[ 65.805829][ T1063] bridge0: port 1(bridge_slave_0) entered disabled state [ 65.823338][ T1063] device veth1_macvtap left promiscuous mode [ 65.829972][ T1063] device veth0_macvtap left promiscuous mode [ 65.838252][ T1063] device veth1_vlan left promiscuous mode [ 65.845008][ T1063] device veth0_vlan left promiscuous mode [ 66.106065][ T1063] team0 (unregistering): Port device team_slave_1 removed [ 66.124134][ T1063] team0 (unregistering): Port device team_slave_0 removed [ 66.140612][ T1063] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 66.166717][ T1063] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 66.245403][ T1063] bond0 (unregistering): Released all slaves [ 81.550352][ T7] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.1.5' (ECDSA) to the list of known hosts. 2022/12/24 15:52:58 ignoring optional flag "sandboxArg"="0" 2022/12/24 15:52:59 parsed 1 programs 2022/12/24 15:52:59 executed programs: 0 [ 83.170526][ T5507] cgroup: Unknown subsys name 'net' [ 83.180835][ T5507] cgroup: Unknown subsys name 'rlimit' [ 84.277306][ T4390] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 84.286680][ T4390] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 84.295248][ T4390] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 84.303546][ T4390] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 84.318323][ T4390] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 84.327034][ T4390] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 84.475567][ T5511] chnl_net:caif_netlink_parms(): no params data found [ 84.544768][ T5511] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.552225][ T5511] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.560913][ T5511] device bridge_slave_0 entered promiscuous mode [ 84.570608][ T5511] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.577826][ T5511] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.586714][ T5511] device bridge_slave_1 entered promiscuous mode [ 84.617764][ T5511] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.631741][ T5511] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.667563][ T5511] team0: Port device team_slave_0 added [ 84.677994][ T5511] team0: Port device team_slave_1 added [ 84.706946][ T5511] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 84.714992][ T5511] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 84.742410][ T5511] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 84.759058][ T5511] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 84.766245][ T5511] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 84.795243][ T5511] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 84.822062][ T5511] device hsr_slave_0 entered promiscuous mode [ 84.829305][ T5511] device hsr_slave_1 entered promiscuous mode [ 84.895599][ T5511] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.902903][ T5511] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.911034][ T5511] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.918262][ T5511] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.961249][ T5511] 8021q: adding VLAN 0 to HW filter on device bond0 [ 84.974649][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 84.982851][ T7] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.991522][ T7] bridge0: port 2(bridge_slave_1) entered disabled state [ 85.000495][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 85.015165][ T5511] 8021q: adding VLAN 0 to HW filter on device team0 [ 85.025536][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 85.035360][ T7] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.042603][ T7] bridge0: port 1(bridge_slave_0) entered forwarding state [ 85.055379][ T2103] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 85.064186][ T2103] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.071496][ T2103] bridge0: port 2(bridge_slave_1) entered forwarding state [ 85.092320][ T2103] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 85.104986][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 85.117499][ T5511] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 85.130859][ T5511] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 85.140664][ T897] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 85.159471][ T5511] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 85.167148][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 85.176906][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 85.524523][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 85.533690][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 85.551329][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 85.560510][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 85.574057][ T5511] device veth0_vlan entered promiscuous mode [ 85.580955][ T2103] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 85.589469][ T2103] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 85.601672][ T5511] device veth1_vlan entered promiscuous mode [ 85.621568][ T2103] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 85.630361][ T2103] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 85.639777][ T2103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 85.648482][ T2103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 85.659159][ T5511] device veth0_macvtap entered promiscuous mode [ 85.668201][ T5511] device veth1_macvtap entered promiscuous mode [ 85.685266][ T5511] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 85.693603][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 85.701921][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 85.711241][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 85.720289][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 85.733363][ T5511] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 85.740944][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 85.750884][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 85.804412][ T934] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.815515][ T934] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.830849][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 85.843941][ T1063] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.852613][ T1063] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.862679][ T2103] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 190.908551][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 190.915766][ C0] rcu: 1-...!: (2 ticks this GP) idle=2c2c/1/0x4000000000000000 softirq=8392/8392 fqs=0 [ 190.926258][ C0] (detected by 0, t=10502 jiffies, g=9285, q=133 ncpus=2) [ 190.933666][ C0] Sending NMI from CPU 0 to CPUs 1: [ 190.939065][ C1] NMI backtrace for cpu 1 [ 190.939079][ C1] CPU: 1 PID: 5554 Comm: syz-executor.0 Not tainted 6.1.0-next-20221220-syzkaller #0 [ 190.939099][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 190.939109][ C1] RIP: 0010:kasan_check_range+0x130/0x190 [ 190.939138][ C1] Code: 00 74 ef 49 8d 04 2c 48 85 d2 75 0b 48 89 da 48 29 c2 e9 55 ff ff ff 49 39 d2 75 17 49 0f be 02 41 83 e1 07 49 39 c1 7d 0a 5b 01 00 00 00 5d 41 5c c3 44 89 c2 e8 3f ef ff ff 5b 83 f0 01 5d [ 190.939155][ C1] RSP: 0018:ffffc900001e09d0 EFLAGS: 00000046 [ 190.939169][ C1] RAX: fffffbfff226817c RBX: 1ffff9200003c144 RCX: ffffffff816377ce [ 190.939181][ C1] RDX: fffffbfff226817c RSI: 0000000000000008 RDI: ffffffff91340bd8 [ 190.939193][ C1] RBP: fffffbfff226817b R08: 0000000000000000 R09: ffffffff91340bdf [ 190.939205][ C1] R10: fffffbfff226817b R11: 0000000000000000 R12: ffff88801cee6248 [ 190.939216][ C1] R13: 0000000000000000 R14: 00000000000008f9 R15: ffff88801cee6268 [ 190.939227][ C1] FS: 00007fba0450c700(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 190.939245][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 190.939258][ C1] CR2: 0000000020000600 CR3: 0000000017285000 CR4: 00000000003506e0 [ 190.939269][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 190.939280][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 190.939291][ C1] Call Trace: [ 190.939296][ C1] [ 190.939304][ C1] mark_lock.part.0+0xee/0x1910 [ 190.939323][ C1] ? mark_lock.part.0+0xee/0x1910 [ 190.939342][ C1] ? lock_chain_count+0x20/0x20 [ 190.939359][ C1] ? mark_lock.part.0+0xee/0x1910 [ 190.939378][ C1] ? __lock_acquire+0x166e/0x56d0 [ 190.939397][ C1] ? __lock_acquire+0x166e/0x56d0 [ 190.939418][ C1] __lock_acquire+0x14a2/0x56d0 [ 190.939441][ C1] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 190.939460][ C1] ? find_held_lock+0x2d/0x110 [ 190.939490][ C1] lock_acquire.part.0+0x11a/0x350 [ 190.939508][ C1] ? advance_sched+0x57/0x9b0 [ 190.939532][ C1] ? lock_release+0x810/0x810 [ 190.939548][ C1] ? advance_sched+0x57/0x9b0 [ 190.939569][ C1] ? rcu_read_lock_sched_held+0x3e/0x70 [ 190.939587][ C1] ? trace_lock_acquire+0x1d1/0x290 [ 190.939605][ C1] ? advance_sched+0x57/0x9b0 [ 190.939625][ C1] ? lock_acquire+0x32/0xc0 [ 190.939641][ C1] ? advance_sched+0x57/0x9b0 [ 190.939664][ C1] _raw_spin_lock+0x2e/0x40 [ 190.939687][ C1] ? advance_sched+0x57/0x9b0 [ 190.939707][ C1] advance_sched+0x57/0x9b0 [ 190.939731][ C1] ? taprio_dequeue+0xa20/0xa20 [ 190.939753][ C1] __hrtimer_run_queues+0x600/0xcc0 [ 190.939783][ C1] ? __remove_hrtimer+0x2a0/0x2a0 [ 190.939806][ C1] ? ktime_get_update_offsets_now+0x3ef/0x5c0 [ 190.939839][ C1] hrtimer_interrupt+0x320/0x790 [ 190.939870][ C1] __sysvec_apic_timer_interrupt+0x180/0x640 [ 190.939897][ C1] sysvec_apic_timer_interrupt+0x92/0xc0 [ 190.939917][ C1] [ 190.939921][ C1] [ 190.939927][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 190.939950][ C1] RIP: 0010:_raw_spin_unlock_irqrestore+0x3c/0x70 [ 190.939974][ C1] Code: 74 24 10 e8 b6 18 59 f7 48 89 ef e8 ae 83 59 f7 81 e3 00 02 00 00 75 25 9c 58 f6 c4 02 75 2d 48 85 db 74 01 fb bf 01 00 00 00 3f b3 4b f7 65 8b 05 20 cd f8 75 85 c0 74 0a 5b 5d c3 e8 4c f6 [ 190.939990][ C1] RSP: 0018:ffffc9000526f128 EFLAGS: 00000206 [ 190.940004][ C1] RAX: 0000000000000002 RBX: 0000000000000200 RCX: 1ffffffff2271216 [ 190.940015][ C1] RDX: 0000000000000000 RSI: 0000000000000202 RDI: 0000000000000001 [ 190.940026][ C1] RBP: ffff888022ea22e8 R08: 0000000000000001 R09: ffffffff91340b87 [ 190.940037][ C1] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888022ea22e8 [ 190.940048][ C1] R13: 00000013fe0a5d00 R14: ffff888022ea2000 R15: 0000000000000000 [ 190.940067][ C1] taprio_change+0x2edc/0x4010 [ 190.940101][ C1] ? taprio_offload_get+0xb0/0xb0 [ 190.940123][ C1] ? ref_tracker_free+0x6b0/0x6b0 [ 190.940145][ C1] ? qdisc_alloc+0x7b6/0xb00 [ 190.940169][ C1] ? netlink_rcv_skb+0x165/0x440 [ 190.940196][ C1] ? netlink_unicast+0x547/0x7f0 [ 190.940221][ C1] ? netlink_sendmsg+0x91b/0xe10 [ 190.940247][ C1] ? sock_sendmsg+0xd3/0x120 [ 190.940269][ C1] ? ____sys_sendmsg+0x712/0x8c0 [ 190.940290][ C1] ? ___sys_sendmsg+0x110/0x1b0 [ 190.940315][ C1] ? __sys_sendmsg+0xf7/0x1c0 [ 190.940339][ C1] ? do_syscall_64+0x39/0xb0 [ 190.940364][ C1] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 190.940383][ C1] ? lockdep_init_map_type+0x21e/0x800 [ 190.940401][ C1] ? lockdep_init_map_type+0x21e/0x800 [ 190.940418][ C1] ? fifo_init+0x346/0x6c0 [ 190.940442][ C1] ? mutex_is_locked+0x12/0x50 [ 190.940466][ C1] ? rtnl_is_locked+0x15/0x20 [ 190.940485][ C1] ? qdisc_hash_add+0x221/0x330 [ 190.940513][ C1] taprio_init+0x4c9/0x6b0 [ 190.940536][ C1] ? taprio_change+0x4010/0x4010 [ 190.940558][ C1] qdisc_create+0x44a/0x1170 [ 190.940585][ C1] ? tc_get_qdisc+0xb20/0xb20 [ 190.940615][ C1] tc_modify_qdisc+0x479/0x19a0 [ 190.940646][ C1] ? qdisc_create+0x1170/0x1170 [ 190.940671][ C1] ? rtnetlink_rcv_msg+0x3e9/0xca0 [ 190.940703][ C1] ? qdisc_create+0x1170/0x1170 [ 190.940730][ C1] rtnetlink_rcv_msg+0x43e/0xca0 [ 190.940755][ C1] ? rtnl_getlink+0xae0/0xae0 [ 190.940777][ C1] ? __dev_queue_xmit+0xb4d/0x3cc0 [ 190.940800][ C1] ? __kasan_kmalloc+0xa5/0xb0 [ 190.940818][ C1] ? __kmalloc_node_track_caller+0x5b/0xc0 [ 190.940844][ C1] ? __alloc_skb+0xe9/0x310 [ 190.940866][ C1] ? netlink_sendmsg+0x9a6/0xe10 [ 190.940894][ C1] netlink_rcv_skb+0x165/0x440 [ 190.940921][ C1] ? rtnl_getlink+0xae0/0xae0 [ 190.940945][ C1] ? netlink_ack+0x1370/0x1370 [ 190.940978][ C1] ? netlink_deliver_tap+0x1b1/0xc50 [ 190.941007][ C1] netlink_unicast+0x547/0x7f0 [ 190.941036][ C1] ? netlink_attachskb+0x890/0x890 [ 190.941061][ C1] ? __virt_addr_valid+0x61/0x2e0 [ 190.941092][ C1] ? __phys_addr_symbol+0x30/0x70 [ 190.941117][ C1] ? __check_object_size+0x2e2/0x5a0 [ 190.941144][ C1] netlink_sendmsg+0x91b/0xe10 [ 190.941173][ C1] ? netlink_unicast+0x7f0/0x7f0 [ 190.941203][ C1] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 190.941233][ C1] ? netlink_unicast+0x7f0/0x7f0 [ 190.941259][ C1] sock_sendmsg+0xd3/0x120 [ 190.941281][ C1] ____sys_sendmsg+0x712/0x8c0 [ 190.941304][ C1] ? copy_msghdr_from_user+0xfc/0x150 [ 190.941330][ C1] ? kernel_sendmsg+0x50/0x50 [ 190.941358][ C1] ___sys_sendmsg+0x110/0x1b0 [ 190.941384][ C1] ? do_recvmmsg+0x7b0/0x7b0 [ 190.941410][ C1] ? __fget_files+0x248/0x440 [ 190.941428][ C1] ? lock_downgrade+0x6e0/0x6e0 [ 190.941445][ C1] ? trace_lock_acquire+0x1d1/0x290 [ 190.941463][ C1] ? receive_fd+0x110/0x110 [ 190.941480][ C1] ? lock_acquire+0x32/0xc0 [ 190.941499][ C1] ? __fget_files+0x26a/0x440 [ 190.941520][ C1] ? __fget_light+0xe5/0x270 [ 190.941541][ C1] __sys_sendmsg+0xf7/0x1c0 [ 190.941566][ C1] ? __sys_sendmsg_sock+0x40/0x40 [ 190.941598][ C1] ? syscall_enter_from_user_mode+0x26/0xb0 [ 190.941619][ C1] ? lockdep_hardirqs_on+0x7d/0x100 [ 190.941639][ C1] do_syscall_64+0x39/0xb0 [ 190.941664][ C1] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 190.941683][ C1] RIP: 0033:0x7fba03489049 [ 190.941711][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 190.941726][ C1] RSP: 002b:00007fba0450c168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 190.941742][ C1] RAX: ffffffffffffffda RBX: 00007fba0359bf60 RCX: 00007fba03489049 [ 190.941754][ C1] RDX: 0000000000000000 RSI: 00000000200007c0 RDI: 0000000000000004 [ 190.941765][ C1] RBP: 00007fba034e308d R08: 0000000000000000 R09: 0000000000000000 [ 190.941776][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 190.941786][ C1] R13: 00007fff92a0bfdf R14: 00007fba0450c300 R15: 0000000000022000 [ 190.941804][ C1] [ 190.942058][ C0] rcu: rcu_preempt kthread timer wakeup didn't happen for 10501 jiffies! g9285 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 [ 191.727938][ C0] rcu: Possible timer handling issue on cpu=1 timer-softirq=2984 [ 191.735838][ C0] rcu: rcu_preempt kthread starved for 10502 jiffies! g9285 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=1 [ 191.747489][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 191.757465][ C0] rcu: RCU grace-period kthread stack dump: [ 191.763447][ C0] task:rcu_preempt state:I stack:28672 pid:16 ppid:2 flags:0x00004000 [ 191.772850][ C0] Call Trace: [ 191.776148][ C0] [ 191.779115][ C0] __schedule+0x2544/0x53f0 [ 191.783670][ C0] ? _raw_spin_unlock_irqrestore+0x41/0x70 [ 191.789502][ C0] ? __mod_timer+0x8d9/0xe80 [ 191.794204][ C0] ? io_schedule_timeout+0x150/0x150 [ 191.799615][ C0] ? add_timer_on+0x4e0/0x4e0 [ 191.804322][ C0] ? debug_object_free+0x360/0x360 [ 191.809551][ C0] schedule+0xde/0x1b0 [ 191.814181][ C0] schedule_timeout+0x14e/0x2a0 [ 191.819228][ C0] ? usleep_range_state+0x1b0/0x1b0 [ 191.824452][ C0] ? __next_timer_interrupt+0x2a0/0x2a0 [ 191.830308][ C0] ? eeepc_acpi_add+0x101e/0x13cd [ 191.835515][ C0] ? _raw_spin_unlock_irqrestore+0x41/0x70 [ 191.841711][ C0] ? prepare_to_swait_event+0xf6/0x480 [ 191.847205][ C0] rcu_gp_fqs_loop+0x190/0x910 [ 191.852098][ C0] ? force_qs_rnp+0x7c0/0x7c0 [ 191.856891][ C0] ? _raw_spin_unlock_irqrestore+0x54/0x70 [ 191.862730][ C0] rcu_gp_kthread+0x23a/0x360 [ 191.867442][ C0] ? rcu_gp_init+0x1450/0x1450 [ 191.872237][ C0] ? __kthread_parkme+0x163/0x220 [ 191.877278][ C0] ? rcu_gp_init+0x1450/0x1450 [ 191.882071][ C0] kthread+0x2e8/0x3a0 [ 191.886156][ C0] ? kthread_complete_and_exit+0x40/0x40 [ 191.891811][ C0] ret_from_fork+0x1f/0x30 [ 191.896627][ C0] [ 191.899667][ C0] rcu: Stack dump where RCU GP kthread last ran: [ 191.905993][ C0] Sending NMI from CPU 0 to CPUs 1: [ 191.911217][ C1] NMI backtrace for cpu 1 [ 191.911226][ C1] CPU: 1 PID: 5554 Comm: syz-executor.0 Not tainted 6.1.0-next-20221220-syzkaller #0 [ 191.911246][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 191.911256][ C1] RIP: 0010:__lock_acquire+0x3c5/0x56d0 [ 191.911278][ C1] Code: 45 89 4c 24 20 0f b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 03 12 00 00 8b 84 24 60 01 00 00 41 89 44 24 24 <48> 8b 6c 24 18 be 08 00 00 00 81 e5 ff 1f 00 00 48 89 e8 48 c1 e8 [ 191.911294][ C1] RSP: 0018:ffffc900001e0bc8 EFLAGS: 00000046 [ 191.911313][ C1] RAX: 0000000000000000 RBX: ffff88801cee61f8 RCX: 0000000000000000 [ 191.911325][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff88801cee626c [ 191.911336][ C1] RBP: 0000000000000000 R08: 1ffff110039dcc48 R09: 00000000000c4065 [ 191.911347][ C1] R10: fffffbfff1ce5f5a R11: 0000000000000000 R12: ffff88801cee6248 [ 191.911359][ C1] R13: ffff88801cee57c0 R14: ffff8880b992b798 R15: 0000000000044000 [ 191.911371][ C1] FS: 00007fba0450c700(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 191.911388][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 191.911401][ C1] CR2: 0000000020000600 CR3: 0000000017285000 CR4: 00000000003506e0 [ 191.911412][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 191.911423][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 191.911434][ C1] Call Trace: [ 191.911439][ C1] [ 191.911452][ C1] ? find_held_lock+0x2d/0x110 [ 191.911482][ C1] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 191.911502][ C1] ? find_held_lock+0x2d/0x110 [ 191.911536][ C1] lock_acquire.part.0+0x11a/0x350 [ 191.911554][ C1] ? __hrtimer_run_queues+0x266/0xcc0 [ 191.911582][ C1] ? lock_release+0x810/0x810 [ 191.911602][ C1] ? __hrtimer_run_queues+0x266/0xcc0 [ 191.911625][ C1] ? rcu_read_lock_sched_held+0x3e/0x70 [ 191.911642][ C1] ? trace_lock_acquire+0x1d1/0x290 [ 191.911661][ C1] ? __hrtimer_run_queues+0x266/0xcc0 [ 191.911685][ C1] ? lock_acquire+0x32/0xc0 [ 191.911701][ C1] ? __hrtimer_run_queues+0x266/0xcc0 [ 191.911727][ C1] _raw_spin_lock_irq+0x36/0x50 [ 191.911749][ C1] ? __hrtimer_run_queues+0x266/0xcc0 [ 191.911774][ C1] __hrtimer_run_queues+0x266/0xcc0 [ 191.911803][ C1] ? __remove_hrtimer+0x2a0/0x2a0 [ 191.911826][ C1] ? ktime_get_update_offsets_now+0x3ef/0x5c0 [ 191.911863][ C1] hrtimer_interrupt+0x320/0x790 [ 191.911894][ C1] __sysvec_apic_timer_interrupt+0x180/0x640 [ 191.911921][ C1] sysvec_apic_timer_interrupt+0x92/0xc0 [ 191.911941][ C1] [ 191.911946][ C1] [ 191.911951][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 191.911974][ C1] RIP: 0010:_raw_spin_unlock_irqrestore+0x3c/0x70 [ 191.911999][ C1] Code: 74 24 10 e8 b6 18 59 f7 48 89 ef e8 ae 83 59 f7 81 e3 00 02 00 00 75 25 9c 58 f6 c4 02 75 2d 48 85 db 74 01 fb bf 01 00 00 00 3f b3 4b f7 65 8b 05 20 cd f8 75 85 c0 74 0a 5b 5d c3 e8 4c f6 [ 191.912015][ C1] RSP: 0018:ffffc9000526f128 EFLAGS: 00000206 [ 191.912028][ C1] RAX: 0000000000000002 RBX: 0000000000000200 RCX: 1ffffffff2271216 [ 191.912040][ C1] RDX: 0000000000000000 RSI: 0000000000000202 RDI: 0000000000000001 [ 191.912050][ C1] RBP: ffff888022ea22e8 R08: 0000000000000001 R09: ffffffff91340b87 [ 191.912062][ C1] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888022ea22e8 [ 191.912073][ C1] R13: 00000013fe0a5d00 R14: ffff888022ea2000 R15: 0000000000000000 [ 191.912092][ C1] taprio_change+0x2edc/0x4010 [ 191.912122][ C1] ? taprio_offload_get+0xb0/0xb0 [ 191.912144][ C1] ? ref_tracker_free+0x6b0/0x6b0 [ 191.912166][ C1] ? qdisc_alloc+0x7b6/0xb00 [ 191.912190][ C1] ? netlink_rcv_skb+0x165/0x440 [ 191.912216][ C1] ? netlink_unicast+0x547/0x7f0 [ 191.912242][ C1] ? netlink_sendmsg+0x91b/0xe10 [ 191.912268][ C1] ? sock_sendmsg+0xd3/0x120 [ 191.912289][ C1] ? ____sys_sendmsg+0x712/0x8c0 [ 191.912310][ C1] ? ___sys_sendmsg+0x110/0x1b0 [ 191.912335][ C1] ? __sys_sendmsg+0xf7/0x1c0 [ 191.912359][ C1] ? do_syscall_64+0x39/0xb0 [ 191.912385][ C1] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 191.912404][ C1] ? lockdep_init_map_type+0x21e/0x800 [ 191.912422][ C1] ? lockdep_init_map_type+0x21e/0x800 [ 191.912440][ C1] ? fifo_init+0x346/0x6c0 [ 191.912464][ C1] ? mutex_is_locked+0x12/0x50 [ 191.912488][ C1] ? rtnl_is_locked+0x15/0x20 [ 191.912511][ C1] ? qdisc_hash_add+0x221/0x330 [ 191.912536][ C1] taprio_init+0x4c9/0x6b0 [ 191.912559][ C1] ? taprio_change+0x4010/0x4010 [ 191.912581][ C1] qdisc_create+0x44a/0x1170 [ 191.912609][ C1] ? tc_get_qdisc+0xb20/0xb20 [ 191.912639][ C1] tc_modify_qdisc+0x479/0x19a0 [ 191.912669][ C1] ? qdisc_create+0x1170/0x1170 [ 191.912698][ C1] ? rtnetlink_rcv_msg+0x3e9/0xca0 [ 191.912731][ C1] ? qdisc_create+0x1170/0x1170 [ 191.912757][ C1] rtnetlink_rcv_msg+0x43e/0xca0 [ 191.912783][ C1] ? rtnl_getlink+0xae0/0xae0 [ 191.912805][ C1] ? __dev_queue_xmit+0xb4d/0x3cc0 [ 191.912829][ C1] ? __kasan_kmalloc+0xa5/0xb0 [ 191.912848][ C1] ? __kmalloc_node_track_caller+0x5b/0xc0 [ 191.912874][ C1] ? __alloc_skb+0xe9/0x310 [ 191.912896][ C1] ? netlink_sendmsg+0x9a6/0xe10 [ 191.912926][ C1] netlink_rcv_skb+0x165/0x440 [ 191.912953][ C1] ? rtnl_getlink+0xae0/0xae0 [ 191.912976][ C1] ? netlink_ack+0x1370/0x1370 [ 191.913010][ C1] ? netlink_deliver_tap+0x1b1/0xc50 [ 191.913039][ C1] netlink_unicast+0x547/0x7f0 [ 191.913068][ C1] ? netlink_attachskb+0x890/0x890 [ 191.913095][ C1] ? __virt_addr_valid+0x61/0x2e0 [ 191.913120][ C1] ? __phys_addr_symbol+0x30/0x70 [ 191.913146][ C1] ? __check_object_size+0x2e2/0x5a0 [ 191.913173][ C1] netlink_sendmsg+0x91b/0xe10 [ 191.913202][ C1] ? netlink_unicast+0x7f0/0x7f0 [ 191.913232][ C1] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 191.913262][ C1] ? netlink_unicast+0x7f0/0x7f0 [ 191.913288][ C1] sock_sendmsg+0xd3/0x120 [ 191.913310][ C1] ____sys_sendmsg+0x712/0x8c0 [ 191.913332][ C1] ? copy_msghdr_from_user+0xfc/0x150 [ 191.913359][ C1] ? kernel_sendmsg+0x50/0x50 [ 191.913386][ C1] ___sys_sendmsg+0x110/0x1b0 [ 191.913413][ C1] ? do_recvmmsg+0x7b0/0x7b0 [ 191.913441][ C1] ? __fget_files+0x248/0x440 [ 191.913460][ C1] ? lock_downgrade+0x6e0/0x6e0 [ 191.913476][ C1] ? trace_lock_acquire+0x1d1/0x290 [ 191.913495][ C1] ? receive_fd+0x110/0x110 [ 191.913529][ C1] ? lock_acquire+0x32/0xc0 [ 191.913548][ C1] ? __fget_files+0x26a/0x440 [ 191.913570][ C1] ? __fget_light+0xe5/0x270 [ 191.913590][ C1] __sys_sendmsg+0xf7/0x1c0 [ 191.913616][ C1] ? __sys_sendmsg_sock+0x40/0x40 [ 191.913648][ C1] ? syscall_enter_from_user_mode+0x26/0xb0 [ 191.913669][ C1] ? lockdep_hardirqs_on+0x7d/0x100 [ 191.913689][ C1] do_syscall_64+0x39/0xb0 [ 191.913715][ C1] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 191.913735][ C1] RIP: 0033:0x7fba03489049 [ 191.913749][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 191.913765][ C1] RSP: 002b:00007fba0450c168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 191.913781][ C1] RAX: ffffffffffffffda RBX: 00007fba0359bf60 RCX: 00007fba03489049 [ 191.913793][ C1] RDX: 0000000000000000 RSI: 00000000200007c0 RDI: 0000000000000004 [ 191.913804][ C1] RBP: 00007fba034e308d R08: 0000000000000000 R09: 0000000000000000 [ 191.913815][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 191.913825][ C1] R13: 00007fff92a0bfdf R14: 00007fba0450c300 R15: 0000000000022000 [ 191.913843][ C1]