last executing test programs: 480.737085ms ago: executing program 0 (id=1): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x400, 0x0, 0x0, 0x1}, 0x0, 0xafffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x5452, &(0x7f00000006c0)='\x02;\xe5\b\x00\x1c\x9c\x00\x00\x00\x00\x00\x00\x91\xecB\xdcZ\xe5\xbd$\x05\x90\xa9\xf3\xc7\xcb\xb7\xf0\xa1;#\x989\xe9\x12\xdf^6T\xdf\xcd\x02\xc5\xb0\xba\x12\'QXp\t\xfc\xf3\x01\x02\xbc\xbf\xc0\xf0\x10\xee\xd3\\yy\xa4\xf9\xe8\x00\xdd\xe97 0_\xe4]W\xf7~\xacVK\xc9t\x9e+:\x85\xef\x94\x0e\x19\x9cV[N.\xeb\x9fJ>\xd9\x99\x88\xd8\xdd\xb8Y\xc3$\xc6\x93\v\x04REY\xf4\xea\xf2\xcd\xcd.\x16\x861\xa1\v\x8d\x8e\x84R\xa6\x83\x84\xc0\x01e\xc3\xc8\xcc?\xc8?\x19\xb2\xa2\xe1\xac<\xe9f\x11\xff3\xc7\x19\x9e\x19\xf5-\xfe\xbd\xae\xbbR\x82\x16\xf9\x15S\x03U\xe0\xd8t\xe3%96') ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f0000000200)=0x7fff) r1 = bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r1, 0x0, 0x0}, 0x20) syz_clone(0x20021104, 0x0, 0x0, 0x0, 0x0, 0x0) 237.512733ms ago: executing program 4 (id=5): perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xca}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) close(r1) openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r3, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0) recvmsg$unix(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xa0}, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x3a0ffffffff) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000006000000000000000095"], &(0x7f0000000000)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r4}, 0x10) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x4) r6 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) write$cgroup_subtree(r5, &(0x7f0000000200)=ANY=[@ANYRES8=r1, @ANYRES8=r6], 0x12) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000000000000000001000000009500000000000000301aeb9aa6672a43ea5217e3b2a1f15118e67d3cac75dfb5f0e8f5526635726d24522bf8b93933ccf56052d2d9cc40136976cf64e352a0f501e9aade6f639017c17261"], &(0x7f0000000000)='GPL\x00'}, 0x90) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x0, 0x0, 0x0, &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) close(r7) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid\x00') ioctl$PERF_EVENT_IOC_PERIOD(r7, 0x4030582a, &(0x7f0000000040)) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r8 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="85000000070000006a0a00ff000000000c00000000000000950000000000000018100000", @ANYRES32, @ANYBLOB="00000021007b560000000000400000ac8f6e5080024a0095"], &(0x7f0000000140)='GPL\x00', 0x2, 0xffa0, &(0x7f0000000180)=""/149, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x1e, 0x10, 0x0, 0x1e}, 0x2d) bpf$BPF_PROG_DETACH(0x8, &(0x7f00000002c0)={@ifindex, r8, 0x11, 0x0, 0x0, @prog_id}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="1802000000000000000000000000000085000000cf004b23f56120251f033c290ed37f4d5f1d88a53219644caa41683c78410b4fca8dc4018f24618a5c1b30aaac00"/76], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) 234.615504ms ago: executing program 3 (id=4): perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xca}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) close(r1) openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r3, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0) recvmsg$unix(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xa0}, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x3a0ffffffff) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000006000000000000000095"], &(0x7f0000000000)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r4}, 0x10) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x4) r6 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) write$cgroup_subtree(r5, &(0x7f0000000200)=ANY=[@ANYRES8=r1, @ANYRES8=r6], 0x12) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000000000000000001000000009500000000000000301aeb9aa6672a43ea5217e3b2a1f15118e67d3cac75dfb5f0e8f5526635726d24522bf8b93933ccf56052d2d9cc40136976cf64e352a0f501e9aade6f639017c17261"], &(0x7f0000000000)='GPL\x00'}, 0x90) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x0, 0x0, 0x0, &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) close(r7) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid\x00') ioctl$PERF_EVENT_IOC_PERIOD(r7, 0x4030582a, &(0x7f0000000040)) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r8 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="85000000070000006a0a00ff000000000c00000000000000950000000000000018100000", @ANYRES32, @ANYBLOB="00000021007b560000000000400000ac8f6e5080024a0095"], &(0x7f0000000140)='GPL\x00', 0x2, 0xffa0, &(0x7f0000000180)=""/149, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x1e, 0x10, 0x0, 0x1e}, 0x2d) bpf$BPF_PROG_DETACH(0x8, &(0x7f00000002c0)={@ifindex, r8, 0x11, 0x0, 0x0, @prog_id}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="1802000000000000000000000000000085000000cf004b23f56120251f033c290ed37f4d5f1d88a53219644caa41683c78410b4fca8dc4018f24618a5c1b30aaac00"/76], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) 132.73446ms ago: executing program 4 (id=6): bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, 0xffffffffffffffff}) perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xc8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r1) recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x0) write$cgroup_subtree(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="8fedcb796f6f9875f37538e405dd63"], 0xfdef) 0s ago: executing program 2 (id=3): r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x5452, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0xb37cea330b028628) bpf$PROG_LOAD(0x5, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000000c0)='jbd2_write_superblock\x00'}, 0x10) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='jbd2_write_superblock\x00', r3}, 0x10) r4 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xafffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x5452, &(0x7f00000006c0)='\x02;\xe5\b\x00\x1c\x9c\x00\x00\x00\x00\x00\x00\x91\xecB\xdcZ\xe5\xbd$\x05\x90\xa9\xf3\xc7\xcb\xb7\xf0\xa1;#\x989\xe9\x12\xdf^6T\xdf\xcd\x02\xc5\xb0\xba\x12\'QXp\t\xfc\xf3\x01\x02\xbc\xbf\xc0\xf0\x10\xee\xd3\\yy\xa4\xf9\xe8\x00\xdd\xe97 0_\xe4]W\xf7~\xacVK\xc9t\x9e+:\x85\xef\x94\x0e\x19\x9cV[N.\xeb\x9fJ>\xd9\x99\x88\xd8\xdd\xb8Y\xc3$\xc6\x93\v\x04REY\xf4\xea\xf2\xcd\xcd.\x16\x861\xa1\v\x8d\x8e\x84R\xa6\x83\x84\xc0\x01e\xc3\xc8\xcc?\xc8?\x19\xb2\xa2\xe1\xac<\xe9f\x11\xff3\xc7\x19\x9e\x19\xf5-\xfe\xbd\xae\xbbR\x82\x16\xf9\x15S\x03U\xe0\xd8t\xe3%96') bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff) bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000200)=0x7fff) bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0) bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0) sendmsg$unix(r2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[@cred={{0x19, 0x1, 0x2, {0x0, 0xee00, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01, 0xee01}}}], 0x40}, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x4004662b, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f0000000200)) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x16, 0x4, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x0, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x400000}, 0x90) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.159' (ED25519) to the list of known hosts. [ 33.991970][ T23] audit: type=1400 audit(1719544271.580:66): avc: denied { mounton } for pid=347 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1925 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 33.996690][ T347] cgroup1: Unknown subsys name 'net' [ 34.014661][ T23] audit: type=1400 audit(1719544271.580:67): avc: denied { mount } for pid=347 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 34.021124][ T347] cgroup1: Unknown subsys name 'net_prio' [ 34.048996][ T347] cgroup1: Unknown subsys name 'devices' [ 34.056672][ T23] audit: type=1400 audit(1719544271.640:68): avc: denied { unmount } for pid=347 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 34.175404][ T347] cgroup1: Unknown subsys name 'hugetlb' [ 34.181737][ T347] cgroup1: Unknown subsys name 'rlimit' [ 34.405068][ T23] audit: type=1400 audit(1719544271.990:69): avc: denied { setattr } for pid=347 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=9261 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 34.428703][ T23] audit: type=1400 audit(1719544271.990:70): avc: denied { mounton } for pid=347 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 34.453751][ T23] audit: type=1400 audit(1719544271.990:71): avc: denied { mount } for pid=347 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 34.477016][ T23] audit: type=1400 audit(1719544272.040:72): avc: denied { read } for pid=143 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 34.490603][ T349] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 34.507762][ T23] audit: type=1400 audit(1719544272.100:73): avc: denied { relabelto } for pid=349 comm="mkswap" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" Setting up swapspace version 1, size = 127995904 bytes [ 34.533132][ T23] audit: type=1400 audit(1719544272.100:74): avc: denied { write } for pid=349 comm="mkswap" path="/root/swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 34.565616][ T23] audit: type=1400 audit(1719544272.150:75): avc: denied { read } for pid=347 comm="syz-executor" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 34.651405][ T347] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 35.419466][ T357] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.426394][ T357] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.435283][ T357] device bridge_slave_0 entered promiscuous mode [ 35.474466][ T357] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.481891][ T357] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.490284][ T357] device bridge_slave_1 entered promiscuous mode [ 35.561332][ T360] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.568265][ T360] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.576595][ T360] device bridge_slave_0 entered promiscuous mode [ 35.594419][ T360] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.601640][ T360] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.610211][ T360] device bridge_slave_1 entered promiscuous mode [ 35.690555][ T359] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.697488][ T359] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.705944][ T359] device bridge_slave_0 entered promiscuous mode [ 35.744606][ T358] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.751591][ T358] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.759843][ T358] device bridge_slave_0 entered promiscuous mode [ 35.767053][ T359] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.773940][ T359] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.782752][ T359] device bridge_slave_1 entered promiscuous mode [ 35.821967][ T358] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.829391][ T358] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.838075][ T358] device bridge_slave_1 entered promiscuous mode [ 35.920647][ T361] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.927579][ T361] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.936080][ T361] device bridge_slave_0 entered promiscuous mode [ 35.961560][ T361] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.969244][ T361] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.978146][ T361] device bridge_slave_1 entered promiscuous mode [ 36.688710][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 36.696730][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 36.735331][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 36.743516][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 36.777207][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 36.786189][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 36.795916][ T362] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.802996][ T362] bridge0: port 1(bridge_slave_0) entered forwarding state [ 36.811037][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 36.819837][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 36.828721][ T362] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.835567][ T362] bridge0: port 2(bridge_slave_1) entered forwarding state [ 36.843267][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 36.852631][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 36.861120][ T362] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.868138][ T362] bridge0: port 1(bridge_slave_0) entered forwarding state [ 36.875541][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 36.885069][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 36.893614][ T362] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.900502][ T362] bridge0: port 2(bridge_slave_1) entered forwarding state [ 36.908529][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 36.916669][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 36.935139][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 36.944051][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 36.967031][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 36.975995][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 36.985641][ T24] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.992657][ T24] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.013888][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 37.022193][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 37.031886][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 37.057430][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 37.066271][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 37.077762][ T348] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.084660][ T348] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.092922][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 37.101372][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 37.109994][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 37.118899][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 37.127737][ T348] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.134600][ T348] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.142829][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 37.168443][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 37.176413][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 37.184899][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 37.194720][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 37.203307][ T5] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.210200][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.218594][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 37.227014][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 37.235243][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 37.269689][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 37.279595][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 37.289432][ T348] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.296301][ T348] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.304723][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 37.327579][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 37.336161][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 37.344870][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 37.377907][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 37.386874][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 37.396632][ T362] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.403736][ T362] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.412285][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 37.420595][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 37.429311][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 37.489682][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 37.499636][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 37.508580][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 37.517239][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 37.537069][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 37.545513][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 37.587012][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 37.595592][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 37.605172][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 37.615913][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 37.624789][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 37.634010][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 37.657329][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 37.665765][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 37.674985][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 37.684248][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 37.718321][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 37.726637][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 37.735582][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 37.745953][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 37.778580][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 37.789069][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 37.798084][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 37.806741][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 37.837438][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 37.846095][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 37.856011][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 37.865712][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 37.890112][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 37.899191][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 37.908470][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 37.917771][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 37.937449][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 37.946197][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 37.968140][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 37.977768][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 37.997538][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 38.006337][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 38.016529][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 38.025661][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 38.075004][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 38.086607][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 38.095665][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 38.104485][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 38.113408][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 38.122704][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 38.189135][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 38.199219][ T362] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 38.352307][ C1] hrtimer: interrupt took 25778 ns [ 38.609229][ T363] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 38.634390][ T363] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 38.698343][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 38.710793][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 138.586959][ C1] rcu: INFO: rcu_preempt self-detected stall on CPU [ 138.593461][ C1] rcu: 1-...!: (1 GPs behind) idle=c3e/1/0x4000000000000004 softirq=1958/1959 fqs=6 last_accelerate: 98cf/c014, Nonlazy posted: ..D [ 138.606878][ C1] (t=10000 jiffies g=1953 q=523) [ 138.611747][ C1] rcu: rcu_preempt kthread starved for 9988 jiffies! g1953 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 138.622571][ C1] rcu: RCU grace-period kthread stack dump: [ 138.628306][ C1] rcu_preempt R running task 28536 11 2 0x80004000 [ 138.636027][ C1] Call Trace: [ 138.639211][ C1] __schedule+0xb05/0x1320 [ 138.643442][ C1] ? is_mmconf_reserved+0x430/0x430 [ 138.648458][ C1] ? _raw_spin_lock_irqsave+0xf9/0x210 [ 138.653755][ C1] ? _raw_spin_unlock_irq+0x4a/0x60 [ 138.658802][ C1] ? _raw_spin_lock+0x1b0/0x1b0 [ 138.663477][ C1] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 138.668433][ C1] schedule+0x12c/0x1d0 [ 138.672423][ C1] schedule_timeout+0x188/0x3d0 [ 138.677107][ C1] ? prepare_to_swait_event+0x35c/0x3a0 [ 138.682484][ C1] ? console_conditional_schedule+0x10/0x10 [ 138.688220][ C1] ? run_local_timers+0x160/0x160 [ 138.693082][ C1] ? finish_swait+0xa5/0x1a0 [ 138.697498][ C1] ? find_next_bit+0xc3/0x100 [ 138.702021][ C1] rcu_gp_kthread+0xea0/0x1d10 [ 138.706619][ C1] ? _raw_spin_unlock_irq+0x4a/0x60 [ 138.711655][ C1] ? dyntick_save_progress_counter+0x1b0/0x1b0 [ 138.717645][ C1] ? rcu_barrier_callback+0x50/0x50 [ 138.722672][ C1] ? _raw_spin_lock+0x1b0/0x1b0 [ 138.727370][ C1] ? is_mmconf_reserved+0x430/0x430 [ 138.732398][ C1] ? __wake_up_locked+0xb7/0x110 [ 138.737172][ C1] ? __kthread_parkme+0xb0/0x1b0 [ 138.741945][ C1] kthread+0x2da/0x360 [ 138.745852][ C1] ? rcu_barrier_callback+0x50/0x50 [ 138.750887][ C1] ? kthread_blkcg+0xd0/0xd0 [ 138.755315][ C1] ret_from_fork+0x1f/0x30 [ 138.759582][ C1] NMI backtrace for cpu 1 [ 138.763749][ C1] CPU: 1 PID: 384 Comm: syz.0.1 Not tainted 5.4.274-syzkaller-00002-g6f97bd951d82 #0 [ 138.773005][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 138.782895][ C1] Call Trace: [ 138.786021][ C1] [ 138.788727][ C1] dump_stack+0x1d8/0x241 [ 138.792901][ C1] ? panic+0x89d/0x89d [ 138.796810][ C1] ? _raw_spin_lock_irqsave+0xf9/0x210 [ 138.802102][ C1] ? nf_ct_l4proto_log_invalid+0x258/0x258 [ 138.807740][ C1] ? _raw_spin_lock+0x1b0/0x1b0 [ 138.812427][ C1] ? arch_trigger_cpumask_backtrace+0x10/0x10 [ 138.818331][ C1] nmi_trigger_cpumask_backtrace+0x28c/0x2d0 [ 138.824150][ C1] rcu_dump_cpu_stacks+0x183/0x280 [ 138.829102][ C1] rcu_sched_clock_irq+0xc5e/0x13f0 [ 138.834132][ C1] update_process_times+0x147/0x1b0 [ 138.839165][ C1] tick_sched_timer+0x22d/0x3c0 [ 138.843848][ C1] ? tick_setup_sched_timer+0x460/0x460 [ 138.849236][ C1] __hrtimer_run_queues+0x3e9/0xb90 [ 138.854267][ C1] ? _raw_read_lock+0x40/0x40 [ 138.858804][ C1] ? hrtimer_interrupt+0x890/0x890 [ 138.863725][ C1] ? kill_fasync+0x1f9/0x230 [ 138.868161][ C1] hrtimer_interrupt+0x38a/0x890 [ 138.872946][ C1] smp_apic_timer_interrupt+0x110/0x460 [ 138.878311][ C1] apic_timer_interrupt+0xf/0x20 [ 138.883101][ C1] RIP: 0010:unwind_next_frame+0x60b/0x1ea0 [ 138.888743][ C1] Code: c1 48 c1 f9 02 48 c1 e8 3f 48 01 c8 48 83 e0 fe 49 8d 5c 45 00 48 89 d8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df 0f b6 04 08 <84> c0 75 27 48 63 03 48 01 d8 48 8d 4b 04 4c 39 e0 4c 0f 46 e9 48 [ 138.908155][ C1] RSP: 0018:ffff8881f6f09020 EFLAGS: 00000a06 ORIG_RAX: ffffffffffffff13 [ 138.916409][ C1] RAX: 0000000000000000 RBX: ffffffff8675ea40 RCX: dffffc0000000000 [ 138.924218][ C1] RDX: ffffffff8675ea38 RSI: ffffffff86b32c2c RDI: 0000000000000001 [ 138.932035][ C1] RBP: ffff8881f6f09310 R08: 0000000000000004 R09: ffff8881f6f09370 [ 138.939925][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: ffffffff8460008f [ 138.947826][ C1] R13: ffffffff8675ea40 R14: ffffffff8675ea3c R15: ffffffff8675ea44 [ 138.955654][ C1] ? apic_timer_interrupt+0xa/0x20 [ 138.960603][ C1] ? entry_SYSCALL_64_after_hwframe+0x5b/0xc1 [ 138.966523][ C1] ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 138.972418][ C1] ? unwind_get_return_address_ptr+0xa0/0xa0 [ 138.978223][ C1] ? check_preemption_disabled+0x9f/0x320 [ 138.983862][ C1] ? futex_wait_requeue_pi+0xf90/0xf90 [ 138.989158][ C1] ? perf_swevent_hrtimer+0x4b8/0x560 [ 138.994365][ C1] ? debug_smp_processor_id+0x20/0x20 [ 138.999575][ C1] ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 139.005481][ C1] ? cpu_clock_event_read+0x50/0x50 [ 139.010518][ C1] ? __unwind_start+0x708/0x890 [ 139.015204][ C1] ? deref_stack_reg+0x1f0/0x1f0 [ 139.019980][ C1] ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 139.025869][ C1] ? stack_trace_save+0x1c0/0x1c0 [ 139.030731][ C1] arch_stack_walk+0x111/0x140 [ 139.035340][ C1] ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 139.041244][ C1] stack_trace_save+0x118/0x1c0 [ 139.045927][ C1] ? __hrtimer_run_queues+0x44f/0xb90 [ 139.051228][ C1] ? stack_trace_snprint+0x170/0x170 [ 139.056423][ C1] ? _raw_read_lock_irqsave+0xb5/0x110 [ 139.061729][ C1] ? _raw_read_lock_irqsave+0xb5/0x110 [ 139.067021][ C1] __kasan_slab_free+0x1b5/0x270 [ 139.071809][ C1] ? __kasan_slab_free+0x1b5/0x270 [ 139.076835][ C1] ? kmem_cache_free+0x10b/0x2c0 [ 139.081591][ C1] ? neigh_connected_output+0x407/0x430 [ 139.086979][ C1] ? ip6_finish_output2+0xf9e/0x18e0 [ 139.092095][ C1] ? ip6_output+0x1b3/0x430 [ 139.096435][ C1] ? ndisc_send_skb+0x702/0xc30 [ 139.101128][ C1] ? addrconf_rs_timer+0x2d1/0x600 [ 139.106070][ C1] ? call_timer_fn+0x36/0x390 [ 139.110582][ C1] ? __run_timers+0x879/0xbe0 [ 139.115097][ C1] ? run_timer_softirq+0x63/0xf0 [ 139.119869][ C1] ? __do_softirq+0x23b/0x6b7 [ 139.124390][ C1] ? irq_exit+0x195/0x1c0 [ 139.128558][ C1] ? smp_apic_timer_interrupt+0x11a/0x460 [ 139.134114][ C1] ? apic_timer_interrupt+0xf/0x20 [ 139.139052][ C1] ? _raw_spin_unlock_irq+0x45/0x60 [ 139.144089][ C1] ? finish_task_switch+0x130/0x590 [ 139.149135][ C1] ? __schedule+0xb0d/0x1320 [ 139.153551][ C1] ? preempt_schedule_irq+0xc7/0x140 [ 139.158679][ C1] ? retint_kernel+0x1b/0x1b [ 139.163098][ C1] ? futex_wait_requeue_pi+0xf90/0xf90 [ 139.168397][ C1] ? do_syscall_64+0xca/0x1c0 [ 139.172906][ C1] ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 139.178856][ C1] kmem_cache_free+0x10b/0x2c0 [ 139.183430][ C1] ? neigh_connected_output+0x407/0x430 [ 139.188799][ C1] neigh_connected_output+0x407/0x430 [ 139.194111][ C1] ip6_finish_output2+0xf9e/0x18e0 [ 139.199049][ C1] ? __ip6_finish_output+0x790/0x790 [ 139.204257][ C1] ? ip6_mtu+0xe2/0x130 [ 139.208232][ C1] ? __ip6_finish_output+0x5e4/0x790 [ 139.213357][ C1] ip6_output+0x1b3/0x430 [ 139.217523][ C1] ? asan.module_dtor+0x20/0x20 [ 139.222210][ C1] ? ip6_output+0x430/0x430 [ 139.226635][ C1] ? nf_hook_slow+0x196/0x1e0 [ 139.231153][ C1] ndisc_send_skb+0x702/0xc30 [ 139.235676][ C1] ? ndisc_alloc_skb+0x2c0/0x2c0 [ 139.240444][ C1] ? ndisc_error_report+0xc0/0xc0 [ 139.245306][ C1] ? memset+0x1f/0x40 [ 139.249117][ C1] ? ndisc_send_rs+0x517/0x6a0 [ 139.253727][ C1] addrconf_rs_timer+0x2d1/0x600 [ 139.258505][ C1] ? addrconf_disable_policy_idev+0x360/0x360 [ 139.264397][ C1] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 139.269346][ C1] ? _raw_spin_lock_irqsave+0x210/0x210 [ 139.274733][ C1] ? addrconf_disable_policy_idev+0x360/0x360 [ 139.280625][ C1] call_timer_fn+0x36/0x390 [ 139.284965][ C1] ? addrconf_disable_policy_idev+0x360/0x360 [ 139.290879][ C1] __run_timers+0x879/0xbe0 [ 139.295221][ C1] ? enqueue_timer+0x300/0x300 [ 139.299814][ C1] ? check_preemption_disabled+0x9f/0x320 [ 139.305381][ C1] run_timer_softirq+0x63/0xf0 [ 139.310064][ C1] __do_softirq+0x23b/0x6b7 [ 139.314392][ C1] ? sched_clock_cpu+0x18/0x3a0 [ 139.319089][ C1] irq_exit+0x195/0x1c0 [ 139.323091][ C1] smp_apic_timer_interrupt+0x11a/0x460 [ 139.328466][ C1] apic_timer_interrupt+0xf/0x20 [ 139.333211][ C1] [ 139.336007][ C1] RIP: 0010:_raw_spin_unlock_irq+0x45/0x60 [ 139.341645][ C1] Code: 08 00 74 0c 48 c7 c7 90 3b eb 85 e8 75 12 43 fd 48 83 3d cd 2c 9a 01 00 74 29 48 89 df e8 e3 e7 fa fc 66 90 fb bf 01 00 00 00 66 d4 f3 fc 65 8b 05 ab 7e b1 7b 85 c0 74 02 5b c3 e8 34 45 af [ 139.361088][ C1] RSP: 0018:ffff8881d9a37c50 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13 [ 139.369329][ C1] RAX: 0000000000000001 RBX: ffff8881f6f57b40 RCX: dffffc0000000000 [ 139.377135][ C1] RDX: 0000000040000002 RSI: 0000000000000000 RDI: 0000000000000001 [ 139.384951][ C1] RBP: ffff8881d9a37cb0 R08: ffffffff81799989 R09: fffffbfff0c96e5b [ 139.392773][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff8881f6f57b40 [ 139.400577][ C1] R13: ffff8881db6f8fc0 R14: dffffc0000000000 R15: ffff8881f47d5c80 [ 139.408410][ C1] ? __perf_event_task_sched_in+0x1f9/0x2a0 [ 139.414143][ C1] finish_task_switch+0x130/0x590 [ 139.418996][ C1] __schedule+0xb0d/0x1320 [ 139.423339][ C1] ? is_mmconf_reserved+0x430/0x430 [ 139.428375][ C1] preempt_schedule_irq+0xc7/0x140 [ 139.433318][ C1] ? preempt_schedule_notrace+0x140/0x140 [ 139.438863][ C1] ? preempt_schedule_irq+0xe7/0x140 [ 139.443988][ C1] ? preempt_schedule_notrace+0x140/0x140 [ 139.449545][ C1] ? check_preemption_disabled+0x153/0x320 [ 139.455186][ C1] retint_kernel+0x1b/0x1b [ 139.459438][ C1] RIP: 0010:__x64_sys_futex+0x0/0xf0 [ 139.464556][ C1] Code: 8c fb f5 ff ff e8 20 08 3b 00 e9 f1 f5 ff ff e8 16 23 0b 00 e8 c1 05 3b 00 0f 0b e8 5a d8 e1 ff 66 2e 0f 1f 84 00 00 00 00 00 <55> 41 57 41 56 41 55 41 54 53 50 48 89 fb 49 be 00 00 00 00 00 fc [ 139.483993][ C1] RSP: 0018:ffff8881d9a37f18 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff02 [ 139.492237][ C1] RAX: 1ffffffff094076e RBX: ffffffff84a03b70 RCX: 0000000000040000 [ 139.500052][ C1] RDX: ffffc90000540000 RSI: 00000000000046a0 RDI: ffff8881d9a37f58 [ 139.507864][ C1] RBP: dffffc0000000000 R08: ffffffff81006fef R09: 0000000000000000 [ 139.515669][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 00000000000000ca [ 139.523488][ C1] R13: ffff8881db6f8fc0 R14: ffff8881d9a37f58 R15: 1ffff1103b6df1f8 [ 139.531312][ C1] ? do_syscall_64+0x7f/0x1c0 [ 139.535832][ C1] do_syscall_64+0xca/0x1c0 [ 139.540178][ C1] entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 139.545906][ C1] RIP: 0033:0x7f7c734f2b29 [ 139.550137][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 139.569572][ C1] RSP: 002b:00007f7c727740f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 139.577825][ C1] RAX: ffffffffffffffda RBX: 00007f7c73680fa8 RCX: 00007f7c734f2b29 [ 139.585633][ C1] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7c73680fac [ 139.593444][ C1] RBP: 00007f7c73680fa0 R08: 00007fff205300b0 R09: 00007f7c727746c0 [ 139.601253][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f7c73680fac [ 139.609076][ C1] R13: 000000000000000b R14: 00007fff205043d0 R15: 00007fff205044b8 [ 178.417184][ C0] watchdog: BUG: soft lockup - CPU#0 stuck for 123s! [syz.2.3:396] [ 178.425101][ C0] Modules linked in: [ 178.428843][ C0] CPU: 0 PID: 396 Comm: syz.2.3 Not tainted 5.4.274-syzkaller-00002-g6f97bd951d82 #0 [ 178.438128][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 178.448037][ C0] RIP: 0010:ndisc_send_skb+0x683/0xc30 [ 178.453325][ C0] Code: 8b 1b 65 48 ff 43 28 48 8b 44 24 60 42 0f b6 04 20 84 c0 0f 85 7e 03 00 00 48 8b 44 24 18 8b 00 65 48 01 43 30 43 80 3c 27 00 <48> 8b 5c 24 48 74 08 48 89 df e8 2e 1d b9 fd 4c 8d a4 24 c0 00 00 [ 178.473281][ C0] RSP: 0018:ffff8881f6e09a40 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13 [ 178.481522][ C0] RAX: 0000000000000030 RBX: 0000607e08e14530 RCX: ffff8881f37eee40 [ 178.489509][ C0] RDX: 0000000000000100 RSI: ffff8881dc3b5000 RDI: 0000000000000000 [ 178.497324][ C0] RBP: ffff8881f6e09c30 R08: ffffffff83db035a R09: ffffed103deaff17 [ 178.505134][ C0] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 178.512948][ C0] R13: ffff8881dc854800 R14: ffff8881dc3b5000 R15: 1ffff1103e1bc2c8 [ 178.520768][ C0] FS: 00007f1cf06236c0(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 178.529530][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 178.535944][ C0] CR2: 0000000000000000 CR3: 00000001f51c1000 CR4: 00000000003406b0 [ 178.543761][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 178.551745][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 178.559557][ C0] Call Trace: [ 178.562676][ C0] [ 178.565392][ C0] ? watchdog_timer_fn+0x53d/0x600 [ 178.570339][ C0] ? proc_watchdog_cpumask+0xc0/0xc0 [ 178.575457][ C0] ? __hrtimer_run_queues+0x3e9/0xb90 [ 178.580657][ C0] ? _raw_read_lock+0x40/0x40 [ 178.585190][ C0] ? hrtimer_interrupt+0x890/0x890 [ 178.590130][ C0] ? kill_fasync+0x1f9/0x230 [ 178.594558][ C0] ? hrtimer_interrupt+0x38a/0x890 [ 178.599527][ C0] ? smp_apic_timer_interrupt+0x110/0x460 [ 178.605171][ C0] ? apic_timer_interrupt+0xf/0x20 [ 178.610131][ C0] ? apic_timer_interrupt+0xa/0x20 [ 178.615070][ C0] ? ndisc_send_skb+0x5ea/0xc30 [ 178.619755][ C0] ? ndisc_send_skb+0x683/0xc30 [ 178.624456][ C0] ? ndisc_alloc_skb+0x2c0/0x2c0 [ 178.629222][ C0] ? __alloc_skb+0x29e/0x4d0 [ 178.633742][ C0] ? ndisc_send_rs+0x2ff/0x6a0 [ 178.638328][ C0] ? ipv6_get_lladdr+0x1ae/0x1e0 [ 178.643118][ C0] addrconf_rs_timer+0x2d1/0x600 [ 178.647887][ C0] ? addrconf_disable_policy_idev+0x360/0x360 [ 178.653789][ C0] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 178.658743][ C0] ? _raw_spin_lock_irqsave+0x210/0x210 [ 178.664119][ C0] ? addrconf_disable_policy_idev+0x360/0x360 [ 178.670012][ C0] call_timer_fn+0x36/0x390 [ 178.674355][ C0] ? addrconf_disable_policy_idev+0x360/0x360 [ 178.680263][ C0] __run_timers+0x879/0xbe0 [ 178.684625][ C0] ? enqueue_timer+0x300/0x300 [ 178.689189][ C0] ? irq_work_interrupt+0xa/0x20 [ 178.693971][ C0] ? run_timer_softirq+0x1e/0xf0 [ 178.698744][ C0] ? __run_timers+0x1/0xbe0 [ 178.703083][ C0] run_timer_softirq+0x63/0xf0 [ 178.707680][ C0] __do_softirq+0x23b/0x6b7 [ 178.712033][ C0] irq_exit+0x195/0x1c0 [ 178.716016][ C0] smp_apic_timer_interrupt+0x11a/0x460 [ 178.721403][ C0] apic_timer_interrupt+0xf/0x20 [ 178.726156][ C0] [ 178.728936][ C0] RIP: 0010:fput+0x0/0x20 [ 178.733114][ C0] Code: 66 2e 0f 1f 84 00 00 00 00 00 53 48 89 fb e8 d7 0e c9 ff 48 89 df 5b e9 ee 00 00 00 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 <53> 48 89 fb e8 b7 0e c9 ff 48 89 df be 01 00 00 00 5b e9 19 fe ff [ 178.752631][ C0] RSP: 0018:ffff8881ef4a7ee0 EFLAGS: 00000283 ORIG_RAX: ffffffffffffff13 [ 178.760879][ C0] RAX: ffffffff819fa605 RBX: ffff8881efb9ec00 RCX: 0000000000040000 [ 178.768694][ C0] RDX: ffffc90000942000 RSI: 00000000000014ac RDI: ffff8881efb9ec00 [ 178.776559][ C0] RBP: 0000000000000000 R08: ffffffff819fa5f3 R09: ffffed103e221f0b [ 178.784311][ C0] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000005452 [ 178.792132][ C0] R13: 00000000200006c0 R14: 0000000000000005 R15: ffff8881efb9ec01 [ 178.799966][ C0] ? __x64_sys_ioctl+0xe3/0x110 [ 178.804635][ C0] ? __x64_sys_ioctl+0xf5/0x110 [ 178.809328][ C0] __x64_sys_ioctl+0xfd/0x110 [ 178.813847][ C0] do_syscall_64+0xca/0x1c0 [ 178.818184][ C0] entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 178.823905][ C0] RIP: 0033:0x7f1cf13a1b29 [ 178.828152][ C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 178.847591][ C0] RSP: 002b:00007f1cf0623048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 178.855840][ C0] RAX: ffffffffffffffda RBX: 00007f1cf152ffa0 RCX: 00007f1cf13a1b29 [ 178.863644][ C0] RDX: 00000000200006c0 RSI: 0000000000005452 RDI: 0000000000000005 [ 178.871458][ C0] RBP: 00007f1cf1422756 R08: 0000000000000000 R09: 0000000000000000 [ 178.879285][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 178.887082][ C0] R13: 000000000000000b R14: 00007f1cf152ffa0 R15: 00007ffdc63a1f28 [ 178.895018][ C0] Sending NMI from CPU 0 to CPUs 1: [ 178.903213][ C1] NMI backtrace for cpu 1 [ 178.903226][ C1] CPU: 1 PID: 384 Comm: syz.0.1 Not tainted 5.4.274-syzkaller-00002-g6f97bd951d82 #0 [ 178.903240][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 178.903248][ C1] RIP: 0010:__sanitizer_cov_trace_pc+0x4/0x50 [ 178.903273][ C1] Code: 00 00 00 0f 1f 00 be 0c 00 00 00 48 c7 c7 a0 a7 f1 85 e8 3f de 2f 00 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 8b 04 24 <65> 48 8b 0d 54 51 9e 7e 65 8b 15 59 51 9e 7e f7 c2 00 01 1f 00 74 [ 178.903281][ C1] RSP: 0018:ffff8881f6f08b38 EFLAGS: 00000097 [ 178.903296][ C1] RAX: ffffffff816d89b2 RBX: 0000000000000001 RCX: 0000000000010503 [ 178.903307][ C1] RDX: 0000000000010503 RSI: 0000000000000001 RDI: 0000000000000008 [ 178.903317][ C1] RBP: 0000000000000001 R08: ffffffff816d89a8 R09: ffffed103b359663 [ 178.903328][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000 [ 178.903339][ C1] R13: 0000000000000000 R14: dffffc0000000000 R15: 0000000000000000 [ 178.903351][ C1] FS: 00007f7c727746c0(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 178.903359][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 178.903370][ C1] CR2: 0000001b31e1eff8 CR3: 00000001f4ed7000 CR4: 00000000003406a0 [ 178.903381][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 178.903391][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 178.903397][ C1] Call Trace: [ 178.903401][ C1] [ 178.903409][ C1] ? nmi_cpu_backtrace+0x112/0x130 [ 178.903416][ C1] ? nmi_cpu_backtrace_handler+0x8/0x10 [ 178.903423][ C1] ? nmi_handle+0xad/0x2f0 [ 178.903430][ C1] ? __sanitizer_cov_trace_pc+0x4/0x50 [ 178.903436][ C1] ? do_nmi+0x251/0x610 [ 178.903443][ C1] ? end_repeat_nmi+0x16/0x2c [ 178.903450][ C1] ? irq_work_run+0x78/0xe0 [ 178.903456][ C1] ? irq_work_run+0x82/0xe0 [ 178.903464][ C1] ? __sanitizer_cov_trace_pc+0x4/0x50 [ 178.903471][ C1] ? __sanitizer_cov_trace_pc+0x4/0x50 [ 178.903479][ C1] ? __sanitizer_cov_trace_pc+0x4/0x50 [ 178.903483][ C1] [ 178.903487][ C1] [ 178.903494][ C1] irq_work_run+0x82/0xe0 [ 178.903501][ C1] smp_irq_work_interrupt+0x7f/0x250 [ 178.903508][ C1] irq_work_interrupt+0xf/0x20 [ 178.903516][ C1] RIP: 0010:unwind_next_frame+0xe90/0x1ea0 [ 178.903540][ C1] Code: 5a 01 43 0f b6 04 3c 84 c0 0f 85 36 0c 00 00 49 89 dc 49 c1 ec 03 43 0f b6 04 3c 84 c0 0f 85 47 0c 00 00 0f b6 72 01 83 e6 03 <83> fe 02 0f 84 7d 02 00 00 83 fe 01 0f 84 a1 01 00 00 85 f6 0f 85 [ 178.903548][ C1] RSP: 0018:ffff8881f6f08c40 EFLAGS: 00000202 ORIG_RAX: ffffffffffffff09 [ 178.903566][ C1] RAX: 0000000000000000 RBX: ffffffff86b34473 RCX: 1ffff1103ede11e8 [ 178.903577][ C1] RDX: ffffffff86b34472 RSI: 0000000000000001 RDI: ffff8881f6f09ff8 [ 178.903587][ C1] RBP: ffff8881f6f08f30 R08: 000000000000001a R09: ffff8881f6f08f90 [ 178.903599][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffffffff0d6688e [ 178.903610][ C1] R13: ffff8881f6f08f40 R14: ffff8881f6f08da0 R15: dffffc0000000000 [ 178.903617][ C1] ? irq_work_interrupt+0xa/0x20 [ 178.903624][ C1] ? apic_timer_interrupt+0xf/0x20 [ 178.903632][ C1] ? unwind_get_return_address_ptr+0xa0/0xa0 [ 178.903639][ C1] ? cpu_clock_event_read+0x50/0x50 [ 178.903647][ C1] ? check_preemption_disabled+0x9f/0x320 [ 178.903655][ C1] ? debug_smp_processor_id+0x20/0x20 [ 178.903662][ C1] ? apic_timer_interrupt+0xf/0x20 [ 178.903669][ C1] ? __unwind_start+0x708/0x890 [ 178.903676][ C1] ? deref_stack_reg+0x1f0/0x1f0 [ 178.903683][ C1] ? timerqueue_add+0x258/0x280 [ 178.903690][ C1] ? apic_timer_interrupt+0xf/0x20 [ 178.903697][ C1] ? stack_trace_save+0x1c0/0x1c0 [ 178.903703][ C1] arch_stack_walk+0x111/0x140 [ 178.903711][ C1] ? apic_timer_interrupt+0xf/0x20 [ 178.903717][ C1] stack_trace_save+0x118/0x1c0 [ 178.903724][ C1] ? _raw_read_lock+0x40/0x40 [ 178.903731][ C1] ? stack_trace_snprint+0x170/0x170 [ 178.903739][ C1] ? _raw_read_unlock_irqrestore+0x2f/0x50 [ 178.903746][ C1] ? kill_fasync+0x1f9/0x230 [ 178.903752][ C1] __kasan_slab_free+0x1b5/0x270 [ 178.903760][ C1] ? __kasan_slab_free+0x1b5/0x270 [ 178.903766][ C1] ? kfree+0x123/0x370 [ 178.903772][ C1] ? kfree_skb+0xb8/0x3c0 [ 178.903779][ C1] ? sit_tunnel_xmit+0xf56/0x2460 [ 178.903786][ C1] ? dev_hard_start_xmit+0x1b7/0x6b0 [ 178.903793][ C1] ? __dev_queue_xmit+0x14da/0x27e0 [ 178.903801][ C1] ? ip6_finish_output2+0xf9e/0x18e0 [ 178.903807][ C1] ? ip6_output+0x1b3/0x430 [ 178.903814][ C1] ? ndisc_send_skb+0x702/0xc30 [ 178.903821][ C1] ? addrconf_rs_timer+0x2d1/0x600 [ 178.903827][ C1] ? call_timer_fn+0x36/0x390 [ 178.903834][ C1] ? __run_timers+0x879/0xbe0 [ 178.903852][ C1] ? run_timer_softirq+0x63/0xf0 [ 178.903859][ C1] ? __do_softirq+0x23b/0x6b7 [ 178.903865][ C1] ? irq_exit+0x195/0x1c0 [ 178.903873][ C1] ? smp_apic_timer_interrupt+0x11a/0x460 [ 178.903880][ C1] ? apic_timer_interrupt+0xf/0x20 [ 178.903887][ C1] ? skb_release_data+0x502/0x640 [ 178.903892][ C1] kfree+0x123/0x370 [ 178.903899][ C1] ? kfree_skb+0xb8/0x3c0 [ 178.903906][ C1] ? sit_tunnel_xmit+0xf56/0x2460 [ 178.903911][ C1] kfree_skb+0xb8/0x3c0 [ 178.903918][ C1] sit_tunnel_xmit+0xf56/0x2460 [ 178.903925][ C1] ? netif_skb_features+0x886/0xc90 [ 178.903933][ C1] ? ipip6_tunnel_uninit+0x3d0/0x3d0 [ 178.903940][ C1] ? debug_smp_processor_id+0x20/0x20 [ 178.903947][ C1] ? validate_xmit_skb+0x645/0xc50 [ 178.903954][ C1] dev_hard_start_xmit+0x1b7/0x6b0 [ 178.903961][ C1] __dev_queue_xmit+0x14da/0x27e0 [ 178.903968][ C1] ? dev_queue_xmit+0x20/0x20 [ 178.903975][ C1] ? ip6t_do_table+0x162c/0x1800 [ 178.903982][ C1] ip6_finish_output2+0xf9e/0x18e0 [ 178.903989][ C1] ? __ip6_finish_output+0x790/0x790 [ 178.903995][ C1] ? ip6_mtu+0xe2/0x130 [ 178.904002][ C1] ? __ip6_finish_output+0x5e4/0x790 [ 178.904009][ C1] ip6_output+0x1b3/0x430 [ 178.904015][ C1] ? asan.module_dtor+0x20/0x20 [ 178.904022][ C1] ? ip6_output+0x430/0x430 [ 178.904029][ C1] ? nf_hook_slow+0x196/0x1e0 [ 178.904037][ C1] ndisc_send_skb+0x702/0xc30 [ 178.904044][ C1] ? ndisc_alloc_skb+0x2c0/0x2c0 [ 178.904052][ C1] ? ndisc_error_report+0xc0/0xc0 [ 178.904059][ C1] ? memset+0x1f/0x40 [ 178.904066][ C1] ? ndisc_send_rs+0x517/0x6a0 [ 178.904074][ C1] addrconf_rs_timer+0x2d1/0x600 [ 178.904083][ C1] ? addrconf_disable_policy_idev+0x360/0x360 [ 178.904091][ C1] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 178.904099][ C1] ? _raw_spin_lock_irqsave+0x210/0x210 [ 178.904108][ C1] ? addrconf_disable_policy_idev+0x360/0x360 [ 178.904115][ C1] call_timer_fn+0x36/0x390 [ 178.904125][ C1] ? addrconf_disable_policy_idev+0x360/0x360 [ 178.904132][ C1] __run_timers+0x879/0xbe0 [ 178.904139][ C1] ? enqueue_timer+0x300/0x300 [ 178.904148][ C1] ? check_preemption_disabled+0x9f/0x320 [ 178.904156][ C1] run_timer_softirq+0x63/0xf0 [ 178.904163][ C1] __do_softirq+0x23b/0x6b7 [ 178.904171][ C1] ? sched_clock_cpu+0x18/0x3a0 [ 178.904177][ C1] irq_exit+0x195/0x1c0 [ 178.904186][ C1] smp_apic_timer_interrupt+0x11a/0x460 [ 178.904194][ C1] apic_timer_interrupt+0xf/0x20 [ 178.904199][ C1] [ 178.904208][ C1] RIP: 0010:_raw_spin_unlock_irq+0x45/0x60 [ 178.904236][ C1] Code: 08 00 74 0c 48 c7 c7 90 3b eb 85 e8 75 12 43 fd 48 83 3d cd 2c 9a 01 00 74 29 48 89 df e8 e3 e7 fa fc 66 90 fb bf 01 00 00 00 66 d4 f3 fc 65 8b 05 ab 7e b1 7b 85 c0 74 02 5b c3 e8 34 45 af [ 178.904245][ C1] RSP: 0018:ffff8881d9a37c50 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13 [ 178.904265][ C1] RAX: 0000000000000001 RBX: ffff8881f6f57b40 RCX: dffffc0000000000 [ 178.904277][ C1] RDX: 0000000040000002 RSI: 0000000000000000 RDI: 0000000000000001 [ 178.904289][ C1] RBP: ffff8881d9a37cb0 R08: ffffffff81799989 R09: fffffbfff0c96e5b [ 178.904300][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff8881f6f57b40 [ 178.904312][ C1] R13: ffff8881db6f8fc0 R14: dffffc0000000000 R15: ffff8881f47d5c80 [ 178.904321][ C1] ? __perf_event_task_sched_in+0x1f9/0x2a0 [ 178.904329][ C1] finish_task_switch+0x130/0x590 [ 178.904336][ C1] __schedule+0xb0d/0x1320 [ 178.904344][ C1] ? is_mmconf_reserved+0x430/0x430 [ 178.904352][ C1] preempt_schedule_irq+0xc7/0x140 [ 178.904361][ C1] ? preempt_schedule_notrace+0x140/0x140 [ 178.904369][ C1] ? preempt_schedule_irq+0xe7/0x140 [ 178.904378][ C1] ? preempt_schedule_notrace+0x140/0x140 [ 178.904387][ C1] ? check_preemption_disabled+0x153/0x320 [ 178.904394][ C1] retint_kernel+0x1b/0x1b [ 178.904402][ C1] RIP: 0010:__x64_sys_futex+0x0/0xf0 [ 178.904430][ C1] Code: 8c fb f5 ff ff e8 20 08 3b 00 e9 f1 f5 ff ff e8 16 23 0b 00 e8 c1 05 3b 00 0f 0b e8 5a d8 e1 ff 66 2e 0f 1f 84 00 00 00 00 00 <55> 41 57 41 56 41 55 41 54 53 50 48 89 fb 49 be 00 00 00 00 00 fc [ 178.904439][ C1] RSP: 0018:ffff8881d9a37f18 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff02 [ 178.904460][ C1] RAX: 1ffffffff094076e RBX: ffffffff84a03b70 RCX: 0000000000040000 [ 178.904472][ C1] RDX: ffffc90000540000 RSI: 00000000000046a0 RDI: ffff8881d9a37f58 [ 178.904484][ C1] RBP: dffffc0000000000 R08: ffffffff81006fef R09: 0000000000000000 [ 178.904496][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 00000000000000ca [ 178.904508][ C1] R13: ffff8881db6f8fc0 R14: ffff8881d9a37f58 R15: 1ffff1103b6df1f8 [ 178.904515][ C1] ? do_syscall_64+0x7f/0x1c0 [ 178.904523][ C1] do_syscall_64+0xca/0x1c0 [ 178.904532][ C1] entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 178.904539][ C1] RIP: 0033:0x7f7c734f2b29 [ 178.904567][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 178.904576][ C1] RSP: 002b:00007f7c727740f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 178.904596][ C1] RAX: ffffffffffffffda RBX: 00007f7c73680fa8 RCX: 00007f7c734f2b29 [ 178.904608][ C1] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7c73680fac [ 178.904620][ C1] RBP: 00007f7c73680fa0 R08: 00007fff205300b0 R09: 00007f7c727746c0 [ 178.904632][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f7c73680fac [ 178.904644][ C1] R13: 000000000000000b R14: 00007fff205043d0 R15: 00007fff205044b8