pfx___handle_mm_fault+0x10/0x10
[ 372.887449][ T6115] ? lock_release+0x4b/0x3e0
[ 372.887466][ T6115] ? lock_vma_under_rcu+0xdf/0x3d0
[ 372.887481][ T6115] ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 372.887496][ T6115] ? rcu_is_watching+0x15/0xb0
[ 372.887514][ T6115] handle_mm_fault+0x40a/0x8e0
[ 372.887530][ T6115] do_user_addr_fault+0xa81/0x1390
[ 372.887549][ T6115] ? rcu_is_watching+0x15/0xb0
[ 372.887565][ T6115] ? trace_page_fault_user+0x84/0x1e0
[ 372.887582][ T6115] exc_page_fault+0x76/0xf0
[ 372.887599][ T6115] asm_exc_page_fault+0x26/0x30
[ 372.887610][ T6115] RIP: 0033:0x7fea15a20050
[ 372.887622][ T6115] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 9d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 50 3d 0a 00 0f 85 0f 02 00 00 4c 8d 25 43 3d 0a 00 4c
[ 372.887633][ T6115] RSP: 002b:00007ffe55dafd80 EFLAGS: 00010246
[pid 6115] exit_group(0) = ?
[pid 6115] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6115, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576720650) = 6116
./strace-static-x86_64: Process 6116 attached
[ 372.887647][ T6115] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[ 372.887655][ T6115] RDX: 0000000000000001 RSI: 00007fea15ac1118 RDI: 0000000000000000
[ 372.887663][ T6115] RBP: 00007fea15ac1118 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 372.887672][ T6115] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 372.887679][ T6115] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 372.887690][ T6115]
[pid 6116] set_robust_list(0x555576720660, 24) = 0
[pid 6116] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6116] setpgid(0, 0) = 0
[pid 6116] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6116] write(3, "1000", 4) = 4
[pid 6116] close(3) = 0
[pid 6116] write(1, "executing program\n", 18executing program
) = 18
[pid 6116] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6116] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6116] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6116] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6116] write(6, "4", 1) = 1
[pid 6116] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 373.267513][ T6116] FAULT_INJECTION: forcing a failure.
[ 373.267513][ T6116] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 373.281393][ T6116] CPU: 0 UID: 0 PID: 6116 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 373.281425][ T6116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 373.281437][ T6116] Call Trace:
[ 373.281445][ T6116]
[ 373.281454][ T6116] dump_stack_lvl+0x189/0x250
[ 373.281476][ T6116] ? __pfx____ratelimit+0x10/0x10
[ 373.281494][ T6116] ? __pfx_dump_stack_lvl+0x10/0x10
[ 373.281506][ T6116] ? __pfx__printk+0x10/0x10
[ 373.281522][ T6116] ? lock_acquire+0x5f/0x360
[ 373.281540][ T6116] should_fail_ex+0x414/0x560
[ 373.281565][ T6116] prepare_alloc_pages+0x213/0x610
[ 373.281591][ T6116] __alloc_frozen_pages_noprof+0x123/0x370
[ 373.281609][ T6116] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 373.281628][ T6116] ? policy_nodemask+0x27c/0x720
[ 373.281645][ T6116] alloc_pages_mpol+0x232/0x4a0
[ 373.281661][ T6116] vma_alloc_folio_noprof+0xe4/0x200
[ 373.281681][ T6116] ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 373.281701][ T6116] ? rcu_is_watching+0x15/0xb0
[ 373.281720][ T6116] ? lock_release+0x4b/0x3e0
[ 373.281735][ T6116] folio_prealloc+0x30/0x180
[ 373.281752][ T6116] do_wp_page+0x1231/0x5800
[ 373.281769][ T6116] ? __pfx_do_wp_page+0x10/0x10
[ 373.281781][ T6116] ? do_raw_spin_lock+0x121/0x290
[ 373.281795][ T6116] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 373.281807][ T6116] ? ___pte_offset_map+0x45/0x250
[ 373.281823][ T6116] __handle_mm_fault+0x1033/0x5440
[ 373.281841][ T6116] ? __pfx___handle_mm_fault+0x10/0x10
[ 373.281854][ T6116] ? lock_release+0x4b/0x3e0
[ 373.281872][ T6116] ? lock_vma_under_rcu+0xdf/0x3d0
[ 373.281887][ T6116] ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 373.281902][ T6116] ? rcu_is_watching+0x15/0xb0
[ 373.281920][ T6116] handle_mm_fault+0x40a/0x8e0
[ 373.281935][ T6116] do_user_addr_fault+0xa81/0x1390
[ 373.282053][ T6116] ? rcu_is_watching+0x15/0xb0
[ 373.282078][ T6116] ? trace_page_fault_user+0x84/0x1e0
[ 373.282096][ T6116] exc_page_fault+0x76/0xf0
[ 373.282113][ T6116] asm_exc_page_fault+0x26/0x30
[ 373.282126][ T6116] RIP: 0033:0x7fea15a20050
[ 373.282139][ T6116] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 9d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 50 3d 0a 00 0f 85 0f 02 00 00 4c 8d 25 43 3d 0a 00 4c
[ 373.282151][ T6116] RSP: 002b:00007ffe55dafd80 EFLAGS: 00010246
[ 373.282164][ T6116] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[pid 6116] exit_group(0) = ?
[pid 6116] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6116, si_uid=0, si_status=0, si_utime=0, si_stime=28 /* 0.28 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 373.282173][ T6116] RDX: 0000000000000001 RSI: 00007fea15ac1118 RDI: 0000000000000000
[ 373.282181][ T6116] RBP: 00007fea15ac1118 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 373.282190][ T6116] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 373.282197][ T6116] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 373.282209][ T6116]
[ 373.282223][ T6116] pagefault_out_of_memory: 1 callbacks suppressed
[ 373.282232][ T6116] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576720650) = 6117
./strace-static-x86_64: Process 6117 attached
[pid 6117] set_robust_list(0x555576720660, 24) = 0
[pid 6117] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6117] setpgid(0, 0) = 0
[pid 6117] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6117] write(3, "1000", 4) = 4
[pid 6117] close(3) = 0
executing program
[pid 6117] write(1, "executing program\n", 18) = 18
[pid 6117] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6117] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6117] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6117] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6117] write(6, "4", 1) = 1
[pid 6117] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 373.732068][ T6117] FAULT_INJECTION: forcing a failure.
[ 373.732068][ T6117] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 373.745997][ T6117] CPU: 0 UID: 0 PID: 6117 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 373.746034][ T6117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 373.746048][ T6117] Call Trace:
[ 373.746056][ T6117]
[ 373.746064][ T6117] dump_stack_lvl+0x189/0x250
[ 373.746090][ T6117] ? __pfx____ratelimit+0x10/0x10
[ 373.746111][ T6117] ? __pfx_dump_stack_lvl+0x10/0x10
[ 373.746124][ T6117] ? __pfx__printk+0x10/0x10
[ 373.746139][ T6117] ? lock_acquire+0x5f/0x360
[ 373.746157][ T6117] should_fail_ex+0x414/0x560
[ 373.746171][ T6117] prepare_alloc_pages+0x213/0x610
[ 373.746190][ T6117] __alloc_frozen_pages_noprof+0x123/0x370
[ 373.746208][ T6117] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 373.746227][ T6117] ? policy_nodemask+0x27c/0x720
[ 373.746243][ T6117] alloc_pages_mpol+0x232/0x4a0
[ 373.746259][ T6117] vma_alloc_folio_noprof+0xe4/0x200
[ 373.746275][ T6117] ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 373.746290][ T6117] ? rcu_is_watching+0x15/0xb0
[ 373.746307][ T6117] ? lock_release+0x4b/0x3e0
[ 373.746323][ T6117] folio_prealloc+0x30/0x180
[ 373.746338][ T6117] do_wp_page+0x1231/0x5800
[ 373.746356][ T6117] ? __pfx_do_wp_page+0x10/0x10
[ 373.746368][ T6117] ? do_raw_spin_lock+0x121/0x290
[ 373.746381][ T6117] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 373.746393][ T6117] ? ___pte_offset_map+0x45/0x250
[ 373.746409][ T6117] __handle_mm_fault+0x1033/0x5440
[ 373.746426][ T6117] ? __pfx___handle_mm_fault+0x10/0x10
[ 373.746440][ T6117] ? lock_release+0x4b/0x3e0
[ 373.746457][ T6117] ? lock_vma_under_rcu+0xdf/0x3d0
[ 373.746472][ T6117] ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 373.746486][ T6117] ? rcu_is_watching+0x15/0xb0
[ 373.746505][ T6117] handle_mm_fault+0x40a/0x8e0
[ 373.746520][ T6117] do_user_addr_fault+0xa81/0x1390
[ 373.746539][ T6117] ? rcu_is_watching+0x15/0xb0
[ 373.746564][ T6117] ? trace_page_fault_user+0x84/0x1e0
[ 373.746581][ T6117] exc_page_fault+0x76/0xf0
[ 373.746597][ T6117] asm_exc_page_fault+0x26/0x30
[ 373.746609][ T6117] RIP: 0033:0x7fea15a20050
[ 373.746622][ T6117] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 9d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 50 3d 0a 00 0f 85 0f 02 00 00 4c 8d 25 43 3d 0a 00 4c
[ 373.746633][ T6117] RSP: 002b:00007ffe55dafd80 EFLAGS: 00010246
[pid 6117] exit_group(0) = ?
[pid 6117] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6117, si_uid=0, si_status=0, si_utime=0, si_stime=27 /* 0.27 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6118 attached
, child_tidptr=0x555576720650) = 6118
[ 373.746646][ T6117] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[ 373.746655][ T6117] RDX: 0000000000000001 RSI: 00007fea15ac1118 RDI: 0000000000000000
[ 373.746663][ T6117] RBP: 00007fea15ac1118 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 373.746672][ T6117] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 373.746680][ T6117] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 373.746691][ T6117]
[ 373.746703][ T6117] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[pid 6118] set_robust_list(0x555576720660, 24) = 0
[pid 6118] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6118] setpgid(0, 0) = 0
[pid 6118] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6118] write(3, "1000", 4) = 4
[pid 6118] close(3) = 0
[pid 6118] write(1, "executing program\n", 18executing program
) = 18
[pid 6118] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6118] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6118] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6118] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6118] write(6, "4", 1) = 1
[pid 6118] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 374.139518][ T6118] FAULT_INJECTION: forcing a failure.
[ 374.139518][ T6118] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 374.153703][ T6118] CPU: 1 UID: 0 PID: 6118 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 374.153733][ T6118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 374.153745][ T6118] Call Trace:
[ 374.153753][ T6118]
[ 374.153763][ T6118] dump_stack_lvl+0x189/0x250
[ 374.153789][ T6118] ? __pfx____ratelimit+0x10/0x10
[ 374.153817][ T6118] ? __pfx_dump_stack_lvl+0x10/0x10
[ 374.153834][ T6118] ? __pfx__printk+0x10/0x10
[ 374.153849][ T6118] ? lock_acquire+0x5f/0x360
[ 374.153866][ T6118] should_fail_ex+0x414/0x560
[ 374.153880][ T6118] prepare_alloc_pages+0x213/0x610
[ 374.153900][ T6118] __alloc_frozen_pages_noprof+0x123/0x370
[ 374.153921][ T6118] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 374.153941][ T6118] ? policy_nodemask+0x27c/0x720
[ 374.153955][ T6118] ? update_load_avg+0x572/0x1880
[ 374.153974][ T6118] alloc_pages_mpol+0x232/0x4a0
[ 374.153989][ T6118] vma_alloc_folio_noprof+0xe4/0x200
[ 374.154005][ T6118] ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 374.154020][ T6118] ? rcu_is_watching+0x15/0xb0
[ 374.154038][ T6118] ? lock_release+0x4b/0x3e0
[ 374.154054][ T6118] folio_prealloc+0x30/0x180
[ 374.154069][ T6118] do_wp_page+0x1231/0x5800
[ 374.154086][ T6118] ? __pfx_do_wp_page+0x10/0x10
[ 374.154099][ T6118] ? do_raw_spin_lock+0x121/0x290
[ 374.154112][ T6118] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 374.154124][ T6118] ? ___pte_offset_map+0x45/0x250
[ 374.154140][ T6118] __handle_mm_fault+0x1033/0x5440
[ 374.154157][ T6118] ? __pfx___handle_mm_fault+0x10/0x10
[ 374.154171][ T6118] ? lock_release+0x4b/0x3e0
[ 374.154188][ T6118] ? lock_vma_under_rcu+0xdf/0x3d0
[ 374.154203][ T6118] ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 374.154217][ T6118] ? rcu_is_watching+0x15/0xb0
[ 374.154235][ T6118] handle_mm_fault+0x40a/0x8e0
[ 374.154251][ T6118] do_user_addr_fault+0xa81/0x1390
[ 374.154270][ T6118] ? rcu_is_watching+0x15/0xb0
[ 374.154287][ T6118] ? trace_page_fault_user+0x84/0x1e0
[ 374.154304][ T6118] exc_page_fault+0x76/0xf0
[ 374.154320][ T6118] asm_exc_page_fault+0x26/0x30
[ 374.154332][ T6118] RIP: 0033:0x7fea15a20050
[ 374.154345][ T6118] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 9d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 50 3d 0a 00 0f 85 0f 02 00 00 4c 8d 25 43 3d 0a 00 4c
[ 374.154356][ T6118] RSP: 002b:00007ffe55dafd80 EFLAGS: 00010246
[pid 6118] exit_group(0) = ?
[pid 6118] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6118, si_uid=0, si_status=0, si_utime=0, si_stime=27 /* 0.27 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6119 attached
, child_tidptr=0x555576720650) = 6119
[ 374.154371][ T6118] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[ 374.154379][ T6118] RDX: 0000000000000001 RSI: 00007fea15ac1118 RDI: 0000000000000000
[ 374.154387][ T6118] RBP: 00007fea15ac1118 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 374.154395][ T6118] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 374.154403][ T6118] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 374.154414][ T6118]
[ 374.154426][ T6118] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[pid 6119] set_robust_list(0x555576720660, 24) = 0
[pid 6119] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6119] setpgid(0, 0) = 0
[pid 6119] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6119] write(3, "1000", 4) = 4
[pid 6119] close(3) = 0
[pid 6119] write(1, "executing program\n", 18executing program
) = 18
[pid 6119] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6119] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6119] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6119] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6119] write(6, "4", 1) = 1
[pid 6119] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 374.590044][ T6119] FAULT_INJECTION: forcing a failure.
[ 374.590044][ T6119] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 374.603532][ T6119] CPU: 1 UID: 0 PID: 6119 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 374.603571][ T6119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 374.603584][ T6119] Call Trace:
[ 374.603592][ T6119]
[ 374.603601][ T6119] dump_stack_lvl+0x189/0x250
[ 374.603628][ T6119] ? __pfx____ratelimit+0x10/0x10
[ 374.603648][ T6119] ? __pfx_dump_stack_lvl+0x10/0x10
[ 374.603660][ T6119] ? __pfx__printk+0x10/0x10
[ 374.603675][ T6119] ? lock_acquire+0x5f/0x360
[ 374.603693][ T6119] should_fail_ex+0x414/0x560
[ 374.603707][ T6119] prepare_alloc_pages+0x213/0x610
[ 374.603725][ T6119] __alloc_frozen_pages_noprof+0x123/0x370
[ 374.603744][ T6119] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 374.603763][ T6119] ? policy_nodemask+0x27c/0x720
[ 374.603778][ T6119] alloc_pages_mpol+0x232/0x4a0
[ 374.603794][ T6119] vma_alloc_folio_noprof+0xe4/0x200
[ 374.603809][ T6119] ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 374.603825][ T6119] ? rcu_is_watching+0x15/0xb0
[ 374.603843][ T6119] ? lock_release+0x4b/0x3e0
[ 374.603859][ T6119] folio_prealloc+0x30/0x180
[ 374.603874][ T6119] do_wp_page+0x1231/0x5800
[ 374.603892][ T6119] ? __pfx_do_wp_page+0x10/0x10
[ 374.603904][ T6119] ? do_raw_spin_lock+0x121/0x290
[ 374.603917][ T6119] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 374.603929][ T6119] ? ___pte_offset_map+0x45/0x250
[ 374.603945][ T6119] __handle_mm_fault+0x1033/0x5440
[ 374.603962][ T6119] ? __pfx___handle_mm_fault+0x10/0x10
[ 374.603975][ T6119] ? lock_release+0x4b/0x3e0
[ 374.603992][ T6119] ? lock_vma_under_rcu+0xdf/0x3d0
[ 374.604007][ T6119] ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 374.604022][ T6119] ? rcu_is_watching+0x15/0xb0
[ 374.604040][ T6119] handle_mm_fault+0x40a/0x8e0
[ 374.604055][ T6119] do_user_addr_fault+0xa81/0x1390
[ 374.604074][ T6119] ? rcu_is_watching+0x15/0xb0
[ 374.604090][ T6119] ? trace_page_fault_user+0x84/0x1e0
[ 374.604107][ T6119] exc_page_fault+0x76/0xf0
[ 374.604124][ T6119] asm_exc_page_fault+0x26/0x30
[ 374.604136][ T6119] RIP: 0033:0x7fea15a20050
[ 374.604148][ T6119] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 9d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 50 3d 0a 00 0f 85 0f 02 00 00 4c 8d 25 43 3d 0a 00 4c
[ 374.604159][ T6119] RSP: 002b:00007ffe55dafd80 EFLAGS: 00010246
[ 374.604173][ T6119] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[pid 6119] exit_group(0) = ?
[pid 6119] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6119, si_uid=0, si_status=0, si_utime=0, si_stime=27 /* 0.27 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 374.604181][ T6119] RDX: 0000000000000001 RSI: 00007fea15ac1118 RDI: 0000000000000000
[ 374.604189][ T6119] RBP: 00007fea15ac1118 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 374.604198][ T6119] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 374.604205][ T6119] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 374.604216][ T6119]
[ 374.604228][ T6119] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576720650) = 6120
./strace-static-x86_64: Process 6120 attached
[pid 6120] set_robust_list(0x555576720660, 24) = 0
[pid 6120] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6120] setpgid(0, 0) = 0
[pid 6120] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6120] write(3, "1000", 4) = 4
[pid 6120] close(3) = 0
[pid 6120] write(1, "executing program\n", 18executing program
) = 18
[pid 6120] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6120] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6120] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6120] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6120] write(6, "4", 1) = 1
[pid 6120] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 375.004707][ T6120] FAULT_INJECTION: forcing a failure.
[ 375.004707][ T6120] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 375.018066][ T6120] CPU: 0 UID: 0 PID: 6120 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 375.018087][ T6120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 375.018095][ T6120] Call Trace:
[ 375.018100][ T6120]
[ 375.018105][ T6120] dump_stack_lvl+0x189/0x250
[ 375.018124][ T6120] ? __pfx____ratelimit+0x10/0x10
[ 375.018143][ T6120] ? __pfx_dump_stack_lvl+0x10/0x10
[ 375.018165][ T6120] ? __pfx__printk+0x10/0x10
[ 375.018181][ T6120] ? lock_acquire+0x5f/0x360
[ 375.018199][ T6120] should_fail_ex+0x414/0x560
[ 375.018213][ T6120] prepare_alloc_pages+0x213/0x610
[ 375.018232][ T6120] __alloc_frozen_pages_noprof+0x123/0x370
[ 375.018250][ T6120] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 375.018269][ T6120] ? policy_nodemask+0x27c/0x720
[ 375.018285][ T6120] alloc_pages_mpol+0x232/0x4a0
[ 375.018301][ T6120] vma_alloc_folio_noprof+0xe4/0x200
[ 375.018317][ T6120] ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 375.018332][ T6120] ? rcu_is_watching+0x15/0xb0
[ 375.018350][ T6120] ? lock_release+0x4b/0x3e0
[ 375.018366][ T6120] folio_prealloc+0x30/0x180
[ 375.018381][ T6120] do_wp_page+0x1231/0x5800
[ 375.018399][ T6120] ? __pfx_do_wp_page+0x10/0x10
[ 375.018411][ T6120] ? do_raw_spin_lock+0x121/0x290
[ 375.018425][ T6120] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 375.018437][ T6120] ? ___pte_offset_map+0x45/0x250
[ 375.018453][ T6120] __handle_mm_fault+0x1033/0x5440
[ 375.018470][ T6120] ? __pfx___handle_mm_fault+0x10/0x10
[ 375.018484][ T6120] ? lock_release+0x4b/0x3e0
[ 375.018501][ T6120] ? lock_vma_under_rcu+0xdf/0x3d0
[ 375.018516][ T6120] ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 375.018531][ T6120] ? rcu_is_watching+0x15/0xb0
[ 375.018549][ T6120] handle_mm_fault+0x40a/0x8e0
[ 375.018565][ T6120] do_user_addr_fault+0xa81/0x1390
[ 375.018590][ T6120] ? rcu_is_watching+0x15/0xb0
[ 375.018607][ T6120] ? trace_page_fault_user+0x84/0x1e0
[ 375.018627][ T6120] exc_page_fault+0x76/0xf0
[ 375.018645][ T6120] asm_exc_page_fault+0x26/0x30
[ 375.018657][ T6120] RIP: 0033:0x7fea15a20050
[ 375.018669][ T6120] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 9d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 50 3d 0a 00 0f 85 0f 02 00 00 4c 8d 25 43 3d 0a 00 4c
[ 375.018680][ T6120] RSP: 002b:00007ffe55dafd80 EFLAGS: 00010246
[ 375.018693][ T6120] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[pid 6120] exit_group(0) = ?
[pid 6120] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6120, si_uid=0, si_status=0, si_utime=0, si_stime=29 /* 0.29 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6121 attached
, child_tidptr=0x555576720650) = 6121
[ 375.018702][ T6120] RDX: 0000000000000001 RSI: 00007fea15ac1118 RDI: 0000000000000000
[ 375.018710][ T6120] RBP: 00007fea15ac1118 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 375.018719][ T6120] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 375.018726][ T6120] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 375.018737][ T6120]
[ 375.018749][ T6120] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[pid 6121] set_robust_list(0x555576720660, 24) = 0
[pid 6121] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6121] setpgid(0, 0) = 0
[pid 6121] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6121] write(3, "1000", 4) = 4
[pid 6121] close(3) = 0
executing program
[pid 6121] write(1, "executing program\n", 18) = 18
[pid 6121] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6121] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6121] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6121] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6121] write(6, "4", 1) = 1
[pid 6121] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 375.435969][ T6121] FAULT_INJECTION: forcing a failure.
[ 375.435969][ T6121] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 375.449599][ T6121] CPU: 1 UID: 0 PID: 6121 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 375.449629][ T6121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 375.449640][ T6121] Call Trace:
[ 375.449649][ T6121]
[ 375.449657][ T6121] dump_stack_lvl+0x189/0x250
[ 375.449684][ T6121] ? __pfx____ratelimit+0x10/0x10
[ 375.449710][ T6121] ? __pfx_dump_stack_lvl+0x10/0x10
[ 375.449731][ T6121] ? __pfx__printk+0x10/0x10
[ 375.449754][ T6121] ? lock_acquire+0x5f/0x360
[ 375.449773][ T6121] should_fail_ex+0x414/0x560
[ 375.449787][ T6121] prepare_alloc_pages+0x213/0x610
[ 375.449806][ T6121] __alloc_frozen_pages_noprof+0x123/0x370
[ 375.449824][ T6121] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 375.449847][ T6121] ? policy_nodemask+0x27c/0x720
[ 375.449863][ T6121] alloc_pages_mpol+0x232/0x4a0
[ 375.449878][ T6121] vma_alloc_folio_noprof+0xe4/0x200
[ 375.449894][ T6121] ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 375.449910][ T6121] ? rcu_is_watching+0x15/0xb0
[ 375.449928][ T6121] ? lock_release+0x4b/0x3e0
[ 375.449943][ T6121] folio_prealloc+0x30/0x180
[ 375.449958][ T6121] do_wp_page+0x1231/0x5800
[ 375.449976][ T6121] ? __pfx_do_wp_page+0x10/0x10
[ 375.449988][ T6121] ? do_raw_spin_lock+0x121/0x290
[ 375.450001][ T6121] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 375.450013][ T6121] ? ___pte_offset_map+0x45/0x250
[ 375.450029][ T6121] __handle_mm_fault+0x1033/0x5440
[ 375.450046][ T6121] ? __pfx___handle_mm_fault+0x10/0x10
[ 375.450060][ T6121] ? lock_release+0x4b/0x3e0
[ 375.450077][ T6121] ? lock_vma_under_rcu+0xdf/0x3d0
[ 375.450091][ T6121] ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 375.450106][ T6121] ? rcu_is_watching+0x15/0xb0
[ 375.450124][ T6121] handle_mm_fault+0x40a/0x8e0
[ 375.450140][ T6121] do_user_addr_fault+0xa81/0x1390
[ 375.450158][ T6121] ? rcu_is_watching+0x15/0xb0
[ 375.450175][ T6121] ? trace_page_fault_user+0x84/0x1e0
[ 375.450192][ T6121] exc_page_fault+0x76/0xf0
[ 375.450209][ T6121] asm_exc_page_fault+0x26/0x30
[ 375.450220][ T6121] RIP: 0033:0x7fea15a20050
[ 375.450234][ T6121] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 9d 0f 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 50 3d 0a 00 0f 85 0f 02 00 00 4c 8d 25 43 3d 0a 00 4c
[ 375.450245][ T6121] RSP: 002b:00007ffe55dafd80 EFLAGS: 00010246
[ 375.450258][ T6121] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001
[pid 6121] exit_group(0) = ?
[pid 6121] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6121, si_uid=0, si_status=0, si_utime=0, si_stime=27 /* 0.27 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6122 attached
[ 375.450267][ T6121] RDX: 0000000000000001 RSI: 00007fea15ac1118 RDI: 0000000000000000
[ 375.450275][ T6121] RBP: 00007fea15ac1118 R08: 00007ffe55dafb77 R09: 00000000000000a0
[ 375.450283][ T6121] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 375.450290][ T6121] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 375.450301][ T6121]
[ 375.450313][ T6121] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
, child_tidptr=0x555576720650) = 6122
[pid 6122] set_robust_list(0x555576720660, 24) = 0
[pid 6122] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 6122] setpgid(0, 0) = 0
[pid 6122] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 6122] write(3, "1000", 4) = 4
[pid 6122] close(3) = 0
executing program
[pid 6122] write(1, "executing program\n", 18) = 18
[pid 6122] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=11, insns=0x2000000005c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_SOCK_CREATE, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 3
[pid 6122] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_begin", prog_fd=3}}, 24) = 4
[pid 6122] openat(AT_FDCWD, "/dev/fb0", O_RDONLY) = 5
[pid 6122] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 6122] write(6, "4", 1) = 1
[pid 6122] ioctl(5, FBIOPAN_DISPLAY, 0) = -1 EFAULT (Bad address)
[ 375.872125][ T6122] FAULT_INJECTION: forcing a failure.
[ 375.872125][ T6122] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 375.886099][ T6122] CPU: 0 UID: 0 PID: 6122 Comm: syz-executor165 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full)
[ 375.886120][ T6122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 375.886128][ T6122] Call Trace:
[ 375.886133][ T6122]
[ 375.886138][ T6122] dump_stack_lvl+0x189/0x250
[ 375.886156][ T6122] ? __pfx____ratelimit+0x10/0x10
[ 375.886173][ T6122] ? __pfx_dump_stack_lvl+0x10/0x10
[ 375.886186][ T6122] ? __pfx__printk+0x10/0x10
[ 375.886201][ T6122] ? lock_acquire+0x5f/0x360
[ 375.886217][ T6122] should_fail_ex+0x414/0x560
[ 375.886231][ T6122] prepare_alloc_pages+0x213/0x610
[ 375.886250][ T6122] __alloc_frozen_pages_noprof+0x123/0x370
[ 375.886269][ T6122] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 375.886288][ T6122] ? policy_nodemask+0x27c/0x720
[ 375.886304][ T6122] alloc_pages_mpol+0x232/0x4a0
[ 375.886319][ T6122] vma_alloc_folio_noprof+0xe4/0x200
[ 375.886335][ T6122] ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 375.886351][ T6122] ? rcu_is_watching+0x15/0xb0
[ 375.886368][ T6122] ? lock_release+0x4b/0x3e0
[ 375.886384][ T6122] folio_prealloc+0x30/0x180
[ 375.886400][ T6122] do_wp_page+0x1231/0x5800
[ 375.886417][ T6122] ? __pfx_do_wp_page+0x10/0x10
[ 375.886429][ T6122] ? do_raw_spin_lock+0x121/0x290
[ 375.886443][ T6122] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 375.886455][ T6122] ? ___pte_offset_map+0x45/0x250
[ 375.886470][ T6122] __handle_mm_fault+0x1033/0x5440
[ 375.886487][ T6122] ? __pfx___handle_mm_fault+0x10/0x10
[ 375.886501][ T6122] ? lock_release+0x4b/0x3e0
[ 375.886518][ T6122] ? lock_vma_under_rcu+0xdf/0x3d0
[ 375.886533][ T6122] ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 375.886547][ T6122] ? rcu_is_watching+0x15/0xb0
[ 375.886566][ T6122] handle_mm_fault+0x40a/0x8e0
[ 375.886581][ T6122] do_user_addr_fault+0xa81/0x1390
[ 375.886600][ T6122] ? rcu_is_watching+0x15/0xb0