forked to background, child pid 3178
no interfaces have a carrier
[ 27.622486][ T3179] 8021q: adding VLAN 0 to HW filter on device bond0
[ 27.633401][ T3179] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK
syzkaller
syzkaller login: [ 76.151929][ T922] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.10.36' (ECDSA) to the list of known hosts.
[ 1117.918398][ T3662] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1117.926152][ T3662] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1117.933836][ T3664] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1117.941355][ T3664] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1117.948623][ T3664] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1117.955863][ T3664] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1118.038310][ T3659] chnl_net:caif_netlink_parms(): no params data found
[ 1118.080163][ T3659] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1118.088034][ T3659] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1118.096862][ T3659] device bridge_slave_0 entered promiscuous mode
[ 1118.105539][ T3659] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1118.112823][ T3659] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1118.120815][ T3659] device bridge_slave_1 entered promiscuous mode
[ 1118.142220][ T3659] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1118.152798][ T3659] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1118.174233][ T3659] team0: Port device team_slave_0 added
[ 1118.181212][ T3659] team0: Port device team_slave_1 added
[ 1118.199008][ T3659] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1118.206039][ T3659] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1118.232037][ T3659] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1118.244302][ T3659] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1118.251389][ T3659] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1118.277561][ T3659] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1118.302774][ T3659] device hsr_slave_0 entered promiscuous mode
[ 1118.309796][ T3659] device hsr_slave_1 entered promiscuous mode
[ 1118.388901][ T3659] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1118.399290][ T3659] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1118.407986][ T3659] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1118.417328][ T3659] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1118.438082][ T3659] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1118.445296][ T3659] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1118.453057][ T3659] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1118.460190][ T3659] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1118.505979][ T3659] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1118.517223][ T3672] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1118.527514][ T3672] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1118.536273][ T3672] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1118.545632][ T3672] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 1118.558957][ T3659] 8021q: adding VLAN 0 to HW filter on device team0
[ 1118.569983][ T3673] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1118.578257][ T3673] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1118.585371][ T3673] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1118.595871][ T3671] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1118.604728][ T3671] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1118.611806][ T3671] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1118.632478][ T3671] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1118.641385][ T3671] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1118.649818][ T3671] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1118.665450][ T3659] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1118.676088][ T3659] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1118.690484][ T143] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1118.700196][ T143] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1118.708400][ T143] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1118.724594][ T3673] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1118.732163][ T3673] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1118.743890][ T3659] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1118.871695][ T3671] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1118.889410][ T3659] device veth0_vlan entered promiscuous mode
[ 1118.896859][ T143] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1118.905694][ T143] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1118.913468][ T143] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1118.925856][ T3659] device veth1_vlan entered promiscuous mode
[ 1118.943700][ T143] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1118.951808][ T143] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1118.959921][ T143] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1118.971609][ T3659] device veth0_macvtap entered promiscuous mode
[ 1118.981238][ T3659] device veth1_macvtap entered promiscuous mode
[ 1118.996537][ T3659] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1119.004965][ T143] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1119.014562][ T143] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1119.025509][ T3659] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1119.034435][ T143] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1119.043376][ T143] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1119.053747][ T3659] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1119.063412][ T3659] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1119.072317][ T3659] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1119.081132][ T3659] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1119.141354][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1119.149249][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1119.175937][ T3669] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
executing program
[ 1119.184702][ T3682] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1119.193097][ T3682] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1119.202803][ T3669] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1119.239204][ T3682] Bluetooth: hci1: Frame reassembly failed (-84)
[ 1119.990893][ T3669] Bluetooth: hci0: command 0x0409 tx timeout
executing program
[ 1121.269847][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1121.270043][ T143] Bluetooth: hci1: command 0x1003 tx timeout
[ 1122.070238][ T143] Bluetooth: hci0: command 0x041b tx timeout
executing program
[ 1123.349733][ T3675] Bluetooth: hci1: command 0x1003 tx timeout
[ 1123.349797][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1124.150074][ T3675] Bluetooth: hci0: command 0x040f tx timeout
executing program
[ 1125.429807][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1126.229771][ T143] Bluetooth: hci0: command 0x0419 tx timeout
executing program
[ 1127.509735][ T3671] Bluetooth: hci1: command 0x1003 tx timeout
[ 1127.509821][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
executing program
[ 1129.589743][ T3671] Bluetooth: hci1: command 0x1003 tx timeout
[ 1129.590020][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
executing program
[ 1131.669726][ T143] Bluetooth: hci1: command 0x1003 tx timeout
[ 1131.669794][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
executing program
[ 1133.749737][ T143] Bluetooth: hci1: command 0x1003 tx timeout
[ 1133.749773][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
executing program
[ 1135.829723][ T3671] Bluetooth: hci1: command 0x1003 tx timeout
[ 1135.829788][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
executing program
[ 1137.909728][ T3671] Bluetooth: hci1: command 0x1003 tx timeout
[ 1137.919792][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
executing program
[ 1139.989727][ T143] Bluetooth: hci1: command 0x1003 tx timeout
[ 1139.999766][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
executing program
[ 1142.069710][ T143] Bluetooth: hci1: command 0x1003 tx timeout
[ 1142.069797][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
executing program
[ 1144.149733][ T3671] Bluetooth: hci1: command 0x1003 tx timeout
[ 1144.149814][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1144.181586][ T3664] Bluetooth: hci1: sending frame failed (-49)
[ 1144.188703][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -49
executing program
executing program
[ 1146.309738][ T3671] Bluetooth: hci1: command 0x1003 tx timeout
[ 1146.309868][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
executing program
[ 1148.389732][ T143] Bluetooth: hci1: command 0x1003 tx timeout
[ 1148.389849][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1148.420882][ T3664] Bluetooth: hci1: sending frame failed (-49)
[ 1148.427715][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -49
executing program
executing program
[ 1148.492400][ T3664] Bluetooth: hci1: sending frame failed (-49)
[ 1148.498984][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -49
executing program
[ 1150.629716][ T3671] Bluetooth: hci1: command 0x1003 tx timeout
[ 1150.629795][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
executing program
[ 1152.709736][ T3671] Bluetooth: hci1: command 0x1003 tx timeout
[ 1152.709780][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
executing program
[ 1154.789717][ T143] Bluetooth: hci1: command 0x1003 tx timeout
[ 1154.789765][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1154.820516][ T3664] Bluetooth: hci1: sending frame failed (-49)
[ 1154.827301][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -49
executing program
executing program
[ 1156.949756][ T3671] Bluetooth: hci1: command 0x1003 tx timeout
[ 1156.949768][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
executing program
[ 1159.030361][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1159.033063][ T3671] Bluetooth: hci1: command 0x1003 tx timeout
executing program
[ 1161.109739][ T3671] Bluetooth: hci1: command 0x1003 tx timeout
[ 1161.109786][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
executing program
[ 1163.189711][ T143] Bluetooth: hci1: command 0x1003 tx timeout
[ 1163.189789][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
executing program
[ 1165.269736][ T143] Bluetooth: hci1: command 0x1003 tx timeout
[ 1165.269767][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
executing program
[ 1167.349715][ T143] Bluetooth: hci1: command 0x1003 tx timeout
[ 1167.349775][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
executing program
[ 1169.429763][ T3671] Bluetooth: hci1: command 0x1003 tx timeout
[ 1169.429771][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
executing program
[ 1171.509712][ T143] Bluetooth: hci1: command 0x1003 tx timeout
[ 1171.509821][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
executing program
[ 1173.589720][ T143] Bluetooth: hci1: command 0x1003 tx timeout
[ 1173.595891][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
executing program
[ 1175.669752][ T3669] Bluetooth: hci1: command 0x1003 tx timeout
[ 1175.679927][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1176.960810][ T1227] ieee802154 phy0 wpan0: encryption failed: -22
[ 1176.967425][ T1227] ieee802154 phy1 wpan1: encryption failed: -22
executing program
[ 1177.749726][ T3672] Bluetooth: hci1: command 0x1003 tx timeout
[ 1177.749734][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
executing program
[ 1179.829735][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1179.829833][ T3669] Bluetooth: hci1: command 0x1003 tx timeout
executing program
[ 1181.909753][ T3669] Bluetooth: hci1: command 0x1003 tx timeout
[ 1181.909808][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
executing program
[ 1183.990427][ T922] Bluetooth: hci1: command 0x1003 tx timeout
[ 1183.996699][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
executing program
[ 1186.069728][ T922] Bluetooth: hci1: command 0x1003 tx timeout
[ 1186.069758][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
executing program
[ 1188.149728][ T922] Bluetooth: hci1: command 0x1003 tx timeout
[ 1188.149738][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1188.182893][ T3664] Bluetooth: hci1: sending frame failed (-49)
[ 1188.189783][ T3662] Bluetooth: hci1: Opcode 0x1003 failed: -49
executing program
[ 1238.400830][ T1227] ieee802154 phy0 wpan0: encryption failed: -22
[ 1238.407312][ T1227] ieee802154 phy1 wpan1: encryption failed: -22
[ 1240.469716][ T143] Bluetooth: hci0: command 0x0406 tx timeout
[ 1299.840995][ T1227] ieee802154 phy0 wpan0: encryption failed: -22
[ 1299.847475][ T1227] ieee802154 phy1 wpan1: encryption failed: -22
[ 1342.069747][ T28] INFO: task kworker/u5:1:3662 blocked for more than 143 seconds.
[ 1342.077720][ T28] Not tainted 5.19.0-rc4-next-20220628-syzkaller #0
[ 1342.085364][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1342.094108][ T28] task:kworker/u5:1 state:D stack:27992 pid: 3662 ppid: 2 flags:0x00004000
[ 1342.104679][ T28] Workqueue: hci1 hci_power_on
[ 1342.109647][ T28] Call Trace:
[ 1342.112942][ T28]
[ 1342.115895][ T28] __schedule+0xa09/0x4f10
[ 1342.121668][ T28] ? __mutex_lock+0xa6b/0x1350
[ 1342.126496][ T28] ? io_schedule_timeout+0x140/0x140
[ 1342.131853][ T28] schedule+0xd2/0x1f0
[ 1342.135946][ T28] schedule_preempt_disabled+0xf/0x20
[ 1342.141610][ T28] __mutex_lock+0xa70/0x1350
[ 1342.146229][ T28] ? hci_dev_do_open+0x25/0x70
[ 1342.151087][ T28] ? mutex_lock_io_nested+0x1190/0x1190
[ 1342.156673][ T28] ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 1342.162814][ T28] hci_dev_do_open+0x25/0x70
[ 1342.167420][ T28] hci_power_on+0x12e/0x630
[ 1342.171978][ T28] ? hci_error_reset+0x130/0x130
[ 1342.176929][ T28] ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 1342.183037][ T28] process_one_work+0x991/0x1610
[ 1342.188001][ T28] ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[ 1342.193428][ T28] ? rwlock_bug.part.0+0x90/0x90
[ 1342.198379][ T28] ? _raw_spin_lock_irq+0x41/0x50
[ 1342.203616][ T28] worker_thread+0x665/0x1080
[ 1342.208355][ T28] ? process_one_work+0x1610/0x1610
[ 1342.213643][ T28] kthread+0x2e9/0x3a0
[ 1342.217739][ T28] ? kthread_complete_and_exit+0x40/0x40
[ 1342.223656][ T28] ret_from_fork+0x1f/0x30
[ 1342.228111][ T28]
[ 1342.232058][ T28] INFO: task syz-executor308:3721 blocked for more than 143 seconds.
[ 1342.240305][ T28] Not tainted 5.19.0-rc4-next-20220628-syzkaller #0
[ 1342.247404][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1342.256422][ T28] task:syz-executor308 state:D stack:27960 pid: 3721 ppid: 3659 flags:0x00004004
[ 1342.265818][ T28] Call Trace:
[ 1342.269091][ T28]
[ 1342.272287][ T28] __schedule+0xa09/0x4f10
[ 1342.276716][ T28] ? io_schedule_timeout+0x140/0x140
[ 1342.282202][ T28] ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 1342.288181][ T28] schedule+0xd2/0x1f0
[ 1342.292468][ T28] schedule_timeout+0x1db/0x2a0
[ 1342.297321][ T28] ? usleep_range_state+0x1b0/0x1b0
[ 1342.302751][ T28] ? __wait_for_common+0x36f/0x530
[ 1342.307862][ T28] ? mark_held_locks+0x9f/0xe0
[ 1342.312855][ T28] ? rwlock_bug.part.0+0x90/0x90
[ 1342.317809][ T28] ? _raw_spin_unlock_irq+0x1f/0x40
[ 1342.323439][ T28] ? _raw_spin_unlock_irq+0x1f/0x40
[ 1342.328680][ T28] __wait_for_common+0x378/0x530
[ 1342.333955][ T28] ? usleep_range_state+0x1b0/0x1b0
[ 1342.339182][ T28] ? out_of_line_wait_on_bit_timeout+0x170/0x170
[ 1342.345738][ T28] ? lockdep_hardirqs_off+0x90/0xd0
[ 1342.351122][ T28] __flush_work+0x56c/0xb10
[ 1342.355631][ T28] ? queue_delayed_work_on+0x120/0x120
[ 1342.361293][ T28] ? kasan_save_stack+0x2e/0x40
[ 1342.366155][ T28] ? flush_workqueue_prep_pwqs+0x4f0/0x4f0
[ 1342.372278][ T28] ? mark_held_locks+0x9f/0xe0
[ 1342.377066][ T28] ? __cancel_work_timer+0x408/0x570
[ 1342.382615][ T28] __cancel_work_timer+0x3f9/0x570
[ 1342.387737][ T28] ? cancel_delayed_work+0x20/0x20
[ 1342.393096][ T28] ? rcu_read_lock_sched_held+0x3a/0x70
[ 1342.398672][ T28] ? trace_contention_end+0xea/0x150
[ 1342.404206][ T28] ? __mutex_lock+0x231/0x1350
[ 1342.408985][ T28] ? kasan_quarantine_put+0xf5/0x210
[ 1342.414507][ T28] ? hci_dev_do_close+0x25/0x70
[ 1342.419360][ T28] hci_dev_close_sync+0x88/0x1140
[ 1342.424690][ T28] ? hci_dev_open_sync+0x2130/0x2130
[ 1342.430532][ T28] ? kfree+0xe2/0x4d0
[ 1342.434547][ T28] hci_dev_do_close+0x2d/0x70
[ 1342.439221][ T28] hci_unregister_dev+0x1bf/0x540
[ 1342.444535][ T28] hci_uart_tty_close+0x23c/0x290
[ 1342.449836][ T28] ? hci_uart_close+0x70/0x70
[ 1342.454528][ T28] tty_ldisc_close+0x110/0x190
[ 1342.459324][ T28] tty_ldisc_kill+0x94/0x150
[ 1342.464178][ T28] tty_ldisc_release+0xe1/0x2a0
[ 1342.469023][ T28] tty_release_struct+0x20/0xe0
[ 1342.474125][ T28] tty_release+0xc70/0x1200
[ 1342.478633][ T28] __fput+0x277/0x9d0
[ 1342.482844][ T28] ? tty_release_struct+0xe0/0xe0
[ 1342.487873][ T28] task_work_run+0xdd/0x1a0
[ 1342.492624][ T28] exit_to_user_mode_prepare+0x23c/0x250
[ 1342.498253][ T28] syscall_exit_to_user_mode+0x19/0x50
[ 1342.503927][ T28] do_syscall_64+0x42/0xb0
[ 1342.508339][ T28] entry_SYSCALL_64_after_hwframe+0x46/0xb0
[ 1342.514476][ T28] RIP: 0033:0x7fab7ef07bbb
[ 1342.518883][ T28] RSP: 002b:00007ffe939952a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1342.527514][ T28] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 00007fab7ef07bbb
[ 1342.535642][ T28] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1342.543721][ T28] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000003
[ 1342.552981][ T28] R10: 0000000000000003 R11: 0000000000000293 R12: 00007ffe939952d8
[ 1342.561062][ T28] R13: 00007ffe93995310 R14: 00007ffe939952f0 R15: 0000000000000026
[ 1342.569061][ T28]
[ 1342.572241][ T28]
[ 1342.572241][ T28] Showing all locks held in the system:
[ 1342.580123][ T28] 1 lock held by rcu_tasks_kthre/12:
[ 1342.585415][ T28] #0: ffffffff8bd864f0 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x26/0xc70
[ 1342.595961][ T28] 1 lock held by rcu_tasks_trace/13:
[ 1342.601277][ T28] #0: ffffffff8bd861f0 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x26/0xc70
[ 1342.612286][ T28] 1 lock held by khungtaskd/28:
[ 1342.617163][ T28] #0: ffffffff8bd87040 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260
[ 1342.627113][ T28] 2 locks held by getty/3277:
[ 1342.631886][ T28] #0: ffff88814ac42098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x22/0x80
[ 1342.641670][ T28] #1: ffffc90002d162f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xe50/0x13c0
[ 1342.652008][ T28] 3 locks held by kworker/u5:1/3662:
[ 1342.657296][ T28] #0: ffff888077b14138 ((wq_completion)hci1){+.+.}-{0:0}, at: process_one_work+0x87a/0x1610
[ 1342.667832][ T28] #1: ffffc9000325fda8 ((work_completion)(&hdev->power_on)){+.+.}-{0:0}, at: process_one_work+0x8ae/0x1610
[ 1342.680025][ T28] #2: ffff88807b561048 (&hdev->req_lock){+.+.}-{3:3}, at: hci_dev_do_open+0x25/0x70
[ 1342.689737][ T28] 3 locks held by syz-executor308/3721:
[ 1342.695301][ T28] #0: ffff88801c254098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_release+0x15c/0x2a0
[ 1342.705478][ T28] #1: ffff88801c255098 (&tty->ldisc_sem/1){+.+.}-{0:0}, at: tty_ldisc_release+0x20f/0x2a0
[ 1342.716099][ T28] #2: ffff88807b561048 (&hdev->req_lock){+.+.}-{3:3}, at: hci_dev_do_close+0x25/0x70
[ 1342.725944][ T28]
[ 1342.728267][ T28] =============================================
[ 1342.728267][ T28]
[ 1342.737038][ T28] NMI backtrace for cpu 1
[ 1342.741362][ T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 5.19.0-rc4-next-20220628-syzkaller #0
[ 1342.750721][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022
[ 1342.760773][ T28] Call Trace:
[ 1342.764053][ T28]
[ 1342.766974][ T28] dump_stack_lvl+0xcd/0x134
[ 1342.771632][ T28] nmi_cpu_backtrace.cold+0x47/0x144
[ 1342.776929][ T28] ? lapic_can_unplug_cpu+0x80/0x80
[ 1342.782127][ T28] nmi_trigger_cpumask_backtrace+0x1e6/0x230
[ 1342.788144][ T28] watchdog+0xc18/0xf50
[ 1342.792298][ T28] ? proc_dohung_task_timeout_secs+0x80/0x80
[ 1342.798274][ T28] kthread+0x2e9/0x3a0
[ 1342.802337][ T28] ? kthread_complete_and_exit+0x40/0x40
[ 1342.807979][ T28] ret_from_fork+0x1f/0x30
[ 1342.812414][ T28]
[ 1342.815556][ T28] Sending NMI from CPU 1 to CPUs 0:
[ 1342.820818][ C0] NMI backtrace for cpu 0
[ 1342.820827][ C0] CPU: 0 PID: 3670 Comm: kworker/u4:0 Not tainted 5.19.0-rc4-next-20220628-syzkaller #0
[ 1342.820847][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022
[ 1342.820858][ C0] Workqueue: events_unbound toggle_allocation_gate
[ 1342.820885][ C0] RIP: 0010:__debug_object_init+0x23a/0xd10
[ 1342.820977][ C0] Code: c0 48 89 01 74 24 48 8d 78 08 48 be 00 00 00 00 00 fc ff df 49 89 fa 49 c1 ea 03 41 80 3c 32 00 0f 85 e0 08 00 00 48 89 48 08 <48> b8 00 01 00 00 00 00 ad de 48 8d 7a 08 48 89 45 00 48 83 c0 22
[ 1342.820994][ C0] RSP: 0018:ffffc900032bfa50 EFLAGS: 00000046
[ 1342.821007][ C0] RAX: ffff88802008a658 RBX: 0000000000003768 RCX: ffff8880b9a36b40
[ 1342.821020][ C0] RDX: ffff8880b9a36b40 RSI: dffffc0000000000 RDI: ffff88802008a660
[ 1342.821032][ C0] RBP: ffff88807e95d968 R08: 0000000000000202 R09: 0000000000000003
[ 1342.821043][ C0] R10: 1ffff110040114cc R11: 0000000000000001 R12: ffffc900032bfb80
[ 1342.821054][ C0] R13: 1ffff92000657f59 R14: ffffffff911074d0 R15: ffffffff911074c8
[ 1342.821067][ C0] FS: 0000000000000000(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000
[ 1342.821084][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1342.821097][ C0] CR2: 00007ffebfaa9238 CR3: 000000000ba8e000 CR4: 00000000003506f0
[ 1342.821108][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1342.821118][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1342.821129][ C0] Call Trace:
[ 1342.821135][ C0]
[ 1342.821142][ C0] ? static_key_enable_cpuslocked+0x108/0x260
[ 1342.821167][ C0] ? debug_object_free+0x350/0x350
[ 1342.821195][ C0] schedule_timeout+0xf2/0x2a0
[ 1342.821226][ C0] ? usleep_range_state+0x1b0/0x1b0
[ 1342.821249][ C0] ? _raw_spin_unlock_irqrestore+0x50/0x70
[ 1342.821275][ C0] ? _raw_spin_unlock_irqrestore+0x50/0x70
[ 1342.821302][ C0] ? lockdep_hardirqs_on+0x79/0x100
[ 1342.821326][ C0] ? _raw_spin_unlock_irqrestore+0x3d/0x70
[ 1342.821353][ C0] ? prepare_to_wait_event+0xc8/0x690
[ 1342.821374][ C0] toggle_allocation_gate+0x305/0x390
[ 1342.821397][ C0] ? lock_release+0x780/0x780
[ 1342.821414][ C0] ? wake_up_kfence_timer+0x20/0x20
[ 1342.821436][ C0] ? lockdep_hardirqs_on+0x79/0x100
[ 1342.821459][ C0] ? prepare_to_wait_exclusive+0x2b0/0x2b0
[ 1342.821482][ C0] process_one_work+0x991/0x1610
[ 1342.821508][ C0] ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[ 1342.821532][ C0] ? rwlock_bug.part.0+0x90/0x90
[ 1342.821550][ C0] ? _raw_spin_lock_irq+0x41/0x50
[ 1342.821579][ C0] worker_thread+0x665/0x1080
[ 1342.821604][ C0] ? __kthread_parkme+0x15f/0x220
[ 1342.821622][ C0] ? process_one_work+0x1610/0x1610
[ 1342.821645][ C0] kthread+0x2e9/0x3a0
[ 1342.821661][ C0] ? kthread_complete_and_exit+0x40/0x40
[ 1342.821682][ C0] ret_from_fork+0x1f/0x30
[ 1342.821711][ C0]
[ 1342.821900][ T28] Kernel panic - not syncing: hung_task: blocked tasks
[ 1343.103398][ T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 5.19.0-rc4-next-20220628-syzkaller #0
[ 1343.112774][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022
[ 1343.122823][ T28] Call Trace:
[ 1343.126098][ T28]
[ 1343.129038][ T28] dump_stack_lvl+0xcd/0x134
[ 1343.133638][ T28] panic+0x2d7/0x636
[ 1343.137565][ T28] ? panic_print_sys_info.part.0+0x10b/0x10b
[ 1343.143551][ T28] ? lapic_can_unplug_cpu+0x80/0x80
[ 1343.148749][ T28] ? preempt_schedule_thunk+0x16/0x18
[ 1343.154127][ T28] ? watchdog.cold+0x130/0x158
[ 1343.158906][ T28] watchdog.cold+0x141/0x158
[ 1343.163495][ T28] ? proc_dohung_task_timeout_secs+0x80/0x80
[ 1343.169481][ T28] kthread+0x2e9/0x3a0
[ 1343.173552][ T28] ? kthread_complete_and_exit+0x40/0x40
[ 1343.179182][ T28] ret_from_fork+0x1f/0x30
[ 1343.183613][ T28]
[ 1343.186928][ T28] Kernel Offset: disabled
[ 1343.191255][ T28] Rebooting in 86400 seconds..