forked to background, child pid 197 Starting sshd: OK syzkaller syzkaller login: [ 4.195217][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!! [ 11.605086][ T23] kauditd_printk_skb: 60 callbacks suppressed [ 11.605095][ T23] audit: type=1400 audit(1641099795.100:71): avc: denied { transition } for pid=290 comm="sshd" path="/bin/sh" dev="sda1" ino=73 scontext=system_u:system_r:initrc_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 11.610093][ T23] audit: type=1400 audit(1641099795.110:72): avc: denied { write } for pid=290 comm="sh" path="pipe:[10809]" dev="pipefs" ino=10809 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:initrc_t tclass=fifo_file permissive=1 Warning: Permanently added '10.128.0.107' (ECDSA) to the list of known hosts. 2022/01/02 05:03:59 parsed 1 programs [ 56.095373][ T23] audit: type=1400 audit(1641099839.600:73): avc: denied { getattr } for pid=365 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 56.112721][ T370] cgroup: Unknown subsys name 'net' [ 56.118895][ T23] audit: type=1400 audit(1641099839.600:74): avc: denied { read } for pid=365 comm="syz-execprog" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 56.145066][ T23] audit: type=1400 audit(1641099839.600:75): avc: denied { open } for pid=365 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 56.145200][ T370] cgroup: Unknown subsys name 'devices' [ 56.169522][ T23] audit: type=1400 audit(1641099839.600:76): avc: denied { read } for pid=365 comm="syz-execprog" name="raw-gadget" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 56.197935][ T23] audit: type=1400 audit(1641099839.600:77): avc: denied { open } for pid=365 comm="syz-execprog" path="/dev/raw-gadget" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 56.221327][ T23] audit: type=1400 audit(1641099839.600:78): avc: denied { mounton } for pid=370 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1137 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 56.244031][ T23] audit: type=1400 audit(1641099839.600:79): avc: denied { mount } for pid=370 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 56.266150][ T23] audit: type=1400 audit(1641099839.630:80): avc: denied { unmount } for pid=370 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 56.346475][ T370] cgroup: Unknown subsys name 'hugetlb' [ 56.352218][ T370] cgroup: Unknown subsys name 'rlimit' 2022/01/02 05:03:59 executed programs: 0 [ 56.476378][ T23] audit: type=1400 audit(1641099839.980:81): avc: denied { mounton } for pid=370 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 56.532187][ T23] audit: type=1400 audit(1641099839.980:82): avc: denied { mount } for pid=370 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 56.612525][ T377] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.619623][ T377] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.626995][ T377] device bridge_slave_0 entered promiscuous mode [ 56.655112][ T377] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.662145][ T377] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.669448][ T377] device bridge_slave_1 entered promiscuous mode [ 56.698847][ T380] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.706017][ T380] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.713234][ T380] device bridge_slave_0 entered promiscuous mode [ 56.720886][ T380] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.728285][ T380] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.735606][ T380] device bridge_slave_1 entered promiscuous mode [ 56.747881][ T385] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.754890][ T385] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.762244][ T385] device bridge_slave_0 entered promiscuous mode [ 56.771135][ T376] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.778362][ T376] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.785694][ T376] device bridge_slave_0 entered promiscuous mode [ 56.808041][ T385] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.815107][ T385] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.822358][ T385] device bridge_slave_1 entered promiscuous mode [ 56.829020][ T376] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.836066][ T376] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.843268][ T376] device bridge_slave_1 entered promiscuous mode [ 56.859177][ T384] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.866341][ T384] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.873533][ T384] device bridge_slave_0 entered promiscuous mode [ 56.882106][ T384] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.889163][ T384] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.896511][ T384] device bridge_slave_1 entered promiscuous mode [ 56.939954][ T383] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.947026][ T383] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.954223][ T383] device bridge_slave_0 entered promiscuous mode [ 56.981649][ T383] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.988767][ T383] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.996319][ T383] device bridge_slave_1 entered promiscuous mode [ 57.021788][ T377] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.028837][ T377] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.036101][ T377] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.043192][ T377] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.052718][ T380] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.059764][ T380] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.067038][ T380] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.074043][ T380] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.098312][ T384] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.105362][ T384] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.112573][ T384] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.119683][ T384] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.143970][ T376] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.151009][ T376] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.158227][ T376] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.165242][ T376] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.198710][ T383] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.205747][ T383] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.212948][ T383] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.219968][ T383] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.233829][ T385] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.240869][ T385] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.248108][ T385] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.255123][ T385] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.263454][ T371] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.270956][ T371] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.278141][ T371] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.285292][ T371] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.292370][ T371] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.299557][ T371] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.306697][ T371] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.313784][ T371] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.321176][ T371] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.328272][ T371] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.335482][ T371] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.342571][ T371] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.350238][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 57.357582][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 57.375325][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 57.383247][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 57.390716][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.398846][ T108] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.405857][ T108] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.413491][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.421652][ T108] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.428664][ T108] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.435928][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 57.455135][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 57.462985][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.471164][ T371] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.478180][ T371] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.485476][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.493529][ T371] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.500549][ T371] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.508051][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.516760][ T371] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.523758][ T371] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.531080][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 57.538930][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.547049][ T371] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.554052][ T371] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.561405][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 57.597378][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 57.622424][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 57.631018][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 57.640994][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 57.649192][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.657372][ T371] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.664458][ T371] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.671886][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.680047][ T371] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.687113][ T371] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.694476][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 57.702378][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 57.710382][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 57.718266][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 57.726237][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 57.734211][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 57.742266][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 57.750097][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 57.758395][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 57.766133][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 57.773834][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 57.782145][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 57.790337][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 57.797765][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 57.805218][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 57.813391][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.821604][ T371] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.828620][ T371] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.835937][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 57.844124][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.852273][ T371] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.859280][ T371] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.881548][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 57.888984][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 57.896426][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 57.904588][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.914434][ T5] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.921468][ T5] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.928900][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 57.937232][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.945313][ T5] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.952319][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.959806][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 57.967874][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 57.976032][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 57.983954][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 57.991881][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 58.000088][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 58.007990][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 58.016375][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 58.037852][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 58.046406][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 58.054577][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 58.063538][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 58.071932][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 58.080017][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 58.088321][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 58.097000][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 58.105265][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 58.113431][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 58.131221][ T384] cgroup: cgroup: disabling cgroup2 socket matching due to net_prio or net_cls activation [ 58.152769][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 58.161640][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 58.170152][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 58.178285][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 58.204501][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 58.214205][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 58.224637][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 58.234573][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 58.248660][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 58.258534][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 58.267309][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 58.276012][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 58.323644][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 58.334833][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 58.356035][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 58.370946][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 58.384391][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 58.399798][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 58.414815][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 58.431045][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 58.446333][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 58.462383][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 58.481421][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 58.490391][ T371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 58.517853][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 58.537368][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 58.562306][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 58.583698][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 58.810857][ T78] ------------[ cut here ]------------ [ 58.816505][ T78] WARNING: CPU: 1 PID: 78 at drivers/scsi/scsi_lib.c:1016 scsi_alloc_sgtables+0x766/0x950 [ 58.826423][ T78] Modules linked in: [ 58.830497][ T78] CPU: 1 PID: 78 Comm: kworker/1:1H Not tainted 5.10.89-syzkaller-00788-g9b28b48fb343 #0 [ 58.840713][ T78] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 58.850946][ T78] Workqueue: kblockd blk_mq_requeue_work [ 58.856963][ T78] RIP: 0010:scsi_alloc_sgtables+0x766/0x950 [ 58.863062][ T78] Code: 48 8b 0c 25 28 00 00 00 48 3b 8c 24 a0 00 00 00 0f 85 f0 01 00 00 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 1a b1 8a fe <0f> 0b b0 0a eb be e8 0f b1 8a fe b0 09 4c 8b 6c 24 40 eb b0 44 89 [ 58.882691][ T78] RSP: 0018:ffffc9000030f4a0 EFLAGS: 00010293 [ 58.888774][ T78] RAX: ffffffff82e22ea6 RBX: 0000000000000000 RCX: ffff888105582780 [ 58.896828][ T78] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 58.904797][ T78] RBP: ffffc9000030f588 R08: ffffffff82e229bd R09: ffffffff82ec6519 [ 58.913461][ T78] R10: 000000000000000c R11: ffff888105582780 R12: ffff88810a9395f0 [ 58.921467][ T78] R13: 1ffff92000061ea0 R14: dffffc0000000000 R15: 0000000000000000 [ 58.929458][ T78] FS: 0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 58.938495][ T78] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 58.945091][ T78] CR2: 0000000021000000 CR3: 00000001219c9000 CR4: 00000000003506a0 [ 58.953052][ T78] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 58.961032][ T78] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 58.969036][ T78] Call Trace: [ 58.972338][ T78] ? scsi_io_completion_reprep+0x320/0x320 [ 58.978304][ T78] ? virtscsi_add_cmd+0x5cd/0x6b0 [ 58.984153][ T78] sd_init_command+0xd26/0x2cf0 [ 58.989037][ T78] scsi_queue_rq+0x1652/0x22b0 [ 58.993799][ T78] blk_mq_dispatch_rq_list+0x991/0x17e0 [ 58.999375][ T78] ? __dd_dispatch_request+0x81a/0xa80 [ 59.005137][ T78] ? blk_mq_dequeue_from_ctx+0x900/0x900 [ 59.011623][ T78] blk_mq_do_dispatch_sched+0x623/0xbb0 [ 59.017189][ T78] ? blk_mq_exit_sched+0x420/0x420 [ 59.022295][ T78] ? _raw_spin_lock+0xa3/0x1b0 [ 59.027124][ T78] ? _raw_spin_trylock_bh+0x1a0/0x1a0 [ 59.033261][ T78] ? __rcu_read_lock+0x50/0x50 [ 59.038166][ T78] __blk_mq_sched_dispatch_requests+0x3de/0x4d0 [ 59.044408][ T78] ? _raw_spin_lock+0xa3/0x1b0 [ 59.049193][ T78] ? _raw_spin_trylock_bh+0x1a0/0x1a0 [ 59.054556][ T78] ? blk_mq_sched_dispatch_requests+0x160/0x160 [ 59.060948][ T78] blk_mq_sched_dispatch_requests+0xf0/0x160 [ 59.067578][ T78] __blk_mq_run_hw_queue+0x14f/0x260 [ 59.072982][ T78] __blk_mq_delay_run_hw_queue+0x230/0x570 [ 59.078803][ T78] ? sbitmap_any_bit_set+0x135/0x170 [ 59.084081][ T78] blk_mq_run_hw_queue+0x29d/0x3b0 [ 59.089219][ T78] blk_mq_run_hw_queues+0x37c/0x450 [ 59.094412][ T78] blk_mq_requeue_work+0x7e6/0x830 [ 59.099546][ T78] ? blk_mq_timeout_work+0x490/0x490 [ 59.104820][ T78] ? __kasan_check_read+0x11/0x20 [ 59.109864][ T78] process_one_work+0x6b4/0xfb0 [ 59.114718][ T78] worker_thread+0xb15/0x1600 [ 59.119409][ T78] ? __kasan_check_read+0x11/0x20 [ 59.125077][ T78] kthread+0x371/0x390 [ 59.129139][ T78] ? process_one_work+0xfb0/0xfb0 [ 59.134148][ T78] ? kthread_blkcg+0xd0/0xd0 [ 59.139043][ T78] ret_from_fork+0x1f/0x30 [ 59.143452][ T78] ---[ end trace 45215325d82abb44 ]--- [ 59.149012][ T78] blk_update_request: I/O error, dev sda, sector 1015800 op 0x1:(WRITE) flags 0xc800 phys_seg 0 prio class 0 [ 59.160629][ T78] ------------[ cut here ]------------ [ 59.166127][ T78] kernel BUG at block/blk-mq.c:567! [ 59.171318][ T78] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 59.177375][ T78] CPU: 1 PID: 78 Comm: kworker/1:1H Tainted: G W 5.10.89-syzkaller-00788-g9b28b48fb343 #0 [ 59.188547][ T78] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 59.198603][ T78] Workqueue: kblockd blk_mq_requeue_work [ 59.204230][ T78] RIP: 0010:blk_mq_dispatch_rq_list+0x17d2/0x17e0 [ 59.210629][ T78] Code: 61 ff e9 45 f5 ff ff 44 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c 70 f6 ff ff 4c 89 ef e8 c8 20 61 ff e9 63 f6 ff ff e8 ce 43 27 ff <0f> 0b e8 67 27 55 02 0f 1f 80 00 00 00 00 55 48 89 e5 41 57 41 56 [ 59.230230][ T78] RSP: 0018:ffffc9000030f740 EFLAGS: 00010293 [ 59.236291][ T78] RAX: ffffffff82459bf2 RBX: ffff88810a9394c0 RCX: ffff888105582780 [ 59.244251][ T78] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88810a93958a [ 59.252211][ T78] RBP: ffffc9000030f8b0 R08: ffffffff82446cef R09: ffffffff82446c86 [ 59.260173][ T78] R10: 0000000000000004 R11: ffff888105582780 R12: dffffc0000000000 [ 59.268131][ T78] R13: ffffc9000030f980 R14: ffff888109dcc800 R15: 1ffff92000061f30 [ 59.276101][ T78] FS: 0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 59.285019][ T78] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 59.291586][ T78] CR2: 0000000021000000 CR3: 00000001219c9000 CR4: 00000000003506a0 [ 59.299549][ T78] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 59.307511][ T78] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 59.315472][ T78] Call Trace: [ 59.318750][ T78] ? __dd_dispatch_request+0x81a/0xa80 [ 59.324195][ T78] ? blk_mq_dequeue_from_ctx+0x900/0x900 [ 59.329830][ T78] blk_mq_do_dispatch_sched+0x623/0xbb0 [ 59.335359][ T78] ? blk_mq_exit_sched+0x420/0x420 [ 59.340457][ T78] ? _raw_spin_lock+0xa3/0x1b0 [ 59.345208][ T78] ? _raw_spin_trylock_bh+0x1a0/0x1a0 [ 59.350565][ T78] ? __rcu_read_lock+0x50/0x50 [ 59.355313][ T78] __blk_mq_sched_dispatch_requests+0x3de/0x4d0 [ 59.361537][ T78] ? _raw_spin_lock+0xa3/0x1b0 [ 59.366286][ T78] ? _raw_spin_trylock_bh+0x1a0/0x1a0 [ 59.371647][ T78] ? blk_mq_sched_dispatch_requests+0x160/0x160 [ 59.377879][ T78] blk_mq_sched_dispatch_requests+0xf0/0x160 [ 59.383846][ T78] __blk_mq_run_hw_queue+0x14f/0x260 [ 59.389116][ T78] __blk_mq_delay_run_hw_queue+0x230/0x570 [ 59.395077][ T78] ? sbitmap_any_bit_set+0x135/0x170 [ 59.400343][ T78] blk_mq_run_hw_queue+0x29d/0x3b0 [ 59.405439][ T78] blk_mq_run_hw_queues+0x37c/0x450 [ 59.410620][ T78] blk_mq_requeue_work+0x7e6/0x830 [ 59.415717][ T78] ? blk_mq_timeout_work+0x490/0x490 [ 59.420991][ T78] ? __kasan_check_read+0x11/0x20 [ 59.426004][ T78] process_one_work+0x6b4/0xfb0 [ 59.430841][ T78] worker_thread+0xb15/0x1600 [ 59.435505][ T78] ? __kasan_check_read+0x11/0x20 [ 59.440517][ T78] kthread+0x371/0x390 [ 59.444574][ T78] ? process_one_work+0xfb0/0xfb0 [ 59.449577][ T78] ? kthread_blkcg+0xd0/0xd0 [ 59.454588][ T78] ret_from_fork+0x1f/0x30 [ 59.458988][ T78] Modules linked in: [ 59.463614][ T78] ---[ end trace 45215325d82abb45 ]--- [ 59.469285][ T78] RIP: 0010:blk_mq_dispatch_rq_list+0x17d2/0x17e0 [ 59.475714][ T78] Code: 61 ff e9 45 f5 ff ff 44 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c 70 f6 ff ff 4c 89 ef e8 c8 20 61 ff e9 63 f6 ff ff e8 ce 43 27 ff <0f> 0b e8 67 27 55 02 0f 1f 80 00 00 00 00 55 48 89 e5 41 57 41 56 [ 59.495496][ T78] RSP: 0018:ffffc9000030f740 EFLAGS: 00010293 [ 59.501554][ T78] RAX: ffffffff82459bf2 RBX: ffff88810a9394c0 RCX: ffff888105582780 [ 59.509536][ T78] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88810a93958a [ 59.517530][ T78] RBP: ffffc9000030f8b0 R08: ffffffff82446cef R09: ffffffff82446c86 [ 59.525513][ T78] R10: 0000000000000004 R11: ffff888105582780 R12: dffffc0000000000 [ 59.533471][ T78] R13: ffffc9000030f980 R14: ffff888109dcc800 R15: 1ffff92000061f30 [ 59.541695][ T78] FS: 0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 59.550757][ T78] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 59.557354][ T78] CR2: 0000000021000000 CR3: 00000001219c9000 CR4: 00000000003506a0 [ 59.565336][ T78] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 59.573294][ T78] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 59.581279][ T78] Kernel panic - not syncing: Fatal exception [ 59.587574][ T78] Kernel Offset: disabled [ 59.591932][ T78] Rebooting in 86400 seconds..