Warning: Permanently added '10.128.10.6' (ED25519) to the list of known hosts.
2025/07/07 21:05:44 ignoring optional flag "sandboxArg"="0"
2025/07/07 21:05:45 parsed 1 programs
[   52.821274][   T30] audit: type=1400 audit(1751922346.567:105): avc:  denied  { unlink } for  pid=397 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   52.855886][  T397] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   53.731282][   T30] audit: type=1401 audit(1751922347.477:106): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[   53.813876][  T435] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.821078][  T435] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.828431][  T435] device bridge_slave_0 entered promiscuous mode
[   53.835388][  T435] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.842477][  T435] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.849974][  T435] device bridge_slave_1 entered promiscuous mode
[   53.897644][  T435] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.904724][  T435] bridge0: port 2(bridge_slave_1) entered forwarding state
[   53.912013][  T435] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.919089][  T435] bridge0: port 1(bridge_slave_0) entered forwarding state
[   53.937185][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   53.944927][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.952237][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.961749][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   53.970017][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.977518][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[   53.985864][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   53.994128][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.001173][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.013282][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   54.022684][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   54.036545][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   54.047517][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   54.056265][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   54.064088][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   54.072465][  T435] device veth0_vlan entered promiscuous mode
[   54.082465][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   54.091769][  T435] device veth1_macvtap entered promiscuous mode
[   54.100955][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   54.111006][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   54.181835][   T30] audit: type=1400 audit(1751922347.927:107): avc:  denied  { create } for  pid=452 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
2025/07/07 21:05:48 executed programs: 0
[   54.564564][  T463] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.571679][  T463] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.579096][  T463] device bridge_slave_0 entered promiscuous mode
[   54.591167][  T463] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.598218][  T463] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.605848][  T463] device bridge_slave_1 entered promiscuous mode
[   54.659195][  T463] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.666302][  T463] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.673662][  T463] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.680766][  T463] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.707195][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   54.715302][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.723117][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.744277][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   54.752677][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.759741][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.767573][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   54.776087][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.783199][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.790816][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   54.798855][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   54.818433][  T463] device veth0_vlan entered promiscuous mode
[   54.825011][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   54.833629][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   54.842150][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   54.850099][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   54.864173][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   54.873641][  T463] device veth1_macvtap entered promiscuous mode
[   54.883297][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   54.893484][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   54.917851][   T30] audit: type=1400 audit(1751922348.657:108): avc:  denied  { create } for  pid=473 comm="syz.2.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   54.937246][   T30] audit: type=1400 audit(1751922348.657:109): avc:  denied  { write } for  pid=473 comm="syz.2.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   54.983154][   T30] audit: type=1400 audit(1751922348.727:110): avc:  denied  { setopt } for  pid=473 comm="syz.2.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  155.030491][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  155.037533][    C0] 	(detected by 0, t=10002 jiffies, g=2837, q=188)
[  155.044041][    C0] rcu: All QSes seen, last rcu_preempt kthread activity 10000 (4294952707-4294942707), jiffies_till_next_fqs=1, root ->qsmask 0x0
[  155.057406][    C0] rcu: rcu_preempt kthread starved for 10000 jiffies! g2837 f0x2 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  155.068548][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  155.078539][    C0] rcu: RCU grace-period kthread stack dump:
[  155.084519][    C0] task:rcu_preempt     state:R  running task     stack:28720 pid:   14 ppid:     2 flags:0x00004000
[  155.095302][    C0] Call Trace:
[  155.098684][    C0]  <TASK>
[  155.101627][    C0]  __schedule+0xb6e/0x14c0
[  155.106054][    C0]  ? release_firmware_map_entry+0x190/0x190
[  155.111942][    C0]  ? _raw_spin_unlock_irqrestore+0x5b/0x80
[  155.117747][    C0]  ? __mod_timer+0x7ae/0xb30
[  155.122340][    C0]  schedule+0x11e/0x1e0
[  155.126940][    C0]  schedule_timeout+0x12c/0x2e0
[  155.131786][    C0]  ? console_conditional_schedule+0x30/0x30
[  155.137766][    C0]  ? _raw_spin_lock_irqsave+0xb0/0x110
[  155.143307][    C0]  ? update_process_times+0x200/0x200
[  155.148688][    C0]  ? prepare_to_swait_event+0x308/0x320
[  155.154228][    C0]  rcu_gp_fqs_loop+0x293/0xf60
[  155.159114][    C0]  ? rcu_cleanup_dead_rnp+0x180/0x180
[  155.164486][    C0]  ? rcu_gp_init+0xc00/0xc00
[  155.169079][    C0]  ? _raw_spin_unlock_irq+0x4e/0x70
[  155.174273][    C0]  ? rcu_gp_init+0x9a7/0xc00
[  155.179041][    C0]  rcu_gp_kthread+0x98/0x330
[  155.183630][    C0]  ? wake_nocb_gp+0x1d0/0x1d0
[  155.188305][    C0]  ? __kasan_check_read+0x11/0x20
[  155.193323][    C0]  ? __kthread_parkme+0xac/0x200
[  155.198256][    C0]  ? preempt_count_add+0x90/0x1b0
[  155.203275][    C0]  kthread+0x411/0x500
[  155.207338][    C0]  ? wake_nocb_gp+0x1d0/0x1d0
[  155.212008][    C0]  ? kthread_blkcg+0xd0/0xd0
[  155.216609][    C0]  ret_from_fork+0x1f/0x30
[  155.221023][    C0]  </TASK>
[  155.224041][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  155.230396][    C0] NMI backtrace for cpu 0
[  155.234722][    C0] CPU: 0 PID: 477 Comm: syz.2.17 Not tainted 5.15.185-syzkaller-1080790-g32c443bd6d40 #0
[  155.244784][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  155.254833][    C0] Call Trace:
[  155.258108][    C0]  <IRQ>
[  155.260947][    C0]  __dump_stack+0x21/0x30
[  155.265314][    C0]  dump_stack_lvl+0xee/0x150
[  155.269902][    C0]  ? show_regs_print_info+0x20/0x20
[  155.275095][    C0]  dump_stack+0x15/0x20
[  155.279243][    C0]  nmi_cpu_backtrace+0x2b4/0x2c0
[  155.284176][    C0]  ? nmi_trigger_cpumask_backtrace+0x240/0x240
[  155.290325][    C0]  ? load_image+0x3a0/0x3a0
[  155.294849][    C0]  ? arch_trigger_cpumask_backtrace+0x20/0x20
[  155.301003][    C0]  ? arch_trigger_cpumask_backtrace+0x20/0x20
[  155.307079][    C0]  nmi_trigger_cpumask_backtrace+0x138/0x240
[  155.313053][    C0]  arch_trigger_cpumask_backtrace+0x10/0x20
[  155.318938][    C0]  rcu_check_gp_kthread_starvation+0x1e0/0x260
[  155.325379][    C0]  print_other_cpu_stall+0xded/0xfd0
[  155.330671][    C0]  ? print_cpu_stall+0x600/0x600
[  155.335693][    C0]  ? tick_nohz_handler+0x300/0x300
[  155.340813][    C0]  ? accumulate_nsecs_to_secs+0xb1/0x230
[  155.346446][    C0]  ? cgroup_rstat_updated+0xf5/0x370
[  155.351831][    C0]  rcu_sched_clock_irq+0x8a3/0x12b0
[  155.357037][    C0]  ? rcu_boost_kthread_setaffinity+0x310/0x310
[  155.363202][    C0]  ? raise_softirq+0x71/0xe0
[  155.367803][    C0]  ? __raise_softirq_irqoff+0xd0/0xd0
[  155.373319][    C0]  ? hrtimer_run_queues+0x166/0x430
[  155.378522][    C0]  update_process_times+0x198/0x200
[  155.383719][    C0]  tick_sched_timer+0x17c/0x240
[  155.388654][    C0]  ? tick_setup_sched_timer+0x450/0x450
[  155.394391][    C0]  __hrtimer_run_queues+0x3b5/0x9e0
[  155.399651][    C0]  ? hrtimer_interrupt+0x8c0/0x8c0
[  155.404763][    C0]  ? ktime_get_update_offsets_now+0x2fa/0x310
[  155.410839][    C0]  hrtimer_interrupt+0x3c7/0x8c0
[  155.415804][    C0]  __sysvec_apic_timer_interrupt+0xfa/0x3e0
[  155.421714][    C0]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  155.427506][    C0]  </IRQ>
[  155.430445][    C0]  <TASK>
[  155.433383][    C0]  asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  155.439375][    C0] RIP: 0010:tipc_sk_rcv+0x1a04/0x2c60
[  155.444748][    C0] Code: a2 09 ff ff 48 8b 7c 24 70 48 83 ef 80 48 89 7c 24 70 be 04 00 00 00 e8 9a cc 1c fd bb ff ff ff ff f0 41 0f c1 9f 80 00 00 00 <bf> 01 00 00 00 89 de e8 a0 57 de fc 83 fb 01 75 17 e8 e6 53 de fc
[  155.464889][    C0] RSP: 0018:ffffc900010769e0 EFLAGS: 00000213
[  155.471068][    C0] RAX: 0000000000000001 RBX: 0000000000000005 RCX: ffffffff848a5426
[  155.479065][    C0] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffff88812cfed480
[  155.487141][    C0] RBP: ffffc90001076c70 R08: dffffc0000000000 R09: ffffed10259fda91
[  155.495112][    C0] R10: ffffed10259fda91 R11: 1ffff110259fda90 R12: ffff8881167e1000
[  155.503080][    C0] R13: dffffc0000000000 R14: ffffc90001076e20 R15: ffff88812cfed400
[  155.511052][    C0]  ? tipc_sk_rcv+0x19f6/0x2c60
[  155.515914][    C0]  ? _raw_spin_unlock_irqrestore+0x5b/0x80
[  155.521717][    C0]  ? __stack_depot_save+0x442/0x480
[  155.526922][    C0]  ? kasan_set_track+0x5b/0x70
[  155.531681][    C0]  ? kasan_set_track+0x4a/0x70
[  155.536570][    C0]  ? kasan_set_free_info+0x23/0x40
[  155.541679][    C0]  ? ____kasan_slab_free+0x125/0x160
[  155.547087][    C0]  ? __kasan_slab_free+0x11/0x20
[  155.552022][    C0]  ? slab_free_freelist_hook+0xc2/0x190
[  155.557571][    C0]  ? kmem_cache_free+0x100/0x320
[  155.562509][    C0]  ? kfree_skbmem+0x10c/0x180
[  155.567532][    C0]  ? tipc_sk_rcv+0x1ce4/0x2c60
[  155.572374][    C0]  ? tipc_sk_filter_rcv+0x151b/0x2c40
[  155.577760][    C0]  ? tipc_release+0xd0b/0x1630
[  155.582519][    C0]  ? syscall_exit_to_user_mode+0x1a/0x30
[  155.588235][    C0]  ? do_syscall_64+0x58/0xa0
[  155.592818][    C0]  ? entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  155.598884][    C0]  ? __skb_queue_purge+0x170/0x170
[  155.603990][    C0]  tipc_node_xmit+0x256/0xce0
[  155.608660][    C0]  ? ____kasan_slab_free+0x130/0x160
[  155.613947][    C0]  ? tipc_node_get_linkname+0x1a0/0x1a0
[  155.619505][    C0]  ? slab_free_freelist_hook+0xc2/0x190
[  155.625088][    C0]  ? kfree_skbmem+0x10c/0x180
[  155.629899][    C0]  ? kmem_cache_free+0x100/0x320
[  155.634853][    C0]  ? skb_release_data+0x814/0xa10
[  155.640058][    C0]  tipc_node_xmit_skb+0xe9/0x130
[  155.645000][    C0]  ? kfree_skb+0xc1/0x2f0
[  155.649418][    C0]  ? __skb_queue_purge+0x170/0x170
[  155.654533][    C0]  ? trace_tipc_sk_rej_msg+0x25/0x150
[  155.660069][    C0]  tipc_sk_rcv+0x1d5d/0x2c60
[  155.664676][    C0]  ? __stack_depot_save+0x442/0x480
[  155.669898][    C0]  ? __kmalloc_track_caller+0x169/0x2c0
[  155.675541][    C0]  ? __skb_queue_purge+0x170/0x170
[  155.680666][    C0]  tipc_node_xmit+0x256/0xce0
[  155.685382][    C0]  ? tipc_node_get_linkname+0x1a0/0x1a0
[  155.691023][    C0]  ? __kernel_text_address+0xa0/0x100
[  155.696417][    C0]  ? unwind_get_return_address+0x4d/0x90
[  155.702216][    C0]  ? __kasan_check_write+0x14/0x20
[  155.707700][    C0]  ? _raw_spin_lock_irqsave+0xb0/0x110
[  155.713277][    C0]  tipc_sk_filter_rcv+0x151b/0x2c40
[  155.718483][    C0]  ? tipc_sk_publish+0x440/0x440
[  155.723529][    C0]  ? __kasan_check_write+0x14/0x20
[  155.728638][    C0]  ? _raw_spin_lock_bh+0x8e/0xe0
[  155.733573][    C0]  tipc_sk_rcv+0x7b7/0x2c60
[  155.738074][    C0]  ? kfree_skbmem+0x10c/0x180
[  155.742773][    C0]  ? skb_release_data+0x814/0xa10
[  155.747805][    C0]  ? __skb_queue_purge+0x170/0x170
[  155.752937][    C0]  ? tipc_sk_filter_rcv+0x29de/0x2c40
[  155.758339][    C0]  tipc_node_xmit+0x256/0xce0
[  155.763023][    C0]  ? tipc_node_get_linkname+0x1a0/0x1a0
[  155.768578][    C0]  ? kasan_quarantine_put+0x34/0x190
[  155.773878][    C0]  tipc_node_distr_xmit+0x292/0x390
[  155.779186][    C0]  ? tipc_node_xmit_skb+0x130/0x130
[  155.784481][    C0]  ? kfree_skbmem+0x10c/0x180
[  155.789158][    C0]  tipc_sk_backlog_rcv+0x16f/0x1f0
[  155.794275][    C0]  ? tipc_sk_timeout+0x970/0x970
[  155.799210][    C0]  ? _raw_spin_lock_irqsave+0xb0/0x110
[  155.804753][    C0]  __release_sock+0x143/0x350
[  155.809476][    C0]  release_sock+0x60/0x1b0
[  155.813891][    C0]  tipc_release+0xd0b/0x1630
[  155.818489][    C0]  ? tipc_sock_destruct+0x180/0x180
[  155.823707][    C0]  ? kick_process+0xdc/0x150
[  155.828303][    C0]  sock_close+0xe0/0x270
[  155.832547][    C0]  ? sock_mmap+0xa0/0xa0
[  155.836784][    C0]  __fput+0x20b/0x8b0
[  155.840765][    C0]  ____fput+0x15/0x20
[  155.844743][    C0]  task_work_run+0x127/0x190
[  155.849324][    C0]  exit_to_user_mode_loop+0xd0/0xe0
[  155.854559][    C0]  exit_to_user_mode_prepare+0x5a/0xa0
[  155.860007][    C0]  syscall_exit_to_user_mode+0x1a/0x30
[  155.865461][    C0]  do_syscall_64+0x58/0xa0
[  155.869878][    C0]  ? clear_bhb_loop+0x50/0xa0
[  155.874548][    C0]  ? clear_bhb_loop+0x50/0xa0
[  155.879312][    C0]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  155.885202][    C0] RIP: 0033:0x7fbeef6ea929
[  155.889618][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.909219][    C0] RSP: 002b:00007fbeef15b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  155.917629][    C0] RAX: 00000000000203a0 RBX: 00007fbeef911fa0 RCX: 00007fbeef6ea929
[  155.925596][    C0] RDX: 0000000000000000 RSI: 00002000000003c0 RDI: 0000000000000003
[  155.933803][    C0] RBP: 00007fbeef76cb39 R08: 0000000000000000 R09: 0000000000000000
[  155.941779][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  155.949826][    C0] R13: 0000000000000000 R14: 00007fbeef911fa0 R15: 00007ffd04770568
[  155.957818][    C0]  </TASK>
[  199.265276][    C1] watchdog: BUG: soft lockup - CPU#1 stuck for 143s! [syz.2.17:476]
[  199.273406][    C1] Modules linked in:
[  199.277541][    C1] CPU: 1 PID: 476 Comm: syz.2.17 Not tainted 5.15.185-syzkaller-1080790-g32c443bd6d40 #0
[  199.287555][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  199.297639][    C1] RIP: 0010:kvm_wait+0xf2/0x140
[  199.302593][    C1] Code: 95 d6 03 f4 eb 9a fa 48 89 f8 48 c1 e8 03 42 0f b6 04 30 84 c0 75 3f 0f b6 07 40 38 f0 75 10 66 90 0f 00 2d 40 95 d6 03 fb f4 <e9> 71 ff ff ff fb e9 6b ff ff ff e8 2e 6a 6f 03 89 f9 80 e1 07 38
[  199.323362][    C1] RSP: 0018:ffffc90001067900 EFLAGS: 00000246
[  199.329481][    C1] RAX: 0000000000000003 RBX: ffff88812cfed488 RCX: ffffffff814f2da9
[  199.337650][    C1] RDX: 0000000000000001 RSI: 0000000000000003 RDI: ffff88812cfed488
[  199.345737][    C1] RBP: ffffc90001067990 R08: dffffc0000000000 R09: ffffed10259fda92
[  199.353834][    C1] R10: ffffed10259fda92 R11: 1ffff110259fda91 R12: 1ffff1103ee20001
[  199.361911][    C1] R13: ffff8881f7138ad4 R14: dffffc0000000000 R15: 1ffff9200020cf20
[  199.369990][    C1] FS:  000055555c87b500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  199.378944][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  199.385564][    C1] CR2: 0000200000006100 CR3: 000000012df3c000 CR4: 00000000003506a0
[  199.393572][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  199.401582][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  199.409755][    C1] Call Trace:
[  199.413162][    C1]  <TASK>
[  199.416118][    C1]  ? kvm_arch_para_hints+0x30/0x30
[  199.421436][    C1]  ? __pv_queued_spin_lock_slowpath+0x5b9/0x9c0
[  199.427971][    C1]  __pv_queued_spin_lock_slowpath+0x60f/0x9c0
[  199.434056][    C1]  ? __pv_queued_spin_unlock_slowpath+0x300/0x300
[  199.440509][    C1]  ? stack_trace_save+0x98/0xe0
[  199.445462][    C1]  ? __stack_depot_save+0x34/0x480
[  199.450591][    C1]  ? __schedule+0xb76/0x14c0
[  199.455323][    C1]  queued_spin_lock_slowpath+0x47/0x50
[  199.460804][    C1]  _raw_spin_lock_bh+0xd8/0xe0
[  199.465582][    C1]  ? _raw_spin_lock_irq+0xe0/0xe0
[  199.470622][    C1]  ? task_work_add+0x27/0x1e0
[  199.475318][    C1]  ? fput+0x1a/0x20
[  199.479141][    C1]  ? filp_close+0x105/0x150
[  199.483655][    C1]  ? __close_range+0x203/0x3e0
[  199.488431][    C1]  ? __x64_sys_close_range+0x7a/0x90
[  199.493734][    C1]  ? do_syscall_64+0x4c/0xa0
[  199.498331][    C1]  ? entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  199.504426][    C1]  lock_sock_nested+0x97/0x290
[  199.509203][    C1]  ? sock_init_data+0xc0/0xc0
[  199.513896][    C1]  ? locks_remove_posix+0x520/0x520
[  199.519121][    C1]  tipc_release+0xb2/0x1630
[  199.523646][    C1]  ? rwsem_write_trylock+0x130/0x300
[  199.528947][    C1]  ? tipc_sock_destruct+0x180/0x180
[  199.534154][    C1]  ? __kasan_check_write+0x14/0x20
[  199.539297][    C1]  ? _raw_spin_lock+0x8e/0xe0
[  199.543992][    C1]  ? _raw_spin_trylock_bh+0x130/0x130
[  199.549471][    C1]  sock_close+0xe0/0x270
[  199.553727][    C1]  ? sock_mmap+0xa0/0xa0
[  199.557980][    C1]  __fput+0x20b/0x8b0
[  199.561980][    C1]  ____fput+0x15/0x20
[  199.565971][    C1]  task_work_run+0x127/0x190
[  199.570662][    C1]  exit_to_user_mode_loop+0xd0/0xe0
[  199.576053][    C1]  exit_to_user_mode_prepare+0x5a/0xa0
[  199.581542][    C1]  syscall_exit_to_user_mode+0x1a/0x30
[  199.587032][    C1]  do_syscall_64+0x58/0xa0
[  199.591844][    C1]  ? clear_bhb_loop+0x50/0xa0
[  199.596564][    C1]  ? clear_bhb_loop+0x50/0xa0
[  199.601271][    C1]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  199.607195][    C1] RIP: 0033:0x7fbeef6ea929
[  199.611773][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  199.631586][    C1] RSP: 002b:00007ffd047706c8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  199.640219][    C1] RAX: 0000000000000000 RBX: 00007fbeef913ba0 RCX: 00007fbeef6ea929
[  199.648295][    C1] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  199.656278][    C1] RBP: 00007fbeef913ba0 R08: 0000000000000000 R09: 00000006047709bf
[  199.664385][    C1] R10: 00007fbeef913ac0 R11: 0000000000000246 R12: 000000000000d9f9
[  199.672372][    C1] R13: 00007fbeef912080 R14: ffffffffffffffff R15: 00007ffd047707e0
[  199.680371][    C1]  </TASK>
[  199.683406][    C1] Sending NMI from CPU 1 to CPUs 0:
[  199.688742][    C0] NMI backtrace for cpu 0
[  199.688753][    C0] CPU: 0 PID: 477 Comm: syz.2.17 Not tainted 5.15.185-syzkaller-1080790-g32c443bd6d40 #0
[  199.688771][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  199.688781][    C0] RIP: 0010:tipc_sk_rcv+0x1a7d/0x2c60
[  199.688804][    C0] Code: 00 00 42 0f b6 04 28 84 c0 48 8b 54 24 58 0f 85 0a 03 00 00 83 3a 00 0f 84 50 11 00 00 e8 8b 53 de fc 44 89 f8 48 89 44 24 70 <e9> ca e7 ff ff e8 79 53 de fc 49 bd 00 00 00 00 00 fc ff df 4c 8b
[  199.688818][    C0] RSP: 0018:ffffc900010769e0 EFLAGS: 00000293
[  199.688833][    C0] RAX: 0000000037608159 RBX: 0000000000000005 RCX: ffff888117b62780
[  199.688844][    C0] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000001
[  199.688854][    C0] RBP: ffffc90001076c70 R08: dffffc0000000000 R09: ffffed10259fda91
[  199.688867][    C0] R10: ffffed10259fda91 R11: 1ffff110259fda90 R12: ffff8881167e1000
[  199.688880][    C0] R13: dffffc0000000000 R14: ffffc90001076e20 R15: 0000000037608159
[  199.688892][    C0] FS:  00007fbeef15b6c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  199.688907][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  199.688920][    C0] CR2: 00007fbeef139f98 CR3: 000000012df3c000 CR4: 00000000003506b0
[  199.688935][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  199.688944][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  199.688955][    C0] Call Trace:
[  199.688960][    C0]  <TASK>
[  199.688965][    C0]  ? _raw_spin_unlock_irqrestore+0x5b/0x80
[  199.688983][    C0]  ? __stack_depot_save+0x442/0x480
[  199.689003][    C0]  ? kasan_set_track+0x5b/0x70
[  199.689018][    C0]  ? kasan_set_track+0x4a/0x70
[  199.689032][    C0]  ? kasan_set_free_info+0x23/0x40
[  199.689048][    C0]  ? ____kasan_slab_free+0x125/0x160
[  199.689063][    C0]  ? __kasan_slab_free+0x11/0x20
[  199.689078][    C0]  ? slab_free_freelist_hook+0xc2/0x190
[  199.689096][    C0]  ? kmem_cache_free+0x100/0x320
[  199.689113][    C0]  ? kfree_skbmem+0x10c/0x180
[  199.689129][    C0]  ? tipc_sk_rcv+0x1ce4/0x2c60
[  199.689144][    C0]  ? tipc_sk_filter_rcv+0x151b/0x2c40
[  199.689162][    C0]  ? tipc_release+0xd0b/0x1630
[  199.689179][    C0]  ? syscall_exit_to_user_mode+0x1a/0x30
[  199.689197][    C0]  ? do_syscall_64+0x58/0xa0
[  199.689211][    C0]  ? entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  199.689228][    C0]  ? __skb_queue_purge+0x170/0x170
[  199.689248][    C0]  tipc_node_xmit+0x256/0xce0
[  199.689264][    C0]  ? ____kasan_slab_free+0x130/0x160
[  199.689280][    C0]  ? tipc_node_get_linkname+0x1a0/0x1a0
[  199.689295][    C0]  ? slab_free_freelist_hook+0xc2/0x190
[  199.689333][    C0]  ? kfree_skbmem+0x10c/0x180
[  199.689348][    C0]  ? kmem_cache_free+0x100/0x320
[  199.689365][    C0]  ? skb_release_data+0x814/0xa10
[  199.689381][    C0]  tipc_node_xmit_skb+0xe9/0x130
[  199.689397][    C0]  ? kfree_skb+0xc1/0x2f0
[  199.689411][    C0]  ? __skb_queue_purge+0x170/0x170
[  199.689428][    C0]  ? trace_tipc_sk_rej_msg+0x25/0x150
[  199.689445][    C0]  tipc_sk_rcv+0x1d5d/0x2c60
[  199.689462][    C0]  ? __stack_depot_save+0x442/0x480
[  199.689483][    C0]  ? __kmalloc_track_caller+0x169/0x2c0
[  199.689502][    C0]  ? __skb_queue_purge+0x170/0x170
[  199.689522][    C0]  tipc_node_xmit+0x256/0xce0
[  199.689538][    C0]  ? tipc_node_get_linkname+0x1a0/0x1a0
[  199.689554][    C0]  ? __kernel_text_address+0xa0/0x100
[  199.689577][    C0]  ? unwind_get_return_address+0x4d/0x90
[  199.689597][    C0]  ? __kasan_check_write+0x14/0x20
[  199.689613][    C0]  ? _raw_spin_lock_irqsave+0xb0/0x110
[  199.689630][    C0]  tipc_sk_filter_rcv+0x151b/0x2c40
[  199.689654][    C0]  ? tipc_sk_publish+0x440/0x440
[  199.689671][    C0]  ? __kasan_check_write+0x14/0x20
[  199.689687][    C0]  ? _raw_spin_lock_bh+0x8e/0xe0
[  199.689704][    C0]  tipc_sk_rcv+0x7b7/0x2c60
[  199.689722][    C0]  ? kfree_skbmem+0x10c/0x180
[  199.689737][    C0]  ? skb_release_data+0x814/0xa10
[  199.689754][    C0]  ? __skb_queue_purge+0x170/0x170
[  199.689773][    C0]  ? tipc_sk_filter_rcv+0x29de/0x2c40
[  199.689790][    C0]  tipc_node_xmit+0x256/0xce0
[  199.689807][    C0]  ? tipc_node_get_linkname+0x1a0/0x1a0
[  199.689824][    C0]  ? kasan_quarantine_put+0x34/0x190
[  199.689842][    C0]  tipc_node_distr_xmit+0x292/0x390
[  199.689859][    C0]  ? tipc_node_xmit_skb+0x130/0x130
[  199.689876][    C0]  ? kfree_skbmem+0x10c/0x180
[  199.689891][    C0]  tipc_sk_backlog_rcv+0x16f/0x1f0
[  199.689908][    C0]  ? tipc_sk_timeout+0x970/0x970
[  199.689924][    C0]  ? _raw_spin_lock_irqsave+0xb0/0x110
[  199.689941][    C0]  __release_sock+0x143/0x350
[  199.689961][    C0]  release_sock+0x60/0x1b0
[  199.689978][    C0]  tipc_release+0xd0b/0x1630
[  199.689995][    C0]  ? tipc_sock_destruct+0x180/0x180
[  199.690012][    C0]  ? kick_process+0xdc/0x150
[  199.690030][    C0]  sock_close+0xe0/0x270
[  199.690046][    C0]  ? sock_mmap+0xa0/0xa0
[  199.690061][    C0]  __fput+0x20b/0x8b0
[  199.690078][    C0]  ____fput+0x15/0x20
[  199.690093][    C0]  task_work_run+0x127/0x190
[  199.690108][    C0]  exit_to_user_mode_loop+0xd0/0xe0
[  199.690124][    C0]  exit_to_user_mode_prepare+0x5a/0xa0
[  199.690140][    C0]  syscall_exit_to_user_mode+0x1a/0x30
[  199.690156][    C0]  do_syscall_64+0x58/0xa0
[  199.690170][    C0]  ? clear_bhb_loop+0x50/0xa0
[  199.690186][    C0]  ? clear_bhb_loop+0x50/0xa0
[  199.690201][    C0]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  199.690218][    C0] RIP: 0033:0x7fbeef6ea929
[  199.690232][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  199.690245][    C0] RSP: 002b:00007fbeef15b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  199.690261][    C0] RAX: 00000000000203a0 RBX: 00007fbeef911fa0 RCX: 00007fbeef6ea929
[  199.690273][    C0] RDX: 0000000000000000 RSI: 00002000000003c0 RDI: 0000000000000003
[  199.690283][    C0] RBP: 00007fbeef76cb39 R08: 0000000000000000 R09: 0000000000000000
[  199.690294][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  199.690303][    C0] R13: 0000000000000000 R14: 00007fbeef911fa0 R15: 00007ffd04770568
[  199.690319][    C0]  </TASK>