ss permissive=1
[ 17.239421][ T28] audit: type=1400 audit(1769079341.441:63): avc: denied { siginh } for pid=225 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 212.124014][ T271] sftp-server (271) used greatest stack depth: 22496 bytes left
[ 212.138662][ T270] sshd-session (270) used greatest stack depth: 21216 bytes left
Warning: Permanently added '10.128.0.160' (ED25519) to the list of known hosts.
2026/01/22 10:59:04 parsed 1 programs
[ 219.839325][ T28] audit: type=1400 audit(1769079544.051:64): avc: denied { node_bind } for pid=283 comm="syz-execprog" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[ 219.860220][ T28] audit: type=1400 audit(1769079544.051:65): avc: denied { module_request } for pid=283 comm="syz-execprog" kmod="net-pf-2-proto-262-type-1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[ 220.970954][ T28] audit: type=1400 audit(1769079545.181:66): avc: denied { mounton } for pid=289 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2023 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[ 220.974572][ T289] cgroup: Unknown subsys name 'net'
[ 220.993779][ T28] audit: type=1400 audit(1769079545.181:67): avc: denied { mount } for pid=289 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 221.021158][ T28] audit: type=1400 audit(1769079545.211:68): avc: denied { unmount } for pid=289 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 221.021555][ T289] cgroup: Unknown subsys name 'devices'
[ 221.165687][ T289] cgroup: Unknown subsys name 'hugetlb'
[ 221.171394][ T289] cgroup: Unknown subsys name 'rlimit'
[ 221.284782][ T28] audit: type=1400 audit(1769079545.501:69): avc: denied { setattr } for pid=289 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=258 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 221.308023][ T28] audit: type=1400 audit(1769079545.501:70): avc: denied { create } for pid=289 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 221.328482][ T28] audit: type=1400 audit(1769079545.501:71): avc: denied { write } for pid=289 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 221.348919][ T28] audit: type=1400 audit(1769079545.501:72): avc: denied { read } for pid=289 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 221.364722][ T293] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped).
Setting up swapspace version 1, size = 127995904 bytes
[ 221.369882][ T28] audit: type=1400 audit(1769079545.501:73): avc: denied { mounton } for pid=289 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[ 221.411029][ T289] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 222.109154][ T297] request_module fs-gadgetfs succeeded, but still no fs?
[ 222.780687][ T343] bridge0: port 1(bridge_slave_0) entered blocking state
[ 222.787831][ T343] bridge0: port 1(bridge_slave_0) entered disabled state
[ 222.795404][ T343] device bridge_slave_0 entered promiscuous mode
[ 222.802298][ T343] bridge0: port 2(bridge_slave_1) entered blocking state
[ 222.809406][ T343] bridge0: port 2(bridge_slave_1) entered disabled state
[ 222.816940][ T343] device bridge_slave_1 entered promiscuous mode
[ 222.864084][ T343] bridge0: port 2(bridge_slave_1) entered blocking state
[ 222.871176][ T343] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 222.878514][ T343] bridge0: port 1(bridge_slave_0) entered blocking state
[ 222.885626][ T343] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 222.907839][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 222.915671][ T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 222.922933][ T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 222.932351][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 222.940629][ T8] bridge0: port 1(bridge_slave_0) entered blocking state
[ 222.947741][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 222.956568][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 222.964872][ T8] bridge0: port 2(bridge_slave_1) entered blocking state
[ 222.971915][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 222.984765][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 222.994677][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 223.015801][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 223.027621][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 223.036148][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 223.043834][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 223.058073][ T343] device veth0_vlan entered promiscuous mode
[ 223.068608][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 223.077965][ T343] device veth1_macvtap entered promiscuous mode
[ 223.087485][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 223.097569][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
2026/01/22 10:59:07 executed programs: 0
[ 223.542791][ T366] bridge0: port 1(bridge_slave_0) entered blocking state
[ 223.551052][ T366] bridge0: port 1(bridge_slave_0) entered disabled state
[ 223.558588][ T366] device bridge_slave_0 entered promiscuous mode
[ 223.567061][ T366] bridge0: port 2(bridge_slave_1) entered blocking state
[ 223.574213][ T366] bridge0: port 2(bridge_slave_1) entered disabled state
[ 223.581876][ T366] device bridge_slave_1 entered promiscuous mode
[ 223.629827][ T366] bridge0: port 2(bridge_slave_1) entered blocking state
[ 223.636910][ T366] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 223.644250][ T366] bridge0: port 1(bridge_slave_0) entered blocking state
[ 223.651306][ T366] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 223.672194][ T361] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 223.679875][ T361] bridge0: port 1(bridge_slave_0) entered disabled state
[ 223.687644][ T361] bridge0: port 2(bridge_slave_1) entered disabled state
[ 223.698432][ T361] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 223.707086][ T361] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 223.715365][ T361] bridge0: port 1(bridge_slave_0) entered blocking state
[ 223.722399][ T361] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 223.731234][ T361] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 223.739787][ T361] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 223.748108][ T361] bridge0: port 2(bridge_slave_1) entered blocking state
[ 223.755157][ T361] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 223.767325][ T361] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 223.775446][ T361] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 223.785837][ T361] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 223.793959][ T361] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 223.807506][ T361] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 223.816190][ T361] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 223.827662][ T361] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 223.835808][ T361] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 223.849940][ T366] device veth0_vlan entered promiscuous mode
[ 223.856410][ T361] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 223.864149][ T361] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 223.876133][ T361] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 223.884487][ T361] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 223.894547][ T366] device veth1_macvtap entered promiscuous mode
[ 223.908774][ T361] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 223.916575][ T361] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 223.925090][ T361] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 223.934745][ T361] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 223.943111][ T361] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 324.023439][ C1] rcu: INFO: rcu_preempt self-detected stall on CPU
[ 324.031713][ C1] rcu: 1-...!: (10000 ticks this GP) idle=fffc/1/0x4000000000000000 softirq=2903/2903 fqs=39
[ 324.042371][ C1] (t=10002 jiffies g=1325 q=154 ncpus=2)
[ 324.048403][ C1] rcu: rcu_preempt kthread timer wakeup didn't happen for 9924 jiffies! g1325 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402
[ 324.062934][ C1] rcu: Possible timer handling issue on cpu=0 timer-softirq=826
[ 324.071744][ C1] rcu: rcu_preempt kthread starved for 9927 jiffies! g1325 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=0
[ 324.084544][ C1] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 324.096264][ C1] rcu: RCU grace-period kthread stack dump:
[ 324.102870][ C1] task:rcu_preempt state:I stack:28064 pid:14 ppid:2 flags:0x00004000
[ 324.112809][ C1] Call Trace:
[ 324.116112][ C1]
[ 324.119143][ C1] __schedule+0xba6/0x1500
[ 324.124116][ C1] ? release_firmware_map_entry+0x190/0x190
[ 324.130659][ C1] schedule+0xbd/0x170
[ 324.134757][ C1] schedule_timeout+0x159/0x340
[ 324.140634][ C1] ? __cfi_schedule_timeout+0x10/0x10
[ 324.146726][ C1] ? _raw_spin_lock_irqsave+0xc2/0x130
[ 324.153259][ C1] ? __cfi_process_timeout+0x10/0x10
[ 324.159272][ C1] ? prepare_to_swait_event+0x308/0x320
[ 324.165763][ C1] rcu_gp_fqs_loop+0x2e9/0x10c0
[ 324.170997][ C1] ? __cfi_rcu_implicit_dynticks_qs+0x10/0x10
[ 324.177268][ C1] ? rcu_gp_init+0xf30/0xf30
[ 324.183253][ C1] ? _raw_spin_unlock_irqrestore+0x5a/0x80
[ 324.191197][ C1] ? finish_swait+0x17d/0x1b0
[ 324.196166][ C1] rcu_gp_kthread+0x99/0x390
[ 324.200796][ C1] ? __cfi_rcu_gp_kthread+0x10/0x10
[ 324.207198][ C1] ? __kasan_check_read+0x11/0x20
[ 324.212547][ C1] ? __kthread_parkme+0x142/0x180
[ 324.218815][ C1] kthread+0x281/0x320
[ 324.223012][ C1] ? __cfi_rcu_gp_kthread+0x10/0x10
[ 324.228334][ C1] ? __cfi_kthread+0x10/0x10
[ 324.233584][ C1] ret_from_fork+0x1f/0x30
[ 324.238558][ C1]
[ 324.241965][ C1] rcu: Stack dump where RCU GP kthread last ran:
[ 324.250435][ C1] Sending NMI from CPU 1 to CPUs 0:
[ 324.256073][ C0] NMI backtrace for cpu 0
[ 324.256090][ C0] CPU: 0 PID: 377 Comm: syz.2.17 Not tainted syzkaller #0
[ 324.256109][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 324.256118][ C0] RIP: 0010:__pv_queued_spin_lock_slowpath+0x591/0xc40
[ 324.256156][ C0] Code: 0f 85 33 01 00 00 41 c6 45 00 00 41 0f b6 04 17 84 c0 0f 85 46 01 00 00 48 8b 44 24 10 c6 00 01 41 bd 00 80 ff ff eb 07 f3 90 <41> ff c5 74 5b 41 0f b6 04 16 84 c0 75 35 80 3b 00 75 eb 48 89 df
[ 324.256170][ C0] RSP: 0018:ffffc90000a97940 EFLAGS: 00000206
[ 324.256186][ C0] RAX: 0000000000000000 RBX: ffff88810e82d998 RCX: ffffffff84ffa742
[ 324.256200][ C0] RDX: dffffc0000000000 RSI: 0000000000000003 RDI: ffff88810e82d998
[ 324.256212][ C0] RBP: ffffc90000a97a30 R08: ffff88810e82d998 R09: 1ffff11021d05b33
[ 324.256225][ C0] R10: dffffc0000000000 R11: ffffed1021d05b34 R12: 1ffff1103ee00001
[ 324.256237][ C0] R13: 00000000ffffb80b R14: 1ffff11021d05b33 R15: 1ffff11021d05b33
[ 324.256251][ C0] FS: 0000555576a3a500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 324.256266][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 324.256278][ C0] CR2: 00007f19757e8400 CR3: 000000012e1a6000 CR4: 00000000003506b0
[ 324.256294][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 324.256304][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 324.256314][ C0] Call Trace:
[ 324.256320][ C0]
[ 324.256329][ C0] ? __cfi___pv_queued_spin_lock_slowpath+0x10/0x10
[ 324.256353][ C0] ? stack_trace_save+0xa6/0xf0
[ 324.256376][ C0] ? _raw_spin_unlock_irqrestore+0x5a/0x80
[ 324.256397][ C0] ? __stack_depot_save+0x445/0x480
[ 324.256415][ C0] queued_spin_lock_slowpath+0x47/0x50
[ 324.256443][ C0] _raw_spin_lock_bh+0xe4/0xf0
[ 324.256462][ C0] ? __cfi__raw_spin_lock_bh+0x10/0x10
[ 324.256481][ C0] ? __kasan_record_aux_stack+0xb6/0xc0
[ 324.256507][ C0] ? task_work_add+0x7f/0x330
[ 324.256527][ C0] ? fput+0xe1/0x1a0
[ 324.256546][ C0] ? filp_close+0x111/0x160
[ 324.256566][ C0] ? __close_range+0x300/0x4f0
[ 324.256582][ C0] ? x64_sys_call+0x43b/0x9a0
[ 324.256602][ C0] ? do_syscall_64+0x4c/0xa0
[ 324.256622][ C0] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 324.256647][ C0] lock_sock_nested+0x90/0x2a0
[ 324.256673][ C0] ? __cfi_lock_sock_nested+0x10/0x10
[ 324.256700][ C0] ? __cfi_locks_remove_file+0x10/0x10
[ 324.256718][ C0] tipc_release+0xb2/0x1670
[ 324.256737][ C0] ? rwsem_write_trylock+0x136/0x300
[ 324.256763][ C0] ? __cfi_tipc_release+0x10/0x10
[ 324.256784][ C0] sock_close+0xf1/0x290
[ 324.256809][ C0] ? __cfi_sock_close+0x10/0x10
[ 324.256834][ C0] __fput+0x1fc/0x8f0
[ 324.256856][ C0] ____fput+0x15/0x20
[ 324.256875][ C0] task_work_run+0x1e1/0x250
[ 324.256896][ C0] ? __cfi_task_work_run+0x10/0x10
[ 324.256916][ C0] ? __cfi___close_range+0x10/0x10
[ 324.256933][ C0] exit_to_user_mode_loop+0x9b/0xb0
[ 324.256959][ C0] exit_to_user_mode_prepare+0x87/0xd0
[ 324.256977][ C0] syscall_exit_to_user_mode+0x1a/0x30
[ 324.257003][ C0] do_syscall_64+0x58/0xa0
[ 324.257022][ C0] ? clear_bhb_loop+0x30/0x80
[ 324.257046][ C0] ? clear_bhb_loop+0x30/0x80
[ 324.257070][ C0] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 324.257094][ C0] RIP: 0033:0x7f197579acb9
[ 324.257117][ C0] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 324.257130][ C0] RSP: 002b:00007ffc516b9bd8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 324.257147][ C0] RAX: 0000000000000000 RBX: 00007f1975a17da0 RCX: 00007f197579acb9
[ 324.257158][ C0] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[ 324.257168][ C0] RBP: 00007f1975a17da0 R08: 0000000000000006 R09: 0000000000000000
[ 324.257178][ C0] R10: 00007f1975a17cb0 R11: 0000000000000246 R12: 0000000000036e11
[ 324.257189][ C0] R13: 00007f1975a1609c R14: 0000000000036b36 R15: 00007f1975a16090
[ 324.257205][ C0]
[ 324.258092][ C1] CPU: 1 PID: 378 Comm: syz.2.17 Not tainted syzkaller #0
[ 324.687365][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 324.698068][ C1] RIP: 0010:tipc_sk_lookup+0x58e/0x620
[ 324.704269][ C1] Code: 40 4a c7 04 30 00 00 00 00 65 48 8b 04 25 28 00 00 00 48 3b 84 24 a0 00 00 00 75 78 4c 89 e0 48 8d 65 d8 5b 41 5c 41 5d 41 5e <41> 5f 5d c3 e8 d9 fa 98 fc be 02 00 00 00 eb 0a e8 cd fa 98 fc be
[ 324.727379][ C1] RSP: 0018:ffffc90000aa6968 EFLAGS: 00000246
[ 324.734163][ C1] RAX: ffff88810e82d900 RBX: ffff8881133dd780 RCX: ffff88811405a880
[ 324.743364][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff88811405a880
[ 324.751946][ C1] RBP: ffffc90000aa6970 R08: ffff88810e82d983 R09: 1ffff11021d05b30
[ 324.762023][ C1] R10: dffffc0000000000 R11: ffffed1021d05b31 R12: ffffc90000aa6dc0
[ 324.771503][ C1] R13: dffffc0000000000 R14: 00000000ef248512 R15: ffff888113a790de
[ 324.780437][ C1] FS: 00007f19766356c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 324.790778][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 324.798122][ C1] CR2: 0000200000006100 CR3: 000000012e1a6000 CR4: 00000000003506a0
[ 324.807676][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 324.816276][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 324.825355][ C1] Call Trace:
[ 324.828683][ C1]
[ 324.832151][ C1] tipc_sk_rcv+0x416/0x2c10
[ 324.836772][ C1] ? __stack_depot_save+0x445/0x480
[ 324.842929][ C1] ? kasan_set_track+0x60/0x70
[ 324.848579][ C1] ? kasan_set_track+0x4b/0x70
[ 324.855130][ C1] ? kasan_save_free_info+0x31/0x50
[ 324.860878][ C1] ? ____kasan_slab_free+0x132/0x180
[ 324.866173][ C1] ? __kasan_slab_free+0x11/0x20
[ 324.871652][ C1] ? kmem_cache_free+0x12d/0x300
[ 324.876775][ C1] ? kfree_skbmem+0x10c/0x180
[ 324.881637][ C1] ? tipc_msg_reverse+0x6db/0x940
[ 324.886870][ C1] ? tipc_sk_rcv+0x1ce3/0x2c10
[ 324.891846][ C1] ? __release_sock+0x154/0x380
[ 324.897330][ C1] ? __fput+0x1fc/0x8f0
[ 324.901519][ C1] ? syscall_exit_to_user_mode+0x1a/0x30
[ 324.907285][ C1] ? do_syscall_64+0x58/0xa0
[ 324.911967][ C1] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 324.918486][ C1] ? __cfi_tipc_sk_rcv+0x10/0x10
[ 324.923464][ C1] tipc_node_xmit+0x26c/0xd90
[ 324.928171][ C1] ? kmem_cache_free+0x12d/0x300
[ 324.933137][ C1] ? ____kasan_slab_free+0x13d/0x180
[ 324.938878][ C1] ? __cfi_tipc_node_xmit+0x10/0x10
[ 324.944277][ C1] ? slab_free_freelist_hook+0xc2/0x190
[ 324.949959][ C1] ? kmem_cache_free+0x12d/0x300
[ 324.955452][ C1] tipc_node_xmit_skb+0xf7/0x150
[ 324.961045][ C1] ? kfree_skb_reason+0xdc/0x230
[ 324.966714][ C1] ? __cfi_tipc_node_xmit_skb+0x10/0x10
[ 324.972468][ C1] ? trace_tipc_sk_rej_msg+0x25/0x150
[ 324.980369][ C1] tipc_sk_rcv+0x1d63/0x2c10
[ 324.985253][ C1] ? kvm_sched_clock_read+0x18/0x40
[ 324.991537][ C1] ? sched_clock_cpu+0x6e/0x260
[ 324.996615][ C1] ? __cfi_sched_clock_cpu+0x10/0x10
[ 325.002584][ C1] ? ___slab_alloc+0x6bd/0xb20
[ 325.007813][ C1] ? __cfi_tipc_sk_rcv+0x10/0x10
[ 325.016183][ C1] tipc_node_xmit+0x26c/0xd90
[ 325.022233][ C1] ? is_bpf_text_address+0x177/0x190
[ 325.028325][ C1] ? __cfi_tipc_node_xmit+0x10/0x10
[ 325.033721][ C1] ? kernel_text_address+0xa0/0xd0
[ 325.040360][ C1] ? __kernel_text_address+0xd/0x30
[ 325.046221][ C1] ? __kasan_check_write+0x14/0x20
[ 325.051604][ C1] ? _raw_spin_lock_irqsave+0xc2/0x130
[ 325.058149][ C1] tipc_sk_filter_rcv+0x158e/0x2cf0
[ 325.065858][ C1] ? tipc_sk_publish+0x470/0x470
[ 325.071097][ C1] ? __kasan_check_write+0x14/0x20
[ 325.076914][ C1] ? _raw_spin_lock_bh+0x94/0xf0
[ 325.082488][ C1] tipc_sk_rcv+0x7ed/0x2c10
[ 325.087538][ C1] ? kmem_cache_free+0x12d/0x300
[ 325.092517][ C1] ? tipc_msg_reverse+0x6db/0x940
[ 325.097736][ C1] ? __cfi_tipc_sk_rcv+0x10/0x10
[ 325.103400][ C1] ? tipc_sk_filter_rcv+0x2a82/0x2cf0
[ 325.109716][ C1] tipc_node_xmit+0x26c/0xd90
[ 325.114511][ C1] ? __cfi_tipc_node_xmit+0x10/0x10
[ 325.119730][ C1] tipc_node_distr_xmit+0x2a3/0x3b0
[ 325.125516][ C1] ? __cfi_tipc_node_distr_xmit+0x10/0x10
[ 325.131364][ C1] tipc_sk_backlog_rcv+0x17d/0x210
[ 325.137488][ C1] ? __cfi_tipc_sk_backlog_rcv+0x10/0x10
[ 325.143861][ C1] ? _raw_spin_lock_irqsave+0xc2/0x130
[ 325.149549][ C1] __release_sock+0x154/0x380
[ 325.154862][ C1] release_sock+0x60/0x1c0
[ 325.159675][ C1] tipc_release+0xd4a/0x1670
[ 325.165352][ C1] ? __cfi_tipc_release+0x10/0x10
[ 325.171392][ C1] sock_close+0xf1/0x290
[ 325.176349][ C1] ? __cfi_sock_close+0x10/0x10
[ 325.182113][ C1] __fput+0x1fc/0x8f0
[ 325.186309][ C1] ____fput+0x15/0x20
[ 325.190739][ C1] task_work_run+0x1e1/0x250
[ 325.195434][ C1] ? __cfi_task_work_run+0x10/0x10
[ 325.201244][ C1] ? __kasan_check_write+0x14/0x20
[ 325.208393][ C1] exit_to_user_mode_loop+0x9b/0xb0
[ 325.214060][ C1] exit_to_user_mode_prepare+0x87/0xd0
[ 325.220017][ C1] syscall_exit_to_user_mode+0x1a/0x30
[ 325.226306][ C1] do_syscall_64+0x58/0xa0
[ 325.232604][ C1] ? clear_bhb_loop+0x30/0x80
[ 325.238288][ C1] ? clear_bhb_loop+0x30/0x80
[ 325.244045][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 325.250335][ C1] RIP: 0033:0x7f197579acb9
[ 325.255553][ C1] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 325.277551][ C1] RSP: 002b:00007f1976635028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 325.288324][ C1] RAX: 00000000000203a0 RBX: 00007f1975a15fa0 RCX: 00007f197579acb9
[ 325.298318][ C1] RDX: 0000000000000000 RSI: 00002000000003c0 RDI: 0000000000000003
[ 325.309028][ C1] RBP: 00007f1975808bf7 R08: 0000000000000000 R09: 0000000000000000
[ 325.317464][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 325.325549][ C1] R13: 00007f1975a16038 R14: 00007f1975a15fa0 R15: 00007ffc516b9a78
[ 325.333555][ C1]
[ 463.243136][ C1] watchdog: BUG: soft lockup - CPU#1 stuck for 225s! [syz.2.17:378]
[ 463.251190][ C1] Modules linked in:
[ 463.255086][ C1] CPU: 1 PID: 378 Comm: syz.2.17 Not tainted syzkaller #0
[ 463.262208][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 463.272260][ C1] RIP: 0010:tipc_sk_rcv+0x1a14/0x2c10
[ 463.277662][ C1] Code: 00 49 8d 7f 30 48 89 f8 48 c1 e8 03 42 80 3c 28 00 74 05 e8 ee 3e de fc 49 8b 7c 24 30 48 8d b4 24 c0 01 00 00 e8 fc 03 ff ff <49> 83 ef 80 4c 89 ff be 04 00 00 00 e8 6b 41 de fc bb ff ff ff ff
[ 463.297290][ C1] RSP: 0018:ffffc90000aa6980 EFLAGS: 00000246
[ 463.303390][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff88811405a880
[ 463.311377][ C1] RDX: 0000000000000000 RSI: ffffc90000aa6b40 RDI: ffff8881133dd780
[ 463.319360][ C1] RBP: ffffc90000aa6c10 R08: ffff88810e82d99b R09: 1ffff11021d05b33
[ 463.327369][ C1] R10: dffffc0000000000 R11: ffffed1021d05b34 R12: ffff88810e82d900
[ 463.335356][ C1] R13: dffffc0000000000 R14: ffffc90000aa6dd0 R15: ffff88810e82d900
[ 463.343335][ C1] FS: 00007f19766356c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 463.352295][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 463.358921][ C1] CR2: 0000200000006100 CR3: 000000012e1a6000 CR4: 00000000003506a0
[ 463.366938][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 463.374922][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 463.382907][ C1] Call Trace:
[ 463.386190][ C1]
[ 463.389131][ C1] ? __stack_depot_save+0x445/0x480
[ 463.394338][ C1] ? kasan_set_track+0x60/0x70
[ 463.399112][ C1] ? kasan_set_track+0x4b/0x70
[ 463.403884][ C1] ? kasan_save_free_info+0x31/0x50
[ 463.409096][ C1] ? ____kasan_slab_free+0x132/0x180
[ 463.414391][ C1] ? __kasan_slab_free+0x11/0x20
[ 463.419340][ C1] ? kmem_cache_free+0x12d/0x300
[ 463.424289][ C1] ? kfree_skbmem+0x10c/0x180
[ 463.428977][ C1] ? tipc_msg_reverse+0x6db/0x940
[ 463.434015][ C1] ? tipc_sk_rcv+0x1ce3/0x2c10
[ 463.438817][ C1] ? __release_sock+0x154/0x380
[ 463.443689][ C1] ? __fput+0x1fc/0x8f0
[ 463.447862][ C1] ? syscall_exit_to_user_mode+0x1a/0x30
[ 463.453518][ C1] ? do_syscall_64+0x58/0xa0
[ 463.458122][ C1] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 463.464205][ C1] ? __cfi_tipc_sk_rcv+0x10/0x10
[ 463.469181][ C1] tipc_node_xmit+0x26c/0xd90
[ 463.473874][ C1] ? kmem_cache_free+0x12d/0x300
[ 463.478829][ C1] ? ____kasan_slab_free+0x13d/0x180
[ 463.484133][ C1] ? __cfi_tipc_node_xmit+0x10/0x10
[ 463.489347][ C1] ? slab_free_freelist_hook+0xc2/0x190
[ 463.494901][ C1] ? kmem_cache_free+0x12d/0x300
[ 463.499855][ C1] tipc_node_xmit_skb+0xf7/0x150
[ 463.504806][ C1] ? kfree_skb_reason+0xdc/0x230
[ 463.509753][ C1] ? __cfi_tipc_node_xmit_skb+0x10/0x10
[ 463.515314][ C1] ? trace_tipc_sk_rej_msg+0x25/0x150
[ 463.520702][ C1] tipc_sk_rcv+0x1d63/0x2c10
[ 463.525314][ C1] ? kvm_sched_clock_read+0x18/0x40
[ 463.530553][ C1] ? sched_clock_cpu+0x6e/0x260
[ 463.535437][ C1] ? __cfi_sched_clock_cpu+0x10/0x10
[ 463.540740][ C1] ? ___slab_alloc+0x6bd/0xb20
[ 463.545513][ C1] ? __cfi_tipc_sk_rcv+0x10/0x10
[ 463.550546][ C1] tipc_node_xmit+0x26c/0xd90
[ 463.555235][ C1] ? is_bpf_text_address+0x177/0x190
[ 463.560557][ C1] ? __cfi_tipc_node_xmit+0x10/0x10
[ 463.565769][ C1] ? kernel_text_address+0xa0/0xd0
[ 463.570909][ C1] ? __kernel_text_address+0xd/0x30
[ 463.576126][ C1] ? __kasan_check_write+0x14/0x20
[ 463.581244][ C1] ? _raw_spin_lock_irqsave+0xc2/0x130
[ 463.586715][ C1] tipc_sk_filter_rcv+0x158e/0x2cf0
[ 463.591937][ C1] ? tipc_sk_publish+0x470/0x470
[ 463.596917][ C1] ? __kasan_check_write+0x14/0x20
[ 463.602039][ C1] ? _raw_spin_lock_bh+0x94/0xf0
[ 463.607073][ C1] tipc_sk_rcv+0x7ed/0x2c10
[ 463.611631][ C1] ? kmem_cache_free+0x12d/0x300
[ 463.616583][ C1] ? tipc_msg_reverse+0x6db/0x940
[ 463.621637][ C1] ? __cfi_tipc_sk_rcv+0x10/0x10
[ 463.626588][ C1] ? tipc_sk_filter_rcv+0x2a82/0x2cf0
[ 463.631973][ C1] tipc_node_xmit+0x26c/0xd90
[ 463.636664][ C1] ? __cfi_tipc_node_xmit+0x10/0x10
[ 463.641883][ C1] tipc_node_distr_xmit+0x2a3/0x3b0
[ 463.647092][ C1] ? __cfi_tipc_node_distr_xmit+0x10/0x10
[ 463.652830][ C1] tipc_sk_backlog_rcv+0x17d/0x210
[ 463.657949][ C1] ? __cfi_tipc_sk_backlog_rcv+0x10/0x10
[ 463.663602][ C1] ? _raw_spin_lock_irqsave+0xc2/0x130
[ 463.669079][ C1] __release_sock+0x154/0x380
[ 463.673786][ C1] release_sock+0x60/0x1c0
[ 463.678216][ C1] tipc_release+0xd4a/0x1670
[ 463.682816][ C1] ? __cfi_tipc_release+0x10/0x10
[ 463.687855][ C1] sock_close+0xf1/0x290
[ 463.692120][ C1] ? __cfi_sock_close+0x10/0x10
[ 463.696986][ C1] __fput+0x1fc/0x8f0
[ 463.701070][ C1] ____fput+0x15/0x20
[ 463.705058][ C1] task_work_run+0x1e1/0x250
[ 463.709658][ C1] ? __cfi_task_work_run+0x10/0x10
[ 463.714776][ C1] ? __kasan_check_write+0x14/0x20
[ 463.719921][ C1] exit_to_user_mode_loop+0x9b/0xb0
[ 463.725126][ C1] exit_to_user_mode_prepare+0x87/0xd0
[ 463.730593][ C1] syscall_exit_to_user_mode+0x1a/0x30
[ 463.736089][ C1] do_syscall_64+0x58/0xa0
[ 463.740516][ C1] ? clear_bhb_loop+0x30/0x80
[ 463.745207][ C1] ? clear_bhb_loop+0x30/0x80
[ 463.749917][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 463.755832][ C1] RIP: 0033:0x7f197579acb9
[ 463.760255][ C1] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 463.779867][ C1] RSP: 002b:00007f1976635028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 463.788287][ C1] RAX: 00000000000203a0 RBX: 00007f1975a15fa0 RCX: 00007f197579acb9
[ 463.796273][ C1] RDX: 0000000000000000 RSI: 00002000000003c0 RDI: 0000000000000003
[ 463.804276][ C1] RBP: 00007f1975808bf7 R08: 0000000000000000 R09: 0000000000000000
[ 463.812260][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 463.820230][ C1] R13: 00007f1975a16038 R14: 00007f1975a15fa0 R15: 00007ffc516b9a78
[ 463.828215][ C1]
[ 463.831246][ C1] Sending NMI from CPU 1 to CPUs 0:
[ 463.836500][ C0] NMI backtrace for cpu 0
[ 463.836510][ C0] CPU: 0 PID: 377 Comm: syz.2.17 Not tainted syzkaller #0
[ 463.836526][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 463.836536][ C0] RIP: 0010:__pv_queued_spin_lock_slowpath+0x591/0xc40
[ 463.836567][ C0] Code: 0f 85 33 01 00 00 41 c6 45 00 00 41 0f b6 04 17 84 c0 0f 85 46 01 00 00 48 8b 44 24 10 c6 00 01 41 bd 00 80 ff ff eb 07 f3 90 <41> ff c5 74 5b 41 0f b6 04 16 84 c0 75 35 80 3b 00 75 eb 48 89 df
[ 463.836581][ C0] RSP: 0018:ffffc90000a97940 EFLAGS: 00000206
[ 463.836596][ C0] RAX: 0000000000000000 RBX: ffff88810e82d998 RCX: ffffffff84ffa742
[ 463.836608][ C0] RDX: dffffc0000000000 RSI: 0000000000000003 RDI: ffff88810e82d998
[ 463.836620][ C0] RBP: ffffc90000a97a30 R08: ffff88810e82d998 R09: 1ffff11021d05b33
[ 463.836633][ C0] R10: dffffc0000000000 R11: ffffed1021d05b34 R12: 1ffff1103ee00001
[ 463.836645][ C0] R13: 00000000ffffc529 R14: 1ffff11021d05b33 R15: 1ffff11021d05b33
[ 463.836658][ C0] FS: 0000555576a3a500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 463.836673][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 463.836685][ C0] CR2: 00007f19757e8400 CR3: 000000012e1a6000 CR4: 00000000003506b0
[ 463.836701][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 463.836711][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 463.836721][ C0] Call Trace:
[ 463.836727][ C0]
[ 463.836734][ C0] ? __cfi___pv_queued_spin_lock_slowpath+0x10/0x10
[ 463.836760][ C0] ? stack_trace_save+0xa6/0xf0
[ 463.836782][ C0] ? _raw_spin_unlock_irqrestore+0x5a/0x80
[ 463.836803][ C0] ? __stack_depot_save+0x445/0x480
[ 463.836822][ C0] queued_spin_lock_slowpath+0x47/0x50
[ 463.836850][ C0] _raw_spin_lock_bh+0xe4/0xf0
[ 463.836869][ C0] ? __cfi__raw_spin_lock_bh+0x10/0x10
[ 463.836888][ C0] ? __kasan_record_aux_stack+0xb6/0xc0
[ 463.836914][ C0] ? task_work_add+0x7f/0x330
[ 463.836934][ C0] ? fput+0xe1/0x1a0
[ 463.836953][ C0] ? filp_close+0x111/0x160
[ 463.836974][ C0] ? __close_range+0x300/0x4f0
[ 463.836989][ C0] ? x64_sys_call+0x43b/0x9a0
[ 463.837017][ C0] ? do_syscall_64+0x4c/0xa0
[ 463.837036][ C0] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 463.837061][ C0] lock_sock_nested+0x90/0x2a0
[ 463.837086][ C0] ? __cfi_lock_sock_nested+0x10/0x10
[ 463.837113][ C0] ? __cfi_locks_remove_file+0x10/0x10
[ 463.837130][ C0] tipc_release+0xb2/0x1670
[ 463.837154][ C0] ? rwsem_write_trylock+0x136/0x300
[ 463.837180][ C0] ? __cfi_tipc_release+0x10/0x10
[ 463.837200][ C0] sock_close+0xf1/0x290
[ 463.837225][ C0] ? __cfi_sock_close+0x10/0x10
[ 463.837250][ C0] __fput+0x1fc/0x8f0
[ 463.837272][ C0] ____fput+0x15/0x20
[ 463.837291][ C0] task_work_run+0x1e1/0x250
[ 463.837325][ C0] ? __cfi_task_work_run+0x10/0x10
[ 463.837348][ C0] ? __cfi___close_range+0x10/0x10
[ 463.837374][ C0] exit_to_user_mode_loop+0x9b/0xb0
[ 463.837392][ C0] exit_to_user_mode_prepare+0x87/0xd0
[ 463.837410][ C0] syscall_exit_to_user_mode+0x1a/0x30
[ 463.837436][ C0] do_syscall_64+0x58/0xa0
[ 463.837455][ C0] ? clear_bhb_loop+0x30/0x80
[ 463.837479][ C0] ? clear_bhb_loop+0x30/0x80
[ 463.837504][ C0] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 463.837533][ C0] RIP: 0033:0x7f197579acb9
[ 463.837547][ C0] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 463.837560][ C0] RSP: 002b:00007ffc516b9bd8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 463.837576][ C0] RAX: 0000000000000000 RBX: 00007f1975a17da0 RCX: 00007f197579acb9
[ 463.837588][ C0] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[ 463.837598][ C0] RBP: 00007f1975a17da0 R08: 0000000000000006 R09: 0000000000000000
[ 463.837608][ C0] R10: 00007f1975a17cb0 R11: 0000000000000246 R12: 0000000000036e11
[ 463.837619][ C0] R13: 00007f1975a1609c R14: 0000000000036b36 R15: 00007f1975a16090
[ 463.837633][ C0]