syzkaller login: [  247.583633][ T1833] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  247.658528][ T1833] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  247.745227][ T1833] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  247.788311][ T1833] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
Warning: Permanently added '[localhost]:29803' (ECDSA) to the list of known hosts.
1970/01/01 00:05:14 fuzzer started
1970/01/01 00:05:27 dialing manager at localhost:43627
[  334.815278][ T2000] cgroup: Unknown subsys name 'net'
[  335.778120][ T2000] cgroup: Unknown subsys name 'rlimit'
1970/01/01 00:05:35 syscalls: 2806
1970/01/01 00:05:35 code coverage: enabled
1970/01/01 00:05:35 comparison tracing: enabled
1970/01/01 00:05:35 extra coverage: enabled
1970/01/01 00:05:35 delay kcov mmap: mmap returned an invalid pointer
1970/01/01 00:05:35 setuid sandbox: enabled
1970/01/01 00:05:35 namespace sandbox: enabled
1970/01/01 00:05:35 Android sandbox: /sys/fs/selinux/policy does not exist
1970/01/01 00:05:35 fault injection: enabled
1970/01/01 00:05:35 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
1970/01/01 00:05:35 net packet injection: enabled
1970/01/01 00:05:35 net device setup: enabled
1970/01/01 00:05:35 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
1970/01/01 00:05:35 devlink PCI setup: PCI device 0000:00:10.0 is not available
1970/01/01 00:05:35 USB emulation: enabled
1970/01/01 00:05:35 hci packet injection: /dev/vhci does not exist
1970/01/01 00:05:35 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist
1970/01/01 00:05:35 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist
1970/01/01 00:05:41 fetching corpus: 50, signal 30396/32209 (executing program)
1970/01/01 00:05:44 fetching corpus: 100, signal 43686/47136 (executing program)
1970/01/01 00:05:47 fetching corpus: 150, signal 53364/58387 (executing program)
1970/01/01 00:05:49 fetching corpus: 200, signal 59569/66120 (executing program)
1970/01/01 00:05:51 fetching corpus: 250, signal 65650/73618 (executing program)
1970/01/01 00:05:54 fetching corpus: 300, signal 72296/81594 (executing program)
1970/01/01 00:05:56 fetching corpus: 350, signal 76371/87033 (executing program)
1970/01/01 00:05:58 fetching corpus: 400, signal 81144/93099 (executing program)
1970/01/01 00:06:00 fetching corpus: 450, signal 85810/99001 (executing program)
1970/01/01 00:06:02 fetching corpus: 500, signal 89092/103524 (executing program)
1970/01/01 00:06:06 fetching corpus: 550, signal 92847/108515 (executing program)
1970/01/01 00:06:08 fetching corpus: 600, signal 95594/112451 (executing program)
1970/01/01 00:06:11 fetching corpus: 650, signal 100670/118458 (executing program)
1970/01/01 00:06:13 fetching corpus: 700, signal 104398/123270 (executing program)
1970/01/01 00:06:16 fetching corpus: 750, signal 106744/126781 (executing program)
1970/01/01 00:06:20 fetching corpus: 800, signal 108661/129836 (executing program)
1970/01/01 00:06:22 fetching corpus: 850, signal 110171/132522 (executing program)
[  825.804225][   T27] INFO: task jbd2/vda-8:1768 blocked for more than 430 seconds.
[  825.806953][   T27]       Not tainted 5.15.0-rc1-syzkaller-00001-g64a19591a293 #0
[  825.808623][   T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  825.824164][   T27] task:jbd2/vda-8      state:D stack:    0 pid: 1768 ppid:     2 flags:0x00000000
[  825.827165][   T27] Call Trace:
[  825.828422][   T27] [<ffffffff82bdaf8a>] __schedule+0x506/0x1048
[  825.830271][   T27] [<ffffffff82bdbb32>] schedule+0x66/0x168
[  825.845940][   T27] [<ffffffff82bdbce2>] io_schedule+0x5a/0x88
[  825.848076][   T27] [<ffffffff82bdc8ca>] bit_wait_io+0x12/0x70
[  825.849886][   T27] [<ffffffff82bdc4c6>] __wait_on_bit+0x7c/0xf6
[  825.864257][   T27] [<ffffffff82bdc5ba>] out_of_line_wait_on_bit+0x7a/0x92
[  825.866684][   T27] [<ffffffff804c2b8c>] __wait_on_buffer+0x68/0x7c
[  825.868663][   T27] [<ffffffff8071b480>] jbd2_journal_commit_transaction+0x2b6a/0x4716
[  825.883769][   T27] [<ffffffff8072946a>] kjournald2+0x11a/0x54e
[  825.885929][   T27] [<ffffffff800770a8>] kthread+0x25c/0x2c6
[  825.887880][   T27] [<ffffffff800051aa>] ret_from_exception+0x0/0x14
[  825.890332][   T27] INFO: task rm:2004 blocked for more than 430 seconds.
[  825.905986][   T27]       Not tainted 5.15.0-rc1-syzkaller-00001-g64a19591a293 #0
[  825.907661][   T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  825.908804][   T27] task:rm              state:D stack:    0 pid: 2004 ppid:  2001 flags:0x00000000
[  825.910324][   T27] Call Trace:
[  825.924674][   T27] [<ffffffff82bdaf8a>] __schedule+0x506/0x1048
[  825.926610][   T27] [<ffffffff82bdbb32>] schedule+0x66/0x168
[  825.928285][   T27] [<ffffffff82bdbce2>] io_schedule+0x5a/0x88
[  825.930007][   T27] [<ffffffff82bdc8ca>] bit_wait_io+0x12/0x70
[  825.933005][   T27] [<ffffffff82bdc4c6>] __wait_on_bit+0x7c/0xf6
[  825.934720][   T27] [<ffffffff82bdc5ba>] out_of_line_wait_on_bit+0x7a/0x92
[  825.936619][   T27] [<ffffffff807158f2>] do_get_write_access+0x776/0xb18
[  825.938477][   T27] [<ffffffff80715d6c>] jbd2_journal_get_write_access+0xd8/0x124
[  825.960189][   T27] [<ffffffff80628504>] __ext4_journal_get_write_access+0x122/0x2b6
[  825.965416][   T27] [<ffffffff80670020>] ext4_reserve_inode_write+0x10a/0x164
[  825.967318][   T27] [<ffffffff806704b2>] __ext4_mark_inode_dirty+0x100/0x602
[  825.969167][   T27] [<ffffffff8067b34e>] ext4_dirty_inode+0x90/0xba
[  825.971978][   T27] [<ffffffff804a25f8>] __mark_inode_dirty+0x40a/0xefe
[  825.973905][   T27] [<ffffffff80475b40>] touch_atime+0x5ea/0x60e
[  825.975582][   T27] [<ffffffff802ce6c4>] filemap_read+0x792/0x79c
[  825.977416][   T27] [<ffffffff802ce906>] generic_file_read_iter+0x238/0x2e6
[  825.979338][   T27] [<ffffffff806467dc>] ext4_file_read_iter+0x126/0x336
[  825.984470][   T27] [<ffffffff8043114a>] new_sync_read+0x21e/0x340
[  825.986344][   T27] [<ffffffff8043464a>] vfs_read+0x290/0x2e6
[  825.988054][   T27] [<ffffffff80434a4a>] ksys_read+0xb4/0x1b8
[  825.989811][   T27] [<ffffffff80434b76>] sys_read+0x28/0x36
[  825.992776][   T27] [<ffffffff8000519c>] ret_from_syscall+0x0/0x2
[  825.994835][   T27] 
[  825.994835][   T27] Showing all locks held in the system:
[  825.996690][   T27] 1 lock held by khungtaskd/27:
[  825.998001][   T27]  #0: ffffffff83d2b3e8 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x32/0x1fa
[  826.005346][   T27] 1 lock held by hwrng/768:
[  826.006790][   T27]  #0: ffffffff83dad600 (reading_mutex){+.+.}-{3:3}, at: hwrng_fillfn+0xd8/0x23c
[  826.010277][   T27] 6 locks held by kworker/u4:6/1034:
[  826.013360][   T27] 2 locks held by getty/1959:
[  826.014589][   T27]  #0: ffffffe00da9b098 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x48
[  826.018113][   T27]  #1: ffffffd0107f52e8 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x9a0/0xafa
[  826.025043][   T27] 2 locks held by rm/2004:
[  826.026434][   T27]  #0: ffffffe009df8460 (sb_writers#4){.+.+}-{0:0}, at: filemap_read+0x792/0x79c
[  826.030294][   T27]  #1: ffffffe009e86990 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x24a/0xad6
[  826.035224][   T27] 
[  826.036137][   T27] =============================================
[  826.036137][   T27] 
[  826.038260][   T27] Kernel panic - not syncing: hung_task: blocked tasks
[  826.040199][   T27] CPU: 1 PID: 27 Comm: khungtaskd Not tainted 5.15.0-rc1-syzkaller-00001-g64a19591a293 #0
[  826.042611][   T27] Hardware name: riscv-virtio,qemu (DT)
[  826.044034][   T27] Call Trace:
[  826.045086][   T27] [<ffffffff8000957e>] dump_backtrace+0x2e/0x3c
[  826.047325][   T27] SMP: stopping secondary CPUs
[  828.136439][   T27] SMP: failed to stop secondary CPUs 0-1
[  828.139653][   T27] Rebooting in 86400 seconds..

VM DIAGNOSIS:
13:11:30  Registers:
info registers vcpu 0
 pc       ffffffff80c9697e
 mhartid  0000000000000000
 mstatus  00000000000000a0
 mip      0000000000000000
 mie      00000000000002aa
 mideleg  0000000000000222
 medeleg  000000000000b109
 mtvec    0000000080000540
 stvec    ffffffff80005050
 mepc     ffffffff8000e732
 sepc     ffffffff8000538a
 mcause   0000000000000009
 scause   8000000000000005
 mtval  0000000000000000
 stval  0000000000000000
 x0/zero 0000000000000000 x1/ra ffffffff80c9697e x2/sp ffffffe0057a39d0 x3/gp ffffffff83f9a558
 x4/tp ffffffe0065caf80 x5/t0 ffffffff852b6bd7 x6/t1 0000000000000001 x7/t2 0000000000000000
 x8/s0 ffffffe0057a39f0 x9/s1 ffffffff855344d0 x10/a0 ffffffd00066c005 x11/a1 0000000000000007
 x12/a2 1ffffffff0aa68a3 x13/a3 ffffffff80c9697e x14/a4 0000000000000000 x15/a5 ffffffff85534518
 x16/a6 0000000000f00000 x17/a7 ffffffff80ca117c x18/s2 0000000000000005 x19/s3 0000000000002710
 x20/s4 ffffffff85534520 x21/s5 0000000000000020 x22/s6 ffffffff85534768 x23/s7 ffffffff85534528
 x24/s8 0000000000000001 x25/s9 ffffffff83f9e0d0 x26/s10 ffffffff85534758 x27/s11 ffffffff85534520
 x28/t3 aeef895fec1e4c00 x29/t4 ffffffc40b5beb21 x30/t5 ffffffc40b5beb22 x31/t6 ffffffff852b6bd7
 f0/ft0 0000000000000000 f1/ft1 409f5cfcdd8277f1 f2/ft2 415248c400000000 f3/ft3 40a482910228fc21
 f4/ft4 40f6e10000000000 f5/ft5 4037ac241134c4ea f6/ft6 3fe281b092a264ff f7/ft7 3fba73eafb798e60
 f8/fs0 3fee4b8daa905b4a f9/fs1 3f9d4ee33fc34560 f10/fa0 3fb384210f6c45fe f11/fa1 0000000000000000
 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000
 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000
 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000
 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000
 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000
info registers vcpu 1
 pc       ffffffff803eb206
 mhartid  0000000000000001
 mstatus  00000000000000a0
 mip      00000000000002a2
 mie      000000000000022a
 mideleg  0000000000000222
 medeleg  000000000000b109
 mtvec    0000000080000540
 stvec    ffffffff80005050
 mepc     ffffffff803eb206
 sepc     ffffffff80aab4be
 mcause   8000000000000003
 scause   8000000000000005
 mtval  0000000000000000
 stval  0000000000000000
 x0/zero 0000000000000000 x1/ra ffffffff803eb1e8 x2/sp ffffffe00aee32d0 x3/gp ffffffff83f9a558
 x4/tp ffffffe00cd0af80 x5/t0 ffffffe00f9972e0 x6/t1 0000000000000001 x7/t2 f233cde15f9331d7
 x8/s0 ffffffe00aee3360 x9/s1 0000000000000010 x10/a0 ffffffe05adc8880 x11/a1 0000000000000003
 x12/a2 1ffffffc0b5b9110 x13/a3 ffffffff800db014 x14/a4 aeef895fec1e4c00 x15/a5 0000000000080800
 x16/a6 0000000000f00000 x17/a7 ffffffff803eb1a8 x18/s2 ffffffe05add73e0 x19/s3 0000000000000a20
 x20/s4 ffffffff85302728 x21/s5 ffffffff83f9e558 x22/s6 ffffffff821cf56a x23/s7 0000000000000000
 x24/s8 0000000000081000 x25/s9 ffffffe05ade01b0 x26/s10 ffffffe007de0500 x27/s11 0000000000000000
 x28/t3 aeef895fec1e4c00 x29/t4 ffffffc40b5bb321 x30/t5 ffffffc40b5bb322 x31/t6 ffffffe00f997078
 f0/ft0 0000000000000000 f1/ft1 409f5cfcdd8277f1 f2/ft2 415248c400000000 f3/ft3 40a482910228fc21
 f4/ft4 40f6e10000000000 f5/ft5 4037ac241134c4ea f6/ft6 3fe281b092a264ff f7/ft7 3fba73eafb798e60
 f8/fs0 3fee4b8daa905b4a f9/fs1 3f9d4ee33fc34560 f10/fa0 3fb384210f6c45fe f11/fa1 0000000000000000
 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000
 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000
 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000
 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000
 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000