./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1474440268 <...> [ 17.480907][ T30] audit: type=1400 audit(1723002575.953:61): avc: denied { transition } for pid=225 comm="sshd" path="/bin/sh" dev="sda1" ino=89 scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 17.491277][ T30] audit: type=1400 audit(1723002575.953:62): avc: denied { noatsecure } for pid=225 comm="sshd" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 17.497784][ T30] audit: type=1400 audit(1723002575.953:63): avc: denied { write } for pid=225 comm="sh" path="pipe:[329]" dev="pipefs" ino=329 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1 [ 17.513255][ T30] audit: type=1400 audit(1723002575.953:64): avc: denied { rlimitinh } for pid=225 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 17.531878][ T30] audit: type=1400 audit(1723002575.953:65): avc: denied { siginh } for pid=225 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 Warning: Permanently added '10.128.0.18' (ED25519) to the list of known hosts. execve("./syz-executor1474440268", ["./syz-executor1474440268"], 0x7ffd4d3c8f30 /* 10 vars */) = 0 brk(NULL) = 0x555556ca0000 brk(0x555556ca0d00) = 0x555556ca0d00 arch_prctl(ARCH_SET_FS, 0x555556ca0380) = 0 set_tid_address(0x555556ca0650) = 299 set_robust_list(0x555556ca0660, 24) = 0 rseq(0x555556ca0ca0, 0x20, 0, 0x53053053) = -1 ENOSYS (Function not implemented) prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1474440268", 4096) = 28 getrandom("\xbb\x99\xec\x2e\xe9\x1e\x1b\x4a", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555556ca0d00 brk(0x555556cc1d00) = 0x555556cc1d00 brk(0x555556cc2000) = 0x555556cc2000 mprotect(0x7f5b6ff9a000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556ca0650) = 300 ./strace-static-x86_64: Process 300 attached [pid 300] set_robust_list(0x555556ca0660, 24) = 0 [pid 300] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 300] setpgid(0, 0) = 0 [pid 300] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 300] write(3, "1000", 4) = 4 [pid 300] close(3) = 0 [pid 300] write(1, "executing program\n", 18executing program ) = 18 [pid 300] socketpair(AF_UNIX, SOCK_STREAM, 0, [3, 4]) = 0 [pid 300] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=2, value_size=4, max_entries=2, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5 [pid 300] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000040, value=0x20000140, flags=BPF_ANY}, 32) = 0 [pid 300] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_UNSPEC, insn_cnt=12, insns=0x20000440, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = -1 EFAULT (Bad address) [ 31.527680][ T30] audit: type=1400 audit(1723002589.993:66): avc: denied { execmem } for pid=299 comm="syz-executor147" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 31.551844][ T30] audit: type=1400 audit(1723002590.023:67): avc: denied { map_create } for pid=300 comm="syz-executor147" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 31.571522][ T30] audit: type=1400 audit(1723002590.023:68): avc: denied { map_read map_write } for pid=300 comm="syz-executor147" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 31.592490][ T30] audit: type=1400 audit(1723002590.023:69): avc: denied { prog_load } for pid=300 comm="syz-executor147" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 31.612029][ T30] audit: type=1400 audit(1723002590.023:70): avc: denied { bpf } for pid=300 comm="syz-executor147" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 31.633066][ T30] audit: type=1400 audit(1723002590.023:71): avc: denied { perfmon } for pid=300 comm="syz-executor147" capability=38 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [pid 300] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 6 [pid 300] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="mm_page_alloc", prog_fd=6}}, 16) = 7 [pid 300] exit_group(0) = ? [pid 300] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=300, si_uid=0, si_status=0, si_utime=0, si_stime=72} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 301 attached [pid 301] set_robust_list(0x555556ca0660, 24) = 0 [pid 299] <... clone resumed>, child_tidptr=0x555556ca0650) = 301 [pid 301] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 301] setpgid(0, 0) = 0 [pid 301] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 301] write(3, "1000", 4) = 4 [pid 301] close(3executing program ) = 0 [pid 301] write(1, "executing program\n", 18) = 18 [pid 301] socketpair(AF_UNIX, SOCK_STREAM, 0, [3, 4]) = 0 [pid 301] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=2, value_size=4, max_entries=2, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5 [pid 301] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000040, value=0x20000140, flags=BPF_ANY}, 32) = 0 [pid 301] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_UNSPEC, insn_cnt=12, insns=0x20000440, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = -1 EFAULT (Bad address) [pid 301] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 6 [pid 301] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="mm_page_alloc", prog_fd=6}}, 16) = 7 [pid 301] exit_group(0) = ? [pid 301] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=301, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556ca0650) = 302 ./strace-static-x86_64: Process 302 attached [pid 302] set_robust_list(0x555556ca0660, 24) = 0 [pid 302] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 302] setpgid(0, 0) = 0 [pid 302] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 302] write(3, "1000", 4) = 4 [pid 302] close(3) = 0 [pid 302] write(1, "executing program\n", 18executing program ) = 18 [pid 302] socketpair(AF_UNIX, SOCK_STREAM, 0, [3, 4]) = 0 [pid 302] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=2, value_size=4, max_entries=2, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5 [pid 302] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000040, value=0x20000140, flags=BPF_ANY}, 32) = 0 [pid 302] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_UNSPEC, insn_cnt=12, insns=0x20000440, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = -1 EFAULT (Bad address) [pid 302] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 6 [pid 302] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="mm_page_alloc", prog_fd=6}}, 16) = 7 [pid 302] exit_group(0) = ? [pid 302] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=302, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [ 32.263221][ T30] audit: type=1400 audit(1723002590.733:72): avc: denied { prog_run } for pid=300 comm="syz-executor147" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556ca0650) = 304 ./strace-static-x86_64: Process 304 attached [pid 304] set_robust_list(0x555556ca0660, 24) = 0 [pid 304] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 304] setpgid(0, 0) = 0 [pid 304] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 304] write(3, "1000", 4) = 4 [pid 304] close(3) = 0 [pid 304] write(1, "executing program\n", 18executing program ) = 18 [pid 304] socketpair(AF_UNIX, SOCK_STREAM, 0, [3, 4]) = 0 [pid 304] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=2, value_size=4, max_entries=2, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5 [pid 304] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000040, value=0x20000140, flags=BPF_ANY}, 32) = 0 [pid 304] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_UNSPEC, insn_cnt=12, insns=0x20000440, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = -1 EFAULT (Bad address) [pid 304] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 6 [pid 304] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="mm_page_alloc", prog_fd=6}}, 16) = 7 [pid 304] exit_group(0) = ? [pid 304] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=304, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556ca0650) = 305 ./strace-static-x86_64: Process 305 attached [pid 305] set_robust_list(0x555556ca0660, 24) = 0 [pid 305] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 305] setpgid(0, 0) = 0 [pid 305] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 305] write(3, "1000", 4) = 4 [pid 305] close(3) = 0 executing program [pid 305] write(1, "executing program\n", 18) = 18 [pid 305] socketpair(AF_UNIX, SOCK_STREAM, 0, [3, 4]) = 0 [pid 305] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=2, value_size=4, max_entries=2, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5 [pid 305] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000040, value=0x20000140, flags=BPF_ANY}, 32) = 0 [pid 305] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_UNSPEC, insn_cnt=12, insns=0x20000440, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = -1 EFAULT (Bad address) [pid 305] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 6 [pid 305] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="mm_page_alloc", prog_fd=6}}, 16) = 7 [pid 305] exit_group(0) = ? [pid 305] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=305, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556ca0650) = 307 ./strace-static-x86_64: Process 307 attached [pid 307] set_robust_list(0x555556ca0660, 24) = 0 [pid 307] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 307] setpgid(0, 0) = 0 [pid 307] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 307] write(3, "1000", 4) = 4 [pid 307] close(3) = 0 [pid 307] write(1, "executing program\n", 18executing program ) = 18 [pid 307] socketpair(AF_UNIX, SOCK_STREAM, 0, [3, 4]) = 0 [pid 307] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=2, value_size=4, max_entries=2, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5 [pid 307] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000040, value=0x20000140, flags=BPF_ANY}, 32) = 0 [pid 307] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_UNSPEC, insn_cnt=12, insns=0x20000440, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = -1 EFAULT (Bad address) [pid 307] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 6 [pid 307] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="mm_page_alloc", prog_fd=6}}, 16) = 7 [pid 307] exit_group(0) = ? [pid 307] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=307, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556ca0650) = 308 ./strace-static-x86_64: Process 308 attached [pid 308] set_robust_list(0x555556ca0660, 24) = 0 [pid 308] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 308] setpgid(0, 0) = 0 [pid 308] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 308] write(3, "1000", 4) = 4 [pid 308] close(3) = 0 [pid 308] write(1, "executing program\n", 18) = 18 executing program [pid 308] socketpair(AF_UNIX, SOCK_STREAM, 0, [3, 4]) = 0 [pid 308] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=2, value_size=4, max_entries=2, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5 [pid 308] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000040, value=0x20000140, flags=BPF_ANY}, 32) = 0 [pid 308] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_UNSPEC, insn_cnt=12, insns=0x20000440, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = -1 EFAULT (Bad address) [pid 308] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 6 [pid 308] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="mm_page_alloc", prog_fd=6}}, 16) = 7 [pid 308] exit_group(0) = ? [pid 308] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=308, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556ca0650) = 309 ./strace-static-x86_64: Process 309 attached [pid 309] set_robust_list(0x555556ca0660, 24) = 0 [pid 309] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 309] setpgid(0, 0) = 0 [pid 309] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 309] write(3, "1000", 4executing program ) = 4 [pid 309] close(3) = 0 [pid 309] write(1, "executing program\n", 18) = 18 [pid 309] socketpair(AF_UNIX, SOCK_STREAM, 0, [3, 4]) = 0 [pid 309] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=2, value_size=4, max_entries=2, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5 [pid 309] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000040, value=0x20000140, flags=BPF_ANY}, 32) = 0 [pid 309] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_UNSPEC, insn_cnt=12, insns=0x20000440, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = -1 EFAULT (Bad address) [pid 309] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 6 [pid 309] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="mm_page_alloc", prog_fd=6}}, 16) = 7 [pid 309] exit_group(0) = ? [pid 309] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=309, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 310 attached [pid 310] set_robust_list(0x555556ca0660, 24) = 0 [pid 299] <... clone resumed>, child_tidptr=0x555556ca0650) = 310 [pid 310] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 310] setpgid(0, 0) = 0 [pid 310] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 310] write(3, "1000", 4) = 4 [pid 310] close(3) = 0 [pid 310] write(1, "executing program\n", 18executing program ) = 18 [pid 310] socketpair(AF_UNIX, SOCK_STREAM, 0, [3, 4]) = 0 [pid 310] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKHASH, key_size=2, value_size=4, max_entries=2, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 5 [pid 310] bpf(BPF_MAP_UPDATE_ELEM, {map_fd=5, key=0x20000040, value=0x20000140, flags=BPF_ANY}, 32) = 0 [pid 310] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_UNSPEC, insn_cnt=12, insns=0x20000440, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = -1 EFAULT (Bad address) [pid 310] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 6 [pid 310] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="mm_page_alloc", prog_fd=6}}, 16) = 7 [ 132.468818][ C1] rcu: INFO: rcu_preempt self-detected stall on CPU [ 132.475339][ C1] rcu: 1-...!: (10000 ticks this GP) idle=9b3/1/0x4000000000000000 softirq=2617/2617 fqs=0 last_accelerate: 9729/be39 dyntick_enabled: 1 [ 132.489200][ C1] (t=10000 jiffies g=1845 q=19) [ 132.493975][ C1] rcu: rcu_preempt kthread timer wakeup didn't happen for 9999 jiffies! g1845 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 [ 132.506501][ C1] rcu: Possible timer handling issue on cpu=1 timer-softirq=704 [ 132.514047][ C1] rcu: rcu_preempt kthread starved for 10000 jiffies! g1845 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=1 [ 132.525164][ C1] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 132.534968][ C1] rcu: RCU grace-period kthread stack dump: [ 132.540712][ C1] task:rcu_preempt state:I stack:28328 pid: 14 ppid: 2 flags:0x00004000 [ 132.549733][ C1] Call Trace: [ 132.552857][ C1] [ 132.555649][ C1] __schedule+0xccc/0x1590 [ 132.559885][ C1] ? __sched_text_start+0x8/0x8 [ 132.564571][ C1] ? __kasan_check_write+0x14/0x20 [ 132.569516][ C1] schedule+0x11f/0x1e0 [ 132.573511][ C1] schedule_timeout+0x18c/0x370 [ 132.578427][ C1] ? _raw_spin_unlock_irq+0x4e/0x70 [ 132.583449][ C1] ? console_conditional_schedule+0x30/0x30 [ 132.589170][ C1] ? update_process_times+0x200/0x200 [ 132.594408][ C1] ? prepare_to_swait_event+0x308/0x320 [ 132.599766][ C1] rcu_gp_fqs_loop+0x2af/0xf80 [ 132.604366][ C1] ? debug_smp_processor_id+0x17/0x20 [ 132.609812][ C1] ? __note_gp_changes+0x4ab/0x920 [ 132.614759][ C1] ? rcu_gp_init+0xc30/0xc30 [ 132.619687][ C1] ? _raw_spin_unlock_irq+0x4e/0x70 [ 132.625054][ C1] ? rcu_gp_init+0x9cf/0xc30 [ 132.629958][ C1] rcu_gp_kthread+0xa4/0x350 [ 132.634417][ C1] ? _raw_spin_lock+0x1b0/0x1b0 [ 132.639078][ C1] ? wake_nocb_gp+0x1e0/0x1e0 [ 132.643668][ C1] ? __kasan_check_read+0x11/0x20 [ 132.648609][ C1] ? __kthread_parkme+0xb2/0x200 [ 132.653393][ C1] kthread+0x421/0x510 [ 132.657294][ C1] ? wake_nocb_gp+0x1e0/0x1e0 [ 132.661895][ C1] ? kthread_blkcg+0xd0/0xd0 [ 132.666344][ C1] ret_from_fork+0x1f/0x30 [ 132.670886][ C1] [ 132.673912][ C1] rcu: Stack dump where RCU GP kthread last ran: [ 132.680192][ C1] NMI backtrace for cpu 1 [ 132.684369][ C1] CPU: 1 PID: 310 Comm: syz-executor147 Not tainted 5.15.152-syzkaller-00143-g70e1a731d986 #0 [ 132.694544][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 132.704533][ C1] Call Trace: [ 132.707741][ C1] [ 132.710518][ C1] dump_stack_lvl+0x151/0x1b7 [ 132.715034][ C1] ? io_uring_drop_tctx_refs+0x190/0x190 [ 132.720606][ C1] dump_stack+0x15/0x17 [ 132.724663][ C1] nmi_cpu_backtrace+0x2f7/0x300 [ 132.729443][ C1] ? nmi_trigger_cpumask_backtrace+0x270/0x270 [ 132.735522][ C1] ? panic+0x751/0x751 [ 132.739506][ C1] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 132.745540][ C1] nmi_trigger_cpumask_backtrace+0x15d/0x270 [ 132.751455][ C1] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 132.757546][ C1] arch_trigger_cpumask_backtrace+0x10/0x20 [ 132.763262][ C1] rcu_check_gp_kthread_starvation+0x1e3/0x250 [ 132.769241][ C1] ? rcu_check_gp_kthread_expired_fqs_timer+0x18e/0x230 [ 132.776043][ C1] print_cpu_stall+0x310/0x5f0 [ 132.780914][ C1] rcu_sched_clock_irq+0x989/0x12f0 [ 132.785999][ C1] ? rcu_boost_kthread_setaffinity+0x340/0x340 [ 132.792322][ C1] ? hrtimer_run_queues+0x15f/0x440 [ 132.797355][ C1] update_process_times+0x198/0x200 [ 132.802398][ C1] tick_sched_timer+0x188/0x240 [ 132.807332][ C1] ? tick_setup_sched_timer+0x480/0x480 [ 132.813500][ C1] __hrtimer_run_queues+0x41a/0xad0 [ 132.818900][ C1] ? hrtimer_interrupt+0xaa0/0xaa0 [ 132.824137][ C1] ? clockevents_program_event+0x22f/0x300 [ 132.829916][ C1] ? ktime_get_update_offsets_now+0x2ba/0x2d0 [ 132.836079][ C1] hrtimer_interrupt+0x40c/0xaa0 [ 132.840860][ C1] __sysvec_apic_timer_interrupt+0xfd/0x3c0 [ 132.846747][ C1] sysvec_apic_timer_interrupt+0x95/0xc0 [ 132.852246][ C1] [ 132.855012][ C1] [ 132.857866][ C1] asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 132.863818][ C1] RIP: 0010:kvm_wait+0x147/0x180 [ 132.868873][ C1] Code: 4c 89 e8 48 c1 e8 03 42 0f b6 04 20 84 c0 44 8b 74 24 1c 75 34 41 0f b6 45 00 44 38 f0 75 10 66 90 0f 00 2d 2b 02 13 04 fb f4 24 ff ff ff fb e9 1e ff ff ff 44 89 e9 80 e1 07 38 c1 7c a3 4c [ 132.889725][ C1] RSP: 0000:ffffc900009c6460 EFLAGS: 00000246 [ 132.895854][ C1] RAX: 0000000000000003 RBX: 1ffff92000138c90 RCX: ffffffff8155068f [ 132.903938][ C1] RDX: dffffc0000000000 RSI: 0000000000000003 RDI: ffff8881202a3398 [ 132.913268][ C1] RBP: ffffc900009c6510 R08: dffffc0000000000 R09: ffffed1024054674 [ 132.921410][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 132.929329][ C1] R13: ffff8881202a3398 R14: 0000000000000003 R15: 1ffff92000138c94 [ 132.937367][ C1] ? __pv_queued_spin_lock_slowpath+0x65f/0xc40 [ 132.944124][ C1] ? asm_sysvec_reschedule_ipi+0x1b/0x20 [ 132.950582][ C1] ? kvm_arch_para_hints+0x30/0x30 [ 132.955529][ C1] ? __pv_queued_spin_lock_slowpath+0x65f/0xc40 [ 132.962568][ C1] __pv_queued_spin_lock_slowpath+0x6bc/0xc40 [ 132.969819][ C1] ? __pv_queued_spin_unlock_slowpath+0x310/0x310 [ 132.977365][ C1] _raw_spin_lock_bh+0x139/0x1b0 [ 132.982556][ C1] ? _raw_spin_lock_irq+0x1b0/0x1b0 [ 132.988578][ C1] ? sock_hash_bucket_hash+0x31c/0x7e0 [ 132.994409][ C1] sock_hash_delete_elem+0xb1/0x2f0 [ 132.999465][ C1] bpf_prog_2c29ac5cdc6b1842+0x3a/0x4f0 [ 133.004901][ C1] bpf_trace_run4+0x13f/0x270 [ 133.009499][ C1] ? bpf_trace_run3+0x250/0x250 [ 133.014281][ C1] __bpf_trace_mm_page_alloc+0xbf/0xf0 [ 133.019746][ C1] __alloc_pages+0x3cb/0x8f0 [ 133.024170][ C1] ? prep_new_page+0x110/0x110 [ 133.029118][ C1] ? __bpf_trace_mm_page_alloc+0xbf/0xf0 [ 133.034757][ C1] ? stack_trace_save+0x113/0x1c0 [ 133.039708][ C1] ? stack_trace_save+0x1c0/0x1c0 [ 133.044666][ C1] __stack_depot_save+0x38d/0x470 [ 133.049877][ C1] stack_depot_save+0xe/0x10 [ 133.054652][ C1] save_stack+0x104/0x1e0 [ 133.058816][ C1] ? __reset_page_owner+0x190/0x190 [ 133.063847][ C1] ? post_alloc_hook+0x1a3/0x1b0 [ 133.068617][ C1] ? prep_new_page+0x1b/0x110 [ 133.073452][ C1] ? get_page_from_freelist+0x3550/0x35d0 [ 133.079029][ C1] ? __alloc_pages+0x27e/0x8f0 [ 133.083669][ C1] ? __stack_depot_save+0x38d/0x470 [ 133.088946][ C1] ? kasan_set_track+0x5d/0x70 [ 133.093553][ C1] ? kasan_set_free_info+0x23/0x40 [ 133.098505][ C1] ? ____kasan_slab_free+0x126/0x160 [ 133.103707][ C1] ? __kasan_slab_free+0x11/0x20 [ 133.108478][ C1] ? slab_free_freelist_hook+0xbd/0x190 [ 133.113874][ C1] ? kfree+0xc8/0x220 [ 133.117768][ C1] ? sock_map_unref+0x352/0x4d0 [ 133.122451][ C1] ? sock_hash_delete_elem+0x274/0x2f0 [ 133.127745][ C1] ? bpf_prog_2c29ac5cdc6b1842+0x3a/0x4f0 [ 133.133300][ C1] ? bpf_trace_run4+0x13f/0x270 [ 133.137986][ C1] ? __bpf_trace_mm_page_alloc+0xbf/0xf0 [ 133.143467][ C1] ? sanitize_ptr_alu+0x32b/0xac0 [ 133.148328][ C1] __set_page_owner+0x28/0x2e0 [ 133.152970][ C1] ? kernel_init_free_pages+0xda/0xf0 [ 133.158157][ C1] post_alloc_hook+0x1a3/0x1b0 [ 133.162819][ C1] prep_new_page+0x1b/0x110 [ 133.167163][ C1] get_page_from_freelist+0x3550/0x35d0 [ 133.172539][ C1] ? is_bpf_text_address+0x172/0x190 [ 133.177790][ C1] ? stack_trace_save+0x1c0/0x1c0 [ 133.182738][ C1] ? __kernel_text_address+0x9b/0x110 [ 133.187957][ C1] ? lruvec_init+0x150/0x150 [ 133.192378][ C1] ? __alloc_pages+0x8f0/0x8f0 [ 133.196980][ C1] ? __alloc_pages_bulk+0xe40/0xe40 [ 133.202014][ C1] ? stack_trace_save+0x1c0/0x1c0 [ 133.206985][ C1] __alloc_pages+0x27e/0x8f0 [ 133.211383][ C1] ? prep_new_page+0x110/0x110 [ 133.215989][ C1] ? stack_trace_save+0x113/0x1c0 [ 133.220839][ C1] ? stack_trace_snprint+0xf0/0xf0 [ 133.225883][ C1] __stack_depot_save+0x38d/0x470 [ 133.230737][ C1] ? kfree+0xc8/0x220 [ 133.234670][ C1] kasan_set_track+0x5d/0x70 [ 133.239070][ C1] ? kasan_set_track+0x4b/0x70 [ 133.243665][ C1] ? kasan_set_free_info+0x23/0x40 [ 133.248623][ C1] ? ____kasan_slab_free+0x126/0x160 [ 133.253749][ C1] ? __kasan_slab_free+0x11/0x20 [ 133.258614][ C1] ? slab_free_freelist_hook+0xbd/0x190 [ 133.263987][ C1] ? kfree+0xc8/0x220 [ 133.267815][ C1] ? sock_map_unref+0x352/0x4d0 [ 133.273119][ C1] ? sock_hash_delete_elem+0x274/0x2f0 [ 133.278751][ C1] ? bpf_prog_2c29ac5cdc6b1842+0x3a/0x4f0 [ 133.284295][ C1] ? bpf_trace_run4+0x13f/0x270 [ 133.288985][ C1] ? __bpf_trace_mm_page_alloc+0xbf/0xf0 [ 133.294619][ C1] ? __alloc_pages+0x3cb/0x8f0 [ 133.299219][ C1] ? wp_page_copy+0x200/0x1b00 [ 133.303931][ C1] ? do_wp_page+0x6fa/0xb60 [ 133.308449][ C1] ? handle_pte_fault+0x7c0/0x24d0 [ 133.313419][ C1] ? do_handle_mm_fault+0x20bc/0x2400 [ 133.318882][ C1] ? exc_page_fault+0x3b5/0x830 [ 133.323634][ C1] ? asm_exc_page_fault+0x27/0x30 [ 133.328836][ C1] ? post_alloc_hook+0x1a3/0x1b0 [ 133.333582][ C1] kasan_set_free_info+0x23/0x40 [ 133.338507][ C1] ____kasan_slab_free+0x126/0x160 [ 133.343522][ C1] __kasan_slab_free+0x11/0x20 [ 133.348119][ C1] slab_free_freelist_hook+0xbd/0x190 [ 133.353329][ C1] ? sock_map_unref+0x352/0x4d0 [ 133.358011][ C1] kfree+0xc8/0x220 [ 133.361685][ C1] sock_map_unref+0x352/0x4d0 [ 133.366530][ C1] sock_hash_delete_elem+0x274/0x2f0 [ 133.372258][ C1] bpf_prog_2c29ac5cdc6b1842+0x3a/0x4f0 [ 133.378239][ C1] bpf_trace_run4+0x13f/0x270 [ 133.382999][ C1] ? bpf_trace_run3+0x250/0x250 [ 133.388174][ C1] __bpf_trace_mm_page_alloc+0xbf/0xf0 [ 133.393705][ C1] __alloc_pages+0x3cb/0x8f0 [ 133.398636][ C1] ? prep_new_page+0x110/0x110 [ 133.403232][ C1] ? __kasan_check_write+0x14/0x20 [ 133.408221][ C1] ? cpumask_next+0x8a/0xb0 [ 133.412812][ C1] wp_page_copy+0x200/0x1b00 [ 133.417230][ C1] ? __kasan_check_write+0x14/0x20 [ 133.422316][ C1] ? insert_page_into_pte_locked+0x4e0/0x4e0 [ 133.428494][ C1] ? ttwu_queue_wakelist+0x316/0x510 [ 133.433614][ C1] ? __pte_map_lock+0x442/0x620 [ 133.438300][ C1] do_wp_page+0x6fa/0xb60 [ 133.442477][ C1] handle_pte_fault+0x7c0/0x24d0 [ 133.447250][ C1] ? _raw_spin_unlock_irqrestore+0x5c/0x80 [ 133.452879][ C1] ? fault_around_bytes_set+0xc0/0xc0 [ 133.458100][ C1] do_handle_mm_fault+0x20bc/0x2400 [ 133.463163][ C1] ? numa_migrate_prep+0xe0/0xe0 [ 133.467995][ C1] ? __kasan_check_write+0x14/0x20 [ 133.473028][ C1] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 133.477967][ C1] ? _raw_spin_lock_irqsave+0x210/0x210 [ 133.483392][ C1] ? down_read_trylock+0x3d6/0x7d0 [ 133.488378][ C1] ? cgroup_leave_frozen+0x164/0x2c0 [ 133.493505][ C1] ? __init_rwsem+0x1d0/0x1d0 [ 133.498059][ C1] ? ptrace_stop+0x6eb/0xa90 [ 133.502449][ C1] ? vmacache_find+0x21f/0x4d0 [ 133.507056][ C1] ? __find_vma+0x30/0x150 [ 133.511300][ C1] exc_page_fault+0x3b5/0x830 [ 133.516358][ C1] asm_exc_page_fault+0x27/0x30 [ 133.521033][ C1] RIP: 0033:0x7f5b6fefd2e0 [ 133.525305][ C1] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 0d 0d 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 00 3a 0a 00 0f 85 0f 02 00 00 4c 8d 25 f3 39 0a 00 4c [ 133.545440][ C1] RSP: 002b:00007ffda3903250 EFLAGS: 00010246 [ 133.551978][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001 [ 133.559877][ C1] RDX: 0000000000000001 RSI: 00007f5b6ff9e120 RDI: 0000000000000000 [ 133.567963][ C1] RBP: 00007f5b6ff9e120 R08: 0000000000000006 R09: 0000000000000006 [ 133.575966][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 133.583936][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001 [ 133.591762][ C1] [ 133.594677][ C1] NMI backtrace for cpu 1 [ 133.598894][ C1] CPU: 1 PID: 310 Comm: syz-executor147 Not tainted 5.15.152-syzkaller-00143-g70e1a731d986 #0 [ 133.609325][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 133.619679][ C1] Call Trace: [ 133.623361][ C1] [ 133.626087][ C1] dump_stack_lvl+0x151/0x1b7 [ 133.630965][ C1] ? io_uring_drop_tctx_refs+0x190/0x190 [ 133.636435][ C1] ? ttwu_do_wakeup+0x187/0x430 [ 133.641301][ C1] dump_stack+0x15/0x17 [ 133.645298][ C1] nmi_cpu_backtrace+0x2f7/0x300 [ 133.650123][ C1] ? nmi_trigger_cpumask_backtrace+0x270/0x270 [ 133.656457][ C1] ? _raw_spin_lock_irqsave+0xf9/0x210 [ 133.661756][ C1] ? __kasan_check_write+0x14/0x20 [ 133.666701][ C1] ? _raw_spin_lock+0x1b0/0x1b0 [ 133.671399][ C1] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 133.677512][ C1] nmi_trigger_cpumask_backtrace+0x15d/0x270 [ 133.683326][ C1] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 133.689234][ C1] arch_trigger_cpumask_backtrace+0x10/0x20 [ 133.695045][ C1] rcu_dump_cpu_stacks+0x1d8/0x330 [ 133.700076][ C1] print_cpu_stall+0x315/0x5f0 [ 133.704818][ C1] rcu_sched_clock_irq+0x989/0x12f0 [ 133.709951][ C1] ? rcu_boost_kthread_setaffinity+0x340/0x340 [ 133.716510][ C1] ? hrtimer_run_queues+0x15f/0x440 [ 133.722746][ C1] update_process_times+0x198/0x200 [ 133.728715][ C1] tick_sched_timer+0x188/0x240 [ 133.733809][ C1] ? tick_setup_sched_timer+0x480/0x480 [ 133.739394][ C1] __hrtimer_run_queues+0x41a/0xad0 [ 133.744610][ C1] ? hrtimer_interrupt+0xaa0/0xaa0 [ 133.749548][ C1] ? clockevents_program_event+0x22f/0x300 [ 133.755365][ C1] ? ktime_get_update_offsets_now+0x2ba/0x2d0 [ 133.761590][ C1] hrtimer_interrupt+0x40c/0xaa0 [ 133.766360][ C1] __sysvec_apic_timer_interrupt+0xfd/0x3c0 [ 133.773040][ C1] sysvec_apic_timer_interrupt+0x95/0xc0 [ 133.778955][ C1] [ 133.781899][ C1] [ 133.784810][ C1] asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 133.790941][ C1] RIP: 0010:kvm_wait+0x147/0x180 [ 133.795711][ C1] Code: 4c 89 e8 48 c1 e8 03 42 0f b6 04 20 84 c0 44 8b 74 24 1c 75 34 41 0f b6 45 00 44 38 f0 75 10 66 90 0f 00 2d 2b 02 13 04 fb f4 24 ff ff ff fb e9 1e ff ff ff 44 89 e9 80 e1 07 38 c1 7c a3 4c [ 133.815769][ C1] RSP: 0000:ffffc900009c6460 EFLAGS: 00000246 [ 133.821656][ C1] RAX: 0000000000000003 RBX: 1ffff92000138c90 RCX: ffffffff8155068f [ 133.829559][ C1] RDX: dffffc0000000000 RSI: 0000000000000003 RDI: ffff8881202a3398 [ 133.837368][ C1] RBP: ffffc900009c6510 R08: dffffc0000000000 R09: ffffed1024054674 [ 133.845377][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 133.853162][ C1] R13: ffff8881202a3398 R14: 0000000000000003 R15: 1ffff92000138c94 [ 133.861421][ C1] ? __pv_queued_spin_lock_slowpath+0x65f/0xc40 [ 133.867691][ C1] ? asm_sysvec_reschedule_ipi+0x1b/0x20 [ 133.873281][ C1] ? kvm_arch_para_hints+0x30/0x30 [ 133.878457][ C1] ? __pv_queued_spin_lock_slowpath+0x65f/0xc40 [ 133.884519][ C1] __pv_queued_spin_lock_slowpath+0x6bc/0xc40 [ 133.891073][ C1] ? __pv_queued_spin_unlock_slowpath+0x310/0x310 [ 133.897487][ C1] _raw_spin_lock_bh+0x139/0x1b0 [ 133.902423][ C1] ? _raw_spin_lock_irq+0x1b0/0x1b0 [ 133.907584][ C1] ? sock_hash_bucket_hash+0x31c/0x7e0 [ 133.912971][ C1] sock_hash_delete_elem+0xb1/0x2f0 [ 133.918083][ C1] bpf_prog_2c29ac5cdc6b1842+0x3a/0x4f0 [ 133.924075][ C1] bpf_trace_run4+0x13f/0x270 [ 133.928584][ C1] ? bpf_trace_run3+0x250/0x250 [ 133.933278][ C1] __bpf_trace_mm_page_alloc+0xbf/0xf0 [ 133.938829][ C1] __alloc_pages+0x3cb/0x8f0 [ 133.943252][ C1] ? prep_new_page+0x110/0x110 [ 133.947856][ C1] ? __bpf_trace_mm_page_alloc+0xbf/0xf0 [ 133.953320][ C1] ? stack_trace_save+0x113/0x1c0 [ 133.958221][ C1] ? stack_trace_save+0x1c0/0x1c0 [ 133.963138][ C1] __stack_depot_save+0x38d/0x470 [ 133.968000][ C1] stack_depot_save+0xe/0x10 [ 133.972420][ C1] save_stack+0x104/0x1e0 [ 133.976589][ C1] ? __reset_page_owner+0x190/0x190 [ 133.981624][ C1] ? post_alloc_hook+0x1a3/0x1b0 [ 133.986398][ C1] ? prep_new_page+0x1b/0x110 [ 133.990911][ C1] ? get_page_from_freelist+0x3550/0x35d0 [ 133.996487][ C1] ? __alloc_pages+0x27e/0x8f0 [ 134.001157][ C1] ? __stack_depot_save+0x38d/0x470 [ 134.006299][ C1] ? kasan_set_track+0x5d/0x70 [ 134.010896][ C1] ? kasan_set_free_info+0x23/0x40 [ 134.015922][ C1] ? ____kasan_slab_free+0x126/0x160 [ 134.021046][ C1] ? __kasan_slab_free+0x11/0x20 [ 134.025917][ C1] ? slab_free_freelist_hook+0xbd/0x190 [ 134.031461][ C1] ? kfree+0xc8/0x220 [ 134.035279][ C1] ? sock_map_unref+0x352/0x4d0 [ 134.040087][ C1] ? sock_hash_delete_elem+0x274/0x2f0 [ 134.045436][ C1] ? bpf_prog_2c29ac5cdc6b1842+0x3a/0x4f0 [ 134.050943][ C1] ? bpf_trace_run4+0x13f/0x270 [ 134.055639][ C1] ? __bpf_trace_mm_page_alloc+0xbf/0xf0 [ 134.061095][ C1] ? sanitize_ptr_alu+0x32b/0xac0 [ 134.065957][ C1] __set_page_owner+0x28/0x2e0 [ 134.070555][ C1] ? kernel_init_free_pages+0xda/0xf0 [ 134.075779][ C1] post_alloc_hook+0x1a3/0x1b0 [ 134.080698][ C1] prep_new_page+0x1b/0x110 [ 134.085038][ C1] get_page_from_freelist+0x3550/0x35d0 [ 134.090416][ C1] ? is_bpf_text_address+0x172/0x190 [ 134.095533][ C1] ? stack_trace_save+0x1c0/0x1c0 [ 134.100388][ C1] ? __kernel_text_address+0x9b/0x110 [ 134.105615][ C1] ? lruvec_init+0x150/0x150 [ 134.110030][ C1] ? __alloc_pages+0x8f0/0x8f0 [ 134.114804][ C1] ? __alloc_pages_bulk+0xe40/0xe40 [ 134.119848][ C1] ? stack_trace_save+0x1c0/0x1c0 [ 134.124700][ C1] __alloc_pages+0x27e/0x8f0 [ 134.129123][ C1] ? prep_new_page+0x110/0x110 [ 134.133722][ C1] ? stack_trace_save+0x113/0x1c0 [ 134.138593][ C1] ? stack_trace_snprint+0xf0/0xf0 [ 134.143532][ C1] __stack_depot_save+0x38d/0x470 [ 134.148393][ C1] ? kfree+0xc8/0x220 [ 134.152208][ C1] kasan_set_track+0x5d/0x70 [ 134.156632][ C1] ? kasan_set_track+0x4b/0x70 [ 134.161383][ C1] ? kasan_set_free_info+0x23/0x40 [ 134.166329][ C1] ? ____kasan_slab_free+0x126/0x160 [ 134.171545][ C1] ? __kasan_slab_free+0x11/0x20 [ 134.176524][ C1] ? slab_free_freelist_hook+0xbd/0x190 [ 134.182710][ C1] ? kfree+0xc8/0x220 [ 134.186559][ C1] ? sock_map_unref+0x352/0x4d0 [ 134.191463][ C1] ? sock_hash_delete_elem+0x274/0x2f0 [ 134.197117][ C1] ? bpf_prog_2c29ac5cdc6b1842+0x3a/0x4f0 [ 134.202716][ C1] ? bpf_trace_run4+0x13f/0x270 [ 134.207499][ C1] ? __bpf_trace_mm_page_alloc+0xbf/0xf0 [ 134.213467][ C1] ? __alloc_pages+0x3cb/0x8f0 [ 134.218057][ C1] ? wp_page_copy+0x200/0x1b00 [ 134.222964][ C1] ? do_wp_page+0x6fa/0xb60 [ 134.227276][ C1] ? handle_pte_fault+0x7c0/0x24d0 [ 134.232628][ C1] ? do_handle_mm_fault+0x20bc/0x2400 [ 134.238130][ C1] ? exc_page_fault+0x3b5/0x830 [ 134.242839][ C1] ? asm_exc_page_fault+0x27/0x30 [ 134.248022][ C1] ? post_alloc_hook+0x1a3/0x1b0 [ 134.253060][ C1] kasan_set_free_info+0x23/0x40 [ 134.258043][ C1] ____kasan_slab_free+0x126/0x160 [ 134.263169][ C1] __kasan_slab_free+0x11/0x20 [ 134.267763][ C1] slab_free_freelist_hook+0xbd/0x190 [ 134.272997][ C1] ? sock_map_unref+0x352/0x4d0 [ 134.277751][ C1] kfree+0xc8/0x220 [ 134.281480][ C1] sock_map_unref+0x352/0x4d0 [ 134.285997][ C1] sock_hash_delete_elem+0x274/0x2f0 [ 134.291127][ C1] bpf_prog_2c29ac5cdc6b1842+0x3a/0x4f0 [ 134.296522][ C1] bpf_trace_run4+0x13f/0x270 [ 134.301009][ C1] ? bpf_trace_run3+0x250/0x250 [ 134.305720][ C1] __bpf_trace_mm_page_alloc+0xbf/0xf0 [ 134.310996][ C1] __alloc_pages+0x3cb/0x8f0 [ 134.315424][ C1] ? prep_new_page+0x110/0x110 [ 134.320318][ C1] ? __kasan_check_write+0x14/0x20 [ 134.325357][ C1] ? cpumask_next+0x8a/0xb0 [ 134.330039][ C1] wp_page_copy+0x200/0x1b00 [ 134.334877][ C1] ? __kasan_check_write+0x14/0x20 [ 134.340075][ C1] ? insert_page_into_pte_locked+0x4e0/0x4e0 [ 134.346275][ C1] ? ttwu_queue_wakelist+0x316/0x510 [ 134.351481][ C1] ? __pte_map_lock+0x442/0x620 [ 134.356268][ C1] do_wp_page+0x6fa/0xb60 [ 134.360814][ C1] handle_pte_fault+0x7c0/0x24d0 [ 134.365628][ C1] ? _raw_spin_unlock_irqrestore+0x5c/0x80 [ 134.371402][ C1] ? fault_around_bytes_set+0xc0/0xc0 [ 134.376650][ C1] do_handle_mm_fault+0x20bc/0x2400 [ 134.382032][ C1] ? numa_migrate_prep+0xe0/0xe0 [ 134.386891][ C1] ? __kasan_check_write+0x14/0x20 [ 134.391912][ C1] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 134.396942][ C1] ? _raw_spin_lock_irqsave+0x210/0x210 [ 134.402326][ C1] ? down_read_trylock+0x3d6/0x7d0 [ 134.407356][ C1] ? cgroup_leave_frozen+0x164/0x2c0 [ 134.412592][ C1] ? __init_rwsem+0x1d0/0x1d0 [ 134.417096][ C1] ? ptrace_stop+0x6eb/0xa90 [ 134.421529][ C1] ? vmacache_find+0x21f/0x4d0 [ 134.426128][ C1] ? __find_vma+0x30/0x150 [ 134.430382][ C1] exc_page_fault+0x3b5/0x830 [ 134.434929][ C1] asm_exc_page_fault+0x27/0x30 [ 134.439663][ C1] RIP: 0033:0x7f5b6fefd2e0 [ 134.443921][ C1] Code: 41 54 55 48 89 f5 53 89 fb 48 83 ec 18 48 83 3d 0d 0d 0a 00 00 89 54 24 0c 74 08 84 c9 0f 85 09 02 00 00 31 c0 ba 01 00 00 00 0f b1 15 00 3a 0a 00 0f 85 0f 02 00 00 4c 8d 25 f3 39 0a 00 4c [ 134.463750][ C1] RSP: 002b:00007ffda3903250 EFLAGS: 00010246 [ 134.470236][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000001 [ 134.478038][ C1] RDX: 0000000000000001 RSI: 00007f5b6ff9e120 RDI: 0000000000000000 [ 134.485870][ C1] RBP: 00007f5b6ff9e120 R08: 0000000000000006 R09: 0000000000000006 [ 134.493666][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 134.501479][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001 [ 134.509575][ C1] [ 177.181071][ C0] watchdog: BUG: soft lockup - CPU#0 stuck for 144s! [init:311] [ 177.188678][ C0] Modules linked in: [ 177.192413][ C0] CPU: 0 PID: 311 Comm: init Not tainted 5.15.152-syzkaller-00143-g70e1a731d986 #0 [ 177.201526][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 177.211420][ C0] RIP: 0010:kvm_wait+0x147/0x180 [ 177.216185][ C0] Code: 4c 89 e8 48 c1 e8 03 42 0f b6 04 20 84 c0 44 8b 74 24 1c 75 34 41 0f b6 45 00 44 38 f0 75 10 66 90 0f 00 2d 2b 02 13 04 fb f4 24 ff ff ff fb e9 1e ff ff ff 44 89 e9 80 e1 07 38 c1 7c a3 4c [ 177.236332][ C0] RSP: 0018:ffffc900009d7600 EFLAGS: 00000246 [ 177.242229][ C0] RAX: 0000000000000001 RBX: 1ffff9200013aec4 RCX: 1ffffffff0d5aa9c [ 177.250036][ C0] RDX: 0000000000000001 RSI: 0000000000000001 RDI: ffff8881f7038ad4 [ 177.257851][ C0] RBP: ffffc900009d76b0 R08: dffffc0000000000 R09: ffffed103ee0715b [ 177.265661][ C0] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 177.273476][ C0] R13: ffff8881f7038ad4 R14: 0000000000000001 R15: 1ffff9200013aec8 [ 177.281459][ C0] FS: 00007fb9b8f56380(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 177.290230][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 177.296650][ C0] CR2: 00007ffda39031a8 CR3: 000000010bd6d000 CR4: 00000000003506b0 [ 177.304465][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 177.312273][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 177.320106][ C0] Call Trace: [ 177.323209][ C0] [ 177.325902][ C0] ? show_regs+0x58/0x60 [ 177.330006][ C0] ? watchdog_timer_fn+0x4b1/0x5f0 [ 177.334941][ C0] ? proc_watchdog_cpumask+0xd0/0xd0 [ 177.340050][ C0] ? __hrtimer_run_queues+0x41a/0xad0 [ 177.345437][ C0] ? hrtimer_interrupt+0xaa0/0xaa0 [ 177.350383][ C0] ? clockevents_program_event+0x22f/0x300 [ 177.356022][ C0] ? ktime_get_update_offsets_now+0x2ba/0x2d0 [ 177.362363][ C0] ? hrtimer_interrupt+0x40c/0xaa0 [ 177.367314][ C0] ? __sysvec_apic_timer_interrupt+0xfd/0x3c0 [ 177.373290][ C0] ? sysvec_apic_timer_interrupt+0x95/0xc0 [ 177.378939][ C0] [ 177.381709][ C0] [ 177.384505][ C0] ? asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 177.390481][ C0] ? kvm_wait+0x147/0x180 [ 177.394645][ C0] ? kvm_arch_para_hints+0x30/0x30 [ 177.399595][ C0] ? kasan_check_range+0x6/0x2a0 [ 177.404364][ C0] __pv_queued_spin_lock_slowpath+0x41b/0xc40 [ 177.410270][ C0] ? get_page_from_freelist+0x3550/0x35d0 [ 177.415819][ C0] ? __pv_queued_spin_unlock_slowpath+0x310/0x310 [ 177.422080][ C0] _raw_spin_lock_bh+0x139/0x1b0 [ 177.426848][ C0] ? _raw_spin_lock_irq+0x1b0/0x1b0 [ 177.432141][ C0] ? sock_hash_bucket_hash+0x31c/0x7e0 [ 177.437438][ C0] sock_hash_delete_elem+0xb1/0x2f0 [ 177.442493][ C0] bpf_prog_2c29ac5cdc6b1842+0x3a/0x4f0 [ 177.447860][ C0] bpf_trace_run4+0x13f/0x270 [ 177.452375][ C0] ? bpf_trace_run3+0x250/0x250 [ 177.457076][ C0] __bpf_trace_mm_page_alloc+0xbf/0xf0 [ 177.462445][ C0] __alloc_pages+0x3cb/0x8f0 [ 177.467060][ C0] ? do_syscall_64+0x49/0xb0 [ 177.471494][ C0] ? prep_new_page+0x110/0x110 [ 177.476096][ C0] new_slab+0x9a/0x4e0 [ 177.479991][ C0] ___slab_alloc+0x39e/0x830 [ 177.484512][ C0] ? getname_flags+0xba/0x520 [ 177.489036][ C0] ? getname_flags+0xba/0x520 [ 177.493529][ C0] __slab_alloc+0x4a/0x90 [ 177.497701][ C0] ? getname_flags+0xba/0x520 [ 177.502312][ C0] kmem_cache_alloc+0x134/0x200 [ 177.506990][ C0] getname_flags+0xba/0x520 [ 177.511506][ C0] getname+0x19/0x20 [ 177.515231][ C0] do_sys_openat2+0xd7/0x830 [ 177.519752][ C0] ? do_sys_open+0x220/0x220 [ 177.524171][ C0] ? blkcg_maybe_throttle_current+0x17d/0xa00 [ 177.530091][ C0] __x64_sys_openat+0x243/0x290 [ 177.534767][ C0] ? __ia32_sys_open+0x270/0x270 [ 177.539557][ C0] ? debug_smp_processor_id+0x17/0x20 [ 177.544743][ C0] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 177.550646][ C0] ? exit_to_user_mode_prepare+0x39/0xa0 [ 177.556204][ C0] do_syscall_64+0x3d/0xb0 [ 177.560459][ C0] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 177.566275][ C0] RIP: 0033:0x7fb9b90aa9a4 [ 177.570529][ C0] Code: 24 20 48 8d 44 24 30 48 89 44 24 28 64 8b 04 25 18 00 00 00 85 c0 75 2c 44 89 e2 48 89 ee bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 76 60 48 8b 15 55 a4 0d 00 f7 d8 64 89 02 48 83 [ 177.590053][ C0] RSP: 002b:00007ffca4c3ccd0 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 177.598299][ C0] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fb9b90aa9a4 [ 177.606207][ C0] RDX: 0000000000000802 RSI: 000056071abffa5d RDI: 00000000ffffff9c [ 177.614008][ C0] RBP: 000056071abffa5d R08: 0000000000000000 R09: 0000000000000000 [ 177.622285][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000802 [ 177.630067][ C0] R13: 0000000000000002 R14: 0000000000000802 R15: 00007fb9b9287a80 [ 177.638132][ C0]