Warning: Permanently added '10.128.0.69' (ED25519) to the list of known hosts. [ 212.364203][ T29] audit: type=1400 audit(1716372981.453:87): avc: denied { execmem } for pid=5095 comm="syz-executor119" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 212.390065][ T29] audit: type=1400 audit(1716372981.483:88): avc: denied { mounton } for pid=5099 comm="syz-executor119" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 212.439494][ T29] audit: type=1400 audit(1716372981.493:89): avc: denied { mount } for pid=5103 comm="syz-executor119" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 212.463671][ T29] audit: type=1400 audit(1716372981.493:90): avc: denied { create } for pid=5103 comm="syz-executor119" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 212.489947][ T29] audit: type=1400 audit(1716372981.493:91): avc: denied { read write } for pid=5103 comm="syz-executor119" name="vhci" dev="devtmpfs" ino=1077 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 212.516808][ T29] audit: type=1400 audit(1716372981.493:92): avc: denied { open } for pid=5103 comm="syz-executor119" path="/dev/vhci" dev="devtmpfs" ino=1077 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 212.519997][ T5118] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 212.540786][ T29] audit: type=1400 audit(1716372981.523:93): avc: denied { ioctl } for pid=5099 comm="syz-executor119" path="socket:[3853]" dev="sockfs" ino=3853 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 212.576095][ T5118] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 212.576989][ T5120] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 212.584019][ T5118] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 212.590446][ T5121] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 212.597841][ T5118] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 212.607533][ T5121] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 212.611951][ T5118] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 212.619224][ T5120] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 212.625710][ T5118] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 212.633746][ T5121] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 212.639679][ T5123] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 212.647571][ T5121] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 212.655271][ T5118] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 212.660562][ T5120] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 212.668842][ T5118] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 212.675145][ T5121] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 212.682553][ T5118] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 212.688276][ T5120] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 212.695674][ T5118] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 212.702595][ T5120] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 212.715922][ T5118] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 212.717133][ T5121] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 212.725928][ T5118] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 212.737760][ T5123] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 212.739834][ T5120] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 212.748185][ T5118] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 212.753589][ T29] audit: type=1400 audit(1716372981.823:94): avc: denied { mounton } for pid=5105 comm="syz-executor119" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 212.759546][ T5118] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 212.789463][ T4480] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 212.801613][ T4480] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 executing program executing program [ 213.104599][ T29] audit: type=1400 audit(1716372982.193:95): avc: denied { mounton } for pid=5103 comm="syz-executor119" path="/dev/binderfs" dev="devtmpfs" ino=2322 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 213.130993][ T29] audit: type=1400 audit(1716372982.193:96): avc: denied { mounton } for pid=5105 comm="syz-executor119" path="/dev/binderfs" dev="devtmpfs" ino=2322 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 318.174429][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 318.181471][ C0] rcu: (detected by 0, t=10502 jiffies, g=7373, q=8 ncpus=2) [ 318.188938][ C0] rcu: All QSes seen, last rcu_preempt kthread activity 10502 (4294968892-4294958390), jiffies_till_next_fqs=1, root ->qsmask 0x0 [ 318.202324][ C0] rcu: rcu_preempt kthread starved for 10502 jiffies! g7373 f0x2 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 318.213448][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 318.223433][ C0] rcu: RCU grace-period kthread stack dump: [ 318.229324][ C0] task:rcu_preempt state:R running task stack:28752 pid:17 tgid:17 ppid:2 flags:0x00004000 [ 318.241080][ C0] Call Trace: [ 318.244382][ C0] [ 318.247322][ C0] __schedule+0xf15/0x5d00 [ 318.251911][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 318.257201][ C0] ? __pfx___schedule+0x10/0x10 [ 318.262072][ C0] ? schedule+0x298/0x350 [ 318.266436][ C0] ? __pfx_lock_release+0x10/0x10 [ 318.271504][ C0] ? __pfx___mod_timer+0x10/0x10 [ 318.276478][ C0] ? lock_acquire+0x1b1/0x560 [ 318.281174][ C0] ? lockdep_init_map_type+0x16d/0x7d0 [ 318.286658][ C0] schedule+0xe7/0x350 [ 318.290745][ C0] schedule_timeout+0x136/0x2a0 [ 318.295613][ C0] ? __pfx_schedule_timeout+0x10/0x10 [ 318.301002][ C0] ? __pfx_process_timeout+0x10/0x10 [ 318.306307][ C0] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 318.312172][ C0] ? prepare_to_swait_event+0xf0/0x470 [ 318.317656][ C0] rcu_gp_fqs_loop+0x1eb/0xb00 [ 318.322455][ C0] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 318.327766][ C0] ? _raw_spin_unlock_irq+0x2e/0x50 [ 318.332993][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 318.338825][ C0] rcu_gp_kthread+0x271/0x380 [ 318.343534][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 318.348761][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 318.354040][ C0] ? __kthread_parkme+0x148/0x220 [ 318.359105][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 318.364328][ C0] kthread+0x2c1/0x3a0 [ 318.368416][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 318.373633][ C0] ? __pfx_kthread+0x10/0x10 [ 318.378238][ C0] ret_from_fork+0x45/0x80 [ 318.382692][ C0] ? __pfx_kthread+0x10/0x10 [ 318.387300][ C0] ret_from_fork_asm+0x1a/0x30 [ 318.392108][ C0] [ 318.395133][ C0] rcu: Stack dump where RCU GP kthread last ran: [ 318.401456][ C0] Sending NMI from CPU 0 to CPUs 1: [ 318.406668][ C1] NMI backtrace for cpu 1 [ 318.406679][ C1] CPU: 1 PID: 5127 Comm: syz-executor119 Not tainted 6.9.0-syzkaller-10323-g8f6a15f095a6 #0 [ 318.406700][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 318.406711][ C1] RIP: 0010:lock_acquire+0x1fc/0x560 [ 318.406743][ C1] Code: 85 ea 02 00 00 9c 58 f6 c4 02 0f 85 d5 02 00 00 48 85 ed 74 01 fb 48 b8 00 00 00 00 00 fc ff df 48 01 c3 48 c7 03 00 00 00 00 <48> c7 43 08 00 00 00 00 48 8b 84 24 a8 00 00 00 65 48 2b 04 25 28 [ 318.406762][ C1] RSP: 0018:ffffc90000a18bf0 EFLAGS: 00000082 [ 318.406778][ C1] RAX: dffffc0000000000 RBX: fffff52000143180 RCX: 0000000003f9ae25 [ 318.406793][ C1] RDX: 0000000000000001 RSI: ffffffff8b2cae60 RDI: ffffffff8b8feec0 [ 318.406807][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: fffffbfff284e250 [ 318.406820][ C1] R10: ffffffff94271287 R11: 0000000000000002 R12: 0000000000000000 [ 318.406833][ C1] R13: 0000000000000000 R14: ffffffff8dbb1760 R15: 0000000000000000 [ 318.406846][ C1] FS: 00005555895323c0(0000) GS:ffff8880b9300000(0000) knlGS:0000000000000000 [ 318.406868][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 318.406882][ C1] CR2: 00007fbef1b9c4c0 CR3: 00000000745b4000 CR4: 00000000003506f0 [ 318.406896][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 318.406908][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 318.406921][ C1] Call Trace: [ 318.406928][ C1] [ 318.406935][ C1] ? show_regs+0x8c/0xa0 [ 318.406977][ C1] ? nmi_cpu_backtrace+0x1d8/0x390 [ 318.407041][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 318.407067][ C1] ? nmi_handle+0x1a9/0x5c0 [ 318.407094][ C1] ? lock_acquire+0x1fc/0x560 [ 318.407120][ C1] ? default_do_nmi+0x6a/0x160 [ 318.407143][ C1] ? exc_nmi+0x170/0x1e0 [ 318.407164][ C1] ? end_repeat_nmi+0xf/0x53 [ 318.407225][ C1] ? lock_acquire+0x1fc/0x560 [ 318.407252][ C1] ? lock_acquire+0x1fc/0x560 [ 318.407279][ C1] ? lock_acquire+0x1fc/0x560 [ 318.407305][ C1] [ 318.407311][ C1] [ 318.407322][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 318.407350][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 318.407376][ C1] ? debug_object_deactivate+0x1f0/0x370 [ 318.407423][ C1] __lock_task_sighand+0x45/0x340 [ 318.407448][ C1] ? __lock_task_sighand+0x3f/0x340 [ 318.407467][ C1] send_sigqueue+0x1d4/0x850 [ 318.407487][ C1] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 318.407508][ C1] ? __pfx_send_sigqueue+0x10/0x10 [ 318.407529][ C1] posix_timer_fn+0x181/0x3e0 [ 318.407558][ C1] ? do_raw_spin_unlock+0x172/0x230 [ 318.407579][ C1] ? __pfx_posix_timer_fn+0x10/0x10 [ 318.407606][ C1] __hrtimer_run_queues+0x20c/0xcc0 [ 318.407631][ C1] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 318.407654][ C1] ? ktime_get_update_offsets_now+0x201/0x310 [ 318.407684][ C1] hrtimer_interrupt+0x31b/0x800 [ 318.407710][ C1] __sysvec_apic_timer_interrupt+0x10f/0x450 [ 318.407740][ C1] sysvec_apic_timer_interrupt+0x90/0xb0 [ 318.407767][ C1] [ 318.407773][ C1] [ 318.407779][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 318.407803][ C1] RIP: 0010:_raw_spin_unlock_irq+0x29/0x50 [ 318.407828][ C1] Code: 90 f3 0f 1e fa 53 48 8b 74 24 08 48 89 fb 48 83 c7 18 e8 0a bc 7e f6 48 89 df e8 f2 38 7f f6 e8 8d 29 a8 f6 fb bf 01 00 00 00 e2 78 70 f6 65 8b 05 53 c5 16 75 85 c0 74 06 5b c3 cc cc cc cc [ 318.407846][ C1] RSP: 0018:ffffc90003247cf0 EFLAGS: 00000206 [ 318.407861][ C1] RAX: 00000000039b3211 RBX: ffff88802985c0c0 RCX: 1ffffffff1fc8069 [ 318.407875][ C1] RDX: 0000000000000000 RSI: ffffffff8b2cab60 RDI: 0000000000000001 [ 318.407888][ C1] RBP: ffff88802985c4c0 R08: 0000000000000001 R09: 0000000000000001 [ 318.407901][ C1] R10: ffffffff8fe445d7 R11: 0000000000000000 R12: 0000000000000000 [ 318.407914][ C1] R13: 0000000000000021 R14: ffff88802985c0c0 R15: ffff88802985c0c0 [ 318.407932][ C1] get_signal+0x1e3e/0x2710 [ 318.407958][ C1] ? __pfx_get_signal+0x10/0x10 [ 318.407980][ C1] ? do_sigaltstack.constprop.0+0x547/0x800 [ 318.408009][ C1] arch_do_signal_or_restart+0x90/0x7e0 [ 318.408033][ C1] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 318.408057][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 318.408081][ C1] ? __do_sys_rt_sigreturn+0x167/0x230 [ 318.408105][ C1] ? __pfx___do_sys_rt_sigreturn+0x10/0x10 [ 318.408131][ C1] syscall_exit_to_user_mode+0x14a/0x2a0 [ 318.408159][ C1] do_syscall_64+0xdc/0x260 [ 318.408204][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 318.408227][ C1] RIP: 0033:0x7fbef1b50058 [ 318.408241][ C1] Code: 3c 25 10 b0 06 20 31 c0 bf df 00 00 00 48 c7 04 25 08 b0 06 20 08 00 00 00 48 c7 04 25 18 b0 06 20 09 00 00 00 e8 08 4e 03 00 <89> df 83 c3 01 e8 4e 3f 03 00 83 fb 1e 75 f1 31 ff e8 a2 7a 00 00 [ 318.408259][ C1] RSP: 002b:00007ffdcff40550 EFLAGS: 00010217 [ 318.408274][ C1] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 00007fbef1b84e79 [ 318.408287][ C1] RDX: 000000002006b000 RSI: 0000000000000000 RDI: 0000000000000000 [ 318.408300][ C1] RBP: 00000000000f4240 R08: 0000000000000000 R09: 0000000000000000 [ 318.408312][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000555589532370 [ 318.408330][ C1] R13: 0000000000000000 R14: 00007ffdcff405c0 R15: 00007ffdcff405b0 [ 318.408347][ C1] [ 318.408355][ C1] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.687 msecs