Warning: Permanently added '10.128.0.134' (ED25519) to the list of known hosts.
2024/08/05 03:22:57 ignoring optional flag "sandboxArg"="0"
2024/08/05 03:22:57 parsed 1 programs
[ 46.986704][ T24] kauditd_printk_skb: 18 callbacks suppressed
[ 46.986718][ T24] audit: type=1400 audit(1722828177.790:94): avc: denied { mount } for pid=343 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[ 47.016111][ T24] audit: type=1400 audit(1722828177.820:95): avc: denied { unlink } for pid=343 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
2024/08/05 03:22:57 executed programs: 0
[ 47.082747][ T343] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 47.134195][ T349] bridge0: port 1(bridge_slave_0) entered blocking state
[ 47.141452][ T349] bridge0: port 1(bridge_slave_0) entered disabled state
[ 47.148669][ T349] device bridge_slave_0 entered promiscuous mode
[ 47.155931][ T349] bridge0: port 2(bridge_slave_1) entered blocking state
[ 47.162837][ T349] bridge0: port 2(bridge_slave_1) entered disabled state
[ 47.169993][ T349] device bridge_slave_1 entered promiscuous mode
[ 47.206976][ T349] bridge0: port 2(bridge_slave_1) entered blocking state
[ 47.214192][ T349] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 47.221271][ T349] bridge0: port 1(bridge_slave_0) entered blocking state
[ 47.228110][ T349] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 47.245285][ T304] bridge0: port 1(bridge_slave_0) entered disabled state
[ 47.252666][ T304] bridge0: port 2(bridge_slave_1) entered disabled state
[ 47.261060][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 47.268744][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 47.277747][ T15] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 47.285781][ T15] bridge0: port 1(bridge_slave_0) entered blocking state
[ 47.292631][ T15] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 47.312572][ T15] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 47.321772][ T15] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 47.329736][ T15] bridge0: port 2(bridge_slave_1) entered blocking state
[ 47.336606][ T15] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 47.344940][ T15] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 47.352909][ T15] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 47.362370][ T53] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 47.370302][ T53] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 47.377800][ T53] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 47.385704][ T349] device veth0_vlan entered promiscuous mode
[ 47.395204][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 47.404267][ T349] device veth1_macvtap entered promiscuous mode
[ 47.414134][ T53] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 47.425149][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 47.436951][ T24] audit: type=1400 audit(1722828178.240:96): avc: denied { mounton } for pid=349 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=357 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[ 47.465683][ T24] audit: type=1400 audit(1722828178.270:97): avc: denied { create } for pid=355 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 47.486738][ T24] audit: type=1400 audit(1722828178.270:98): avc: denied { write } for pid=355 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 47.506705][ T24] audit: type=1400 audit(1722828178.270:99): avc: denied { setopt } for pid=355 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[ 48.309151][ T24] audit: type=1400 audit(1722828179.110:100): avc: denied { read } for pid=75 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[ 149.010674][ C1] rcu: INFO: rcu_preempt self-detected stall on CPU
[ 149.017213][ C1] rcu: 1-...!: (10000 ticks this GP) idle=26e/1/0x4000000000000000 softirq=2762/2762 fqs=0 last_accelerate: 9da7/c4b7 dyntick_enabled: 1
[ 149.031363][ C1] (t=10000 jiffies g=1697 q=264)
[ 149.036199][ C1] rcu: rcu_preempt kthread starved for 10000 jiffies! g1697 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=1
[ 149.047388][ C1] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 149.057190][ C1] rcu: RCU grace-period kthread stack dump:
[ 149.062929][ C1] task:rcu_preempt state:I stack: 0 pid: 13 ppid: 2 flags:0x00004000
[ 149.072131][ C1] Call Trace:
[ 149.075359][ C1] __schedule+0xbe6/0x1330
[ 149.079608][ C1] ? release_firmware_map_entry+0x18d/0x18d
[ 149.085442][ C1] ? _raw_spin_lock_irqsave+0xf9/0x210
[ 149.091002][ C1] ? _raw_spin_lock+0x1b0/0x1b0
[ 149.095872][ C1] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 149.100907][ C1] schedule+0x13d/0x1d0
[ 149.104988][ C1] schedule_timeout+0x18c/0x360
[ 149.109661][ C1] ? prepare_to_swait_event+0x39f/0x3e0
[ 149.115038][ C1] ? console_conditional_schedule+0x10/0x10
[ 149.120769][ C1] ? run_local_timers+0x160/0x160
[ 149.125629][ C1] ? __note_gp_changes+0x2d8/0x6f0
[ 149.130730][ C1] rcu_gp_kthread+0xefc/0x23a0
[ 149.135373][ C1] ? dump_blkd_tasks+0x7e0/0x7e0
[ 149.140334][ C1] ? rcu_barrier_callback+0x50/0x50
[ 149.145571][ C1] ? _raw_spin_lock+0x1b0/0x1b0
[ 149.150248][ C1] ? __kasan_check_read+0x11/0x20
[ 149.155106][ C1] ? __kthread_parkme+0xb9/0x1c0
[ 149.159881][ C1] kthread+0x34b/0x3d0
[ 149.163787][ C1] ? rcu_barrier_callback+0x50/0x50
[ 149.168906][ C1] ? kthread_blkcg+0xd0/0xd0
[ 149.173335][ C1] ret_from_fork+0x1f/0x30
[ 149.177600][ C1] NMI backtrace for cpu 1
[ 149.181939][ C1] CPU: 1 PID: 930 Comm: syz-executor.0 Not tainted 5.10.222-syzkaller-1003210-gfd58936f3c1f #0
[ 149.192079][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 149.201979][ C1] Call Trace:
[ 149.205287][ C1]
[ 149.207971][ C1] dump_stack_lvl+0x1e2/0x24b
[ 149.212497][ C1] ? panic+0x812/0x812
[ 149.216478][ C1] ? bfq_pos_tree_add_move+0x43b/0x43b
[ 149.221975][ C1] ? _raw_spin_lock_irqsave+0xf9/0x210
[ 149.227251][ C1] ? _raw_spin_lock+0x1b0/0x1b0
[ 149.231947][ C1] ? arch_trigger_cpumask_backtrace+0x20/0x20
[ 149.237921][ C1] dump_stack+0x15/0x17
[ 149.241924][ C1] nmi_trigger_cpumask_backtrace+0x2b5/0x300
[ 149.247729][ C1] ? arch_trigger_cpumask_backtrace+0x20/0x20
[ 149.253634][ C1] arch_trigger_cpumask_backtrace+0x10/0x20
[ 149.259458][ C1] rcu_dump_cpu_stacks+0x199/0x2b0
[ 149.264394][ C1] rcu_sched_clock_irq+0xf8a/0x1890
[ 149.269429][ C1] ? rcutree_dead_cpu+0x340/0x340
[ 149.274320][ C1] ? hrtimer_run_queues+0x15f/0x440
[ 149.279328][ C1] update_process_times+0x198/0x200
[ 149.284634][ C1] tick_sched_timer+0x188/0x240
[ 149.289526][ C1] ? tick_setup_sched_timer+0x480/0x480
[ 149.294891][ C1] __hrtimer_run_queues+0x3d7/0xa50
[ 149.300003][ C1] ? hrtimer_interrupt+0x8b0/0x8b0
[ 149.305148][ C1] ? clockevents_program_event+0x214/0x2c0
[ 149.310963][ C1] ? ktime_get_update_offsets_now+0x266/0x280
[ 149.317207][ C1] hrtimer_interrupt+0x39a/0x8b0
[ 149.321975][ C1] __sysvec_apic_timer_interrupt+0xfd/0x3c0
[ 149.327780][ C1] asm_call_irq_on_stack+0xf/0x20
[ 149.332724][ C1]
[ 149.335506][ C1] sysvec_apic_timer_interrupt+0x85/0xe0
[ 149.341278][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 149.347343][ C1] RIP: 0010:__rcu_read_lock+0x29/0x50
[ 149.352694][ C1] Code: 00 55 48 89 e5 53 65 48 8b 1d d3 b9 aa 7e 48 81 c3 08 04 00 00 48 89 d8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df 0f b6 04 08 <84> c0 75 05 ff 03 5b 5d c3 89 d9 80 e1 07 80 c1 03 38 c1 7c ef 48
[ 149.372460][ C1] RSP: 0018:ffffc900022c6648 EFLAGS: 00000a06
[ 149.378979][ C1] RAX: 0000000000000000 RBX: ffff888119892b88 RCX: dffffc0000000000
[ 149.386874][ C1] RDX: 0000000000000000 RSI: 00000000284e9eb3 RDI: ffff88810b1f6040
[ 149.394968][ C1] RBP: ffffc900022c6650 R08: ffffffff8498e315 R09: 0000000000000003
[ 149.402763][ C1] R10: fffff52000458cdc R11: dffffc0000000001 R12: dffffc0000000000
[ 149.410734][ C1] R13: 1ffff92000458cdc R14: dffffc0000000000 R15: ffff88810b1f6040
[ 149.418490][ C1] ? tipc_sk_rcv+0x305/0x1e30
[ 149.423093][ C1] tipc_sk_lookup+0xbc/0x650
[ 149.427635][ C1] ? __kasan_check_write+0x14/0x20
[ 149.432595][ C1] ? _raw_spin_lock_bh+0xa4/0x1b0
[ 149.437503][ C1] ? tipc_sk_rcv+0x1e30/0x1e30
[ 149.442188][ C1] tipc_sk_rcv+0x499/0x1e30
[ 149.446630][ C1] ? _raw_spin_unlock_irqrestore+0x5b/0x80
[ 149.452353][ C1] ? __stack_depot_save+0x468/0x4d0
[ 149.457379][ C1] ? kmem_cache_free+0xa9/0x1e0
[ 149.462160][ C1] ? kasan_set_free_info+0x23/0x40
[ 149.467096][ C1] ? ____kasan_slab_free+0x121/0x160
[ 149.472545][ C1] ? __kasan_slab_free+0x11/0x20
[ 149.477389][ C1] ? slab_free_freelist_hook+0xc0/0x190
[ 149.482766][ C1] ? kfree_skbmem+0x104/0x170
[ 149.487269][ C1] ? kfree_skb+0xc1/0x320
[ 149.491438][ C1] ? tipc_sk_proto_rcv+0xaa9/0x1db0
[ 149.496642][ C1] ? tipc_sk_filter_rcv+0x3603/0x3e00
[ 149.501860][ C1] ? __skb_queue_purge+0x180/0x180
[ 149.507407][ C1] tipc_node_xmit+0x34b/0xe30
[ 149.511938][ C1] ? ____kasan_slab_free+0x12c/0x160
[ 149.517167][ C1] ? tipc_node_get_linkname+0x190/0x190
[ 149.522904][ C1] ? __kasan_slab_free+0x11/0x20
[ 149.527874][ C1] ? slab_free_freelist_hook+0xc0/0x190
[ 149.533327][ C1] tipc_node_distr_xmit+0x36a/0x4d0
[ 149.538597][ C1] ? tipc_node_xmit_skb+0x1b0/0x1b0
[ 149.543714][ C1] ? trace_tipc_sk_rej_msg+0x2b/0x6f0
[ 149.548921][ C1] tipc_sk_rcv+0x177d/0x1e30
[ 149.553356][ C1] ? __skb_queue_purge+0x180/0x180
[ 149.558313][ C1] tipc_node_xmit+0x34b/0xe30
[ 149.562983][ C1] ? tipc_node_get_linkname+0x190/0x190
[ 149.568363][ C1] tipc_sk_push_backlog+0x4da/0x7b0
[ 149.573399][ C1] tipc_sk_proto_rcv+0xaa9/0x1db0
[ 149.578260][ C1] ? trace_tipc_sk_dump+0x6e0/0x6e0
[ 149.583286][ C1] ? stack_trace_save+0x113/0x1c0
[ 149.588338][ C1] tipc_sk_filter_rcv+0x3603/0x3e00
[ 149.593902][ C1] ? kfree+0xc3/0x270
[ 149.597697][ C1] ? kmem_cache_free+0xa9/0x1e0
[ 149.602391][ C1] ? kmem_cache_free+0xa9/0x1e0
[ 149.607250][ C1] ? kasan_set_track+0x5d/0x70
[ 149.611851][ C1] ? kasan_set_free_info+0x23/0x40
[ 149.617036][ C1] ? ____kasan_slab_free+0x121/0x160
[ 149.622203][ C1] ? __kasan_slab_free+0x11/0x20
[ 149.627151][ C1] ? kmem_cache_free+0xa9/0x1e0
[ 149.632005][ C1] ? kfree_skbmem+0x104/0x170
[ 149.636534][ C1] ? kfree_skb+0xc1/0x320
[ 149.640792][ C1] ? tipc_sk_filter_rcv+0xfbf/0x3e00
[ 149.646007][ C1] ? tipc_sk_backlog_rcv+0x122/0x210
[ 149.651203][ C1] ? __release_sock+0x148/0x410
[ 149.655886][ C1] ? sock_setsockopt+0x1e3b/0x2e00
[ 149.661148][ C1] ? __sys_setsockopt+0x441/0x870
[ 149.666068][ C1] ? __x64_sys_setsockopt+0xbf/0xd0
[ 149.671112][ C1] ? do_syscall_64+0x34/0x70
[ 149.675879][ C1] ? tipc_sk_dump+0xf50/0xf50
[ 149.680670][ C1] ? __kasan_check_write+0x14/0x20
[ 149.685946][ C1] ? _raw_spin_lock_bh+0xa4/0x1b0
[ 149.690802][ C1] ? kmem_cache_free+0xa9/0x1e0
[ 149.695880][ C1] tipc_sk_rcv+0x8a1/0x1e30
[ 149.700276][ C1] ? __skb_queue_purge+0x180/0x180
[ 149.705508][ C1] ? tipc_sk_filter_rcv+0x3583/0x3e00
[ 149.710709][ C1] tipc_node_xmit+0x34b/0xe30
[ 149.715203][ C1] ? tipc_node_get_linkname+0x190/0x190
[ 149.720584][ C1] tipc_node_distr_xmit+0x36a/0x4d0
[ 149.725789][ C1] ? tipc_node_xmit_skb+0x1b0/0x1b0
[ 149.730825][ C1] tipc_sk_backlog_rcv+0x18b/0x210
[ 149.735881][ C1] ? tipc_sk_timeout+0xab0/0xab0
[ 149.740673][ C1] ? __local_bh_enable_ip+0x53/0x80
[ 149.746410][ C1] ? lock_sock_nested+0x26a/0x300
[ 149.751258][ C1] __release_sock+0x148/0x410
[ 149.755766][ C1] sock_setsockopt+0x1e3b/0x2e00
[ 149.760538][ C1] ? __sock_set_mark+0x160/0x160
[ 149.765536][ C1] ? selinux_socket_getsockopt+0x340/0x340
[ 149.771165][ C1] ? security_socket_setsockopt+0x82/0xb0
[ 149.776710][ C1] __sys_setsockopt+0x441/0x870
[ 149.781401][ C1] ? __ia32_sys_recv+0xb0/0xb0
[ 149.785992][ C1] ? __kasan_check_write+0x14/0x20
[ 149.790945][ C1] ? switch_fpu_return+0x1e4/0x3c0
[ 149.795888][ C1] __x64_sys_setsockopt+0xbf/0xd0
[ 149.800786][ C1] do_syscall_64+0x34/0x70
[ 149.805018][ C1] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 149.810742][ C1] RIP: 0033:0x7f9d9adb1e69
[ 149.815174][ C1] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 149.834936][ C1] RSP: 002b:00007f9d9a9120c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 149.843572][ C1] RAX: ffffffffffffffda RBX: 00007f9d9aee0050 RCX: 00007f9d9adb1e69
[ 149.851666][ C1] RDX: 0000000000000021 RSI: 0000000000000001 RDI: 0000000000000003
[ 149.859417][ C1] RBP: 00007f9d9adfe47a R08: 0000000000000004 R09: 0000000000000000
[ 149.867315][ C1] R10: 0000000020000540 R11: 0000000000000246 R12: 0000000000000000
[ 149.875256][ C1] R13: 000000000000000b R14: 00007f9d9aee0050 R15: 00007fff010e77b8
[ 198.942123][ C0] watchdog: BUG: soft lockup - CPU#0 stuck for 123s! [syz-executor.0:929]
[ 198.950535][ C0] Modules linked in:
[ 198.954283][ C0] CPU: 0 PID: 929 Comm: syz-executor.0 Not tainted 5.10.222-syzkaller-1003210-gfd58936f3c1f #0
[ 198.964506][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 198.974428][ C0] RIP: 0010:__pv_queued_spin_lock_slowpath+0x5a1/0xc70
[ 198.981283][ C0] Code: 85 ba 01 00 00 c6 03 00 48 8b 44 24 28 42 0f b6 04 30 84 c0 0f 85 bf 01 00 00 48 8b 04 24 c6 00 01 bb 00 80 ff ff eb 06 f3 90 c3 74 50 43 0f b6 44 35 00 84 c0 75 32 41 80 3c 24 00 75 e9 4c
[ 199.001398][ C0] RSP: 0018:ffffc900022b7740 EFLAGS: 00000206
[ 199.007420][ C0] RAX: 0000000000000000 RBX: 00000000ffffe47a RCX: ffffffff8150b334
[ 199.015316][ C0] RDX: 0000000000000001 RSI: 0000000000000003 RDI: ffffc900022b76c0
[ 199.023124][ C0] RBP: ffffc900022b7830 R08: dffffc0000000000 R09: ffffed1022bbe0b2
[ 199.031294][ C0] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff888115df0588
[ 199.039281][ C0] R13: 1ffff11022bbe0b1 R14: dffffc0000000000 R15: ffff88823fe12780
[ 199.047093][ C0] FS: 00007f9d9a9336c0(0000) GS:ffff8881f7200000(0000) knlGS:0000000000000000
[ 199.056109][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 199.062579][ C0] CR2: 0000000020000000 CR3: 000000010d06f000 CR4: 00000000003506b0
[ 199.070429][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 199.078260][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 199.086265][ C0] Call Trace:
[ 199.089483][ C0]
[ 199.092251][ C0] ? show_regs+0x58/0x60
[ 199.096328][ C0] ? watchdog_timer_fn+0x471/0x590
[ 199.101361][ C0] ? proc_watchdog_cpumask+0xd0/0xd0
[ 199.106494][ C0] ? __hrtimer_run_queues+0x3d7/0xa50
[ 199.111960][ C0] ? hrtimer_interrupt+0x8b0/0x8b0
[ 199.116992][ C0] ? clockevents_program_event+0x214/0x2c0
[ 199.122635][ C0] ? ktime_get_update_offsets_now+0x266/0x280
[ 199.128537][ C0] ? hrtimer_interrupt+0x39a/0x8b0
[ 199.133643][ C0] ? __sysvec_apic_timer_interrupt+0xfd/0x3c0
[ 199.139529][ C0] ? asm_call_irq_on_stack+0xf/0x20
[ 199.144550][ C0]
[ 199.147335][ C0] ? sysvec_apic_timer_interrupt+0x85/0xe0
[ 199.153070][ C0] ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 199.159318][ C0] ? __pv_queued_spin_lock_slowpath+0x6d4/0xc70
[ 199.165476][ C0] ? __pv_queued_spin_lock_slowpath+0x5a1/0xc70
[ 199.171569][ C0] ? __pv_queued_spin_unlock_slowpath+0x280/0x280
[ 199.177823][ C0] _raw_spin_lock_bh+0x139/0x1b0
[ 199.182667][ C0] ? _raw_spin_lock_irq+0x1b0/0x1b0
[ 199.187690][ C0] ? selinux_socket_sendmsg+0x243/0x340
[ 199.193084][ C0] lock_sock_nested+0x92/0x300
[ 199.197775][ C0] ? sock_init_data+0xc0/0xc0
[ 199.202277][ C0] ? _raw_spin_unlock_bh+0x51/0x60
[ 199.207247][ C0] tipc_sendstream+0x47/0x70
[ 199.211661][ C0] ? tipc_getsockopt+0x790/0x790
[ 199.216421][ C0] ____sys_sendmsg+0x59e/0x8f0
[ 199.221021][ C0] ? __sys_sendmsg_sock+0x40/0x40
[ 199.225879][ C0] ? import_iovec+0xe5/0x120
[ 199.230307][ C0] ___sys_sendmsg+0x252/0x2e0
[ 199.234906][ C0] ? __sys_sendmsg+0x280/0x280
[ 199.239519][ C0] ? alloc_file_pseudo+0x280/0x2f0
[ 199.244550][ C0] ? __fdget+0x1bc/0x240
[ 199.248617][ C0] __se_sys_sendmsg+0x1b1/0x280
[ 199.253323][ C0] ? __x64_sys_sendmsg+0x90/0x90
[ 199.258257][ C0] ? debug_smp_processor_id+0x17/0x20
[ 199.263536][ C0] __x64_sys_sendmsg+0x7b/0x90
[ 199.268151][ C0] do_syscall_64+0x34/0x70
[ 199.272420][ C0] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 199.278145][ C0] RIP: 0033:0x7f9d9adb1e69
[ 199.282400][ C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 199.301906][ C0] RSP: 002b:00007f9d9a9330c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 199.310154][ C0] RAX: ffffffffffffffda RBX: 00007f9d9aedff80 RCX: 00007f9d9adb1e69
[ 199.318147][ C0] RDX: 0000000000000000 RSI: 0000000020000780 RDI: 0000000000000004
[ 199.325980][ C0] RBP: 00007f9d9adfe47a R08: 0000000000000000 R09: 0000000000000000
[ 199.333871][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 199.341708][ C0] R13: 000000000000000b R14: 00007f9d9aedff80 R15: 00007fff010e77b8
[ 199.349517][ C0] Sending NMI from CPU 0 to CPUs 1:
[ 199.355565][ C1] NMI backtrace for cpu 1
[ 199.355577][ C1] CPU: 1 PID: 930 Comm: syz-executor.0 Not tainted 5.10.222-syzkaller-1003210-gfd58936f3c1f #0
[ 199.355584][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 199.355588][ C1] RIP: 0010:kasan_check_range+0x18/0x2a0
[ 199.355600][ C1] Code: 0b b8 ea ff ff ff 5d c3 cc cc cc cc cc cc cc cc cc cc 55 48 89 e5 41 57 41 56 41 55 41 54 53 b0 01 48 85 f6 0f 84 a4 01 00 00 <48> 89 fb 48 01 f3 0f 82 67 02 00 00 48 89 fb 48 c1 eb 2f 81 fb ff
[ 199.355605][ C1] RSP: 0018:ffffc900022c6678 EFLAGS: 00000202
[ 199.355614][ C1] RAX: 0000000000000401 RBX: ffffc900022c66e0 RCX: ffffffff84b2265b
[ 199.355619][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff888115df0588
[ 199.355625][ C1] RBP: ffffc900022c66a0 R08: ffffffff84990351 R09: ffffed1022bbe0b1
[ 199.355630][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff92000458cd8
[ 199.355635][ C1] R13: ffff888115df0588 R14: 00000000284e9eb3 R15: dffffc0000000000
[ 199.355641][ C1] FS: 00007f9d9a9126c0(0000) GS:ffff8881f7300000(0000) knlGS:0000000000000000
[ 199.355645][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 199.355651][ C1] CR2: 00007f9d9a912d58 CR3: 000000010d06f000 CR4: 00000000003506a0
[ 199.355656][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 199.355661][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 199.355664][ C1] Call Trace:
[ 199.355666][ C1]
[ 199.355669][ C1] ? show_regs+0x58/0x60
[ 199.355673][ C1] ? nmi_cpu_backtrace+0x133/0x160
[ 199.355676][ C1] ? kasan_check_range+0x18/0x2a0
[ 199.355680][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20
[ 199.355683][ C1] ? nmi_handle+0xa8/0x280
[ 199.355687][ C1] ? kasan_check_range+0x18/0x2a0
[ 199.355690][ C1] ? default_do_nmi+0x69/0x160
[ 199.355694][ C1] ? exc_nmi+0xad/0x100
[ 199.355697][ C1] ? end_repeat_nmi+0x16/0x31
[ 199.355700][ C1] ? tipc_sk_lookup+0x511/0x650
[ 199.355704][ C1] ? _raw_spin_trylock_bh+0x7b/0x190
[ 199.355708][ C1] ? kasan_check_range+0x18/0x2a0
[ 199.355711][ C1] ? kasan_check_range+0x18/0x2a0
[ 199.355715][ C1] ? kasan_check_range+0x18/0x2a0
[ 199.355717][ C1]
[ 199.355721][ C1] __kasan_check_read+0x11/0x20
[ 199.355724][ C1] _raw_spin_trylock_bh+0x7b/0x190
[ 199.355728][ C1] ? _raw_spin_trylock+0x1a0/0x1a0
[ 199.355732][ C1] ? tipc_node_distr_xmit+0x4b3/0x4d0
[ 199.355735][ C1] tipc_sk_rcv+0x4c2/0x1e30
[ 199.355739][ C1] ? _raw_spin_unlock_irqrestore+0x5b/0x80
[ 199.355743][ C1] ? __stack_depot_save+0x468/0x4d0
[ 199.355746][ C1] ? kmem_cache_free+0xa9/0x1e0
[ 199.355750][ C1] ? kasan_set_free_info+0x23/0x40
[ 199.355754][ C1] ? ____kasan_slab_free+0x121/0x160
[ 199.355757][ C1] ? __kasan_slab_free+0x11/0x20
[ 199.355761][ C1] ? slab_free_freelist_hook+0xc0/0x190
[ 199.355764][ C1] ? kfree_skbmem+0x104/0x170
[ 199.355768][ C1] ? kfree_skb+0xc1/0x320
[ 199.355771][ C1] ? tipc_sk_proto_rcv+0xaa9/0x1db0
[ 199.355775][ C1] ? tipc_sk_filter_rcv+0x3603/0x3e00
[ 199.355779][ C1] ? __skb_queue_purge+0x180/0x180
[ 199.355782][ C1] tipc_node_xmit+0x34b/0xe30
[ 199.355786][ C1] ? ____kasan_slab_free+0x12c/0x160
[ 199.355790][ C1] ? tipc_node_get_linkname+0x190/0x190
[ 199.355793][ C1] ? __kasan_slab_free+0x11/0x20
[ 199.355797][ C1] ? slab_free_freelist_hook+0xc0/0x190
[ 199.355801][ C1] tipc_node_distr_xmit+0x36a/0x4d0
[ 199.355804][ C1] ? tipc_node_xmit_skb+0x1b0/0x1b0
[ 199.355808][ C1] ? trace_tipc_sk_rej_msg+0x2b/0x6f0
[ 199.355812][ C1] tipc_sk_rcv+0x177d/0x1e30
[ 199.355815][ C1] ? __skb_queue_purge+0x180/0x180
[ 199.355819][ C1] tipc_node_xmit+0x34b/0xe30
[ 199.355823][ C1] ? tipc_node_get_linkname+0x190/0x190
[ 199.355826][ C1] tipc_sk_push_backlog+0x4da/0x7b0
[ 199.355830][ C1] tipc_sk_proto_rcv+0xaa9/0x1db0
[ 199.355833][ C1] ? trace_tipc_sk_dump+0x6e0/0x6e0
[ 199.355841][ C1] ? stack_trace_save+0x113/0x1c0
[ 199.355845][ C1] tipc_sk_filter_rcv+0x3603/0x3e00
[ 199.355848][ C1] ? kfree+0xc3/0x270
[ 199.355851][ C1] ? kmem_cache_free+0xa9/0x1e0
[ 199.355855][ C1] ? kmem_cache_free+0xa9/0x1e0
[ 199.355858][ C1] ? kasan_set_track+0x5d/0x70
[ 199.355862][ C1] ? kasan_set_free_info+0x23/0x40
[ 199.355866][ C1] ? ____kasan_slab_free+0x121/0x160
[ 199.355869][ C1] ? __kasan_slab_free+0x11/0x20
[ 199.355872][ C1] ? kmem_cache_free+0xa9/0x1e0
[ 199.355876][ C1] ? kfree_skbmem+0x104/0x170
[ 199.355879][ C1] ? kfree_skb+0xc1/0x320
[ 199.355883][ C1] ? tipc_sk_filter_rcv+0xfbf/0x3e00
[ 199.355886][ C1] ? tipc_sk_backlog_rcv+0x122/0x210
[ 199.355890][ C1] ? __release_sock+0x148/0x410
[ 199.355894][ C1] ? sock_setsockopt+0x1e3b/0x2e00
[ 199.355897][ C1] ? __sys_setsockopt+0x441/0x870
[ 199.355901][ C1] ? __x64_sys_setsockopt+0xbf/0xd0
[ 199.355904][ C1] ? do_syscall_64+0x34/0x70
[ 199.355908][ C1] ? tipc_sk_dump+0xf50/0xf50
[ 199.355911][ C1] ? __kasan_check_write+0x14/0x20
[ 199.355915][ C1] ? _raw_spin_lock_bh+0xa4/0x1b0
[ 199.355918][ C1] ? kmem_cache_free+0xa9/0x1e0
[ 199.355921][ C1] tipc_sk_rcv+0x8a1/0x1e30
[ 199.355925][ C1] ? __skb_queue_purge+0x180/0x180
[ 199.355929][ C1] ? tipc_sk_filter_rcv+0x3583/0x3e00
[ 199.355932][ C1] tipc_node_xmit+0x34b/0xe30
[ 199.355936][ C1] ? tipc_node_get_linkname+0x190/0x190
[ 199.355940][ C1] tipc_node_distr_xmit+0x36a/0x4d0
[ 199.355943][ C1] ? tipc_node_xmit_skb+0x1b0/0x1b0
[ 199.355947][ C1] tipc_sk_backlog_rcv+0x18b/0x210
[ 199.355950][ C1] ? tipc_sk_timeout+0xab0/0xab0
[ 199.355954][ C1] ? __local_bh_enable_ip+0x53/0x80
[ 199.355958][ C1] ? lock_sock_nested+0x26a/0x300
[ 199.355961][ C1] __release_sock+0x148/0x410
[ 199.355965][ C1] sock_setsockopt+0x1e3b/0x2e00
[ 199.355968][ C1] ? __sock_set_mark+0x160/0x160
[ 199.355972][ C1] ? selinux_socket_getsockopt+0x340/0x340
[ 199.355976][ C1] ? security_socket_setsockopt+0x82/0xb0
[ 199.355980][ C1] __sys_setsockopt+0x441/0x870
[ 199.355983][ C1] ? __ia32_sys_recv+0xb0/0xb0
[ 199.355987][ C1] ? __kasan_check_write+0x14/0x20
[ 199.355990][ C1] ? switch_fpu_return+0x1e4/0x3c0
[ 199.355994][ C1] __x64_sys_setsockopt+0xbf/0xd0
[ 199.355997][ C1] do_syscall_64+0x34/0x70
[ 199.356001][ C1] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 199.356004][ C1] RIP: 0033:0x7f9d9adb1e69
[ 199.356016][ C1] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 199.356020][ C1] RSP: 002b:00007f9d9a9120c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 199.356029][ C1] RAX: ffffffffffffffda RBX: 00007f9d9aee0050 RCX: 00007f9d9adb1e69
[ 199.356034][ C1] RDX: 0000000000000021 RSI: 0000000000000001 RDI: 0000000000000003
[ 199.356039][ C1] RBP: 00007f9d9adfe47a R08: 0000000000000004 R09: 0000000000000000
[ 199.356044][ C1] R10: 0000000020000540 R11: 0000000000000246 R12: 0000000000000000
[ 199.356050][ C1] R13: 000000000000000b R14: 00007f9d9aee0050 R15: 00007fff010e77b8