Warning: Permanently added '10.128.10.60' (ED25519) to the list of known hosts.
2025/06/03 22:53:51 ignoring optional flag "sandboxArg"="0"
2025/06/03 22:53:51 parsed 1 programs
[   58.908285][   T28] kauditd_printk_skb: 31 callbacks suppressed
[   58.908289][   T28] audit: type=1400 audit(1748991232.001:91): avc:  denied  { create } for  pid=438 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   58.934416][   T28] audit: type=1400 audit(1748991232.001:92): avc:  denied  { write } for  pid=438 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   58.954462][   T28] audit: type=1400 audit(1748991232.001:93): avc:  denied  { read } for  pid=438 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   58.980735][   T28] audit: type=1400 audit(1748991232.081:94): avc:  denied  { unlink } for  pid=438 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   59.046619][  T438] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   59.454878][  T447] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.461777][  T447] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.468672][  T447] device bridge_slave_0 entered promiscuous mode
[   59.475075][  T447] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.481984][  T447] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.488893][  T447] device bridge_slave_1 entered promiscuous mode
[   59.520863][  T447] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.527699][  T447] bridge0: port 2(bridge_slave_1) entered forwarding state
[   59.534771][  T447] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.541593][  T447] bridge0: port 1(bridge_slave_0) entered forwarding state
[   59.566201][  T392] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.573158][  T392] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.580026][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   59.587406][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   59.597702][  T447] device veth0_vlan entered promiscuous mode
[   59.604727][  T447] device veth1_macvtap entered promiscuous mode
[   59.611205][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   59.619218][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   59.626945][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   59.634135][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   59.641310][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   59.649193][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   59.657063][  T392] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.663871][  T392] bridge0: port 1(bridge_slave_0) entered forwarding state
[   59.670997][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   59.678749][  T392] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.685555][  T392] bridge0: port 2(bridge_slave_1) entered forwarding state
[   59.692627][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   59.700170][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   59.708597][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   59.716860][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   59.786480][   T28] audit: type=1401 audit(1748991232.881:95): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[   59.834048][   T28] audit: type=1400 audit(1748991232.931:96): avc:  denied  { create } for  pid=469 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
2025/06/03 22:53:53 executed programs: 0
[   60.041594][  T487] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.048421][  T487] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.055412][  T487] device bridge_slave_0 entered promiscuous mode
[   60.061599][  T487] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.068491][  T487] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.075831][  T487] device bridge_slave_1 entered promiscuous mode
[   60.088573][  T487] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.095418][  T487] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.102464][  T487] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.109283][  T487] bridge0: port 1(bridge_slave_0) entered forwarding state
[   60.118748][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   60.125866][  T392] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.132693][  T392] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.140011][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   60.147998][  T392] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.154835][  T392] bridge0: port 1(bridge_slave_0) entered forwarding state
[   60.162353][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   60.170291][  T392] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.177091][  T392] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.186219][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   60.193930][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   60.202173][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   60.210800][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   60.218295][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   60.225424][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   60.232776][  T487] device veth0_vlan entered promiscuous mode
[   60.239223][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   60.247247][  T487] device veth1_macvtap entered promiscuous mode
[   60.254671][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   60.263083][  T392] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   60.275466][   T28] audit: type=1400 audit(1748991233.371:97): avc:  denied  { create } for  pid=491 comm="syz.2.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   60.300422][   T28] audit: type=1400 audit(1748991233.371:98): avc:  denied  { write } for  pid=491 comm="syz.2.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   60.319556][   T28] audit: type=1400 audit(1748991233.391:99): avc:  denied  { setopt } for  pid=491 comm="syz.2.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   61.110857][  T128] device bridge_slave_1 left promiscuous mode
[   61.116826][  T128] bridge0: port 2(bridge_slave_1) entered disabled state
[   61.123857][  T128] device bridge_slave_0 left promiscuous mode
[   61.130391][  T128] bridge0: port 1(bridge_slave_0) entered disabled state
[   61.137485][  T128] device veth1_macvtap left promiscuous mode
[   61.143277][  T128] device veth0_vlan left promiscuous mode
[  163.590436][    C0] rcu: INFO: rcu_preempt self-detected stall on CPU
[  163.596947][    C0] rcu: 	0-...!: (10000 ticks this GP) idle=a82c/1/0x4000000000000000 softirq=3908/3908 fqs=0
[  163.606916][    C0] 	(t=10001 jiffies g=2417 q=8 ncpus=2)
[  163.612298][    C0] rcu: rcu_preempt kthread timer wakeup didn't happen for 10001 jiffies! g2417 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402
[  163.624365][    C0] rcu: 	Possible timer handling issue on cpu=0 timer-softirq=1050
[  163.632008][    C0] rcu: rcu_preempt kthread starved for 10004 jiffies! g2417 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=0
[  163.643109][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  163.652914][    C0] rcu: RCU grace-period kthread stack dump:
[  163.658668][    C0] task:rcu_preempt     state:I stack:14712 pid:14    ppid:2      flags:0x00004000
[  163.667692][    C0] Call Trace:
[  163.670799][    C0]  <TASK>
[  163.673669][    C0]  __schedule+0x49d/0x730
[  163.677914][    C0]  schedule+0x54/0xc0
[  163.681824][    C0]  schedule_timeout+0xb9/0x170
[  163.686503][    C0]  ? __cfi_process_timeout+0x10/0x10
[  163.691628][    C0]  rcu_gp_fqs_loop+0x195/0x5d0
[  163.696224][    C0]  ? __note_gp_changes+0x189/0x230
[  163.701175][    C0]  rcu_gp_kthread+0x1c/0x150
[  163.705601][    C0]  kthread+0xe5/0x100
[  163.709417][    C0]  ? __cfi_rcu_gp_kthread+0x10/0x10
[  163.714466][    C0]  ? __cfi_kthread+0x10/0x10
[  163.718878][    C0]  ret_from_fork+0x1f/0x30
[  163.723135][    C0]  </TASK>
[  163.726092][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  163.732344][    C0] CPU: 0 PID: 1079 Comm: syz.2.211 Not tainted 6.1.138-syzkaller #0
[  163.740157][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  163.750128][    C0] RIP: 0010:kvm_wait+0x75/0x80
[  163.754739][    C0] Code: 75 14 0f b6 07 40 38 f0 75 ce 66 90 0f 00 2d d0 cd 52 01 f4 eb c2 fa 0f b6 07 40 38 f0 75 0d 66 90 0f 00 2d bb cd 52 01 fb f4 <eb> ac fb eb a9 e8 21 c0 f8 00 90 90 90 90 90 90 90 90 90 90 90 90
[  163.774338][    C0] RSP: 0018:ffffc90001837b40 EFLAGS: 00000246
[  163.780327][    C0] RAX: 0000000000000003 RBX: ffff88810088a918 RCX: 0000000000000000
[  163.788318][    C0] RDX: 00000000000000a5 RSI: 0000000000000003 RDI: ffff88810088a918
[  163.796124][    C0] RBP: ffffc90001837b50 R08: 0000000000000004 R09: 0000000000000000
[  163.804218][    C0] R10: 0000000000000000 R11: ffffffff81ffd2d0 R12: ffff88823fff0b80
[  163.812008][    C0] R13: 0000000000040001 R14: 0000000000000000 R15: ffff888237c2c900
[  163.819830][    C0] FS:  00007f50d04d26c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000
[  163.828583][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  163.835006][    C0] CR2: 0000400000000000 CR3: 000000010c607000 CR4: 00000000003506b0
[  163.842822][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  163.850630][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  163.858443][    C0] Call Trace:
[  163.861579][    C0]  <TASK>
[  163.864360][    C0]  __pv_queued_spin_lock_slowpath+0x27e/0x440
[  163.870245][    C0]  _raw_spin_lock_bh+0x36/0x40
[  163.874844][    C0]  lock_sock_nested+0x2e/0xe0
[  163.879447][    C0]  tipc_sendstream+0x22/0x50
[  163.883874][    C0]  ____sys_sendmsg+0x1b4/0x270
[  163.888473][    C0]  ___sys_sendmsg+0x28a/0x2c0
[  163.892987][    C0]  ? futex_wait_queue+0x74/0xd0
[  163.897673][    C0]  __x64_sys_sendmsg+0xf6/0x130
[  163.902358][    C0]  x64_sys_call+0x171/0x9a0
[  163.906714][    C0]  do_syscall_64+0x4c/0xa0
[  163.911052][    C0]  ? clear_bhb_loop+0x15/0x70
[  163.915572][    C0]  ? clear_bhb_loop+0x15/0x70
[  163.920076][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  163.925806][    C0] RIP: 0033:0x7f50cf58cde9
[  163.930063][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.949498][    C0] RSP: 002b:00007f50d04d2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  163.957835][    C0] RAX: ffffffffffffffda RBX: 00007f50cf7a5fa0 RCX: 00007f50cf58cde9
[  163.965651][    C0] RDX: 0000000000000000 RSI: 0000400000000500 RDI: 0000000000000004
[  163.973452][    C0] RBP: 00007f50cf60e2a0 R08: 0000000000000000 R09: 0000000000000000
[  163.981281][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  163.989076][    C0] R13: 0000000000000000 R14: 00007f50cf7a5fa0 R15: 00007ffe2e9caa78
[  163.996891][    C0]  </TASK>
[  163.999796][    C0] CPU: 0 PID: 1079 Comm: syz.2.211 Not tainted 6.1.138-syzkaller #0
[  164.007569][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  164.017632][    C0] RIP: 0010:kvm_wait+0x75/0x80
[  164.022321][    C0] Code: 75 14 0f b6 07 40 38 f0 75 ce 66 90 0f 00 2d d0 cd 52 01 f4 eb c2 fa 0f b6 07 40 38 f0 75 0d 66 90 0f 00 2d bb cd 52 01 fb f4 <eb> ac fb eb a9 e8 21 c0 f8 00 90 90 90 90 90 90 90 90 90 90 90 90
[  164.041771][    C0] RSP: 0018:ffffc90001837b40 EFLAGS: 00000246
[  164.047662][    C0] RAX: 0000000000000003 RBX: ffff88810088a918 RCX: 0000000000000000
[  164.055560][    C0] RDX: 00000000000000a5 RSI: 0000000000000003 RDI: ffff88810088a918
[  164.063372][    C0] RBP: ffffc90001837b50 R08: 0000000000000004 R09: 0000000000000000
[  164.071194][    C0] R10: 0000000000000000 R11: ffffffff81ffd2d0 R12: ffff88823fff0b80
[  164.079094][    C0] R13: 0000000000040001 R14: 0000000000000000 R15: ffff888237c2c900
[  164.086905][    C0] FS:  00007f50d04d26c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000
[  164.095677][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  164.102183][    C0] CR2: 0000400000000000 CR3: 000000010c607000 CR4: 00000000003506b0
[  164.109998][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  164.117805][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  164.125616][    C0] Call Trace:
[  164.128739][    C0]  <TASK>
[  164.131519][    C0]  __pv_queued_spin_lock_slowpath+0x27e/0x440
[  164.137418][    C0]  _raw_spin_lock_bh+0x36/0x40
[  164.142018][    C0]  lock_sock_nested+0x2e/0xe0
[  164.146535][    C0]  tipc_sendstream+0x22/0x50
[  164.150961][    C0]  ____sys_sendmsg+0x1b4/0x270
[  164.155562][    C0]  ___sys_sendmsg+0x28a/0x2c0
[  164.160076][    C0]  ? futex_wait_queue+0x74/0xd0
[  164.164761][    C0]  __x64_sys_sendmsg+0xf6/0x130
[  164.169452][    C0]  x64_sys_call+0x171/0x9a0
[  164.173783][    C0]  do_syscall_64+0x4c/0xa0
[  164.178052][    C0]  ? clear_bhb_loop+0x15/0x70
[  164.182554][    C0]  ? clear_bhb_loop+0x15/0x70
[  164.187585][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  164.193317][    C0] RIP: 0033:0x7f50cf58cde9
[  164.197571][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  164.217008][    C0] RSP: 002b:00007f50d04d2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  164.225254][    C0] RAX: ffffffffffffffda RBX: 00007f50cf7a5fa0 RCX: 00007f50cf58cde9
[  164.233064][    C0] RDX: 0000000000000000 RSI: 0000400000000500 RDI: 0000000000000004
[  164.240877][    C0] RBP: 00007f50cf60e2a0 R08: 0000000000000000 R09: 0000000000000000
[  164.248686][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  164.256585][    C0] R13: 0000000000000000 R14: 00007f50cf7a5fa0 R15: 00007ffe2e9caa78
[  164.264420][    C0]  </TASK>
[  198.537694][    C1] watchdog: BUG: soft lockup - CPU#1 stuck for 143s! [syz.2.211:1080]
[  198.545657][    C1] Modules linked in:
[  198.549388][    C1] CPU: 1 PID: 1080 Comm: syz.2.211 Not tainted 6.1.138-syzkaller #0
[  198.557198][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  198.567094][    C1] RIP: 0010:tipc_sk_lookup+0xa5/0x1e0
[  198.572387][    C1] Code: 0b 44 29 c2 41 89 d0 41 c1 c0 19 31 d1 44 29 c1 31 c8 41 89 c8 41 c1 c0 10 44 29 c0 31 c2 41 89 c0 41 c1 c0 04 44 29 c2 31 d1 <c1> c2 0e 29 d1 31 c8 c1 c1 18 29 c8 ff ce 21 c6 83 7f 04 00 48 89
[  198.591831][    C1] RSP: 0018:ffffc900017f37b0 EFLAGS: 00000202
[  198.597738][    C1] RAX: 00000000478bf33f RBX: ffff888110868000 RCX: 000000006647be62
[  198.605542][    C1] RDX: 000000006927f9ad RSI: 0000000000000100 RDI: ffff888112505000
[  198.613353][    C1] RBP: ffffc900017f3800 R08: 0000000078bf33f4 R09: 000000008010000e
[  198.621165][    C1] R10: 0000000000000000 R11: 0000000000000900 R12: 0000000015ea28bd
[  198.628975][    C1] R13: 0000000015ea28bd R14: ffff8881135ba000 R15: ffffc900017f37cc
[  198.636784][    C1] FS:  00007f50d04b16c0(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000
[  198.645637][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  198.652072][    C1] CR2: 00007f50d04b0f98 CR3: 000000010c607000 CR4: 00000000003506a0
[  198.659874][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  198.667684][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  198.675512][    C1] Call Trace:
[  198.678621][    C1]  <TASK>
[  198.681499][    C1]  tipc_sk_rcv+0xef/0xa30
[  198.685737][    C1]  tipc_node_xmit+0x1a6/0x460
[  198.690251][    C1]  ? kfree+0x6f/0xf0
[  198.693986][    C1]  tipc_node_distr_xmit+0xb1/0xf0
[  198.698844][    C1]  tipc_sk_rcv+0x58c/0xa30
[  198.703152][    C1]  tipc_node_xmit+0x1a6/0x460
[  198.707630][    C1]  ? stack_depot_save+0x13/0x20
[  198.712300][    C1]  tipc_sk_push_backlog+0x113/0x130
[  198.717368][    C1]  tipc_sk_proto_rcv+0x332/0x4b0
[  198.722108][    C1]  tipc_sk_filter_rcv+0xa08/0xaa0
[  198.727057][    C1]  tipc_sk_rcv+0x2ae/0xa30
[  198.731421][    C1]  tipc_node_xmit+0x1a6/0x460
[  198.736013][    C1]  ? tipc_sk_filter_rcv+0x31f/0xaa0
[  198.741053][    C1]  tipc_node_distr_xmit+0xb1/0xf0
[  198.746008][    C1]  tipc_sk_backlog_rcv+0x5c/0x80
[  198.750770][    C1]  __release_sock+0x92/0x120
[  198.755204][    C1]  sockopt_release_sock+0x3e/0xc0
[  198.760057][    C1]  sk_setsockopt+0xdd2/0xe00
[  198.764484][    C1]  sock_setsockopt+0xd/0x10
[  198.768821][    C1]  __sys_setsockopt+0x138/0x1c0
[  198.773507][    C1]  __x64_sys_setsockopt+0x1c/0x20
[  198.778368][    C1]  x64_sys_call+0x124/0x9a0
[  198.782710][    C1]  do_syscall_64+0x4c/0xa0
[  198.787059][    C1]  ? clear_bhb_loop+0x15/0x70
[  198.791573][    C1]  ? clear_bhb_loop+0x15/0x70
[  198.796086][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  198.801813][    C1] RIP: 0033:0x7f50cf58cde9
[  198.806076][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.825646][    C1] RSP: 002b:00007f50d04b1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  198.833892][    C1] RAX: ffffffffffffffda RBX: 00007f50cf7a6080 RCX: 00007f50cf58cde9
[  198.841704][    C1] RDX: 0000000000000021 RSI: 0000000000000001 RDI: 0000000000000003
[  198.849517][    C1] RBP: 00007f50cf60e2a0 R08: 0000000000000004 R09: 0000000000000000
[  198.857427][    C1] R10: 0000400000000540 R11: 0000000000000246 R12: 0000000000000000
[  198.865236][    C1] R13: 0000000000000001 R14: 00007f50cf7a6080 R15: 00007ffe2e9caa78
[  198.873050][    C1]  </TASK>
[  198.875924][    C1] Sending NMI from CPU 1 to CPUs 0:
[  198.880966][    C0] NMI backtrace for cpu 0
[  198.880970][    C0] CPU: 0 PID: 1079 Comm: syz.2.211 Not tainted 6.1.138-syzkaller #0
[  198.880974][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  198.880976][    C0] RIP: 0010:__pv_queued_spin_lock_slowpath+0x1b1/0x440
[  198.880985][    C0] Code: 0f 94 c4 48 b8 eb 83 b5 80 46 86 c8 61 48 0f af c3 48 89 45 c0 66 41 bd 01 00 c6 07 00 c6 43 01 01 b9 00 80 ff ff eb 06 f3 90 <ff> c1 74 1e 80 3b 00 75 f5 66 b8 00 01 f0 66 44 0f b1 2b 0f b7 c0
[  198.880988][    C0] RSP: 0018:ffffc90001837b60 EFLAGS: 00000206
[  198.880991][    C0] RAX: 76e48cd0d899a000 RBX: ffff88810088a918 RCX: 00000000ffff9d87
[  198.880994][    C0] RDX: 00000000000000a5 RSI: 0000000000000003 RDI: ffff888237c2c914
[  198.880996][    C0] RBP: ffffc90001837ba0 R08: 0000000000000004 R09: 0000000000000000
[  198.880998][    C0] R10: 0000000000000000 R11: ffffffff81ffd2d0 R12: ffff88823fff0b80
[  198.881000][    C0] R13: 0000000000040001 R14: 0000000000000000 R15: ffff888237c2c900
[  198.881002][    C0] FS:  00007f50d04d26c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000
[  198.881005][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  198.881007][    C0] CR2: 0000400000000000 CR3: 000000010c607000 CR4: 00000000003506b0
[  198.881013][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  198.881015][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  198.881017][    C0] Call Trace:
[  198.881018][    C0]  <TASK>
[  198.881020][    C0]  _raw_spin_lock_bh+0x36/0x40
[  198.881025][    C0]  lock_sock_nested+0x2e/0xe0
[  198.881030][    C0]  tipc_sendstream+0x22/0x50
[  198.881034][    C0]  ____sys_sendmsg+0x1b4/0x270
[  198.881041][    C0]  ___sys_sendmsg+0x28a/0x2c0
[  198.881044][    C0]  ? futex_wait_queue+0x74/0xd0
[  198.881054][    C0]  __x64_sys_sendmsg+0xf6/0x130
[  198.881060][    C0]  x64_sys_call+0x171/0x9a0
[  198.881064][    C0]  do_syscall_64+0x4c/0xa0
[  198.881068][    C0]  ? clear_bhb_loop+0x15/0x70
[  198.881073][    C0]  ? clear_bhb_loop+0x15/0x70
[  198.881077][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  198.881081][    C0] RIP: 0033:0x7f50cf58cde9
[  198.881085][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.881087][    C0] RSP: 002b:00007f50d04d2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  198.881091][    C0] RAX: ffffffffffffffda RBX: 00007f50cf7a5fa0 RCX: 00007f50cf58cde9
[  198.881092][    C0] RDX: 0000000000000000 RSI: 0000400000000500 RDI: 0000000000000004
[  198.881094][    C0] RBP: 00007f50cf60e2a0 R08: 0000000000000000 R09: 0000000000000000
[  198.881096][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  198.881098][    C0] R13: 0000000000000000 R14: 00007f50cf7a5fa0 R15: 00007ffe2e9caa78
[  198.881101][    C0]  </TASK>