netlink: 'syz-executor.0': attribute type 1 has an invalid length.
netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
watchdog: BUG: soft lockup - CPU#0 stuck for 23s! [syz-executor.5:829]
Modules linked in:
irq event stamp: 1997105
hardirqs last  enabled at (1997104): [<ffffffff81003ce4>] trace_hardirqs_on_thunk+0x1a/0x1c
hardirqs last disabled at (1997105): [<ffffffff81003d00>] trace_hardirqs_off_thunk+0x1a/0x1c
softirqs last  enabled at (1038): [<ffffffff88400678>] __do_softirq+0x678/0x980 kernel/softirq.c:318
softirqs last disabled at (1495): [<ffffffff813927d5>] invoke_softirq kernel/softirq.c:372 [inline]
softirqs last disabled at (1495): [<ffffffff813927d5>] irq_exit+0x215/0x260 kernel/softirq.c:412
CPU: 0 PID: 829 Comm: syz-executor.5 Not tainted 4.19.211-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022
RIP: 0010:debug_spin_lock_before kernel/locking/spinlock_debug.c:83 [inline]
RIP: 0010:do_raw_spin_lock+0x3e/0x220 kernel/locking/spinlock_debug.c:112
Code: c7 04 48 89 fa 53 48 c1 ea 03 48 83 ec 08 0f b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 97 01 00 00 8b 45 04 <3d> ad 4e ad de 0f 85 47 01 00 00 4c 8d 6d 10 48 b8 00 00 00 00 00
RSP: 0018:ffff8880ba007c88 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
RAX: 00000000dead4ead RBX: ffff88809a92db00 RCX: 0000000000001ee2
RDX: 0000000000000000 RSI: 00000000cfeef476 RDI: ffff88809a92dbec
RBP: ffff88809a92dbe8 R08: ffffffff8cd26c50 R09: 0000000000000003
R10: ffff888049a78900 R11: 0000000000000000 R12: ffff8880ba007d58
R13: 1ffff11017400fa7 R14: ffff88809a92ddf0 R15: 0000000000000000
FS:  00007f747a755700(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f747a734718 CR3: 000000003c17a000 CR4: 00000000003406f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <IRQ>
 spin_lock include/linux/spinlock.h:329 [inline]
 pie_timer+0x92/0x740 net/sched/sch_pie.c:433
 call_timer_fn+0x177/0x700 kernel/time/timer.c:1338
 expire_timers+0x243/0x4e0 kernel/time/timer.c:1375
 __run_timers kernel/time/timer.c:1696 [inline]
 run_timer_softirq+0x21c/0x670 kernel/time/timer.c:1709
 __do_softirq+0x265/0x980 kernel/softirq.c:292
 invoke_softirq kernel/softirq.c:372 [inline]
 irq_exit+0x215/0x260 kernel/softirq.c:412
 exiting_irq arch/x86/include/asm/apic.h:536 [inline]
 smp_apic_timer_interrupt+0x136/0x550 arch/x86/kernel/apic/apic.c:1098
 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:894
 </IRQ>
RIP: 0010:preempt_schedule_irq+0xa6/0x140 kernel/sched/core.c:3744
Code: 00 00 e8 3d 04 29 f9 e8 58 3f 4f f9 4c 89 e8 48 c1 e8 03 80 3c 18 00 75 69 48 83 3d 9b 18 d9 01 00 74 5b fb 66 0f 1f 44 00 00 <bf> 01 00 00 00 e8 40 d1 ff ff 48 c7 c0 90 82 f1 89 48 c1 e8 03 80
RSP: 0018:ffff88803b3bf840 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff13
RAX: 1ffffffff13e3053 RBX: dffffc0000000000 RCX: 1ffff1100934f11a
RDX: 0000000000000000 RSI: ffff888049a788b0 RDI: ffff888049a78884
RBP: ffffed100934f000 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: ffff888049a78000
R13: ffffffff89f18298 R14: 0000000000000000 R15: 0000000000000000
 retint_kernel+0x1b/0x2d
RIP: 0010:arch_local_irq_restore arch/x86/include/asm/paravirt.h:789 [inline]
RIP: 0010:queue_work_on+0x165/0x1f0 kernel/workqueue.c:1493
Code: 00 00 00 00 00 fc ff df 48 c1 e8 03 80 3c 10 00 0f 85 87 00 00 00 48 83 3d df 54 b3 08 00 74 43 e8 c0 57 24 00 48 89 df 57 9d <0f> 1f 44 00 00 eb a9 e8 af 57 24 00 4c 89 e2 4c 89 ee 89 ef e8 82
RSP: 0018:ffff88803b3bf910 EFLAGS: 00000212 ORIG_RAX: ffffffffffffff13
RAX: 0000000000040000 RBX: 0000000000000212 RCX: ffffc90005cbc000
RDX: 0000000000003a35 RSI: ffffffff813e2db0 RDI: 0000000000000212
RBP: 0000000000000200 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: ffff88803b3bfa20
R13: ffff88813bfcda80 R14: 0000000000000001 R15: 0000000000000000
 queue_work include/linux/workqueue.h:512 [inline]
 _synchronize_rcu_expedited+0x352/0x6f0 kernel/rcu/tree_exp.h:680
 synchronize_sched+0xc1/0x160 kernel/rcu/tree.c:3166
 tracepoint_synchronize_unregister include/linux/tracepoint.h:95 [inline]
 perf_trace_event_unreg.isra.0+0xbf/0x200 kernel/trace/trace_event_perf.c:163
 perf_trace_destroy+0xb5/0xf0 kernel/trace/trace_event_perf.c:238
 _free_event+0x32c/0x1150 kernel/events/core.c:4484
netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
 put_event kernel/events/core.c:4578 [inline]
 perf_event_release_kernel+0x6d9/0xcd0 kernel/events/core.c:4693
 perf_release+0x33/0x40 kernel/events/core.c:4703
 __fput+0x2ce/0x890 fs/file_table.c:278
 task_work_run+0x148/0x1c0 kernel/task_work.c:113
 tracehook_notify_resume include/linux/tracehook.h:193 [inline]
 exit_to_usermode_loop+0x251/0x2a0 arch/x86/entry/common.c:167
 prepare_exit_to_usermode arch/x86/entry/common.c:198 [inline]
 syscall_return_slowpath arch/x86/entry/common.c:271 [inline]
 do_syscall_64+0x538/0x620 arch/x86/entry/common.c:296
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x7f747bde0209
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f747a755168 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
RAX: 0000000000000000 RBX: 00007f747bef2f60 RCX: 00007f747bde0209
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
RBP: 00007f747be3a161 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007fff9e3021cf R14: 00007f747a755300 R15: 0000000000022000
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 PID: 8129 Comm: syz-fuzzer Not tainted 4.19.211-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022
RIP: 0033:0x4f08c3
Code: db 45 3c 00 0f 1f 00 49 39 f0 75 4c 48 8d 70 08 83 3d 30 c8 37 01 00 75 05 48 89 31 eb 08 48 89 cf e8 a1 43 f7 ff 48 8b 72 28 <4c> 8b 42 30 4c 8b 4a 38 4c 89 41 10 4c 89 49 18 83 3d 06 c8 37 01
RSP: 002b:000000c00191a668 EFLAGS: 00000246
RAX: 000000c013bda4a0 RBX: 0000000000661160 RCX: 000000c013abd940
RDX: 0000000000cae8a0 RSI: 000000000140a600 RDI: 00000000006b6dbb
RBP: 000000c00191a7e0 R08: 00000000008b4e78 R09: 00000000008af7b8
R10: 00000000008af738 R11: 000000c013bda4a0 R12: 000000c00191a6e8
R13: 0000000000000000 R14: 000000c000000ea0 R15: 00007f863645eecc
FS:  000000c000136090 GS:  0000000000000000