[ 56.066420][ T3627] bridge0: port 1(bridge_slave_0) entered disabled state
[ 56.080650][ T3627] veth1_macvtap: left promiscuous mode
[ 56.086766][ T3627] veth0_macvtap: left promiscuous mode
[ 56.092305][ T3627] veth1_vlan: left promiscuous mode
[ 56.097832][ T3627] veth0_vlan: left promiscuous mode
[ 56.216971][ T3627] team0 (unregistering): Port device team_slave_1 removed
[ 56.228660][ T3627] team0 (unregistering): Port device team_slave_0 removed
[ 56.241651][ T3627] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 56.256608][ T3627] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 56.306964][ T3627] bond0 (unregistering): Released all slaves
Warning: Permanently added '10.128.15.200' (ECDSA) to the list of known hosts.
2023/06/22 19:24:51 ignoring optional flag "sandboxArg"="0"
2023/06/22 19:24:51 parsed 1 programs
[ 72.716792][ T26] kauditd_printk_skb: 5 callbacks suppressed
[ 72.716800][ T26] audit: type=1400 audit(1687461891.359:203): avc: denied { getattr } for pid=5322 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
2023/06/22 19:24:51 executed programs: 0
[ 72.749203][ T26] audit: type=1400 audit(1687461891.359:204): avc: denied { read } for pid=5322 comm="syz-execprog" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 72.781821][ T26] audit: type=1400 audit(1687461891.359:205): avc: denied { open } for pid=5322 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 72.811814][ T26] audit: type=1400 audit(1687461891.399:206): avc: denied { mounton } for pid=5327 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[ 72.821555][ T4388] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 72.841536][ T26] audit: type=1400 audit(1687461891.399:207): avc: denied { mount } for pid=5327 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[ 72.845466][ T4388] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 72.878613][ T4388] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 72.886386][ T4388] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 72.893902][ T4388] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 72.909574][ T26] audit: type=1400 audit(1687461891.549:208): avc: denied { mounton } for pid=5333 comm="syz-executor.0" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[ 72.988014][ T5333] chnl_net:caif_netlink_parms(): no params data found
[ 73.024567][ T5333] bridge0: port 1(bridge_slave_0) entered blocking state
[ 73.031962][ T5333] bridge0: port 1(bridge_slave_0) entered disabled state
[ 73.039673][ T5333] bridge_slave_0: entered allmulticast mode
[ 73.046669][ T5333] bridge_slave_0: entered promiscuous mode
[ 73.055306][ T5333] bridge0: port 2(bridge_slave_1) entered blocking state
[ 73.062922][ T5333] bridge0: port 2(bridge_slave_1) entered disabled state
[ 73.070414][ T5333] bridge_slave_1: entered allmulticast mode
[ 73.077123][ T5333] bridge_slave_1: entered promiscuous mode
[ 73.097349][ T5333] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 73.108267][ T5333] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 73.130371][ T5333] team0: Port device team_slave_0 added
[ 73.137560][ T5333] team0: Port device team_slave_1 added
[ 73.153522][ T5333] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 73.161087][ T5333] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 73.188445][ T5333] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 73.201162][ T5333] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 73.208828][ T5333] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 73.236790][ T5333] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 73.266960][ T5333] hsr_slave_0: entered promiscuous mode
[ 73.273075][ T5333] hsr_slave_1: entered promiscuous mode
[ 73.740615][ T5333] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 73.752325][ T5333] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 73.762078][ T5333] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 73.772636][ T5333] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 73.795848][ T5333] bridge0: port 2(bridge_slave_1) entered blocking state
[ 73.803066][ T5333] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 73.810538][ T5333] bridge0: port 1(bridge_slave_0) entered blocking state
[ 73.818444][ T5333] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 73.869695][ T5333] 8021q: adding VLAN 0 to HW filter on device bond0
[ 73.884834][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 73.896931][ T25] bridge0: port 1(bridge_slave_0) entered disabled state
[ 73.906653][ T25] bridge0: port 2(bridge_slave_1) entered disabled state
[ 73.916587][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 73.929938][ T5333] 8021q: adding VLAN 0 to HW filter on device team0
[ 73.942841][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 73.952209][ T25] bridge0: port 1(bridge_slave_0) entered blocking state
[ 73.959447][ T25] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 73.979155][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 73.989112][ T21] bridge0: port 2(bridge_slave_1) entered blocking state
[ 73.996380][ T21] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 74.016025][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 74.025425][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 74.035242][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 74.044912][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 74.054506][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 74.068516][ T5333] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 74.081923][ T5333] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 74.096885][ T5368] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 74.105992][ T5368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 74.115783][ T5368] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 74.124995][ T5368] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 74.133609][ T5368] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 74.147752][ T5368] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 74.174143][ T26] audit: type=1400 audit(1687461892.809:209): avc: denied { sys_module } for pid=5333 comm="syz-executor.0" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[ 74.259638][ T5333] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 74.267752][ T4978] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 74.275490][ T4978] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 74.294895][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 74.303650][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 74.324065][ T4978] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 74.332582][ T4978] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 74.342784][ T4978] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 74.351399][ T4978] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 74.363512][ T5333] veth0_vlan: entered promiscuous mode
[ 74.377833][ T5333] veth1_vlan: entered promiscuous mode
[ 74.399401][ T4978] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 74.407605][ T4978] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 74.416717][ T4978] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 74.425867][ T4978] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 74.437670][ T5333] veth0_macvtap: entered promiscuous mode
[ 74.453298][ T5333] veth1_macvtap: entered promiscuous mode
[ 74.472174][ T5333] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 74.480805][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 74.490412][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 74.499424][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 74.509303][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 74.523094][ T5333] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 74.532191][ T5368] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 74.541779][ T5368] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 74.552813][ T5333] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.563299][ T5333] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.573326][ T5333] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.583417][ T5333] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.649885][ T1065] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 74.664322][ T1065] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 74.691729][ T5368] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 74.702936][ T1065] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 74.713920][ T1065] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 74.728572][ T5368] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 74.742839][ T26] audit: type=1400 audit(1687461893.379:210): avc: denied { mounton } for pid=5333 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=2324 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[ 74.813389][ T26] audit: type=1400 audit(1687461893.449:211): avc: denied { mounton } for pid=5416 comm="syz-executor.0" path="/root/syzkaller-testdir3527489867/syzkaller.XmphSi/0/file0" dev="sda1" ino=1937 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[ 74.965999][ T4388] Bluetooth: hci0: command 0x0409 tx timeout
[ 76.728720][ T6] cfg80211: failed to load regulatory.db
[ 77.043925][ T4388] Bluetooth: hci0: command 0x041b tx timeout
[ 79.124131][ T4388] Bluetooth: hci0: command 0x040f tx timeout
[ 81.203892][ T4388] Bluetooth: hci0: command 0x0419 tx timeout
[ 127.925502][ T1214] ieee802154 phy0 wpan0: encryption failed: -22
[ 127.932166][ T1214] ieee802154 phy1 wpan1: encryption failed: -22
[ 189.365847][ T1214] ieee802154 phy0 wpan0: encryption failed: -22
[ 189.373044][ T1214] ieee802154 phy1 wpan1: encryption failed: -22
[ 196.563828][ T4981] Bluetooth: hci0: command 0x0406 tx timeout
[ 232.243902][ T27] INFO: task syz-executor.0:5333 blocked for more than 143 seconds.
[ 232.252137][ T27] Not tainted 6.4.0-rc7-syzkaller #0
[ 232.259116][ T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 232.267965][ T27] task:syz-executor.0 state:D stack:24368 pid:5333 ppid:1 flags:0x00000004
[ 232.277487][ T27] Call Trace:
[ 232.280827][ T27]
[ 232.283840][ T27] __schedule+0xc25/0x57f0
[ 232.288265][ T27] ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 232.294353][ T27] ? print_usage_bug.part.0+0x660/0x660
[ 232.299910][ T27] ? io_schedule_timeout+0x150/0x150
[ 232.305272][ T27] ? rwsem_down_read_slowpath+0x299/0xae0
[ 232.310999][ T27] schedule+0xde/0x1a0
[ 232.315139][ T27] schedule_preempt_disabled+0x13/0x20
[ 232.320601][ T27] rwsem_down_read_slowpath+0x57c/0xae0
[ 232.327041][ T27] ? down_write+0x200/0x200
[ 232.331555][ T27] ? lock_sync+0x190/0x190
[ 232.336284][ T27] down_read+0xf0/0x480
[ 232.340625][ T27] ? down_write_killable+0x250/0x250
[ 232.345996][ T27] walk_component+0x296/0x4e0
[ 232.350689][ T27] link_path_walk.part.0+0x568/0xac0
[ 232.356160][ T27] ? walk_component+0x4e0/0x4e0
[ 232.361448][ T27] ? lockdep_hardirqs_on+0x7d/0x100
[ 232.366728][ T27] path_openat+0x1f8/0x2280
[ 232.371246][ T27] ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 232.377520][ T27] ? path_lookupat+0x750/0x750
[ 232.382275][ T27] ? find_held_lock+0x2d/0x110
[ 232.387148][ T27] do_filp_open+0x1a9/0x3e0
[ 232.392018][ T27] ? may_open_dev+0xd0/0xd0
[ 232.396843][ T27] ? find_held_lock+0x2d/0x110
[ 232.401608][ T27] ? do_raw_spin_lock+0x124/0x2b0
[ 232.406760][ T27] ? spin_bug+0x1c0/0x1c0
[ 232.411109][ T27] ? _raw_spin_unlock+0x28/0x40
[ 232.416043][ T27] ? alloc_fd+0x1e4/0x640
[ 232.420359][ T27] ? getname_flags.part.0+0x89/0x440
[ 232.425675][ T27] do_sys_openat2+0x11e/0x3f0
[ 232.430344][ T27] ? hrtimer_init_sleeper_on_stack+0x90/0x90
[ 232.436587][ T27] ? build_open_flags+0x4a0/0x4a0
[ 232.441690][ T27] ? put_timespec64+0x100/0x100
[ 232.446582][ T27] __x64_sys_openat+0x11f/0x1d0
[ 232.454208][ T27] ? __ia32_sys_open+0x1a0/0x1a0
[ 232.459399][ T27] ? syscall_enter_from_user_mode+0x26/0x80
[ 232.465729][ T27] ? lockdep_hardirqs_on+0x7d/0x100
[ 232.470932][ T27] do_syscall_64+0x39/0xb0
[ 232.475891][ T27] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 232.481781][ T27] RIP: 0033:0x7f1499a8bc48
[ 232.486394][ T27] RSP: 002b:00007ffc363ef6e0 EFLAGS: 00000287 ORIG_RAX: 0000000000000101
[ 232.495066][ T27] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f1499a8bc48
[ 232.503045][ T27] RDX: 0000000000090800 RSI: 00007f1499ae6bc8 RDI: 00000000ffffff9c
[ 232.511141][ T27] RBP: 00007ffc363ef7ac R08: 0000000000090800 R09: 00007f1499ae6bc8
[ 232.519439][ T27] R10: 0000000000000000 R11: 0000000000000287 R12: 0000000000000000
[ 232.527510][ T27] R13: 0000000000012752 R14: 0000000000000009 R15: 00007ffc363ef810
[ 232.535644][ T27]
[ 232.538695][ T27] INFO: task syz-executor.0:5417 blocked for more than 143 seconds.
[ 232.546783][ T27] Not tainted 6.4.0-rc7-syzkaller #0
[ 232.552912][ T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 232.561797][ T27] task:syz-executor.0 state:D stack:26792 pid:5417 ppid:5333 flags:0x00004004
[ 232.571187][ T27] Call Trace:
[ 232.575404][ T27]
[ 232.578348][ T27] __schedule+0xc25/0x57f0
[ 232.582933][ T27] ? lock_acquire+0x1b1/0x520
[ 232.587737][ T27] ? find_held_lock+0x2d/0x110
[ 232.592583][ T27] ? io_schedule_timeout+0x150/0x150
[ 232.597889][ T27] ? mark_held_locks+0x9f/0xe0
[ 232.602759][ T27] ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 232.609126][ T27] ? lockdep_hardirqs_on+0x7d/0x100
[ 232.614453][ T27] ? _raw_spin_unlock_irqrestore+0x41/0x70
[ 232.620379][ T27] schedule+0xde/0x1a0
[ 232.624494][ T27] request_wait_answer+0x371/0x6b0
[ 232.629595][ T27] ? queue_interrupt+0x470/0x470
[ 232.634645][ T27] ? lock_downgrade+0x690/0x690
[ 232.639491][ T27] ? prepare_to_swait_exclusive+0x240/0x240
[ 232.645518][ T27] ? spin_bug+0x1c0/0x1c0
[ 232.649851][ T27] fuse_simple_request+0x480/0xba0
[ 232.655093][ T27] ? kasan_set_track+0x25/0x30
[ 232.659880][ T27] fuse_lookup_name+0x259/0x5e0
[ 232.664784][ T27] ? fuse_create+0x20/0x20
[ 232.669226][ T27] ? mutex_lock_io_nested+0x11a0/0x11a0
[ 232.674894][ T27] ? __d_lookup_rcu+0x2cd/0x3d0
[ 232.679753][ T27] fuse_lookup.part.0+0xd6/0x2c0
[ 232.685060][ T27] ? fuse_lookup_name+0x5e0/0x5e0
[ 232.690104][ T27] ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 232.696141][ T27] __lookup_slow+0x200/0x3f0
[ 232.700732][ T27] ? lookup_one_qstr_excl+0x150/0x150
[ 232.706275][ T27] walk_component+0x2a3/0x4e0
[ 232.710964][ T27] link_path_walk.part.0+0x568/0xac0
[ 232.716292][ T27] ? walk_component+0x4e0/0x4e0
[ 232.721152][ T27] ? lockdep_hardirqs_on+0x7d/0x100
[ 232.726607][ T27] path_openat+0x1f8/0x2280
[ 232.731174][ T27] ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 232.737296][ T27] ? path_lookupat+0x750/0x750
[ 232.742329][ T27] ? find_held_lock+0x2d/0x110
[ 232.747341][ T27] do_filp_open+0x1a9/0x3e0
[ 232.751838][ T27] ? may_open_dev+0xd0/0xd0
[ 232.756423][ T27] ? find_held_lock+0x2d/0x110
[ 232.761351][ T27] ? do_raw_spin_lock+0x124/0x2b0
[ 232.766554][ T27] ? spin_bug+0x1c0/0x1c0
[ 232.771045][ T27] ? _raw_spin_unlock+0x28/0x40
[ 232.776095][ T27] ? alloc_fd+0x1e4/0x640
[ 232.780505][ T27] ? getname_flags.part.0+0x89/0x440
[ 232.785913][ T27] do_sys_openat2+0x11e/0x3f0
[ 232.790579][ T27] ? build_open_flags+0x4a0/0x4a0
[ 232.795612][ T27] ? xfd_validate_state+0x23/0x120
[ 232.800881][ T27] __x64_sys_openat+0x11f/0x1d0
[ 232.805864][ T27] ? do_futex+0x230/0x230
[ 232.810180][ T27] ? __ia32_sys_open+0x1a0/0x1a0
[ 232.815139][ T27] ? syscall_enter_from_user_mode+0x26/0x80
[ 232.821723][ T27] ? lockdep_hardirqs_on+0x7d/0x100
[ 232.826958][ T27] do_syscall_64+0x39/0xb0
[ 232.831374][ T27] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 232.837302][ T27] RIP: 0033:0x7f1499a8c0d9
[ 232.841791][ T27] RSP: 002b:00007f149a72c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 232.850588][ T27] RAX: ffffffffffffffda RBX: 00007f1499babf80 RCX: 00007f1499a8c0d9
[ 232.858571][ T27] RDX: 0000000000000042 RSI: 0000000020002080 RDI: ffffffffffffff9c
[ 232.866570][ T27] RBP: 00007f1499ae7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 232.874561][ T27] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 232.882609][ T27] R13: 00007ffc363ef4ef R14: 00007f149a72c300 R15: 0000000000022000
[ 232.890974][ T27]
[ 232.894063][ T27] INFO: task syz-executor.0:5424 blocked for more than 144 seconds.
[ 232.902022][ T27] Not tainted 6.4.0-rc7-syzkaller #0
[ 232.907947][ T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 232.916621][ T27] task:syz-executor.0 state:D stack:28440 pid:5424 ppid:5333 flags:0x00000004
[ 232.925884][ T27] Call Trace:
[ 232.929157][ T27]
[ 232.932077][ T27] __schedule+0xc25/0x57f0
[ 232.937369][ T27] ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 232.943517][ T27] ? print_usage_bug.part.0+0x660/0x660
[ 232.949135][ T27] ? save_trace+0x3f/0xb20
[ 232.953539][ T27] ? io_schedule_timeout+0x150/0x150
[ 232.958852][ T27] ? rwsem_down_write_slowpath+0x3b8/0x1220
[ 232.964809][ T27] schedule+0xde/0x1a0
[ 232.968947][ T27] schedule_preempt_disabled+0x13/0x20
[ 232.974430][ T27] rwsem_down_write_slowpath+0x3e2/0x1220
[ 232.980134][ T27] ? down_timeout+0x90/0x90
[ 232.984710][ T27] ? lock_sync+0x190/0x190
[ 232.989204][ T27] ? fuse_init_file_inode+0x1e0/0x1e0
[ 232.994600][ T27] down_write_nested+0x1d6/0x200
[ 232.999524][ T27] ? _down_write_nest_lock+0x200/0x200
[ 233.005118][ T27] ? down_write_killable+0x250/0x250
[ 233.010392][ T27] ? __kmem_cache_alloc_node+0x170/0x3f0
[ 233.016063][ T27] fuse_reverse_inval_entry+0x42/0x4a0
[ 233.021604][ T27] fuse_dev_do_write+0x1dde/0x2580
[ 233.026763][ T27] ? print_usage_bug.part.0+0x660/0x660
[ 233.032386][ T27] ? get_futex_key+0x37c/0x1420
[ 233.037271][ T27] ? fuse_dev_splice_read+0x580/0x580
[ 233.042630][ T27] ? futex_wait_queue+0x7d/0x1d0
[ 233.047802][ T27] ? futex_wait_queue+0xe5/0x1d0
[ 233.052741][ T27] fuse_dev_write+0x133/0x1c0
[ 233.057517][ T27] ? fuse_dev_splice_write+0xa60/0xa60
[ 233.062965][ T27] vfs_write+0x7c5/0xd10
[ 233.067252][ T27] ? kernel_write+0x5d0/0x5d0
[ 233.071985][ T27] ? __fget_files+0x1bf/0x3c0
[ 233.076947][ T27] ? __fget_light+0xb9/0x210
[ 233.081533][ T27] ? __x64_sys_futex+0x180/0x3f0
[ 233.086492][ T27] ksys_write+0xf2/0x1c0
[ 233.090930][ T27] ? __ia32_sys_read+0xa0/0xa0
[ 233.095781][ T27] ? syscall_enter_from_user_mode+0x26/0x80
[ 233.101781][ T27] do_syscall_64+0x39/0xb0
[ 233.106512][ T27] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 233.116935][ T27] RIP: 0033:0x7f1499a8c0d9
[ 233.121714][ T27] RSP: 002b:00007f149a70b168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 233.132289][ T27] RAX: ffffffffffffffda RBX: 00007f1499bac050 RCX: 00007f1499a8c0d9
[ 233.141266][ T27] RDX: 000000000000002c RSI: 00000000200000c0 RDI: 0000000000000003
[ 233.150149][ T27] RBP: 00007f1499ae7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 233.158879][ T27] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 233.167101][ T27] R13: 00007ffc363ef4ef R14: 00007f149a70b300 R15: 0000000000022000
[ 233.175169][ T27]
[ 233.178470][ T27]
[ 233.178470][ T27] Showing all locks held in the system:
[ 233.186311][ T27] 1 lock held by rcu_tasks_kthre/12:
[ 233.191683][ T27] #0: ffffffff8b78c1b0 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x31/0xd80
[ 233.202697][ T27] 1 lock held by rcu_tasks_trace/13:
[ 233.212625][ T27] #0: ffffffff8b78beb0 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x31/0xd80
[ 233.224627][ T27] 1 lock held by khungtaskd/27:
[ 233.229473][ T27] #0: ffffffff8b78cdc0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x340
[ 233.239868][ T27] 2 locks held by getty/4728:
[ 233.244573][ T27] #0: ffff88814afca098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x23/0x80
[ 233.254416][ T27] #1: ffffc900020282f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xb73/0x1040
[ 233.264816][ T27] 1 lock held by syz-executor.0/5333:
[ 233.270169][ T27] #0: ffff88806bdaf850 (&type->i_mutex_dir_key#8){++++}-{3:3}, at: walk_component+0x296/0x4e0
[ 233.280947][ T27] 2 locks held by syz-executor.0/5417:
[ 233.286450][ T27] #0: ffff88806bdaf850 (&type->i_mutex_dir_key#8){++++}-{3:3}, at: walk_component+0x296/0x4e0
[ 233.297289][ T27] #1: ffff88806bdafcb8 (&fi->mutex){+.+.}-{3:3}, at: fuse_lock_inode+0xaf/0xe0
[ 233.307497][ T27] 2 locks held by syz-executor.0/5424:
[ 233.313279][ T27] #0: ffff88807a884b38 (&fc->killsb){.+.+}-{3:3}, at: fuse_dev_do_write+0x1dbb/0x2580
[ 233.323592][ T27] #1: ffff88806bdaf850 (&type->i_mutex_dir_key#8/1){+.+.}-{3:3}, at: fuse_reverse_inval_entry+0x42/0x4a0
[ 233.335344][ T27]
[ 233.337749][ T27] =============================================
[ 233.337749][ T27]
[ 233.346366][ T27] NMI backtrace for cpu 0
[ 233.350779][ T27] CPU: 0 PID: 27 Comm: khungtaskd Not tainted 6.4.0-rc7-syzkaller #0
[ 233.359009][ T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
[ 233.369558][ T27] Call Trace:
[ 233.372836][ T27]
[ 233.375925][ T27] dump_stack_lvl+0x64/0xb0
[ 233.381027][ T27] nmi_cpu_backtrace+0x175/0x200
[ 233.386085][ T27] ? lapic_can_unplug_cpu+0xa0/0xa0
[ 233.395912][ T27] nmi_trigger_cpumask_backtrace+0x1bc/0x200
[ 233.402243][ T27] watchdog+0x9f9/0xcf0
[ 233.406647][ T27] ? proc_dohung_task_timeout_secs+0x30/0x30
[ 233.415535][ T27] kthread+0x2ea/0x3c0
[ 233.419698][ T27] ? kthread_complete_and_exit+0x20/0x20
[ 233.425607][ T27] ret_from_fork+0x1f/0x30
[ 233.430327][ T27]
[ 233.434036][ T27] Sending NMI from CPU 0 to CPUs 1:
[ 233.439416][ C1] NMI backtrace for cpu 1 skipped: idling at acpi_safe_halt+0x1b/0x20
[ 233.440460][ T27] Kernel panic - not syncing: hung_task: blocked tasks
[ 233.456212][ T27] CPU: 0 PID: 27 Comm: khungtaskd Not tainted 6.4.0-rc7-syzkaller #0
[ 233.464972][ T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
[ 233.477006][ T27] Call Trace:
[ 233.480533][ T27]
[ 233.483561][ T27] dump_stack_lvl+0x64/0xb0
[ 233.488070][ T27] panic+0x24f/0x540
[ 233.492053][ T27] ? panic_smp_self_stop+0x70/0x70
[ 233.497558][ T27] ? lapic_can_unplug_cpu+0xa0/0xa0
[ 233.502835][ T27] ? preempt_schedule_thunk+0x1a/0x20
[ 233.508360][ T27] watchdog+0x64c/0xcf0
[ 233.512501][ T27] ? proc_dohung_task_timeout_secs+0x30/0x30
[ 233.518546][ T27] kthread+0x2ea/0x3c0
[ 233.522588][ T27] ? kthread_complete_and_exit+0x20/0x20
[ 233.528190][ T27] ret_from_fork+0x1f/0x30
[ 233.532614][ T27]
[ 233.535856][ T27] Kernel Offset: disabled
[ 233.540263][ T27] Rebooting in 86400 seconds..