[ 47.302003][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 47.327728][ T8] device veth1_macvtap left promiscuous mode [ 47.327835][ T8] device veth0_macvtap left promiscuous mode [ 47.328360][ T8] device veth1_vlan left promiscuous mode [ 47.328528][ T8] device veth0_vlan left promiscuous mode [ 47.564954][ T8] team0 (unregistering): Port device team_slave_1 removed [ 47.576627][ T8] team0 (unregistering): Port device team_slave_0 removed [ 47.583572][ T8] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 47.609526][ T8] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 47.682361][ T8] bond0 (unregistering): Released all slaves Warning: Permanently added '10.128.1.93' (ECDSA) to the list of known hosts. 2022/06/28 22:35:58 parsed 1 programs 2022/06/28 22:35:58 executed programs: 0 [ 60.388723][ T4016] cgroup: Unknown subsys name 'net' [ 60.392566][ T4016] cgroup: Unknown subsys name 'rlimit' [ 61.469102][ T48] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 61.469921][ T48] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 61.470424][ T48] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 61.471039][ T48] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 61.471427][ T48] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 61.471650][ T48] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 61.544131][ T4027] chnl_net:caif_netlink_parms(): no params data found [ 61.579536][ T4027] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.579603][ T4027] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.580128][ T4027] device bridge_slave_0 entered promiscuous mode [ 61.581577][ T4027] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.581632][ T4027] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.582136][ T4027] device bridge_slave_1 entered promiscuous mode [ 61.624139][ T4027] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.628068][ T4027] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 61.653279][ T4027] team0: Port device team_slave_0 added [ 61.654915][ T4027] team0: Port device team_slave_1 added [ 61.673375][ T4027] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 61.673382][ T4027] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.673389][ T4027] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 61.674440][ T4027] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 61.674444][ T4027] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.674451][ T4027] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 61.770408][ T4027] device hsr_slave_0 entered promiscuous mode [ 61.771593][ T4027] device hsr_slave_1 entered promiscuous mode [ 61.857357][ T4027] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.857411][ T4027] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.857539][ T4027] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.857598][ T4027] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.932117][ T4027] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.947742][ T142] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 61.948812][ T142] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.949289][ T142] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.950006][ T142] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 61.973421][ T4027] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.977980][ T142] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.978320][ T142] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.978364][ T142] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.983662][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.983995][ T6] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.984039][ T6] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.006611][ T142] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 62.007101][ T142] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 62.023800][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 62.029666][ T3640] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 62.033750][ T142] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 62.047450][ T4027] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 62.070249][ T3640] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 62.070335][ T3640] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 62.078274][ T4027] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 62.271021][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 62.278253][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 62.278927][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 62.279276][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 62.282508][ T4027] device veth0_vlan entered promiscuous mode [ 62.287479][ T4027] device veth1_vlan entered promiscuous mode [ 62.305264][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 62.306894][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 62.307447][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 62.312732][ T4027] device veth0_macvtap entered promiscuous mode [ 62.315523][ T4027] device veth1_macvtap entered promiscuous mode [ 62.325628][ T4027] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 62.326847][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 62.328932][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 62.334389][ T4027] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 62.334582][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 62.422792][ T8] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 62.422800][ T8] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 62.423802][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 62.443638][ T8] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 62.443648][ T8] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 62.445452][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 63.547207][ T142] Bluetooth: hci0: command 0x0409 tx timeout [ 65.626587][ T142] Bluetooth: hci0: command 0x041b tx timeout [ 66.118032][ T1228] ieee802154 phy0 wpan0: encryption failed: -22 [ 66.118066][ T1228] ieee802154 phy1 wpan1: encryption failed: -22 [ 67.705847][ T3633] Bluetooth: hci0: command 0x040f tx timeout [ 69.785830][ T142] Bluetooth: hci0: command 0x0419 tx timeout [ 71.229446][ T14] cfg80211: failed to load regulatory.db [ 127.558094][ T1228] ieee802154 phy0 wpan0: encryption failed: -22 [ 127.558130][ T1228] ieee802154 phy1 wpan1: encryption failed: -22 [ 185.945816][ T4115] Bluetooth: hci0: command 0x0406 tx timeout [ 188.987732][ T1228] ieee802154 phy0 wpan0: encryption failed: -22 [ 188.987762][ T1228] ieee802154 phy1 wpan1: encryption failed: -22 [ 222.915904][ T29] INFO: task kworker/0:0:6 blocked for more than 143 seconds. [ 222.923522][ T29] Not tainted 5.19.0-rc3-syzkaller #0 [ 222.930053][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 222.939379][ T29] task:kworker/0:0 state:D stack:27360 pid: 6 ppid: 2 flags:0x00004000 [ 222.948738][ T29] Workqueue: ipv6_addrconf addrconf_dad_work [ 222.954731][ T29] Call Trace: [ 222.958101][ T29] [ 222.961038][ T29] __schedule+0x9cd/0x4b20 [ 222.965447][ T29] ? io_schedule_timeout+0x140/0x140 [ 222.970873][ T29] ? _raw_spin_unlock_irq+0x1f/0x40 [ 222.976196][ T29] ? lockdep_hardirqs_on_prepare+0x17b/0x400 [ 222.982180][ T29] schedule+0xd2/0x1f0 [ 222.986377][ T29] schedule_preempt_disabled+0xf/0x20 [ 222.991749][ T29] __mutex_lock+0xa70/0x1350 [ 222.996429][ T29] ? addrconf_dad_work+0x9f/0x1080 [ 223.001542][ T29] ? mutex_lock_io_nested+0x1190/0x1190 [ 223.007396][ T29] ? lock_downgrade+0x6e0/0x6e0 [ 223.012266][ T29] ? lock_acquire+0x1ab/0x570 [ 223.017033][ T29] addrconf_dad_work+0x9f/0x1080 [ 223.021962][ T29] ? lock_downgrade+0x6e0/0x6e0 [ 223.026950][ T29] ? lockdep_hardirqs_on+0x79/0x100 [ 223.032143][ T29] ? addrconf_dad_completed+0xce0/0xce0 [ 223.038236][ T29] process_one_work+0x865/0x13d0 [ 223.043293][ T29] ? lock_release+0x780/0x780 [ 223.048147][ T29] ? pwq_dec_nr_in_flight+0x230/0x230 [ 223.053525][ T29] ? rwlock_bug.part.0+0x90/0x90 [ 223.058890][ T29] ? _raw_spin_lock_irq+0x41/0x50 [ 223.063923][ T29] worker_thread+0x598/0xec0 [ 223.068675][ T29] ? process_one_work+0x13d0/0x13d0 [ 223.073952][ T29] kthread+0x299/0x340 [ 223.078102][ T29] ? kthread_complete_and_exit+0x20/0x20 [ 223.083857][ T29] ret_from_fork+0x1f/0x30 [ 223.088434][ T29] [ 223.091480][ T29] INFO: task kworker/0:1:14 blocked for more than 143 seconds. [ 223.099169][ T29] Not tainted 5.19.0-rc3-syzkaller #0 [ 223.105060][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 223.113845][ T29] task:kworker/0:1 state:D stack:26968 pid: 14 ppid: 2 flags:0x00004000 [ 223.123255][ T29] Workqueue: events request_firmware_work_func [ 223.129680][ T29] Call Trace: [ 223.132967][ T29] [ 223.136151][ T29] __schedule+0x9cd/0x4b20 [ 223.140667][ T29] ? io_schedule_timeout+0x140/0x140 [ 223.146749][ T29] ? _raw_spin_unlock_irq+0x1f/0x40 [ 223.151949][ T29] ? lockdep_hardirqs_on_prepare+0x17b/0x400 [ 223.158049][ T29] schedule+0xd2/0x1f0 [ 223.162120][ T29] schedule_preempt_disabled+0xf/0x20 [ 223.167599][ T29] __mutex_lock+0xa70/0x1350 [ 223.172192][ T29] ? regdb_fw_cb.cold+0x4d/0x6e [ 223.177144][ T29] ? mutex_lock_io_nested+0x1190/0x1190 [ 223.182695][ T29] ? _printk+0xad/0xde [ 223.186885][ T29] ? record_print_text.cold+0x11/0x11 [ 223.192347][ T29] ? restore_regulatory_settings+0x16b0/0x16b0 [ 223.198580][ T29] regdb_fw_cb.cold+0x4d/0x6e [ 223.203278][ T29] request_firmware_work_func+0x126/0x230 [ 223.209107][ T29] ? request_partial_firmware_into_buf+0x90/0x90 [ 223.215613][ T29] process_one_work+0x865/0x13d0 [ 223.220669][ T29] ? lock_release+0x780/0x780 [ 223.225352][ T29] ? pwq_dec_nr_in_flight+0x230/0x230 [ 223.230828][ T29] ? rwlock_bug.part.0+0x90/0x90 [ 223.235950][ T29] ? _raw_spin_lock_irq+0x41/0x50 [ 223.240963][ T29] worker_thread+0x598/0xec0 [ 223.245847][ T29] ? __kthread_parkme+0xc1/0x1f0 [ 223.250814][ T29] ? process_one_work+0x13d0/0x13d0 [ 223.256635][ T29] kthread+0x299/0x340 [ 223.260716][ T29] ? kthread_complete_and_exit+0x20/0x20 [ 223.266450][ T29] ret_from_fork+0x1f/0x30 [ 223.270883][ T29] [ 223.273914][ T29] INFO: task kworker/1:1:27 blocked for more than 143 seconds. [ 223.281575][ T29] Not tainted 5.19.0-rc3-syzkaller #0 [ 223.287684][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 223.296514][ T29] task:kworker/1:1 state:D stack:26480 pid: 27 ppid: 2 flags:0x00004000 [ 223.306059][ T29] Workqueue: ipv6_addrconf addrconf_dad_work [ 223.312061][ T29] Call Trace: [ 223.315332][ T29] [ 223.318346][ T29] __schedule+0x9cd/0x4b20 [ 223.322775][ T29] ? io_schedule_timeout+0x140/0x140 [ 223.328158][ T29] ? _raw_spin_unlock_irq+0x1f/0x40 [ 223.333370][ T29] ? lockdep_hardirqs_on_prepare+0x17b/0x400 [ 223.339648][ T29] schedule+0xd2/0x1f0 [ 223.343834][ T29] schedule_preempt_disabled+0xf/0x20 [ 223.349696][ T29] __mutex_lock+0xa70/0x1350 [ 223.354311][ T29] ? addrconf_dad_work+0x9f/0x1080 [ 223.359617][ T29] ? mutex_lock_io_nested+0x1190/0x1190 [ 223.365162][ T29] ? lock_downgrade+0x6e0/0x6e0 [ 223.370690][ T29] ? do_raw_spin_unlock+0x171/0x230 [ 223.376107][ T29] ? lock_acquire+0x1ab/0x570 [ 223.380981][ T29] addrconf_dad_work+0x9f/0x1080 [ 223.386064][ T29] ? lock_downgrade+0x6e0/0x6e0 [ 223.390934][ T29] ? do_raw_spin_lock+0x120/0x2a0 [ 223.396091][ T29] ? addrconf_dad_completed+0xce0/0xce0 [ 223.401640][ T29] process_one_work+0x865/0x13d0 [ 223.406768][ T29] ? lock_release+0x780/0x780 [ 223.411455][ T29] ? pwq_dec_nr_in_flight+0x230/0x230 [ 223.416929][ T29] ? rwlock_bug.part.0+0x90/0x90 [ 223.421886][ T29] ? _raw_spin_lock_irq+0x41/0x50 [ 223.427076][ T29] worker_thread+0x598/0xec0 [ 223.431676][ T29] ? __kthread_parkme+0xc1/0x1f0 [ 223.436710][ T29] ? process_one_work+0x13d0/0x13d0 [ 223.441916][ T29] kthread+0x299/0x340 [ 223.446098][ T29] ? kthread_complete_and_exit+0x20/0x20 [ 223.451827][ T29] ret_from_fork+0x1f/0x30 [ 223.456367][ T29] [ 223.459443][ T29] INFO: task kworker/0:5:3640 blocked for more than 143 seconds. [ 223.467446][ T29] Not tainted 5.19.0-rc3-syzkaller #0 [ 223.473334][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 223.482648][ T29] task:kworker/0:5 state:D stack:26120 pid: 3640 ppid: 2 flags:0x00004000 [ 223.491996][ T29] Workqueue: events linkwatch_event [ 223.497305][ T29] Call Trace: [ 223.500601][ T29] [ 223.503544][ T29] __schedule+0x9cd/0x4b20 [ 223.508134][ T29] ? io_schedule_timeout+0x140/0x140 [ 223.513453][ T29] ? _raw_spin_unlock_irq+0x1f/0x40 [ 223.519046][ T29] ? lockdep_hardirqs_on_prepare+0x17b/0x400 [ 223.525037][ T29] schedule+0xd2/0x1f0 [ 223.529257][ T29] schedule_preempt_disabled+0xf/0x20 [ 223.534646][ T29] __mutex_lock+0xa70/0x1350 [ 223.539428][ T29] ? linkwatch_event+0x5/0x50 [ 223.544113][ T29] ? mutex_lock_io_nested+0x1190/0x1190 [ 223.549773][ T29] ? lock_downgrade+0x6e0/0x6e0 [ 223.554740][ T29] ? __switch_to+0x5cc/0x1060 [ 223.560394][ T29] linkwatch_event+0x5/0x50 [ 223.564903][ T29] process_one_work+0x865/0x13d0 [ 223.569995][ T29] ? lock_release+0x780/0x780 [ 223.574668][ T29] ? pwq_dec_nr_in_flight+0x230/0x230 [ 223.580132][ T29] ? rwlock_bug.part.0+0x90/0x90 [ 223.585062][ T29] ? _raw_spin_lock_irq+0x41/0x50 [ 223.590789][ T29] worker_thread+0x598/0xec0 [ 223.595427][ T29] ? __kthread_parkme+0xc1/0x1f0 [ 223.600463][ T29] ? process_one_work+0x13d0/0x13d0 [ 223.605817][ T29] kthread+0x299/0x340 [ 223.609890][ T29] ? kthread_complete_and_exit+0x20/0x20 [ 223.615606][ T29] ret_from_fork+0x1f/0x30 [ 223.620122][ T29] [ 223.623175][ T29] [ 223.623175][ T29] Showing all locks held in the system: [ 223.631099][ T29] 3 locks held by kworker/0:0/6: [ 223.636387][ T29] #0: ffff888025354138 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x78a/0x13d0 [ 223.647459][ T29] #1: ffffc900000b7db8 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_one_work+0x7b7/0x13d0 [ 223.659853][ T29] #2: ffffffff8c8ce968 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0x9f/0x1080 [ 223.669471][ T29] 3 locks held by kworker/0:1/14: [ 223.674594][ T29] #0: ffff888010c64d38 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x78a/0x13d0 [ 223.685046][ T29] #1: ffffc90000137db8 ((work_completion)(&fw_work->work)){+.+.}-{0:0}, at: process_one_work+0x7b7/0x13d0 [ 223.697131][ T29] #2: ffffffff8c8ce968 (rtnl_mutex){+.+.}-{3:3}, at: regdb_fw_cb.cold+0x4d/0x6e [ 223.706469][ T29] 3 locks held by kworker/1:1/27: [ 223.711499][ T29] #0: ffff888025354138 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x78a/0x13d0 [ 223.722593][ T29] #1: ffffc90000a2fdb8 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_one_work+0x7b7/0x13d0 [ 223.734877][ T29] #2: ffffffff8c8ce968 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0x9f/0x1080 [ 223.744396][ T29] 1 lock held by khungtaskd/29: [ 223.749328][ T29] #0: ffffffff8b17cca0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260 [ 223.759466][ T29] 2 locks held by getty/3285: [ 223.764152][ T29] #0: ffff8880178f0098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x1f/0x70 [ 223.774078][ T29] #1: ffffc900015622e8 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xb14/0x1040 [ 223.784283][ T29] 3 locks held by kworker/0:4/3633: [ 223.789594][ T29] #0: ffff888010c65d38 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_one_work+0x78a/0x13d0 [ 223.801699][ T29] #1: ffffc90002c1fdb8 ((reg_check_chans).work){+.+.}-{0:0}, at: process_one_work+0x7b7/0x13d0 [ 223.813078][ T29] #2: ffffffff8c8ce968 (rtnl_mutex){+.+.}-{3:3}, at: reg_check_chans_work+0x74/0xad0 [ 223.822789][ T29] 3 locks held by kworker/0:5/3640: [ 223.828167][ T29] #0: ffff888010c64d38 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x78a/0x13d0 [ 223.838710][ T29] #1: ffffc90002cffdb8 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work+0x7b7/0x13d0 [ 223.849347][ T29] #2: ffffffff8c8ce968 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0x5/0x50 [ 223.858495][ T29] 1 lock held by syz-executor.0/4101: [ 223.864011][ T29] [ 223.866453][ T29] ============================================= [ 223.866453][ T29] [ 223.874870][ T29] NMI backtrace for cpu 1 [ 223.879185][ T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 5.19.0-rc3-syzkaller #0 [ 223.887419][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 223.897550][ T29] Call Trace: [ 223.900831][ T29] [ 223.903743][ T29] dump_stack_lvl+0x57/0x7d [ 223.908239][ T29] nmi_cpu_backtrace.cold+0x30/0xc0 [ 223.913441][ T29] ? lapic_can_unplug_cpu+0x80/0x80 [ 223.918633][ T29] nmi_trigger_cpumask_backtrace+0x140/0x170 [ 223.924609][ T29] watchdog+0x891/0xc20 [ 223.928860][ T29] ? proc_dohung_task_timeout_secs+0x30/0x30 [ 223.934823][ T29] kthread+0x299/0x340 [ 223.939063][ T29] ? kthread_complete_and_exit+0x20/0x20 [ 223.944734][ T29] ret_from_fork+0x1f/0x30 [ 223.949148][ T29] [ 223.952439][ T29] Sending NMI from CPU 1 to CPUs 0: [ 223.957977][ C0] NMI backtrace for cpu 0 [ 223.957983][ C0] CPU: 0 PID: 977 Comm: kworker/u4:4 Not tainted 5.19.0-rc3-syzkaller #0 [ 223.957990][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 223.957994][ C0] Workqueue: events_unbound toggle_allocation_gate [ 223.958007][ C0] RIP: 0010:flush_tlb_mm_range+0x0/0x410 [ 223.958018][ C0] Code: 48 83 c4 08 5b c3 0f 0b 48 c7 c7 e0 50 ff 8a 48 89 34 24 e8 42 2b 80 00 48 8b 34 24 eb cf 66 66 2e 0f 1f 84 00 00 00 00 00 90 <41> 57 41 56 41 55 41 89 cd 41 54 49 89 f4 55 48 89 d5 53 48 89 fb [ 223.958032][ C0] RSP: 0018:ffffc900046c7a28 EFLAGS: 00000086 [ 223.958036][ C0] RAX: fffffffffffff000 RBX: 0000000000000007 RCX: 000000000000000c [ 223.958040][ C0] RDX: 00002aaaaaaac000 RSI: 00002aaaaaaab000 RDI: ffff88813fe68000 [ 223.958044][ C0] RBP: ffff88813fe4e558 R08: 0000000000000000 R09: ffffffff8b2b5c73 [ 223.958047][ C0] R10: fffffbfff1656b8e R11: 0000000000000001 R12: ffffffff81afa6dc [ 223.958050][ C0] R13: 0000000000000001 R14: 00000000000006dd R15: ffffffff8b2b5700 [ 223.958054][ C0] FS: 0000000000000000(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000 [ 223.958060][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 223.958063][ C0] CR2: 00005581bd6d9600 CR3: 000000000ae8e000 CR4: 00000000003506f0 [ 223.958066][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 223.958069][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 223.958072][ C0] Call Trace: [ 223.958076][ C0] [ 223.958078][ C0] __text_poke+0x59a/0x8e0 [ 223.958086][ C0] ? cpumask_weight+0x40/0x40 [ 223.958094][ C0] ? optimize_nops+0x2d0/0x2d0 [ 223.958100][ C0] ? text_poke_memset+0x60/0x60 [ 223.958108][ C0] text_poke_bp_batch+0x44c/0x6d0 [ 223.958114][ C0] ? kmem_cache_alloc_bulk+0x17c/0x710 [ 223.958121][ C0] ? mutex_lock_io_nested+0x1190/0x1190 [ 223.958130][ C0] ? do_sync_core+0x20/0x20 [ 223.958137][ C0] ? __jump_label_patch+0x281/0x330 [ 223.958142][ C0] ? lock_downgrade+0x6e0/0x6e0 [ 223.958151][ C0] ? arch_jump_label_transform_queue+0xa0/0x100 [ 223.958159][ C0] text_poke_finish+0x16/0x30 [ 223.958165][ C0] arch_jump_label_transform_apply+0x13/0x20 [ 223.958170][ C0] static_key_enable_cpuslocked+0x15f/0x220 [ 223.958179][ C0] static_key_enable+0x11/0x20 [ 223.958184][ C0] toggle_allocation_gate+0xe3/0x310 [ 223.958190][ C0] ? wake_up_kfence_timer+0x20/0x20 [ 223.958194][ C0] ? lockdep_hardirqs_on+0x79/0x100 [ 223.958199][ C0] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 223.958208][ C0] process_one_work+0x865/0x13d0 [ 223.958217][ C0] ? lock_release+0x780/0x780 [ 223.958222][ C0] ? pwq_dec_nr_in_flight+0x230/0x230 [ 223.958234][ C0] ? rwlock_bug.part.0+0x90/0x90 [ 223.958239][ C0] ? _raw_spin_lock_irq+0x41/0x50 [ 223.958246][ C0] worker_thread+0x598/0xec0 [ 223.958254][ C0] ? __kthread_parkme+0xc1/0x1f0 [ 223.958262][ C0] ? process_one_work+0x13d0/0x13d0 [ 223.958267][ C0] kthread+0x299/0x340 [ 223.958272][ C0] ? kthread_complete_and_exit+0x20/0x20 [ 223.958277][ C0] ret_from_fork+0x1f/0x30 [ 223.958288][ C0] [ 223.962128][ T29] Kernel panic - not syncing: hung_task: blocked tasks [ 224.272096][ T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 5.19.0-rc3-syzkaller #0 [ 224.280333][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 224.290380][ T29] Call Trace: [ 224.293645][ T29] [ 224.296558][ T29] dump_stack_lvl+0x57/0x7d [ 224.301045][ T29] panic+0x227/0x47a [ 224.305177][ T29] ? panic_print_sys_info.part.0+0x69/0x69 [ 224.310966][ T29] ? lapic_can_unplug_cpu+0x80/0x80 [ 224.316231][ T29] ? preempt_schedule_thunk+0x16/0x18 [ 224.321666][ T29] ? printk_prefer_direct_exit+0x11/0x30 [ 224.327283][ T29] watchdog.cold+0x11/0x160 [ 224.331942][ T29] ? proc_dohung_task_timeout_secs+0x30/0x30 [ 224.338006][ T29] kthread+0x299/0x340 [ 224.342168][ T29] ? kthread_complete_and_exit+0x20/0x20 [ 224.347874][ T29] ret_from_fork+0x1f/0x30 [ 224.358550][ T29] [ 224.362054][ T29] Kernel Offset: disabled [ 224.366683][ T29] Rebooting in 86400 seconds..