./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2385364698 <...> Warning: Permanently added '10.128.0.125' (ED25519) to the list of known hosts. execve("./syz-executor2385364698", ["./syz-executor2385364698"], 0x7ffcc68a5820 /* 10 vars */) = 0 brk(NULL) = 0x55557afc2000 brk(0x55557afc2d00) = 0x55557afc2d00 arch_prctl(ARCH_SET_FS, 0x55557afc2380) = 0 set_tid_address(0x55557afc2650) = 289 set_robust_list(0x55557afc2660, 24) = 0 rseq(0x55557afc2ca0, 0x20, 0, 0x53053053) = -1 ENOSYS (Function not implemented) prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2385364698", 4096) = 28 getrandom("\xd3\x97\x11\xd3\x88\x69\x4d\xc1", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55557afc2d00 brk(0x55557afe3d00) = 0x55557afe3d00 brk(0x55557afe4000) = 0x55557afe4000 mprotect(0x7f0e17f4f000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0executing program ) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 openat(AT_FDCWD, "/proc/self/make-it-fail", O_WRONLY) = 3 close(3) = 0 openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_WRONLY) = 3 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3 write(3, "N", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3 write(3, "0", 1) = 1 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557afc2650) = 290 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557afc2650) = 291 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557afc2650) = 292 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557afc2650) = 293 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557afc2650) = 294 ./strace-static-x86_64: Process 294 attached [pid 294] set_robust_list(0x55557afc2660, 24) = 0 [pid 294] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557afc2650) = 295 ./strace-static-x86_64: Process 293 attached [pid 293] set_robust_list(0x55557afc2660, 24) = 0 [pid 293] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557afc2650) = 296 ./strace-static-x86_64: Process 296 attached [pid 296] set_robust_list(0x55557afc2660, 24) = 0 [pid 296] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 296] setpgid(0, 0) = 0 [pid 296] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 296] write(3, "1000", 4) = 4 [pid 296] close(3) = 0 [pid 296] write(1, "executing program\n", 18) = 18 [pid 296] openat(AT_FDCWD, "cpu.stat", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 3 [pid 296] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_LRU_PERCPU_HASH, key_size=4, value_size=8, max_entries=16, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 80) = 4 [pid 296] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=13, insns=0x200000000040, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148) = -1 EFAULT (Bad address) [pid 296] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=13, insns=0x200000000040, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148) = 5 [pid 296] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=5}}, 16) = 6 [pid 296] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR./strace-static-x86_64: Process 295 attached ./strace-static-x86_64: Process 292 attached ./strace-static-x86_64: Process 291 attached ./strace-static-x86_64: Process 290 attached ) = 7 [pid 296] write(7, "1", 1) = 1 [pid 296] close_range(3, 4294967295, 0 [pid 295] set_robust_list(0x55557afc2660, 24 [pid 292] set_robust_list(0x55557afc2660, 24 [pid 291] set_robust_list(0x55557afc2660, 24 [pid 290] set_robust_list(0x55557afc2660, 24 [pid 292] <... set_robust_list resumed>) = 0 [pid 291] <... set_robust_list resumed>) = 0 [pid 290] <... set_robust_list resumed>) = 0 [pid 295] <... set_robust_list resumed>) = 0 [pid 291] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 290] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 292] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 295] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 296] <... close_range resumed>) = 0 [ 22.965278][ T28] audit: type=1400 audit(1747142387.890:64): avc: denied { execmem } for pid=289 comm="syz-executor238" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 22.986009][ T28] audit: type=1400 audit(1747142387.890:65): avc: denied { bpf } for pid=296 comm="syz-executor238" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 23.008172][ T296] FAULT_INJECTION: forcing a failure. executing program executing program ./strace-static-x86_64: Process 299 attached [pid 295] <... prctl resumed>) = 0 ./strace-static-x86_64: Process 297 attached [pid 297] set_robust_list(0x55557afc2660, 24) = 0 [pid 297] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 297] setpgid(0, 0) = 0 [pid 297] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 297] write(3, "1000", 4) = 4 [pid 297] close(3) = 0 [pid 297] write(1, "executing program\n", 18) = 18 [pid 297] openat(AT_FDCWD, "cpu.stat", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 3 ./strace-static-x86_64: Process 298 attached [pid 298] set_robust_list(0x55557afc2660, 24) = 0 [pid 298] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 297] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_LRU_PERCPU_HASH, key_size=4, value_size=8, max_entries=16, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 80) = 4 [pid 298] <... prctl resumed>) = 0 [pid 298] setpgid(0, 0) = 0 [pid 298] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 297] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=13, insns=0x200000000040, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148) = -1 EFAULT (Bad address) [pid 297] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=13, insns=0x200000000040, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148) = 5 [pid 298] <... openat resumed>) = 3 [pid 298] write(3, "1000", 4) = 4 [pid 298] close(3) = 0 [pid 298] write(1, "executing program\n", 18) = 18 [pid 298] openat(AT_FDCWD, "cpu.stat", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 3 [pid 297] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=5}}, 16 [pid 298] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_LRU_PERCPU_HASH, key_size=4, value_size=8, max_entries=16, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 80) = 4 [pid 298] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=13, insns=0x200000000040, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148) = -1 EFAULT (Bad address) [pid 298] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=13, insns=0x200000000040, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148) = 5 [ 23.008172][ T296] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 23.009566][ T28] audit: type=1400 audit(1747142387.890:66): avc: denied { map_create } for pid=296 comm="syz-executor238" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 23.028506][ T296] CPU: 0 PID: 296 Comm: syz-executor238 Not tainted 6.1.134-syzkaller-00012-g646380b087a5 #0 [ 23.041722][ T28] audit: type=1400 audit(1747142387.890:67): avc: denied { map_read map_write } for pid=296 comm="syz-executor238" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 23.051018][ T296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 23.051041][ T296] Call Trace: [ 23.051046][ T296] [ 23.051055][ T296] __dump_stack+0x21/0x24 [ 23.071575][ T28] audit: type=1400 audit(1747142387.890:68): avc: denied { prog_load } for pid=296 comm="syz-executor238" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 23.081055][ T296] dump_stack_lvl+0xee/0x150 [pid 298] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=5}}, 16 [pid 299] set_robust_list(0x55557afc2660, 24 [pid 295] setpgid(0, 0 [pid 292] <... clone resumed>, child_tidptr=0x55557afc2650) = 298 [pid 291] <... clone resumed>, child_tidptr=0x55557afc2650) = 299 [pid 290] <... clone resumed>, child_tidptr=0x55557afc2650) = 297 [pid 299] <... set_robust_list resumed>) = 0 [pid 295] <... setpgid resumed>) = 0 [pid 299] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 295] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 299] <... prctl resumed>) = 0 [pid 295] <... openat resumed>) = 3 [pid 299] setpgid(0, 0 [pid 295] write(3, "1000", 4 [pid 299] <... setpgid resumed>) = 0 [pid 295] <... write resumed>) = 4 [pid 299] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 295] close(3 [pid 299] <... openat resumed>) = 3 [pid 295] <... close resumed>) = 0 executing program [pid 299] write(3, "1000", 4 [pid 295] write(1, "executing program\n", 18 [pid 299] <... write resumed>) = 4 [pid 295] <... write resumed>) = 18 [pid 299] close(3 [pid 295] openat(AT_FDCWD, "cpu.stat", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000executing program [pid 299] <... close resumed>) = 0 [pid 295] <... openat resumed>) = 3 [pid 299] write(1, "executing program\n", 18 [ 23.081087][ T296] ? __cfi_dump_stack_lvl+0x8/0x8 [ 23.084589][ T28] audit: type=1400 audit(1747142387.890:69): avc: denied { perfmon } for pid=296 comm="syz-executor238" capability=38 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 23.087281][ T296] ? resched_curr+0x10e/0x380 [ 23.087306][ T296] ? __cfi_resched_curr+0x10/0x10 [ 23.091846][ T28] audit: type=1400 audit(1747142387.890:70): avc: denied { prog_run } for pid=296 comm="syz-executor238" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 23.111158][ T296] dump_stack+0x15/0x24 [ 23.111189][ T296] should_fail_ex+0x3d4/0x520 [ 23.111213][ T296] should_fail_alloc_page+0x61/0x90 [ 23.111235][ T296] prepare_alloc_pages+0x148/0x5f0 [ 23.189557][ T296] ? __alloc_pages_bulk+0x9c0/0x9c0 [ 23.194757][ T296] ? __cfi_sched_clock_cpu+0x10/0x10 [ 23.200056][ T296] __alloc_pages+0x115/0x3a0 [ 23.204652][ T296] ? __cfi___alloc_pages+0x10/0x10 [ 23.209759][ T296] ? kvm_sched_clock_read+0x18/0x40 [ 23.214961][ T296] ? __this_cpu_preempt_check+0x13/0x20 [ 23.220498][ T296] ? xfd_validate_state+0x70/0x150 [ 23.225603][ T296] __folio_alloc+0x12/0x40 [ 23.230011][ T296] wp_page_copy+0x280/0x15b0 [ 23.234686][ T296] ? __switch_to+0x51f/0xe30 [ 23.239278][ T296] ? fault_dirty_shared_page+0x310/0x310 [ 23.244908][ T296] ? _raw_spin_unlock+0x4c/0x70 [ 23.249767][ T296] ? finish_task_switch+0x16b/0x7b0 [ 23.254962][ T296] ? vm_normal_page+0x99/0x200 [ 23.259717][ T296] do_wp_page+0x9f2/0xfc0 [ 23.264130][ T296] handle_mm_fault+0x10e4/0x2640 [ 23.269070][ T296] ? __cfi_handle_mm_fault+0x10/0x10 [ 23.274350][ T296] ? lock_vma_under_rcu+0x3eb/0x4d0 [ 23.279545][ T296] ? __this_cpu_preempt_check+0x13/0x20 [ 23.285088][ T296] ? xfd_validate_state+0x70/0x150 [ 23.290233][ T296] do_user_addr_fault+0x905/0x1050 [ 23.295361][ T296] exc_page_fault+0x51/0xb0 [ 23.299875][ T296] asm_exc_page_fault+0x27/0x30 [ 23.304727][ T296] RIP: 0033:0x7f0e17eb2220 [ 23.309149][ T296] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d cd 0d 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 a0 3b 0a 00 0f 85 0f 02 00 00 4c 8d 25 93 3b 0a 00 4c [ 23.328743][ T296] RSP: 002b:00007ffd51c5fcd0 EFLAGS: 00010246 [ 23.335150][ T296] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001 [ 23.343109][ T296] RDX: 0000000000000001 RSI: 00007f0e17f53120 RDI: 0000000000000000 [ 23.351073][ T296] RBP: 00007f0e17f53120 R08: 00007ffd51c5fac7 R09: 0000000000000140 [ 23.359038][ T296] R10: 0000000000000001 R11: 0000000000000286 R12: 0000000000000000 [pid 295] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_LRU_PERCPU_HASH, key_size=4, value_size=8, max_entries=16, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 80 [pid 299] <... write resumed>) = 18 [pid 295] <... bpf resumed>) = 4 [pid 299] openat(AT_FDCWD, "cpu.stat", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [pid 295] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=13, insns=0x200000000040, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 299] <... openat resumed>) = 3 [pid 295] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 299] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_LRU_PERCPU_HASH, key_size=4, value_size=8, max_entries=16, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 80 [pid 295] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=13, insns=0x200000000040, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 299] <... bpf resumed>) = 4 [pid 295] <... bpf resumed>) = 5 [pid 299] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=13, insns=0x200000000040, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148 [pid 295] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=5}}, 16 [pid 299] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 299] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=13, insns=0x200000000040, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148) = 5 [pid 299] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="tlb_flush", prog_fd=5}}, 16) = 6 [pid 298] <... bpf resumed>) = 6 [pid 297] <... bpf resumed>) = 6 [pid 295] <... bpf resumed>) = 6 [pid 299] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 295] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 299] <... openat resumed>) = 7 [pid 295] <... openat resumed>) = 7 [pid 299] write(7, "1", 1 [pid 295] write(7, "1", 1 [pid 299] <... write resumed>) = 1 [pid 295] <... write resumed>) = 1 [pid 299] close_range(3, 4294967295, 0 [pid 295] close_range(3, 4294967295, 0 [pid 298] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 297] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR [pid 296] exit_group(0 [pid 298] <... openat resumed>) = 7 [pid 297] <... openat resumed>) = 7 [pid 298] write(7, "1", 1 [pid 297] write(7, "1", 1 [pid 298] <... write resumed>) = 1 [pid 297] <... write resumed>) = 1 [pid 296] <... exit_group resumed>) = ? [pid 298] close_range(3, 4294967295, 0 [pid 297] close_range(3, 4294967295, 0 [pid 296] +++ exited with 0 +++ [pid 293] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=296, si_uid=0, si_status=0, si_utime=0, si_stime=5} --- [pid 293] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557afc2650) = 300 ./strace-static-x86_64: Process 300 attached [pid 300] set_robust_list(0x55557afc2660, 24) = 0 [pid 300] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 300] setpgid(0, 0) = 0 [pid 300] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 300] write(3, "1000", 4) = 4 [pid 300] close(3) = 0 [pid 300] write(1, "executing program\n", 18executing program ) = 18 [pid 300] openat(AT_FDCWD, "cpu.stat", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 3 [pid 300] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_LRU_PERCPU_HASH, key_size=4, value_size=8, max_entries=16, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 80) = 4 [pid 300] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=13, insns=0x200000000040, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148) = -1 EFAULT (Bad address) [pid 300] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=13, insns=0x200000000040, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 148) = 5 [ 23.367003][ T296] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 23.375001][ T296] [ 23.379627][ T296] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 23.382935][ T299] FAULT_INJECTION: forcing a failure. [ 23.382935][ T299] name failslab, interval 1, probability 0, space 0, times 1 [ 23.400478][ T299] CPU: 1 PID: 299 Comm: syz-executor238 Not tainted 6.1.134-syzkaller-00012-g646380b087a5 #0 [ 23.410649][ T299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 23.420727][ T299] Call Trace: [ 23.424006][ T299] [ 23.426934][ T299] __dump_stack+0x21/0x24 [ 23.431264][ T299] dump_stack_lvl+0xee/0x150 [ 23.435939][ T299] ? __cfi_dump_stack_lvl+0x8/0x8 [ 23.440969][ T299] ? ____fput+0x15/0x20 [ 23.445119][ T299] ? ptrace_notify+0x221/0x250 [ 23.449917][ T299] ? syscall_exit_work+0x84/0x140 [ 23.454959][ T299] ? syscall_exit_to_user_mode_prepare+0x1c/0x20 [ 23.461291][ T299] ? do_syscall_64+0x58/0xa0 [ 23.465914][ T299] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 23.472074][ T299] dump_stack+0x15/0x24 [ 23.476228][ T299] should_fail_ex+0x3d4/0x520 [ 23.480902][ T299] __should_failslab+0xac/0xf0 [ 23.485755][ T299] ? tracepoint_probe_unregister+0x1e6/0x8b0 [ 23.491748][ T299] should_failslab+0x9/0x20 [ 23.496262][ T299] __kmem_cache_alloc_node+0x3d/0x2c0 [ 23.501639][ T299] ? __cfi_mutex_lock+0x10/0x10 [ 23.506527][ T299] ? delete_node+0x3dc/0xa60 [ 23.511116][ T299] ? tracepoint_probe_unregister+0x1e6/0x8b0 [ 23.517090][ T299] __kmalloc+0xa1/0x1e0 [ 23.521244][ T299] ? __cfi___bpf_trace_tlb_flush+0x10/0x10 [ 23.527042][ T299] tracepoint_probe_unregister+0x1e6/0x8b0 [ 23.532864][ T299] bpf_probe_unregister+0x61/0x70 [ 23.537892][ T299] bpf_raw_tp_link_release+0x63/0x90 [ 23.543181][ T299] bpf_link_free+0x13a/0x390 [ 23.547765][ T299] ? bpf_link_put_deferred+0x20/0x20 [ 23.553043][ T299] ? security_file_free+0xd8/0xf0 [ 23.558064][ T299] bpf_link_release+0x15f/0x170 [ 23.562921][ T299] ? __cfi_bpf_link_release+0x10/0x10 [ 23.568288][ T299] __fput+0x1fc/0x8f0 [ 23.572265][ T299] ____fput+0x15/0x20 [ 23.576232][ T299] task_work_run+0x1db/0x240 [ 23.580914][ T299] ? __cfi_task_work_run+0x10/0x10 [ 23.586025][ T299] ? fput+0x15b/0x1a0 [ 23.590440][ T299] ? filp_close+0x111/0x160 [ 23.594952][ T299] ptrace_notify+0x221/0x250 [ 23.599541][ T299] ? _raw_spin_unlock_irq+0x4d/0x70 [ 23.604783][ T299] ? __cfi_ptrace_notify+0x10/0x10 [ 23.609904][ T299] ? __cfi___close_range+0x10/0x10 [ 23.615024][ T299] ? fpregs_restore_userregs+0x128/0x260 [ 23.620663][ T299] syscall_exit_work+0x84/0x140 [ 23.625513][ T299] syscall_exit_to_user_mode_prepare+0x1c/0x20 [ 23.631664][ T299] syscall_exit_to_user_mode+0xd/0x30 [ 23.637039][ T299] do_syscall_64+0x58/0xa0 [ 23.641459][ T299] ? clear_bhb_loop+0x15/0x70 [ 23.646134][ T299] ? clear_bhb_loop+0x15/0x70 [ 23.650813][ T299] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 23.656707][ T299] RIP: 0033:0x7f0e17ee3ad9 [ 23.661114][ T299] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 23.680710][ T299] RSP: 002b:00007ffd51c5fd28 EFLAGS: 00000286 ORIG_RAX: 00000000000001b4 [ 23.689133][ T299] RAX: 0000000000000000 RBX: 00007ffd51c5fd40 RCX: 00007f0e17ee3ad9 [ 23.697101][ T299] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000000000000003 [ 23.705065][ T299] RBP: 0000000000000001 R08: 00007ffd51c5fac7 R09: 0000000000000140 [ 23.713043][ T299] R10: 0000000000000001 R11: 0000000000000286 R12: 0000000000000000 [ 23.721090][ T299] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 23.729079][ T299] [ 23.732744][ T299] CFI failure at __traceiter_tlb_flush+0x80/0xd0 (target: tp_stub_func+0x0/0x10; expected type: 0x205553a5) [ 23.732892][ T91] CFI failure at __traceiter_tlb_flush+0x80/0xd0 (target: tp_stub_func+0x0/0x10; expected type: 0x205553a5) [ 23.744272][ T299] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 23.761835][ T299] CPU: 1 PID: 299 Comm: syz-executor238 Not tainted 6.1.134-syzkaller-00012-g646380b087a5 #0 [ 23.772170][ T299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 23.782223][ T299] RIP: 0010:__traceiter_tlb_flush+0x80/0xd0 [ 23.788115][ T299] Code: 89 f8 48 c1 e8 03 42 80 3c 28 00 74 05 e8 38 60 07 00 49 8b 7c 24 08 44 89 f6 48 8b 55 d0 41 ba 5b ac aa df 44 03 53 fc 74 02 <0f> 0b ff d3 49 83 c7 18 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08 [ 23.807718][ T299] RSP: 0018:ffffc90000f27628 EFLAGS: 00010093 [ 23.813783][ T299] RAX: 1ffff11021e4e92c RBX: ffffffff81710320 RCX: ffff88810dcbbcc0 [ 23.821748][ T299] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: ffffc9000010d000 [ 23.829716][ T299] RBP: ffffc90000f27658 R08: ffff88810dcbbcc0 R09: 000000000000000c [ 23.837678][ T299] R10: 0000000084eb1367 R11: 0000000040000000 R12: ffff88810f274958 [ 23.845648][ T299] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff88810f274958 [ 23.853617][ T299] FS: 000055557afc2380(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 23.862544][ T299] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 23.869126][ T299] CR2: 00007f0e17f39261 CR3: 00000001102a3000 CR4: 00000000003506a0 [ 23.877091][ T299] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 23.885050][ T299] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 23.893268][ T299] Call Trace: [ 23.896535][ T299] [ 23.899460][ T299] switch_mm_irqs_off+0x61f/0x980 [ 23.904475][ T299] __schedule+0x9eb/0x14e0 [ 23.908983][ T299] ? release_firmware_map_entry+0x194/0x194 [ 23.914886][ T299] ? syscall_exit_to_user_mode+0xd/0x30 [ 23.920453][ T299] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 23.926550][ T299] preempt_schedule_irq+0x9b/0x110 [ 23.931661][ T299] ? __cfi_preempt_schedule_irq+0x10/0x10 [ 23.937448][ T299] raw_irqentry_exit_cond_resched+0x29/0x30 [ 23.943374][ T299] irqentry_exit+0x37/0x40 [ 23.947786][ T299] sysvec_reschedule_ipi+0x78/0x80 [ 23.952886][ T299] asm_sysvec_reschedule_ipi+0x1b/0x20 [ 23.958338][ T299] RIP: 0010:call_rcu+0xbea/0xf90 [ 23.963267][ T299] Code: 80 3c 03 00 74 08 4c 89 f7 e8 12 7e 58 00 48 8b 05 3b 8b 9f 05 49 03 06 49 39 c5 7f 56 fb 48 c7 84 24 80 00 00 00 0e 36 e0 45 <48> b8 00 00 00 00 00 fc ff df 48 8b 4c 24 78 48 c7 04 01 00 00 00 [ 23.982873][ T299] RSP: 0018:ffffc90000f27960 EFLAGS: 00000283 [ 23.988944][ T299] RAX: 0000000000002710 RBX: 1ffff1103ee271a8 RCX: ffffffff815bbab3 [ 23.996922][ T299] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff8881f7138d10 [ 24.004893][ T299] RBP: ffffc90000f27a98 R08: dffffc0000000000 R09: ffffed103ee271a3 [ 24.012887][ T299] R10: ffffed103ee271a3 R11: 1ffff1103ee271a2 R12: ffff8881f7138d10 [ 24.020859][ T299] R13: 0000000000000002 R14: ffff8881f7138d40 R15: 1ffff1103ee271a2 [ 24.028842][ T299] ? call_rcu+0xb83/0xf90 [ 24.033266][ T299] ? __kasan_check_write+0x14/0x20 [ 24.038371][ T299] ? __cfi_call_rcu+0x10/0x10 [ 24.043032][ T299] ? __local_bh_enable_ip+0x58/0x80 [ 24.048214][ T299] ? _raw_spin_unlock_bh+0x50/0x60 [ 24.053332][ T299] ? bpf_prog_kallsyms_del_all+0x280/0x2f0 [ 24.059126][ T299] __bpf_prog_put_noref+0x286/0x2b0 [ 24.064330][ T299] bpf_prog_put_deferred+0x2d4/0x3c0 [ 24.069608][ T299] ? __kasan_check_read+0x11/0x20 [ 24.074624][ T299] ? __cfi_bpf_prog_put_deferred+0x10/0x10 [ 24.080424][ T299] bpf_prog_release+0x243/0x250 [ 24.085262][ T299] ? __cfi_bpf_prog_release+0x10/0x10 [ 24.090626][ T299] ? percpu_counter_add_batch+0x13c/0x160 [ 24.096333][ T299] ? __cfi_bpf_prog_release+0x10/0x10 [ 24.101692][ T299] __fput+0x1fc/0x8f0 [ 24.105658][ T299] ____fput+0x15/0x20 [ 24.109621][ T299] task_work_run+0x1db/0x240 [ 24.114197][ T299] ? __cfi_task_work_run+0x10/0x10 [ 24.119387][ T299] ? fput+0x15b/0x1a0 [ 24.123351][ T299] ? filp_close+0x111/0x160 [ 24.127847][ T299] ptrace_notify+0x221/0x250 [ 24.132432][ T299] ? _raw_spin_unlock_irq+0x4d/0x70 [ 24.137618][ T299] ? __cfi_ptrace_notify+0x10/0x10 [ 24.142896][ T299] ? __cfi___close_range+0x10/0x10 [ 24.148008][ T299] ? fpregs_restore_userregs+0x128/0x260 [ 24.153628][ T299] syscall_exit_work+0x84/0x140 [ 24.158470][ T299] syscall_exit_to_user_mode_prepare+0x1c/0x20 [ 24.164606][ T299] syscall_exit_to_user_mode+0xd/0x30 [ 24.169963][ T299] do_syscall_64+0x58/0xa0 [ 24.174368][ T299] ? clear_bhb_loop+0x15/0x70 [ 24.179037][ T299] ? clear_bhb_loop+0x15/0x70 [ 24.183695][ T299] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 24.189578][ T299] RIP: 0033:0x7f0e17ee3ad9 [ 24.193977][ T299] Code: Unable to access opcode bytes at 0x7f0e17ee3aaf. [ 24.200975][ T299] RSP: 002b:00007ffd51c5fd28 EFLAGS: 00000286 ORIG_RAX: 00000000000001b4 [ 24.209372][ T299] RAX: 0000000000000000 RBX: 00007ffd51c5fd40 RCX: 00007f0e17ee3ad9 [ 24.217508][ T299] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000000000000003 [ 24.225465][ T299] RBP: 0000000000000001 R08: 00007ffd51c5fac7 R09: 0000000000000140 [ 24.233592][ T299] R10: 0000000000000001 R11: 0000000000000286 R12: 0000000000000000 [ 24.241546][ T299] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 24.249525][ T299] [ 24.252700][ T299] Modules linked in: [ 24.256604][ T299] ---[ end trace 0000000000000000 ]--- [ 24.256629][ T91] invalid opcode: 0000 [#2] PREEMPT SMP KASAN [ 24.262159][ T299] RIP: 0010:__traceiter_tlb_flush+0x80/0xd0 [ 24.268213][ T91] CPU: 0 PID: 91 Comm: klogd Tainted: G D 6.1.134-syzkaller-00012-g646380b087a5 #0 [ 24.274088][ T299] Code: 89 f8 48 c1 e8 03 42 80 3c 28 00 74 05 e8 38 60 07 00 49 8b 7c 24 08 44 89 f6 48 8b 55 d0 41 ba 5b ac aa df 44 03 53 fc 74 02 <0f> 0b ff d3 49 83 c7 18 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08 [ 24.284739][ T91] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 24.304324][ T299] RSP: 0018:ffffc90000f27628 EFLAGS: 00010093 [ 24.314370][ T91] RIP: 0010:__traceiter_tlb_flush+0x80/0xd0 [ 24.320422][ T299] RAX: 1ffff11021e4e92c RBX: ffffffff81710320 RCX: ffff88810dcbbcc0 [ 24.326296][ T91] Code: 89 f8 48 c1 e8 03 42 80 3c 28 00 74 05 e8 38 60 07 00 49 8b 7c 24 08 44 89 f6 48 8b 55 d0 41 ba 5b ac aa df 44 03 53 fc 74 02 <0f> 0b ff d3 49 83 c7 18 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08 [ 24.334250][ T299] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: ffffc9000010d000 [ 24.353837][ T91] RSP: 0018:ffffc90000957728 EFLAGS: 00010093 [ 24.361829][ T299] RBP: ffffc90000f27658 R08: ffff88810dcbbcc0 R09: 000000000000000c [ 24.361845][ T299] R10: 0000000084eb1367 R11: 0000000040000000 R12: ffff88810f274958 [ 24.367922][ T91] RAX: 1ffff11021e4e92c RBX: ffffffff81710320 RCX: ffff88811053d100 [ 24.375876][ T299] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff88810f274958 [ 24.383833][ T91] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: ffffc9000010d000 [ 24.391789][ T299] FS: 000055557afc2380(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 24.399748][ T91] RBP: ffffc90000957758 R08: ffff88811053d100 R09: 000000000000000c [ 24.407705][ T299] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 24.416613][ T91] R10: 0000000084eb1367 R11: 0000000040000000 R12: ffff88810f274958 [ 24.424565][ T299] CR2: 00007f0e17f39261 CR3: 00000001102a3000 CR4: 00000000003506a0 [ 24.431214][ T91] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff88810f274958 [ 24.439171][ T299] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 24.447124][ T91] FS: 00007fbb9f865c80(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 24.455079][ T299] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 24.463122][ T91] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 24.472042][ T299] Kernel panic - not syncing: Fatal exception [ 24.480014][ T91] CR2: 0000000000000000 CR3: 000000012353a000 CR4: 00000000003506b0 [ 24.480045][ T91] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 24.480056][ T91] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 24.480067][ T91] Call Trace: [ 24.480073][ T91] [ 24.480085][ T91] switch_mm_irqs_off+0x61f/0x980 [ 24.480109][ T91] __schedule+0x9eb/0x14e0 [ 24.480136][ T91] ? release_firmware_map_entry+0x194/0x194 [ 24.480159][ T91] ? avc_has_perm+0x158/0x240 [ 24.480183][ T91] schedule+0xbd/0x170 [ 24.480205][ T91] schedule_timeout+0xa6/0x2e0 [ 24.480223][ T91] ? __cfi_schedule_timeout+0x10/0x10 [ 24.480243][ T91] ? _raw_spin_unlock_irqrestore+0x5a/0x80 [ 24.480266][ T91] ? prepare_to_wait_exclusive+0x191/0x1d0 [ 24.480292][ T91] unix_wait_for_peer+0x1e5/0x2e0 [ 24.480311][ T91] ? unix_find_other+0x880/0x880 [ 24.480328][ T91] ? __cfi_autoremove_wake_function+0x10/0x10 [ 24.480352][ T91] ? __cfi__raw_spin_lock+0x10/0x10 [ 24.480375][ T91] ? security_unix_may_send+0x8c/0xb0 [ 24.480400][ T91] unix_dgram_sendmsg+0x1034/0x18e0 [ 24.480425][ T91] ? __cfi_unix_dgram_sendmsg+0x10/0x10 [ 24.480446][ T91] ? security_socket_sendmsg+0x93/0xb0 [ 24.480472][ T91] __sys_sendto+0x464/0x5e0 [ 24.480494][ T91] ? __cfi_autoremove_wake_function+0x10/0x10 [ 24.480519][ T91] ? __cfi___sys_sendto+0x10/0x10 [ 24.480545][ T91] ? __cfi_do_syslog+0x10/0x10 [ 24.480564][ T91] ? __this_cpu_preempt_check+0x13/0x20 [ 24.480584][ T91] ? xfd_validate_state+0x70/0x150 [ 24.480610][ T91] __x64_sys_sendto+0xe5/0x100 [ 24.480634][ T91] x64_sys_call+0x83/0x9a0 [ 24.480654][ T91] do_syscall_64+0x4c/0xa0 [ 24.480676][ T91] ? clear_bhb_loop+0x15/0x70 [ 24.480691][ T91] ? clear_bhb_loop+0x15/0x70 [ 24.480707][ T91] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 24.480733][ T91] RIP: 0033:0x7fbb9f9b5407 [ 24.480747][ T91] Code: Unable to access opcode bytes at 0x7fbb9f9b53dd. [ 24.480755][ T91] RSP: 002b:00007ffd22faf220 EFLAGS: 00000202 ORIG_RAX: 000000000000002c [ 24.480774][ T91] RAX: ffffffffffffffda RBX: 00007fbb9f865c80 RCX: 00007fbb9f9b5407 [ 24.480788][ T91] RDX: 000000000000004c RSI: 00007ffd22faf360 RDI: 0000000000000003 [ 24.480799][ T91] RBP: 00007ffd22faf790 R08: 0000000000000000 R09: 0000000000000000 [ 24.480810][ T91] R10: 0000000000004000 R11: 0000000000000202 R12: 00007ffd22faf7a8 [ 24.480821][ T91] R13: 00007ffd22faf360 R14: 0000000000000031 R15: 00007ffd22faf360 [ 24.480837][ T91] [ 24.480842][ T91] Modules linked in: [ 24.487427][ T91] ---[ end trace 0000000000000000 ]--- [ 24.487436][ T91] RIP: 0010:__traceiter_tlb_flush+0x80/0xd0 [ 24.487458][ T91] Code: 89 f8 48 c1 e8 03 42 80 3c 28 00 74 05 e8 38 60 07 00 49 8b 7c 24 08 44 89 f6 48 8b 55 d0 41 ba 5b ac aa df 44 03 53 fc 74 02 <0f> 0b ff d3 49 83 c7 18 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08 [ 24.487473][ T91] RSP: 0018:ffffc90000f27628 EFLAGS: 00010093 [ 24.487487][ T91] RAX: 1ffff11021e4e92c RBX: ffffffff81710320 RCX: ffff88810dcbbcc0 [ 24.487500][ T91] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: ffffc9000010d000 [ 24.487512][ T91] RBP: ffffc90000f27658 R08: ffff88810dcbbcc0 R09: 000000000000000c [ 24.487524][ T91] R10: 0000000084eb1367 R11: 0000000040000000 R12: ffff88810f274958 [ 24.487536][ T91] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff88810f274958 [ 24.487548][ T91] FS: 00007fbb9f865c80(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 24.487563][ T91] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 24.487575][ T91] CR2: 0000000000000000 CR3: 000000012353a000 CR4: 00000000003506b0 [ 24.487590][ T91] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 24.487631][ T91] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 25.664498][ T299] Shutting down cpus with NMI [ 26.036114][ T299] Kernel Offset: disabled [ 26.040520][ T299] Rebooting in 86400 seconds..