forked to background, child pid 3176
[ 30.387277][ T3177] 8021q: adding VLAN 0 to HW filter on device bond0
[ 30.399154][ T3177] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: [ 30.581431][ T3261] ssh-keygen (3261) used greatest stack depth: 22440 bytes left
OK
syzkaller
syzkaller login: [ 81.316951][ T5] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.0.244' (ECDSA) to the list of known hosts.
[ 850.113255][ T3645] cgroup: Unknown subsys name 'net'
[ 850.241704][ T3645] cgroup: Unknown subsys name 'rlimit'
[ 850.599697][ T8] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 850.611822][ T8] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 850.622570][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 850.654091][ T8] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 850.662159][ T8] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 850.672611][ T3646] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 850.682490][ T994] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 850.692445][ T994] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 850.706690][ T994] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 850.715894][ T3659] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 850.716691][ T994] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 850.743273][ T141] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 850.755576][ T8] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 850.763564][ T8] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
executing program
[ 850.808263][ T3646] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 850.817627][ T8] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 850.827874][ T10] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 850.836416][ T8] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 850.849233][ T10] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 850.862438][ T3661] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 850.866404][ T3659] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 850.872934][ T3661] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 850.887906][ T3659] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
executing program
executing program
executing program
executing program
executing program
[ 850.905319][ T3659] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 850.941100][ T3661] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 850.941156][ T3661] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 850.969021][ T3661] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 850.969077][ T3661] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 850.976529][ T3659] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 850.977119][ T3659] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 850.993115][ T8] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 850.993168][ T8] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 850.994760][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 851.013452][ T8] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 851.013511][ T8] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 851.015764][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 861.532413][ T3662] syz-executor631: vmalloc error: size 4096, page order 0, failed to allocate pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[ 863.332332][ T3662] CPU: 0 PID: 3662 Comm: syz-executor631 Not tainted 5.17.0-rc2-syzkaller-00054-g27bb0b18c208 #0
[ 863.342850][ T3662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 863.352901][ T3662] Call Trace:
[ 863.356270][ T3662]
[ 863.359198][ T3662] dump_stack_lvl+0xcd/0x134
[ 863.363936][ T3662] warn_alloc.cold+0x9b/0x189
[ 863.368649][ T3662] ? zone_watermark_ok_safe+0x290/0x290
[ 863.374214][ T3662] ? __kmalloc_node+0x62/0x390
[ 863.379039][ T3662] ? __vmalloc_node_range+0x7bf/0x1060
[ 863.384500][ T3662] __vmalloc_node_range+0xe1e/0x1060
[ 863.389977][ T3662] ? vfree_atomic+0xe0/0xe0
[ 863.394519][ T3662] ? _raw_spin_unlock_irqrestore+0x3d/0x70
[ 863.400405][ T3662] ? __ldsem_down_read_nested+0x850/0x850
[ 863.406187][ T3662] ? __wake_up_common+0x650/0x650
[ 863.411267][ T3662] ? n_tty_open+0x16/0x170
[ 863.415689][ T3662] vzalloc+0x67/0x80
[ 863.419583][ T3662] ? n_tty_open+0x16/0x170
[ 863.424002][ T3662] n_tty_open+0x16/0x170
[ 863.428242][ T3662] ? n_tty_set_termios+0x1010/0x1010
[ 863.433525][ T3662] tty_ldisc_open+0x9b/0x110
[ 863.438120][ T3662] tty_ldisc_setup+0x43/0x100
[ 863.442806][ T3662] tty_init_dev.part.0+0x1f4/0x610
[ 863.447967][ T3662] tty_open+0xb16/0x1000
[ 863.452223][ T3662] ? tty_init_dev+0x80/0x80
[ 863.456733][ T3662] ? rwlock_bug.part.0+0x90/0x90
[ 863.461713][ T3662] ? tty_init_dev+0x80/0x80
[ 863.466224][ T3662] chrdev_open+0x266/0x770
[ 863.470878][ T3662] ? cdev_device_add+0x210/0x210
[ 863.475815][ T3662] ? fsnotify_perm.part.0+0x22d/0x620
[ 863.481243][ T3662] do_dentry_open+0x4b9/0x1240
[ 863.486037][ T3662] ? cdev_device_add+0x210/0x210
[ 863.490975][ T3662] ? may_open+0x1f6/0x420
[ 863.495336][ T3662] path_openat+0x1c9e/0x2940
[ 863.499939][ T3662] ? path_lookupat+0x860/0x860
[ 863.504700][ T3662] ? mark_lock+0xef/0x17b0
[ 863.509130][ T3662] ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 863.515132][ T3662] do_filp_open+0x1aa/0x400
[ 863.519637][ T3662] ? may_open_dev+0xf0/0xf0
[ 863.524158][ T3662] ? rwlock_bug.part.0+0x90/0x90
[ 863.529106][ T3662] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 863.535381][ T3662] ? _find_next_bit+0x1e3/0x260
[ 863.540279][ T3662] ? _raw_spin_unlock+0x24/0x40
[ 863.545139][ T3662] ? alloc_fd+0x2f0/0x670
[ 863.549503][ T3662] do_sys_openat2+0x16d/0x4d0
[ 863.554188][ T3662] ? build_open_flags+0x6f0/0x6f0
[ 863.559220][ T3662] ? __context_tracking_exit+0xb8/0xe0
[ 863.564715][ T3662] ? lock_downgrade+0x6e0/0x6e0
[ 863.569578][ T3662] __x64_sys_openat+0x13f/0x1f0
[ 863.574434][ T3662] ? __ia32_sys_open+0x1c0/0x1c0
[ 863.579381][ T3662] ? syscall_enter_from_user_mode+0x21/0x70
[ 863.585286][ T3662] do_syscall_64+0x35/0xb0
[ 863.589703][ T3662] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 863.595649][ T3662] RIP: 0033:0x7f71597959b7
[ 863.600062][ T3662] Code: 25 00 00 41 00 3d 00 00 41 00 74 47 64 8b 04 25 18 00 00 00 85 c0 75 6b 44 89 e2 48 89 ee bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 95 00 00 00 48 8b 4c 24 28 64 48 2b 0c 25
[ 863.619670][ T3662] RSP: 002b:00007ffc011acb00 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 863.628517][ T3662] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f71597959b7
[ 863.636486][ T3662] RDX: 0000000000000002 RSI: 00007ffc011acb90 RDI: 00000000ffffff9c
[ 863.644459][ T3662] RBP: 00007ffc011acb90 R08: 0000000000000000 R09: 000000000000000e
[ 863.652452][ T3662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 863.660432][ T3662] R13: 00007ffc011acc50 R14: 00007ffc011acc90 R15: 0000000000000000
[ 863.668427][ T3662]
[ 897.632151][ T3662] Mem-Info:
[ 897.932109][ T3662] active_anon:239 inactive_anon:5629 isolated_anon:0
[ 897.932109][ T3662] active_file:3144 inactive_file:8136 isolated_file:0
[ 897.932109][ T3662] unevictable:768 dirty:3 writeback:0
[ 897.932109][ T3662] slab_reclaimable:18037 slab_unreclaimable:81913
[ 897.932109][ T3662] mapped:1925 shmem:1704 pagetables:283 bounce:0
[ 897.932109][ T3662] kernel_misc_reclaimable:0
[ 897.932109][ T3662] free:1519116 free_pcp:3220 free_cma:0
[ 902.132147][ T3662] Node 0 active_anon:948kB inactive_anon:21584kB active_file:12508kB inactive_file:32544kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:7700kB dirty:8kB writeback:0kB shmem:4344kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 12288kB writeback_tmp:0kB kernel_stack:8016kB pagetables:1128kB all_unreclaimable? no
[ 905.332124][ T3662] Node 1 active_anon:8kB inactive_anon:932kB active_file:68kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:2476kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:16kB pagetables:4kB all_unreclaimable? no
[ 908.232151][ T3662] Node 0 DMA free:15360kB boost:0kB min:200kB low:248kB high:296kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 910.932134][ T3662] lowmem_reserve[]: 0 2645 2645 2645 2645
[ 911.532151][ T3662] Node 0 DMA32 free:2111604kB boost:0kB min:35676kB low:44592kB high:53508kB reserved_highatomic:0KB active_anon:952kB inactive_anon:21584kB active_file:12508kB inactive_file:32544kB unevictable:1536kB writepending:8kB present:3129332kB managed:2716636kB mlocked:0kB bounce:0kB free_pcp:24892kB local_pcp:3336kB free_cma:0kB
[ 914.632158][ T3662] lowmem_reserve[]: 0 0 0 0 0
[ 915.032148][ T3662] Node 0 Normal free:0kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:1048576kB managed:400kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 917.732172][ T3662] lowmem_reserve[]: 0 0 0 0 0
[ 918.232116][ T3662] Node 1 Normal free:3950696kB boost:0kB min:54224kB low:67780kB high:81336kB reserved_highatomic:0KB active_anon:8kB inactive_anon:932kB active_file:68kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117620kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 921.132153][ T3662] lowmem_reserve[]: 0 0 0 0 0
[ 921.632172][ T3662] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 922.932152][ T3662] Node 0 DMA32: 10*4kB (UME) 31*8kB (UME) 8*16kB (ME) 47*32kB (UME) 4*64kB (UE) 2*128kB (UE) 2*256kB (ME) 2*512kB (UM) 0*1024kB 1*2048kB (M) 514*4096kB (M) = 2111360kB
[ 924.632213][ T3662] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 925.732166][ T3662] Node 1 Normal: 157*4kB (UE) 37*8kB (UME) 27*16kB (UE) 147*32kB (UE) 67*64kB (UME) 18*128kB (UME) 7*256kB (UE) 4*512kB (U) 2*1024kB (UE) 4*2048kB (UME) 958*4096kB (M) = 3950700kB
[ 927.532136][ T3662] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 928.532140][ T3662] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 929.432145][ T3662] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 930.432150][ T3662] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 931.332154][ T3662] 12986 total pagecache pages
[ 931.832153][ T3662] 0 pages in swap cache
[ 932.232165][ T3662] Swap cache stats: add 0, delete 0, find 0/0
[ 932.832160][ T3662] Free swap = 0kB
[ 933.232165][ T3662] Total swap = 0kB
[ 933.632180][ T3662] 2097051 pages RAM
[ 934.032137][ T3662] 0 pages HighMem/MovableOnly
[ 934.532141][ T3662] 384547 pages reserved
[ 934.932134][ T3662] 0 pages cma reserved
[ 935.332992][ T3662] tty tty21: ldisc open failed (-12), clearing slot 20
[ 936.232494][ T3665] syz-executor631: vmalloc error: size 4096, page order 0, failed to allocate pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1
executing program
[ 937.932191][ T3665] CPU: 1 PID: 3665 Comm: syz-executor631 Not tainted 5.17.0-rc2-syzkaller-00054-g27bb0b18c208 #0
[ 937.942714][ T3665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 937.952956][ T3665] Call Trace:
[ 937.956244][ T3665]
[ 937.959661][ T3665] dump_stack_lvl+0xcd/0x134
[ 937.964270][ T3665] warn_alloc.cold+0x9b/0x189
[ 937.968947][ T3665] ? zone_watermark_ok_safe+0x290/0x290
[ 937.974495][ T3665] ? __kmalloc_node+0x62/0x390
[ 937.979300][ T3665] ? __vmalloc_node_range+0x7bf/0x1060
[ 937.984758][ T3665] __vmalloc_node_range+0xe1e/0x1060
[ 937.990046][ T3665] ? vfree_atomic+0xe0/0xe0
[ 937.994540][ T3665] ? _raw_spin_unlock_irqrestore+0x3d/0x70
[ 938.000381][ T3665] ? __ldsem_down_read_nested+0x850/0x850
[ 938.006109][ T3665] ? __wake_up_common+0x650/0x650
[ 938.011134][ T3665] ? n_tty_open+0x16/0x170
[ 938.015555][ T3665] vzalloc+0x67/0x80
[ 938.019448][ T3665] ? n_tty_open+0x16/0x170
[ 938.023868][ T3665] n_tty_open+0x16/0x170
[ 938.028110][ T3665] ? n_tty_set_termios+0x1010/0x1010
[ 938.033489][ T3665] tty_ldisc_open+0x9b/0x110
[ 938.038084][ T3665] tty_ldisc_setup+0x43/0x100
[ 938.042767][ T3665] tty_init_dev.part.0+0x1f4/0x610
[ 938.047908][ T3665] tty_open+0xb16/0x1000
[ 938.052166][ T3665] ? tty_init_dev+0x80/0x80
[ 938.056674][ T3665] ? rwlock_bug.part.0+0x90/0x90
[ 938.061631][ T3665] ? tty_init_dev+0x80/0x80
[ 938.066142][ T3665] chrdev_open+0x266/0x770
[ 938.070571][ T3665] ? cdev_device_add+0x210/0x210
[ 938.075512][ T3665] ? fsnotify_perm.part.0+0x22d/0x620
[ 938.080902][ T3665] do_dentry_open+0x4b9/0x1240
[ 938.085671][ T3665] ? cdev_device_add+0x210/0x210
[ 938.090613][ T3665] ? may_open+0x1f6/0x420
[ 938.094946][ T3665] path_openat+0x1c9e/0x2940
[ 938.099553][ T3665] ? path_lookupat+0x860/0x860
[ 938.104321][ T3665] ? mark_lock+0xef/0x17b0
[ 938.108749][ T3665] ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 938.114936][ T3665] do_filp_open+0x1aa/0x400
[ 938.119447][ T3665] ? may_open_dev+0xf0/0xf0
[ 938.123972][ T3665] ? rwlock_bug.part.0+0x90/0x90
[ 938.128946][ T3665] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 938.135196][ T3665] ? _find_next_bit+0x1e3/0x260
[ 938.140059][ T3665] ? _raw_spin_unlock+0x24/0x40
[ 938.145008][ T3665] ? alloc_fd+0x2f0/0x670
[ 938.149357][ T3665] do_sys_openat2+0x16d/0x4d0
[ 938.154050][ T3665] ? build_open_flags+0x6f0/0x6f0
[ 938.159083][ T3665] ? __context_tracking_exit+0xb8/0xe0
[ 938.164549][ T3665] ? lock_downgrade+0x6e0/0x6e0
[ 938.169413][ T3665] __x64_sys_openat+0x13f/0x1f0
[ 938.174273][ T3665] ? __ia32_sys_open+0x1c0/0x1c0
[ 938.179222][ T3665] ? syscall_enter_from_user_mode+0x21/0x70
[ 938.185130][ T3665] do_syscall_64+0x35/0xb0
[ 938.189551][ T3665] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 938.195451][ T3665] RIP: 0033:0x7f71597959b7
[ 938.199874][ T3665] Code: 25 00 00 41 00 3d 00 00 41 00 74 47 64 8b 04 25 18 00 00 00 85 c0 75 6b 44 89 e2 48 89 ee bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 95 00 00 00 48 8b 4c 24 28 64 48 2b 0c 25
[ 938.219497][ T3665] RSP: 002b:00007ffc011acb00 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 938.227927][ T3665] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f71597959b7
[ 938.235912][ T3665] RDX: 0000000000000002 RSI: 00007ffc011acb90 RDI: 00000000ffffff9c
[ 938.243903][ T3665] RBP: 00007ffc011acb90 R08: 0000000000000000 R09: 000000000000000e
[ 938.251873][ T3665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 938.259842][ T3665] R13: 00007ffc011acc50 R14: 00007ffc011acc90 R15: 0000000000000000
[ 938.267830][ T3665]
[ 972.132142][ T3665] Mem-Info:
[ 972.432154][ T3665] active_anon:243 inactive_anon:5632 isolated_anon:0
[ 972.432154][ T3665] active_file:3289 inactive_file:7995 isolated_file:0
[ 972.432154][ T3665] unevictable:768 dirty:7 writeback:0
[ 972.432154][ T3665] slab_reclaimable:18039 slab_unreclaimable:84360
[ 972.432154][ T3665] mapped:1925 shmem:1708 pagetables:283 bounce:0
[ 972.432154][ T3665] kernel_misc_reclaimable:0
[ 972.432154][ T3665] free:1515263 free_pcp:4576 free_cma:0
[ 976.532158][ T3665] Node 0 active_anon:964kB inactive_anon:21596kB active_file:13088kB inactive_file:31980kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:7700kB dirty:24kB writeback:0kB shmem:4356kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 12288kB writeback_tmp:0kB kernel_stack:8016kB pagetables:1128kB all_unreclaimable? no
[ 979.632149][ T3665] Node 1 active_anon:8kB inactive_anon:932kB active_file:68kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:2476kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:16kB pagetables:4kB all_unreclaimable? no
[ 982.532137][ T3665] Node 0 DMA free:15360kB boost:0kB min:200kB low:248kB high:296kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 985.332180][ T3665] lowmem_reserve[]: 0 2645 2645 2645 2645
[ 985.932208][ T3665] Node 0 DMA32 free:2098940kB boost:0kB min:35676kB low:44592kB high:53508kB reserved_highatomic:0KB active_anon:964kB inactive_anon:21596kB active_file:13088kB inactive_file:31980kB unevictable:1536kB writepending:0kB present:3129332kB managed:2716636kB mlocked:0kB bounce:0kB free_pcp:37336kB local_pcp:15928kB free_cma:0kB
[ 989.032183][ T3665] lowmem_reserve[]: 0 0 0 0 0
[ 989.432158][ T3665] Node 0 Normal free:0kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:1048576kB managed:400kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 992.132199][ T3665] lowmem_reserve[]: 0 0 0 0 0
[ 992.632149][ T3665] Node 1 Normal free:3950732kB boost:0kB min:54224kB low:67780kB high:81336kB reserved_highatomic:0KB active_anon:8kB inactive_anon:932kB active_file:68kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117620kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 995.532165][ T3665] lowmem_reserve[]: 0 0 0 0 0
[ 996.032165][ T3665] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 997.232146][ T3665] Node 0 DMA32: 104*4kB (UME) 50*8kB (UME) 11*16kB (UME) 47*32kB (UME) 20*64kB (UME) 5*128kB (UE) 3*256kB (UME) 1*512kB (M) 1*1024kB (U) 2*2048kB (UM) 510*4096kB (M) = 2099776kB
[ 999.032156][ T3665] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 1000.232167][ T3665] Node 1 Normal: 157*4kB (UE) 37*8kB (UME) 27*16kB (UE) 146*32kB (UE) 68*64kB (UME) 18*128kB (UME) 7*256kB (UE) 4*512kB (U) 2*1024kB (UE) 4*2048kB (UME) 958*4096kB (M) = 3950732kB
[ 1002.032142][ T3665] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1002.916027][ T27] INFO: task syz-executor631:3666 blocked for more than 143 seconds.
[ 1002.924302][ T27] Not tainted 5.17.0-rc2-syzkaller-00054-g27bb0b18c208 #0
[ 1002.932119][ T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1002.940855][ T27] task:syz-executor631 state:D stack:27752 pid: 3666 ppid: 3655 flags:0x00004004
[ 1002.950170][ T27] Call Trace:
[ 1002.953472][ T27]
[ 1002.956478][ T27] __schedule+0xab2/0x4db0
[ 1002.960924][ T27] ? io_schedule_timeout+0x180/0x180
[ 1002.966350][ T27] schedule+0xd2/0x260
[ 1002.970540][ T27] schedule_preempt_disabled+0xf/0x20
[ 1002.975979][ T27] __mutex_lock+0xa32/0x12f0
[ 1002.980591][ T27] ? tty_open+0x55e/0x1000
[ 1002.985083][ T27] ? mutex_lock_io_nested+0x1150/0x1150
[ 1002.990767][ T27] ? rcu_read_lock_sched_held+0x3a/0x70
[ 1002.996535][ T27] tty_open+0x55e/0x1000
[ 1003.000809][ T27] ? chrdev_open+0x58c/0x770
[ 1003.005458][ T27] ? tty_init_dev+0x80/0x80
[ 1003.009981][ T27] ? rwlock_bug.part.0+0x90/0x90
[ 1003.014978][ T27] ? tty_init_dev+0x80/0x80
[ 1003.020122][ T27] chrdev_open+0x266/0x770
[ 1003.024680][ T27] ? cdev_device_add+0x210/0x210
[ 1003.029690][ T27] ? fsnotify_perm.part.0+0x22d/0x620
[ 1003.035246][ T3665] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1003.044537][ T3665] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1003.054211][ T27] do_dentry_open+0x4b9/0x1240
[ 1003.059057][ T27] ? cdev_device_add+0x210/0x210
[ 1003.064010][ T27] ? may_open+0x1f6/0x420
[ 1003.068373][ T27] path_openat+0x1c9e/0x2940
[ 1003.072979][ T27] ? path_lookupat+0x860/0x860
[ 1003.077778][ T27] ? mark_lock+0xef/0x17b0
[ 1003.082207][ T27] ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 1003.088240][ T27] do_filp_open+0x1aa/0x400
[ 1003.092751][ T27] ? may_open_dev+0xf0/0xf0
[ 1003.097297][ T27] ? rwlock_bug.part.0+0x90/0x90
[ 1003.102246][ T27] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1003.108524][ T27] ? _find_next_bit+0x1e3/0x260
[ 1003.113389][ T27] ? _raw_spin_unlock+0x24/0x40
[ 1003.118285][ T27] ? alloc_fd+0x2f0/0x670
[ 1003.123212][ T27] do_sys_openat2+0x16d/0x4d0
[ 1003.127943][ T27] ? build_open_flags+0x6f0/0x6f0
[ 1003.133003][ T27] ? __context_tracking_exit+0xb8/0xe0
[ 1003.138522][ T27] ? lock_downgrade+0x6e0/0x6e0
[ 1003.143389][ T27] __x64_sys_openat+0x13f/0x1f0
[ 1003.148336][ T27] ? __ia32_sys_open+0x1c0/0x1c0
[ 1003.153300][ T27] ? syscall_enter_from_user_mode+0x21/0x70
[ 1003.159239][ T27] do_syscall_64+0x35/0xb0
[ 1003.163685][ T27] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1003.169669][ T27] RIP: 0033:0x7f71597959b7
[ 1003.174104][ T27] RSP: 002b:00007ffc011acb00 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1003.182654][ T27] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f71597959b7
[ 1003.190675][ T27] RDX: 0000000000000002 RSI: 00007ffc011acb90 RDI: 00000000ffffff9c
[ 1003.198698][ T27] RBP: 00007ffc011acb90 R08: 0000000000000000 R09: 000000000000000e
[ 1003.206769][ T27] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1003.214744][ T27] R13: 00007ffc011acc50 R14: 00007ffc011acc90 R15: 0000000000000000
[ 1003.223177][ T27]
[ 1003.226290][ T27] INFO: task syz-executor631:3668 blocked for more than 143 seconds.
[ 1003.234380][ T27] Not tainted 5.17.0-rc2-syzkaller-00054-g27bb0b18c208 #0
[ 1003.242269][ T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1003.251004][ T27] task:syz-executor631 state:D stack:27952 pid: 3668 ppid: 3654 flags:0x00000004
[ 1003.260334][ T27] Call Trace:
[ 1003.263608][ T27]
[ 1003.266637][ T27] __schedule+0xab2/0x4db0
[ 1003.271076][ T27] ? io_schedule_timeout+0x180/0x180
[ 1003.276424][ T27] schedule+0xd2/0x260
[ 1003.280520][ T27] schedule_preempt_disabled+0xf/0x20
[ 1003.285939][ T27] __mutex_lock+0xa32/0x12f0
[ 1003.290543][ T27] ? tty_open+0x55e/0x1000
[ 1003.295022][ T27] ? mutex_lock_io_nested+0x1150/0x1150
[ 1003.300596][ T27] ? rcu_read_lock_sched_held+0x3a/0x70
[ 1003.306195][ T27] tty_open+0x55e/0x1000
[ 1003.310463][ T27] ? chrdev_open+0x58c/0x770
[ 1003.315251][ T27] ? tty_init_dev+0x80/0x80
[ 1003.319771][ T27] ? rwlock_bug.part.0+0x90/0x90
[ 1003.325240][ T27] ? tty_init_dev+0x80/0x80
[ 1003.329854][ T27] chrdev_open+0x266/0x770
[ 1003.334291][ T27] ? cdev_device_add+0x210/0x210
[ 1003.339278][ T27] ? fsnotify_perm.part.0+0x22d/0x620
[ 1003.344756][ T27] do_dentry_open+0x4b9/0x1240
[ 1003.349585][ T27] ? cdev_device_add+0x210/0x210
[ 1003.354516][ T27] ? may_open+0x1f6/0x420
[ 1003.358908][ T27] path_openat+0x1c9e/0x2940
[ 1003.363529][ T27] ? path_lookupat+0x860/0x860
[ 1003.368348][ T27] ? mark_lock+0xef/0x17b0
[ 1003.372783][ T27] ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 1003.378903][ T27] do_filp_open+0x1aa/0x400
[ 1003.383417][ T27] ? may_open_dev+0xf0/0xf0
[ 1003.387969][ T27] ? rwlock_bug.part.0+0x90/0x90
[ 1003.392924][ T27] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1003.399200][ T27] ? _find_next_bit+0x1e3/0x260
[ 1003.404064][ T27] ? _raw_spin_unlock+0x24/0x40
[ 1003.408959][ T27] ? alloc_fd+0x2f0/0x670
[ 1003.413312][ T27] do_sys_openat2+0x16d/0x4d0
[ 1003.418060][ T27] ? build_open_flags+0x6f0/0x6f0
[ 1003.423113][ T27] ? __context_tracking_exit+0xb8/0xe0
[ 1003.429051][ T27] ? lock_downgrade+0x6e0/0x6e0
[ 1003.433960][ T27] __x64_sys_openat+0x13f/0x1f0
[ 1003.438859][ T27] ? __ia32_sys_open+0x1c0/0x1c0
[ 1003.443813][ T27] ? syscall_enter_from_user_mode+0x21/0x70
[ 1003.449784][ T27] do_syscall_64+0x35/0xb0
[ 1003.454212][ T27] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1003.460149][ T27] RIP: 0033:0x7f71597959b7
[ 1003.464571][ T27] RSP: 002b:00007ffc011acb00 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1003.473040][ T27] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f71597959b7
[ 1003.481061][ T27] RDX: 0000000000000002 RSI: 00007ffc011acb90 RDI: 00000000ffffff9c
[ 1003.489069][ T27] RBP: 00007ffc011acb90 R08: 0000000000000000 R09: 000000000000000e
[ 1003.497069][ T27] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1003.505087][ T27] R13: 00007ffc011acc50 R14: 00007ffc011acc90 R15: 0000000000000000
[ 1003.513075][ T27]
[ 1003.516153][ T27] INFO: task syz-executor631:3670 blocked for more than 143 seconds.
[ 1003.524215][ T27] Not tainted 5.17.0-rc2-syzkaller-00054-g27bb0b18c208 #0
[ 1003.532272][ T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1003.541044][ T27] task:syz-executor631 state:D stack:28096 pid: 3670 ppid: 3656 flags:0x00000004
[ 1003.550307][ T27] Call Trace:
[ 1003.553596][ T27]
[ 1003.556606][ T27] __schedule+0xab2/0x4db0
[ 1003.561098][ T27] ? io_schedule_timeout+0x180/0x180
[ 1003.566463][ T27] schedule+0xd2/0x260
[ 1003.570540][ T27] schedule_preempt_disabled+0xf/0x20
[ 1003.575960][ T27] __mutex_lock+0xa32/0x12f0
[ 1003.580562][ T27] ? tty_open+0x55e/0x1000
[ 1003.585022][ T27] ? mutex_lock_io_nested+0x1150/0x1150
[ 1003.590600][ T27] ? rcu_read_lock_sched_held+0x3a/0x70
[ 1003.596203][ T27] tty_open+0x55e/0x1000
[ 1003.600468][ T27] ? chrdev_open+0x58c/0x770
[ 1003.605103][ T27] ? tty_init_dev+0x80/0x80
[ 1003.609620][ T27] ? rwlock_bug.part.0+0x90/0x90
[ 1003.614560][ T27] ? tty_init_dev+0x80/0x80
[ 1003.619100][ T27] chrdev_open+0x266/0x770
[ 1003.623531][ T27] ? cdev_device_add+0x210/0x210
[ 1003.628512][ T27] ? fsnotify_perm.part.0+0x22d/0x620
[ 1003.634222][ T27] do_dentry_open+0x4b9/0x1240
[ 1003.639061][ T27] ? cdev_device_add+0x210/0x210
[ 1003.644018][ T27] ? may_open+0x1f6/0x420
[ 1003.648434][ T27] path_openat+0x1c9e/0x2940
[ 1003.653045][ T27] ? path_lookupat+0x860/0x860
[ 1003.657857][ T27] ? mark_lock+0xef/0x17b0
[ 1003.662286][ T27] ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 1003.668344][ T27] do_filp_open+0x1aa/0x400
[ 1003.672866][ T27] ? may_open_dev+0xf0/0xf0
[ 1003.677446][ T27] ? rwlock_bug.part.0+0x90/0x90
[ 1003.682405][ T27] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1003.688725][ T27] ? _find_next_bit+0x1e3/0x260
[ 1003.693594][ T27] ? _raw_spin_unlock+0x24/0x40
[ 1003.698484][ T27] ? alloc_fd+0x2f0/0x670
[ 1003.703181][ T27] do_sys_openat2+0x16d/0x4d0
[ 1003.707900][ T27] ? build_open_flags+0x6f0/0x6f0
[ 1003.712937][ T27] ? __context_tracking_exit+0xb8/0xe0
[ 1003.718467][ T27] ? lock_downgrade+0x6e0/0x6e0
[ 1003.723336][ T27] __x64_sys_openat+0x13f/0x1f0
[ 1003.728322][ T27] ? __ia32_sys_open+0x1c0/0x1c0
[ 1003.733332][ T27] ? syscall_enter_from_user_mode+0x21/0x70
[ 1003.739742][ T27] do_syscall_64+0x35/0xb0
[ 1003.744188][ T27] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1003.750139][ T27] RIP: 0033:0x7f71597959b7
[ 1003.754565][ T27] RSP: 002b:00007ffc011acb00 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1003.763028][ T27] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f71597959b7
[ 1003.771069][ T27] RDX: 0000000000000002 RSI: 00007ffc011acb90 RDI: 00000000ffffff9c
[ 1003.779102][ T27] RBP: 00007ffc011acb90 R08: 0000000000000000 R09: 000000000000000e
[ 1003.787150][ T27] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1003.795189][ T27] R13: 00007ffc011acc50 R14: 00007ffc011acc90 R15: 0000000000000000
[ 1003.803655][ T27]
[ 1003.806800][ T27] INFO: task syz-executor631:3669 blocked for more than 144 seconds.
[ 1003.815000][ T27] Not tainted 5.17.0-rc2-syzkaller-00054-g27bb0b18c208 #0
[ 1003.822731][ T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1003.831821][ T27] task:syz-executor631 state:D stack:27784 pid: 3669 ppid: 3657 flags:0x00000004
[ 1003.841871][ T27] Call Trace:
[ 1003.845429][ T27]
[ 1003.848354][ T27] __schedule+0xab2/0x4db0
[ 1003.852774][ T27] ? io_schedule_timeout+0x180/0x180
[ 1003.858413][ T27] schedule+0xd2/0x260
[ 1003.862480][ T27] schedule_preempt_disabled+0xf/0x20
[ 1003.868171][ T27] __mutex_lock+0xa32/0x12f0
[ 1003.872771][ T27] ? tty_open+0x55e/0x1000
[ 1003.877437][ T27] ? mutex_lock_io_nested+0x1150/0x1150
[ 1003.883106][ T27] ? rcu_read_lock_sched_held+0x3a/0x70
[ 1003.888993][ T27] tty_open+0x55e/0x1000
[ 1003.893241][ T27] ? chrdev_open+0x58c/0x770
[ 1003.898081][ T27] ? tty_init_dev+0x80/0x80
[ 1003.902581][ T27] ? rwlock_bug.part.0+0x90/0x90
[ 1003.907830][ T27] ? tty_init_dev+0x80/0x80
[ 1003.912489][ T27] chrdev_open+0x266/0x770
[ 1003.917296][ T27] ? cdev_device_add+0x210/0x210
[ 1003.922244][ T27] ? fsnotify_perm.part.0+0x22d/0x620
[ 1003.928118][ T27] do_dentry_open+0x4b9/0x1240
[ 1003.932943][ T27] ? cdev_device_add+0x210/0x210
[ 1003.938016][ T27] ? may_open+0x1f6/0x420
[ 1003.942931][ T27] path_openat+0x1c9e/0x2940
[ 1003.947617][ T27] ? path_lookupat+0x860/0x860
[ 1003.952389][ T27] ? mark_lock+0xef/0x17b0
[ 1003.956848][ T27] ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 1003.962848][ T27] do_filp_open+0x1aa/0x400
[ 1003.967454][ T27] ? may_open_dev+0xf0/0xf0
[ 1003.971981][ T27] ? rwlock_bug.part.0+0x90/0x90
[ 1003.977037][ T27] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 1003.983366][ T27] ? _find_next_bit+0x1e3/0x260
[ 1003.988277][ T27] ? _raw_spin_unlock+0x24/0x40
[ 1003.993152][ T27] ? alloc_fd+0x2f0/0x670
[ 1003.997741][ T27] do_sys_openat2+0x16d/0x4d0
[ 1004.002445][ T27] ? build_open_flags+0x6f0/0x6f0
[ 1004.007523][ T27] ? __context_tracking_exit+0xb8/0xe0
[ 1004.012997][ T27] ? lock_downgrade+0x6e0/0x6e0
[ 1004.017919][ T27] __x64_sys_openat+0x13f/0x1f0
[ 1004.022782][ T27] ? __ia32_sys_open+0x1c0/0x1c0
[ 1004.027829][ T27] ? syscall_enter_from_user_mode+0x21/0x70
[ 1004.033771][ T27] do_syscall_64+0x35/0xb0
[ 1004.038340][ T27] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1004.045414][ T27] RIP: 0033:0x7f71597959b7
[ 1004.049858][ T27] RSP: 002b:00007ffc011acb00 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1004.058414][ T27] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f71597959b7
[ 1004.066435][ T27] RDX: 0000000000000002 RSI: 00007ffc011acb90 RDI: 00000000ffffff9c
[ 1004.074412][ T27] RBP: 00007ffc011acb90 R08: 0000000000000000 R09: 000000000000000e
[ 1004.082413][ T27] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1004.090460][ T27] R13: 00007ffc011acc50 R14: 00007ffc011acc90 R15: 0000000000000000
[ 1004.098482][ T27]
[ 1004.101571][ T27]
[ 1004.101571][ T27] Showing all locks held in the system:
[ 1004.109457][ T27] 1 lock held by khungtaskd/27:
[ 1004.114353][ T27] #0: ffffffff8bb83c20 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260
[ 1004.124411][ T27] 4 locks held by klogd/2955:
[ 1004.129139][ T27] #0: ffff8880b9c39c58 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2b/0x120
[ 1004.139330][ T27] #1: ffff8880b9c27948 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x3e7/0x4e0
[ 1004.151109][ T27] #2: ffff88807f104398 (&p->pi_lock){-.-.}-{2:2}, at: try_to_wake_up+0xab/0x1510
[ 1004.160433][ T27] #3: ffff8880b9c39c58 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2b/0x120
[ 1004.170422][ T27] 2 locks held by getty/3275:
[ 1004.175146][ T27] #0: ffff88814abe3098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x22/0x80
[ 1004.184966][ T27] #1: ffffc90002b632e8 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xcf0/0x1230
[ 1004.195266][ T27] 5 locks held by kworker/u4:2/3661:
[ 1004.200607][ T27] #0: ffff8880b9c39c58 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2b/0x120
[ 1004.210588][ T27] #1: ffff8880b9c27948 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x176/0x4e0
[ 1004.222030][ T27] #2: ffff8880b9c28498 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x5a/0x1f0
[ 1004.231342][ T27] #3: ffffffff907727a8 (&obj_hash[i].lock){-.-.}-{2:2}, at: debug_object_activate+0x12e/0x3e0
[ 1004.241832][ T27] #4: ffffffff8ba4c3c8 (text_mutex){+.+.}-{3:3}, at: arch_jump_label_transform_apply+0xe/0x20
[ 1004.252778][ T27] 3 locks held by syz-executor631/3665:
[ 1004.258386][ T27] 1 lock held by syz-executor631/3666:
[ 1004.263847][ T27] #0: ffffffff8c5aeba8 (tty_mutex){+.+.}-{3:3}, at: tty_open+0x55e/0x1000
[ 1004.272510][ T27] 1 lock held by syz-executor631/3668:
[ 1004.278073][ T27] #0: ffffffff8c5aeba8 (tty_mutex){+.+.}-{3:3}, at: tty_open+0x55e/0x1000
[ 1004.286736][ T27] 1 lock held by syz-executor631/3670:
[ 1004.292191][ T27] #0: ffffffff8c5aeba8 (tty_mutex){+.+.}-{3:3}, at: tty_open+0x55e/0x1000
[ 1004.300858][ T27] 1 lock held by syz-executor631/3669:
[ 1004.306370][ T27] #0: ffffffff8c5aeba8 (tty_mutex){+.+.}-{3:3}, at: tty_open+0x55e/0x1000
[ 1004.315055][ T27] 1 lock held by syz-executor631/3681:
[ 1004.320520][ T27] #0: ffffffff8c5aeba8 (tty_mutex){+.+.}-{3:3}, at: tty_open+0x55e/0x1000
[ 1004.329247][ T27]
[ 1004.331568][ T27] =============================================
[ 1004.331568][ T27]
[ 1004.340218][ T27] NMI backtrace for cpu 1
[ 1004.344543][ T27] CPU: 1 PID: 27 Comm: khungtaskd Not tainted 5.17.0-rc2-syzkaller-00054-g27bb0b18c208 #0
[ 1004.354420][ T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1004.364464][ T27] Call Trace:
[ 1004.367731][ T27]
[ 1004.370653][ T27] dump_stack_lvl+0xcd/0x134
[ 1004.375238][ T27] nmi_cpu_backtrace.cold+0x47/0x144
[ 1004.380519][ T27] ? lapic_can_unplug_cpu+0x80/0x80
[ 1004.385895][ T27] nmi_trigger_cpumask_backtrace+0x1b3/0x230
[ 1004.391909][ T27] watchdog+0xc1d/0xf50
[ 1004.396069][ T27] ? proc_dohung_task_timeout_secs+0x80/0x80
[ 1004.402051][ T27] kthread+0x2e9/0x3a0
[ 1004.406168][ T27] ? kthread_complete_and_exit+0x40/0x40
[ 1004.411810][ T27] ret_from_fork+0x1f/0x30
[ 1004.416242][ T27]
[ 1004.419727][ T27] Sending NMI from CPU 1 to CPUs 0:
[ 1004.425132][ C0] NMI backtrace for cpu 0
[ 1004.425144][ C0] CPU: 0 PID: 5 Comm: kworker/0:0 Not tainted 5.17.0-rc2-syzkaller-00054-g27bb0b18c208 #0
[ 1004.425167][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1004.425181][ C0] Workqueue: events kfree_rcu_work
[ 1004.425209][ C0] RIP: 0010:mark_lock+0x151/0x17b0
[ 1004.425237][ C0] Code: 12 00 00 48 89 ee 48 23 70 50 41 ba 01 00 00 00 0f 84 79 01 00 00 48 b8 00 00 00 00 00 fc ff df 48 01 c3 48 c7 03 00 00 00 00 43 08 00 00 00 00 48 c7 43 10 00 00 00 00 48 8b 84 24 10 01 00
[ 1004.425257][ C0] RSP: 0018:ffffc90000ca78e0 EFLAGS: 00000082
[ 1004.425273][ C0] RAX: dffffc0000000000 RBX: fffff52000194f23 RCX: 1ffffffff1ff8bee
[ 1004.425288][ C0] RDX: dffffc0000000000 RSI: 0000000000000040 RDI: ffffffff8ffc5f70
[ 1004.425302][ C0] RBP: 0000000000000040 R08: 0000000000000000 R09: ffffffff8ffbd957
[ 1004.425315][ C0] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000006
[ 1004.425328][ C0] R13: ffff888011920a60 R14: 00000000000000ad R15: ffff888011920a80
[ 1004.425342][ C0] FS: 0000000000000000(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000
[ 1004.425360][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1004.425374][ C0] CR2: 00007fef09f19600 CR3: 000000007f8f6000 CR4: 00000000003506f0
[ 1004.425388][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1004.425401][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1004.425414][ C0] Call Trace:
[ 1004.425419][ C0]
[ 1004.425426][ C0] ? ____kasan_slab_free+0x130/0x160
[ 1004.425505][ C0] ? slab_free_freelist_hook+0x8b/0x1c0
[ 1004.425531][ C0] ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 1004.425556][ C0] ? worker_thread+0x657/0x1110
[ 1004.425577][ C0] ? lock_chain_count+0x20/0x20
[ 1004.425603][ C0] ? find_held_lock+0x2d/0x110
[ 1004.425627][ C0] ? debug_check_no_obj_freed+0x20c/0x420
[ 1004.425656][ C0] mark_held_locks+0x9f/0xe0
[ 1004.425681][ C0] lockdep_hardirqs_on_prepare+0x28b/0x400
[ 1004.425706][ C0] ? _raw_spin_unlock_irqrestore+0x50/0x70
[ 1004.425734][ C0] trace_hardirqs_on+0x5b/0x1c0
[ 1004.425765][ C0] _raw_spin_unlock_irqrestore+0x50/0x70
[ 1004.425792][ C0] debug_check_no_obj_freed+0x20c/0x420
[ 1004.425821][ C0] slab_free_freelist_hook+0xeb/0x1c0
[ 1004.425848][ C0] kmem_cache_free_bulk+0x2b0/0xa40
[ 1004.425875][ C0] ? kfree_rcu_work+0x51c/0xa10
[ 1004.425903][ C0] kfree_rcu_work+0x51c/0xa10
[ 1004.425930][ C0] ? lock_downgrade+0x6e0/0x6e0
[ 1004.425954][ C0] ? param_set_next_fqs_jiffies+0x130/0x130
[ 1004.425985][ C0] process_one_work+0x9ac/0x1650
[ 1004.426010][ C0] ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[ 1004.426033][ C0] ? rwlock_bug.part.0+0x90/0x90
[ 1004.426057][ C0] ? _raw_spin_lock_irq+0x41/0x50
[ 1004.426084][ C0] worker_thread+0x657/0x1110
[ 1004.426109][ C0] ? process_one_work+0x1650/0x1650
[ 1004.426135][ C0] kthread+0x2e9/0x3a0
[ 1004.426159][ C0] ? kthread_complete_and_exit+0x40/0x40
[ 1004.426187][ C0] ret_from_fork+0x1f/0x30
[ 1004.426215][ C0]
[ 1004.426223][ C0] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.090 msecs
[ 1004.427285][ T27] Kernel panic - not syncing: hung_task: blocked tasks
[ 1004.735837][ T27] CPU: 1 PID: 27 Comm: khungtaskd Not tainted 5.17.0-rc2-syzkaller-00054-g27bb0b18c208 #0
[ 1004.745736][ T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1004.755794][ T27] Call Trace:
[ 1004.759068][ T27]
[ 1004.761995][ T27] dump_stack_lvl+0xcd/0x134
[ 1004.766596][ T27] panic+0x2b0/0x6dd
[ 1004.770526][ T27] ? __warn_printk+0xf3/0xf3
[ 1004.775126][ T27] ? lapic_can_unplug_cpu+0x80/0x80
[ 1004.780328][ T27] ? preempt_schedule_thunk+0x16/0x18
[ 1004.785703][ T27] ? nmi_trigger_cpumask_backtrace+0x196/0x230
[ 1004.791860][ T27] ? watchdog.cold+0x130/0x158
[ 1004.796658][ T27] watchdog.cold+0x141/0x158
[ 1004.801256][ T27] ? proc_dohung_task_timeout_secs+0x80/0x80
[ 1004.807273][ T27] kthread+0x2e9/0x3a0
[ 1004.811358][ T27] ? kthread_complete_and_exit+0x40/0x40
[ 1004.817023][ T27] ret_from_fork+0x1f/0x30
[ 1004.821512][ T27]
[ 1004.824847][ T27] Kernel Offset: disabled
[ 1004.829174][ T27] Rebooting in 86400 seconds..