Warning: Permanently added '10.128.0.96' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 604.677944][ T8440] IPVS: ftp: loaded support on port[0] = 21 [ 859.023838][ T1657] INFO: task kworker/1:0:19 blocked for more than 143 seconds. [ 859.031894][ T1657] Not tainted 5.11.0-rc6-syzkaller #0 [ 859.040384][ T1657] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 859.049739][ T1657] task:kworker/1:0 state:D stack:28176 pid: 19 ppid: 2 flags:0x00004000 [ 859.059665][ T1657] Workqueue: ipv6_addrconf addrconf_verify_work [ 859.066687][ T1657] Call Trace: [ 859.069975][ T1657] __schedule+0x90c/0x21a0 [ 859.075363][ T1657] ? io_schedule_timeout+0x140/0x140 [ 859.080657][ T1657] ? _raw_spin_unlock_irq+0x1f/0x40 [ 859.087945][ T1657] ? lockdep_hardirqs_on+0x79/0x100 [ 859.093158][ T1657] schedule+0xcf/0x270 [ 859.098203][ T1657] schedule_preempt_disabled+0xf/0x20 [ 859.103583][ T1657] __mutex_lock+0x81a/0x1110 [ 859.109323][ T1657] ? addrconf_verify_work+0xa/0x20 [ 859.115498][ T1657] ? mutex_lock_io_nested+0xf60/0xf60 [ 859.120884][ T1657] ? lock_release+0x710/0x710 [ 859.126537][ T1657] ? lock_downgrade+0x6d0/0x6d0 [ 859.131411][ T1657] addrconf_verify_work+0xa/0x20 [ 859.137347][ T1657] process_one_work+0x98d/0x15f0 [ 859.142305][ T1657] ? pwq_dec_nr_in_flight+0x320/0x320 [ 859.148661][ T1657] ? rwlock_bug.part.0+0x90/0x90 [ 859.153612][ T1657] ? _raw_spin_lock_irq+0x41/0x50 [ 859.159691][ T1657] worker_thread+0x64c/0x1120 [ 859.165127][ T1657] ? process_one_work+0x15f0/0x15f0 [ 859.170342][ T1657] kthread+0x3b1/0x4a0 [ 859.175408][ T1657] ? __kthread_bind_mask+0xc0/0xc0 [ 859.180530][ T1657] ret_from_fork+0x1f/0x30 [ 859.186155][ T1657] [ 859.186155][ T1657] Showing all locks held in the system: [ 859.194612][ T1657] 3 locks held by kworker/1:0/19: [ 859.199634][ T1657] #0: ffff888146d17d38 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x871/0x15f0 [ 859.212453][ T1657] #1: ffffc90000d97da8 ((addr_chk_work).work){+.+.}-{0:0}, at: process_one_work+0x8a5/0x15f0 [ 859.224331][ T1657] #2: ffffffff8d459128 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0xa/0x20 [ 859.234435][ T1657] 1 lock held by khungtaskd/1657: [ 859.239540][ T1657] #0: ffffffff8bd73da0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260 [ 859.250380][ T1657] 1 lock held by in:imklog/8155: [ 859.255980][ T1657] #0: ffff88802173cd70 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0xe9/0x100 [ 859.266100][ T1657] 1 lock held by syz-executor084/8461: [ 859.271582][ T1657] [ 859.274856][ T1657] ============================================= [ 859.274856][ T1657] [ 859.283260][ T1657] NMI backtrace for cpu 1 [ 859.287645][ T1657] CPU: 1 PID: 1657 Comm: khungtaskd Not tainted 5.11.0-rc6-syzkaller #0 [ 859.295972][ T1657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 859.306019][ T1657] Call Trace: [ 859.309381][ T1657] dump_stack+0x107/0x163 [ 859.313797][ T1657] nmi_cpu_backtrace.cold+0x44/0xd7 [ 859.318996][ T1657] ? lapic_can_unplug_cpu+0x80/0x80 [ 859.324369][ T1657] nmi_trigger_cpumask_backtrace+0x1b3/0x230 [ 859.330352][ T1657] watchdog+0xd43/0xfa0 [ 859.334510][ T1657] ? reset_hung_task_detector+0x30/0x30 [ 859.340070][ T1657] kthread+0x3b1/0x4a0 [ 859.344138][ T1657] ? __kthread_bind_mask+0xc0/0xc0 [ 859.349246][ T1657] ret_from_fork+0x1f/0x30 [ 859.353847][ T1657] Sending NMI from CPU 1 to CPUs 0: [ 859.359956][ C0] NMI backtrace for cpu 0 [ 859.359964][ C0] CPU: 0 PID: 8461 Comm: syz-executor084 Not tainted 5.11.0-rc6-syzkaller #0 [ 859.359972][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 859.359980][ C0] RIP: 0010:__this_cpu_preempt_check+0x0/0x20 [ 859.359988][ C0] Code: 2e 0f 1f 84 00 00 00 00 00 90 0f 1f 44 00 00 48 c7 c6 60 e2 9e 89 48 c7 c7 a0 e2 9e 89 e9 98 fe ff ff 0f 1f 84 00 00 00 00 00 <55> 48 89 fd 0f 1f 44 00 00 48 89 ee 5d 48 c7 c7 e0 e2 9e 89 e9 77 [ 859.360001][ C0] RSP: 0018:ffffc9000165ebc0 EFLAGS: 00000046 [ 859.360011][ C0] RAX: 0000000000000001 RBX: 03607339c2aba47c RCX: ffffc9000165ec18 [ 859.360018][ C0] RDX: 1ffff11005020b97 RSI: 0000000000000000 RDI: ffffffff894baaa0 [ 859.360024][ C0] RBP: 1ffff920002cbd7b R08: 0000000000000000 R09: 0000000000000000 [ 859.360031][ C0] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000001 [ 859.360038][ C0] R13: 0000000000000002 R14: ffff888028105cc0 R15: ffff888028105340 [ 859.360044][ C0] FS: 0000000001b0a300(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000 [ 859.360051][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 859.360057][ C0] CR2: 00007f5244d45000 CR3: 0000000014651000 CR4: 0000000000350ef0 [ 859.360062][ C0] Call Trace: [ 859.360066][ C0] lock_release+0x3bb/0x710 [ 859.360070][ C0] ? tcf_idr_check_alloc+0x29e/0x3b0 [ 859.360074][ C0] ? lock_downgrade+0x6d0/0x6d0 [ 859.360078][ C0] ? tcf_idr_check_alloc+0x78/0x3b0 [ 859.360083][ C0] ? mutex_lock_io_nested+0xf60/0xf60 [ 859.360088][ C0] __mutex_unlock_slowpath+0x81/0x610 [ 859.360092][ C0] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 859.360097][ C0] ? wait_for_completion_io+0x260/0x260 [ 859.360102][ C0] ? __radix_tree_lookup+0x211/0x2a0 [ 859.360107][ C0] tcf_idr_check_alloc+0x29e/0x3b0 [ 859.360111][ C0] tcf_police_init+0x34f/0x1460 [ 859.360115][ C0] ? tcf_police_cleanup+0x60/0x60 [ 859.360119][ C0] ? find_held_lock+0x2d/0x110 [ 859.360124][ C0] ? tc_lookup_action_n+0xcd/0xf0 [ 859.360128][ C0] ? stack_trace_save+0x8c/0xc0 [ 859.360132][ C0] tcf_action_init_1+0x1a3/0x990 [ 859.360136][ C0] ? tcf_action_dump_old+0x80/0x80 [ 859.360141][ C0] ? ____sys_sendmsg+0x331/0x810 [ 859.360145][ C0] ? ___sys_sendmsg+0xf3/0x170 [ 859.360149][ C0] ? __sys_sendmmsg+0x195/0x470 [ 859.360153][ C0] ? __x64_sys_sendmmsg+0x99/0x100 [ 859.360157][ C0] ? do_syscall_64+0x2d/0x70 [ 859.360161][ C0] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 859.360166][ C0] ? find_held_lock+0x2d/0x110 [ 859.360170][ C0] tcf_exts_validate+0x138/0x420 [ 859.360174][ C0] ? tcf_exts_destroy+0xc0/0xc0 [ 859.360178][ C0] ? unpoison_range+0x3a/0x60 [ 859.360182][ C0] rsvp_change+0x291/0x27a0 [ 859.360185][ C0] ? find_held_lock+0x2d/0x110 [ 859.360190][ C0] ? tcf_bind_filter.isra.0+0x3c0/0x3c0 [ 859.360194][ C0] ? lock_downgrade+0x6d0/0x6d0 [ 859.360198][ C0] ? blackhole_dequeue+0x10/0x10 [ 859.360202][ C0] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 859.360207][ C0] tc_new_tfilter+0x1394/0x2120 [ 859.360211][ C0] ? tcf_bind_filter.isra.0+0x3c0/0x3c0 [ 859.360215][ C0] ? tc_del_tfilter+0x15b0/0x15b0 [ 859.360220][ C0] ? lock_chain_count+0x20/0x20 [ 859.360224][ C0] ? kernel_text_address+0xbd/0xf0 [ 859.360228][ C0] ? tc_del_tfilter+0x15b0/0x15b0 [ 859.360232][ C0] rtnetlink_rcv_msg+0x80e/0xad0 [ 859.360236][ C0] ? rtnetlink_put_metrics+0x510/0x510 [ 859.360240][ C0] netlink_rcv_skb+0x153/0x420 [ 859.360244][ C0] ? rtnetlink_put_metrics+0x510/0x510 [ 859.360249][ C0] ? netlink_ack+0xaa0/0xaa0 [ 859.360253][ C0] ? netlink_deliver_tap+0x227/0xb70 [ 859.360257][ C0] netlink_unicast+0x533/0x7d0 [ 859.360261][ C0] ? netlink_attachskb+0x870/0x870 [ 859.360265][ C0] ? _copy_from_iter_full+0x275/0x850 [ 859.360270][ C0] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 859.360274][ C0] ? __phys_addr_symbol+0x2c/0x70 [ 859.360279][ C0] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 859.360283][ C0] ? __check_object_size+0x171/0x3f0 [ 859.360287][ C0] netlink_sendmsg+0x856/0xd90 [ 859.360292][ C0] ? netlink_unicast+0x7d0/0x7d0 [ 859.360296][ C0] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 859.360301][ C0] ? netlink_unicast+0x7d0/0x7d0 [ 859.360305][ C0] sock_sendmsg+0xcf/0x120 [ 859.360308][ C0] ____sys_sendmsg+0x331/0x810 [ 859.360312][ C0] ? kernel_sendmsg+0x50/0x50 [ 859.360316][ C0] ? do_recvmmsg+0x6c0/0x6c0 [ 859.360320][ C0] ? __lock_acquire+0x16c2/0x54f0 [ 859.360324][ C0] ___sys_sendmsg+0xf3/0x170 [ 859.360328][ C0] ? sendmsg_copy_msghdr+0x160/0x160 [ 859.360332][ C0] ? find_held_lock+0x2d/0x110 [ 859.360336][ C0] ? __might_fault+0xd3/0x180 [ 859.360340][ C0] ? lock_downgrade+0x6d0/0x6d0 [ 859.360344][ C0] __sys_sendmmsg+0x195/0x470 [ 859.360348][ C0] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 859.360352][ C0] ? find_held_lock+0x2d/0x110 [ 859.360356][ C0] ? alloc_file_pseudo+0x1/0x250 [ 859.360360][ C0] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 859.360365][ C0] ? fd_install+0x215/0x640 [ 859.360369][ C0] ? __sys_socket+0x16d/0x200 [ 859.360372][ C0] __x64_sys_sendmmsg+0x99/0x100 [ 859.360377][ C0] ? syscall_enter_from_user_mode+0x1d/0x50 [ 859.360381][ C0] do_syscall_64+0x2d/0x70 [ 859.360385][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 859.360389][ C0] RIP: 0033:0x440249 [ 859.360397][ C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 859.360408][ C0] RSP: 002b:00007ffcfe27c268 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 859.360418][ C0] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000440249 [ 859.360424][ C0] RDX: 04924924924926d3 RSI: 0000000020000200 RDI: 0000000000000004 [ 859.360431][ C0] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000001 [ 859.360442][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffcfe27c2a0 [ 859.360448][ C0] R13: 00007ffcfe27c290 R14: 00007ffcfe27c280 R15: 0000000000400488 [ 859.361746][ T1657] Kernel panic - not syncing: hung_task: blocked tasks [ 859.951527][ T1657] CPU: 1 PID: 1657 Comm: khungtaskd Not tainted 5.11.0-rc6-syzkaller #0 [ 859.959853][ T1657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 859.970084][ T1657] Call Trace: [ 859.973368][ T1657] dump_stack+0x107/0x163 [ 859.977709][ T1657] panic+0x306/0x73d [ 859.981613][ T1657] ? __warn_printk+0xf3/0xf3 [ 859.986294][ T1657] ? lapic_can_unplug_cpu+0x80/0x80 [ 859.991579][ T1657] ? preempt_schedule_thunk+0x16/0x18 [ 859.997037][ T1657] ? nmi_trigger_cpumask_backtrace+0x196/0x230 [ 860.003369][ T1657] ? watchdog.cold+0x5/0x158 [ 860.007963][ T1657] watchdog.cold+0x16/0x158 [ 860.012473][ T1657] ? reset_hung_task_detector+0x30/0x30 [ 860.018022][ T1657] kthread+0x3b1/0x4a0 [ 860.022087][ T1657] ? __kthread_bind_mask+0xc0/0xc0 [ 860.027194][ T1657] ret_from_fork+0x1f/0x30 [ 860.035368][ T1657] Kernel Offset: disabled [ 860.039878][ T1657] Rebooting in 86400 seconds..