Warning: Permanently added '10.128.1.141' (ED25519) to the list of known hosts. 2025/06/14 06:28:11 ignoring optional flag "sandboxArg"="0" 2025/06/14 06:28:12 parsed 1 programs [ 50.805382][ T24] kauditd_printk_skb: 27 callbacks suppressed [ 50.805391][ T24] audit: type=1400 audit(1749882493.109:101): avc: denied { create } for pid=401 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 50.833119][ T24] audit: type=1400 audit(1749882493.109:102): avc: denied { write } for pid=401 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 50.853861][ T24] audit: type=1400 audit(1749882493.109:103): avc: denied { read } for pid=401 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 50.875648][ T24] audit: type=1400 audit(1749882493.139:104): avc: denied { unlink } for pid=401 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 50.905656][ T401] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 51.413532][ T24] audit: type=1401 audit(1749882493.719:105): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768" [ 51.435148][ T24] audit: type=1400 audit(1749882493.739:106): avc: denied { create } for pid=415 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 51.478763][ T417] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.485887][ T417] bridge0: port 1(bridge_slave_0) entered disabled state [ 51.493482][ T417] device bridge_slave_0 entered promiscuous mode [ 51.500782][ T417] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.507843][ T417] bridge0: port 2(bridge_slave_1) entered disabled state [ 51.515089][ T417] device bridge_slave_1 entered promiscuous mode [ 51.543098][ T417] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.550161][ T417] bridge0: port 2(bridge_slave_1) entered forwarding state [ 51.557400][ T417] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.564403][ T417] bridge0: port 1(bridge_slave_0) entered forwarding state [ 51.579134][ T304] bridge0: port 1(bridge_slave_0) entered disabled state [ 51.586337][ T304] bridge0: port 2(bridge_slave_1) entered disabled state [ 51.593639][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 51.601084][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 51.610716][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 51.619074][ T304] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.626582][ T304] bridge0: port 1(bridge_slave_0) entered forwarding state [ 51.635033][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 51.643234][ T304] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.650453][ T304] bridge0: port 2(bridge_slave_1) entered forwarding state [ 51.661240][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 51.671241][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 51.683088][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 51.693702][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 51.701980][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 51.709961][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 51.718981][ T417] device veth0_vlan entered promiscuous mode [ 51.728381][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 51.737446][ T417] device veth1_macvtap entered promiscuous mode [ 51.746161][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 51.757710][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready 2025/06/14 06:28:14 executed programs: 0 [ 52.291736][ T49] device bridge_slave_1 left promiscuous mode [ 52.298130][ T49] bridge0: port 2(bridge_slave_1) entered disabled state [ 52.305432][ T49] device bridge_slave_0 left promiscuous mode [ 52.312014][ T49] bridge0: port 1(bridge_slave_0) entered disabled state [ 52.319721][ T49] device veth1_macvtap left promiscuous mode [ 52.325795][ T49] device veth0_vlan left promiscuous mode [ 52.408661][ T461] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.415697][ T461] bridge0: port 1(bridge_slave_0) entered disabled state [ 52.423559][ T461] device bridge_slave_0 entered promiscuous mode [ 52.430473][ T461] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.437574][ T461] bridge0: port 2(bridge_slave_1) entered disabled state [ 52.444924][ T461] device bridge_slave_1 entered promiscuous mode [ 52.474302][ T461] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.481552][ T461] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.489267][ T461] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.496288][ T461] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.504704][ T304] bridge0: port 1(bridge_slave_0) entered disabled state [ 52.512360][ T304] bridge0: port 2(bridge_slave_1) entered disabled state [ 52.527598][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 52.535095][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 52.544294][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 52.552889][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 52.561242][ T304] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.568275][ T304] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.576655][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 52.585291][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 52.593446][ T304] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.600897][ T304] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.611564][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 52.619671][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 52.629454][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 52.638059][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 52.649506][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 52.659183][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 52.671626][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 52.680022][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 52.688987][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 52.696411][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 52.704852][ T461] device veth0_vlan entered promiscuous mode [ 52.714321][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 52.722481][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 52.732012][ T461] device veth1_macvtap entered promiscuous mode [ 52.740722][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 52.748914][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 52.757667][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 52.767169][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 52.775856][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 52.798447][ T24] audit: type=1400 audit(1749882495.109:107): avc: denied { create } for pid=465 comm="syz.2.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 52.818708][ T24] audit: type=1400 audit(1749882495.109:108): avc: denied { write } for pid=465 comm="syz.2.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 52.838959][ T24] audit: type=1400 audit(1749882495.109:109): avc: denied { setopt } for pid=465 comm="syz.2.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 154.176790][ C1] rcu: INFO: rcu_preempt self-detected stall on CPU [ 154.183626][ C1] rcu: 1-...!: (10000 ticks this GP) idle=a0a/1/0x4000000000000000 softirq=3156/3156 fqs=0 last_accelerate: 9fa1/c6b1 dyntick_enabled: 1 [ 154.197836][ C1] (t=10000 jiffies g=1889 q=216) [ 154.203027][ C1] rcu: rcu_preempt kthread starved for 10000 jiffies! g1889 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=1 [ 154.214617][ C1] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 154.224905][ C1] rcu: RCU grace-period kthread stack dump: [ 154.231009][ C1] task:rcu_preempt state:I stack: 0 pid: 13 ppid: 2 flags:0x00004000 [ 154.240785][ C1] Call Trace: [ 154.244090][ C1] __schedule+0xb47/0x1310 [ 154.248493][ C1] ? release_firmware_map_entry+0x190/0x190 [ 154.254535][ C1] ? __mod_timer+0x7ae/0xb30 [ 154.259221][ C1] schedule+0x13c/0x1d0 [ 154.263462][ C1] schedule_timeout+0x12c/0x2d0 [ 154.268298][ C1] ? console_conditional_schedule+0x10/0x10 [ 154.274355][ C1] ? _raw_spin_lock_irqsave+0xb0/0x110 [ 154.279815][ C1] ? run_local_timers+0x160/0x160 [ 154.285039][ C1] ? prepare_to_swait_event+0x320/0x340 [ 154.290582][ C1] rcu_gp_kthread+0x100a/0x26a0 [ 154.295412][ C1] ? rcu_barrier_callback+0x50/0x50 [ 154.300597][ C1] ? __kasan_check_read+0x11/0x20 [ 154.305616][ C1] ? __kthread_parkme+0xb9/0x1c0 [ 154.310719][ C1] kthread+0x346/0x3d0 [ 154.314869][ C1] ? rcu_barrier_callback+0x50/0x50 [ 154.320142][ C1] ? kthread_blkcg+0xd0/0xd0 [ 154.324710][ C1] ret_from_fork+0x1f/0x30 [ 154.329226][ C1] NMI backtrace for cpu 1 [ 154.333557][ C1] CPU: 1 PID: 727 Comm: syz.2.99 Not tainted 5.10.238-syzkaller-1007479-gd76d4cd0623a #0 [ 154.343423][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 154.353686][ C1] Call Trace: [ 154.357000][ C1] [ 154.359871][ C1] __dump_stack+0x21/0x24 [ 154.364653][ C1] dump_stack_lvl+0x169/0x1d8 [ 154.369485][ C1] ? show_regs_print_info+0x18/0x18 [ 154.374963][ C1] ? _raw_spin_lock_irqsave+0xb0/0x110 [ 154.380660][ C1] ? _raw_spin_lock+0xe0/0xe0 [ 154.385321][ C1] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 154.391363][ C1] dump_stack+0x15/0x1c [ 154.395532][ C1] nmi_trigger_cpumask_backtrace+0x27f/0x2c0 [ 154.401752][ C1] arch_trigger_cpumask_backtrace+0x10/0x20 [ 154.407894][ C1] rcu_dump_cpu_stacks+0x19c/0x2c0 [ 154.413282][ C1] rcu_sched_clock_irq+0xf79/0x1870 [ 154.418465][ C1] ? rcutree_dead_cpu+0x2f0/0x2f0 [ 154.423962][ C1] ? hrtimer_run_queues+0x166/0x430 [ 154.429411][ C1] update_process_times+0x198/0x200 [ 154.434732][ C1] tick_sched_timer+0x17c/0x240 [ 154.439569][ C1] ? tick_setup_sched_timer+0x450/0x450 [ 154.445178][ C1] __hrtimer_run_queues+0x37a/0x960 [ 154.450367][ C1] ? hrtimer_interrupt+0xdc0/0xdc0 [ 154.455484][ C1] ? ktime_get_update_offsets_now+0x293/0x2b0 [ 154.461717][ C1] hrtimer_interrupt+0x3a6/0xdc0 [ 154.466655][ C1] __sysvec_apic_timer_interrupt+0xfa/0x3f0 [ 154.473093][ C1] asm_call_irq_on_stack+0xf/0x20 [ 154.478244][ C1] [ 154.481170][ C1] sysvec_apic_timer_interrupt+0x85/0xe0 [ 154.486868][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 154.492842][ C1] RIP: 0010:__rcu_read_lock+0x2f/0x50 [ 154.498492][ C1] Code: 65 48 8b 1d 43 b6 b0 7e 48 81 c3 08 04 00 00 48 89 d8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df 0f b6 04 08 84 c0 75 05 ff 03 <5b> 5d c3 89 d9 80 e1 07 80 c1 03 38 c1 7c ef 48 89 df e8 da cc 4b [ 154.518192][ C1] RSP: 0018:ffffc9000158e728 EFLAGS: 00000202 [ 154.524340][ C1] RAX: 0000000000000000 RBX: ffff88811cb85308 RCX: dffffc0000000000 [ 154.532508][ C1] RDX: 0000000000000000 RSI: 00000000d60a1994 RDI: ffff888114fae040 [ 154.540551][ C1] RBP: ffffc9000158e730 R08: 0000000000000004 R09: 0000000000000003 [ 154.548601][ C1] R10: fffff520002b1cf8 R11: 1ffff920002b1cf8 R12: dffffc0000000000 [ 154.556843][ C1] R13: ffffc9000158ecb0 R14: 0000000000000022 R15: 00000000d60a1994 [ 154.565057][ C1] tipc_sk_lookup+0xa1/0x5f0 [ 154.569634][ C1] ? __kasan_check_write+0x14/0x20 [ 154.574747][ C1] ? _raw_spin_lock_bh+0x8e/0xe0 [ 154.579773][ C1] ? tipc_sk_rcv+0x1ef0/0x1ef0 [ 154.585149][ C1] ? preempt_count_sub+0x2f/0x170 [ 154.590251][ C1] tipc_sk_rcv+0x3eb/0x1ef0 [ 154.594728][ C1] ? _raw_spin_unlock_irqrestore+0x5b/0x80 [ 154.600521][ C1] ? __stack_depot_save+0x479/0x4c0 [ 154.605700][ C1] ? kasan_set_track+0x5b/0x70 [ 154.610468][ C1] ? kasan_set_track+0x4a/0x70 [ 154.615444][ C1] ? ____kasan_slab_free+0x125/0x160 [ 154.620878][ C1] ? __kasan_slab_free+0x11/0x20 [ 154.626142][ C1] ? kmem_cache_free+0x100/0x2d0 [ 154.631260][ C1] ? kfree_skbmem+0x10c/0x180 [ 154.636370][ C1] ? kfree_skb+0xc1/0x2f0 [ 154.640863][ C1] ? tipc_sk_backlog_rcv+0x16f/0x1f0 [ 154.646231][ C1] ? __release_sock+0x146/0x360 [ 154.651419][ C1] ? __sys_setsockopt+0x265/0x460 [ 154.656515][ C1] ? __skb_queue_purge+0x170/0x170 [ 154.661920][ C1] tipc_node_xmit+0x256/0xcd0 [ 154.666578][ C1] ? debug_smp_processor_id+0x17/0x20 [ 154.672275][ C1] ? tipc_node_get_linkname+0x1a0/0x1a0 [ 154.677908][ C1] ? ____kasan_slab_free+0x130/0x160 [ 154.683372][ C1] ? __kasan_slab_free+0x11/0x20 [ 154.688291][ C1] ? slab_free_freelist_hook+0xc5/0x190 [ 154.693907][ C1] ? kfree_skbmem+0x10c/0x180 [ 154.698760][ C1] tipc_node_distr_xmit+0x292/0x390 [ 154.703931][ C1] ? tipc_node_xmit_skb+0x130/0x130 [ 154.709481][ C1] ? trace_tipc_sk_rej_msg+0x2c/0x6d0 [ 154.714994][ C1] tipc_sk_rcv+0x19b9/0x1ef0 [ 154.719556][ C1] ? __skb_queue_purge+0x170/0x170 [ 154.724753][ C1] tipc_node_xmit+0x256/0xcd0 [ 154.729519][ C1] ? tipc_node_get_linkname+0x1a0/0x1a0 [ 154.735238][ C1] tipc_sk_push_backlog+0x4dd/0x790 [ 154.740420][ C1] tipc_sk_proto_rcv+0x98d/0x1ac0 [ 154.745759][ C1] ? trace_tipc_sk_dump+0x6c0/0x6c0 [ 154.750938][ C1] tipc_sk_filter_rcv+0x30ac/0x3850 [ 154.756238][ C1] ? stack_trace_snprint+0xf0/0xf0 [ 154.761346][ C1] ? kasan_set_track+0x5b/0x70 [ 154.766174][ C1] ? kasan_set_track+0x4a/0x70 [ 154.770928][ C1] ? kasan_set_free_info+0x23/0x40 [ 154.776009][ C1] ? kasan_set_track+0x5b/0x70 [ 154.780765][ C1] ? kasan_set_track+0x4a/0x70 [ 154.785693][ C1] ? kasan_set_free_info+0x23/0x40 [ 154.791029][ C1] ? ____kasan_slab_free+0x125/0x160 [ 154.796570][ C1] ? __kasan_slab_free+0x11/0x20 [ 154.801585][ C1] ? slab_free_freelist_hook+0xc5/0x190 [ 154.807275][ C1] ? kmem_cache_free+0x100/0x2d0 [ 154.812214][ C1] ? kfree_skb+0xc1/0x2f0 [ 154.816857][ C1] ? tipc_msg_reverse+0x698/0x900 [ 154.821887][ C1] ? tipc_sk_filter_rcv+0xca0/0x3850 [ 154.827242][ C1] ? tipc_sk_backlog_rcv+0x109/0x1f0 [ 154.832497][ C1] ? __release_sock+0x146/0x360 [ 154.837320][ C1] ? __sys_setsockopt+0x265/0x460 [ 154.842516][ C1] ? __x64_sys_setsockopt+0xbf/0xd0 [ 154.847947][ C1] ? do_syscall_64+0x31/0x40 [ 154.852616][ C1] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 154.858860][ C1] ? tipc_sk_dump+0xfc0/0xfc0 [ 154.863511][ C1] ? __kasan_check_write+0x14/0x20 [ 154.868591][ C1] ? _raw_spin_lock_bh+0x8e/0xe0 [ 154.873670][ C1] tipc_sk_rcv+0x7cc/0x1ef0 [ 154.878427][ C1] ? slab_free_freelist_hook+0xc5/0x190 [ 154.884056][ C1] ? kmem_cache_free+0x100/0x2d0 [ 154.889261][ C1] ? __skb_queue_purge+0x170/0x170 [ 154.894370][ C1] ? tipc_sk_filter_rcv+0x3034/0x3850 [ 154.899735][ C1] tipc_node_xmit+0x256/0xcd0 [ 154.904392][ C1] ? tipc_node_get_linkname+0x1a0/0x1a0 [ 154.909916][ C1] tipc_node_distr_xmit+0x292/0x390 [ 154.915099][ C1] ? tipc_node_xmit_skb+0x130/0x130 [ 154.920319][ C1] ? selinux_capable+0x29c/0x380 [ 154.925238][ C1] tipc_sk_backlog_rcv+0x16f/0x1f0 [ 154.930337][ C1] ? tipc_sk_timeout+0x970/0x970 [ 154.935355][ C1] ? __local_bh_enable_ip+0x53/0x80 [ 154.940533][ C1] ? lock_sock_nested+0x1f5/0x290 [ 154.945548][ C1] __release_sock+0x146/0x360 [ 154.950210][ C1] sock_setsockopt+0x125e/0x2350 [ 154.955119][ C1] ? __sock_set_mark+0x160/0x160 [ 154.960475][ C1] ? selinux_socket_setsockopt+0x21c/0x300 [ 154.966615][ C1] ? selinux_socket_getsockopt+0x2e0/0x2e0 [ 154.972504][ C1] ? __fget_files+0x2c4/0x320 [ 154.977176][ C1] ? security_socket_setsockopt+0x82/0xa0 [ 154.982979][ C1] __sys_setsockopt+0x265/0x460 [ 154.987802][ C1] ? __ia32_sys_recv+0xb0/0xb0 [ 154.992536][ C1] ? debug_smp_processor_id+0x17/0x20 [ 154.998051][ C1] __x64_sys_setsockopt+0xbf/0xd0 [ 155.003045][ C1] do_syscall_64+0x31/0x40 [ 155.007436][ C1] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 155.020926][ C1] RIP: 0033:0x7f4bf0848169 [ 155.026041][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 155.045869][ C1] RSP: 002b:00007f4bf0298038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 155.054557][ C1] RAX: ffffffffffffffda RBX: 00007f4bf0a70080 RCX: 00007f4bf0848169 [ 155.062593][ C1] RDX: 0000000000000021 RSI: 0000000000000001 RDI: 0000000000000003 [ 155.070541][ C1] RBP: 00007f4bf08caa68 R08: 0000000000000004 R09: 0000000000000000 [ 155.078873][ C1] R10: 0000200000000540 R11: 0000000000000246 R12: 0000000000000000 [ 155.087266][ C1] R13: 0000000000000001 R14: 00007f4bf0a70080 R15: 00007ffd25a642e8 [ 199.037326][ C0] watchdog: BUG: soft lockup - CPU#0 stuck for 123s! [syz.2.99:725] [ 199.045648][ C0] Modules linked in: [ 199.049562][ C0] CPU: 0 PID: 725 Comm: syz.2.99 Not tainted 5.10.238-syzkaller-1007479-gd76d4cd0623a #0 [ 199.059982][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 199.070045][ C0] RIP: 0010:__pv_queued_spin_lock_slowpath+0x589/0xb70 [ 199.077030][ C0] Code: 00 48 8b 44 24 10 42 0f b6 04 38 84 c0 0f 85 c4 01 00 00 48 8b 44 24 08 c6 00 01 41 be 00 80 ff ff eb 07 f3 90 41 ff c6 74 4b <43> 0f b6 44 3d 00 84 c0 75 2e 80 3b 00 75 ea 48 89 df be 02 00 00 [ 199.097746][ C0] RSP: 0018:ffffc90001527a80 EFLAGS: 00000282 [ 199.104006][ C0] RAX: 0000000000000000 RBX: ffff88811d93e888 RCX: ffffffff814b175a [ 199.112056][ C0] RDX: 0000000000000001 RSI: 0000000000000003 RDI: ffff88811d93e888 [ 199.120254][ C0] RBP: ffffc90001527b70 R08: dffffc0000000000 R09: ffffed1023b27d12 [ 199.128326][ C0] R10: ffffed1023b27d12 R11: 1ffff11023b27d11 R12: ffff8881f73d2980 [ 199.136641][ C0] R13: 1ffff11023b27d11 R14: 00000000ffffeaf8 R15: dffffc0000000000 [ 199.145683][ C0] FS: 000055557b358500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 199.154778][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 199.161630][ C0] CR2: 00007f4bf0298d58 CR3: 000000011d491000 CR4: 00000000003506b0 [ 199.170170][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 199.178327][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 199.186635][ C0] Call Trace: [ 199.189921][ C0] ? __pv_queued_spin_unlock_slowpath+0x280/0x280 [ 199.196427][ C0] ? task_work_add+0x27/0x1e0 [ 199.201284][ C0] ? fput+0x1a/0x20 [ 199.205349][ C0] ? filp_close+0x105/0x150 [ 199.210187][ C0] ? __close_range+0x1ca/0x430 [ 199.215027][ C0] ? do_syscall_64+0x31/0x40 [ 199.219600][ C0] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 199.226021][ C0] queued_spin_lock_slowpath+0x47/0x50 [ 199.231490][ C0] _raw_spin_lock_bh+0xd8/0xe0 [ 199.236321][ C0] ? _raw_spin_lock_irq+0xe0/0xe0 [ 199.241508][ C0] lock_sock_nested+0x92/0x290 [ 199.246439][ C0] ? locks_remove_posix+0x530/0x530 [ 199.251638][ C0] ? sock_init_data+0xc0/0xc0 [ 199.256309][ C0] ? fsnotify+0x1967/0x1a80 [ 199.260888][ C0] tipc_release+0x56/0x1490 [ 199.265376][ C0] ? down_read_killable+0xe0/0xe0 [ 199.270385][ C0] sock_close+0xe0/0x270 [ 199.274613][ C0] ? sock_mmap+0xa0/0xa0 [ 199.278842][ C0] __fput+0x2fb/0x770 [ 199.282978][ C0] ____fput+0x15/0x20 [ 199.286949][ C0] task_work_run+0x127/0x190 [ 199.291605][ C0] exit_to_user_mode_loop+0xcb/0xe0 [ 199.296795][ C0] syscall_exit_to_user_mode+0x68/0x90 [ 199.302329][ C0] do_syscall_64+0x3d/0x40 [ 199.306836][ C0] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 199.312800][ C0] RIP: 0033:0x7f4bf0848169 [ 199.317288][ C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 199.337512][ C0] RSP: 002b:00007ffd25a64448 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 199.346344][ C0] RAX: 0000000000000000 RBX: 00007f4bf0a71ba0 RCX: 00007f4bf0848169 [ 199.354718][ C0] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 199.363083][ C0] RBP: 00007f4bf0a71ba0 R08: 0000000000000000 R09: 0000000325a6473f [ 199.371241][ C0] R10: 00007f4bf0a71ac0 R11: 0000000000000246 R12: 000000000000d6ca [ 199.379485][ C0] R13: 00007ffd25a64540 R14: ffffffffffffffff R15: 00007ffd25a64560 [ 199.387567][ C0] Sending NMI from CPU 0 to CPUs 1: [ 199.394067][ C1] NMI backtrace for cpu 1 [ 199.394077][ C1] CPU: 1 PID: 727 Comm: syz.2.99 Not tainted 5.10.238-syzkaller-1007479-gd76d4cd0623a #0 [ 199.394082][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 199.394085][ C1] RIP: 0010:preempt_count_sub+0x69/0x170 [ 199.394094][ C1] Code: 7f 39 cf 7f 27 81 ff ff 00 00 00 0f 93 c1 84 c0 0f 95 c0 08 c8 74 55 65 8b 05 9f 67 be 7e f7 df 65 01 3d 96 67 be 7e 5b 41 5e <5d> c3 e8 d0 66 f3 00 85 c0 74 f2 48 c7 c0 08 44 a3 86 48 c1 e8 03 [ 199.394097][ C1] RSP: 0018:ffffc9000158e780 EFLAGS: 00000203 [ 199.394105][ C1] RAX: 0000000000000402 RBX: ffff88811d93e888 RCX: 0000000000000401 [ 199.394109][ C1] RDX: 0000000000000000 RSI: 0000000000000201 RDI: 00000000fffffe00 [ 199.394113][ C1] RBP: ffffc9000158e780 R08: dffffc0000000000 R09: ffffed1023b27d12 [ 199.394117][ C1] R10: ffffed1023b27d12 R11: 1ffff11023b27d11 R12: dffffc0000000000 [ 199.394121][ C1] R13: 1ffff920002b1cf4 R14: ffffffff8459fe8a R15: 00000000d60a1994 [ 199.394125][ C1] FS: 00007f4bf02986c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 199.394129][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 199.394133][ C1] CR2: 00007f4bf0297f98 CR3: 000000011d491000 CR4: 00000000003506a0 [ 199.394137][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 199.394141][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 199.394143][ C1] Call Trace: [ 199.394146][ C1] __local_bh_enable_ip+0x22/0x80 [ 199.394149][ C1] _raw_spin_trylock_bh+0xd5/0x130 [ 199.394152][ C1] ? _raw_spin_trylock+0x140/0x140 [ 199.394154][ C1] ? tipc_sk_rcv+0x1a1d/0x1ef0 [ 199.394157][ C1] tipc_sk_rcv+0x41a/0x1ef0 [ 199.394160][ C1] ? _raw_spin_unlock_irqrestore+0x5b/0x80 [ 199.394163][ C1] ? __stack_depot_save+0x479/0x4c0 [ 199.394166][ C1] ? kasan_set_track+0x5b/0x70 [ 199.394169][ C1] ? kasan_set_track+0x4a/0x70 [ 199.394171][ C1] ? ____kasan_slab_free+0x125/0x160 [ 199.394174][ C1] ? __kasan_slab_free+0x11/0x20 [ 199.394177][ C1] ? kmem_cache_free+0x100/0x2d0 [ 199.394180][ C1] ? kfree_skbmem+0x10c/0x180 [ 199.394182][ C1] ? kfree_skb+0xc1/0x2f0 [ 199.394185][ C1] ? tipc_sk_backlog_rcv+0x16f/0x1f0 [ 199.394188][ C1] ? __release_sock+0x146/0x360 [ 199.394191][ C1] ? __sys_setsockopt+0x265/0x460 [ 199.394194][ C1] ? __skb_queue_purge+0x170/0x170 [ 199.394196][ C1] tipc_node_xmit+0x256/0xcd0 [ 199.394199][ C1] ? debug_smp_processor_id+0x17/0x20 [ 199.394202][ C1] ? tipc_node_get_linkname+0x1a0/0x1a0 [ 199.394205][ C1] ? ____kasan_slab_free+0x130/0x160 [ 199.394208][ C1] ? __kasan_slab_free+0x11/0x20 [ 199.394211][ C1] ? slab_free_freelist_hook+0xc5/0x190 [ 199.394214][ C1] ? kfree_skbmem+0x10c/0x180 [ 199.394217][ C1] tipc_node_distr_xmit+0x292/0x390 [ 199.394220][ C1] ? tipc_node_xmit_skb+0x130/0x130 [ 199.394223][ C1] ? trace_tipc_sk_rej_msg+0x2c/0x6d0 [ 199.394225][ C1] tipc_sk_rcv+0x19b9/0x1ef0 [ 199.394228][ C1] ? __skb_queue_purge+0x170/0x170 [ 199.394231][ C1] tipc_node_xmit+0x256/0xcd0 [ 199.394234][ C1] ? tipc_node_get_linkname+0x1a0/0x1a0 [ 199.394237][ C1] tipc_sk_push_backlog+0x4dd/0x790 [ 199.394240][ C1] tipc_sk_proto_rcv+0x98d/0x1ac0 [ 199.394242][ C1] ? trace_tipc_sk_dump+0x6c0/0x6c0 [ 199.394245][ C1] tipc_sk_filter_rcv+0x30ac/0x3850 [ 199.394248][ C1] ? stack_trace_snprint+0xf0/0xf0 [ 199.394251][ C1] ? kasan_set_track+0x5b/0x70 [ 199.394254][ C1] ? kasan_set_track+0x4a/0x70 [ 199.394257][ C1] ? kasan_set_free_info+0x23/0x40 [ 199.394260][ C1] ? kasan_set_track+0x5b/0x70 [ 199.394263][ C1] ? kasan_set_track+0x4a/0x70 [ 199.394265][ C1] ? kasan_set_free_info+0x23/0x40 [ 199.394268][ C1] ? ____kasan_slab_free+0x125/0x160 [ 199.394271][ C1] ? __kasan_slab_free+0x11/0x20 [ 199.394274][ C1] ? slab_free_freelist_hook+0xc5/0x190 [ 199.394277][ C1] ? kmem_cache_free+0x100/0x2d0 [ 199.394280][ C1] ? kfree_skb+0xc1/0x2f0 [ 199.394282][ C1] ? tipc_msg_reverse+0x698/0x900 [ 199.394285][ C1] ? tipc_sk_filter_rcv+0xca0/0x3850 [ 199.394287][ C1] ? tipc_sk_backlog_rcv+0x109/0x1f0 [ 199.394289][ C1] ? __release_sock+0x146/0x360 [ 199.394291][ C1] ? __sys_setsockopt+0x265/0x460 [ 199.394293][ C1] ? __x64_sys_setsockopt+0xbf/0xd0 [ 199.394295][ C1] ? do_syscall_64+0x31/0x40 [ 199.394297][ C1] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 199.394299][ C1] ? tipc_sk_dump+0xfc0/0xfc0 [ 199.394301][ C1] ? __kasan_check_write+0x14/0x20 [ 199.394303][ C1] ? _raw_spin_lock_bh+0x8e/0xe0 [ 199.394305][ C1] tipc_sk_rcv+0x7cc/0x1ef0 [ 199.394307][ C1] ? slab_free_freelist_hook+0xc5/0x190 [ 199.394309][ C1] ? kmem_cache_free+0x100/0x2d0 [ 199.394312][ C1] ? __skb_queue_purge+0x170/0x170 [ 199.394314][ C1] ? tipc_sk_filter_rcv+0x3034/0x3850 [ 199.394316][ C1] tipc_node_xmit+0x256/0xcd0 [ 199.394318][ C1] ? tipc_node_get_linkname+0x1a0/0x1a0 [ 199.394320][ C1] tipc_node_distr_xmit+0x292/0x390 [ 199.394322][ C1] ? tipc_node_xmit_skb+0x130/0x130 [ 199.394324][ C1] ? selinux_capable+0x29c/0x380 [ 199.394326][ C1] tipc_sk_backlog_rcv+0x16f/0x1f0 [ 199.394328][ C1] ? tipc_sk_timeout+0x970/0x970 [ 199.394330][ C1] ? __local_bh_enable_ip+0x53/0x80 [ 199.394332][ C1] ? lock_sock_nested+0x1f5/0x290 [ 199.394334][ C1] __release_sock+0x146/0x360 [ 199.394336][ C1] sock_setsockopt+0x125e/0x2350 [ 199.394338][ C1] ? __sock_set_mark+0x160/0x160 [ 199.394341][ C1] ? selinux_socket_setsockopt+0x21c/0x300 [ 199.394343][ C1] ? selinux_socket_getsockopt+0x2e0/0x2e0 [ 199.394345][ C1] ? __fget_files+0x2c4/0x320 [ 199.394347][ C1] ? security_socket_setsockopt+0x82/0xa0 [ 199.394349][ C1] __sys_setsockopt+0x265/0x460 [ 199.394351][ C1] ? __ia32_sys_recv+0xb0/0xb0 [ 199.394353][ C1] ? debug_smp_processor_id+0x17/0x20 [ 199.394355][ C1] __x64_sys_setsockopt+0xbf/0xd0 [ 199.394357][ C1] do_syscall_64+0x31/0x40 [ 199.394360][ C1] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 199.394362][ C1] RIP: 0033:0x7f4bf0848169 [ 199.394368][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 199.394371][ C1] RSP: 002b:00007f4bf0298038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 199.394376][ C1] RAX: ffffffffffffffda RBX: 00007f4bf0a70080 RCX: 00007f4bf0848169 [ 199.394379][ C1] RDX: 0000000000000021 RSI: 0000000000000001 RDI: 0000000000000003 [ 199.394382][ C1] RBP: 00007f4bf08caa68 R08: 0000000000000004 R09: 0000000000000000 [ 199.394385][ C1] R10: 0000200000000540 R11: 0000000000000246 R12: 0000000000000000 [ 199.394388][ C1] R13: 0000000000000001 R14: 00007f4bf0a70080 R15: 00007ffd25a642e8