Warning: Permanently added '10.128.0.205' (ECDSA) to the list of known hosts. executing program executing program syzkaller login: [ 483.644001][ T8478] IPVS: ftp: loaded support on port[0] = 21 [ 721.396481][ T1642] INFO: task kworker/u4:0:8 blocked for more than 143 seconds. [ 721.406458][ T1642] Not tainted 5.10.0-syzkaller #0 [ 721.412036][ T1642] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 721.424026][ T1642] task:kworker/u4:0 state:D stack:24496 pid: 8 ppid: 2 flags:0x00004000 [ 721.434517][ T1642] Workqueue: tc_filter_workqueue tcindex_partial_destroy_work [ 721.444020][ T1642] Call Trace: [ 721.448330][ T1642] __schedule+0x951/0x2290 [ 721.461779][ T1642] ? io_schedule_timeout+0x140/0x140 [ 721.475182][ T1642] schedule+0xcf/0x270 [ 721.481466][ T1642] schedule_preempt_disabled+0xf/0x20 [ 721.487776][ T1642] __mutex_lock+0x9e9/0x1240 [ 721.492937][ T1642] ? tcindex_partial_destroy_work+0x13/0x50 [ 721.500796][ T1642] ? mutex_lock_io_nested+0x1090/0x1090 [ 721.507630][ T1642] ? lock_release+0x710/0x710 [ 721.512473][ T1642] tcindex_partial_destroy_work+0x13/0x50 [ 721.520278][ T1642] process_one_work+0x868/0x15c0 [ 721.525957][ T1642] ? lock_release+0x710/0x710 [ 721.532742][ T1642] ? pwq_dec_nr_in_flight+0x320/0x320 [ 721.539060][ T1642] ? rwlock_bug.part.0+0x90/0x90 [ 721.576965][ T1642] ? _raw_spin_lock_irq+0x41/0x50 [ 721.582039][ T1642] worker_thread+0x64c/0x1120 [ 721.588154][ T1642] ? process_one_work+0x15c0/0x15c0 [ 721.593498][ T1642] kthread+0x3b1/0x4a0 [ 721.598920][ T1642] ? __kthread_bind_mask+0xc0/0xc0 [ 721.604106][ T1642] ret_from_fork+0x1f/0x30 [ 721.611829][ T1642] INFO: task kworker/0:0:8470 blocked for more than 143 seconds. [ 721.620526][ T1642] Not tainted 5.10.0-syzkaller #0 [ 721.626261][ T1642] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 721.637392][ T1642] task:kworker/0:0 state:D stack:29768 pid: 8470 ppid: 2 flags:0x00004000 [ 721.647959][ T1642] Workqueue: ipv6_addrconf addrconf_verify_work [ 721.654245][ T1642] Call Trace: [ 721.658829][ T1642] __schedule+0x951/0x2290 [ 721.663369][ T1642] ? io_schedule_timeout+0x140/0x140 [ 721.669945][ T1642] ? _raw_spin_unlock_irq+0x1f/0x40 [ 721.675239][ T1642] ? lockdep_hardirqs_on+0x79/0x100 [ 721.681963][ T1642] schedule+0xcf/0x270 [ 721.687480][ T1642] schedule_preempt_disabled+0xf/0x20 [ 721.692876][ T1642] __mutex_lock+0x9e9/0x1240 [ 721.699227][ T1642] ? addrconf_verify_work+0xa/0x20 [ 721.704632][ T1642] ? mutex_lock_io_nested+0x1090/0x1090 [ 721.712055][ T1642] ? lock_release+0x710/0x710 [ 721.718016][ T1642] ? lock_downgrade+0x6d0/0x6d0 [ 721.745052][ T1642] addrconf_verify_work+0xa/0x20 [ 721.750959][ T1642] process_one_work+0x868/0x15c0 [ 721.756041][ T1642] ? lock_release+0x710/0x710 [ 721.762182][ T1642] ? pwq_dec_nr_in_flight+0x320/0x320 [ 721.768401][ T1642] ? rwlock_bug.part.0+0x90/0x90 [ 721.773394][ T1642] ? _raw_spin_lock_irq+0x41/0x50 [ 721.779824][ T1642] worker_thread+0x64c/0x1120 [ 721.784544][ T1642] ? __kthread_parkme+0x13f/0x1e0 [ 721.790977][ T1642] ? process_one_work+0x15c0/0x15c0 [ 721.796221][ T1642] kthread+0x3b1/0x4a0 [ 721.801766][ T1642] ? __kthread_bind_mask+0xc0/0xc0 [ 721.808556][ T1642] ret_from_fork+0x1f/0x30 [ 721.813293][ T1642] [ 721.813293][ T1642] Showing all locks held in the system: [ 721.822672][ T1642] 3 locks held by kworker/u4:0/8: [ 721.828662][ T1642] #0: ffff8881418ba938 ((wq_completion)tc_filter_workqueue){+.+.}-{0:0}, at: process_one_work+0x750/0x15c0 [ 721.841173][ T1642] #1: ffffc90000cd7da8 ((work_completion)(&(rwork)->work)){+.+.}-{0:0}, at: process_one_work+0x783/0x15c0 [ 721.853605][ T1642] #2: ffffffff8d9019c8 (rtnl_mutex){+.+.}-{3:3}, at: tcindex_partial_destroy_work+0x13/0x50 [ 721.865049][ T1642] 1 lock held by khungtaskd/1642: [ 721.872277][ T1642] #0: ffffffff8ba40120 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x28c [ 721.883223][ T1642] 1 lock held by in:imklog/8168: [ 721.889245][ T1642] #0: ffff88801c3500f0 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0xe9/0x100 [ 721.899533][ T1642] 3 locks held by kworker/0:0/8470: [ 721.904761][ T1642] #0: ffff888147b72138 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x750/0x15c0 [ 721.917972][ T1642] #1: ffffc90001c7fda8 ((addr_chk_work).work){+.+.}-{0:0}, at: process_one_work+0x783/0x15c0 [ 721.929290][ T1642] #2: ffffffff8d9019c8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0xa/0x20 [ 721.940049][ T1642] 2 locks held by syz-executor846/8500: [ 721.945658][ T1642] [ 721.950014][ T1642] ============================================= [ 721.950014][ T1642] [ 721.959752][ T1642] NMI backtrace for cpu 0 [ 721.964108][ T1642] CPU: 0 PID: 1642 Comm: khungtaskd Not tainted 5.10.0-syzkaller #0 [ 721.972092][ T1642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 721.982161][ T1642] Call Trace: [ 721.985547][ T1642] dump_stack+0x107/0x163 [ 721.989911][ T1642] nmi_cpu_backtrace.cold+0x5c/0x7b [ 721.995192][ T1642] ? nmi_cpu_backtrace_handler+0x10/0x10 [ 722.000943][ T1642] nmi_trigger_cpumask_backtrace+0x1b3/0x230 [ 722.007020][ T1642] watchdog+0xe36/0x11f0 [ 722.011381][ T1642] ? reset_hung_task_detector+0x30/0x30 [ 722.017254][ T1642] kthread+0x3b1/0x4a0 [ 722.021354][ T1642] ? __kthread_bind_mask+0xc0/0xc0 [ 722.026552][ T1642] ret_from_fork+0x1f/0x30 [ 722.031441][ T1642] Sending NMI from CPU 0 to CPUs 1: [ 722.038469][ C1] NMI backtrace for cpu 1 [ 722.038477][ C1] CPU: 1 PID: 8500 Comm: syz-executor846 Not tainted 5.10.0-syzkaller #0 [ 722.038484][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 722.038489][ C1] RIP: 0010:lock_acquire+0x2c7/0x780 [ 722.038501][ C1] Code: 48 c7 c7 a0 c4 8b 89 48 83 c4 20 e8 83 27 ca 07 b8 ff ff ff ff 65 0f c1 05 f6 da a6 7e 83 f8 01 0f 85 5f 03 00 00 ff 34 24 9d 3a fe ff ff 65 ff 05 5d c9 a6 7e 48 8b 05 f6 80 a0 0c e8 c1 1a [ 722.038507][ C1] RSP: 0018:ffffc9000180eaf0 EFLAGS: 00000246 [ 722.038519][ C1] RAX: 0000000000000001 RBX: 1ffff92000301d60 RCX: 0000000000000001 [ 722.038525][ C1] RDX: 1ffff11003db1130 RSI: 0000000000000001 RDI: 0000000000000000 [ 722.038531][ C1] RBP: 0000000000000001 R08: 0000000000000000 R09: ffffffff8fe6f867 [ 722.038537][ C1] R10: fffffbfff1fcdf0c R11: 0000000000000001 R12: 0000000000000000 [ 722.038543][ C1] R13: ffff88801e2c8068 R14: 0000000000000000 R15: 0000000000000000 [ 722.038550][ C1] FS: 0000000001c60880(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000 [ 722.038555][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 722.038570][ C1] CR2: 0000000020000280 CR3: 00000000138e6000 CR4: 00000000001506e0 [ 722.038576][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 722.038582][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 722.038586][ C1] Call Trace: [ 722.038591][ C1] ? lock_release+0x710/0x710 [ 722.038595][ C1] __mutex_lock+0x134/0x1240 [ 722.038600][ C1] ? tcf_idr_check_alloc+0x78/0x3b0 [ 722.038605][ C1] ? tcf_idr_check_alloc+0x78/0x3b0 [ 722.038609][ C1] ? mutex_lock_io_nested+0x1090/0x1090 [ 722.038614][ C1] ? __mutex_unlock_slowpath+0xe2/0x660 [ 722.038619][ C1] ? wait_for_completion_io+0x260/0x260 [ 722.038624][ C1] ? __radix_tree_lookup+0x215/0x2e0 [ 722.038629][ C1] tcf_idr_check_alloc+0x78/0x3b0 [ 722.038633][ C1] tcf_police_init+0x1fd/0x13c0 [ 722.038638][ C1] ? tcf_police_search+0x40/0x40 [ 722.038642][ C1] ? find_held_lock+0x2d/0x110 [ 722.038647][ C1] ? tc_lookup_action_n+0xcd/0xf0 [ 722.038652][ C1] ? create_prof_cpu_mask+0x20/0x20 [ 722.038656][ C1] tcf_action_init_1+0x1b6/0x9d0 [ 722.038661][ C1] ? netlink_rcv_skb+0x153/0x420 [ 722.038666][ C1] ? tcf_action_dump_old+0x80/0x80 [ 722.038670][ C1] ? ____sys_sendmsg+0x6e8/0x810 [ 722.038675][ C1] ? ___sys_sendmsg+0xf3/0x170 [ 722.038679][ C1] ? __sys_sendmsg+0xe5/0x1b0 [ 722.038683][ C1] ? do_syscall_64+0x2d/0x70 [ 722.038689][ C1] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 722.038693][ C1] ? find_held_lock+0x2d/0x110 [ 722.038697][ C1] tcf_exts_validate+0x138/0x420 [ 722.038702][ C1] ? tcf_exts_destroy+0xc0/0xc0 [ 722.038707][ C1] ? kasan_unpoison_shadow+0x33/0x40 [ 722.038711][ C1] tcindex_set_parms+0x19c/0x23f0 [ 722.038716][ C1] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 722.038721][ C1] ? tcindex_alloc_perfect_hash+0x450/0x450 [ 722.038726][ C1] ? __nla_validate_parse+0x253/0x2510 [ 722.038731][ C1] ? nla_get_range_signed+0x520/0x520 [ 722.038735][ C1] ? find_held_lock+0x2d/0x110 [ 722.038740][ C1] tcindex_change+0x232/0x340 [ 722.038744][ C1] ? tcindex_set_parms+0x23f0/0x23f0 [ 722.038749][ C1] ? tcindex_lookup+0x98/0x410 [ 722.038753][ C1] tc_new_tfilter+0x135a/0x2050 [ 722.038758][ C1] ? tcindex_set_parms+0x23f0/0x23f0 [ 722.038763][ C1] ? tc_del_tfilter+0x1530/0x1530 [ 722.038767][ C1] ? print_irqtrace_events+0x270/0x270 [ 722.038772][ C1] ? kernel_text_address+0xbd/0xf0 [ 722.038777][ C1] ? tc_del_tfilter+0x1530/0x1530 [ 722.038781][ C1] rtnetlink_rcv_msg+0x8b1/0xb40 [ 722.038786][ C1] ? rtnl_fdb_dump+0xa00/0xa00 [ 722.038790][ C1] netlink_rcv_skb+0x153/0x420 [ 722.038794][ C1] ? rtnl_fdb_dump+0xa00/0xa00 [ 722.038799][ C1] ? netlink_ack+0xab0/0xab0 [ 722.038803][ C1] ? netlink_deliver_tap+0x2c4/0xc00 [ 722.038808][ C1] netlink_unicast+0x533/0x7d0 [ 722.038813][ C1] ? netlink_attachskb+0x870/0x870 [ 722.038817][ C1] ? __phys_addr_symbol+0x2c/0x80 [ 722.038822][ C1] ? __check_object_size+0x171/0x3f0 [ 722.038826][ C1] netlink_sendmsg+0x907/0xe10 [ 722.038831][ C1] ? netlink_unicast+0x7d0/0x7d0 [ 722.038835][ C1] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 722.038840][ C1] ? netlink_unicast+0x7d0/0x7d0 [ 722.038844][ C1] sock_sendmsg+0xd3/0x130 [ 722.038848][ C1] ____sys_sendmsg+0x6e8/0x810 [ 722.038853][ C1] ? kernel_sendmsg+0x50/0x50 [ 722.038858][ C1] ? do_recvmmsg+0x6c0/0x6c0 [ 722.038863][ C1] ? rcu_read_lock_sched_held+0x3a/0x70 [ 722.038867][ C1] ? kfree+0x305/0x400 [ 722.038872][ C1] ___sys_sendmsg+0xf3/0x170 [ 722.038876][ C1] ? sendmsg_copy_msghdr+0x160/0x160 [ 722.038881][ C1] ? lock_downgrade+0x6d0/0x6d0 [ 722.038886][ C1] ? _copy_to_user+0xdc/0x150 [ 722.038891][ C1] ? move_addr_to_user+0xad/0x1f0 [ 722.038895][ C1] ? __fget_light+0x215/0x280 [ 722.038900][ C1] __sys_sendmsg+0xe5/0x1b0 [ 722.038905][ C1] ? __sys_sendmsg_sock+0xb0/0xb0 [ 722.038910][ C1] ? syscall_enter_from_user_mode+0x1d/0x50 [ 722.038915][ C1] do_syscall_64+0x2d/0x70 [ 722.038920][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 722.038924][ C1] RIP: 0033:0x441719 [ 722.038937][ C1] Code: e8 5c ad 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 bb 09 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 722.038942][ C1] RSP: 002b:00007ffe18abfe88 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 722.038954][ C1] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000441719 [ 722.038960][ C1] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 722.038967][ C1] RBP: 00007ffe18abfe90 R08: 0000000100000000 R09: 0000000100000000 [ 722.038973][ C1] R10: 0000000100000000 R11: 0000000000000246 R12: 000000000007616d [ 722.038980][ C1] R13: 00000000004025f0 R14: 0000000000000000 R15: 0000000000000000 [ 722.038987][ C1] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.529 msecs [ 722.056434][ T1642] Kernel panic - not syncing: hung_task: blocked tasks [ 722.638898][ T1642] CPU: 0 PID: 1642 Comm: khungtaskd Not tainted 5.10.0-syzkaller #0 [ 722.646903][ T1642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 722.723434][ T1642] Call Trace: [ 722.727035][ T1642] dump_stack+0x107/0x163 [ 722.731437][ T1642] panic+0x393/0x7d3 [ 722.735355][ T1642] ? __warn_printk+0xf3/0xf3 [ 722.739983][ T1642] ? nmi_cpu_backtrace_handler+0x10/0x10 [ 722.745628][ T1642] ? preempt_schedule_thunk+0x16/0x18 [ 722.751061][ T1642] ? watchdog.cold+0xd2/0xfc [ 722.756477][ T1642] ? watchdog+0xb67/0x11f0 [ 722.761028][ T1642] watchdog.cold+0xe3/0xfc [ 722.765478][ T1642] ? reset_hung_task_detector+0x30/0x30 [ 722.771068][ T1642] kthread+0x3b1/0x4a0 [ 722.775155][ T1642] ? __kthread_bind_mask+0xc0/0xc0 [ 722.780304][ T1642] ret_from_fork+0x1f/0x30 [ 722.785323][ T1642] Kernel Offset: disabled [ 722.789734][ T1642] Rebooting in 86400 seconds..