Warning: Permanently added '10.128.10.11' (ECDSA) to the list of known hosts. executing program executing program syzkaller login: [ 497.712528][ T8494] IPVS: ftp: loaded support on port[0] = 21 [ 657.454357][ T1651] INFO: task kworker/u4:8:376 blocked for more than 143 seconds. [ 657.462305][ T1651] Not tainted 5.10.0-rc4-syzkaller #0 [ 657.472422][ T1651] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 657.482316][ T1651] task:kworker/u4:8 state:D stack:23424 pid: 376 ppid: 2 flags:0x00004000 [ 657.492794][ T1651] Workqueue: tc_filter_workqueue tcindex_partial_destroy_work [ 657.501254][ T1651] Call Trace: [ 657.505438][ T1651] __schedule+0x893/0x2130 [ 657.509876][ T1651] ? io_schedule_timeout+0x140/0x140 [ 657.516489][ T1651] schedule+0xcf/0x270 [ 657.520575][ T1651] schedule_preempt_disabled+0xf/0x20 [ 657.527124][ T1651] __mutex_lock+0x3e2/0x10e0 [ 657.531730][ T1651] ? tcindex_partial_destroy_work+0x13/0x50 [ 657.538893][ T1651] ? mutex_lock_io_nested+0xf60/0xf60 [ 657.545142][ T1651] ? lock_release+0x710/0x710 [ 657.549858][ T1651] tcindex_partial_destroy_work+0x13/0x50 [ 657.556913][ T1651] process_one_work+0x933/0x15a0 [ 657.561869][ T1651] ? lock_release+0x710/0x710 [ 657.567752][ T1651] ? pwq_dec_nr_in_flight+0x320/0x320 [ 657.573139][ T1651] ? rwlock_bug.part.0+0x90/0x90 [ 657.579305][ T1651] ? _raw_spin_lock_irq+0x41/0x50 [ 657.585121][ T1651] worker_thread+0x64c/0x1120 [ 657.589821][ T1651] ? __kthread_parkme+0x13f/0x1e0 [ 657.596047][ T1651] ? process_one_work+0x15a0/0x15a0 [ 657.601286][ T1651] kthread+0x3af/0x4a0 [ 657.606538][ T1651] ? kthread_create_worker_on_cpu+0xf0/0xf0 [ 657.612470][ T1651] ret_from_fork+0x1f/0x30 [ 657.618913][ T1651] INFO: task kworker/0:0:8486 blocked for more than 143 seconds. [ 657.627614][ T1651] Not tainted 5.10.0-rc4-syzkaller #0 [ 657.633509][ T1651] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 657.643407][ T1651] task:kworker/0:0 state:D stack:29216 pid: 8486 ppid: 2 flags:0x00004000 [ 657.654467][ T1651] Workqueue: ipv6_addrconf addrconf_verify_work [ 657.660725][ T1651] Call Trace: [ 657.664021][ T1651] __schedule+0x893/0x2130 [ 657.670407][ T1651] ? io_schedule_timeout+0x140/0x140 [ 657.676491][ T1651] ? _raw_spin_unlock_irq+0x1f/0x40 [ 657.681702][ T1651] ? lockdep_hardirqs_on+0x79/0x100 [ 657.688116][ T1651] schedule+0xcf/0x270 [ 657.692199][ T1651] schedule_preempt_disabled+0xf/0x20 [ 657.698948][ T1651] __mutex_lock+0x3e2/0x10e0 [ 657.703573][ T1651] ? addrconf_verify_work+0xa/0x20 [ 657.709877][ T1651] ? mutex_lock_io_nested+0xf60/0xf60 [ 657.716029][ T1651] ? lock_release+0x710/0x710 [ 657.720783][ T1651] ? lock_downgrade+0x6d0/0x6d0 [ 657.726993][ T1651] addrconf_verify_work+0xa/0x20 [ 657.731940][ T1651] process_one_work+0x933/0x15a0 [ 657.738063][ T1651] ? lock_release+0x710/0x710 [ 657.742749][ T1651] ? pwq_dec_nr_in_flight+0x320/0x320 [ 657.749355][ T1651] ? rwlock_bug.part.0+0x90/0x90 [ 657.755035][ T1651] ? _raw_spin_lock_irq+0x41/0x50 [ 657.760079][ T1651] worker_thread+0x64c/0x1120 [ 657.765916][ T1651] ? __kthread_parkme+0x13f/0x1e0 [ 657.770948][ T1651] ? process_one_work+0x15a0/0x15a0 [ 657.777266][ T1651] kthread+0x3af/0x4a0 [ 657.781347][ T1651] ? kthread_create_worker_on_cpu+0xf0/0xf0 [ 657.788390][ T1651] ret_from_fork+0x1f/0x30 [ 657.792858][ T1651] [ 657.792858][ T1651] Showing all locks held in the system: [ 657.801929][ T1651] 3 locks held by kworker/u4:8/376: [ 657.807980][ T1651] #0: ffff8881416b7138 ((wq_completion)tc_filter_workqueue){+.+.}-{0:0}, at: process_one_work+0x821/0x15a0 [ 657.820337][ T1651] #1: ffffc9000223fda8 ((work_completion)(&(rwork)->work)){+.+.}-{0:0}, at: process_one_work+0x854/0x15a0 [ 657.832661][ T1651] #2: ffffffff8c928588 (rtnl_mutex){+.+.}-{3:3}, at: tcindex_partial_destroy_work+0x13/0x50 [ 657.843665][ T1651] 1 lock held by khungtaskd/1651: [ 657.849458][ T1651] #0: ffffffff8b337820 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260 [ 657.861015][ T1651] 1 lock held by in:imklog/8181: [ 657.866801][ T1651] #0: ffff888025fbf770 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0xe9/0x100 [ 657.876851][ T1651] 3 locks held by kworker/0:0/8486: [ 657.882047][ T1651] #0: ffff888146d43d38 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x821/0x15a0 [ 657.894306][ T1651] #1: ffffc9000179fda8 ((addr_chk_work).work){+.+.}-{0:0}, at: process_one_work+0x854/0x15a0 [ 657.905715][ T1651] #2: ffffffff8c928588 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0xa/0x20 [ 657.915950][ T1651] 2 locks held by syz-executor210/8516: [ 657.921524][ T1651] [ 657.923843][ T1651] ============================================= [ 657.923843][ T1651] [ 657.934221][ T1651] NMI backtrace for cpu 1 [ 657.938575][ T1651] CPU: 1 PID: 1651 Comm: khungtaskd Not tainted 5.10.0-rc4-syzkaller #0 [ 657.946887][ T1651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 657.956936][ T1651] Call Trace: [ 657.960274][ T1651] dump_stack+0x107/0x163 [ 657.964607][ T1651] nmi_cpu_backtrace.cold+0x44/0xd7 [ 657.969889][ T1651] ? lapic_can_unplug_cpu+0x80/0x80 [ 657.975128][ T1651] nmi_trigger_cpumask_backtrace+0x1b3/0x230 [ 657.981149][ T1651] watchdog+0xd43/0xfa0 [ 657.985309][ T1651] ? reset_hung_task_detector+0x30/0x30 [ 657.990854][ T1651] kthread+0x3af/0x4a0 [ 657.994926][ T1651] ? kthread_create_worker_on_cpu+0xf0/0xf0 [ 658.000818][ T1651] ret_from_fork+0x1f/0x30 [ 658.005490][ T1651] Sending NMI from CPU 1 to CPUs 0: [ 658.012056][ C0] NMI backtrace for cpu 0 [ 658.012063][ C0] CPU: 0 PID: 8516 Comm: syz-executor210 Not tainted 5.10.0-rc4-syzkaller #0 [ 658.012070][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 658.012074][ C0] RIP: 0010:lock_is_held_type+0xca/0x100 [ 658.012086][ C0] Code: 48 c7 c7 c0 5e 4b 89 e8 d4 0b 00 00 b8 ff ff ff ff 65 0f c1 05 c7 57 1c 77 83 f8 01 75 23 ff 34 24 9d 48 83 c4 08 44 89 e0 5b <5d> 41 5c 41 5d 41 5e 41 5f c3 45 31 e4 eb c7 41 bc 01 00 00 00 eb [ 658.012091][ C0] RSP: 0018:ffffc900013eea40 EFLAGS: 00000282 [ 658.012100][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 1ffffffff19d9d4b [ 658.012106][ C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 658.012112][ C0] RBP: ffffffff8b337760 R08: 0000000000000000 R09: ffffffff8cecb88f [ 658.012117][ C0] R10: fffffbfff19d9711 R11: 0000000000000000 R12: 0000000000000000 [ 658.012123][ C0] R13: ffff888011aa57d0 R14: 00000000ffffffff R15: ffff888011aa57f8 [ 658.012129][ C0] FS: 000000000082f880(0000) GS:ffff8880b9e00000(0000) knlGS:0000000000000000 [ 658.012133][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 658.012139][ C0] CR2: 00000000006db080 CR3: 000000001533f000 CR4: 00000000001506f0 [ 658.012144][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 658.012150][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 658.012153][ C0] Call Trace: [ 658.012157][ C0] rcu_read_lock_sched_held+0x3a/0x70 [ 658.012161][ C0] lock_release+0x5b7/0x710 [ 658.012165][ C0] ? tcf_idr_check_alloc+0x29e/0x3b0 [ 658.012168][ C0] ? lock_downgrade+0x6d0/0x6d0 [ 658.012173][ C0] ? tcf_idr_check_alloc+0x78/0x3b0 [ 658.012177][ C0] ? mutex_lock_io_nested+0xf60/0xf60 [ 658.012181][ C0] __mutex_unlock_slowpath+0x81/0x610 [ 658.012185][ C0] ? wait_for_completion+0x260/0x260 [ 658.012189][ C0] tcf_idr_check_alloc+0x29e/0x3b0 [ 658.012192][ C0] tcf_police_init+0x347/0x13a0 [ 658.012196][ C0] ? tcf_police_cleanup+0x60/0x60 [ 658.012200][ C0] ? find_held_lock+0x2d/0x110 [ 658.012204][ C0] ? tc_lookup_action_n+0xcd/0xf0 [ 658.012208][ C0] ? stack_trace_consume_entry+0x160/0x160 [ 658.012212][ C0] tcf_action_init_1+0x1a3/0x990 [ 658.012216][ C0] ? tcf_action_dump_old+0x80/0x80 [ 658.012220][ C0] ? ____sys_sendmsg+0x331/0x810 [ 658.012223][ C0] ? ___sys_sendmsg+0xf3/0x170 [ 658.012227][ C0] ? __sys_sendmmsg+0x195/0x470 [ 658.012231][ C0] ? __x64_sys_sendmmsg+0x99/0x100 [ 658.012235][ C0] ? do_syscall_64+0x2d/0x70 [ 658.012239][ C0] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 658.012243][ C0] ? find_held_lock+0x2d/0x110 [ 658.012247][ C0] tcf_exts_validate+0x138/0x420 [ 658.012251][ C0] ? tcf_exts_destroy+0xc0/0xc0 [ 658.012255][ C0] ? kasan_unpoison_shadow+0x33/0x40 [ 658.012259][ C0] tcindex_set_parms+0x189/0x20d0 [ 658.012264][ C0] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 658.012268][ C0] ? tcindex_alloc_perfect_hash+0x440/0x440 [ 658.012272][ C0] ? __nla_validate_parse+0x2d3/0x2ae0 [ 658.012276][ C0] ? nla_get_range_signed+0x520/0x520 [ 658.012280][ C0] ? find_held_lock+0x2d/0x110 [ 658.012284][ C0] tcindex_change+0x212/0x320 [ 658.012288][ C0] ? tcindex_set_parms+0x20d0/0x20d0 [ 658.012292][ C0] tc_new_tfilter+0x1398/0x2130 [ 658.012296][ C0] ? tcindex_set_parms+0x20d0/0x20d0 [ 658.012300][ C0] ? tc_del_tfilter+0x15c0/0x15c0 [ 658.012303][ C0] ? tc_del_tfilter+0x15c0/0x15c0 [ 658.012307][ C0] rtnetlink_rcv_msg+0x80e/0xad0 [ 658.012311][ C0] ? rtnetlink_put_metrics+0x510/0x510 [ 658.012315][ C0] netlink_rcv_skb+0x153/0x420 [ 658.012319][ C0] ? rtnetlink_put_metrics+0x510/0x510 [ 658.012323][ C0] ? netlink_ack+0xaa0/0xaa0 [ 658.012327][ C0] ? netlink_deliver_tap+0x227/0xb70 [ 658.012331][ C0] netlink_unicast+0x533/0x7d0 [ 658.012335][ C0] ? netlink_attachskb+0x810/0x810 [ 658.012338][ C0] ? __phys_addr_symbol+0x2c/0x70 [ 658.012342][ C0] ? __check_object_size+0x171/0x3f0 [ 658.012346][ C0] netlink_sendmsg+0x856/0xd90 [ 658.012350][ C0] ? netlink_unicast+0x7d0/0x7d0 [ 658.012354][ C0] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 658.012358][ C0] ? netlink_unicast+0x7d0/0x7d0 [ 658.012361][ C0] sock_sendmsg+0xcf/0x120 [ 658.012365][ C0] ____sys_sendmsg+0x331/0x810 [ 658.012369][ C0] ? kernel_sendmsg+0x50/0x50 [ 658.012373][ C0] ? do_recvmmsg+0x6c0/0x6c0 [ 658.012376][ C0] ? __lock_acquire+0x16c4/0x5c00 [ 658.012380][ C0] ___sys_sendmsg+0xf3/0x170 [ 658.012384][ C0] ? sendmsg_copy_msghdr+0x160/0x160 [ 658.012388][ C0] ? find_held_lock+0x2d/0x110 [ 658.012392][ C0] ? __might_fault+0xd3/0x180 [ 658.012395][ C0] ? lock_downgrade+0x6d0/0x6d0 [ 658.012399][ C0] __sys_sendmmsg+0x195/0x470 [ 658.012403][ C0] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 658.012407][ C0] ? sockfd_lookup_light+0xc6/0x180 [ 658.012411][ C0] ? __sys_sendmsg+0x10c/0x1b0 [ 658.012415][ C0] ? __sys_sendmsg_sock+0xb0/0xb0 [ 658.012418][ C0] __x64_sys_sendmmsg+0x99/0x100 [ 658.012423][ C0] ? syscall_enter_from_user_mode+0x1d/0x50 [ 658.012426][ C0] do_syscall_64+0x2d/0x70 [ 658.012431][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 658.012434][ C0] RIP: 0033:0x44fe39 [ 658.012446][ C0] Code: e8 5c ad 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 bb 09 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 658.012450][ C0] RSP: 002b:00007ffc8d168b78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 658.012460][ C0] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000044fe39 [ 658.012465][ C0] RDX: 010efe10675dec16 RSI: 0000000020000200 RDI: 0000000000000003 [ 658.012471][ C0] RBP: 00007ffc8d168b80 R08: 0000000100000000 R09: 0000000100000000 [ 658.012476][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000007987b [ 658.012482][ C0] R13: 0000000000410d10 R14: 0000000000000000 R15: 0000000000000000 [ 658.012488][ C0] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.300 msecs [ 658.024307][ T1651] Kernel panic - not syncing: hung_task: blocked tasks [ 658.594932][ T1651] CPU: 1 PID: 1651 Comm: khungtaskd Not tainted 5.10.0-rc4-syzkaller #0 [ 658.603244][ T1651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 658.613292][ T1651] Call Trace: [ 658.616586][ T1651] dump_stack+0x107/0x163 [ 658.620950][ T1651] panic+0x306/0x73d [ 658.624848][ T1651] ? __warn_printk+0xf3/0xf3 [ 658.629442][ T1651] ? lapic_can_unplug_cpu+0x80/0x80 [ 658.634635][ T1651] ? preempt_schedule_thunk+0x16/0x18 [ 658.640033][ T1651] ? watchdog.cold+0x5/0x158 [ 658.644619][ T1651] ? watchdog+0xa80/0xfa0 [ 658.648953][ T1651] watchdog.cold+0x16/0x158 [ 658.653460][ T1651] ? reset_hung_task_detector+0x30/0x30 [ 658.659005][ T1651] kthread+0x3af/0x4a0 [ 658.663076][ T1651] ? kthread_create_worker_on_cpu+0xf0/0xf0 [ 658.668969][ T1651] ret_from_fork+0x1f/0x30 [ 658.674147][ T1651] Kernel Offset: disabled [ 658.678507][ T1651] Rebooting in 86400 seconds..