DUID 00:04:b5:83:26:17:e0:27:12:d6:a5:87:80:2d:51:b0:dc:e4
forked to background, child pid 3192
[   26.194237][ T3193] 8021q: adding VLAN 0 to HW filter on device bond0
[   26.196602][ T3193] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
syzkaller login: [   76.239367][ T1137] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.0.56' (ECDSA) to the list of known hosts.
executing program
executing program
executing program
executing program
[  716.237518][   T29] INFO: task kworker/0:3:146 blocked for more than 143 seconds.
[  716.245299][   T29]       Not tainted 5.19.0-rc3-syzkaller-00167-ge65af5403e46 #0
[  716.253109][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  716.262013][   T29] task:kworker/0:3     state:D stack:24688 pid:  146 ppid:     2 flags:0x00004000
[  716.271425][   T29] Workqueue: ipv6_addrconf addrconf_verify_work
[  716.277851][   T29] Call Trace:
[  716.281184][   T29]  <TASK>
[  716.284134][   T29]  __schedule+0xa00/0x4b50
[  716.288738][   T29]  ? find_held_lock+0x2d/0x110
[  716.293541][   T29]  ? wq_worker_sleeping+0x1e5/0x250
[  716.298834][   T29]  ? mark_held_locks+0x9f/0xe0
[  716.303626][   T29]  ? rwlock_bug.part.0+0x90/0x90
[  716.308664][   T29]  ? io_schedule_timeout+0x140/0x140
[  716.313976][   T29]  ? lockdep_hardirqs_on+0x79/0x100
[  716.319247][   T29]  schedule+0xd2/0x1f0
[  716.323338][   T29]  schedule_preempt_disabled+0xf/0x20
[  716.328810][   T29]  __mutex_lock+0xa70/0x1350
[  716.333432][   T29]  ? addrconf_verify_work+0xe/0x20
[  716.338612][   T29]  ? mutex_lock_io_nested+0x1190/0x1190
[  716.344178][   T29]  ? lock_release+0x780/0x780
[  716.348948][   T29]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  716.354956][   T29]  addrconf_verify_work+0xe/0x20
[  716.359969][   T29]  process_one_work+0x996/0x1610
[  716.364946][   T29]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[  716.370435][   T29]  ? rwlock_bug.part.0+0x90/0x90
[  716.375398][   T29]  ? _raw_spin_lock_irq+0x41/0x50
[  716.380805][   T29]  worker_thread+0x665/0x1080
[  716.385514][   T29]  ? __kthread_parkme+0x15f/0x220
[  716.390615][   T29]  ? process_one_work+0x1610/0x1610
[  716.395847][   T29]  kthread+0x2e9/0x3a0
[  716.400076][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  716.405727][   T29]  ret_from_fork+0x1f/0x30
[  716.410244][   T29]  </TASK>
[  716.413364][   T29] INFO: task syz-executor288:3656 blocked for more than 143 seconds.
[  716.421534][   T29]       Not tainted 5.19.0-rc3-syzkaller-00167-ge65af5403e46 #0
[  716.429260][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  716.437998][   T29] task:syz-executor288 state:D stack:28032 pid: 3656 ppid:  3650 flags:0x00000004
[  716.447230][   T29] Call Trace:
[  716.450591][   T29]  <TASK>
[  716.453619][   T29]  __schedule+0xa00/0x4b50
[  716.458142][   T29]  ? io_schedule_timeout+0x140/0x140
[  716.463480][   T29]  schedule+0xd2/0x1f0
[  716.467651][   T29]  schedule_preempt_disabled+0xf/0x20
[  716.473057][   T29]  __mutex_lock+0xa70/0x1350
[  716.477753][   T29]  ? tun_chr_close+0x3a/0x180
[  716.482528][   T29]  ? mutex_lock_io_nested+0x1190/0x1190
[  716.488166][   T29]  ? fcntl_setlk+0xcf0/0xcf0
[  716.492777][   T29]  tun_chr_close+0x3a/0x180
[  716.497288][   T29]  __fput+0x277/0x9d0
[  716.501336][   T29]  ? __tun_detach+0x1440/0x1440
[  716.506221][   T29]  task_work_run+0xdd/0x1a0
[  716.510835][   T29]  exit_to_user_mode_prepare+0x23c/0x250
[  716.516496][   T29]  syscall_exit_to_user_mode+0x19/0x50
[  716.522104][   T29]  do_syscall_64+0x42/0xb0
[  716.526584][   T29]  entry_SYSCALL_64_after_hwframe+0x46/0xb0
[  716.532586][   T29] RIP: 0033:0x7f246d567623
[  716.537024][   T29] RSP: 002b:00007ffe3a9ad298 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  716.545532][   T29] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 00007f246d567623
[  716.553620][   T29] RDX: 0000000020000080 RSI: 00000000400454d9 RDI: 0000000000000003
[  716.561669][   T29] RBP: 0000000000000000 R08: 00007f246d612e40 R09: 00007f246d612e40
[  716.569746][   T29] R10: 00007f246d612e40 R11: 0000000000000246 R12: 00007ffe3a9ad2d0
[  716.577789][   T29] R13: 00007ffe3a9ad2c0 R14: 00007ffe3a9ad2b0 R15: 0000000000000000
[  716.585818][   T29]  </TASK>
[  716.588946][   T29] INFO: task syz-executor288:3657 blocked for more than 143 seconds.
[  716.597022][   T29]       Not tainted 5.19.0-rc3-syzkaller-00167-ge65af5403e46 #0
[  716.604730][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  716.613449][   T29] task:syz-executor288 state:D stack:27400 pid: 3657 ppid:  3651 flags:0x00004004
[  716.622750][   T29] Call Trace:
[  716.626051][   T29]  <TASK>
[  716.629061][   T29]  __schedule+0xa00/0x4b50
[  716.633513][   T29]  ? io_schedule_timeout+0x140/0x140
[  716.639024][   T29]  schedule+0xd2/0x1f0
[  716.643130][   T29]  schedule_preempt_disabled+0xf/0x20
[  716.648626][   T29]  __mutex_lock+0xa70/0x1350
[  716.653243][   T29]  ? __tun_chr_ioctl+0x64f/0x3da0
[  716.658363][   T29]  ? mutex_lock_io_nested+0x1190/0x1190
[  716.663933][   T29]  __tun_chr_ioctl+0x64f/0x3da0
[  716.668880][   T29]  ? tun_chr_read_iter+0x270/0x270
[  716.674024][   T29]  ? __context_tracking_exit+0xb8/0xe0
[  716.679562][   T29]  ? amd_pmu_init+0xa46/0xd71
[  716.684283][   T29]  ? bpf_lsm_file_ioctl+0x5/0x10
[  716.689319][   T29]  ? tun_chr_compat_ioctl+0x30/0x30
[  716.694547][   T29]  __x64_sys_ioctl+0x193/0x200
[  716.699389][   T29]  do_syscall_64+0x35/0xb0
[  716.703998][   T29]  entry_SYSCALL_64_after_hwframe+0x46/0xb0
[  716.709993][   T29] RIP: 0033:0x7f246d5a51d9
[  716.714426][   T29] RSP: 002b:00007ffe3a9ad298 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  716.722953][   T29] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f246d5a51d9
[  716.731022][   T29] RDX: 0000000020000040 RSI: 00000000400454ca RDI: 0000000000000003
[  716.739061][   T29] RBP: 0000000000000000 R08: 00007f246d612e40 R09: 00007f246d612e40
[  716.747048][   T29] R10: 00007ffe3a9acd10 R11: 0000000000000246 R12: 00007ffe3a9ad2d0
[  716.755098][   T29] R13: 00007ffe3a9ad2c0 R14: 00007ffe3a9ad2b0 R15: 0000000000000000
[  716.763156][   T29]  </TASK>
[  716.766201][   T29] INFO: task syz-executor288:3658 blocked for more than 143 seconds.
[  716.774349][   T29]       Not tainted 5.19.0-rc3-syzkaller-00167-ge65af5403e46 #0
[  716.782026][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  716.790778][   T29] task:syz-executor288 state:D stack:28032 pid: 3658 ppid:  3653 flags:0x00000004
[  716.800179][   T29] Call Trace:
[  716.803520][   T29]  <TASK>
[  716.806480][   T29]  __schedule+0xa00/0x4b50
[  716.811009][   T29]  ? __mutex_lock+0xa6b/0x1350
[  716.815789][   T29]  ? io_schedule_timeout+0x140/0x140
[  716.821167][   T29]  schedule+0xd2/0x1f0
[  716.825271][   T29]  schedule_preempt_disabled+0xf/0x20
[  716.830736][   T29]  __mutex_lock+0xa70/0x1350
[  716.835348][   T29]  ? __tun_chr_ioctl+0x64f/0x3da0
[  716.840474][   T29]  ? mutex_lock_io_nested+0x1190/0x1190
[  716.846047][   T29]  __tun_chr_ioctl+0x64f/0x3da0
[  716.850973][   T29]  ? tun_chr_read_iter+0x270/0x270
[  716.856109][   T29]  ? __context_tracking_exit+0xb8/0xe0
[  716.861664][   T29]  ? amd_pmu_init+0xa46/0xd71
[  716.866386][   T29]  ? bpf_lsm_file_ioctl+0x5/0x10
[  716.871427][   T29]  ? tun_chr_compat_ioctl+0x30/0x30
[  716.876656][   T29]  __x64_sys_ioctl+0x193/0x200
[  716.881538][   T29]  do_syscall_64+0x35/0xb0
[  716.885986][   T29]  entry_SYSCALL_64_after_hwframe+0x46/0xb0
[  716.891961][   T29] RIP: 0033:0x7f246d5a51d9
[  716.896400][   T29] RSP: 002b:00007ffe3a9ad298 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  716.904923][   T29] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f246d5a51d9
[  716.913190][   T29] RDX: 0000000020000040 RSI: 00000000400454ca RDI: 0000000000000003
[  716.921246][   T29] RBP: 0000000000000000 R08: 00007f246d612e40 R09: 00007f246d612e40
[  716.929325][   T29] R10: 00007ffe3a9acd10 R11: 0000000000000246 R12: 00007ffe3a9ad2d0
[  716.937322][   T29] R13: 00007ffe3a9ad2c0 R14: 00007ffe3a9ad2b0 R15: 0000000000000000
[  716.945387][   T29]  </TASK>
[  716.948578][   T29] 
[  716.948578][   T29] Showing all locks held in the system:
[  716.956304][   T29] 1 lock held by khungtaskd/29:
[  716.961351][   T29]  #0: ffffffff8bd86ba0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260
[  716.971362][   T29] 3 locks held by kworker/0:3/146:
[  716.976487][   T29]  #0: ffff888025fe4138 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x87a/0x1610
[  716.987574][   T29]  #1: ffffc90002a17da8 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_one_work+0x8ae/0x1610
[  717.000731][   T29]  #2: ffffffff8d58e828 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0xe/0x20
[  717.010264][   T29] 1 lock held by klogd/2971:
[  717.014932][   T29]  #0: ffff8880b9a39ed8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2b/0x120
[  717.024983][   T29] 2 locks held by getty/3297:
[  717.029691][   T29]  #0: ffff88801fdad098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x22/0x80
[  717.039644][   T29]  #1: ffffc90002d0e2e8 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xe50/0x13c0
[  717.049894][   T29] 2 locks held by syz-executor288/3646:
[  717.055455][   T29]  #0: ffffffff8d57b110 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x2f5/0x760
[  717.065056][   T29]  #1: ffffffff8d58e828 (rtnl_mutex){+.+.}-{3:3}, at: register_netdev+0x11/0x50
[  717.074283][   T29] 2 locks held by syz-executor288/3654:
[  717.079920][   T29]  #0: ffffffff8d57b110 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x2f5/0x760
[  717.089454][   T29]  #1: ffffffff8d58e828 (rtnl_mutex){+.+.}-{3:3}, at: register_netdev+0x11/0x50
[  717.098603][   T29] 1 lock held by syz-executor288/3655:
[  717.098632][   T29] 1 lock held by syz-executor288/3656:
[  717.109617][   T29]  #0: ffffffff8d58e828 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3a/0x180
[  717.118679][   T29] 1 lock held by syz-executor288/3657:
[  717.124168][   T29]  #0: ffffffff8d58e828 (rtnl_mutex){+.+.}-{3:3}, at: __tun_chr_ioctl+0x64f/0x3da0
[  717.133580][   T29] 1 lock held by syz-executor288/3658:
[  717.139105][   T29]  #0: ffffffff8d58e828 (rtnl_mutex){+.+.}-{3:3}, at: __tun_chr_ioctl+0x64f/0x3da0
[  717.148528][   T29] 
[  717.150865][   T29] =============================================
[  717.150865][   T29] 
[  717.159375][   T29] NMI backtrace for cpu 1
[  717.163712][   T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 5.19.0-rc3-syzkaller-00167-ge65af5403e46 #0
[  717.173592][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  717.183670][   T29] Call Trace:
[  717.186958][   T29]  <TASK>
[  717.189885][   T29]  dump_stack_lvl+0xcd/0x134
[  717.194519][   T29]  nmi_cpu_backtrace.cold+0x47/0x144
[  717.199810][   T29]  ? lapic_can_unplug_cpu+0x80/0x80
[  717.205022][   T29]  nmi_trigger_cpumask_backtrace+0x1e6/0x230
[  717.211077][   T29]  watchdog+0xc22/0xf90
[  717.215231][   T29]  ? proc_dohung_task_timeout_secs+0x80/0x80
[  717.221213][   T29]  kthread+0x2e9/0x3a0
[  717.225310][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  717.230983][   T29]  ret_from_fork+0x1f/0x30
[  717.235451][   T29]  </TASK>
[  717.238602][   T29] Sending NMI from CPU 1 to CPUs 0:
[  717.243862][    C0] NMI backtrace for cpu 0
[  717.243872][    C0] CPU: 0 PID: 3655 Comm: syz-executor288 Not tainted 5.19.0-rc3-syzkaller-00167-ge65af5403e46 #0
[  717.243893][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  717.243903][    C0] RIP: 0010:native_apic_mem_write+0x8/0x10
[  717.243931][    C0] Code: 00 00 be 01 00 00 00 e9 86 79 2e 00 66 0f 1f 44 00 00 b8 01 00 00 00 c3 cc cc cc cc cc cc cc cc cc cc 89 ff 89 b7 00 c0 5f ff <c3> 0f 1f 80 00 00 00 00 48 b8 00 00 00 00 00 fc ff df 53 89 fb 48
[  717.243949][    C0] RSP: 0018:ffffc90003357a78 EFLAGS: 00000046
[  717.243964][    C0] RAX: dffffc0000000000 RBX: ffffffff8b7fbae0 RCX: 0000000000000020
[  717.243977][    C0] RDX: 1ffffffff16ff75e RSI: 0000000000002f56 RDI: 0000000000000380
[  717.243989][    C0] RBP: ffff8880b9a27200 R08: 0000000000000005 R09: 000000000000003f
[  717.244000][    C0] R10: 0000000000000020 R11: 0000000000000001 R12: 0000000000002f56
[  717.244012][    C0] R13: 0000000000000020 R14: ffff8880b9a2a500 R15: 0000000000000000
[  717.244024][    C0] FS:  0000555556e27300(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000
[  717.244040][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  717.244058][    C0] CR2: 000056432f5aea28 CR3: 0000000072654000 CR4: 00000000003506f0
[  717.244071][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  717.244082][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  717.244094][    C0] Call Trace:
[  717.244098][    C0]  <TASK>
[  717.244104][    C0]  lapic_next_event+0x4d/0x80
[  717.244129][    C0]  clockevents_program_event+0x254/0x370
[  717.244153][    C0]  tick_program_event+0xac/0x140
[  717.244176][    C0]  hrtimer_reprogram+0x38c/0x440
[  717.244199][    C0]  hrtimer_start_range_ns+0x7af/0xa80
[  717.244229][    C0]  schedule_hrtimeout_range_clock+0x183/0x390
[  717.244252][    C0]  ? hrtimer_nanosleep_restart+0x170/0x170
[  717.244272][    C0]  ? mark_held_locks+0x9f/0xe0
[  717.244296][    C0]  ? hrtimer_init_sleeper_on_stack+0x90/0x90
[  717.244317][    C0]  ? lockdep_hardirqs_on+0x79/0x100
[  717.244337][    C0]  ? ktime_get+0x38a/0x470
[  717.244355][    C0]  ? ktime_get+0x30b/0x470
[  717.244377][    C0]  usleep_range_state+0x129/0x1b0
[  717.244397][    C0]  ? console_conditional_schedule+0x50/0x50
[  717.244419][    C0]  ? usleep_range_state+0x143/0x1b0
[  717.244440][    C0]  napi_disable+0xff/0x120
[  717.244461][    C0]  __tun_detach+0x165/0x1440
[  717.244484][    C0]  tun_chr_close+0xc4/0x180
[  717.244502][    C0]  __fput+0x277/0x9d0
[  717.244519][    C0]  ? __tun_detach+0x1440/0x1440
[  717.244539][    C0]  task_work_run+0xdd/0x1a0
[  717.244563][    C0]  exit_to_user_mode_prepare+0x23c/0x250
[  717.244583][    C0]  syscall_exit_to_user_mode+0x19/0x50
[  717.244603][    C0]  do_syscall_64+0x42/0xb0
[  717.244626][    C0]  entry_SYSCALL_64_after_hwframe+0x46/0xb0
[  717.244648][    C0] RIP: 0033:0x7f246d567623
[  717.244663][    C0] Code: c7 c2 c0 ff ff ff f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb ba 0f 1f 00 64 8b 04 25 18 00 00 00 85 c0 75 14 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 45 c3 0f 1f 40 00 48 83 ec 18 89 7c 24 0c e8
[  717.244680][    C0] RSP: 002b:00007ffe3a9ad298 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  717.244697][    C0] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 00007f246d567623
[  717.244709][    C0] RDX: 0000000020000080 RSI: 00000000400454d9 RDI: 0000000000000003
[  717.244720][    C0] RBP: 0000000000000000 R08: 00007f246d612e40 R09: 00007f246d612e40
[  717.244732][    C0] R10: 00007f246d612e40 R11: 0000000000000246 R12: 00007ffe3a9ad2d0
[  717.244744][    C0] R13: 00007ffe3a9ad2c0 R14: 00007ffe3a9ad2b0 R15: 0000000000000000
[  717.244762][    C0]  </TASK>
[  717.244854][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[  717.594657][   T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 5.19.0-rc3-syzkaller-00167-ge65af5403e46 #0
[  717.604553][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  717.614605][   T29] Call Trace:
[  717.617890][   T29]  <TASK>
[  717.620822][   T29]  dump_stack_lvl+0xcd/0x134
[  717.625427][   T29]  panic+0x2d7/0x64a
[  717.629330][   T29]  ? panic_print_sys_info.part.0+0x10b/0x10b
[  717.635323][   T29]  ? irq_work_claim+0x76/0x90
[  717.640008][   T29]  ? lapic_can_unplug_cpu+0x80/0x80
[  717.645215][   T29]  ? irq_work_queue+0x29/0x80
[  717.649978][   T29]  ? __wake_up_klogd.part.0+0x99/0xf0
[  717.655385][   T29]  ? watchdog.cold+0x5/0x143
[  717.660021][   T29]  watchdog.cold+0x16/0x143
[  717.664540][   T29]  ? proc_dohung_task_timeout_secs+0x80/0x80
[  717.670530][   T29]  kthread+0x2e9/0x3a0
[  717.674602][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  717.680242][   T29]  ret_from_fork+0x1f/0x30
[  717.684686][   T29]  </TASK>
[  717.687991][   T29] Kernel Offset: disabled
[  717.692323][   T29] Rebooting in 86400 seconds..