Warning: Permanently added '10.128.10.18' (ED25519) to the list of known hosts. [ 193.115548][ T29] audit: type=1400 audit(1716194973.660:87): avc: denied { execmem } for pid=5099 comm="syz-executor272" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 193.156098][ T29] audit: type=1400 audit(1716194973.700:88): avc: denied { mounton } for pid=5105 comm="syz-executor272" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 193.186461][ T29] audit: type=1400 audit(1716194973.700:89): avc: denied { mount } for pid=5105 comm="syz-executor272" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 193.210105][ T29] audit: type=1400 audit(1716194973.700:90): avc: denied { create } for pid=5106 comm="syz-executor272" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 193.230982][ T29] audit: type=1400 audit(1716194973.700:91): avc: denied { create } for pid=5105 comm="syz-executor272" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 193.252844][ T29] audit: type=1400 audit(1716194973.700:92): avc: denied { read write } for pid=5105 comm="syz-executor272" name="vhci" dev="devtmpfs" ino=1077 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 193.266225][ T5122] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 193.277678][ T29] audit: type=1400 audit(1716194973.700:93): avc: denied { read write } for pid=5106 comm="syz-executor272" name="vhci" dev="devtmpfs" ino=1077 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 193.286023][ T5123] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 193.316101][ T5122] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 193.323414][ T29] audit: type=1400 audit(1716194973.700:94): avc: denied { open } for pid=5106 comm="syz-executor272" path="/dev/vhci" dev="devtmpfs" ino=1077 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 193.323886][ T5122] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 193.348073][ T29] audit: type=1400 audit(1716194973.700:95): avc: denied { open } for pid=5105 comm="syz-executor272" path="/dev/vhci" dev="devtmpfs" ino=1077 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 193.355360][ T5123] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 193.380745][ T5124] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 193.386481][ T5122] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 193.393456][ T5124] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 193.401221][ T5123] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 193.407300][ T5124] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 193.414379][ T29] audit: type=1400 audit(1716194973.740:96): avc: denied { ioctl } for pid=5106 comm="syz-executor272" path="socket:[4481]" dev="sockfs" ino=4481 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 193.421735][ T5124] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 193.446186][ T5123] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 193.454762][ T5124] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 193.460892][ T5123] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 193.468687][ T5124] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 193.481914][ T5125] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 193.489072][ T5125] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 193.489592][ T5123] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 193.497597][ T5125] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 193.504818][ T5123] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 193.511767][ T5124] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 193.517891][ T5123] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 193.524207][ T5126] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 193.538176][ T5120] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 193.538559][ T5125] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 193.545785][ T5120] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 193.553024][ T5124] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 193.568054][ T5124] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 193.586687][ T5127] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 193.600695][ T5127] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 executing program [ 298.945432][ C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 298.952493][ C1] rcu: (detected by 1, t=10502 jiffies, g=6917, q=32 ncpus=2) [ 298.960048][ C1] rcu: All QSes seen, last rcu_preempt kthread activity 10498 (4294966968-4294956470), jiffies_till_next_fqs=1, root ->qsmask 0x0 [ 298.973432][ C1] rcu: rcu_preempt kthread starved for 10499 jiffies! g6917 f0x2 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 298.984558][ C1] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 298.994976][ C1] rcu: RCU grace-period kthread stack dump: [ 299.000869][ C1] task:rcu_preempt state:R running task stack:28752 pid:17 tgid:17 ppid:2 flags:0x00004000 [ 299.012635][ C1] Call Trace: [ 299.015926][ C1] [ 299.018873][ C1] __schedule+0xf15/0x5d00 [ 299.023523][ C1] ? __pfx___lock_acquire+0x10/0x10 [ 299.028812][ C1] ? __pfx___schedule+0x10/0x10 [ 299.033699][ C1] ? schedule+0x298/0x350 [ 299.038086][ C1] ? __pfx_lock_release+0x10/0x10 [ 299.043145][ C1] ? __pfx___mod_timer+0x10/0x10 [ 299.048135][ C1] ? lock_acquire+0x1b1/0x560 [ 299.052844][ C1] ? lockdep_init_map_type+0x16d/0x7d0 [ 299.058338][ C1] schedule+0xe7/0x350 [ 299.062438][ C1] schedule_timeout+0x136/0x2a0 [ 299.067354][ C1] ? __pfx_schedule_timeout+0x10/0x10 [ 299.072758][ C1] ? __pfx_process_timeout+0x10/0x10 [ 299.078071][ C1] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 299.083911][ C1] ? prepare_to_swait_event+0xf0/0x470 [ 299.089406][ C1] rcu_gp_fqs_loop+0x1eb/0xb00 [ 299.094229][ C1] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 299.099555][ C1] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 299.105397][ C1] rcu_gp_kthread+0x271/0x380 [ 299.110110][ C1] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 299.115339][ C1] ? lockdep_hardirqs_on+0x7c/0x110 [ 299.120561][ C1] ? __kthread_parkme+0x148/0x220 [ 299.125655][ C1] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 299.130886][ C1] kthread+0x2c1/0x3a0 [ 299.134986][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 299.140221][ C1] ? __pfx_kthread+0x10/0x10 [ 299.144841][ C1] ret_from_fork+0x45/0x80 [ 299.149314][ C1] ? __pfx_kthread+0x10/0x10 [ 299.153933][ C1] ret_from_fork_asm+0x1a/0x30 [ 299.158749][ C1] [ 299.161778][ C1] rcu: Stack dump where RCU GP kthread last ran: [ 299.168119][ C1] Sending NMI from CPU 1 to CPUs 0: [ 299.173346][ C0] NMI backtrace for cpu 0 [ 299.173357][ C0] CPU: 0 PID: 5131 Comm: syz-executor272 Not tainted 6.9.0-syzkaller-09429-g61307b7be41a #0 [ 299.173381][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 299.173393][ C0] RIP: 0010:lock_acquire+0xe/0x560 [ 299.173431][ C0] Code: ff ff 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 b8 00 00 00 00 00 fc ff df <41> 57 4d 89 cf 41 56 49 89 fe 41 55 41 89 d5 41 54 45 89 c4 55 53 [ 299.173451][ C0] RSP: 0018:ffffc90000007d10 EFLAGS: 00000046 [ 299.173469][ C0] RAX: dffffc0000000000 RBX: ffff888023b66540 RCX: 0000000000000002 [ 299.173484][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff8dbb1760 [ 299.173498][ C0] RBP: ffff8880292c28c0 R08: 0000000000000000 R09: 0000000000000000 [ 299.173512][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 299.173525][ C0] R13: 0000000000000001 R14: 1ffff92000000faa R15: ffff888079754070 [ 299.173540][ C0] FS: 000055555b1a53c0(0000) GS:ffff8880b9200000(0000) knlGS:0000000000000000 [ 299.173563][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 299.173579][ C0] CR2: 000000002006b000 CR3: 0000000079752000 CR4: 00000000003506f0 [ 299.173593][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 299.173607][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 299.173620][ C0] Call Trace: [ 299.173628][ C0] [ 299.173636][ C0] ? show_regs+0x8c/0xa0 [ 299.173690][ C0] ? nmi_cpu_backtrace+0x1d8/0x390 [ 299.173775][ C0] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 299.173806][ C0] ? nmi_handle+0x1a9/0x5c0 [ 299.173839][ C0] ? lock_acquire+0xe/0x560 [ 299.173871][ C0] ? default_do_nmi+0x6a/0x160 [ 299.173920][ C0] ? exc_nmi+0x170/0x1e0 [ 299.173950][ C0] ? end_repeat_nmi+0xf/0x53 [ 299.174035][ C0] ? lock_acquire+0xe/0x560 [ 299.174066][ C0] ? lock_acquire+0xe/0x560 [ 299.174098][ C0] ? lock_acquire+0xe/0x560 [ 299.174129][ C0] [ 299.174136][ C0] [ 299.174142][ C0] send_sigqueue+0x112/0x850 [ 299.174169][ C0] ? send_sigqueue+0x10c/0x850 [ 299.174190][ C0] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 299.174213][ C0] ? __pfx_send_sigqueue+0x10/0x10 [ 299.174236][ C0] posix_timer_fn+0x181/0x3e0 [ 299.174270][ C0] ? do_raw_spin_unlock+0x172/0x230 [ 299.174293][ C0] ? __pfx_posix_timer_fn+0x10/0x10 [ 299.174325][ C0] __hrtimer_run_queues+0x20c/0xcc0 [ 299.174354][ C0] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 299.174380][ C0] ? ktime_get_update_offsets_now+0x201/0x310 [ 299.174416][ C0] hrtimer_interrupt+0x31b/0x800 [ 299.174445][ C0] __sysvec_apic_timer_interrupt+0x10f/0x450 [ 299.174481][ C0] sysvec_apic_timer_interrupt+0x90/0xb0 [ 299.174504][ C0] [ 299.174510][ C0] [ 299.174517][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 299.174548][ C0] RIP: 0010:_raw_spin_unlock_irq+0x29/0x50 [ 299.174583][ C0] Code: 90 f3 0f 1e fa 53 48 8b 74 24 08 48 89 fb 48 83 c7 18 e8 7a 10 82 f6 48 89 df e8 62 8d 82 f6 e8 cd 79 ab f6 fb bf 01 00 00 00 e2 cd 73 f6 65 8b 05 73 1b 1a 75 85 c0 74 06 5b c3 cc cc cc cc [ 299.174603][ C0] RSP: 0018:ffffc900031c7cf0 EFLAGS: 00000206 [ 299.174619][ C0] RAX: 00000000039dad7d RBX: ffff88802f234a00 RCX: 1ffffffff1fc7951 [ 299.174634][ C0] RDX: 0000000000000000 RSI: ffffffff8b2cab60 RDI: 0000000000000001 [ 299.174653][ C0] RBP: ffff88802f234e00 R08: 0000000000000001 R09: 0000000000000001 [ 299.174667][ C0] R10: ffffffff8fe40d17 R11: 0000000000000000 R12: 0000000000000000 [ 299.174681][ C0] R13: 0000000000000021 R14: ffff88802f234a00 R15: ffff88802f234a00 [ 299.174700][ C0] get_signal+0x1e3e/0x2710 [ 299.174729][ C0] ? __pfx_get_signal+0x10/0x10 [ 299.174755][ C0] ? do_sigaltstack.constprop.0+0x547/0x800 [ 299.174789][ C0] arch_do_signal_or_restart+0x90/0x7e0 [ 299.174817][ C0] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 299.174844][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 299.174877][ C0] ? __do_sys_rt_sigreturn+0x167/0x230 [ 299.174904][ C0] ? __pfx___do_sys_rt_sigreturn+0x10/0x10 [ 299.174933][ C0] syscall_exit_to_user_mode+0x14a/0x2a0 [ 299.174959][ C0] do_syscall_64+0xdc/0x260 [ 299.174985][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 299.175015][ C0] RIP: 0033:0x7f77e737de79 [ 299.175030][ C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 299.175050][ C0] RSP: 002b:00007fff29e799c8 EFLAGS: 00000246 [ 299.175066][ C0] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 00007f77e737de79 [ 299.175080][ C0] RDX: 000000002006b000 RSI: 0000000000000000 RDI: 0000000000000000 [ 299.175093][ C0] RBP: 00000000000f4240 R08: 0000000000000000 R09: 0000000000000000 [ 299.175107][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 000055555b1a5370 [ 299.175121][ C0] R13: 0000000000000003 R14: 00007fff29e79a40 R15: 00007fff29e79a30 [ 299.175138][ C0] [ 299.175146][ C0] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.801 msecs