Warning: Permanently added '10.128.0.14' (ECDSA) to the list of known hosts.
syzkaller login: [  241.863950] IPVS: ftp: loaded support on port[0] = 21
[  242.002517] bridge0: port 1(bridge_slave_0) entered blocking state
[  242.009595] bridge0: port 1(bridge_slave_0) entered disabled state
[  242.016902] device bridge_slave_0 entered promiscuous mode
[  242.034474] bridge0: port 2(bridge_slave_1) entered blocking state
[  242.041116] bridge0: port 2(bridge_slave_1) entered disabled state
[  242.048313] device bridge_slave_1 entered promiscuous mode
[  242.063941] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  242.081203] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  242.122141] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  242.140427] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  242.205057] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  242.212224] team0: Port device team_slave_0 added
[  242.227411] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  242.234682] team0: Port device team_slave_1 added
[  242.249624] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  242.267598] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  242.283798] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  242.302450] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
RTNETLINK answers: Operation not supported
RTNETLINK answers: No buffer space available
RTNETLINK answers: Operation not supported
[  242.423111] bridge0: port 2(bridge_slave_1) entered blocking state
[  242.429540] bridge0: port 2(bridge_slave_1) entered forwarding state
[  242.436459] bridge0: port 1(bridge_slave_0) entered blocking state
[  242.442801] bridge0: port 1(bridge_slave_0) entered forwarding state
RTNETLINK answers: Operation not supported
RTNETLINK answers: Operation not supported
RTNETLINK answers: Operation not supported
RTNETLINK answers: Invalid argument
RTNETLINK answers: Invalid argument
RTNETLINK answers: Invalid argument
[  242.874457] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready
[  242.880698] 8021q: adding VLAN 0 to HW filter on device bond0
[  242.923907] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  242.952364] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  242.970005] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  242.976458] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  242.984562] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  243.026416] 8021q: adding VLAN 0 to HW filter on device team0
executing program
[  392.311609] INFO: task syz-executor957:6034 blocked for more than 140 seconds.
[  392.319101]       Not tainted 4.20.0-rc4+ #131
[  392.324785] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  392.332963] syz-executor957 D21368  6034   6033 0x80000002
[  392.338655] Call Trace:
[  392.341275]  __schedule+0x8cf/0x21d0
[  392.348546]  ? lockdep_hardirqs_on+0x3bb/0x5b0
[  392.353395]  ? retint_kernel+0x2d/0x2d
[  392.357282]  ? __sched_text_start+0x8/0x8
[  392.361652]  ? zap_class+0x640/0x640
[  392.365365]  ? lock_downgrade+0x900/0x900
[  392.369549]  ? check_preemption_disabled+0x48/0x280
[  392.374851]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  392.379795]  ? kasan_check_read+0x11/0x20
[  392.384286]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  392.389558]  ? find_held_lock+0x36/0x1c0
[  392.393891]  schedule+0xfe/0x460
[  392.397260]  ? __mutex_lock+0xafa/0x16f0
[  392.401312]  ? __schedule+0x21d0/0x21d0
[  392.405514]  ? kasan_check_read+0x11/0x20
[  392.409670]  ? do_raw_spin_unlock+0xa7/0x330
[  392.414329]  ? do_raw_spin_trylock+0x270/0x270
[  392.418905]  ? ww_mutex_lock.part.8+0xf0/0xf0
[  392.423641]  ? mutex_destroy+0x200/0x200
[  392.427716]  schedule_preempt_disabled+0x13/0x20
[  392.432687]  __mutex_lock+0xaff/0x16f0
[  392.436629]  ? vhost_net_stop_vq+0x2d/0x120
[  392.440948]  ? mutex_trylock+0x2b0/0x2b0
[  392.445475]  ? find_held_lock+0x36/0x1c0
[  392.449546]  ? debug_object_active_state+0x2f5/0x4d0
[  392.455587]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  392.460684]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  392.465995]  ? lockdep_hardirqs_on+0x3bb/0x5b0
[  392.470605]  ? trace_hardirqs_on+0xbd/0x310
[  392.475523]  ? kasan_check_read+0x11/0x20
[  392.479673]  ? kasan_check_write+0x14/0x20
[  392.484216]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  392.489754]  ? __call_rcu.constprop.55+0x3ea/0x950
[  392.494897]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  392.500716]  ? fsnotify+0x50e/0xef0
[  392.504497]  ? vhost_net_buf_unproduce+0x131/0x6b0
[  392.509407]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  392.515097]  ? locks_remove_file+0x3c6/0x5c0
[  392.519509]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  392.525202]  ? ima_file_free+0x132/0x650
[  392.529262]  ? handle_tx_kick+0x50/0x50
[  392.533361]  ? ima_file_check+0x130/0x130
[  392.537489]  mutex_lock_nested+0x16/0x20
[  392.541710]  ? mutex_lock_nested+0x16/0x20
[  392.545936]  vhost_net_stop_vq+0x2d/0x120
[  392.550063]  ? handle_rx_kick+0x50/0x50
[  392.554201]  vhost_net_release+0x5b/0x1d0
[  392.558459]  __fput+0x385/0xa30
[  392.561873]  ? get_max_files+0x20/0x20
[  392.565766]  ? perf_trace_sched_process_exec+0x860/0x860
[  392.571219]  ____fput+0x15/0x20
[  392.574703]  task_work_run+0x1e8/0x2a0
[  392.578597]  ? task_work_cancel+0x240/0x240
[  392.583471]  ? switch_task_namespaces+0xb8/0xd0
[  392.588260]  do_exit+0x1ad6/0x26d0
[  392.592037]  ? mm_update_next_owner+0x990/0x990
[  392.596698]  ? lock_acquire+0x1ed/0x520
[  392.600694]  ? __handle_mm_fault+0x1fa9/0x5be0
[  392.605422]  ? kasan_check_read+0x11/0x20
[  392.609552]  ? do_raw_spin_lock+0x14f/0x350
[  392.614009]  ? rwlock_bug.part.2+0x90/0x90
[  392.618231]  ? do_raw_spin_trylock+0x270/0x270
[  392.622957]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  392.628492]  ? __handle_mm_fault+0xa57/0x5be0
[  392.633112]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[  392.637931]  ? vhost_net_buf_peek+0xa30/0xa30
[  392.642554]  ? vhost_chr_write_iter+0x164/0x1170
[  392.647315]  ? smk_access+0x53b/0x700
[  392.651091]  ? vhost_new_umem_range+0x7b0/0x7b0
[  392.655906]  ? zap_class+0x640/0x640
[  392.659629]  ? zap_class+0x640/0x640
[  392.663783]  ? zap_class+0x640/0x640
[  392.667499]  ? kasan_check_read+0x11/0x20
[  392.671951]  ? find_held_lock+0x36/0x1c0
[  392.676079]  ? __do_page_fault+0x620/0xe60
[  392.680322]  ? lock_downgrade+0x900/0x900
[  392.684714]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  392.689646]  ? kasan_check_read+0x11/0x20
[  392.694089]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  392.699365]  ? rcu_softirq_qs+0x20/0x20
[  392.703569]  ? trace_hardirqs_off_caller+0x310/0x310
[  392.708757]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  392.715066]  ? check_preemption_disabled+0x48/0x280
[  392.720251]  ? kasan_check_write+0x14/0x20
[  392.724622]  ? up_read+0x225/0x2c0
[  392.728158]  ? up_read_non_owner+0x100/0x100
[  392.732713]  do_group_exit+0x177/0x440
[  392.736584]  ? trace_hardirqs_on+0xbd/0x310
[  392.740886]  ? __ia32_sys_exit+0x50/0x50
[  392.745187]  ? trace_hardirqs_off_caller+0x310/0x310
[  392.750279]  __x64_sys_exit_group+0x3e/0x50
[  392.754771]  do_syscall_64+0x1b9/0x820
[  392.758642]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  392.764179]  ? syscall_return_slowpath+0x5e0/0x5e0
[  392.769090]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  392.774095]  ? trace_hardirqs_on_caller+0x310/0x310
[  392.779090]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  392.784254]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  392.789775]  ? prepare_exit_to_usermode+0x291/0x3b0
[  392.794928]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  392.799763]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  392.805136] RIP: 0033:0x43fe38
[  392.808316] Code: 44 24 18 18 00 00 00 c7 44 24 1c 30 00 00 00 48 89 44 24 28 e8 99 b7 fc ff 48 8d 74 24 30 48 8d 3d 20 c0 00 00 31 c0 c6 84 24 <2f> 04 00 00 00 e8 ee 11 fe ff 85 ed 0f 85 86 00 00 00 83 fb ff 48
[  392.827366] RSP: 002b:00007fffdb10ca98 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  392.835317] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 000000000043fe38
[  392.843607] RDX: 0000000000000001 RSI: 000000000000003c RDI: 0000000000000001
[  392.850874] RBP: 00000000004c0250 R08: 00000000000000e7 R09: ffffffffffffffd0
[  392.858391] R10: 0000000000000100 R11: 0000000000000246 R12: 0000000000000001
[  392.865869] R13: 00000000006d2180 R14: 0000000000000000 R15: 0000000000000000
[  392.873428] 
[  392.873428] Showing all locks held in the system:
[  392.879757] 1 lock held by khungtaskd/1018:
[  392.884341]  #0: 000000008ab4168e (rcu_read_lock){....}, at: debug_show_all_locks+0xd0/0x424
[  392.893264] 1 lock held by rsyslogd/5911:
[  392.897400]  #0: 00000000c48039cc (&f->f_pos_lock){+.+.}, at: __fdget_pos+0x1bb/0x200
[  392.905690] 2 locks held by getty/6002:
[  392.909672]  #0: 000000003840e48e (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x32/0x40
[  392.918256]  #1: 00000000dfde837f (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1e80
[  392.927419] 2 locks held by getty/6003:
[  392.931387]  #0: 000000006819cee1 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x32/0x40
[  392.939811]  #1: 00000000d202d16e (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1e80
[  392.949228] 2 locks held by getty/6004:
[  392.953403]  #0: 0000000021d433d0 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x32/0x40
[  392.961862]  #1: 00000000b3347925 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1e80
[  392.970709] 2 locks held by getty/6005:
[  392.975707]  #0: 0000000079e6bcf7 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x32/0x40
[  392.984157]  #1: 000000003d82f7dc (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1e80
[  392.993228] 2 locks held by getty/6006:
[  392.997187]  #0: 00000000c12fa154 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x32/0x40
[  393.005631]  #1: 000000008e2e2eea (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1e80
[  393.014681] 2 locks held by getty/6007:
[  393.018649]  #0: 000000004dabf69f (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x32/0x40
[  393.027143]  #1: 0000000053b29363 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1e80
[  393.036215] 2 locks held by getty/6008:
[  393.040175]  #0: 00000000fdf3c2ad (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x32/0x40
[  393.048632]  #1: 000000009ac54288 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1e80
[  393.057673] 1 lock held by syz-executor957/6034:
[  393.062614]  #0: 000000005d6ed012 (&vq->mutex){+.+.}, at: vhost_net_stop_vq+0x2d/0x120
[  393.070850] 1 lock held by vhost-6034/6273:
[  393.075383] 
[  393.077010] =============================================
[  393.077010] 
[  393.084328] NMI backtrace for cpu 1
[  393.087976] CPU: 1 PID: 1018 Comm: khungtaskd Not tainted 4.20.0-rc4+ #131
[  393.094973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  393.104309] Call Trace:
[  393.106951]  dump_stack+0x244/0x39d
[  393.110574]  ? dump_stack_print_info.cold.1+0x20/0x20
[  393.115754]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  393.121287]  nmi_cpu_backtrace.cold.2+0x5c/0xa1
[  393.125989]  ? lapic_can_unplug_cpu.cold.27+0x3f/0x3f
[  393.131169]  nmi_trigger_cpumask_backtrace+0x1e8/0x22a
[  393.136441]  arch_trigger_cpumask_backtrace+0x14/0x20
[  393.141620]  watchdog+0xb51/0x1060
[  393.145161]  ? hungtask_pm_notify+0xb0/0xb0
[  393.149480]  ? __kthread_parkme+0xce/0x1a0
[  393.153729]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  393.158837]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  393.164020]  ? lockdep_hardirqs_on+0x3bb/0x5b0
[  393.168591]  ? trace_hardirqs_on+0xbd/0x310
[  393.172902]  ? kasan_check_read+0x11/0x20
[  393.177041]  ? __kthread_parkme+0xce/0x1a0
[  393.181270]  ? trace_hardirqs_off_caller+0x310/0x310
[  393.186458]  ? trace_hardirqs_off_caller+0x310/0x310
[  393.191548]  ? lockdep_init_map+0x9/0x10
[  393.195604]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  393.200696]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  393.206222]  ? __kthread_parkme+0xfb/0x1a0
[  393.210450]  ? hungtask_pm_notify+0xb0/0xb0
[  393.214767]  kthread+0x35a/0x440
[  393.218128]  ? kthread_stop+0x900/0x900
[  393.222094]  ret_from_fork+0x3a/0x50
[  393.225876] Sending NMI from CPU 1 to CPUs 0:
[  393.230788] NMI backtrace for cpu 0
[  393.230792] CPU: 0 PID: 6273 Comm: vhost-6034 Not tainted 4.20.0-rc4+ #131
[  393.230797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  393.230800] RIP: 0010:__sanitizer_cov_trace_cmp8+0x0/0x20
[  393.230809] Code: ff ff 5d c3 66 0f 1f 44 00 00 55 89 f2 89 fe bf 04 00 00 00 48 89 e5 48 8b 4d 08 e8 ea fe ff ff 5d c3 0f 1f 84 00 00 00 00 00 <55> 48 89 f2 48 89 fe bf 06 00 00 00 48 89 e5 48 8b 4d 08 e8 c8 fe
[  393.230812] RSP: 0018:ffff8881b9f57948 EFLAGS: 00000246
[  393.230818] RAX: ffff8881b8548100 RBX: 0000000000000000 RCX: ffffffff85f1dfc8
[  393.230822] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000010
[  393.230826] RBP: ffff8881b9f579c0 R08: ffff8881b8548100 R09: ffffed103b01406d
[  393.230830] R10: ffff8881b9f579f8 R11: ffff8881d80a036f R12: 0000000000000010
[  393.230834] R13: 0000000000000000 R14: 0000000000000010 R15: dffffc0000000000
[  393.230838] FS:  0000000000000000(0000) GS:ffff8881dae00000(0000) knlGS:0000000000000000
[  393.230841] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  393.230845] CR2: ffffffffff600400 CR3: 00000001bd9ec000 CR4: 00000000001406f0
[  393.230849] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  393.230853] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  393.230855] Call Trace:
[  393.230858]  ? iotlb_access_ok+0x434/0x600
[  393.230861]  vq_iotlb_prefetch+0x10e/0x230
[  393.230863]  handle_rx+0x292/0x1df0
[  393.230866]  ? kasan_check_write+0x14/0x20
[  393.230869]  ? finish_task_switch+0x2f4/0x910
[  393.230872]  ? __switch_to_asm+0x40/0x70
[  393.230875]  ? preempt_notifier_register+0x200/0x200
[  393.230878]  ? __switch_to_asm+0x34/0x70
[  393.230881]  ? __switch_to_asm+0x34/0x70
[  393.230884]  ? __switch_to_asm+0x40/0x70
[  393.230886]  ? __switch_to_asm+0x40/0x70
[  393.230889]  ? __switch_to_asm+0x34/0x70
[  393.230892]  ? __switch_to_asm+0x34/0x70
[  393.230895]  ? __switch_to_asm+0x40/0x70
[  393.230897]  ? __switch_to_asm+0x34/0x70
[  393.230900]  ? __switch_to_asm+0x40/0x70
[  393.230903]  ? __schedule+0x8d7/0x21d0
[  393.230906]  ? vhost_net_open+0x810/0x810
[  393.230909]  ? __sched_text_start+0x8/0x8
[  393.230911]  ? zap_class+0x640/0x640
[  393.230914]  ? mark_held_locks+0xc7/0x130
[  393.230917]  ? find_held_lock+0x36/0x1c0
[  393.230919]  ? complete+0x62/0x80
[  393.230922]  ? schedule+0x108/0x460
[  393.230925]  ? __schedule+0x21d0/0x21d0
[  393.230927]  ? complete+0x62/0x80
[  393.230930]  ? trace_hardirqs_off_caller+0x310/0x310
[  393.230933]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  393.230936]  ? vhost_worker+0x226/0x4c0
[  393.230939]  handle_rx_net+0x19/0x20
[  393.230941]  vhost_worker+0x2ac/0x4c0
[  393.230944]  ? vhost_flush_work+0x20/0x20
[  393.230947]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  393.230950]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  393.230953]  ? __kthread_parkme+0xfb/0x1a0
[  393.230956]  ? vhost_flush_work+0x20/0x20
[  393.230958]  kthread+0x35a/0x440
[  393.230961]  ? kthread_stop+0x900/0x900
[  393.230964]  ret_from_fork+0x3a/0x50
[  393.232630] Kernel panic - not syncing: hung_task: blocked tasks
[  393.521987] CPU: 1 PID: 1018 Comm: khungtaskd Not tainted 4.20.0-rc4+ #131
[  393.529024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  393.538364] Call Trace:
[  393.540968]  dump_stack+0x244/0x39d
[  393.544593]  ? dump_stack_print_info.cold.1+0x20/0x20
[  393.549787]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  393.554801]  panic+0x2ad/0x55c
[  393.557990]  ? add_taint.cold.5+0x16/0x16
[  393.562135]  ? nmi_trigger_cpumask_backtrace+0x1c8/0x22a
[  393.567583]  ? nmi_trigger_cpumask_backtrace+0x1f9/0x22a
[  393.573113]  ? nmi_trigger_cpumask_backtrace+0x1d1/0x22a
[  393.578645]  ? nmi_trigger_cpumask_backtrace+0x1c8/0x22a
[  393.584090]  watchdog+0xb62/0x1060
[  393.587633]  ? hungtask_pm_notify+0xb0/0xb0
[  393.591951]  ? __kthread_parkme+0xce/0x1a0
[  393.596183]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  393.601275]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  393.606369]  ? lockdep_hardirqs_on+0x3bb/0x5b0
[  393.610941]  ? trace_hardirqs_on+0xbd/0x310
[  393.615251]  ? kasan_check_read+0x11/0x20
[  393.619407]  ? __kthread_parkme+0xce/0x1a0
[  393.623630]  ? trace_hardirqs_off_caller+0x310/0x310
[  393.628722]  ? trace_hardirqs_off_caller+0x310/0x310
[  393.633817]  ? lockdep_init_map+0x9/0x10
[  393.637869]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  393.642967]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  393.648494]  ? __kthread_parkme+0xfb/0x1a0
[  393.652718]  ? hungtask_pm_notify+0xb0/0xb0
[  393.657028]  kthread+0x35a/0x440
[  393.660384]  ? kthread_stop+0x900/0x900
[  393.664347]  ret_from_fork+0x3a/0x50
[  393.669409] Kernel Offset: disabled
[  393.673035] Rebooting in 86400 seconds..