last executing test programs: 16.907475717s ago: executing program 4 (id=5): r0 = perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x800000000009, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, r0, 0x0) perf_event_open(&(0x7f0000001480)={0x2, 0x80, 0x84, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x20000000}, 0x2980, 0x2, 0x0, 0x0, 0x0, 0xd}, 0x0, 0xffffffffffffffff, r0, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x9) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x9) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610408000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48) 16.459063593s ago: executing program 2 (id=3): perf_event_open(&(0x7f0000001340)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) socketpair(0x1, 0x1, 0x0, &(0x7f0000000140)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)) syz_open_procfs$namespace(0x0, &(0x7f0000001000)='ns/pid_for_children\x00') syz_open_procfs$namespace(0x0, &(0x7f0000000240)='ns/pid\x00') bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x50) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001480)) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x19, 0x0, 0x0, &(0x7f0000000280)='GPL\x00', 0x8, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x25}, 0x94) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'veth1_virt_wifi\x00'}) socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8946, &(0x7f0000000080)) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0xffffffdd, 0xa}, [@ldst={0x3, 0x2, 0x3, 0x1c10a1, 0x0, 0x3d}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x19, &(0x7f0000000000), 0xb5, 0x10, &(0x7f0000000000), 0x7, 0x0, 0xffffffffffffffff, 0x68000000}, 0x48) 16.287504713s ago: executing program 3 (id=4): bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_CREATE(0x600000000000000, 0x0, 0x48) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x200002, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000500000000040000090000000100"], 0x48) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x1f905fa1}, 0x94) close(0xffffffffffffffff) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0e0004000000040000fc0a0000005c000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) write$cgroup_subtree(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[@ANYBLOB="8fedcb5d338904f6c6b83900de12e42810375b10bbf0a25a38074d6ec8db5fc13c487d8eb632a4ddd25e1c938b31062f1555e2560069aa266a4741d2387083adf52a1144cb751b4bd66a3e3c86cfd3b527cb211abdddc535424d402ce106000000000000004d4559e6b5957e806d204f0163deda8f0675dfa89a197bdc792241c7189816bdee66ddeff7b88ec346943719c07c36551c25d9d1b7458c642adc985f610afed44369d2ccdba073eb80e7897f85dca230c7b1c96547f945bf28f5d1e401b7283310cfc1795baa71bf633352b1e64c5acac714f56962a3cc7b6366140a98fd4171b8cee08861e632ce1aeadc327316bd90c006fc8d20e49451f7a4ee"], 0xfdef) r0 = syz_clone(0x20800000, 0x0, 0x0, 0x0, 0x0, 0x0) mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r2, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f00000042c0)="86", 0xff0f}], 0x1}, 0x0) recvmsg(r1, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000880)}, 0x0) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) r5 = openat$cgroup_procs(r3, &(0x7f00000003c0)='cgroup.procs\x00', 0x2, 0x0) write$cgroup_pid(r5, &(0x7f00000005c0)=r0, 0x12) r6 = openat$cgroup_ro(r3, &(0x7f00000000c0)='cgroup.kill\x00', 0x275a, 0x0) write$cgroup_int(r6, &(0x7f0000000040)=0x1, 0x12) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB="000000000000000000f6ffffff00000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000004c0), &(0x7f0000000340)="c884f705a734d46fb8ca7c2dcc047a3036bb08b12c250151348d53fde4003540f75e37182d5c3b58eec1e6e902220bb9ab40d1dbc1d3125929e55949ef3ef200a276154b2e", 0x20005, r7}, 0x38) r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000080000000800000000"], 0x48) r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000860629c98500000015000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000880)={r9, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0857f9f582f0300000000000000", 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 15.869181947s ago: executing program 3 (id=6): bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000002c0000002c00000002000000000000000100000d0000000000000000000000000000000000000003000000000000000002000022"], 0x0, 0x46}, 0x28) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000002800000028000000020000000100000000000001e5ff0000400700000000000001000084060000000000000001"], 0x0, 0x42}, 0x20) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f0000000080)='cgroup.kill\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB='-'], 0x44) perf_event_open(&(0x7f0000000140)={0xab806e41413cb753, 0x80, 0xff, 0x0, 0x64, 0x7, 0x0, 0x10000, 0x58850, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x9, 0x4, @perf_bp={&(0x7f0000000040), 0x2}, 0x500, 0x8, 0x5, 0x1, 0x4, 0x2e, 0x9, 0x0, 0x3bf, 0x0, 0xc76c}, 0x0, 0x10, r1, 0x1) openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)) openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)) bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="0b00000005000000010001000800000001000000", @ANYRES32, @ANYBLOB="0000000000000000000000000000000000000000fba946d0daa5b1dddc4c42fb3cdb93ae597e2dab75e08fc6ce403df2e94bd72c15e6d6039f3793e88571ad9aa9a0a6eb0a411dd729af9f44c90edb53f0733fc561d678dbbe6e3a321fbfd8d1a0c05e6a2d73e5105fdb3b3ac104a16ece5dd73c4d2b8a4e63120e57078ded63ba1c6b9fbf7b0acf9825997746b5c07481796377f4295f2a8a64b8222e8dfb724656b40522e72c154ca2afc3a44c660479973f8579a925a45160857b00dc808b52663ab74a3de7deba14c43061badc65ba6247dcb7b1be913feeb1f4d0ea2a2fa1de6f71690000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50) socketpair(0x1, 0x2, 0x1, &(0x7f0000000100)) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x2800000002000000, 0x0, 0x0, &(0x7f0000000140), 0x0, 0x7300, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x201, 0x20, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x440, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r3, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0) recvmsg$unix(r2, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000a00)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x10}}, @rights={{0x10}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x90}, 0x100) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000001c0)) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'veth1_virt_wifi\x00'}) socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x8946, &(0x7f0000000080)) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x24, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x800, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000540)}, 0x20, 0x9, 0x4, 0x9, 0x1ff, 0x0, 0x0, 0x0, 0x5fc}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6tnl0\x00', 0x200}) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x89f1, &(0x7f0000000080)) bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="d50500000000000061105a0000000000070000000000000095000000000000007c7b426b68add2a59799b7a31c77f4c75dbaa3d9f9f5f521893b1ae3aafb4ad56491f0a01f398a9929f70a6aea816e14c6c4501c4abeca09c0a694b77e036d22b3e1f3fbd94109c8489196e7bbb0ff6f30"], &(0x7f00000002c0)='GPL\x00', 0x5, 0xfd90, &(0x7f0000000300)=""/188, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f3, 0x10, &(0x7f0000000080), 0xfffffffffffffc79}, 0x23) 1.03837751s ago: executing program 32 (id=3): perf_event_open(&(0x7f0000001340)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) socketpair(0x1, 0x1, 0x0, &(0x7f0000000140)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)) syz_open_procfs$namespace(0x0, &(0x7f0000001000)='ns/pid_for_children\x00') syz_open_procfs$namespace(0x0, &(0x7f0000000240)='ns/pid\x00') bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x50) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001480)) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x19, 0x0, 0x0, &(0x7f0000000280)='GPL\x00', 0x8, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x25}, 0x94) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'veth1_virt_wifi\x00'}) socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8946, &(0x7f0000000080)) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0xffffffdd, 0xa}, [@ldst={0x3, 0x2, 0x3, 0x1c10a1, 0x0, 0x3d}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x19, &(0x7f0000000000), 0xb5, 0x10, &(0x7f0000000000), 0x7, 0x0, 0xffffffffffffffff, 0x68000000}, 0x48) 1.027545901s ago: executing program 33 (id=5): r0 = perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x800000000009, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, r0, 0x0) perf_event_open(&(0x7f0000001480)={0x2, 0x80, 0x84, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x20000000}, 0x2980, 0x2, 0x0, 0x0, 0x0, 0xd}, 0x0, 0xffffffffffffffff, r0, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x9) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x9) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610408000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48) 0s ago: executing program 34 (id=6): bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000002c0000002c00000002000000000000000100000d0000000000000000000000000000000000000003000000000000000002000022"], 0x0, 0x46}, 0x28) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000002800000028000000020000000100000000000001e5ff0000400700000000000001000084060000000000000001"], 0x0, 0x42}, 0x20) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f0000000080)='cgroup.kill\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB='-'], 0x44) perf_event_open(&(0x7f0000000140)={0xab806e41413cb753, 0x80, 0xff, 0x0, 0x64, 0x7, 0x0, 0x10000, 0x58850, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x9, 0x4, @perf_bp={&(0x7f0000000040), 0x2}, 0x500, 0x8, 0x5, 0x1, 0x4, 0x2e, 0x9, 0x0, 0x3bf, 0x0, 0xc76c}, 0x0, 0x10, r1, 0x1) openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)) openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)) bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="0b00000005000000010001000800000001000000", @ANYRES32, @ANYBLOB="0000000000000000000000000000000000000000fba946d0daa5b1dddc4c42fb3cdb93ae597e2dab75e08fc6ce403df2e94bd72c15e6d6039f3793e88571ad9aa9a0a6eb0a411dd729af9f44c90edb53f0733fc561d678dbbe6e3a321fbfd8d1a0c05e6a2d73e5105fdb3b3ac104a16ece5dd73c4d2b8a4e63120e57078ded63ba1c6b9fbf7b0acf9825997746b5c07481796377f4295f2a8a64b8222e8dfb724656b40522e72c154ca2afc3a44c660479973f8579a925a45160857b00dc808b52663ab74a3de7deba14c43061badc65ba6247dcb7b1be913feeb1f4d0ea2a2fa1de6f71690000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50) socketpair(0x1, 0x2, 0x1, &(0x7f0000000100)) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x2800000002000000, 0x0, 0x0, &(0x7f0000000140), 0x0, 0x7300, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x201, 0x20, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x440, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r3, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0) recvmsg$unix(r2, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000a00)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x10}}, @rights={{0x10}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x90}, 0x100) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000001c0)) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'veth1_virt_wifi\x00'}) socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x8946, &(0x7f0000000080)) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x24, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x800, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000540)}, 0x20, 0x9, 0x4, 0x9, 0x1ff, 0x0, 0x0, 0x0, 0x5fc}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6tnl0\x00', 0x200}) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x89f1, &(0x7f0000000080)) bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="d50500000000000061105a0000000000070000000000000095000000000000007c7b426b68add2a59799b7a31c77f4c75dbaa3d9f9f5f521893b1ae3aafb4ad56491f0a01f398a9929f70a6aea816e14c6c4501c4abeca09c0a694b77e036d22b3e1f3fbd94109c8489196e7bbb0ff6f30"], &(0x7f00000002c0)='GPL\x00', 0x5, 0xfd90, &(0x7f0000000300)=""/188, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f3, 0x10, &(0x7f0000000080), 0xfffffffffffffc79}, 0x23) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.189' (ED25519) to the list of known hosts. [ 20.597147][ T30] audit: type=1400 audit(1770904046.476:64): avc: denied { mounton } for pid=273 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 20.598222][ T273] cgroup: Unknown subsys name 'net' [ 20.619798][ T30] audit: type=1400 audit(1770904046.476:65): avc: denied { mount } for pid=273 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 20.647251][ T30] audit: type=1400 audit(1770904046.506:66): avc: denied { unmount } for pid=273 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 20.647433][ T273] cgroup: Unknown subsys name 'devices' [ 20.853444][ T273] cgroup: Unknown subsys name 'hugetlb' [ 20.859044][ T273] cgroup: Unknown subsys name 'rlimit' [ 21.084540][ T30] audit: type=1400 audit(1770904046.966:67): avc: denied { setattr } for pid=273 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=254 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 21.107738][ T30] audit: type=1400 audit(1770904046.966:68): avc: denied { mounton } for pid=273 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 Setting up swapspace version 1, size = 127995904 bytes [ 21.111392][ T275] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 21.132651][ T30] audit: type=1400 audit(1770904046.966:69): avc: denied { mount } for pid=273 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 21.164166][ T30] audit: type=1400 audit(1770904047.016:70): avc: denied { relabelto } for pid=275 comm="mkswap" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 21.176047][ T273] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 21.189716][ T30] audit: type=1400 audit(1770904047.016:71): avc: denied { write } for pid=275 comm="mkswap" path="/root/swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 21.223919][ T30] audit: type=1400 audit(1770904047.056:72): avc: denied { read } for pid=273 comm="syz-executor" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 21.249453][ T30] audit: type=1400 audit(1770904047.056:73): avc: denied { open } for pid=273 comm="syz-executor" path="/root/swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 21.724707][ T282] bridge0: port 1(bridge_slave_0) entered blocking state [ 21.731797][ T282] bridge0: port 1(bridge_slave_0) entered disabled state [ 21.739066][ T282] device bridge_slave_0 entered promiscuous mode [ 21.748453][ T282] bridge0: port 2(bridge_slave_1) entered blocking state [ 21.755523][ T282] bridge0: port 2(bridge_slave_1) entered disabled state [ 21.762923][ T282] device bridge_slave_1 entered promiscuous mode [ 21.783801][ T283] bridge0: port 1(bridge_slave_0) entered blocking state [ 21.790841][ T283] bridge0: port 1(bridge_slave_0) entered disabled state [ 21.798234][ T283] device bridge_slave_0 entered promiscuous mode [ 21.807656][ T283] bridge0: port 2(bridge_slave_1) entered blocking state [ 21.814831][ T283] bridge0: port 2(bridge_slave_1) entered disabled state [ 21.822281][ T283] device bridge_slave_1 entered promiscuous mode [ 21.847952][ T285] bridge0: port 1(bridge_slave_0) entered blocking state [ 21.855264][ T285] bridge0: port 1(bridge_slave_0) entered disabled state [ 21.862728][ T285] device bridge_slave_0 entered promiscuous mode [ 21.875173][ T284] bridge0: port 1(bridge_slave_0) entered blocking state [ 21.882242][ T284] bridge0: port 1(bridge_slave_0) entered disabled state [ 21.889629][ T284] device bridge_slave_0 entered promiscuous mode [ 21.896366][ T281] bridge0: port 1(bridge_slave_0) entered blocking state [ 21.903430][ T281] bridge0: port 1(bridge_slave_0) entered disabled state [ 21.910765][ T281] device bridge_slave_0 entered promiscuous mode [ 21.917642][ T281] bridge0: port 2(bridge_slave_1) entered blocking state [ 21.924708][ T281] bridge0: port 2(bridge_slave_1) entered disabled state [ 21.932121][ T281] device bridge_slave_1 entered promiscuous mode [ 21.938664][ T285] bridge0: port 2(bridge_slave_1) entered blocking state [ 21.945883][ T285] bridge0: port 2(bridge_slave_1) entered disabled state [ 21.953271][ T285] device bridge_slave_1 entered promiscuous mode [ 21.965136][ T284] bridge0: port 2(bridge_slave_1) entered blocking state [ 21.972383][ T284] bridge0: port 2(bridge_slave_1) entered disabled state [ 21.979831][ T284] device bridge_slave_1 entered promiscuous mode [ 22.158398][ T285] bridge0: port 2(bridge_slave_1) entered blocking state [ 22.165487][ T285] bridge0: port 2(bridge_slave_1) entered forwarding state [ 22.172791][ T285] bridge0: port 1(bridge_slave_0) entered blocking state [ 22.179936][ T285] bridge0: port 1(bridge_slave_0) entered forwarding state [ 22.189826][ T284] bridge0: port 2(bridge_slave_1) entered blocking state [ 22.196875][ T284] bridge0: port 2(bridge_slave_1) entered forwarding state [ 22.204172][ T284] bridge0: port 1(bridge_slave_0) entered blocking state [ 22.211224][ T284] bridge0: port 1(bridge_slave_0) entered forwarding state [ 22.228471][ T282] bridge0: port 2(bridge_slave_1) entered blocking state [ 22.235550][ T282] bridge0: port 2(bridge_slave_1) entered forwarding state [ 22.242840][ T282] bridge0: port 1(bridge_slave_0) entered blocking state [ 22.249865][ T282] bridge0: port 1(bridge_slave_0) entered forwarding state [ 22.265570][ T281] bridge0: port 2(bridge_slave_1) entered blocking state [ 22.272633][ T281] bridge0: port 2(bridge_slave_1) entered forwarding state [ 22.279890][ T281] bridge0: port 1(bridge_slave_0) entered blocking state [ 22.286920][ T281] bridge0: port 1(bridge_slave_0) entered forwarding state [ 22.304515][ T283] bridge0: port 2(bridge_slave_1) entered blocking state [ 22.311591][ T283] bridge0: port 2(bridge_slave_1) entered forwarding state [ 22.318851][ T283] bridge0: port 1(bridge_slave_0) entered blocking state [ 22.325883][ T283] bridge0: port 1(bridge_slave_0) entered forwarding state [ 22.366613][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 22.374064][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 22.381199][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 22.388637][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 22.396391][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 22.403631][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 22.411841][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 22.420038][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 22.427448][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 22.434738][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 22.442090][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 22.467944][ T282] device veth0_vlan entered promiscuous mode [ 22.474634][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 22.483121][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 22.491369][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 22.499469][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 22.506837][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 22.514347][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 22.521907][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 22.529251][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 22.537466][ T8] bridge0: port 1(bridge_slave_0) entered blocking state [ 22.544504][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state [ 22.551947][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 22.560045][ T8] bridge0: port 2(bridge_slave_1) entered blocking state [ 22.567073][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state [ 22.574431][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 22.582466][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 22.590356][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 22.598616][ T8] bridge0: port 1(bridge_slave_0) entered blocking state [ 22.605647][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state [ 22.633281][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 22.642342][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 22.650536][ T8] bridge0: port 2(bridge_slave_1) entered blocking state [ 22.657577][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state [ 22.665367][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 22.673341][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 22.681371][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 22.689700][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 22.714648][ T284] device veth0_vlan entered promiscuous mode [ 22.721659][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 22.729110][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 22.736754][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 22.745327][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 22.753608][ T8] bridge0: port 1(bridge_slave_0) entered blocking state [ 22.760638][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state [ 22.768154][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 22.776561][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 22.784758][ T8] bridge0: port 2(bridge_slave_1) entered blocking state [ 22.791785][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state [ 22.799069][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 22.806542][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 22.813910][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 22.822193][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 22.830257][ T8] bridge0: port 1(bridge_slave_0) entered blocking state [ 22.837288][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state [ 22.844718][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 22.853105][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 22.861199][ T8] bridge0: port 2(bridge_slave_1) entered blocking state [ 22.868234][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state [ 22.875549][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 22.883597][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 22.891513][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 22.899512][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 22.907464][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 22.915332][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 22.927605][ T282] device veth1_macvtap entered promiscuous mode [ 22.938296][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 22.945817][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 22.953410][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 22.961715][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 22.969794][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 22.977594][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 22.985761][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 22.993874][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 23.002001][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 23.017594][ T284] device veth1_macvtap entered promiscuous mode [ 23.030285][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 23.038697][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 23.047102][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 23.055632][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 23.063974][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 23.072109][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 23.079976][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 23.088042][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 23.096333][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 23.104691][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 23.112991][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 23.121202][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 23.128805][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 23.137039][ T285] device veth0_vlan entered promiscuous mode [ 23.152760][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 23.161103][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 23.171990][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 23.180209][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 23.196163][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 23.205670][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 23.205719][ T282] request_module fs-gadgetfs succeeded, but still no fs? [ 23.218200][ T281] device veth0_vlan entered promiscuous mode [ 23.228601][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 23.237075][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 23.245604][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 23.254139][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 23.262606][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 23.270016][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 23.279517][ T283] device veth0_vlan entered promiscuous mode [ 23.286401][ T285] device veth1_macvtap entered promiscuous mode [ 23.297697][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 23.311903][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 23.320065][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 23.328453][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 23.337149][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 23.346290][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 23.351450][ C1] hrtimer: interrupt took 14314 ns [ 23.354767][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 23.377356][ T283] device veth1_macvtap entered promiscuous mode [ 23.389854][ T281] device veth1_macvtap entered promiscuous mode [ 23.397155][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 23.404754][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 23.413268][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 23.421819][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 23.429958][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 23.437801][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 23.446364][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 23.462831][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 23.481115][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 23.489661][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 23.605262][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 23.660680][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 23.679350][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 23.687774][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 123.741400][ C0] rcu: INFO: rcu_preempt self-detected stall on CPU [ 123.748012][ C0] rcu: 0-....: (9961 ticks this GP) idle=3ff/1/0x4000000000000000 softirq=2687/2690 fqs=4995 last_accelerate: 9392/bad1 dyntick_enabled: 1 [ 123.762236][ C0] (t=10001 jiffies g=829 q=1394) [ 123.767259][ C0] NMI backtrace for cpu 0 [ 123.771587][ C0] CPU: 0 PID: 335 Comm: syz.4.5 Not tainted syzkaller #0 [ 123.778588][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 123.788625][ C0] Call Trace: [ 123.791891][ C0] [ 123.794718][ C0] __dump_stack+0x21/0x30 [ 123.799036][ C0] dump_stack_lvl+0x110/0x170 [ 123.803692][ C0] ? show_regs_print_info+0x20/0x20 [ 123.808885][ C0] ? __wake_up_klogd+0xe3/0x110 [ 123.813714][ C0] ? vprintk_emit+0x175/0x320 [ 123.818370][ C0] dump_stack+0x15/0x20 [ 123.822526][ C0] nmi_cpu_backtrace+0x2af/0x2c0 [ 123.827447][ C0] ? nmi_trigger_cpumask_backtrace+0x240/0x240 [ 123.833584][ C0] ? __kasan_check_write+0x14/0x20 [ 123.838675][ C0] ? _raw_spin_lock_irqsave+0xc2/0x130 [ 123.844112][ C0] ? _raw_spin_lock+0xf0/0xf0 [ 123.848767][ C0] ? _printk+0xda/0x130 [ 123.852903][ C0] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 123.858949][ C0] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 123.864993][ C0] nmi_trigger_cpumask_backtrace+0x138/0x240 [ 123.870950][ C0] arch_trigger_cpumask_backtrace+0x10/0x20 [ 123.876836][ C0] rcu_dump_cpu_stacks+0x1c7/0x300 [ 123.881928][ C0] print_cpu_stall+0x320/0x600 [ 123.886672][ C0] rcu_sched_clock_irq+0x759/0x12c0 [ 123.891848][ C0] ? rcu_boost_kthread_setaffinity+0x320/0x320 [ 123.897981][ C0] ? hrtimer_run_queues+0x166/0x430 [ 123.903173][ C0] update_process_times+0x198/0x200 [ 123.908352][ C0] tick_sched_timer+0x17c/0x240 [ 123.913182][ C0] ? tick_setup_sched_timer+0x450/0x450 [ 123.918704][ C0] __hrtimer_run_queues+0x3b9/0x9f0 [ 123.923882][ C0] ? hrtimer_interrupt+0x8c0/0x8c0 [ 123.928971][ C0] ? ktime_get_update_offsets_now+0x2fa/0x310 [ 123.935016][ C0] hrtimer_interrupt+0x3c7/0x8c0 [ 123.939933][ C0] __sysvec_apic_timer_interrupt+0xfa/0x3e0 [ 123.945807][ C0] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 123.951421][ C0] [ 123.954353][ C0] [ 123.957267][ C0] asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 123.963228][ C0] RIP: 0010:perf_iterate_sb+0xc1f/0xd50 [ 123.968757][ C0] Code: 45 85 ed 0f 84 8d 00 00 00 e8 cd 90 de ff eb 05 e8 c6 90 de ff 4c 89 f0 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df 80 3c 08 00 <74> 08 4c 89 f7 e8 17 bf 1d 00 4d 8b 36 49 39 de 74 11 e8 9a 90 de [ 123.988360][ C0] RSP: 0018:ffffc900079e7510 EFLAGS: 00000246 [ 123.994406][ C0] RAX: 1ffff110252f2648 RBX: ffff88810dd4db70 RCX: dffffc0000000000 [ 124.002358][ C0] RDX: ffffc90002720000 RSI: 000000000007ffff RDI: 0000000000080000 [ 124.010325][ C0] RBP: ffffc900079e7550 R08: ffffffff86e94aab R09: fffff52000f3ce50 [ 124.018281][ C0] R10: dffffc0000000000 R11: fffffbfff0dd2956 R12: ffff88810dd4db60 [ 124.026231][ C0] R13: ffffffff8681ead8 R14: ffff888129793240 R15: ffff88810cb7fc70 [ 124.034183][ C0] ? perf_event_text_poke+0x1a0/0x1a0 [ 124.039536][ C0] perf_event_text_poke+0x140/0x1a0 [ 124.044716][ C0] ? __collapse_huge_page_isolate+0x10c2/0x1170 [ 124.050936][ C0] ? perf_event_bpf_output+0x320/0x320 [ 124.056377][ C0] ? __collapse_huge_page_isolate+0x10c3/0x1170 [ 124.062597][ C0] ? __collapse_huge_page_isolate+0x10c2/0x1170 [ 124.068830][ C0] ? __collapse_huge_page_isolate+0x10c3/0x1170 [ 124.075049][ C0] ? memcpy+0x56/0x70 [ 124.079012][ C0] text_poke_bp_batch+0x357/0x600 [ 124.084021][ C0] ? text_poke_loc_init+0x5b0/0x5b0 [ 124.089200][ C0] ? _raw_spin_unlock_irqrestore+0x56/0x80 [ 124.094989][ C0] ? __collapse_huge_page_isolate+0x10c2/0x1170 [ 124.101206][ C0] ? __collapse_huge_page_isolate+0x10c2/0x1170 [ 124.107428][ C0] text_poke_bp+0xcf/0x150 [ 124.111833][ C0] ? text_poke_queue+0x180/0x180 [ 124.116749][ C0] ? __kasan_kmalloc+0xec/0x110 [ 124.121582][ C0] ? tracepoint_add_func+0x27f/0x8e0 [ 124.126843][ C0] ? tracepoint_probe_register+0x5a/0x90 [ 124.132454][ C0] __static_call_transform+0x2f2/0x510 [ 124.137892][ C0] ? __kasan_check_write+0x14/0x20 [ 124.142982][ C0] ? __collapse_huge_page_isolate+0x10c2/0x1170 [ 124.149202][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 124.157246][ C0] ? text_poke_bp+0x150/0x150 [ 124.161913][ C0] ? __kasan_check_write+0x14/0x20 [ 124.167027][ C0] ? mutex_lock+0x9b/0x1c0 [ 124.171435][ C0] ? wait_for_completion_killable_timeout+0x10/0x10 [ 124.178019][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 124.186075][ C0] ? __collapse_huge_page_isolate+0x10c2/0x1170 [ 124.192304][ C0] arch_static_call_transform+0x193/0x260 [ 124.198007][ C0] ? __static_call_update+0x3b3/0x5e0 [ 124.203360][ C0] ? __collapse_huge_page_isolate+0x10c2/0x1170 [ 124.209580][ C0] __static_call_update+0x3c4/0x5e0 [ 124.214765][ C0] ? irqentry_exit+0x37/0x40 [ 124.219337][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 124.227383][ C0] ? __static_call_return0+0x10/0x10 [ 124.232666][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 124.240715][ C0] ? __SCT__tp_func_mm_collapse_huge_page+0x8/0x8 [ 124.247113][ C0] ? __static_call_update+0xa/0x5e0 [ 124.252294][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 124.260343][ C0] tracepoint_add_func+0x746/0x8e0 [ 124.265441][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 124.273484][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 124.281524][ C0] tracepoint_probe_register+0x5a/0x90 [ 124.286960][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 124.295003][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 124.303045][ C0] trace_event_reg+0x159/0x270 [ 124.307790][ C0] perf_trace_event_init+0x52d/0xa30 [ 124.313051][ C0] perf_trace_init+0x240/0x2e0 [ 124.317793][ C0] perf_tp_event_init+0x8e/0x120 [ 124.322706][ C0] perf_try_init_event+0x14a/0x430 [ 124.327795][ C0] perf_event_alloc+0xedd/0x1a20 [ 124.332711][ C0] __se_sys_perf_event_open+0x6f5/0x1bb0 [ 124.338325][ C0] ? __x64_sys_perf_event_open+0xd0/0xd0 [ 124.343953][ C0] ? sched_clock+0x9/0x10 [ 124.348260][ C0] ? sched_clock_cpu+0x18/0x3c0 [ 124.353090][ C0] __x64_sys_perf_event_open+0xbf/0xd0 [ 124.358524][ C0] x64_sys_call+0x50d/0x9a0 [ 124.363005][ C0] do_syscall_64+0x4c/0xa0 [ 124.367404][ C0] ? clear_bhb_loop+0x50/0xa0 [ 124.372064][ C0] ? clear_bhb_loop+0x50/0xa0 [ 124.376718][ C0] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 124.382593][ C0] RIP: 0033:0x7f30d889cf79 [ 124.387006][ C0] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 124.406594][ C0] RSP: 002b:00007f30d72f8028 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 124.414987][ C0] RAX: ffffffffffffffda RBX: 00007f30d8b16fa0 RCX: 00007f30d889cf79 [ 124.422938][ C0] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000200000001480 [ 124.430887][ C0] RBP: 00007f30d89337e0 R08: 0000000000000000 R09: 0000000000000000 [ 124.438839][ C0] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 124.446790][ C0] R13: 00007f30d8b17038 R14: 00007f30d8b16fa0 R15: 00007fff3ac6df28 [ 124.454740][ C0] [ 164.531447][ T31] INFO: task kworker/u4:0:8 blocked for more than 122 seconds. [ 164.539034][ T31] Not tainted syzkaller #0 [ 164.544177][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 164.552963][ T31] task:kworker/u4:0 state:D stack:22592 pid: 8 ppid: 2 flags:0x00004000 [ 164.562457][ T31] Workqueue: events_unbound linkwatch_event [ 164.568366][ T31] Call Trace: [ 164.571799][ T31] [ 164.574737][ T31] __schedule+0xb6e/0x14c0 [ 164.579172][ T31] ? release_firmware_map_entry+0x190/0x190 [ 164.585233][ T31] ? __mutex_add_waiter+0xcc/0x280 [ 164.590357][ T31] ? __kasan_check_write+0x14/0x20 [ 164.595623][ T31] ? kthread_data+0x50/0xc0 [ 164.600138][ T31] ? wq_worker_sleeping+0x60/0x200 [ 164.605383][ T31] schedule+0x11e/0x1e0 [ 164.609550][ T31] schedule_preempt_disabled+0x13/0x20 [ 164.615155][ T31] __mutex_lock+0x81f/0x12d0 [ 164.619753][ T31] ? __ww_mutex_lock_interruptible_slowpath+0x20/0x20 [ 164.626659][ T31] ? mutex_unlock+0xe4/0x230 [ 164.631269][ T31] ? __mutex_lock_slowpath+0x10/0x10 [ 164.636711][ T31] ? __kasan_check_write+0x14/0x20 [ 164.641942][ T31] ? _raw_spin_lock_irq+0x95/0xf0 [ 164.646986][ T31] ? netdev_run_todo+0x94c/0x9b0 [ 164.652094][ T31] ? _raw_spin_unlock_irq+0x4e/0x70 [ 164.657314][ T31] __mutex_lock_slowpath+0xe/0x10 [ 164.662488][ T31] mutex_lock+0x112/0x1c0 [ 164.666832][ T31] ? wait_for_completion_killable_timeout+0x10/0x10 [ 164.673565][ T31] ? _raw_spin_lock_irq+0x95/0xf0 [ 164.678597][ T31] ? _raw_spin_lock_irqsave+0x130/0x130 [ 164.684305][ T31] ? __schedule+0xb76/0x14c0 [ 164.688904][ T31] rtnl_lock+0x15/0x20 [ 164.693127][ T31] linkwatch_event+0xe/0x60 [ 164.697639][ T31] process_one_work+0x6be/0xba0 [ 164.702661][ T31] worker_thread+0xd10/0x1200 [ 164.707350][ T31] kthread+0x411/0x500 [ 164.711565][ T31] ? worker_clr_flags+0x190/0x190 [ 164.716602][ T31] ? kthread_blkcg+0xd0/0xd0 [ 164.721199][ T31] ret_from_fork+0x1f/0x30 [ 164.725800][ T31] [ 164.728830][ T31] INFO: task kworker/u4:1:10 blocked for more than 123 seconds. [ 164.736600][ T31] Not tainted syzkaller #0 [ 164.741630][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 164.750294][ T31] task:kworker/u4:1 state:D stack:26528 pid: 10 ppid: 2 flags:0x00004000 [ 164.759672][ T31] Workqueue: events_unbound toggle_allocation_gate [ 164.766288][ T31] Call Trace: [ 164.769569][ T31] [ 164.772651][ T31] __schedule+0xb6e/0x14c0 [ 164.777079][ T31] ? release_firmware_map_entry+0x190/0x190 [ 164.783099][ T31] ? __mutex_add_waiter+0x180/0x280 [ 164.788303][ T31] ? __kasan_check_write+0x14/0x20 [ 164.793557][ T31] ? kthread_data+0x50/0xc0 [ 164.798065][ T31] ? wq_worker_sleeping+0x60/0x200 [ 164.803332][ T31] schedule+0x11e/0x1e0 [ 164.807505][ T31] schedule_preempt_disabled+0x13/0x20 [ 164.813117][ T31] __mutex_lock+0x81f/0x12d0 [ 164.817714][ T31] ? process_one_work+0x6be/0xba0 [ 164.822877][ T31] ? __ww_mutex_lock_interruptible_slowpath+0x20/0x20 [ 164.829736][ T31] ? __update_load_avg_cfs_rq+0xaf/0x2f0 [ 164.835547][ T31] ? update_load_avg+0x40d/0x1110 [ 164.840589][ T31] __mutex_lock_slowpath+0xe/0x10 [ 164.845755][ T31] mutex_lock+0x112/0x1c0 [ 164.850090][ T31] ? wait_for_completion_killable_timeout+0x10/0x10 [ 164.856827][ T31] static_key_enable_cpuslocked+0xc6/0x240 [ 164.862742][ T31] static_key_enable+0x1a/0x30 [ 164.867516][ T31] toggle_allocation_gate+0xba/0x440 [ 164.872946][ T31] ? kfence_debugfs_init+0x70/0x70 [ 164.878069][ T31] ? finish_task_switch+0x173/0x780 [ 164.883407][ T31] ? __switch_to_asm+0x3a/0x60 [ 164.888182][ T31] ? __schedule+0xb76/0x14c0 [ 164.892922][ T31] process_one_work+0x6be/0xba0 [ 164.897789][ T31] worker_thread+0xa59/0x1200 [ 164.902629][ T31] kthread+0x411/0x500 [ 164.906711][ T31] ? worker_clr_flags+0x190/0x190 [ 164.911918][ T31] ? kthread_blkcg+0xd0/0xd0 [ 164.916521][ T31] ret_from_fork+0x1f/0x30 [ 164.920944][ T31] [ 164.924138][ T31] INFO: task kworker/1:0:26 blocked for more than 123 seconds. [ 164.931898][ T31] Not tainted syzkaller #0 [ 164.936869][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 164.945759][ T31] task:kworker/1:0 state:D stack:26400 pid: 26 ppid: 2 flags:0x00004000 [ 164.955110][ T31] Workqueue: events once_deferred [ 164.960154][ T31] Call Trace: [ 164.963561][ T31] [ 164.966498][ T31] __schedule+0xb6e/0x14c0 [ 164.970923][ T31] ? release_firmware_map_entry+0x190/0x190 [ 164.977027][ T31] ? __mutex_add_waiter+0x180/0x280 [ 164.982350][ T31] ? _raw_spin_unlock_irq+0x4e/0x70 [ 164.987560][ T31] ? wq_worker_sleeping+0x196/0x200 [ 164.992921][ T31] schedule+0x11e/0x1e0 [ 164.997090][ T31] schedule_preempt_disabled+0x13/0x20 [ 165.002677][ T31] __mutex_lock+0x81f/0x12d0 [ 165.007281][ T31] ? __ww_mutex_lock_interruptible_slowpath+0x20/0x20 [ 165.014221][ T31] ? __update_load_avg_cfs_rq+0xaf/0x2f0 [ 165.019866][ T31] ? update_load_avg+0x40d/0x1110 [ 165.025044][ T31] __mutex_lock_slowpath+0xe/0x10 [ 165.030082][ T31] mutex_lock+0x112/0x1c0 [ 165.034547][ T31] ? wait_for_completion_killable_timeout+0x10/0x10 [ 165.041142][ T31] ? __this_cpu_preempt_check+0x13/0x20 [ 165.046825][ T31] ? __perf_event_task_sched_in+0x213/0x290 [ 165.052831][ T31] arch_jump_label_transform_queue+0x42/0xe0 [ 165.058821][ T31] __jump_label_update+0x180/0x3a0 [ 165.064217][ T31] jump_label_update+0x39b/0x450 [ 165.069178][ T31] static_key_disable_cpuslocked+0xc5/0x1a0 [ 165.075239][ T31] static_key_disable+0x1a/0x30 [ 165.080122][ T31] once_deferred+0x74/0xb0 [ 165.084676][ T31] process_one_work+0x6be/0xba0 [ 165.089538][ T31] worker_thread+0xa59/0x1200 [ 165.094367][ T31] kthread+0x411/0x500 [ 165.098445][ T31] ? worker_clr_flags+0x190/0x190 [ 165.103603][ T31] ? kthread_blkcg+0xd0/0xd0 [ 165.108205][ T31] ret_from_fork+0x1f/0x30 [ 165.112761][ T31] [ 165.115804][ T31] INFO: task kworker/1:2:63 blocked for more than 123 seconds. [ 165.123478][ T31] Not tainted syzkaller #0 [ 165.128412][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 165.137238][ T31] task:kworker/1:2 state:D stack:23808 pid: 63 ppid: 2 flags:0x00004000 [ 165.146544][ T31] Workqueue: ipv6_addrconf addrconf_dad_work [ 165.152638][ T31] Call Trace: [ 165.155919][ T31] [ 165.158861][ T31] __schedule+0xb6e/0x14c0 [ 165.163461][ T31] ? release_firmware_map_entry+0x190/0x190 [ 165.169467][ T31] ? __mutex_add_waiter+0xcc/0x280 [ 165.175091][ T31] ? _raw_spin_unlock_irq+0x4e/0x70 [ 165.180305][ T31] ? wq_worker_sleeping+0x196/0x200 [ 165.185760][ T31] schedule+0x11e/0x1e0 [ 165.189937][ T31] schedule_preempt_disabled+0x13/0x20 [ 165.195582][ T31] __mutex_lock+0x81f/0x12d0 [ 165.200186][ T31] ? __ww_mutex_lock_interruptible_slowpath+0x20/0x20 [ 165.207573][ T31] ? calc_wheel_index+0x231/0x8e0 [ 165.212734][ T31] ? __kasan_check_write+0x14/0x20 [ 165.217861][ T31] ? timer_update_keys+0xb0/0xb0 [ 165.222949][ T31] ? debug_smp_processor_id+0x17/0x20 [ 165.228331][ T31] ? __kasan_check_write+0x14/0x20 [ 165.233601][ T31] ? _raw_spin_unlock_irqrestore+0x5b/0x80 [ 165.239426][ T31] ? __mod_timer+0x7da/0xb50 [ 165.244173][ T31] __mutex_lock_slowpath+0xe/0x10 [ 165.249298][ T31] mutex_lock+0x112/0x1c0 [ 165.254037][ T31] ? wait_for_completion_killable_timeout+0x10/0x10 [ 165.260685][ T31] ? add_timer+0x68/0x80 [ 165.265381][ T31] rtnl_lock+0x15/0x20 [ 165.269500][ T31] addrconf_dad_work+0xca/0x1560 [ 165.274594][ T31] ? delayed_work_timer_fn+0x80/0x80 [ 165.279892][ T31] ? ipv6_get_saddr_eval+0xf70/0xf70 [ 165.285334][ T31] ? __kasan_check_write+0x14/0x20 [ 165.290549][ T31] ? _raw_spin_lock_irq+0x95/0xf0 [ 165.295745][ T31] ? _raw_spin_lock_irqsave+0x130/0x130 [ 165.301301][ T31] process_one_work+0x6be/0xba0 [ 165.306291][ T31] worker_thread+0xa59/0x1200 [ 165.310976][ T31] ? _raw_spin_lock_irqsave+0xc2/0x130 [ 165.316590][ T31] ? __kthread_parkme+0xac/0x200 [ 165.321622][ T31] kthread+0x411/0x500 [ 165.325699][ T31] ? worker_clr_flags+0x190/0x190 [ 165.330909][ T31] ? kthread_blkcg+0xd0/0xd0 [ 165.335750][ T31] ret_from_fork+0x1f/0x30 [ 165.340182][ T31] [ 165.343355][ T31] INFO: task syz-executor:281 blocked for more than 123 seconds. [ 165.351073][ T31] Not tainted syzkaller #0 [ 165.356150][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 165.364907][ T31] task:syz-executor state:D stack:22048 pid: 281 ppid: 1 flags:0x00004004 [ 165.374258][ T31] Call Trace: [ 165.377540][ T31] [ 165.380477][ T31] __schedule+0xb6e/0x14c0 [ 165.385081][ T31] ? release_firmware_map_entry+0x190/0x190 [ 165.390982][ T31] ? wake_up_process+0x10/0x20 [ 165.396097][ T31] ? _raw_spin_unlock_irqrestore+0x5b/0x80 [ 165.402014][ T31] ? prepare_to_wait_event+0x40b/0x440 [ 165.407487][ T31] schedule+0x11e/0x1e0 [ 165.411788][ T31] synchronize_rcu_expedited+0x4b6/0x640 [ 165.417429][ T31] ? synchronize_rcu+0x140/0x140 [ 165.422514][ T31] ? put_user_ifreq+0xc0/0xc0 [ 165.427288][ T31] ? rcu_exp_handler+0x370/0x370 [ 165.432389][ T31] ? memcpy+0x56/0x70 [ 165.436384][ T31] ? io_schedule+0xe0/0xe0 [ 165.440819][ T31] ? mutex_unlock+0x8f/0x230 [ 165.445592][ T31] ? __mutex_lock_slowpath+0x10/0x10 [ 165.450887][ T31] ? __kasan_check_read+0x11/0x20 [ 165.456053][ T31] synchronize_net+0x2d/0x40 [ 165.460654][ T31] wg_socket_reinit+0x13c/0x210 [ 165.465670][ T31] wg_socket_init+0x685/0x8b0 [ 165.470357][ T31] ? wg_socket_clear_peer_endpoint_src+0x50/0x50 [ 165.476829][ T31] ? __kasan_check_write+0x14/0x20 [ 165.482038][ T31] ? wg_socket_init+0x8b0/0x8b0 [ 165.486896][ T31] ? vlan_device_event+0x4b5/0x1d40 [ 165.492247][ T31] ? __kasan_check_write+0x14/0x20 [ 165.497367][ T31] ? wait_for_completion_killable_timeout+0x10/0x10 [ 165.504095][ T31] ? udp_tunnel_nic_netdevice_event+0x1b2/0x1250 [ 165.510427][ T31] ? cgw_notifier+0xe0/0x3b0 [ 165.515167][ T31] wg_open+0x18a/0x300 [ 165.519252][ T31] __dev_open+0x379/0x500 [ 165.523720][ T31] ? dev_open+0x240/0x240 [ 165.528061][ T31] ? _raw_spin_unlock_bh+0x51/0x60 [ 165.533326][ T31] ? dev_set_rx_mode+0x212/0x2c0 [ 165.538274][ T31] ? __kasan_check_read+0x11/0x20 [ 165.543436][ T31] __dev_change_flags+0x20d/0x6a0 [ 165.548479][ T31] ? dev_get_flags+0x1e0/0x1e0 [ 165.553400][ T31] ? is_bpf_text_address+0x177/0x190 [ 165.558697][ T31] ? __kernel_text_address+0xa0/0x100 [ 165.564205][ T31] dev_change_flags+0x88/0x1a0 [ 165.568979][ T31] do_setlink+0xcd6/0x3d50 [ 165.573735][ T31] ? nlmsg_parse_deprecated_strict+0x110/0x110 [ 165.579914][ T31] ? __stack_depot_save+0x34/0x480 [ 165.585181][ T31] ? __kasan_slab_alloc+0x69/0xf0 [ 165.590222][ T31] ? __kasan_kmalloc+0xec/0x110 [ 165.595239][ T31] ? memset+0x35/0x40 [ 165.599229][ T31] ? __nla_validate_parse+0x1e23/0x2780 [ 165.604908][ T31] ? __nla_validate+0x60/0x60 [ 165.609614][ T31] rtnl_newlink+0x1639/0x1a30 [ 165.614527][ T31] ? __this_cpu_preempt_check+0x13/0x20 [ 165.620086][ T31] ? rtnl_newlink+0x4a1/0x1a30 [ 165.624994][ T31] ? rtnl_setlink+0x4d0/0x4d0 [ 165.629679][ T31] ? _raw_spin_unlock+0x4d/0x70 [ 165.634673][ T31] ? finish_task_switch+0x16b/0x780 [ 165.639880][ T31] ? __switch_to_asm+0x3a/0x60 [ 165.644778][ T31] ? __schedule+0xb76/0x14c0 [ 165.649391][ T31] ? memcpy+0x56/0x70 [ 165.653522][ T31] ? is_bpf_text_address+0x177/0x190 [ 165.658822][ T31] ? __mutex_lock_slowpath+0xe/0x10 [ 165.664163][ T31] ? wait_for_completion_killable_timeout+0x10/0x10 [ 165.670766][ T31] ? ns_capable+0x8c/0xf0 [ 165.675264][ T31] ? netlink_net_capable+0x125/0x160 [ 165.680556][ T31] ? rtnl_setlink+0x4d0/0x4d0 [ 165.685370][ T31] rtnetlink_rcv_msg+0xa4b/0xce0 [ 165.690320][ T31] ? rtnetlink_bind+0x80/0x80 [ 165.695160][ T31] ? avc_has_perm_noaudit+0x391/0x490 [ 165.700551][ T31] ? memcpy+0x56/0x70 [ 165.704669][ T31] ? avc_has_perm_noaudit+0x30b/0x490 [ 165.710051][ T31] ? arch_stack_walk+0xee/0x140 [ 165.715049][ T31] ? avc_denied+0x1b0/0x1b0 [ 165.719561][ T31] ? stack_trace_save+0xa6/0xf0 [ 165.724541][ T31] ? avc_has_perm+0x163/0x250 [ 165.729222][ T31] ? avc_has_perm_noaudit+0x490/0x490 [ 165.734748][ T31] ? do_syscall_64+0x4c/0xa0 [ 165.739345][ T31] ? selinux_nlmsg_lookup+0x400/0x4c0 [ 165.744865][ T31] netlink_rcv_skb+0x1f5/0x440 [ 165.749640][ T31] ? rtnetlink_bind+0x80/0x80 [ 165.754488][ T31] ? netlink_ack+0xb50/0xb50 [ 165.759085][ T31] ? __netlink_lookup+0x387/0x3b0 [ 165.764261][ T31] rtnetlink_rcv+0x1c/0x20 [ 165.768687][ T31] netlink_unicast+0x876/0xa40 [ 165.773614][ T31] netlink_sendmsg+0x879/0xb80 [ 165.778389][ T31] ? netlink_getsockopt+0x530/0x530 [ 165.783717][ T31] ? security_socket_sendmsg+0x82/0xa0 [ 165.789191][ T31] __sys_sendto+0x46d/0x620 [ 165.793850][ T31] ? __ia32_sys_getpeername+0x90/0x90 [ 165.799237][ T31] ? __fput+0x63f/0x8b0 [ 165.803530][ T31] ? unlock_page_memcg+0x130/0x130 [ 165.808663][ T31] ? ____fput+0x15/0x20 [ 165.812975][ T31] __x64_sys_sendto+0xe5/0x100 [ 165.817750][ T31] x64_sys_call+0x178/0x9a0 [ 165.822410][ T31] do_syscall_64+0x4c/0xa0 [ 165.826835][ T31] ? clear_bhb_loop+0x50/0xa0 [ 165.831662][ T31] ? clear_bhb_loop+0x50/0xa0 [ 165.836351][ T31] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 165.842380][ T31] RIP: 0033:0x7fb6a00e6197 [ 165.846801][ T31] RSP: 002b:00007fff39fd4a00 EFLAGS: 00000202 ORIG_RAX: 000000000000002c [ 165.855363][ T31] RAX: ffffffffffffffda RBX: 000055559253f500 RCX: 00007fb6a00e6197 [ 165.863444][ T31] RDX: 0000000000000020 RSI: 00007fb6a0ed3670 RDI: 0000000000000003 [ 165.871522][ T31] RBP: 0000000000000001 R08: 00007fff39fd4a64 R09: 000000000000000c [ 165.879500][ T31] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 165.887623][ T31] R13: 0000000000000000 R14: 00007fb6a0ed3670 R15: 0000000000000000 [ 165.895712][ T31] [ 165.898745][ T31] INFO: task syz-executor:283 blocked for more than 124 seconds. [ 165.906591][ T31] Not tainted syzkaller #0 [ 165.911645][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 165.920313][ T31] task:syz-executor state:D stack:21760 pid: 283 ppid: 1 flags:0x00004004 [ 165.929665][ T31] Call Trace: [ 165.933050][ T31] [ 165.935992][ T31] __schedule+0xb6e/0x14c0 [ 165.940424][ T31] ? release_firmware_map_entry+0x190/0x190 [ 165.946486][ T31] ? __mutex_add_waiter+0xcc/0x280 [ 165.951726][ T31] ? __kasan_check_write+0x14/0x20 [ 165.956861][ T31] ? __ww_mutex_check_waiters+0x350/0x350 [ 165.962819][ T31] schedule+0x11e/0x1e0 [ 165.966994][ T31] schedule_preempt_disabled+0x13/0x20 [ 165.972653][ T31] __mutex_lock+0x81f/0x12d0 [ 165.977259][ T31] ? __ww_mutex_lock_interruptible_slowpath+0x20/0x20 [ 165.984197][ T31] ? selinux_capable+0x2b6/0x3b0 [ 165.989149][ T31] ? selinux_capset+0xf0/0xf0 [ 165.993991][ T31] ? is_bpf_text_address+0x177/0x190 [ 165.999288][ T31] ? cap_capable+0x1aa/0x230 [ 166.004029][ T31] __mutex_lock_slowpath+0xe/0x10 [ 166.009087][ T31] mutex_lock+0x112/0x1c0 [ 166.013589][ T31] ? wait_for_completion_killable_timeout+0x10/0x10 [ 166.020285][ T31] ? ns_capable+0x8c/0xf0 [ 166.024751][ T31] ? netlink_net_capable+0x125/0x160 [ 166.030048][ T31] rtnetlink_rcv_msg+0x579/0xce0 [ 166.035193][ T31] ? rtnetlink_bind+0x80/0x80 [ 166.039883][ T31] ? avc_has_perm_noaudit+0x391/0x490 [ 166.045398][ T31] ? memcpy+0x56/0x70 [ 166.049387][ T31] ? avc_has_perm_noaudit+0x30b/0x490 [ 166.054935][ T31] ? arch_stack_walk+0xee/0x140 [ 166.059809][ T31] ? avc_denied+0x1b0/0x1b0 [ 166.064498][ T31] ? stack_trace_save+0xa6/0xf0 [ 166.069362][ T31] ? avc_has_perm+0x163/0x250 [ 166.074199][ T31] ? avc_has_perm_noaudit+0x490/0x490 [ 166.079580][ T31] ? do_syscall_64+0x4c/0xa0 [ 166.084305][ T31] ? selinux_nlmsg_lookup+0x400/0x4c0 [ 166.089690][ T31] netlink_rcv_skb+0x1f5/0x440 [ 166.094621][ T31] ? rtnetlink_bind+0x80/0x80 [ 166.099371][ T31] ? netlink_ack+0xb50/0xb50 [ 166.104087][ T31] ? __netlink_lookup+0x387/0x3b0 [ 166.109117][ T31] rtnetlink_rcv+0x1c/0x20 [ 166.113679][ T31] netlink_unicast+0x876/0xa40 [ 166.118451][ T31] netlink_sendmsg+0x879/0xb80 [ 166.123351][ T31] ? netlink_getsockopt+0x530/0x530 [ 166.128563][ T31] ? security_socket_sendmsg+0x82/0xa0 [ 166.134179][ T31] __sys_sendto+0x46d/0x620 [ 166.138689][ T31] ? __ia32_sys_getpeername+0x90/0x90 [ 166.144193][ T31] ? __fput+0x63f/0x8b0 [ 166.148362][ T31] ? unlock_page_memcg+0x130/0x130 [ 166.153629][ T31] ? ____fput+0x15/0x20 [ 166.157795][ T31] __x64_sys_sendto+0xe5/0x100 [ 166.162693][ T31] x64_sys_call+0x178/0x9a0 [ 166.167202][ T31] do_syscall_64+0x4c/0xa0 [ 166.171775][ T31] ? clear_bhb_loop+0x50/0xa0 [ 166.176464][ T31] ? clear_bhb_loop+0x50/0xa0 [ 166.181144][ T31] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 166.187221][ T31] RIP: 0033:0x7f4c6ed04197 [ 166.191752][ T31] RSP: 002b:00007ffc95cba8e0 EFLAGS: 00000202 ORIG_RAX: 000000000000002c [ 166.200176][ T31] RAX: ffffffffffffffda RBX: 000055557135a500 RCX: 00007f4c6ed04197 [ 166.208462][ T31] RDX: 0000000000000028 RSI: 00007f4c6faf1670 RDI: 0000000000000003 [ 166.216667][ T31] RBP: 0000000000000001 R08: 00007ffc95cba944 R09: 000000000000000c [ 166.224786][ T31] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 166.232978][ T31] R13: 0000000000000000 R14: 00007f4c6faf1670 R15: 0000000000000000 [ 166.240972][ T31] [ 166.244220][ T31] INFO: task kworker/1:3:332 blocked for more than 124 seconds. [ 166.251985][ T31] Not tainted syzkaller #0 [ 166.256925][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 166.265725][ T31] task:kworker/1:3 state:D stack:25664 pid: 332 ppid: 2 flags:0x00004000 [ 166.275058][ T31] Workqueue: events bpf_map_free_deferred [ 166.280793][ T31] Call Trace: [ 166.284244][ T31] [ 166.287187][ T31] __schedule+0xb6e/0x14c0 [ 166.291749][ T31] ? release_firmware_map_entry+0x190/0x190 [ 166.297651][ T31] ? _raw_spin_unlock_irq+0x4e/0x70 [ 166.302994][ T31] ? wq_worker_sleeping+0x196/0x200 [ 166.308208][ T31] schedule+0x11e/0x1e0 [ 166.312508][ T31] schedule_timeout+0xba/0x340 [ 166.317277][ T31] ? console_conditional_schedule+0x30/0x30 [ 166.323303][ T31] ? rcu_barrier+0x400/0x400 [ 166.327908][ T31] ? __prepare_to_swait+0xa8/0x130 [ 166.333243][ T31] wait_for_common+0x277/0x440 [ 166.338018][ T31] ? wait_for_completion+0x20/0x20 [ 166.343273][ T31] ? ____kasan_slab_free+0x130/0x160 [ 166.348565][ T31] wait_for_completion+0x18/0x20 [ 166.353641][ T31] rcu_barrier+0x373/0x400 [ 166.358065][ T31] htab_map_free+0x28/0x5e0 [ 166.362728][ T31] ? kfree+0xc4/0x270 [ 166.366726][ T31] ? selinux_bpf_map_free+0x3f/0x50 [ 166.372083][ T31] ? __switch_to_asm+0x3a/0x60 [ 166.376854][ T31] ? selinux_bpf_map_free+0x3f/0x50 [ 166.382178][ T31] bpf_map_free_deferred+0x10e/0x1e0 [ 166.387475][ T31] process_one_work+0x6be/0xba0 [ 166.392478][ T31] worker_thread+0xa59/0x1200 [ 166.397168][ T31] ? _raw_spin_lock_irqsave+0xc2/0x130 [ 166.402776][ T31] ? __kthread_parkme+0xac/0x200 [ 166.407725][ T31] kthread+0x411/0x500 [ 166.411936][ T31] ? worker_clr_flags+0x190/0x190 [ 166.416976][ T31] ? kthread_blkcg+0xd0/0xd0 [ 166.421702][ T31] ret_from_fork+0x1f/0x30 [ 166.426130][ T31] [ 166.429167][ T31] INFO: task syz.2.3:339 blocked for more than 124 seconds. [ 166.436647][ T31] Not tainted syzkaller #0 [ 166.441672][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 166.450343][ T31] task:syz.2.3 state:D stack:27488 pid: 339 ppid: 284 flags:0x00004004 [ 166.460207][ T31] Call Trace: [ 166.463909][ T31] [ 166.466894][ T31] __schedule+0xb6e/0x14c0 [ 166.471578][ T31] ? release_firmware_map_entry+0x190/0x190 [ 166.477485][ T31] ? __mutex_add_waiter+0xcc/0x280 [ 166.482740][ T31] ? __kasan_check_write+0x14/0x20 [ 166.487859][ T31] ? __ww_mutex_check_waiters+0x350/0x350 [ 166.493723][ T31] ? syscall_exit_to_user_mode+0x1a/0x30 [ 166.499368][ T31] schedule+0x11e/0x1e0 [ 166.503655][ T31] schedule_preempt_disabled+0x13/0x20 [ 166.509123][ T31] __mutex_lock+0x81f/0x12d0 [ 166.513862][ T31] ? __ww_mutex_lock_interruptible_slowpath+0x20/0x20 [ 166.520647][ T31] ? locks_remove_posix+0x550/0x550 [ 166.526016][ T31] ? memset+0x35/0x40 [ 166.530010][ T31] __mutex_lock_slowpath+0xe/0x10 [ 166.535196][ T31] mutex_lock+0x112/0x1c0 [ 166.539530][ T31] ? wait_for_completion_killable_timeout+0x10/0x10 [ 166.546265][ T31] rtnl_lock+0x15/0x20 [ 166.550340][ T31] tun_chr_close+0x40/0x140 [ 166.554984][ T31] ? tun_chr_open+0x540/0x540 [ 166.559671][ T31] __fput+0x20b/0x8b0 [ 166.563778][ T31] ____fput+0x15/0x20 [ 166.567770][ T31] task_work_run+0x127/0x190 [ 166.572600][ T31] exit_to_user_mode_loop+0xd0/0xe0 [ 166.577851][ T31] exit_to_user_mode_prepare+0x87/0xd0 [ 166.583561][ T31] syscall_exit_to_user_mode+0x1a/0x30 [ 166.589052][ T31] do_syscall_64+0x58/0xa0 [ 166.593748][ T31] ? clear_bhb_loop+0x50/0xa0 [ 166.598445][ T31] ? clear_bhb_loop+0x50/0xa0 [ 166.603297][ T31] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 166.609206][ T31] RIP: 0033:0x7f3c2f977f79 [ 166.613822][ T31] RSP: 002b:00007fff54d2db68 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 166.622429][ T31] RAX: 0000000000000000 RBX: 00007f3c2fbf3da0 RCX: 00007f3c2f977f79 [ 166.630427][ T31] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 166.638649][ T31] RBP: 00007f3c2fbf3da0 R08: 0000000000000006 R09: 0000000000000000 [ 166.646726][ T31] R10: 00007f3c2fbf3cb0 R11: 0000000000000246 R12: 0000000000005ff8 [ 166.654828][ T31] R13: 00007f3c2fbf209c R14: 0000000000005d54 R15: 00007f3c2fbf2090 [ 166.662908][ T31] [ 166.665948][ T31] INFO: task syz.2.3:341 blocked for more than 125 seconds. [ 166.673389][ T31] Not tainted syzkaller #0 [ 166.678330][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 166.687124][ T31] task:syz.2.3 state:D stack:26416 pid: 341 ppid: 284 flags:0x00004004 [ 166.696457][ T31] Call Trace: [ 166.699739][ T31] [ 166.702799][ T31] __schedule+0xb6e/0x14c0 [ 166.707229][ T31] ? release_firmware_map_entry+0x190/0x190 [ 166.713270][ T31] ? __mutex_add_waiter+0xcc/0x280 [ 166.718387][ T31] ? __kasan_check_write+0x14/0x20 [ 166.723659][ T31] ? __ww_mutex_check_waiters+0x350/0x350 [ 166.729386][ T31] schedule+0x11e/0x1e0 [ 166.733691][ T31] schedule_preempt_disabled+0x13/0x20 [ 166.739156][ T31] __mutex_lock+0x81f/0x12d0 [ 166.743882][ T31] ? __ww_mutex_lock_interruptible_slowpath+0x20/0x20 [ 166.750658][ T31] ? release_firmware_map_entry+0x190/0x190 [ 166.756711][ T31] ? __kasan_check_read+0x11/0x20 [ 166.761834][ T31] ? preempt_schedule_irq+0xca/0x120 [ 166.767124][ T31] ? sysvec_apic_timer_interrupt+0x64/0xc0 [ 166.773090][ T31] __mutex_lock_slowpath+0xe/0x10 [ 166.778120][ T31] mutex_lock+0x112/0x1c0 [ 166.782598][ T31] ? wait_for_completion_killable_timeout+0x10/0x10 [ 166.789194][ T31] ? dev_get_by_name_rcu+0xc8/0xf0 [ 166.794486][ T31] rtnl_lock+0x15/0x20 [ 166.798565][ T31] dev_ioctl+0x44f/0xd00 [ 166.802959][ T31] sock_do_ioctl+0x241/0x310 [ 166.807555][ T31] ? sock_show_fdinfo+0xa0/0xa0 [ 166.812569][ T31] ? selinux_file_ioctl+0x391/0x4d0 [ 166.817776][ T31] ? selinux_file_ioctl+0x3a0/0x4d0 [ 166.823114][ T31] ? ktime_get+0x12f/0x160 [ 166.827550][ T31] ? lapic_next_event+0x5f/0x70 [ 166.832556][ T31] sock_ioctl+0x4a1/0x6e0 [ 166.836893][ T31] ? sock_poll+0x3f0/0x3f0 [ 166.841316][ T31] ? __fget_files+0x2c4/0x320 [ 166.846185][ T31] ? security_file_ioctl+0x84/0xa0 [ 166.851309][ T31] ? sock_poll+0x3f0/0x3f0 [ 166.855867][ T31] __se_sys_ioctl+0x121/0x1a0 [ 166.860558][ T31] __x64_sys_ioctl+0x7b/0x90 [ 166.865275][ T31] x64_sys_call+0x2f/0x9a0 [ 166.869700][ T31] do_syscall_64+0x4c/0xa0 [ 166.874264][ T31] ? clear_bhb_loop+0x50/0xa0 [ 166.878950][ T31] ? clear_bhb_loop+0x50/0xa0 [ 166.883762][ T31] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 166.889667][ T31] RIP: 0033:0x7f3c2f977f79 [ 166.894220][ T31] RSP: 002b:00007f3c2e3d3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 166.902738][ T31] RAX: ffffffffffffffda RBX: 00007f3c2fbf1fa0 RCX: 00007f3c2f977f79 [ 166.910718][ T31] RDX: 0000200000000080 RSI: 0000000000008946 RDI: 0000000000000012 [ 166.918840][ T31] RBP: 00007f3c2fa0e7e0 R08: 0000000000000000 R09: 0000000000000000 [ 166.926910][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 166.935023][ T31] R13: 00007f3c2fbf2038 R14: 00007f3c2fbf1fa0 R15: 00007fff54d2da08 [ 166.943092][ T31] [ 166.946115][ T31] INFO: task kworker/1:4:346 blocked for more than 125 seconds. [ 166.953882][ T31] Not tainted syzkaller #0 [ 166.958834][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 166.967630][ T31] task:kworker/1:4 state:D stack:28808 pid: 346 ppid: 2 flags:0x00004000 [ 166.977110][ T31] Workqueue: events bpf_map_free_deferred [ 166.982998][ T31] Call Trace: [ 166.986292][ T31] [ 166.989234][ T31] __schedule+0xb6e/0x14c0 [ 166.993923][ T31] ? release_firmware_map_entry+0x190/0x190 [ 166.999822][ T31] ? __mutex_add_waiter+0x180/0x280 [ 167.005162][ T31] ? _raw_spin_unlock_irq+0x4e/0x70 [ 167.010374][ T31] ? wq_worker_sleeping+0x196/0x200 [ 167.015726][ T31] schedule+0x11e/0x1e0 [ 167.019893][ T31] schedule_preempt_disabled+0x13/0x20 [ 167.025533][ T31] __mutex_lock+0x81f/0x12d0 [ 167.030132][ T31] ? kasan_set_track+0x4a/0x70 [ 167.035041][ T31] ? __ww_mutex_lock_interruptible_slowpath+0x20/0x20 [ 167.041906][ T31] __mutex_lock_slowpath+0xe/0x10 [ 167.046941][ T31] mutex_lock+0x112/0x1c0 [ 167.051278][ T31] ? wait_for_completion_killable_timeout+0x10/0x10 [ 167.058070][ T31] ? ____kasan_slab_free+0x130/0x160 [ 167.063557][ T31] rcu_barrier+0x46/0x400 [ 167.067921][ T31] ? htab_map_free+0x23/0x5e0 [ 167.072858][ T31] htab_map_free+0x28/0x5e0 [ 167.077378][ T31] ? kfree+0xc4/0x270 [ 167.081370][ T31] ? selinux_bpf_map_free+0x3f/0x50 [ 167.086774][ T31] ? __switch_to_asm+0x3a/0x60 [ 167.092076][ T31] ? selinux_bpf_map_free+0x3f/0x50 [ 167.097298][ T31] bpf_map_free_deferred+0x10e/0x1e0 [ 167.102852][ T31] process_one_work+0x6be/0xba0 [ 167.107733][ T31] worker_thread+0xa59/0x1200 [ 167.112620][ T31] ? _raw_spin_lock_irqsave+0xc2/0x130 [ 167.118098][ T31] ? __kthread_parkme+0xac/0x200 [ 167.123197][ T31] kthread+0x411/0x500 [ 167.127282][ T31] ? worker_clr_flags+0x190/0x190 [ 167.132470][ T31] ? kthread_blkcg+0xd0/0xd0 [ 167.137086][ T31] ret_from_fork+0x1f/0x30 [ 167.141649][ T31] [ 167.144690][ T31] NMI backtrace for cpu 1 [ 167.149019][ T31] CPU: 1 PID: 31 Comm: khungtaskd Not tainted syzkaller #0 [ 167.156224][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 167.166282][ T31] Call Trace: [ 167.169790][ T31] [ 167.172749][ T31] __dump_stack+0x21/0x30 [ 167.177104][ T31] dump_stack_lvl+0x110/0x170 [ 167.181801][ T31] ? show_regs_print_info+0x20/0x20 [ 167.187024][ T31] dump_stack+0x15/0x20 [ 167.191191][ T31] nmi_cpu_backtrace+0x2af/0x2c0 [ 167.196139][ T31] ? rcu_read_unlock_special+0xb2/0x420 [ 167.201690][ T31] ? nmi_trigger_cpumask_backtrace+0x240/0x240 [ 167.207853][ T31] ? __rcu_read_unlock+0xa0/0xa0 [ 167.212793][ T31] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 167.218868][ T31] ? arch_trigger_cpumask_backtrace+0x20/0x20 [ 167.224944][ T31] nmi_trigger_cpumask_backtrace+0x138/0x240 [ 167.230929][ T31] arch_trigger_cpumask_backtrace+0x10/0x20 [ 167.236827][ T31] watchdog+0xd92/0xee0 [ 167.240994][ T31] ? hungtask_pm_notify+0x50/0x50 [ 167.246023][ T31] ? __kasan_check_read+0x11/0x20 [ 167.251052][ T31] ? __kthread_parkme+0xac/0x200 [ 167.255995][ T31] kthread+0x411/0x500 [ 167.260072][ T31] ? hungtask_pm_notify+0x50/0x50 [ 167.265100][ T31] ? kthread_blkcg+0xd0/0xd0 [ 167.269698][ T31] ret_from_fork+0x1f/0x30 [ 167.274139][ T31] [ 167.277215][ T31] Sending NMI from CPU 1 to CPUs 0: [ 167.282443][ C0] NMI backtrace for cpu 0 [ 167.282453][ C0] CPU: 0 PID: 335 Comm: syz.4.5 Not tainted syzkaller #0 [ 167.282468][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 167.282475][ C0] RIP: 0010:perf_iterate_sb+0xba5/0xd50 [ 167.282496][ C0] Code: 1d 00 4c 8b 33 49 39 de 0f 84 c0 00 00 00 4d 8d ae 88 00 00 00 4c 89 e8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df 80 3c 08 00 <74> 08 4c 89 ef e8 91 bf 1d 00 4d 8b 6d 00 b8 18 01 00 00 49 01 c5 [ 167.282508][ C0] RSP: 0018:ffffc900079e7510 EFLAGS: 00000246 [ 167.282522][ C0] RAX: 1ffff110252f2659 RBX: ffff88810dd4db70 RCX: dffffc0000000000 [ 167.282533][ C0] RDX: ffffc90002720000 RSI: 000000000007ffff RDI: 0000000000080000 [ 167.282543][ C0] RBP: ffffc900079e7550 R08: ffffffff86e94aab R09: fffff52000f3ce50 [ 167.282553][ C0] R10: dffffc0000000000 R11: fffffbfff0dd2956 R12: ffff88810dd4db60 [ 167.282564][ C0] R13: ffff8881297932c8 R14: ffff888129793240 R15: ffff88810cb7fc70 [ 167.282574][ C0] FS: 00007f30d72f86c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 167.282587][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 167.282597][ C0] CR2: 00007f3c2f845e40 CR3: 000000010d43e000 CR4: 00000000003506b0 [ 167.282612][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 167.282621][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 167.282630][ C0] Call Trace: [ 167.282634][ C0] [ 167.282639][ C0] ? perf_event_text_poke+0x1a0/0x1a0 [ 167.282655][ C0] perf_event_text_poke+0x140/0x1a0 [ 167.282670][ C0] ? __collapse_huge_page_isolate+0x10c2/0x1170 [ 167.282686][ C0] ? perf_event_bpf_output+0x320/0x320 [ 167.282700][ C0] ? __collapse_huge_page_isolate+0x10c3/0x1170 [ 167.282715][ C0] ? __collapse_huge_page_isolate+0x10c2/0x1170 [ 167.282730][ C0] ? __collapse_huge_page_isolate+0x10c3/0x1170 [ 167.282744][ C0] ? memcpy+0x56/0x70 [ 167.282757][ C0] text_poke_bp_batch+0x357/0x600 [ 167.282772][ C0] ? text_poke_loc_init+0x5b0/0x5b0 [ 167.282786][ C0] ? _raw_spin_unlock_irqrestore+0x56/0x80 [ 167.282802][ C0] ? __collapse_huge_page_isolate+0x10c2/0x1170 [ 167.282816][ C0] ? __collapse_huge_page_isolate+0x10c2/0x1170 [ 167.282831][ C0] text_poke_bp+0xcf/0x150 [ 167.282844][ C0] ? text_poke_queue+0x180/0x180 [ 167.282856][ C0] ? __kasan_kmalloc+0xec/0x110 [ 167.282869][ C0] ? tracepoint_add_func+0x27f/0x8e0 [ 167.282884][ C0] ? tracepoint_probe_register+0x5a/0x90 [ 167.282900][ C0] __static_call_transform+0x2f2/0x510 [ 167.282913][ C0] ? __kasan_check_write+0x14/0x20 [ 167.282926][ C0] ? __collapse_huge_page_isolate+0x10c2/0x1170 [ 167.282941][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 167.282956][ C0] ? text_poke_bp+0x150/0x150 [ 167.282968][ C0] ? __kasan_check_write+0x14/0x20 [ 167.282981][ C0] ? mutex_lock+0x9b/0x1c0 [ 167.283001][ C0] ? wait_for_completion_killable_timeout+0x10/0x10 [ 167.283016][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 167.283031][ C0] ? __collapse_huge_page_isolate+0x10c2/0x1170 [ 167.283046][ C0] arch_static_call_transform+0x193/0x260 [ 167.283059][ C0] ? __static_call_update+0x3b3/0x5e0 [ 167.283074][ C0] ? __collapse_huge_page_isolate+0x10c2/0x1170 [ 167.283088][ C0] __static_call_update+0x3c4/0x5e0 [ 167.283101][ C0] ? irqentry_exit+0x37/0x40 [ 167.283114][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 167.283129][ C0] ? __static_call_return0+0x10/0x10 [ 167.283144][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 167.283158][ C0] ? __SCT__tp_func_mm_collapse_huge_page+0x8/0x8 [ 167.283174][ C0] ? __static_call_update+0xa/0x5e0 [ 167.283188][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 167.283203][ C0] tracepoint_add_func+0x746/0x8e0 [ 167.283218][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 167.283233][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 167.283249][ C0] tracepoint_probe_register+0x5a/0x90 [ 167.283264][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 167.283279][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 167.283294][ C0] trace_event_reg+0x159/0x270 [ 167.283308][ C0] perf_trace_event_init+0x52d/0xa30 [ 167.283322][ C0] perf_trace_init+0x240/0x2e0 [ 167.283335][ C0] perf_tp_event_init+0x8e/0x120 [ 167.283348][ C0] perf_try_init_event+0x14a/0x430 [ 167.283362][ C0] perf_event_alloc+0xedd/0x1a20 [ 167.283376][ C0] __se_sys_perf_event_open+0x6f5/0x1bb0 [ 167.283390][ C0] ? __x64_sys_perf_event_open+0xd0/0xd0 [ 167.283404][ C0] ? sched_clock+0x9/0x10 [ 167.283416][ C0] ? sched_clock_cpu+0x18/0x3c0 [ 167.283430][ C0] __x64_sys_perf_event_open+0xbf/0xd0 [ 167.283443][ C0] x64_sys_call+0x50d/0x9a0 [ 167.283457][ C0] do_syscall_64+0x4c/0xa0 [ 167.283471][ C0] ? clear_bhb_loop+0x50/0xa0 [ 167.283483][ C0] ? clear_bhb_loop+0x50/0xa0 [ 167.283495][ C0] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 167.283510][ C0] RIP: 0033:0x7f30d889cf79 [ 167.283523][ C0] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 167.283534][ C0] RSP: 002b:00007f30d72f8028 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 167.283548][ C0] RAX: ffffffffffffffda RBX: 00007f30d8b16fa0 RCX: 00007f30d889cf79 [ 167.283558][ C0] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000200000001480 [ 167.283567][ C0] RBP: 00007f30d89337e0 R08: 0000000000000000 R09: 0000000000000000 [ 167.283576][ C0] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 167.283584][ C0] R13: 00007f30d8b17038 R14: 00007f30d8b16fa0 R15: 00007fff3ac6df28 [ 167.283596][ C0] [ 309.146031][ C0] watchdog: BUG: soft lockup - CPU#0 stuck for 266s! [syz.4.5:335] [ 309.153946][ C0] Modules linked in: [ 309.157842][ C0] CPU: 0 PID: 335 Comm: syz.4.5 Not tainted syzkaller #0 [ 309.164847][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 309.174887][ C0] RIP: 0010:__sanitizer_cov_trace_pc+0x5c/0x60 [ 309.181040][ C0] Code: 38 0b 00 00 83 fa 02 75 21 48 8b 91 40 0b 00 00 48 8b 32 48 8d 7e 01 8b 89 3c 0b 00 00 48 39 cf 73 08 48 89 44 f2 08 48 89 3a <5d> c3 66 90 55 48 89 e5 48 8b 45 08 65 48 8b 0d 20 a0 98 7e 65 8b [ 309.200631][ C0] RSP: 0018:ffffc900079e7500 EFLAGS: 00000246 [ 309.206711][ C0] RAX: ffffffff818b3c2a RBX: ffff88810dd4db70 RCX: 0000000000080000 [ 309.214669][ C0] RDX: ffffc90002720000 RSI: 000000000007ffff RDI: 0000000000080000 [ 309.222641][ C0] RBP: ffffc900079e7500 R08: ffffffff86e94aab R09: fffff52000f3ce50 [ 309.230596][ C0] R10: dffffc0000000000 R11: fffffbfff0dd2956 R12: ffff88810dd4db60 [ 309.238551][ C0] R13: ffffffff8681ead8 R14: ffff888129793240 R15: ffff88810cb7fc70 [ 309.246506][ C0] FS: 00007f30d72f86c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 309.255418][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 309.261986][ C0] CR2: 00007f3c2f845e40 CR3: 000000010d43e000 CR4: 00000000003506b0 [ 309.269954][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 309.277906][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 309.285859][ C0] Call Trace: [ 309.289119][ C0] [ 309.292036][ C0] perf_iterate_sb+0xc0a/0xd50 [ 309.296789][ C0] ? perf_event_text_poke+0x1a0/0x1a0 [ 309.302140][ C0] perf_event_text_poke+0x140/0x1a0 [ 309.307318][ C0] ? __collapse_huge_page_isolate+0x10c2/0x1170 [ 309.313716][ C0] ? perf_event_bpf_output+0x320/0x320 [ 309.319162][ C0] ? __collapse_huge_page_isolate+0x10c3/0x1170 [ 309.325378][ C0] ? __collapse_huge_page_isolate+0x10c2/0x1170 [ 309.331592][ C0] ? __collapse_huge_page_isolate+0x10c3/0x1170 [ 309.337811][ C0] ? memcpy+0x56/0x70 [ 309.341770][ C0] text_poke_bp_batch+0x357/0x600 [ 309.346773][ C0] ? text_poke_loc_init+0x5b0/0x5b0 [ 309.351949][ C0] ? _raw_spin_unlock_irqrestore+0x56/0x80 [ 309.357737][ C0] ? __collapse_huge_page_isolate+0x10c2/0x1170 [ 309.363953][ C0] ? __collapse_huge_page_isolate+0x10c2/0x1170 [ 309.370166][ C0] text_poke_bp+0xcf/0x150 [ 309.374567][ C0] ? text_poke_queue+0x180/0x180 [ 309.379496][ C0] ? __kasan_kmalloc+0xec/0x110 [ 309.384328][ C0] ? tracepoint_add_func+0x27f/0x8e0 [ 309.389595][ C0] ? tracepoint_probe_register+0x5a/0x90 [ 309.395219][ C0] __static_call_transform+0x2f2/0x510 [ 309.400666][ C0] ? __kasan_check_write+0x14/0x20 [ 309.405759][ C0] ? __collapse_huge_page_isolate+0x10c2/0x1170 [ 309.411981][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 309.420028][ C0] ? text_poke_bp+0x150/0x150 [ 309.424686][ C0] ? __kasan_check_write+0x14/0x20 [ 309.429782][ C0] ? mutex_lock+0x9b/0x1c0 [ 309.434201][ C0] ? wait_for_completion_killable_timeout+0x10/0x10 [ 309.440783][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 309.448840][ C0] ? __collapse_huge_page_isolate+0x10c2/0x1170 [ 309.455088][ C0] arch_static_call_transform+0x193/0x260 [ 309.460806][ C0] ? __static_call_update+0x3b3/0x5e0 [ 309.466159][ C0] ? __collapse_huge_page_isolate+0x10c2/0x1170 [ 309.472383][ C0] __static_call_update+0x3c4/0x5e0 [ 309.477564][ C0] ? irqentry_exit+0x37/0x40 [ 309.482132][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 309.490188][ C0] ? __static_call_return0+0x10/0x10 [ 309.495453][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 309.503497][ C0] ? __SCT__tp_func_mm_collapse_huge_page+0x8/0x8 [ 309.509899][ C0] ? __static_call_update+0xa/0x5e0 [ 309.515077][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 309.523125][ C0] tracepoint_add_func+0x746/0x8e0 [ 309.528218][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 309.536267][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 309.544313][ C0] tracepoint_probe_register+0x5a/0x90 [ 309.549753][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 309.557793][ C0] ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x340/0x340 [ 309.565837][ C0] trace_event_reg+0x159/0x270 [ 309.570597][ C0] perf_trace_event_init+0x52d/0xa30 [ 309.575869][ C0] perf_trace_init+0x240/0x2e0 [ 309.580623][ C0] perf_tp_event_init+0x8e/0x120 [ 309.585549][ C0] perf_try_init_event+0x14a/0x430 [ 309.590644][ C0] perf_event_alloc+0xedd/0x1a20 [ 309.595559][ C0] __se_sys_perf_event_open+0x6f5/0x1bb0 [ 309.601172][ C0] ? __x64_sys_perf_event_open+0xd0/0xd0 [ 309.606804][ C0] ? sched_clock+0x9/0x10 [ 309.611117][ C0] ? sched_clock_cpu+0x18/0x3c0 [ 309.615946][ C0] __x64_sys_perf_event_open+0xbf/0xd0 [ 309.621393][ C0] x64_sys_call+0x50d/0x9a0 [ 309.625921][ C0] do_syscall_64+0x4c/0xa0 [ 309.630317][ C0] ? clear_bhb_loop+0x50/0xa0 [ 309.634975][ C0] ? clear_bhb_loop+0x50/0xa0 [ 309.639635][ C0] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 309.645511][ C0] RIP: 0033:0x7f30d889cf79 [ 309.649926][ C0] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 309.669536][ C0] RSP: 002b:00007f30d72f8028 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 309.677948][ C0] RAX: ffffffffffffffda RBX: 00007f30d8b16fa0 RCX: 00007f30d889cf79 [ 309.685908][ C0] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000200000001480 [ 309.693863][ C0] RBP: 00007f30d89337e0 R08: 0000000000000000 R09: 0000000000000000 [ 309.701818][ C0] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 309.709803][ C0] R13: 00007f30d8b17038 R14: 00007f30d8b16fa0 R15: 00007fff3ac6df28 [ 309.717765][ C0] [ 309.720772][ C0] Sending NMI from CPU 0 to CPUs 1: [ 309.725972][ C1] NMI backtrace for cpu 1 skipped: idling at default_idle+0xf/0x20 [ 309.735590][ T30] kauditd_printk_skb: 34 callbacks suppressed SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 309.735602][ T30] audit: type=1400 audit(1770904335.616:108): avc: denied { read } for pid=83 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 309.806635][ T30] audit: type=1400 audit(1770904335.616:109): avc: denied { search } for pid=83 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 309.828801][ T30] audit: type=1400 audit(1770904335.616:110): avc: denied { write } for pid=83 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 309.850222][ T30] audit: type=1400 audit(1770904335.616:111): avc: denied { add_name } for pid=83 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 309.870817][ T30] audit: type=1400 audit(1770904335.616:112): avc: denied { create } for pid=83 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 309.891370][ T30] audit: type=1400 audit(1770904335.616:113): avc: denied { append open } for pid=83 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 309.914320][ T30] audit: type=1400 audit(1770904335.616:114): avc: denied { getattr } for pid=83 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1