[ 15.331789][ T3969] 8021q: adding VLAN 0 to HW filter on device bond0 [ 15.336765][ T3969] eql: remember to turn off Van-Jacobson compression on your slave devices [ 15.373218][ T9] gvnic 0000:00:00.0 enp0s0: Device link is up. [ 15.375988][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): enp0s0: link becomes ready Starting sshd: OK syzkaller syzkaller login: [ 69.622103][ T14] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.0.145' (ED25519) to the list of known hosts. [ 83.464447][ T4304] cgroup: Unknown subsys name 'net' [ 83.736408][ T4304] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 84.084313][ T4304] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS executing program [ 84.249731][ T4317] loop1: detected capacity change from 0 to 128 executing program [ 84.258783][ T4317] VFS: Found a Xenix FS (block size = 1024) on device loop1 [ 84.262604][ T4317] syz-executor823: attempt to access beyond end of device [ 84.262604][ T4317] loop1: rw=0, sector=6491536, nr_sectors = 2 limit=128 [ 84.264378][ T4319] loop0: detected capacity change from 0 to 128 [ 84.265609][ T4317] Buffer I/O error on dev loop1, logical block 3245768, async page read [ 84.270971][ T4319] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 84.274603][ T4319] syz-executor823: attempt to access beyond end of device [ 84.274603][ T4319] loop0: rw=0, sector=6491536, nr_sectors = 2 limit=128 executing program [ 84.277661][ T4319] Buffer I/O error on dev loop0, logical block 3245768, async page read executing program executing program [ 84.288322][ T4317] syz-executor823: attempt to access beyond end of device [ 84.288322][ T4317] loop1: rw=0, sector=17666806, nr_sectors = 2 limit=128 [ 84.291303][ T4317] Buffer I/O error on dev loop1, logical block 8833403, async page read [ 84.295650][ T4324] loop2: detected capacity change from 0 to 128 [ 84.297379][ T4325] loop4: detected capacity change from 0 to 128 [ 84.297907][ T4323] loop3: detected capacity change from 0 to 128 [ 84.298856][ T4317] syz-executor823: attempt to access beyond end of device [ 84.298856][ T4317] loop1: rw=0, sector=26539618, nr_sectors = 2 limit=128 [ 84.304075][ T4319] syz-executor823: attempt to access beyond end of device [ 84.304075][ T4319] loop0: rw=0, sector=17666806, nr_sectors = 2 limit=128 [ 84.307254][ T4319] Buffer I/O error on dev loop0, logical block 8833403, async page read [ 84.310030][ T4317] Buffer I/O error on dev loop1, logical block 13269809, async page read [ 84.313713][ T4323] VFS: Found a Xenix FS (block size = 1024) on device loop3 [ 84.314787][ T4325] VFS: Found a Xenix FS (block size = 1024) on device loop4 [ 84.315449][ T4324] VFS: Found a Xenix FS (block size = 1024) on device loop2 [ 84.318110][ T4325] syz-executor823: attempt to access beyond end of device [ 84.318110][ T4325] loop4: rw=0, sector=6491536, nr_sectors = 2 limit=128 [ 84.319293][ T4323] syz-executor823: attempt to access beyond end of device [ 84.319293][ T4323] loop3: rw=0, sector=6491536, nr_sectors = 2 limit=128 [ 84.321704][ T4319] syz-executor823: attempt to access beyond end of device [ 84.321704][ T4319] loop0: rw=0, sector=26539618, nr_sectors = 2 limit=128 [ 84.326517][ T4324] syz-executor823: attempt to access beyond end of device [ 84.326517][ T4324] loop2: rw=0, sector=6491536, nr_sectors = 2 limit=128 [ 84.328730][ T4317] syz-executor823: attempt to access beyond end of device [ 84.328730][ T4317] loop1: rw=0, sector=16147212, nr_sectors = 2 limit=128 [ 84.330106][ T4324] Buffer I/O error on dev loop2, logical block 3245768, async page read [ 84.333418][ T4325] Buffer I/O error on dev loop4, logical block 3245768, async page read [ 84.337361][ T4325] Buffer I/O error on dev loop4, logical block 8833403, async page read [ 84.339257][ T4325] Buffer I/O error on dev loop4, logical block 13269809, async page read [ 84.341200][ T4323] Buffer I/O error on dev loop3, logical block 3245768, async page read [ 284.660791][ T28] INFO: task syz-executor823:4326 blocked for more than 143 seconds. [ 284.662575][ T28] Tainted: G W 6.1.122-syzkaller #0 [ 284.663974][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 284.665773][ T28] task:syz-executor823 state:D stack:0 pid:4326 ppid:4315 flags:0x00000005 [ 284.667612][ T28] Call trace: [ 284.668244][ T28] __switch_to+0x308/0x598 [ 284.669134][ T28] __schedule+0xef4/0x1d44 [ 284.669960][ T28] schedule+0xc4/0x170 [ 284.690806][ T28] rwsem_down_write_slowpath+0xc80/0x156c [ 284.692073][ T28] down_write_nested+0x90/0x94 [ 284.693026][ T28] do_unlinkat+0x2d0/0x70c [ 284.693919][ T28] __arm64_sys_unlinkat+0xcc/0xfc [ 284.694900][ T28] invoke_syscall+0x98/0x2bc [ 284.695862][ T28] el0_svc_common+0x138/0x258 [ 284.696786][ T28] do_el0_svc+0x58/0x13c [ 284.697522][ T28] el0_svc+0x58/0x168 [ 284.698373][ T28] el0t_64_sync_handler+0x84/0xf0 [ 284.699390][ T28] el0t_64_sync+0x18c/0x190 [ 284.700300][ T28] INFO: task syz-executor823:4327 blocked for more than 143 seconds. [ 284.720714][ T28] Tainted: G W 6.1.122-syzkaller #0 [ 284.722175][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 284.723835][ T28] task:syz-executor823 state:D stack:0 pid:4327 ppid:4311 flags:0x00000005 [ 284.725519][ T28] Call trace: [ 284.726185][ T28] __switch_to+0x308/0x598 [ 284.727038][ T28] __schedule+0xef4/0x1d44 [ 284.727909][ T28] schedule+0xc4/0x170 [ 284.728654][ T28] rwsem_down_write_slowpath+0xc80/0x156c [ 284.729799][ T28] down_write_nested+0x90/0x94 [ 284.760704][ T28] do_unlinkat+0x2d0/0x70c [ 284.761659][ T28] __arm64_sys_unlinkat+0xcc/0xfc [ 284.762705][ T28] invoke_syscall+0x98/0x2bc [ 284.763575][ T28] el0_svc_common+0x138/0x258 [ 284.764480][ T28] do_el0_svc+0x58/0x13c [ 284.765309][ T28] el0_svc+0x58/0x168 [ 284.766138][ T28] el0t_64_sync_handler+0x84/0xf0 [ 284.767151][ T28] el0t_64_sync+0x18c/0x190 [ 284.768135][ T28] INFO: task syz-executor823:4329 blocked for more than 143 seconds. [ 284.769782][ T28] Tainted: G W 6.1.122-syzkaller #0 [ 284.790633][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 284.792438][ T28] task:syz-executor823 state:D stack:0 pid:4329 ppid:4314 flags:0x00000005 [ 284.794223][ T28] Call trace: [ 284.794862][ T28] __switch_to+0x308/0x598 [ 284.795684][ T28] __schedule+0xef4/0x1d44 [ 284.796556][ T28] schedule+0xc4/0x170 [ 284.797429][ T28] rwsem_down_write_slowpath+0xc80/0x156c [ 284.798479][ T28] down_write_nested+0x90/0x94 [ 284.799401][ T28] do_unlinkat+0x2d0/0x70c [ 284.800380][ T28] __arm64_sys_unlinkat+0xcc/0xfc [ 284.830631][ T28] invoke_syscall+0x98/0x2bc [ 284.831614][ T28] el0_svc_common+0x138/0x258 [ 284.832706][ T28] do_el0_svc+0x58/0x13c [ 284.833525][ T28] el0_svc+0x58/0x168 [ 284.834412][ T28] el0t_64_sync_handler+0x84/0xf0 [ 284.835461][ T28] el0t_64_sync+0x18c/0x190 [ 284.836446][ T28] INFO: task syz-executor823:4330 blocked for more than 143 seconds. [ 284.838162][ T28] Tainted: G W 6.1.122-syzkaller #0 [ 284.839567][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 284.860655][ T28] task:syz-executor823 state:D stack:0 pid:4330 ppid:4313 flags:0x00000005 [ 284.862582][ T28] Call trace: [ 284.863229][ T28] __switch_to+0x308/0x598 [ 284.864227][ T28] __schedule+0xef4/0x1d44 [ 284.865259][ T28] schedule+0xc4/0x170 [ 284.866128][ T28] rwsem_down_write_slowpath+0xc80/0x156c [ 284.867412][ T28] down_write_nested+0x90/0x94 [ 284.868469][ T28] do_unlinkat+0x2d0/0x70c [ 284.869386][ T28] __arm64_sys_unlinkat+0xcc/0xfc [ 284.870375][ T28] invoke_syscall+0x98/0x2bc [ 284.890643][ T28] el0_svc_common+0x138/0x258 [ 284.891695][ T28] do_el0_svc+0x58/0x13c [ 284.892631][ T28] el0_svc+0x58/0x168 [ 284.893420][ T28] el0t_64_sync_handler+0x84/0xf0 [ 284.894355][ T28] el0t_64_sync+0x18c/0x190 [ 284.895261][ T28] INFO: task syz-executor823:4328 blocked for more than 143 seconds. [ 284.896874][ T28] Tainted: G W 6.1.122-syzkaller #0 [ 284.898226][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 284.900149][ T28] task:syz-executor823 state:D stack:0 pid:4328 ppid:4312 flags:0x00000005 [ 284.920637][ T28] Call trace: [ 284.921320][ T28] __switch_to+0x308/0x598 [ 284.922158][ T28] __schedule+0xef4/0x1d44 [ 284.923190][ T28] schedule+0xc4/0x170 [ 284.924013][ T28] rwsem_down_write_slowpath+0xc80/0x156c [ 284.925236][ T28] down_write_nested+0x90/0x94 [ 284.926376][ T28] do_unlinkat+0x2d0/0x70c [ 284.927392][ T28] __arm64_sys_unlinkat+0xcc/0xfc [ 284.928420][ T28] invoke_syscall+0x98/0x2bc [ 284.929349][ T28] el0_svc_common+0x138/0x258 [ 284.930270][ T28] do_el0_svc+0x58/0x13c [ 284.960650][ T28] el0_svc+0x58/0x168 [ 284.961559][ T28] el0t_64_sync_handler+0x84/0xf0 [ 284.962562][ T28] el0t_64_sync+0x18c/0x190 [ 284.963395][ T28] [ 284.963395][ T28] Showing all locks held in the system: [ 284.965084][ T28] 1 lock held by rcu_tasks_kthre/12: [ 284.966082][ T28] #0: ffff800015c65570 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x44/0xd10 [ 284.968181][ T28] 1 lock held by rcu_tasks_trace/13: [ 284.969229][ T28] #0: ffff800015c65d90 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x44/0xd10 [ 285.000634][ T28] 1 lock held by khungtaskd/28: [ 285.001710][ T28] #0: ffff800015c653a0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0xc/0x44 [ 285.003765][ T28] 2 locks held by getty/4059: [ 285.004870][ T28] #0: ffff0000d6569098 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x4c [ 285.006871][ T28] #1: ffff80001d8302f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x414/0x1214 [ 285.008941][ T28] 3 locks held by syz-executor823/4317: [ 285.010109][ T28] 2 locks held by syz-executor823/4326: [ 285.020654][ T28] #0: ffff0000daafc460 (sb_writers#10){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 285.022790][ T28] #1: ffff0000e4c6c188 (&type->i_mutex_dir_key#8/1){+.+.}-{3:3}, at: do_unlinkat+0x2d0/0x70c [ 285.024846][ T28] 2 locks held by syz-executor823/4319: [ 285.026023][ T28] 2 locks held by syz-executor823/4327: [ 285.027157][ T28] #0: ffff0000d828e460 (sb_writers#10){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 285.029026][ T28] #1: ffff0000e4c6c6d0 (&type->i_mutex_dir_key#8/1){+.+.}-{3:3}, at: do_unlinkat+0x2d0/0x70c [ 285.060773][ T28] 2 locks held by syz-executor823/4323: [ 285.061954][ T28] 2 locks held by syz-executor823/4329: [ 285.063164][ T28] #0: ffff0000dac2e460 (sb_writers#10){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 285.065216][ T28] #1: ffff0000e4c38188 (&type->i_mutex_dir_key#8/1){+.+.}-{3:3}, at: do_unlinkat+0x2d0/0x70c [ 285.067335][ T28] 2 locks held by syz-executor823/4324: [ 285.068538][ T28] 2 locks held by syz-executor823/4330: [ 285.069764][ T28] #0: ffff0000db0d2460 (sb_writers#10){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 285.090650][ T28] #1: ffff0000e4c386d0 (&type->i_mutex_dir_key#8/1){+.+.}-{3:3}, at: do_unlinkat+0x2d0/0x70c [ 285.092796][ T28] 2 locks held by syz-executor823/4325: [ 285.093948][ T28] 2 locks held by syz-executor823/4328: [ 285.095111][ T28] #0: ffff0000da604460 (sb_writers#10){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c [ 285.096861][ T28] #1: ffff0000e4c6cc18 (&type->i_mutex_dir_key#8/1){+.+.}-{3:3}, at: do_unlinkat+0x2d0/0x70c [ 285.120633][ T28] [ 285.121161][ T28] ============================================= [ 285.121161][ T28] [ 285.122821][ T28] Kernel panic - not syncing: hung_task: blocked tasks [ 285.124101][ T28] CPU: 1 PID: 28 Comm: khungtaskd Tainted: G W 6.1.122-syzkaller #0 [ 285.125890][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 285.127838][ T28] Call trace: [ 285.128459][ T28] dump_backtrace+0x1c8/0x1f4 [ 285.129285][ T28] show_stack+0x2c/0x3c [ 285.130534][ T28] dump_stack_lvl+0x108/0x170 [ 285.131489][ T28] dump_stack+0x1c/0x58 [ 285.132274][ T28] panic+0x300/0x804 [ 285.133064][ T28] hung_task_panic+0x0/0x2c [ 285.134005][ T28] kthread+0x250/0x2d8 [ 285.134900][ T28] ret_from_fork+0x10/0x20 [ 285.135841][ T28] SMP: stopping secondary CPUs [ 285.136864][ T28] Kernel Offset: disabled [ 285.137808][ T28] CPU features: 0x080000,02070084,26017203 [ 285.138971][ T28] Memory Limit: none [ 285.465448][ T28] Rebooting in 86400 seconds..