Warning: Permanently added '10.128.0.122' (ED25519) to the list of known hosts. 2024/05/14 18:54:47 ignoring optional flag "sandboxArg"="0" 2024/05/14 18:54:47 parsed 1 programs [ 43.326975][ T30] audit: type=1400 audit(1715712887.287:157): avc: denied { mounton } for pid=342 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 43.351646][ T30] audit: type=1400 audit(1715712887.287:158): avc: denied { mount } for pid=342 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 2024/05/14 18:54:47 executed programs: 0 [ 43.416019][ T30] audit: type=1400 audit(1715712887.387:159): avc: denied { unlink } for pid=342 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 43.446937][ T342] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 43.594282][ T355] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.601175][ T355] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.608320][ T355] device bridge_slave_0 entered promiscuous mode [ 43.615330][ T355] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.622312][ T355] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.629544][ T355] device bridge_slave_1 entered promiscuous mode [ 43.654638][ T359] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.661505][ T359] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.668580][ T359] device bridge_slave_0 entered promiscuous mode [ 43.675734][ T359] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.682586][ T359] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.689795][ T359] device bridge_slave_1 entered promiscuous mode [ 43.713180][ T357] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.720031][ T357] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.727667][ T357] device bridge_slave_0 entered promiscuous mode [ 43.736191][ T357] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.743089][ T357] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.750224][ T357] device bridge_slave_1 entered promiscuous mode [ 43.817395][ T354] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.824314][ T354] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.831604][ T354] device bridge_slave_0 entered promiscuous mode [ 43.847021][ T354] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.853955][ T354] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.861283][ T354] device bridge_slave_1 entered promiscuous mode [ 43.897313][ T358] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.904187][ T358] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.911399][ T358] device bridge_slave_0 entered promiscuous mode [ 43.929973][ T358] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.936913][ T358] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.944094][ T358] device bridge_slave_1 entered promiscuous mode [ 44.001032][ T30] audit: type=1400 audit(1715712887.967:160): avc: denied { write } for pid=355 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 44.021537][ T30] audit: type=1400 audit(1715712887.967:161): avc: denied { read } for pid=355 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 44.073708][ T355] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.080680][ T355] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.092592][ T359] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.099525][ T359] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.106658][ T359] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.113422][ T359] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.125995][ T354] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.132851][ T354] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.139929][ T354] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.146745][ T354] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.155231][ T357] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.162090][ T357] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.169265][ T357] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.176159][ T357] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.236878][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 44.244681][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 44.253465][ T304] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.260577][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 44.268709][ T304] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.276158][ T304] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.283483][ T304] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.290643][ T304] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.322023][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 44.329741][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 44.337634][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 44.344915][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 44.352557][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 44.360679][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 44.368634][ T304] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.375479][ T304] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.382713][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 44.390696][ T304] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.397524][ T304] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.404721][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 44.412436][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 44.440193][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 44.447849][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 44.456381][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 44.465703][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 44.473649][ T304] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.480492][ T304] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.487701][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 44.495847][ T304] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.502683][ T304] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.509828][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 44.517561][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 44.525489][ T304] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.532329][ T304] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.539447][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 44.547376][ T304] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.554219][ T304] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.564025][ T359] device veth0_vlan entered promiscuous mode [ 44.578882][ T355] device veth0_vlan entered promiscuous mode [ 44.585748][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 44.594166][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 44.602112][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 44.609254][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 44.616958][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 44.624888][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 44.642482][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 44.650386][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 44.657707][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 44.665227][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 44.679779][ T359] device veth1_macvtap entered promiscuous mode [ 44.690455][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 44.698341][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 44.706222][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 44.714144][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 44.721940][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 44.729866][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 44.738024][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 44.745453][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 44.753453][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 44.770347][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 44.778596][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 44.786691][ T20] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.793540][ T20] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.800699][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 44.808760][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 44.817072][ T20] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.824019][ T20] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.831165][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 44.839189][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 44.847325][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 44.855079][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 44.862956][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 44.870834][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 44.878709][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 44.886224][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 44.893525][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 44.905984][ T355] device veth1_macvtap entered promiscuous mode [ 44.914838][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 44.922493][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 44.930494][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 44.943807][ T358] device veth0_vlan entered promiscuous mode [ 44.955253][ T354] device veth0_vlan entered promiscuous mode [ 44.966624][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 44.974811][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 44.983710][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 44.991429][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 44.999096][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 45.007242][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 45.015341][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 45.023083][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 45.030803][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 45.038760][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 45.047011][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 45.055044][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 45.063341][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 45.070615][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 45.077801][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 45.085101][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 45.092388][ T357] device veth0_vlan entered promiscuous mode [ 45.109908][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 45.118335][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 45.126953][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 45.135112][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 45.143213][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 45.151199][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 45.159037][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 45.167106][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 45.178954][ T354] device veth1_macvtap entered promiscuous mode [ 45.187699][ T358] device veth1_macvtap entered promiscuous mode [ 45.193852][ T30] audit: type=1400 audit(1715712889.157:162): avc: denied { mounton } for pid=355 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=362 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 45.240884][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 45.248422][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 45.258770][ T30] audit: type=1400 audit(1715712889.197:163): avc: denied { map_create } for pid=379 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 45.281688][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 45.282103][ T30] audit: type=1400 audit(1715712889.197:164): avc: denied { map_read map_write } for pid=379 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 45.294689][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 45.314083][ T30] audit: type=1400 audit(1715712889.197:165): avc: denied { prog_load } for pid=379 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 45.317884][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 45.336539][ T30] audit: type=1400 audit(1715712889.197:166): avc: denied { bpf } for pid=379 comm="syz-executor.1" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 45.344888][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 45.373102][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 45.381198][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 45.389291][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 45.397444][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 45.405453][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 45.416998][ T357] device veth1_macvtap entered promiscuous mode [ 45.450574][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 45.458252][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 45.466767][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 45.481294][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 45.492215][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready 2024/05/14 18:54:52 executed programs: 289 [ 177.067437][ C0] watchdog: BUG: soft lockup - CPU#0 stuck for 123s! [syz-executor.2:1397] [ 177.075895][ C0] Modules linked in: [ 177.079627][ C0] CPU: 0 PID: 1397 Comm: syz-executor.2 Not tainted 5.15.149-syzkaller-1069109-g5d96939590c0 #0 [ 177.089874][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 177.099759][ C0] RIP: 0010:kvm_wait+0x147/0x180 [ 177.104521][ C0] Code: 4c 89 e8 48 c1 e8 03 42 0f b6 04 20 84 c0 44 8b 74 24 1c 75 34 41 0f b6 45 00 44 38 f0 75 10 66 90 0f 00 2d 5b 03 f3 03 fb f4 24 ff ff ff fb e9 1e ff ff ff 44 89 e9 80 e1 07 38 c1 7c a3 4c [ 177.124571][ C0] RSP: 0018:ffffc90000be60e0 EFLAGS: 00000246 [ 177.130565][ C0] RAX: 0000000000000001 RBX: 1ffff9200017cc20 RCX: 1ffffffff0c5aa9c [ 177.138375][ C0] RDX: 0000000000000001 RSI: 0000000000000001 RDI: ffff8881f7037ed4 [ 177.146189][ C0] RBP: ffffc90000be6190 R08: dffffc0000000000 R09: ffffed103ee06fdb [ 177.153999][ C0] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 177.161809][ C0] R13: ffff8881f7037ed4 R14: 0000000000000001 R15: 1ffff9200017cc24 [ 177.169619][ C0] FS: 0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 177.178505][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 177.184905][ C0] CR2: 0000000020000000 CR3: 000000000620f000 CR4: 00000000003506b0 [ 177.192717][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 177.200528][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 177.208344][ C0] Call Trace: [ 177.211463][ C0] [ 177.214176][ C0] ? show_regs+0x58/0x60 [ 177.218239][ C0] ? watchdog_timer_fn+0x4b1/0x5f0 [ 177.223188][ C0] ? proc_watchdog_cpumask+0xd0/0xd0 [ 177.228301][ C0] ? __hrtimer_run_queues+0x41a/0xad0 [ 177.233532][ C0] ? hrtimer_interrupt+0xaa0/0xaa0 [ 177.238453][ C0] ? clockevents_program_event+0x22f/0x300 [ 177.244209][ C0] ? ktime_get_update_offsets_now+0x2ba/0x2d0 [ 177.250113][ C0] ? hrtimer_interrupt+0x40c/0xaa0 [ 177.255066][ C0] ? __sysvec_apic_timer_interrupt+0xfd/0x3c0 [ 177.260959][ C0] ? sysvec_apic_timer_interrupt+0x95/0xc0 [ 177.266609][ C0] [ 177.269378][ C0] [ 177.272156][ C0] ? asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 177.278248][ C0] ? kvm_wait+0x147/0x180 [ 177.282495][ C0] ? asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 177.288680][ C0] ? kvm_arch_para_hints+0x30/0x30 [ 177.293711][ C0] __pv_queued_spin_lock_slowpath+0x41b/0xc40 [ 177.299647][ C0] ? post_alloc_hook+0x1a3/0x1b0 [ 177.304386][ C0] ? __pv_queued_spin_unlock_slowpath+0x310/0x310 [ 177.310634][ C0] ? get_page_from_freelist+0x3550/0x35d0 [ 177.316190][ C0] _raw_spin_lock_bh+0x139/0x1b0 [ 177.320964][ C0] ? _raw_spin_lock_irq+0x1b0/0x1b0 [ 177.326007][ C0] ? sock_hash_bucket_hash+0x388/0x7e0 [ 177.331558][ C0] sock_hash_delete_elem+0xb1/0x2f0 [ 177.336593][ C0] bpf_prog_a8aaa52f2e199321+0x42/0xdc4 [ 177.341966][ C0] bpf_trace_run4+0x13f/0x270 [ 177.346491][ C0] ? bpf_trace_run3+0x250/0x250 [ 177.351167][ C0] ? __alloc_pages+0x8f0/0x8f0 [ 177.355765][ C0] __bpf_trace_mm_page_alloc+0xbf/0xf0 [ 177.361064][ C0] __traceiter_mm_page_alloc+0x3a/0x60 [ 177.366442][ C0] __alloc_pages+0x3cb/0x8f0 [ 177.370871][ C0] ? prep_new_page+0x110/0x110 [ 177.375469][ C0] ? __bpf_trace_mm_page_alloc+0xbf/0xf0 [ 177.380936][ C0] ? stack_trace_save+0x113/0x1c0 [ 177.385798][ C0] __stack_depot_save+0x38d/0x470 [ 177.390659][ C0] stack_depot_save+0xe/0x10 [ 177.395083][ C0] save_stack+0x104/0x1e0 [ 177.399250][ C0] ? __reset_page_owner+0x190/0x190 [ 177.404294][ C0] ? post_alloc_hook+0x1a3/0x1b0 [ 177.409058][ C0] ? prep_new_page+0x1b/0x110 [ 177.413574][ C0] ? get_page_from_freelist+0x3550/0x35d0 [ 177.419124][ C0] ? __alloc_pages+0x27e/0x8f0 [ 177.423726][ C0] ? __stack_depot_save+0x38d/0x470 [ 177.428768][ C0] ? kasan_set_track+0x5d/0x70 [ 177.433363][ C0] ? kasan_set_free_info+0x23/0x40 [ 177.438309][ C0] ? ____kasan_slab_free+0x126/0x160 [ 177.443518][ C0] ? __kasan_slab_free+0x11/0x20 [ 177.448288][ C0] ? slab_free_freelist_hook+0xbd/0x190 [ 177.453669][ C0] ? kfree+0xc8/0x220 [ 177.457608][ C0] ? sock_map_unref+0x352/0x4d0 [ 177.462283][ C0] ? sock_hash_delete_elem+0x274/0x2f0 [ 177.467572][ C0] ? bpf_prog_a8aaa52f2e199321+0x42/0xdc4 [ 177.473144][ C0] ? bpf_trace_run4+0x13f/0x270 [ 177.477816][ C0] ? __bpf_trace_mm_page_alloc+0xbf/0xf0 [ 177.483291][ C0] __set_page_owner+0x28/0x2e0 [ 177.487980][ C0] ? kernel_init_free_pages+0xda/0xf0 [ 177.493177][ C0] post_alloc_hook+0x1a3/0x1b0 [ 177.497776][ C0] prep_new_page+0x1b/0x110 [ 177.502118][ C0] get_page_from_freelist+0x3550/0x35d0 [ 177.507593][ C0] ? print_verifier_state+0x2230/0x2230 [ 177.513135][ C0] ? stack_trace_save+0x1c0/0x1c0 [ 177.518037][ C0] ? lruvec_init+0x150/0x150 [ 177.522422][ C0] ? __alloc_pages+0x8f0/0x8f0 [ 177.527032][ C0] ? __alloc_pages_bulk+0xe40/0xe40 [ 177.532060][ C0] ? stack_trace_save+0x1c0/0x1c0 [ 177.536923][ C0] __alloc_pages+0x27e/0x8f0 [ 177.541347][ C0] ? prep_new_page+0x110/0x110 [ 177.546155][ C0] ? stack_trace_save+0x113/0x1c0 [ 177.551049][ C0] ? stack_trace_snprint+0xf0/0xf0 [ 177.556082][ C0] __stack_depot_save+0x38d/0x470 [ 177.560938][ C0] ? kfree+0xc8/0x220 [ 177.564753][ C0] kasan_set_track+0x5d/0x70 [ 177.569182][ C0] ? kasan_set_track+0x4b/0x70 [ 177.573777][ C0] ? kasan_set_free_info+0x23/0x40 [ 177.578723][ C0] ? ____kasan_slab_free+0x126/0x160 [ 177.583846][ C0] ? __kasan_slab_free+0x11/0x20 [ 177.588620][ C0] ? slab_free_freelist_hook+0xbd/0x190 [ 177.594000][ C0] ? kfree+0xc8/0x220 [ 177.597817][ C0] ? sock_map_unref+0x352/0x4d0 [ 177.602506][ C0] ? sock_hash_delete_elem+0x274/0x2f0 [ 177.607803][ C0] ? bpf_prog_a8aaa52f2e199321+0x42/0xdc4 [ 177.613356][ C0] ? bpf_trace_run4+0x13f/0x270 [ 177.618042][ C0] ? __bpf_trace_mm_page_alloc+0xbf/0xf0 [ 177.623511][ C0] ? __traceiter_mm_page_alloc+0x3a/0x60 [ 177.628979][ C0] ? __alloc_pages+0x3cb/0x8f0 [ 177.633581][ C0] ? __get_free_pages+0x10/0x30 [ 177.638265][ C0] ? __tlb_remove_page_size+0x178/0x300 [ 177.643650][ C0] ? unmap_page_range+0x120a/0x1ca0 [ 177.648682][ C0] ? unmap_vmas+0x389/0x560 [ 177.653023][ C0] ? exit_mmap+0x3d8/0x6f0 [ 177.657282][ C0] ? __mmput+0x95/0x310 [ 177.661270][ C0] ? mmput+0x5b/0x170 [ 177.665100][ C0] ? do_exit+0xb9c/0x2ca0 [ 177.669252][ C0] ? do_group_exit+0x141/0x310 [ 177.673852][ C0] ? get_signal+0x7a3/0x1630 [ 177.678282][ C0] ? arch_do_signal_or_restart+0xbd/0x1680 [ 177.684008][ C0] ? exit_to_user_mode_loop+0xa0/0xe0 [ 177.689214][ C0] ? exit_to_user_mode_prepare+0x5a/0xa0 [ 177.694691][ C0] ? syscall_exit_to_user_mode+0x26/0x160 [ 177.700421][ C0] ? do_syscall_64+0x49/0xb0 [ 177.704836][ C0] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 177.710839][ C0] kasan_set_free_info+0x23/0x40 [ 177.715689][ C0] ____kasan_slab_free+0x126/0x160 [ 177.720644][ C0] __kasan_slab_free+0x11/0x20 [ 177.725233][ C0] slab_free_freelist_hook+0xbd/0x190 [ 177.730443][ C0] ? sock_map_unref+0x352/0x4d0 [ 177.735140][ C0] kfree+0xc8/0x220 [ 177.738775][ C0] sock_map_unref+0x352/0x4d0 [ 177.743386][ C0] sock_hash_delete_elem+0x274/0x2f0 [ 177.748500][ C0] bpf_prog_a8aaa52f2e199321+0x42/0xdc4 [ 177.754007][ C0] bpf_trace_run4+0x13f/0x270 [ 177.758616][ C0] ? bpf_trace_run3+0x250/0x250 [ 177.763375][ C0] ? __alloc_pages+0x8f0/0x8f0 [ 177.767975][ C0] __bpf_trace_mm_page_alloc+0xbf/0xf0 [ 177.773271][ C0] __traceiter_mm_page_alloc+0x3a/0x60 [ 177.778564][ C0] __alloc_pages+0x3cb/0x8f0 [ 177.782990][ C0] ? page_remove_rmap+0xe36/0x1420 [ 177.787938][ C0] ? prep_new_page+0x110/0x110 [ 177.792571][ C0] ? page_remove_rmap+0xebe/0x1420 [ 177.797485][ C0] ? page_add_file_rmap+0x8e0/0x8e0 [ 177.802618][ C0] ? mark_page_accessed+0x56b/0xbf0 [ 177.807812][ C0] ? _raw_spin_lock+0xa4/0x1b0 [ 177.812502][ C0] __get_free_pages+0x10/0x30 [ 177.817283][ C0] __tlb_remove_page_size+0x178/0x300 [ 177.822493][ C0] unmap_page_range+0x120a/0x1ca0 [ 177.827430][ C0] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 177.833591][ C0] ? __pagevec_lru_add+0xcde/0xd70 [ 177.838536][ C0] ? uprobe_munmap+0x18d/0x450 [ 177.843139][ C0] ? lru_cache_add+0x540/0x540 [ 177.847738][ C0] unmap_vmas+0x389/0x560 [ 177.851905][ C0] ? unmap_page_range+0x1ca0/0x1ca0 [ 177.856987][ C0] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 177.862342][ C0] exit_mmap+0x3d8/0x6f0 [ 177.866434][ C0] ? exit_aio+0x25e/0x3c0 [ 177.870605][ C0] ? vm_brk+0x30/0x30 [ 177.874522][ C0] ? mutex_unlock+0xb2/0x260 [ 177.878950][ C0] ? uprobe_clear_state+0x2cd/0x320 [ 177.884073][ C0] __mmput+0x95/0x310 [ 177.888073][ C0] mmput+0x5b/0x170 [ 177.891717][ C0] do_exit+0xb9c/0x2ca0 [ 177.895710][ C0] ? put_task_struct+0x80/0x80 [ 177.900311][ C0] ? __kasan_check_write+0x14/0x20 [ 177.905431][ C0] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 177.910376][ C0] ? _raw_spin_lock_irqsave+0x210/0x210 [ 177.915760][ C0] do_group_exit+0x141/0x310 [ 177.920194][ C0] get_signal+0x7a3/0x1630 [ 177.924525][ C0] arch_do_signal_or_restart+0xbd/0x1680 [ 177.930096][ C0] ? get_sigframe_size+0x10/0x10 [ 177.934870][ C0] ? __se_sys_futex+0x37b/0x3e0 [ 177.939558][ C0] ? fpu_flush_thread+0xf0/0xf0 [ 177.944227][ C0] exit_to_user_mode_loop+0xa0/0xe0 [ 177.949260][ C0] exit_to_user_mode_prepare+0x5a/0xa0 [ 177.954555][ C0] syscall_exit_to_user_mode+0x26/0x160 [ 177.959937][ C0] do_syscall_64+0x49/0xb0 [ 177.964216][ C0] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 177.970011][ C0] RIP: 0033:0x7fa337b0fea9 [ 177.974274][ C0] Code: Unable to access opcode bytes at RIP 0x7fa337b0fe7f. [ 177.981464][ C0] RSP: 002b:00007fa337691178 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 177.989706][ C0] RAX: 0000000000000001 RBX: 00007fa337c3df88 RCX: 00007fa337b0fea9 [ 177.997624][ C0] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa337c3df8c [ 178.005415][ C0] RBP: 00007fa337c3df80 R08: 00007ffccdbf50b0 R09: 00007fa3376916c0 [ 178.013315][ C0] R10: 0000000000000007 R11: 0000000000000246 R12: 00007fa337c3df8c [ 178.021222][ C0] R13: 000000000000000b R14: 00007ffccdbb70c0 R15: 00007ffccdbb71a8 [ 178.029112][ C0] [ 178.031982][ C0] Sending NMI from CPU 0 to CPUs 1: [ 178.037036][ C1] NMI backtrace for cpu 1 [ 178.037044][ C1] CPU: 1 PID: 1400 Comm: syz-executor.4 Not tainted 5.15.149-syzkaller-1069109-g5d96939590c0 #0 [ 178.037060][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 178.037069][ C1] RIP: 0010:kvm_wait+0x147/0x180 [ 178.037088][ C1] Code: 4c 89 e8 48 c1 e8 03 42 0f b6 04 20 84 c0 44 8b 74 24 1c 75 34 41 0f b6 45 00 44 38 f0 75 10 66 90 0f 00 2d 5b 03 f3 03 fb f4 24 ff ff ff fb e9 1e ff ff ff 44 89 e9 80 e1 07 38 c1 7c a3 4c [ 178.037100][ C1] RSP: 0018:ffffc90000a16f20 EFLAGS: 00000246 [ 178.037113][ C1] RAX: 0000000000000003 RBX: 1ffff92000142de8 RCX: ffffffff8154fa7f [ 178.037123][ C1] RDX: dffffc0000000000 RSI: 0000000000000003 RDI: ffff888115f0f898 [ 178.037134][ C1] RBP: ffffc90000a16fd0 R08: dffffc0000000000 R09: ffffed1022be1f14 [ 178.037145][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 178.037155][ C1] R13: ffff888115f0f898 R14: 0000000000000003 R15: 1ffff92000142dec [ 178.037165][ C1] FS: 0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 178.037178][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 178.037188][ C1] CR2: 00007fcd223280c0 CR3: 000000000620f000 CR4: 00000000003506a0 [ 178.037201][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 178.037210][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 178.037219][ C1] Call Trace: [ 178.037224][ C1] [ 178.037230][ C1] ? show_regs+0x58/0x60 [ 178.037255][ C1] ? nmi_cpu_backtrace+0x29f/0x300 [ 178.037273][ C1] ? nmi_trigger_cpumask_backtrace+0x270/0x270 [ 178.037291][ C1] ? kvm_wait+0x147/0x180 [ 178.037303][ C1] ? kvm_wait+0x147/0x180 [ 178.037316][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 178.037332][ C1] ? nmi_handle+0xa8/0x280 [ 178.037347][ C1] ? kvm_wait+0x147/0x180 [ 178.037360][ C1] ? default_do_nmi+0x69/0x160 [ 178.037375][ C1] ? exc_nmi+0xaf/0x120 [ 178.037389][ C1] ? end_repeat_nmi+0x16/0x31 [ 178.037404][ C1] ? __pv_queued_spin_lock_slowpath+0x65f/0xc40 [ 178.037423][ C1] ? kvm_wait+0x147/0x180 [ 178.037436][ C1] ? kvm_wait+0x147/0x180 [ 178.037449][ C1] ? kvm_wait+0x147/0x180 [ 178.037462][ C1] [ 178.037466][ C1] [ 178.037470][ C1] ? asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 178.037485][ C1] ? kvm_arch_para_hints+0x30/0x30 [ 178.037499][ C1] ? __pv_queued_spin_lock_slowpath+0x65f/0xc40 [ 178.037516][ C1] __pv_queued_spin_lock_slowpath+0x6bc/0xc40 [ 178.037533][ C1] ? post_alloc_hook+0x1a3/0x1b0 [ 178.037550][ C1] ? __pv_queued_spin_unlock_slowpath+0x310/0x310 [ 178.037566][ C1] ? get_page_from_freelist+0x3550/0x35d0 [ 178.037582][ C1] ? __reset_page_owner+0x190/0x190 [ 178.037595][ C1] ? free_unref_page_list+0x14b/0xa60 [ 178.037611][ C1] _raw_spin_lock_bh+0x139/0x1b0 [ 178.037627][ C1] ? _raw_spin_lock_irq+0x1b0/0x1b0 [ 178.037643][ C1] ? sock_hash_bucket_hash+0x388/0x7e0 [ 178.037660][ C1] sock_hash_delete_elem+0xb1/0x2f0 [ 178.037676][ C1] bpf_prog_a8aaa52f2e199321+0x42/0xdc4 [ 178.037689][ C1] bpf_trace_run4+0x13f/0x270 [ 178.037706][ C1] ? bpf_trace_run3+0x250/0x250 [ 178.037722][ C1] ? __alloc_pages+0x8f0/0x8f0 [ 178.037738][ C1] __bpf_trace_mm_page_alloc+0xbf/0xf0 [ 178.037754][ C1] __traceiter_mm_page_alloc+0x3a/0x60 [ 178.037768][ C1] __alloc_pages+0x3cb/0x8f0 [ 178.037782][ C1] ? page_remove_rmap+0xe36/0x1420 [ 178.037795][ C1] ? prep_new_page+0x110/0x110 [ 178.037809][ C1] ? page_remove_rmap+0xebe/0x1420 [ 178.037824][ C1] ? page_add_file_rmap+0x8e0/0x8e0 [ 178.037837][ C1] ? mark_page_accessed+0x56b/0xbf0 [ 178.037851][ C1] ? _raw_spin_lock+0xa4/0x1b0 [ 178.037866][ C1] __get_free_pages+0x10/0x30 [ 178.037880][ C1] __tlb_remove_page_size+0x178/0x300 [ 178.037898][ C1] unmap_page_range+0x120a/0x1ca0 [ 178.037917][ C1] ? mmu_notifier_invalidate_range_end+0xe0/0xe0 [ 178.037931][ C1] ? __pagevec_lru_add+0xcde/0xd70 [ 178.037946][ C1] ? uprobe_munmap+0x18d/0x450 [ 178.037962][ C1] ? lru_cache_add+0x540/0x540 [ 178.037976][ C1] unmap_vmas+0x389/0x560 [ 178.037990][ C1] ? unmap_page_range+0x1ca0/0x1ca0 [ 178.038004][ C1] ? tlb_gather_mmu_fullmm+0x165/0x210 [ 178.038021][ C1] exit_mmap+0x3d8/0x6f0 [ 178.038036][ C1] ? exit_aio+0x25e/0x3c0 [ 178.038048][ C1] ? vm_brk+0x30/0x30 [ 178.038061][ C1] ? mutex_unlock+0xb2/0x260 [ 178.038077][ C1] ? uprobe_clear_state+0x2cd/0x320 [ 178.038094][ C1] __mmput+0x95/0x310 [ 178.038109][ C1] mmput+0x5b/0x170 [ 178.038123][ C1] do_exit+0xb9c/0x2ca0 [ 178.038139][ C1] ? put_task_struct+0x80/0x80 [ 178.038154][ C1] ? __kasan_check_write+0x14/0x20 [ 178.038168][ C1] ? _raw_spin_lock_irq+0xa5/0x1b0 [ 178.038184][ C1] ? _raw_spin_lock_irqsave+0x210/0x210 [ 178.038200][ C1] do_group_exit+0x141/0x310 [ 178.038215][ C1] get_signal+0x7a3/0x1630 [ 178.038232][ C1] arch_do_signal_or_restart+0xbd/0x1680 [ 178.038255][ C1] ? get_sigframe_size+0x10/0x10 [ 178.038269][ C1] ? __se_sys_futex+0x37b/0x3e0 [ 178.038286][ C1] ? fpu_flush_thread+0xf0/0xf0 [ 178.038302][ C1] exit_to_user_mode_loop+0xa0/0xe0 [ 178.038317][ C1] exit_to_user_mode_prepare+0x5a/0xa0 [ 178.038331][ C1] syscall_exit_to_user_mode+0x26/0x160 [ 178.038347][ C1] do_syscall_64+0x49/0xb0 [ 178.038360][ C1] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 178.038377][ C1] RIP: 0033:0x7fd2a52f0ea9 [ 178.038387][ C1] Code: Unable to access opcode bytes at RIP 0x7fd2a52f0e7f. [ 178.038394][ C1] RSP: 002b:00007fd2a4e72178 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 178.038408][ C1] RAX: fffffffffffffe00 RBX: 00007fd2a541ef88 RCX: 00007fd2a52f0ea9 [ 178.038419][ C1] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fd2a541ef88 [ 178.038428][ C1] RBP: 00007fd2a541ef80 R08: 00007fd2a4e726c0 R09: 00007fd2a4e726c0 [ 178.038438][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd2a541ef8c [ 178.038447][ C1] R13: 000000000000000b R14: 00007ffe08d77560 R15: 00007ffe08d77648 [ 178.038460][ C1]