Warning: Permanently added '10.128.1.178' (ED25519) to the list of known hosts.
2024/12/20 17:31:22 ignoring optional flag "sandboxArg"="0"
2024/12/20 17:31:22 ignoring optional flag "type"="gce"
2024/12/20 17:31:22 parsed 1 programs
[ 53.440796][ T24] kauditd_printk_skb: 18 callbacks suppressed
[ 53.440806][ T24] audit: type=1400 audit(1734715882.249:94): avc: denied { mount } for pid=352 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[ 53.470112][ T24] audit: type=1400 audit(1734715882.279:95): avc: denied { unlink } for pid=352 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
2024/12/20 17:31:22 executed programs: 0
[ 53.526578][ T352] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 53.569447][ T357] bridge0: port 1(bridge_slave_0) entered blocking state
[ 53.576395][ T357] bridge0: port 1(bridge_slave_0) entered disabled state
[ 53.583680][ T357] device bridge_slave_0 entered promiscuous mode
[ 53.590498][ T357] bridge0: port 2(bridge_slave_1) entered blocking state
[ 53.597430][ T357] bridge0: port 2(bridge_slave_1) entered disabled state
[ 53.604659][ T357] device bridge_slave_1 entered promiscuous mode
[ 53.632507][ T357] bridge0: port 2(bridge_slave_1) entered blocking state
[ 53.639357][ T357] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 53.646435][ T357] bridge0: port 1(bridge_slave_0) entered blocking state
[ 53.653397][ T357] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 53.668936][ T111] bridge0: port 1(bridge_slave_0) entered disabled state
[ 53.675994][ T111] bridge0: port 2(bridge_slave_1) entered disabled state
[ 53.683211][ T111] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 53.690453][ T111] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 53.698971][ T111] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 53.706923][ T111] bridge0: port 1(bridge_slave_0) entered blocking state
[ 53.714210][ T111] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 53.722702][ T111] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 53.730822][ T111] bridge0: port 2(bridge_slave_1) entered blocking state
[ 53.737644][ T111] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 53.748061][ T111] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 53.756946][ T111] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 53.769136][ T111] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 53.779586][ T111] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 53.787320][ T111] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 53.794654][ T111] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 53.802746][ T357] device veth0_vlan entered promiscuous mode
[ 53.811650][ T111] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 53.820383][ T357] device veth1_macvtap entered promiscuous mode
[ 53.829007][ T111] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 53.838198][ T111] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 53.852016][ T24] audit: type=1400 audit(1734715882.659:96): avc: denied { mounton } for pid=357 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=509 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[ 53.888425][ T24] audit: type=1400 audit(1734715882.689:97): avc: denied { create } for pid=362 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 53.908049][ T24] audit: type=1400 audit(1734715882.689:98): avc: denied { setopt } for pid=362 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 53.928093][ T24] audit: type=1400 audit(1734715882.699:99): avc: denied { write } for pid=362 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 55.103250][ T24] audit: type=1400 audit(1734715883.909:100): avc: denied { read } for pid=76 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
2024/12/20 17:31:27 executed programs: 790
2024/12/20 17:31:32 executed programs: 1669
2024/12/20 17:31:37 executed programs: 2539
[ 173.168224][ C0] rcu: INFO: rcu_preempt self-detected stall on CPU
[ 173.174652][ C0] rcu: 0-...!: (9999 ticks this GP) idle=a8a/1/0x4000000000000000 softirq=19603/19612 fqs=42 last_accelerate: a716/ce26 dyntick_enabled: 1
[ 173.188806][ C0] (t=10000 jiffies g=11169 q=237)
[ 173.193760][ C0] rcu: rcu_preempt kthread starved for 9916 jiffies! g11169 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=1
[ 173.204988][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 173.214776][ C0] rcu: RCU grace-period kthread stack dump:
[ 173.220582][ C0] task:rcu_preempt state:I stack: 0 pid: 13 ppid: 2 flags:0x00004000
[ 173.229613][ C0] Call Trace:
[ 173.232781][ C0] __schedule+0xbe6/0x1330
[ 173.237023][ C0] ? release_firmware_map_entry+0x18d/0x18d
[ 173.242718][ C0] ? _raw_spin_lock_irqsave+0xf9/0x210
[ 173.248010][ C0] ? _raw_spin_lock+0x1b0/0x1b0
[ 173.252811][ C0] schedule+0x13d/0x1d0
[ 173.256808][ C0] schedule_timeout+0x18c/0x360
[ 173.261736][ C0] ? prepare_to_swait_event+0x39f/0x3e0
[ 173.267206][ C0] ? console_conditional_schedule+0x10/0x10
[ 173.272927][ C0] ? run_local_timers+0x160/0x160
[ 173.277960][ C0] rcu_gp_kthread+0xefc/0x23a0
[ 173.282563][ C0] ? dyntick_save_progress_counter+0x1c0/0x1c0
[ 173.288551][ C0] ? rcu_barrier_callback+0x50/0x50
[ 173.293585][ C0] ? _raw_spin_lock+0x1b0/0x1b0
[ 173.298382][ C0] ? __kasan_check_read+0x11/0x20
[ 173.303325][ C0] ? __kthread_parkme+0xb9/0x1c0
[ 173.308194][ C0] kthread+0x34b/0x3d0
[ 173.312079][ C0] ? rcu_barrier_callback+0x50/0x50
[ 173.317129][ C0] ? kthread_blkcg+0xd0/0xd0
[ 173.321638][ C0] ret_from_fork+0x1f/0x30
[ 173.325913][ C0] NMI backtrace for cpu 0
[ 173.330064][ C0] CPU: 0 PID: 10411 Comm: syz-executor.0 Not tainted 5.10.231-syzkaller-1004756-g4055d754db6f #0
[ 173.340377][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 173.350270][ C0] Call Trace:
[ 173.353395][ C0]
[ 173.356095][ C0] dump_stack_lvl+0x1e2/0x24b
[ 173.360601][ C0] ? panic+0x812/0x812
[ 173.364504][ C0] ? bfq_pos_tree_add_move+0x43b/0x43b
[ 173.369804][ C0] ? _raw_spin_lock_irqsave+0xf9/0x210
[ 173.375098][ C0] ? _raw_spin_lock+0x1b0/0x1b0
[ 173.379885][ C0] ? arch_trigger_cpumask_backtrace+0x20/0x20
[ 173.385780][ C0] dump_stack+0x15/0x17
[ 173.389770][ C0] nmi_trigger_cpumask_backtrace+0x2b5/0x300
[ 173.395699][ C0] ? arch_trigger_cpumask_backtrace+0x20/0x20
[ 173.401600][ C0] arch_trigger_cpumask_backtrace+0x10/0x20
[ 173.407330][ C0] rcu_dump_cpu_stacks+0x199/0x2b0
[ 173.412334][ C0] rcu_sched_clock_irq+0xf8a/0x1890
[ 173.417304][ C0] ? rcutree_dead_cpu+0x340/0x340
[ 173.422168][ C0] ? hrtimer_run_queues+0x15f/0x440
[ 173.427201][ C0] update_process_times+0x198/0x200
[ 173.432238][ C0] tick_sched_timer+0x188/0x240
[ 173.436920][ C0] ? tick_setup_sched_timer+0x480/0x480
[ 173.442301][ C0] __hrtimer_run_queues+0x3d7/0xa50
[ 173.447337][ C0] ? hrtimer_interrupt+0x8b0/0x8b0
[ 173.452282][ C0] ? clockevents_program_event+0x214/0x2c0
[ 173.458010][ C0] ? ktime_get_update_offsets_now+0x266/0x280
[ 173.463913][ C0] hrtimer_interrupt+0x39a/0x8b0
[ 173.468706][ C0] __sysvec_apic_timer_interrupt+0xfb/0x3f0
[ 173.474501][ C0] asm_call_irq_on_stack+0xf/0x20
[ 173.479359][ C0]
[ 173.482139][ C0] sysvec_apic_timer_interrupt+0x85/0xe0
[ 173.487609][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 173.493428][ C0] RIP: 0010:tipc_sk_lookup+0x126/0x650
[ 173.498726][ C0] Code: bd fc e8 9d aa bd fc 49 8d bc 24 c8 10 00 00 48 89 f8 48 c1 e8 03 42 80 3c 30 00 74 05 e8 c2 39 0e fd 49 8b 94 24 c8 10 00 00 <43> 0f b6 44 35 00 84 c0 0f 85 be 04 00 00 4d 8d bc 24 de 10 00 00
[ 173.518442][ C0] RSP: 0018:ffffc90002be6940 EFLAGS: 00000246
[ 173.524342][ C0] RAX: 1ffff11021e13a19 RBX: ffff88810f667510 RCX: dffffc0000000000
[ 173.532166][ C0] RDX: ffff88810f094000 RSI: 00000000beda33c2 RDI: ffff88810f09d0c8
[ 173.540055][ C0] RBP: ffffc90002be6a30 R08: ffffffff849a03f5 R09: 0000000000000003
[ 173.547879][ C0] R10: fffff5200057cd38 R11: dffffc0000000001 R12: ffff88810f09c000
[ 173.555944][ C0] R13: 1ffff9200057cd38 R14: dffffc0000000000 R15: ffff88810ae7c6f8
[ 173.563844][ C0] ? tipc_sk_rcv+0x305/0x1e30
[ 173.568451][ C0] ? tipc_sk_rcv+0x17cc/0x1e30
[ 173.573138][ C0] ? __kasan_check_write+0x14/0x20
[ 173.578084][ C0] ? _raw_spin_lock_bh+0xa4/0x1b0
[ 173.582945][ C0] ? tipc_sk_rcv+0x1e30/0x1e30
[ 173.587543][ C0] tipc_sk_rcv+0x499/0x1e30
[ 173.591887][ C0] ? __stack_depot_save+0x468/0x4d0
[ 173.596917][ C0] ? kasan_set_track+0x5d/0x70
[ 173.601540][ C0] ? kasan_set_track+0x4b/0x70
[ 173.606118][ C0] ? kasan_set_free_info+0x23/0x40
[ 173.611063][ C0] ? __kasan_slab_free+0x11/0x20
[ 173.615845][ C0] ? slab_free_freelist_hook+0xc0/0x190
[ 173.621491][ C0] ? kmem_cache_free+0xa9/0x1e0
[ 173.626162][ C0] ? kfree_skbmem+0x104/0x170
[ 173.630678][ C0] ? tipc_sk_rcv+0x1b52/0x1e30
[ 173.635278][ C0] ? tipc_node_xmit+0x34b/0xe30
[ 173.639968][ C0] ? tipc_sk_filter_rcv+0x1da8/0x3e00
[ 173.645170][ C0] ? tipc_sk_rcv+0x8a1/0x1e30
[ 173.649687][ C0] ? tipc_node_distr_xmit+0x36a/0x4d0
[ 173.654890][ C0] ? tipc_sk_backlog_rcv+0x18b/0x210
[ 173.660046][ C0] ? __fput+0x33d/0x7b0
[ 173.664009][ C0] ? ____fput+0x15/0x20
[ 173.668012][ C0] ? __skb_queue_purge+0x180/0x180
[ 173.672961][ C0] ? debug_smp_processor_id+0x17/0x20
[ 173.678164][ C0] tipc_node_xmit+0x34b/0xe30
[ 173.682667][ C0] ? __kasan_slab_free+0x11/0x20
[ 173.687445][ C0] ? tipc_node_get_linkname+0x190/0x190
[ 173.692909][ C0] ? kmem_cache_free+0xa9/0x1e0
[ 173.697594][ C0] ? kfree_skbmem+0x104/0x170
[ 173.702132][ C0] tipc_node_xmit_skb+0x153/0x1b0
[ 173.706967][ C0] ? __skb_queue_purge+0x180/0x180
[ 173.711914][ C0] ? trace_tipc_sk_rej_msg+0x2b/0x6f0
[ 173.717121][ C0] tipc_sk_rcv+0x1c0b/0x1e30
[ 173.721552][ C0] ? __skb_queue_purge+0x180/0x180
[ 173.726493][ C0] ? tipc_sk_filter_rcv+0x3583/0x3e00
[ 173.731707][ C0] ? __skb_queue_purge+0x180/0x180
[ 173.736649][ C0] tipc_node_xmit+0x34b/0xe30
[ 173.741176][ C0] ? stack_trace_save+0x1c0/0x1c0
[ 173.746022][ C0] ? __kernel_text_address+0x9b/0x110
[ 173.751231][ C0] ? tipc_node_get_linkname+0x190/0x190
[ 173.756617][ C0] ? arch_stack_walk+0xf3/0x140
[ 173.761299][ C0] tipc_sk_filter_rcv+0x1da8/0x3e00
[ 173.766333][ C0] ? tipc_sk_dump+0xf50/0xf50
[ 173.770990][ C0] ? __kasan_check_write+0x14/0x20
[ 173.776059][ C0] ? _raw_spin_lock_bh+0xa4/0x1b0
[ 173.780922][ C0] ? kmem_cache_free+0xa9/0x1e0
[ 173.785614][ C0] tipc_sk_rcv+0x8a1/0x1e30
[ 173.789952][ C0] ? __skb_queue_purge+0x180/0x180
[ 173.794955][ C0] ? tipc_sk_filter_rcv+0x3583/0x3e00
[ 173.800303][ C0] tipc_node_xmit+0x34b/0xe30
[ 173.804902][ C0] ? tipc_node_get_linkname+0x190/0x190
[ 173.810269][ C0] tipc_node_distr_xmit+0x36a/0x4d0
[ 173.815313][ C0] ? tipc_node_xmit_skb+0x1b0/0x1b0
[ 173.820332][ C0] ? __kasan_check_write+0x14/0x20
[ 173.825275][ C0] ? _raw_spin_lock_irqsave+0xf9/0x210
[ 173.830565][ C0] ? __tipc_shutdown+0xe7c/0x1510
[ 173.835422][ C0] tipc_sk_backlog_rcv+0x18b/0x210
[ 173.840386][ C0] ? tipc_sk_timeout+0xab0/0xab0
[ 173.845385][ C0] __release_sock+0x148/0x410
[ 173.849864][ C0] release_sock+0x65/0x1b0
[ 173.854114][ C0] tipc_release+0xb6b/0x1440
[ 173.858543][ C0] sock_close+0xdf/0x270
[ 173.862621][ C0] ? sock_mmap+0xa0/0xa0
[ 173.866698][ C0] __fput+0x33d/0x7b0
[ 173.870540][ C0] ____fput+0x15/0x20
[ 173.874372][ C0] task_work_run+0x129/0x190
[ 173.878774][ C0] exit_to_user_mode_loop+0xbf/0xd0
[ 173.883804][ C0] syscall_exit_to_user_mode+0xa2/0x1a0
[ 173.889181][ C0] do_syscall_64+0x40/0x70
[ 173.893429][ C0] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 173.899162][ C0] RIP: 0033:0x7f01e8b82da9
[ 173.903476][ C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 173.922860][ C0] RSP: 002b:00007f01e87040c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[ 173.931196][ C0] RAX: 0000000000000000 RBX: 00007f01e8cb0f80 RCX: 00007f01e8b82da9
[ 173.939003][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 173.947455][ C0] RBP: 00007f01e8bcf47a R08: 0000000000000000 R09: 0000000000000000
[ 173.955268][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 173.963048][ C0] R13: 000000000000000b R14: 00007f01e8cb0f80 R15: 00007ffdadff2108
[ 220.946959][ C1] watchdog: BUG: soft lockup - CPU#1 stuck for 123s! [syz-executor.0:10410]
[ 220.955460][ C1] Modules linked in:
[ 220.959191][ C1] CPU: 1 PID: 10410 Comm: syz-executor.0 Not tainted 5.10.231-syzkaller-1004756-g4055d754db6f #0
[ 220.969519][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 220.979440][ C1] RIP: 0010:kvm_wait+0xfc/0x150
[ 220.984212][ C1] Code: 38 f0 75 26 41 f7 c7 00 02 00 00 75 0f 0f 1f 44 00 00 0f 00 2d a5 53 d5 03 f4 eb 0e 0f 1f 44 00 00 0f 00 2d 96 53 d5 03 fb f4 <4c> 89 7c 24 18 ff 74 24 18 9d 48 c7 44 24 20 0e 36 e0 45 49 c7 04
[ 221.004420][ C1] RSP: 0018:ffffc90002bd79e0 EFLAGS: 00000246
[ 221.010304][ C1] RAX: 0000000000000003 RBX: 1ffff9200057af40 RCX: ffffffff8150ca44
[ 221.018201][ C1] RDX: 0000000000000001 RSI: 0000000000000003 RDI: ffffc90002bd7a20
[ 221.026109][ C1] RBP: ffffc90002bd7a90 R08: dffffc0000000000 R09: ffffed1022e936f2
[ 221.033982][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[ 221.041824][ C1] R13: ffff88811749b788 R14: 0000000000000003 R15: 0000000000000246
[ 221.049715][ C1] FS: 000055557912e480(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 221.058640][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 221.065126][ C1] CR2: 00007f01e86e3d58 CR3: 00000001077bc000 CR4: 00000000003506a0
[ 221.072934][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 221.080828][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 221.088648][ C1] Call Trace:
[ 221.091771][ C1]
[ 221.094496][ C1] ? show_regs+0x58/0x60
[ 221.098915][ C1] ? watchdog_timer_fn+0x471/0x590
[ 221.103867][ C1] ? proc_watchdog_cpumask+0xd0/0xd0
[ 221.108985][ C1] ? __hrtimer_run_queues+0x3d7/0xa50
[ 221.114181][ C1] ? hrtimer_interrupt+0x8b0/0x8b0
[ 221.119119][ C1] ? clockevents_program_event+0x214/0x2c0
[ 221.124761][ C1] ? ktime_get_update_offsets_now+0x266/0x280
[ 221.130662][ C1] ? hrtimer_interrupt+0x39a/0x8b0
[ 221.135616][ C1] ? __sysvec_apic_timer_interrupt+0xfb/0x3f0
[ 221.141511][ C1] ? asm_call_irq_on_stack+0xf/0x20
[ 221.146557][ C1]
[ 221.149341][ C1] ? sysvec_apic_timer_interrupt+0x85/0xe0
[ 221.154969][ C1] ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 221.160964][ C1] ? __pv_queued_spin_lock_slowpath+0x6d4/0xc70
[ 221.167114][ C1] ? kvm_wait+0xfc/0x150
[ 221.171291][ C1] ? unwind_get_return_address+0x4d/0x90
[ 221.176846][ C1] ? kvm_arch_para_hints+0x30/0x30
[ 221.181782][ C1] ? arch_stack_walk+0xf3/0x140
[ 221.186481][ C1] __pv_queued_spin_lock_slowpath+0x72f/0xc70
[ 221.192381][ C1] ? __pv_queued_spin_unlock_slowpath+0x280/0x280
[ 221.198626][ C1] _raw_spin_lock_bh+0x139/0x1b0
[ 221.203421][ C1] ? _raw_spin_lock_irq+0x1b0/0x1b0
[ 221.208427][ C1] ? __kasan_record_aux_stack+0xd3/0x100
[ 221.213896][ C1] ? memset+0x35/0x40
[ 221.217758][ C1] lock_sock_nested+0x92/0x300
[ 221.222335][ C1] ? locks_remove_posix+0x610/0x610
[ 221.227352][ C1] ? sock_init_data+0xc0/0xc0
[ 221.231864][ C1] tipc_release+0x57/0x1440
[ 221.236202][ C1] sock_close+0xdf/0x270
[ 221.240452][ C1] ? sock_mmap+0xa0/0xa0
[ 221.244537][ C1] __fput+0x33d/0x7b0
[ 221.248354][ C1] ____fput+0x15/0x20
[ 221.252171][ C1] task_work_run+0x129/0x190
[ 221.256631][ C1] exit_to_user_mode_loop+0xbf/0xd0
[ 221.261637][ C1] syscall_exit_to_user_mode+0xa2/0x1a0
[ 221.267029][ C1] do_syscall_64+0x40/0x70
[ 221.271354][ C1] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 221.277082][ C1] RIP: 0033:0x7f01e8b81c9a
[ 221.281347][ C1] Code: 48 3d 00 f0 ff ff 77 48 c3 0f 1f 80 00 00 00 00 48 83 ec 18 89 7c 24 0c e8 03 7f 02 00 8b 7c 24 0c 89 c2 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 36 89 d7 89 44 24 0c e8 63 7f 02 00 8b 44 24
[ 221.300951][ C1] RSP: 002b:00007ffdadff21d0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 221.309374][ C1] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 00007f01e8b81c9a
[ 221.317354][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 221.325159][ C1] RBP: 00007f01e8cb2980 R08: 0000001b31f60000 R09: 00007ffdadff70b0
[ 221.333061][ C1] R10: 0000000000001d8e R11: 0000000000000293 R12: 0000000000012109
[ 221.340868][ C1] R13: ffffffffffffffff R14: 00007f01e8705000 R15: 0000000000011dc8
[ 221.348785][ C1] Sending NMI from CPU 1 to CPUs 0:
[ 221.354608][ C0] NMI backtrace for cpu 0
[ 221.354620][ C0] CPU: 0 PID: 10411 Comm: syz-executor.0 Not tainted 5.10.231-syzkaller-1004756-g4055d754db6f #0
[ 221.354625][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 221.354628][ C0] RIP: 0010:kasan_check_range+0xc/0x2a0
[ 221.354637][ C0] Code: c4 05 03 31 c0 5d c3 0f 0b eb 02 0f 0b b8 ea ff ff ff 5d c3 cc cc cc cc cc cc cc cc cc cc 55 48 89 e5 41 57 41 56 41 55 41 54 <53> b0 01 48 85 f6 0f 84 a4 01 00 00 48 89 fb 48 01 f3 0f 82 67 02
[ 221.354641][ C0] RSP: 0018:ffffc90002be6a00 EFLAGS: 00000283
[ 221.354649][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff849a1885
[ 221.354653][ C0] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffff88811749b780
[ 221.354657][ C0] RBP: ffffc90002be6a20 R08: ffffffff849a05bd R09: ffffed1022e936f2
[ 221.354662][ C0] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[ 221.354666][ C0] R13: ffff88811749b700 R14: 00000000beda33c2 R15: ffffc90002be6e80
[ 221.354670][ C0] FS: 00007f01e87046c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 221.354674][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 221.354678][ C0] CR2: 00007ffdadff2318 CR3: 00000001077bc000 CR4: 00000000003506b0
[ 221.354683][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 221.354687][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 221.354689][ C0] Call Trace:
[ 221.354691][ C0]
[ 221.354694][ C0] ? show_regs+0x58/0x60
[ 221.354697][ C0] ? nmi_cpu_backtrace+0x133/0x160
[ 221.354700][ C0] ? kasan_check_range+0xc/0x2a0
[ 221.354703][ C0] ? nmi_cpu_backtrace_handler+0xc/0x20
[ 221.354706][ C0] ? nmi_handle+0xa8/0x280
[ 221.354709][ C0] ? kasan_check_range+0xc/0x2a0
[ 221.354712][ C0] ? default_do_nmi+0x69/0x160
[ 221.354715][ C0] ? exc_nmi+0xad/0x100
[ 221.354718][ C0] ? end_repeat_nmi+0x16/0x31
[ 221.354721][ C0] ? tipc_sk_rcv+0x4cd/0x1e30
[ 221.354724][ C0] ? tipc_sk_rcv+0x1795/0x1e30
[ 221.354727][ C0] ? kasan_check_range+0xc/0x2a0
[ 221.354746][ C0] ? kasan_check_range+0xc/0x2a0
[ 221.354749][ C0] ? kasan_check_range+0xc/0x2a0
[ 221.354752][ C0]
[ 221.354755][ C0] __kasan_check_write+0x14/0x20
[ 221.354758][ C0] tipc_sk_rcv+0x1795/0x1e30
[ 221.354761][ C0] ? __stack_depot_save+0x468/0x4d0
[ 221.354764][ C0] ? kasan_set_track+0x5d/0x70
[ 221.354767][ C0] ? kasan_set_track+0x4b/0x70
[ 221.354770][ C0] ? kasan_set_free_info+0x23/0x40
[ 221.354773][ C0] ? __kasan_slab_free+0x11/0x20
[ 221.354777][ C0] ? slab_free_freelist_hook+0xc0/0x190
[ 221.354780][ C0] ? kmem_cache_free+0xa9/0x1e0
[ 221.354782][ C0] ? kfree_skbmem+0x104/0x170
[ 221.354785][ C0] ? tipc_sk_rcv+0x1b52/0x1e30
[ 221.354789][ C0] ? tipc_node_xmit+0x34b/0xe30
[ 221.354792][ C0] ? tipc_sk_filter_rcv+0x1da8/0x3e00
[ 221.354795][ C0] ? tipc_sk_rcv+0x8a1/0x1e30
[ 221.354798][ C0] ? tipc_node_distr_xmit+0x36a/0x4d0
[ 221.354800][ C0] ? tipc_sk_backlog_rcv+0x18b/0x210
[ 221.354802][ C0] ? __fput+0x33d/0x7b0
[ 221.354804][ C0] ? ____fput+0x15/0x20
[ 221.354806][ C0] ? __skb_queue_purge+0x180/0x180
[ 221.354809][ C0] ? debug_smp_processor_id+0x17/0x20
[ 221.354811][ C0] tipc_node_xmit+0x34b/0xe30
[ 221.354813][ C0] ? __kasan_slab_free+0x11/0x20
[ 221.354816][ C0] ? tipc_node_get_linkname+0x190/0x190
[ 221.354818][ C0] ? kmem_cache_free+0xa9/0x1e0
[ 221.354820][ C0] ? kfree_skbmem+0x104/0x170
[ 221.354822][ C0] tipc_node_xmit_skb+0x153/0x1b0
[ 221.354824][ C0] ? __skb_queue_purge+0x180/0x180
[ 221.354827][ C0] ? trace_tipc_sk_rej_msg+0x2b/0x6f0
[ 221.354829][ C0] tipc_sk_rcv+0x1c0b/0x1e30
[ 221.354831][ C0] ? __skb_queue_purge+0x180/0x180
[ 221.354833][ C0] ? tipc_sk_filter_rcv+0x3583/0x3e00
[ 221.354836][ C0] ? __skb_queue_purge+0x180/0x180
[ 221.354838][ C0] tipc_node_xmit+0x34b/0xe30
[ 221.354840][ C0] ? stack_trace_save+0x1c0/0x1c0
[ 221.354842][ C0] ? __kernel_text_address+0x9b/0x110
[ 221.354845][ C0] ? tipc_node_get_linkname+0x190/0x190
[ 221.354847][ C0] ? arch_stack_walk+0xf3/0x140
[ 221.354849][ C0] tipc_sk_filter_rcv+0x1da8/0x3e00
[ 221.354851][ C0] ? tipc_sk_dump+0xf50/0xf50
[ 221.354854][ C0] ? __kasan_check_write+0x14/0x20
[ 221.354856][ C0] ? _raw_spin_lock_bh+0xa4/0x1b0
[ 221.354858][ C0] ? kmem_cache_free+0xa9/0x1e0
[ 221.354860][ C0] tipc_sk_rcv+0x8a1/0x1e30
[ 221.354862][ C0] ? __skb_queue_purge+0x180/0x180
[ 221.354865][ C0] ? tipc_sk_filter_rcv+0x3583/0x3e00
[ 221.354871][ C0] tipc_node_xmit+0x34b/0xe30
[ 221.354873][ C0] ? tipc_node_get_linkname+0x190/0x190
[ 221.354876][ C0] tipc_node_distr_xmit+0x36a/0x4d0
[ 221.354878][ C0] ? tipc_node_xmit_skb+0x1b0/0x1b0
[ 221.354880][ C0] ? __kasan_check_write+0x14/0x20
[ 221.354883][ C0] ? _raw_spin_lock_irqsave+0xf9/0x210
[ 221.354885][ C0] ? __tipc_shutdown+0xe7c/0x1510
[ 221.354887][ C0] tipc_sk_backlog_rcv+0x18b/0x210
[ 221.354890][ C0] ? tipc_sk_timeout+0xab0/0xab0
[ 221.354892][ C0] __release_sock+0x148/0x410
[ 221.354894][ C0] release_sock+0x65/0x1b0
[ 221.354896][ C0] tipc_release+0xb6b/0x1440
[ 221.354898][ C0] sock_close+0xdf/0x270
[ 221.354900][ C0] ? sock_mmap+0xa0/0xa0
[ 221.354903][ C0] __fput+0x33d/0x7b0
[ 221.354905][ C0] ____fput+0x15/0x20
[ 221.354907][ C0] task_work_run+0x129/0x190
[ 221.354909][ C0] exit_to_user_mode_loop+0xbf/0xd0
[ 221.354912][ C0] syscall_exit_to_user_mode+0xa2/0x1a0
[ 221.354914][ C0] do_syscall_64+0x40/0x70
[ 221.354916][ C0] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 221.354918][ C0] RIP: 0033:0x7f01e8b82da9
[ 221.354925][ C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 221.354928][ C0] RSP: 002b:00007f01e87040c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[ 221.354934][ C0] RAX: 0000000000000000 RBX: 00007f01e8cb0f80 RCX: 00007f01e8b82da9
[ 221.354937][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 221.354940][ C0] RBP: 00007f01e8bcf47a R08: 0000000000000000 R09: 0000000000000000
[ 221.354943][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 221.354946][ C0] R13: 000000000000000b R14: 00007f01e8cb0f80 R15: 00007ffdadff2108