[ 34.477695][ T24] audit: type=1400 audit(1652353334.039:81): avc: denied { setattr } for pid=2630 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=699 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 34.509779][ T24] audit: type=1400 audit(1652353334.059:82): avc: denied { execmem } for pid=2631 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 34.529345][ T24] audit: type=1400 audit(1652353334.059:83): avc: denied { mounton } for pid=2632 comm="syz-executor.0" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[ 35.119676][ T2621] can: request_module (can-proto-0) failed.
[ 35.167011][ T2621] can: request_module (can-proto-0) failed.
[ 35.182303][ T2621] can: request_module (can-proto-0) failed.
[ 45.911876][ T24] kauditd_printk_skb: 81 callbacks suppressed
[ 45.911884][ T24] audit: type=1400 audit(1652353345.619:165): avc: denied { append } for pid=2127 comm="syslogd" name="messages" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 45.941815][ T24] audit: type=1400 audit(1652353345.619:166): avc: denied { open } for pid=2127 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 45.964393][ T24] audit: type=1400 audit(1652353345.619:167): avc: denied { getattr } for pid=2127 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
Warning: Permanently added '10.128.1.175' (ECDSA) to the list of known hosts.
2022/05/12 11:02:32 parsed 1 programs
2022/05/12 11:02:32 executed programs: 0
[ 52.537707][ T24] audit: type=1400 audit(1652353352.249:168): avc: denied { mounton } for pid=2700 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[ 52.563474][ T24] audit: type=1400 audit(1652353352.249:169): avc: denied { mount } for pid=2700 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[ 52.587099][ T24] audit: type=1400 audit(1652353352.279:170): avc: denied { mount } for pid=2705 comm="syz-executor.0" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[ 52.609827][ T24] audit: type=1400 audit(1652353352.289:171): avc: denied { mounton } for pid=2705 comm="syz-executor.0" path="/syzcgroup/unified" dev="sda1" ino=1142 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[ 52.632938][ T24] audit: type=1400 audit(1652353352.289:172): avc: denied { mount } for pid=2705 comm="syz-executor.0" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 53.770232][ T24] audit: type=1400 audit(1652353353.479:173): avc: denied { ioctl } for pid=2705 comm="syz-executor.0" path="socket:[27527]" dev="sockfs" ino=27527 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 53.776688][ T2709] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 53.803995][ T2709] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 53.811789][ T2709] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 53.820220][ T2709] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 53.828151][ T2709] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 53.835504][ T2709] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 53.897599][ T2705] chnl_net:caif_netlink_parms(): no params data found
[ 53.932832][ T2705] bridge0: port 1(bridge_slave_0) entered blocking state
[ 53.940379][ T2705] bridge0: port 1(bridge_slave_0) entered disabled state
[ 53.948312][ T2705] device bridge_slave_0 entered promiscuous mode
[ 53.957492][ T2705] bridge0: port 2(bridge_slave_1) entered blocking state
[ 53.964596][ T2705] bridge0: port 2(bridge_slave_1) entered disabled state
[ 53.972668][ T2705] device bridge_slave_1 entered promiscuous mode
[ 53.990473][ T2705] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 54.002152][ T2705] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 54.020744][ T2705] team0: Port device team_slave_0 added
[ 54.027743][ T2705] team0: Port device team_slave_1 added
[ 54.042585][ T2705] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 54.049630][ T2705] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 54.076258][ T2705] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 54.088567][ T2705] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 54.095559][ T2705] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 54.121441][ T2705] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 54.187708][ T2705] device hsr_slave_0 entered promiscuous mode
[ 54.225708][ T2705] device hsr_slave_1 entered promiscuous mode
[ 54.325620][ T24] audit: type=1400 audit(1652353354.029:174): avc: denied { create } for pid=2705 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 54.328874][ T2705] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 54.347965][ T24] audit: type=1400 audit(1652353354.039:175): avc: denied { write } for pid=2705 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 54.375765][ T24] audit: type=1400 audit(1652353354.039:176): avc: denied { read } for pid=2705 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 54.418772][ T2705] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 54.468246][ T2705] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 54.528298][ T2705] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 54.575773][ T2705] bridge0: port 2(bridge_slave_1) entered blocking state
[ 54.583373][ T2705] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 54.591280][ T2705] bridge0: port 1(bridge_slave_0) entered blocking state
[ 54.599787][ T2705] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 54.631348][ T2705] 8021q: adding VLAN 0 to HW filter on device bond0
[ 54.643822][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 54.652612][ T25] bridge0: port 1(bridge_slave_0) entered disabled state
[ 54.660616][ T25] bridge0: port 2(bridge_slave_1) entered disabled state
[ 54.668125][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 54.680663][ T2705] 8021q: adding VLAN 0 to HW filter on device team0
[ 54.689874][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 54.698950][ T25] bridge0: port 1(bridge_slave_0) entered blocking state
[ 54.706038][ T25] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 54.718543][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 54.727586][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 54.736662][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 54.757322][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 54.766034][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 54.774339][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 54.782773][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 54.793018][ T2705] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 54.804803][ T2705] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 54.814418][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 54.831126][ T2705] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 54.839234][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 54.847212][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 54.866988][ T24] audit: type=1400 audit(1652353354.579:177): avc: denied { sys_module } for pid=2705 comm="syz-executor.0" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[ 54.926773][ T134] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 54.936441][ T134] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 54.946241][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 54.954957][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 54.965232][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 54.973867][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 54.982060][ T2705] device veth0_vlan entered promiscuous mode
[ 54.992218][ T2705] device veth1_vlan entered promiscuous mode
[ 55.007692][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 55.016168][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 55.024114][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 55.032855][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 55.042845][ T2705] device veth0_macvtap entered promiscuous mode
[ 55.052047][ T2705] device veth1_macvtap entered promiscuous mode
[ 55.065074][ T2705] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 55.072887][ T134] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 55.081547][ T134] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 55.089613][ T134] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 55.098344][ T134] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 55.109894][ T2705] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 55.117624][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 55.126463][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 55.140632][ T2705] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 55.149513][ T2705] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 55.158256][ T2705] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 55.167699][ T2705] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 55.211647][ T44] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 55.224845][ T44] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 55.232389][ T1023] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 55.234184][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 55.248015][ T1023] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 55.257414][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 55.367594][ T2725] nbd0: detected capacity change from 0 to 5092
[ 55.936305][ T6] Bluetooth: hci0: command 0x0409 tx timeout
[ 58.005945][ T6] Bluetooth: hci0: command 0x041b tx timeout
[ 58.329216][ T2725] block nbd0: shutting down sockets
[ 60.085785][ T6] Bluetooth: hci0: command 0x040f tx timeout
[ 62.165457][ T25] Bluetooth: hci0: command 0x0419 tx timeout
[ 86.005575][ T50] block nbd0: Possible stuck request 00000000381f6831: control (read@0,4096B). Runtime 30 seconds
[ 115.471907][ T2145] udevd[2145]: worker [2708] /devices/virtual/block/nbd0 is taking a long time
[ 180.245364][ T2637] Bluetooth: hci0: command 0x0406 tx timeout
[ 235.683861][ T2145] udevd[2145]: worker [2708] /devices/virtual/block/nbd0 timeout; kill it
[ 235.694791][ T2145] udevd[2145]: seq 5777 '/devices/virtual/block/nbd0' killed
[ 285.685593][ T26] INFO: task udevd:2708 blocked for more than 143 seconds.
[ 285.693975][ T26] Not tainted 5.18.0-rc6-syzkaller #0
[ 285.700353][ T26] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 285.709070][ T26] task:udevd state:D stack:26624 pid: 2708 ppid: 2145 flags:0x00004004
[ 285.718529][ T26] Call Trace:
[ 285.721811][ T26]
[ 285.724730][ T26] __schedule+0xd95/0x27f0
[ 285.729259][ T26] ? io_schedule_timeout+0x140/0x140
[ 285.735146][ T26] ? preempt_schedule_thunk+0x16/0x18
[ 285.740596][ T26] ? preempt_schedule_common+0x59/0xc0
[ 285.746933][ T26] schedule+0xd2/0x1f0
[ 285.751095][ T26] io_schedule+0xba/0x130
[ 285.755500][ T26] folio_wait_bit_common+0x387/0x7d0
[ 285.760776][ T26] ? filemap_range_has_page+0x220/0x220
[ 285.766414][ T26] ? end_buffer_async_read_io+0x2f0/0x2f0
[ 285.772144][ T26] ? folio_unlock+0x80/0x80
[ 285.776932][ T26] do_read_cache_folio+0x3c6/0x5c0
[ 285.782304][ T26] read_cache_page+0x48/0x1f0
[ 285.787025][ T26] read_part_sector+0xe0/0x690
[ 285.791784][ T26] adfspart_check_ICS+0x96/0x610
[ 285.796785][ T26] ? pointer+0x750/0x750
[ 285.801017][ T26] ? rcu_read_lock_sched_held+0x3a/0xb0
[ 285.806606][ T26] ? adfspart_check_ADFS+0x3c0/0x3c0
[ 285.811885][ T26] ? snprintf+0x9e/0xd0
[ 285.816097][ T26] ? vsprintf+0x10/0x10
[ 285.820230][ T26] ? rcu_read_lock_sched_held+0x3a/0xb0
[ 285.825834][ T26] ? bdev_disk_changed+0x26e/0xd20
[ 285.830940][ T26] ? adfspart_check_ADFS+0x3c0/0x3c0
[ 285.836517][ T26] bdev_disk_changed+0x497/0xd20
[ 285.841481][ T26] blkdev_get_whole+0x195/0x270
[ 285.847216][ T26] blkdev_get_by_dev.part.0+0x4cc/0xb20
[ 285.853621][ T26] blkdev_open+0xde/0x240
[ 285.858471][ T26] do_dentry_open+0x414/0xfd0
[ 285.863765][ T26] ? blkdev_close+0x90/0x90
[ 285.868326][ T26] ? may_open+0xce/0x330
[ 285.872560][ T26] path_openat+0x9cf/0x2360
[ 285.877110][ T26] ? lookup_open.isra.0+0x1760/0x1760
[ 285.882460][ T26] ? lockdep_hardirqs_on_prepare+0x440/0x440
[ 285.889302][ T26] ? lockdep_hardirqs_on_prepare+0x440/0x440
[ 285.896221][ T26] ? lock_is_held_type+0xfc/0x170
[ 285.901260][ T26] ? lock_is_held_type+0xfc/0x170
[ 285.906335][ T26] do_filp_open+0x199/0x3d0
[ 285.910822][ T26] ? may_open_dev+0xd0/0xd0
[ 285.915390][ T26] ? rwlock_bug.part.0+0x90/0x90
[ 285.920932][ T26] ? _raw_spin_unlock+0x24/0x40
[ 285.926445][ T26] ? alloc_fd+0x1fe/0x560
[ 285.930773][ T26] ? getname_flags.part.0+0x89/0x440
[ 285.936199][ T26] do_sys_openat2+0x11e/0x3f0
[ 285.940943][ T26] ? __fget_light+0x4c/0x220
[ 285.945881][ T26] ? build_open_flags+0x490/0x490
[ 285.951163][ T26] ? xfd_validate_state+0x1f/0x120
[ 285.957472][ T26] __x64_sys_openat+0x11b/0x1d0
[ 285.962315][ T26] ? lock_is_held_type+0xfc/0x170
[ 285.967470][ T26] ? __ia32_sys_open+0x190/0x190
[ 285.972405][ T26] ? lock_is_held_type+0xfc/0x170
[ 285.977827][ T26] ? lockdep_hardirqs_on_prepare+0x23e/0x440
[ 285.983889][ T26] ? syscall_enter_from_user_mode+0x1d/0x60
[ 285.989861][ T26] ? lockdep_hardirqs_on+0x8b/0x110
[ 285.995055][ T26] do_syscall_64+0x35/0x80
[ 285.999629][ T26] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 286.005604][ T26] RIP: 0033:0x7ff81e325697
[ 286.010006][ T26] RSP: 002b:00007fff29da78d0 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 286.018550][ T26] RAX: ffffffffffffffda RBX: 0000564d75ee2d00 RCX: 00007ff81e325697
[ 286.026567][ T26] RDX: 00000000000a0800 RSI: 0000564d75ec5110 RDI: 00000000ffffff9c
[ 286.034518][ T26] RBP: 0000564d75ec5110 R08: 0000000000000001 R09: 00007fff29df1080
[ 286.042548][ T26] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000a0800
[ 286.050563][ T26] R13: 0000564d75ed1d20 R14: 0000000000000001 R15: 0000564d75ea92c0
[ 286.058838][ T26]
[ 286.061893][ T26] INFO: task syz-executor.0:2724 blocked for more than 143 seconds.
[ 286.070323][ T26] Not tainted 5.18.0-rc6-syzkaller #0
[ 286.076250][ T26] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 286.084892][ T26] task:syz-executor.0 state:D stack:27216 pid: 2724 ppid: 2705 flags:0x00000004
[ 286.094928][ T26] Call Trace:
[ 286.098287][ T26]
[ 286.101205][ T26] __schedule+0xd95/0x27f0
[ 286.105661][ T26] ? io_schedule_timeout+0x140/0x140
[ 286.110934][ T26] schedule+0xd2/0x1f0
[ 286.114995][ T26] schedule_preempt_disabled+0xf/0x20
[ 286.120397][ T26] __mutex_lock+0xa32/0x12f0
[ 286.124992][ T26] ? blkdev_put+0x82/0x830
[ 286.129445][ T26] ? mutex_lock_io_nested+0x1150/0x1150
[ 286.134978][ T26] ? do_raw_spin_unlock+0x171/0x230
[ 286.140401][ T26] ? _raw_spin_unlock+0x24/0x40
[ 286.145262][ T26] ? locks_remove_file+0x2fc/0x4a0
[ 286.150371][ T26] blkdev_put+0x82/0x830
[ 286.154586][ T26] blkdev_close+0x5f/0x90
[ 286.158930][ T26] __fput+0x1f5/0x8c0
[ 286.162901][ T26] task_work_run+0xc0/0x160
[ 286.167502][ T26] exit_to_user_mode_prepare+0x1e0/0x1f0
[ 286.173127][ T26] syscall_exit_to_user_mode+0x16/0x40
[ 286.178615][ T26] do_syscall_64+0x42/0x80
[ 286.183184][ T26] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 286.189089][ T26] RIP: 0033:0x418c1b
[ 286.192968][ T26] RSP: 002b:00007ffdbf162dc0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 286.203217][ T26] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000418c1b
[ 286.211463][ T26] RDX: 00000000000003e7 RSI: 0000001b2cc200bc RDI: 0000000000000004
[ 286.219475][ T26] RBP: 0000000000000005 R08: 0000000000000000 R09: 0000001b2cc200c4
[ 286.227459][ T26] R10: 00007ffdbf1e7090 R11: 0000000000000293 R12: 000000000055d9a0
[ 286.235523][ T26] R13: 000000000055d9a0 R14: 000000000055cf20 R15: 000000000055cf20
[ 286.243485][ T26]
[ 286.246571][ T26] INFO: task syz-executor.0:2725 blocked for more than 143 seconds.
[ 286.254527][ T26] Not tainted 5.18.0-rc6-syzkaller #0
[ 286.260722][ T26] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 286.269404][ T26] task:syz-executor.0 state:D stack:27512 pid: 2725 ppid: 2705 flags:0x00004006
[ 286.278643][ T26] Call Trace:
[ 286.281926][ T26]
[ 286.284835][ T26] __schedule+0xd95/0x27f0
[ 286.289285][ T26] ? io_schedule_timeout+0x140/0x140
[ 286.294565][ T26] schedule+0xd2/0x1f0
[ 286.298676][ T26] schedule_preempt_disabled+0xf/0x20
[ 286.304045][ T26] __mutex_lock+0xa32/0x12f0
[ 286.308959][ T26] ? blkdev_put+0x82/0x830
[ 286.313389][ T26] ? mutex_lock_io_nested+0x1150/0x1150
[ 286.319125][ T26] ? do_raw_spin_unlock+0x171/0x230
[ 286.325119][ T26] ? _raw_spin_unlock+0x24/0x40
[ 286.330400][ T26] ? locks_remove_file+0x2fc/0x4a0
[ 286.335912][ T26] blkdev_put+0x82/0x830
[ 286.340157][ T26] blkdev_close+0x5f/0x90
[ 286.344467][ T26] __fput+0x1f5/0x8c0
[ 286.348713][ T26] task_work_run+0xc0/0x160
[ 286.353206][ T26] get_signal+0x19b/0x1ea0
[ 286.357750][ T26] ? kasan_save_stack+0x2e/0x40
[ 286.362587][ T26] ? task_work_add+0x36/0x130
[ 286.367283][ T26] ? fput_many.part.0+0x87/0x110
[ 286.372245][ T26] ? __x64_sys_ioctl+0x13e/0x190
[ 286.377220][ T26] ? do_syscall_64+0x35/0x80
[ 286.381801][ T26] ? entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 286.387893][ T26] ? signal_setup_done+0x4b0/0x4b0
[ 286.392988][ T26] ? sock_shutdown+0x138/0x1b0
[ 286.397776][ T26] arch_do_signal_or_restart+0x88/0x1a80
[ 286.403395][ T26] ? nbd_start_device+0xb70/0xb70
[ 286.408478][ T26] ? get_sigframe_size+0x10/0x10
[ 286.413440][ T26] ? selinux_bprm_creds_for_exec+0xad0/0xad0
[ 286.419764][ T26] ? xfd_validate_state+0x1f/0x120
[ 286.424896][ T26] ? blkdev_ioctl+0x2ff/0x6c0
[ 286.430020][ T26] ? kick_process+0xf2/0x190
[ 286.434662][ T26] exit_to_user_mode_prepare+0x14a/0x1f0
[ 286.440420][ T26] syscall_exit_to_user_mode+0x16/0x40
[ 286.445908][ T26] do_syscall_64+0x42/0x80
[ 286.450317][ T26] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 286.456306][ T26] RIP: 0033:0x465ad9
[ 286.460178][ T26] RSP: 002b:00007fb1d68e4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 286.468622][ T26] RAX: fffffffffffffe00 RBX: 000000000055cf20 RCX: 0000000000465ad9
[ 286.476614][ T26] RDX: ffffffffffffffff RSI: 000000000000ab03 RDI: 0000000000000003
[ 286.484598][ T26] RBP: 00000000004af756 R08: 0000000000000000 R09: 0000000000000000
[ 286.492654][ T26] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000055cf20
[ 286.500660][ T26] R13: 00007ffdbf162d5f R14: 00007fb1d68e4300 R15: 0000000000022000
[ 286.508970][ T26]
[ 286.512019][ T26]
[ 286.512019][ T26] Showing all locks held in the system:
[ 286.520250][ T26] 1 lock held by khungtaskd/26:
[ 286.525099][ T26] #0: ffffffff8a1b7d60 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x28c
[ 286.535411][ T26] 4 locks held by kworker/0:2/134:
[ 286.540787][ T26] #0: ffff8881f603b358 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x1e/0x30
[ 286.551842][ T26] #1: ffff8881f60287c8 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x176/0x4e0
[ 286.563304][ T26] #2: ffff8881f6029170 (krc.lock){....}-{2:2}, at: kfree_rcu_work+0x32d/0xa30
[ 286.572260][ T26] #3: ffffffff8df22810 (&obj_hash[i].lock){-.-.}-{2:2}, at: debug_check_no_obj_freed+0xc7/0x430
[ 286.582824][ T26] 2 locks held by getty/2302:
[ 286.587551][ T26] #0: ffff88817e012098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x1f/0x70
[ 286.597272][ T26] #1: ffffc900016c32e8 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x9e3/0xed0
[ 286.607272][ T26] 1 lock held by udevd/2708:
[ 286.611843][ T26] #0: ffff88810a0b6118 (&disk->open_mutex){+.+.}-{3:3}, at: blkdev_get_by_dev.part.0+0x78/0xb20
[ 286.622352][ T26] 1 lock held by syz-executor.0/2724:
[ 286.627708][ T26] #0: ffff88810a0b6118 (&disk->open_mutex){+.+.}-{3:3}, at: blkdev_put+0x82/0x830
[ 286.637005][ T26] 1 lock held by syz-executor.0/2725:
[ 286.642342][ T26] #0: ffff88810a0b6118 (&disk->open_mutex){+.+.}-{3:3}, at: blkdev_put+0x82/0x830
[ 286.651834][ T26]
[ 286.654150][ T26] =============================================
[ 286.654150][ T26]
[ 286.662642][ T26] Kernel panic - not syncing: hung_task: blocked tasks
[ 286.669462][ T26] CPU: 1 PID: 26 Comm: khungtaskd Not tainted 5.18.0-rc6-syzkaller #0
[ 286.677661][ T26] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 286.687680][ T26] Call Trace:
[ 286.690924][ T26]
[ 286.693835][ T26] dump_stack_lvl+0xe9/0x139
[ 286.698592][ T26] panic+0x2b7/0x52b
[ 286.702470][ T26] ? panic_print_sys_info.part.0+0x69/0x69
[ 286.708260][ T26] watchdog.cold+0x205/0x230
[ 286.712838][ T26] ? proc_dohung_task_timeout_secs+0x30/0x30
[ 286.718791][ T26] kthread+0x299/0x340
[ 286.722832][ T26] ? kthread_complete_and_exit+0x20/0x20
[ 286.728435][ T26] ret_from_fork+0x1f/0x30
[ 286.732825][ T26]
[ 286.736555][ T26] Kernel Offset: disabled
[ 286.740865][ T26] Rebooting in 86400 seconds..