sshd_t tclass=fifo_file permissive=1 [ 10.583689][ T30] audit: type=1400 audit(1713524408.094:64): avc: denied { rlimitinh } for pid=219 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 10.586754][ T30] audit: type=1400 audit(1713524408.094:65): avc: denied { siginh } for pid=219 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 Warning: Permanently added '10.128.1.91' (ED25519) to the list of known hosts. 2024/04/19 11:00:15 fuzzer started 2024/04/19 11:00:15 dialing manager at 10.128.0.163:30004 [ 17.798200][ T30] audit: type=1400 audit(1713524415.324:66): avc: denied { node_bind } for pid=280 comm="syz-fuzzer" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1 [ 17.802683][ T30] audit: type=1400 audit(1713524415.324:67): avc: denied { name_bind } for pid=280 comm="syz-fuzzer" src=6060 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 17.921634][ T30] audit: type=1400 audit(1713524415.454:68): avc: denied { integrity } for pid=287 comm="syz-executor" lockdown_reason="debugfs access" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=lockdown permissive=1 [ 17.925129][ T287] cgroup: Unknown subsys name 'net' [ 17.944502][ T30] audit: type=1400 audit(1713524415.454:69): avc: denied { mounton } for pid=287 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1925 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 17.972404][ T30] audit: type=1400 audit(1713524415.454:70): avc: denied { mount } for pid=287 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 17.972571][ T287] cgroup: Unknown subsys name 'devices' [ 17.994542][ T30] audit: type=1400 audit(1713524415.484:71): avc: denied { unmount } for pid=287 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 18.171139][ T287] cgroup: Unknown subsys name 'hugetlb' [ 18.176585][ T287] cgroup: Unknown subsys name 'rlimit' [ 18.391868][ T30] audit: type=1400 audit(1713524415.924:72): avc: denied { mounton } for pid=287 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 18.416364][ T30] audit: type=1400 audit(1713524415.924:73): avc: denied { mount } for pid=287 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 18.424296][ T289] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 18.439592][ T30] audit: type=1400 audit(1713524415.924:74): avc: denied { setattr } for pid=287 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=162 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 2024/04/19 11:00:16 code coverage: enabled 2024/04/19 11:00:16 comparison tracing: enabled 2024/04/19 11:00:16 extra coverage: enabled 2024/04/19 11:00:16 delay kcov mmap: mmap returned an invalid pointer 2024/04/19 11:00:16 setuid sandbox: enabled 2024/04/19 11:00:16 namespace sandbox: enabled 2024/04/19 11:00:16 Android sandbox: enabled 2024/04/19 11:00:16 fault injection: enabled 2024/04/19 11:00:16 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2024/04/19 11:00:16 net packet injection: enabled 2024/04/19 11:00:16 net device setup: enabled 2024/04/19 11:00:16 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2024/04/19 11:00:16 devlink PCI setup: PCI device 0000:00:10.0 is not available 2024/04/19 11:00:16 NIC VF setup: PCI device 0000:00:11.0 is not available 2024/04/19 11:00:16 USB emulation: enabled 2024/04/19 11:00:16 hci packet injection: /dev/vhci does not exist 2024/04/19 11:00:16 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist 2024/04/19 11:00:16 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist 2024/04/19 11:00:16 swap file: enabled [ 18.470639][ T30] audit: type=1400 audit(1713524415.984:75): avc: denied { relabelto } for pid=289 comm="mkswap" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 18.471430][ T287] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k 2024/04/19 11:00:16 starting 5 executor processes [ 18.938237][ T298] bridge0: port 1(bridge_slave_0) entered blocking state [ 18.947119][ T298] bridge0: port 1(bridge_slave_0) entered disabled state [ 18.955209][ T298] device bridge_slave_0 entered promiscuous mode [ 18.979710][ T298] bridge0: port 2(bridge_slave_1) entered blocking state [ 18.986548][ T298] bridge0: port 2(bridge_slave_1) entered disabled state [ 18.993853][ T298] device bridge_slave_1 entered promiscuous mode [ 19.103087][ T299] bridge0: port 1(bridge_slave_0) entered blocking state [ 19.110121][ T299] bridge0: port 1(bridge_slave_0) entered disabled state [ 19.117157][ T299] device bridge_slave_0 entered promiscuous mode [ 19.137979][ T299] bridge0: port 2(bridge_slave_1) entered blocking state [ 19.144912][ T299] bridge0: port 2(bridge_slave_1) entered disabled state [ 19.152129][ T299] device bridge_slave_1 entered promiscuous mode [ 19.162906][ T300] bridge0: port 1(bridge_slave_0) entered blocking state [ 19.169763][ T300] bridge0: port 1(bridge_slave_0) entered disabled state [ 19.176951][ T300] device bridge_slave_0 entered promiscuous mode [ 19.183794][ T300] bridge0: port 2(bridge_slave_1) entered blocking state [ 19.190748][ T300] bridge0: port 2(bridge_slave_1) entered disabled state [ 19.197717][ T300] device bridge_slave_1 entered promiscuous mode [ 19.224582][ T304] bridge0: port 1(bridge_slave_0) entered blocking state [ 19.231531][ T304] bridge0: port 1(bridge_slave_0) entered disabled state [ 19.238525][ T304] device bridge_slave_0 entered promiscuous mode [ 19.257070][ T304] bridge0: port 2(bridge_slave_1) entered blocking state [ 19.263942][ T304] bridge0: port 2(bridge_slave_1) entered disabled state [ 19.271143][ T304] device bridge_slave_1 entered promiscuous mode [ 19.305601][ T303] bridge0: port 1(bridge_slave_0) entered blocking state [ 19.312498][ T303] bridge0: port 1(bridge_slave_0) entered disabled state [ 19.321184][ T303] device bridge_slave_0 entered promiscuous mode [ 19.327784][ T303] bridge0: port 2(bridge_slave_1) entered blocking state [ 19.334805][ T303] bridge0: port 2(bridge_slave_1) entered disabled state [ 19.342079][ T303] device bridge_slave_1 entered promiscuous mode [ 19.360263][ T298] bridge0: port 2(bridge_slave_1) entered blocking state [ 19.367115][ T298] bridge0: port 2(bridge_slave_1) entered forwarding state [ 19.374553][ T298] bridge0: port 1(bridge_slave_0) entered blocking state [ 19.382769][ T298] bridge0: port 1(bridge_slave_0) entered forwarding state [ 19.487428][ T6] bridge0: port 1(bridge_slave_0) entered disabled state [ 19.494641][ T6] bridge0: port 2(bridge_slave_1) entered disabled state [ 19.502642][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 19.510009][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 19.526673][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 19.534655][ T320] bridge0: port 1(bridge_slave_0) entered blocking state [ 19.541491][ T320] bridge0: port 1(bridge_slave_0) entered forwarding state [ 19.566494][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 19.575677][ T6] bridge0: port 2(bridge_slave_1) entered blocking state [ 19.582904][ T6] bridge0: port 2(bridge_slave_1) entered forwarding state [ 19.602372][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 19.610544][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 19.641302][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 19.650455][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 19.658324][ T60] bridge0: port 1(bridge_slave_0) entered blocking state [ 19.665218][ T60] bridge0: port 1(bridge_slave_0) entered forwarding state [ 19.672394][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 19.680695][ T60] bridge0: port 2(bridge_slave_1) entered blocking state [ 19.687522][ T60] bridge0: port 2(bridge_slave_1) entered forwarding state [ 19.694757][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 19.702459][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 19.710255][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 19.735530][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 19.747620][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 19.756326][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 19.764292][ T39] bridge0: port 1(bridge_slave_0) entered blocking state [ 19.771146][ T39] bridge0: port 1(bridge_slave_0) entered forwarding state [ 19.793229][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 19.802363][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 19.810495][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 19.817669][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 19.825066][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 19.832712][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 19.840553][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 19.849966][ T39] bridge0: port 2(bridge_slave_1) entered blocking state [ 19.859878][ T39] bridge0: port 2(bridge_slave_1) entered forwarding state [ 19.870307][ T298] device veth0_vlan entered promiscuous mode [ 19.882826][ T298] device veth1_macvtap entered promiscuous mode [ 19.899732][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 19.909944][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 19.917592][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 19.924838][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 19.932138][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 19.939277][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 19.947528][ T39] bridge0: port 1(bridge_slave_0) entered blocking state [ 19.954369][ T39] bridge0: port 1(bridge_slave_0) entered forwarding state [ 19.961512][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 19.969287][ T39] bridge0: port 2(bridge_slave_1) entered blocking state [ 19.976070][ T39] bridge0: port 2(bridge_slave_1) entered forwarding state [ 19.983190][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 19.991196][ T39] bridge0: port 1(bridge_slave_0) entered blocking state [ 19.998195][ T39] bridge0: port 1(bridge_slave_0) entered forwarding state [ 20.005407][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 20.013316][ T39] bridge0: port 2(bridge_slave_1) entered blocking state [ 20.020057][ T39] bridge0: port 2(bridge_slave_1) entered forwarding state [ 20.027192][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 20.034852][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 20.042793][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 20.050233][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 20.068140][ T299] device veth0_vlan entered promiscuous mode [ 20.074271][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 20.082163][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 20.089862][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 20.097606][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 20.105377][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 20.113446][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 20.121772][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 20.129366][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 20.137645][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 20.145605][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 20.152856][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 20.160624][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 20.172621][ T300] device veth0_vlan entered promiscuous mode [ 20.179593][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 20.187606][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 20.195853][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 20.203956][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 20.228364][ T303] device veth0_vlan entered promiscuous mode [ 20.234678][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 20.243758][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 20.251565][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 20.259418][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 20.267308][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 20.275436][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 20.283532][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 20.291570][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 20.299654][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 20.307267][ T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 20.315187][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 20.322467][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 20.334341][ T304] device veth0_vlan entered promiscuous mode [ 20.343397][ T299] device veth1_macvtap entered promiscuous mode [ 20.352010][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 20.359643][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 20.367394][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 20.375587][ T321] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 20.382974][ T321] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 20.392255][ T304] device veth1_macvtap entered promiscuous mode [ 20.403984][ T300] device veth1_macvtap entered promiscuous mode [ 20.412916][ T321] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 20.421152][ T321] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 20.429106][ T321] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 20.436563][ T321] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 20.444497][ T321] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@sack_perm, @window, @sack_perm, @sack_perm, @timestamp, @timestamp, @timestamp, @timestamp], 0x20000149) setsockopt$inet_tcp_int(r0, 0x6, 0x0, &(0x7f0000000180)=0x800, 0x4) [ 20.452475][ T321] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 20.460746][ T321] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 20.470962][ T321] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 20.496971][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 20.505449][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 20.513751][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 20.522530][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 20.531158][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 20.539229][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 20.548442][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 20.558773][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 20.570011][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 20.578052][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready executing program 0: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xf, 0x4, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000a50000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='ext4_ext_remove_space\x00', r1}, 0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.time_recursive\x00', 0x275a, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.time_recursive\x00', 0x275a, 0x0) write$cgroup_int(r3, &(0x7f0000000100), 0x1001) r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='ext4_ext_remove_space\x00', r4}, 0x10) ioctl$SIOCSIFHWADDR(r2, 0x4030582b, &(0x7f0000000000)={'lo\x00', @link_local={0x1, 0x80, 0xc2, 0xc}}) executing program 2: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = memfd_create(&(0x7f0000000300)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x3) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000020000000000000004b64ffec850000007d000000850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10) write$binfmt_elf64(r1, &(0x7f0000000180)=ANY=[], 0x78) sendfile(r0, r1, &(0x7f00000001c0), 0x8) fcntl$addseals(r1, 0x409, 0x8) fallocate(r1, 0x3, 0x8b00, 0x3) [ 20.595183][ T303] device veth1_macvtap entered promiscuous mode [ 20.619874][ T321] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 20.627868][ T321] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 20.649770][ T321] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000180)=ANY=[@ANYRES64], 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x3, 0x5}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800004e9d00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) executing program 3: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000406d041bc7000000000001090224000100000000090400000103000000092100e1000122070009058103"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r2}, 0x10) syz_usb_control_io(r0, &(0x7f0000000040)={0x2c, &(0x7f00000001c0)=ANY=[@ANYBLOB="0000070000000700470482f4"], 0x0, 0x0, 0x0, 0x0}, 0x0) [ 20.672244][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 20.688644][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 20.696985][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 20.706387][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready executing program 2: syz_usb_connect(0x0, 0x36, &(0x7f0000000980)=ANY=[@ANYBLOB="120100000b50f810630b3a658f2a010203010902240001000000000904000002ecbb9c0009050affffffff0002", @ANYRES64], 0x0) executing program 1: syz_usb_connect(0x0, 0x47, &(0x7f0000000f80)={{0x12, 0x1, 0x0, 0xb9, 0x22, 0x92, 0x20, 0x152d, 0x310, 0xc52d, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x35, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xe, 0x1, 0x0, 0x0, [@cdc_ecm={{0xb, 0x24, 0x6, 0x0, 0x0, "7d80f8a67a4b"}, {0x5}, {0xd, 0x24, 0xf, 0x1, 0xa53}, [@ncm={0x6}]}]}}]}}]}}, 0x0) executing program 0: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x12, 0x5, 0x8, 0x1}, 0x48) r1 = socket$inet_udp(0x2, 0x2, 0x0) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000940)={r0, &(0x7f0000000780), &(0x7f0000000900)=@udp=r1}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f00000001c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000300)='kfree\x00', r2}, 0x10) r3 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0) write$selinux_attr(r3, &(0x7f0000000100)='system_u:object_r:hugetlbfs_t:s0\x00', 0x2000011d) [ 20.999523][ T321] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 21.006876][ T26] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 121.049447][ C0] rcu: INFO: rcu_preempt self-detected stall on CPU [ 121.055888][ C0] rcu: 0-...!: (10002 ticks this GP) idle=b5d/1/0x4000000000000000 softirq=2254/2254 fqs=1 last_accelerate: 9280/b9ca dyntick_enabled: 1 [ 121.069758][ C0] (t=10003 jiffies g=977 q=147) [ 121.074529][ C0] rcu: rcu_preempt kthread timer wakeup didn't happen for 10000 jiffies! g977 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 [ 121.086503][ C0] rcu: Possible timer handling issue on cpu=1 timer-softirq=353 [ 121.094054][ C0] rcu: rcu_preempt kthread starved for 10001 jiffies! g977 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=1 [ 121.105076][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 121.114887][ C0] rcu: RCU grace-period kthread stack dump: [ 121.120623][ C0] task:rcu_preempt state:I stack:28328 pid: 14 ppid: 2 flags:0x00004000 [ 121.129650][ C0] Call Trace: [ 121.132766][ C0] [ 121.135549][ C0] __schedule+0xccc/0x1590 [ 121.139881][ C0] ? __sched_text_start+0x8/0x8 [ 121.144569][ C0] ? del_timer_sync+0x1bc/0x230 [ 121.149254][ C0] ? __kasan_check_write+0x14/0x20 [ 121.154203][ C0] schedule+0x11f/0x1e0 [ 121.158193][ C0] schedule_timeout+0x18c/0x370 [ 121.162880][ C0] ? __kasan_check_write+0x14/0x20 [ 121.167828][ C0] ? _raw_spin_lock_irqsave+0xf9/0x210 [ 121.173122][ C0] ? console_conditional_schedule+0x30/0x30 [ 121.178853][ C0] ? update_process_times+0x200/0x200 [ 121.184064][ C0] ? prepare_to_swait_event+0x308/0x320 [ 121.189439][ C0] rcu_gp_fqs_loop+0x2af/0xf80 [ 121.194040][ C0] ? dump_blkd_tasks+0x7e0/0x7e0 [ 121.200877][ C0] ? rcu_gp_init+0xc30/0xc30 [ 121.205553][ C0] ? _raw_spin_unlock_irq+0x4e/0x70 [ 121.210591][ C0] ? rcu_gp_init+0x9cf/0xc30 [ 121.216384][ C0] rcu_gp_kthread+0xa4/0x350 [ 121.221343][ C0] ? _raw_spin_lock+0x1b0/0x1b0 [ 121.226002][ C0] ? rcu_barrier_callback+0x50/0x50 [ 121.231841][ C0] ? __kasan_check_read+0x11/0x20 [ 121.236761][ C0] ? __kthread_parkme+0xb2/0x200 [ 121.241532][ C0] kthread+0x421/0x510 [ 121.245436][ C0] ? rcu_barrier_callback+0x50/0x50 [ 121.250465][ C0] ? kthread_blkcg+0xd0/0xd0 [ 121.254892][ C0] ret_from_fork+0x1f/0x30 [ 121.259146][ C0] [ 121.262020][ C0] rcu: Stack dump where RCU GP kthread last ran: [ 121.268175][ C0] Sending NMI from CPU 0 to CPUs 1: [ 121.273261][ C1] NMI backtrace for cpu 1 [ 121.273278][ C1] CPU: 1 PID: 294 Comm: syz-fuzzer Not tainted 5.15.148-syzkaller-00013-gad06eaf051cd #0 [ 121.273297][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 121.273309][ C1] RIP: 0010:kvm_wait+0x117/0x180 [ 121.273332][ C1] Code: 48 c1 e8 03 42 0f b6 04 20 84 c0 44 8b 74 24 1c 75 53 41 0f b6 45 00 44 38 f0 0f 85 63 ff ff ff 66 90 0f 00 2d 8a 03 f3 03 f4 54 ff ff ff fa 4c 89 e8 48 c1 e8 03 42 0f b6 04 20 84 c0 44 8b [ 121.273346][ C1] RSP: 0000:ffffc900001d0620 EFLAGS: 00000046 [ 121.273362][ C1] RAX: 0000000000000001 RBX: 1ffff9200003a0c8 RCX: 1ffffffff0d1aa9c [ 121.273375][ C1] RDX: 0000000000000001 RSI: 0000000000000001 RDI: ffff8881f7137ed4 [ 121.273386][ C1] RBP: ffffc900001d06d0 R08: dffffc0000000000 R09: ffffed103ee26fdb [ 121.273399][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 121.273411][ C1] R13: ffff8881f7137ed4 R14: 0000000000000001 R15: 1ffff9200003a0cc [ 121.273423][ C1] FS: 000000c00083a090(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 121.273439][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 121.273451][ C1] CR2: 000000c0027a68d0 CR3: 000000011b23f000 CR4: 00000000003506a0 [ 121.273466][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 121.273476][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 121.273487][ C1] Call Trace: [ 121.273493][ C1] [ 121.273500][ C1] ? show_regs+0x58/0x60 [ 121.273536][ C1] ? nmi_cpu_backtrace+0x29f/0x300 [ 121.273577][ C1] ? nmi_trigger_cpumask_backtrace+0x270/0x270 [ 121.273619][ C1] ? kvm_wait+0x117/0x180 [ 121.273651][ C1] ? kvm_wait+0x117/0x180 [ 121.273684][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 121.273721][ C1] ? nmi_handle+0xa8/0x280 [ 121.273757][ C1] ? kvm_wait+0x117/0x180 [ 121.273790][ C1] ? default_do_nmi+0x69/0x160 [ 121.273827][ C1] ? exc_nmi+0xaf/0x120 [ 121.273862][ C1] ? end_repeat_nmi+0x16/0x31 [ 121.273880][ C1] ? kvm_wait+0x117/0x180 [ 121.273896][ C1] ? kvm_wait+0x117/0x180 [ 121.273912][ C1] ? kvm_wait+0x117/0x180 [ 121.273927][ C1] [ 121.273932][ C1] [ 121.273937][ C1] ? kvm_arch_para_hints+0x30/0x30 [ 121.273956][ C1] __pv_queued_spin_lock_slowpath+0x41b/0xc40 [ 121.273979][ C1] ? __pv_queued_spin_unlock_slowpath+0x310/0x310 [ 121.274000][ C1] _raw_spin_lock_bh+0x139/0x1b0 [ 121.274020][ C1] ? _raw_spin_lock_irq+0x1b0/0x1b0 [ 121.274039][ C1] ? sock_hash_bucket_hash+0x36d/0x7e0 [ 121.274070][ C1] sock_hash_delete_elem+0xb1/0x2f0 [ 121.274088][ C1] ? dummy_timer+0x7da/0x2f70 [ 121.274104][ C1] bpf_prog_2c29ac5cdc6b1842+0x3a/0x994 [ 121.274119][ C1] bpf_trace_run2+0xec/0x210 [ 121.274138][ C1] ? bpf_trace_run1+0x1c0/0x1c0 [ 121.274156][ C1] ? dummy_timer+0x7da/0x2f70 [ 121.274171][ C1] ? dummy_timer+0x7da/0x2f70 [ 121.274186][ C1] __bpf_trace_kfree+0x6f/0x90 [ 121.274203][ C1] ? dummy_timer+0x7da/0x2f70 [ 121.274217][ C1] kfree+0x1f3/0x220 [ 121.274236][ C1] dummy_timer+0x7da/0x2f70 [ 121.274256][ C1] ? __kasan_check_read+0x11/0x20 [ 121.274278][ C1] ? dummy_free_streams+0x330/0x330 [ 121.274293][ C1] ? _find_next_bit+0x103/0x200 [ 121.274316][ C1] ? __next_timer_interrupt+0x1fb/0x260 [ 121.274337][ C1] ? dummy_free_streams+0x330/0x330 [ 121.274353][ C1] call_timer_fn+0x3b/0x2d0 [ 121.274368][ C1] ? dummy_free_streams+0x330/0x330 [ 121.274384][ C1] __run_timers+0x72a/0xa10 [ 121.274401][ C1] ? calc_index+0x280/0x280 [ 121.274416][ C1] ? hrtimer_interrupt+0x867/0xaa0 [ 121.274434][ C1] run_timer_softirq+0x69/0xf0 [ 121.274449][ C1] __do_softirq+0x26d/0x5bf [ 121.274466][ C1] __irq_exit_rcu+0x50/0xf0 [ 121.274484][ C1] irq_exit_rcu+0x9/0x10 [ 121.274501][ C1] sysvec_apic_timer_interrupt+0x9a/0xc0 [ 121.274519][ C1] [ 121.274524][ C1] [ 121.274529][ C1] asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 121.274545][ C1] RIP: 0010:exc_page_fault+0x1bc/0x830 [ 121.274565][ C1] Code: 40 0f 84 16 01 00 00 49 8d 7e 5c be 04 00 00 00 e8 29 87 ef fc 41 8b 46 5c 83 f8 01 0f 84 fb 00 00 00 65 48 ff 05 5c 81 40 7b <4d> 8b a6 b8 00 00 00 41 f6 c4 01 0f 85 da 00 00 00 4c 89 f7 48 8b [ 121.274578][ C1] RSP: 0000:ffffc900009b7e08 EFLAGS: 00000206 [ 121.274592][ C1] RAX: 000000000000000c RBX: 0000000000000254 RCX: ffffffff84c2bdf7 [ 121.274603][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff88811f34405c [ 121.274614][ C1] RBP: ffffc900009b7f48 R08: dffffc0000000000 R09: ffffed1023e6880c [ 121.274627][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 000000c0027a6000 [ 121.274639][ C1] R13: 0000000000000004 R14: ffff88811f344000 R15: 0000000000000254 [ 121.274651][ C1] ? exc_page_fault+0x1a7/0x830 [ 121.274669][ C1] ? exc_page_fault+0x1a7/0x830 [ 121.274691][ C1] asm_exc_page_fault+0x27/0x30 [ 121.274706][ C1] RIP: 0033:0x413d46 [ 121.274720][ C1] Code: 31 4d 8d 49 f8 4d 8b 09 4d 85 c9 75 e5 e9 68 ff ff ff 4c 8d 57 01 4c 89 df 4d 89 c8 4d 89 d1 0f 1f 44 00 00 49 83 f9 08 73 d0 <84> 01 46 0f b6 14 09 41 80 fa 01 77 1b 48 85 ff 49 89 cb 4c 0f 45 [ 121.274733][ C1] RSP: 002b:000000c00085d498 EFLAGS: 00010293 [ 121.274746][ C1] RAX: a6189092ef260b96 RBX: 000000c00085d5b8 RCX: 000000c0027a68d0 [ 121.274758][ C1] RDX: 0000000000bb0fa0 RSI: 0000000000000038 RDI: 0000000000000000 [ 121.274769][ C1] RBP: 000000c00085d4c8 R08: 0000000000000000 R09: 0000000000000000 [ 121.274780][ C1] R10: 00000000000c0000 R11: 000000c002dbad90 R12: 000000c000859bf0 [ 121.274792][ C1] R13: 2492492492492212 R14: 000000c0000061a0 R15: 000000000000002e [ 121.274806][ C1] [ 121.275271][ C0] NMI backtrace for cpu 0 [ 121.823724][ C0] CPU: 0 PID: 346 Comm: syz-executor.0 Not tainted 5.15.148-syzkaller-00013-gad06eaf051cd #0 [ 121.833682][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 121.843582][ C0] Call Trace: [ 121.846704][ C0] [ 121.849406][ C0] dump_stack_lvl+0x151/0x1b7 [ 121.853909][ C0] ? io_uring_drop_tctx_refs+0x190/0x190 [ 121.859372][ C0] ? ttwu_do_wakeup+0x187/0x430 [ 121.864070][ C0] dump_stack+0x15/0x17 [ 121.868060][ C0] nmi_cpu_backtrace+0x2f7/0x300 [ 121.872831][ C0] ? nmi_trigger_cpumask_backtrace+0x270/0x270 [ 121.878904][ C0] ? _raw_spin_lock_irqsave+0xf9/0x210 [ 121.884196][ C0] ? __kasan_check_write+0x14/0x20 [ 121.889151][ C0] ? _raw_spin_lock+0x1b0/0x1b0 [ 121.893830][ C0] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 121.899732][ C0] nmi_trigger_cpumask_backtrace+0x15d/0x270 [ 121.905549][ C0] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 121.911449][ C0] arch_trigger_cpumask_backtrace+0x10/0x20 [ 121.917177][ C0] rcu_dump_cpu_stacks+0x1d8/0x330 [ 121.922138][ C0] print_cpu_stall+0x315/0x5f0 [ 121.927495][ C0] rcu_sched_clock_irq+0x989/0x12f0 [ 121.933076][ C0] ? rcu_boost_kthread_setaffinity+0x340/0x340 [ 121.939522][ C0] ? hrtimer_run_queues+0x15f/0x440 [ 121.944548][ C0] update_process_times+0x198/0x200 [ 121.949676][ C0] tick_sched_timer+0x188/0x240 [ 121.955221][ C0] ? tick_setup_sched_timer+0x480/0x480 [ 121.961330][ C0] __hrtimer_run_queues+0x41a/0xad0 [ 121.966356][ C0] ? hrtimer_interrupt+0xaa0/0xaa0 [ 121.971300][ C0] ? clockevents_program_event+0x22f/0x300 [ 121.976938][ C0] ? ktime_get_update_offsets_now+0x2ba/0x2d0 [ 121.982930][ C0] hrtimer_interrupt+0x40c/0xaa0 [ 121.987704][ C0] __sysvec_apic_timer_interrupt+0xfd/0x3c0 [ 121.993518][ C0] sysvec_apic_timer_interrupt+0x95/0xc0 [ 121.999073][ C0] [ 122.001960][ C0] [ 122.004741][ C0] asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 122.010553][ C0] RIP: 0010:kvm_wait+0x147/0x180 [ 122.015329][ C0] Code: 4c 89 e8 48 c1 e8 03 42 0f b6 04 20 84 c0 44 8b 74 24 1c 75 34 41 0f b6 45 00 44 38 f0 75 10 66 90 0f 00 2d 5b 03 f3 03 fb f4 24 ff ff ff fb e9 1e ff ff ff 44 89 e9 80 e1 07 38 c1 7c a3 4c [ 122.034769][ C0] RSP: 0018:ffffc90005297000 EFLAGS: 00000246 [ 122.040675][ C0] RAX: 0000000000000003 RBX: 1ffff92000a52e04 RCX: ffffffff8154f88f [ 122.048484][ C0] RDX: dffffc0000000000 RSI: 0000000000000003 RDI: ffff8881073cc3a8 [ 122.056295][ C0] RBP: ffffc900052970b0 R08: dffffc0000000000 R09: ffffed1020e79876 [ 122.064103][ C0] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 122.072001][ C0] R13: ffff8881073cc3a8 R14: 0000000000000003 R15: 1ffff92000a52e08 [ 122.079862][ C0] ? __pv_queued_spin_lock_slowpath+0x65f/0xc40 [ 122.085893][ C0] ? asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 122.091879][ C0] ? kvm_arch_para_hints+0x30/0x30 [ 122.096825][ C0] ? __pv_queued_spin_lock_slowpath+0x65f/0xc40 [ 122.102901][ C0] __pv_queued_spin_lock_slowpath+0x6bc/0xc40 [ 122.108802][ C0] ? __kasan_slab_alloc+0xb1/0xe0 [ 122.113663][ C0] ? __pv_queued_spin_unlock_slowpath+0x310/0x310 [ 122.119912][ C0] ? do_filp_open+0x21c/0x460 [ 122.124424][ C0] ? __x64_sys_openat+0x243/0x290 [ 122.129285][ C0] ? do_syscall_64+0x3d/0xb0 [ 122.133710][ C0] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 122.139702][ C0] _raw_spin_lock_bh+0x139/0x1b0 [ 122.144472][ C0] ? _raw_spin_lock_irq+0x1b0/0x1b0 [ 122.149507][ C0] ? sock_hash_bucket_hash+0x36d/0x7e0 [ 122.154801][ C0] sock_hash_delete_elem+0xb1/0x2f0 [ 122.159948][ C0] ? sock_map_unref+0x352/0x4d0 [ 122.164628][ C0] bpf_prog_2c29ac5cdc6b1842+0x3a/0x994 [ 122.170013][ C0] bpf_trace_run2+0xec/0x210 [ 122.174436][ C0] ? bpf_trace_run1+0x1c0/0x1c0 [ 122.179124][ C0] ? sock_map_unref+0x352/0x4d0 [ 122.183807][ C0] ? remove_wait_queue+0x140/0x140 [ 122.188753][ C0] ? sock_map_unref+0x352/0x4d0 [ 122.193442][ C0] __bpf_trace_kfree+0x6f/0x90 [ 122.198255][ C0] ? sock_map_unref+0x352/0x4d0 [ 122.206164][ C0] kfree+0x1f3/0x220 [ 122.210183][ C0] sock_map_unref+0x352/0x4d0 [ 122.214708][ C0] sock_hash_delete_elem+0x274/0x2f0 [ 122.219814][ C0] ? kfree_link+0x15/0x20 [ 122.223979][ C0] bpf_prog_2c29ac5cdc6b1842+0x3a/0x994 [ 122.229361][ C0] bpf_trace_run2+0xec/0x210 [ 122.233786][ C0] ? proc_task_lookup+0x2c2/0x330 [ 122.238647][ C0] ? bpf_trace_run1+0x1c0/0x1c0 [ 122.243333][ C0] ? kfree_link+0x15/0x20 [ 122.247498][ C0] ? __lookup_slow+0x2fe/0x400 [ 122.252099][ C0] ? kfree_link+0x15/0x20 [ 122.256264][ C0] __bpf_trace_kfree+0x6f/0x90 [ 122.260867][ C0] ? kfree_link+0x15/0x20 [ 122.265031][ C0] ? noop_direct_IO+0x20/0x20 [ 122.269543][ C0] kfree+0x1f3/0x220 [ 122.273277][ C0] ? up_read+0x55/0x170 [ 122.277269][ C0] ? noop_direct_IO+0x20/0x20 [ 122.281783][ C0] kfree_link+0x15/0x20 [ 122.285775][ C0] walk_component+0x23a/0x610 [ 122.290289][ C0] ? nd_alloc_stack+0xf0/0xf0 [ 122.294805][ C0] ? security_inode_permission+0xb0/0xf0 [ 122.300268][ C0] ? proc_tgid_base_lookup+0x30/0x30 [ 122.305392][ C0] link_path_walk+0x642/0xd90 [ 122.309904][ C0] ? handle_lookup_down+0x130/0x130 [ 122.314937][ C0] path_openat+0x271/0x2f40 [ 122.319282][ C0] ? stack_trace_snprint+0xf0/0xf0 [ 122.324773][ C0] ? __kasan_slab_alloc+0xb1/0xe0 [ 122.330618][ C0] ? slab_post_alloc_hook+0x53/0x2c0 [ 122.336816][ C0] ? kmem_cache_alloc+0xf5/0x200 [ 122.341756][ C0] ? getname_flags+0xba/0x520 [ 122.346610][ C0] ? __x64_sys_openat+0x243/0x290 [ 122.351464][ C0] ? do_filp_open+0x460/0x460 [ 122.355987][ C0] do_filp_open+0x21c/0x460 [ 122.360318][ C0] ? vfs_tmpfile+0x2c0/0x2c0 [ 122.364745][ C0] ? noop_direct_IO+0x20/0x20 [ 122.369261][ C0] do_sys_openat2+0x13f/0x830 [ 122.373772][ C0] ? do_sys_open+0x220/0x220 [ 122.378197][ C0] ? security_bpf+0x82/0xb0 [ 122.382536][ C0] __x64_sys_openat+0x243/0x290 [ 122.387222][ C0] ? __ia32_sys_open+0x270/0x270 [ 122.391997][ C0] ? __kasan_check_read+0x11/0x20 [ 122.396860][ C0] ? exit_to_user_mode_prepare+0x7e/0xa0 [ 122.402326][ C0] do_syscall_64+0x3d/0xb0 [ 122.406576][ C0] ? sysvec_apic_timer_interrupt+0x55/0xc0 [ 122.412218][ C0] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 122.417948][ C0] RIP: 0033:0x7f2553fa2ea9 [ 122.422214][ C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 122.441643][ C0] RSP: 002b:00007f2552d160c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 122.449885][ C0] RAX: ffffffffffffffda RBX: 00007f25540d0f80 RCX: 00007f2553fa2ea9 [ 122.457784][ C0] RDX: 0000000000000002 RSI: 0000000020000040 RDI: ffffffffffffff9c [ 122.465710][ C0] RBP: 00007f2553fef4a4 R08: 0000000000000000 R09: 0000000000000000 [ 122.473986][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 122.484467][ C0] R13: 000000000000000b R14: 00007f25540d0f80 R15: 00007ffeeabdfe18 [ 122.493062][ C0] [ 265.068247][ C0] watchdog: BUG: soft lockup - CPU#0 stuck for 245s! [syz-executor.0:346] [ 265.076652][ C0] Modules linked in: [ 265.080387][ C0] CPU: 0 PID: 346 Comm: syz-executor.0 Not tainted 5.15.148-syzkaller-00013-gad06eaf051cd #0 [ 265.090370][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 265.100265][ C0] RIP: 0010:kvm_wait+0x147/0x180 [ 265.105035][ C0] Code: 4c 89 e8 48 c1 e8 03 42 0f b6 04 20 84 c0 44 8b 74 24 1c 75 34 41 0f b6 45 00 44 38 f0 75 10 66 90 0f 00 2d 5b 03 f3 03 fb f4 24 ff ff ff fb e9 1e ff ff ff 44 89 e9 80 e1 07 38 c1 7c a3 4c [ 265.125052][ C0] RSP: 0018:ffffc90005297000 EFLAGS: 00000246 [ 265.130954][ C0] RAX: 0000000000000003 RBX: 1ffff92000a52e04 RCX: ffffffff8154f88f [ 265.138759][ C0] RDX: dffffc0000000000 RSI: 0000000000000003 RDI: ffff8881073cc3a8 [ 265.146572][ C0] RBP: ffffc900052970b0 R08: dffffc0000000000 R09: ffffed1020e79876 [ 265.154382][ C0] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 265.162291][ C0] R13: ffff8881073cc3a8 R14: 0000000000000003 R15: 1ffff92000a52e08 [ 265.170091][ C0] FS: 00007f2552d166c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 265.178857][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 265.185597][ C0] CR2: 0000001b2de21000 CR3: 0000000128ebf000 CR4: 00000000003506b0 [ 265.193420][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 265.201216][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 265.209151][ C0] Call Trace: [ 265.212488][ C0] [ 265.216080][ C0] ? show_regs+0x58/0x60 [ 265.220179][ C0] ? watchdog_timer_fn+0x4b1/0x5f0 [ 265.225300][ C0] ? proc_watchdog_cpumask+0xd0/0xd0 [ 265.232282][ C0] ? __hrtimer_run_queues+0x41a/0xad0 [ 265.237606][ C0] ? hrtimer_interrupt+0xaa0/0xaa0 [ 265.242553][ C0] ? clockevents_program_event+0x22f/0x300 [ 265.248190][ C0] ? ktime_get_update_offsets_now+0x2ba/0x2d0 [ 265.254094][ C0] ? hrtimer_interrupt+0x40c/0xaa0 [ 265.259042][ C0] ? __sysvec_apic_timer_interrupt+0xfd/0x3c0 [ 265.264940][ C0] ? sysvec_apic_timer_interrupt+0x95/0xc0 [ 265.270582][ C0] [ 265.273359][ C0] [ 265.276139][ C0] ? asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 265.282126][ C0] ? __pv_queued_spin_lock_slowpath+0x65f/0xc40 [ 265.288201][ C0] ? kvm_wait+0x147/0x180 [ 265.292455][ C0] ? asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 265.298443][ C0] ? kvm_arch_para_hints+0x30/0x30 [ 265.303392][ C0] ? __pv_queued_spin_lock_slowpath+0x65f/0xc40 [ 265.309472][ C0] __pv_queued_spin_lock_slowpath+0x6bc/0xc40 [ 265.315366][ C0] ? __kasan_slab_alloc+0xb1/0xe0 [ 265.320228][ C0] ? __pv_queued_spin_unlock_slowpath+0x310/0x310 [ 265.326475][ C0] ? do_filp_open+0x21c/0x460 [ 265.330988][ C0] ? __x64_sys_openat+0x243/0x290 [ 265.335847][ C0] ? do_syscall_64+0x3d/0xb0 [ 265.340276][ C0] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 265.346178][ C0] _raw_spin_lock_bh+0x139/0x1b0 [ 265.350957][ C0] ? _raw_spin_lock_irq+0x1b0/0x1b0 [ 265.355989][ C0] ? sock_hash_bucket_hash+0x36d/0x7e0 [ 265.361278][ C0] sock_hash_delete_elem+0xb1/0x2f0 [ 265.366314][ C0] ? sock_map_unref+0x352/0x4d0 [ 265.371000][ C0] bpf_prog_2c29ac5cdc6b1842+0x3a/0x994 [ 265.376380][ C0] bpf_trace_run2+0xec/0x210 [ 265.380807][ C0] ? bpf_trace_run1+0x1c0/0x1c0 [ 265.390074][ C0] ? sock_map_unref+0x352/0x4d0 [ 265.397519][ C0] ? remove_wait_queue+0x140/0x140 [ 265.403148][ C0] ? sock_map_unref+0x352/0x4d0 [ 265.409903][ C0] __bpf_trace_kfree+0x6f/0x90 [ 265.414493][ C0] ? sock_map_unref+0x352/0x4d0 [ 265.419182][ C0] kfree+0x1f3/0x220 [ 265.422900][ C0] sock_map_unref+0x352/0x4d0 [ 265.427515][ C0] sock_hash_delete_elem+0x274/0x2f0 [ 265.432629][ C0] ? kfree_link+0x15/0x20 [ 265.436794][ C0] bpf_prog_2c29ac5cdc6b1842+0x3a/0x994 [ 265.442176][ C0] bpf_trace_run2+0xec/0x210 [ 265.447981][ C0] ? proc_task_lookup+0x2c2/0x330 [ 265.459457][ C0] ? bpf_trace_run1+0x1c0/0x1c0 [ 265.464358][ C0] ? kfree_link+0x15/0x20 [ 265.470629][ C0] ? __lookup_slow+0x2fe/0x400 [ 265.475400][ C0] ? kfree_link+0x15/0x20 [ 265.481163][ C0] __bpf_trace_kfree+0x6f/0x90 [ 265.487115][ C0] ? kfree_link+0x15/0x20 [ 265.491876][ C0] ? noop_direct_IO+0x20/0x20 [ 265.496332][ C0] kfree+0x1f3/0x220 [ 265.500064][ C0] ? up_read+0x55/0x170 [ 265.504052][ C0] ? noop_direct_IO+0x20/0x20 [ 265.508565][ C0] kfree_link+0x15/0x20 [ 265.512562][ C0] walk_component+0x23a/0x610 [ 265.517073][ C0] ? nd_alloc_stack+0xf0/0xf0 [ 265.521585][ C0] ? security_inode_permission+0xb0/0xf0 [ 265.527052][ C0] ? proc_tgid_base_lookup+0x30/0x30 [ 265.532175][ C0] link_path_walk+0x642/0xd90 [ 265.536689][ C0] ? handle_lookup_down+0x130/0x130 [ 265.541720][ C0] path_openat+0x271/0x2f40 [ 265.546059][ C0] ? stack_trace_snprint+0xf0/0xf0 [ 265.551007][ C0] ? __kasan_slab_alloc+0xb1/0xe0 [ 265.555868][ C0] ? slab_post_alloc_hook+0x53/0x2c0 [ 265.561076][ C0] ? kmem_cache_alloc+0xf5/0x200 [ 265.565848][ C0] ? getname_flags+0xba/0x520 [ 265.570361][ C0] ? __x64_sys_openat+0x243/0x290 [ 265.575222][ C0] ? do_filp_open+0x460/0x460 [ 265.579736][ C0] do_filp_open+0x21c/0x460 [ 265.584073][ C0] ? vfs_tmpfile+0x2c0/0x2c0 [ 265.588501][ C0] ? noop_direct_IO+0x20/0x20 [ 265.593018][ C0] do_sys_openat2+0x13f/0x830 [ 265.597529][ C0] ? do_sys_open+0x220/0x220 [ 265.601952][ C0] ? security_bpf+0x82/0xb0 [ 265.606295][ C0] __x64_sys_openat+0x243/0x290 [ 265.610983][ C0] ? __ia32_sys_open+0x270/0x270 [ 265.615753][ C0] ? __kasan_check_read+0x11/0x20 [ 265.620614][ C0] ? exit_to_user_mode_prepare+0x7e/0xa0 [ 265.626082][ C0] do_syscall_64+0x3d/0xb0 [ 265.630351][ C0] ? sysvec_apic_timer_interrupt+0x55/0xc0 [ 265.638917][ C0] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 265.644911][ C0] RIP: 0033:0x7f2553fa2ea9 [ 265.649286][ C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 265.669373][ C0] RSP: 002b:00007f2552d160c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 265.677612][ C0] RAX: ffffffffffffffda RBX: 00007f25540d0f80 RCX: 00007f2553fa2ea9 [ 265.685422][ C0] RDX: 0000000000000002 RSI: 0000000020000040 RDI: ffffffffffffff9c [ 265.693230][ C0] RBP: 00007f2553fef4a4 R08: 0000000000000000 R09: 0000000000000000 [ 265.701045][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 265.708855][ C0] R13: 000000000000000b R14: 00007f25540d0f80 R15: 00007ffeeabdfe18 [ 265.716671][ C0] [ 265.719541][ C0] Sending NMI from CPU 0 to CPUs 1: [ 265.724619][ C1] NMI backtrace for cpu 1 [ 265.724629][ C1] CPU: 1 PID: 294 Comm: syz-fuzzer Not tainted 5.15.148-syzkaller-00013-gad06eaf051cd #0 [ 265.724647][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 265.724657][ C1] RIP: 0010:kvm_wait+0x117/0x180 [ 265.724680][ C1] Code: 48 c1 e8 03 42 0f b6 04 20 84 c0 44 8b 74 24 1c 75 53 41 0f b6 45 00 44 38 f0 0f 85 63 ff ff ff 66 90 0f 00 2d 8a 03 f3 03 f4 54 ff ff ff fa 4c 89 e8 48 c1 e8 03 42 0f b6 04 20 84 c0 44 8b [ 265.724695][ C1] RSP: 0000:ffffc900001d0620 EFLAGS: 00000046 [ 265.724710][ C1] RAX: 0000000000000001 RBX: 1ffff9200003a0c8 RCX: 1ffffffff0d1aa9c [ 265.724723][ C1] RDX: 0000000000000001 RSI: 0000000000000001 RDI: ffff8881f7137ed4 [ 265.724734][ C1] RBP: ffffc900001d06d0 R08: dffffc0000000000 R09: ffffed103ee26fdb [ 265.724747][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 265.724759][ C1] R13: ffff8881f7137ed4 R14: 0000000000000001 R15: 1ffff9200003a0cc [ 265.724771][ C1] FS: 000000c00083a090(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 265.724787][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 265.724799][ C1] CR2: 000000c0027a68d0 CR3: 000000011b23f000 CR4: 00000000003506a0 [ 265.724814][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 265.724824][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 265.724835][ C1] Call Trace: [ 265.724841][ C1] [ 265.724847][ C1] ? show_regs+0x58/0x60 [ 265.724884][ C1] ? nmi_cpu_backtrace+0x29f/0x300 [ 265.724926][ C1] ? nmi_trigger_cpumask_backtrace+0x270/0x270 [ 265.724969][ C1] ? kvm_wait+0x117/0x180 [ 265.725002][ C1] ? kvm_wait+0x117/0x180 [ 265.725035][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 265.725073][ C1] ? nmi_handle+0xa8/0x280 [ 265.725110][ C1] ? kvm_wait+0x117/0x180 [ 265.725142][ C1] ? kvm_wait+0x117/0x180 [ 265.725174][ C1] ? default_do_nmi+0x69/0x160 [ 265.725213][ C1] ? exc_nmi+0xaf/0x120 [ 265.725247][ C1] ? end_repeat_nmi+0x16/0x31 [ 265.725284][ C1] ? kvm_wait+0x117/0x180 [ 265.725317][ C1] ? kvm_wait+0x117/0x180 [ 265.725356][ C1] ? kvm_wait+0x117/0x180 [ 265.725372][ C1] [ 265.725377][ C1] [ 265.725382][ C1] ? kvm_arch_para_hints+0x30/0x30 [ 265.725401][ C1] __pv_queued_spin_lock_slowpath+0x41b/0xc40 [ 265.725424][ C1] ? __pv_queued_spin_unlock_slowpath+0x310/0x310 [ 265.725446][ C1] _raw_spin_lock_bh+0x139/0x1b0 [ 265.725465][ C1] ? _raw_spin_lock_irq+0x1b0/0x1b0 [ 265.725484][ C1] ? sock_hash_bucket_hash+0x36d/0x7e0 [ 265.725505][ C1] sock_hash_delete_elem+0xb1/0x2f0 [ 265.725523][ C1] ? dummy_timer+0x7da/0x2f70 [ 265.725539][ C1] bpf_prog_2c29ac5cdc6b1842+0x3a/0x994 [ 265.725554][ C1] bpf_trace_run2+0xec/0x210 [ 265.725573][ C1] ? bpf_trace_run1+0x1c0/0x1c0 [ 265.725590][ C1] ? dummy_timer+0x7da/0x2f70 [ 265.725606][ C1] ? dummy_timer+0x7da/0x2f70 [ 265.725621][ C1] __bpf_trace_kfree+0x6f/0x90 [ 265.725639][ C1] ? dummy_timer+0x7da/0x2f70 [ 265.725654][ C1] kfree+0x1f3/0x220 [ 265.725673][ C1] dummy_timer+0x7da/0x2f70 [ 265.725692][ C1] ? __kasan_check_read+0x11/0x20 [ 265.725714][ C1] ? dummy_free_streams+0x330/0x330 [ 265.725729][ C1] ? _find_next_bit+0x103/0x200 [ 265.725749][ C1] ? __next_timer_interrupt+0x1fb/0x260 [ 265.725770][ C1] ? dummy_free_streams+0x330/0x330 [ 265.725786][ C1] call_timer_fn+0x3b/0x2d0 [ 265.725801][ C1] ? dummy_free_streams+0x330/0x330 [ 265.725817][ C1] __run_timers+0x72a/0xa10 [ 265.725834][ C1] ? calc_index+0x280/0x280 [ 265.725849][ C1] ? hrtimer_interrupt+0x867/0xaa0 [ 265.725867][ C1] run_timer_softirq+0x69/0xf0 [ 265.725882][ C1] __do_softirq+0x26d/0x5bf [ 265.725899][ C1] __irq_exit_rcu+0x50/0xf0 [ 265.725918][ C1] irq_exit_rcu+0x9/0x10 [ 265.725935][ C1] sysvec_apic_timer_interrupt+0x9a/0xc0 [ 265.725954][ C1] [ 265.725959][ C1] [ 265.725964][ C1] asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 265.725980][ C1] RIP: 0010:exc_page_fault+0x1bc/0x830 [ 265.726000][ C1] Code: 40 0f 84 16 01 00 00 49 8d 7e 5c be 04 00 00 00 e8 29 87 ef fc 41 8b 46 5c 83 f8 01 0f 84 fb 00 00 00 65 48 ff 05 5c 81 40 7b <4d> 8b a6 b8 00 00 00 41 f6 c4 01 0f 85 da 00 00 00 4c 89 f7 48 8b [ 265.726013][ C1] RSP: 0000:ffffc900009b7e08 EFLAGS: 00000206 [ 265.726027][ C1] RAX: 000000000000000c RBX: 0000000000000254 RCX: ffffffff84c2bdf7 [ 265.726038][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff88811f34405c [ 265.726049][ C1] RBP: ffffc900009b7f48 R08: dffffc0000000000 R09: ffffed1023e6880c [ 265.726062][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 000000c0027a6000 [ 265.726073][ C1] R13: 0000000000000004 R14: ffff88811f344000 R15: 0000000000000254 [ 265.726086][ C1] ? exc_page_fault+0x1a7/0x830 [ 265.726104][ C1] ? exc_page_fault+0x1a7/0x830 [ 265.726126][ C1] asm_exc_page_fault+0x27/0x30 [ 265.726141][ C1] RIP: 0033:0x413d46 [ 265.726154][ C1] Code: 31 4d 8d 49 f8 4d 8b 09 4d 85 c9 75 e5 e9 68 ff ff ff 4c 8d 57 01 4c 89 df 4d 89 c8 4d 89 d1 0f 1f 44 00 00 49 83 f9 08 73 d0 <84> 01 46 0f b6 14 09 41 80 fa 01 77 1b 48 85 ff 49 89 cb 4c 0f 45 [ 265.726167][ C1] RSP: 002b:000000c00085d498 EFLAGS: 00010293 [ 265.726180][ C1] RAX: a6189092ef260b96 RBX: 000000c00085d5b8 RCX: 000000c0027a68d0 [ 265.726192][ C1] RDX: 0000000000bb0fa0 RSI: 0000000000000038 RDI: 0000000000000000 [ 265.726203][ C1] RBP: 000000c00085d4c8 R08: 0000000000000000 R09: 0000000000000000 [ 265.726214][ C1] R10: 00000000000c0000 R11: 000000c002dbad90 R12: 000000c000859bf0 [ 265.726225][ C1] R13: 2492492492492212 R14: 000000c0000061a0 R15: 000000000000002e [ 265.726240][ C1]