Warning: Permanently added '10.128.10.46' (ECDSA) to the list of known hosts.
2023/05/24 05:24:41 ignoring optional flag "sandboxArg"="0"
2023/05/24 05:24:42 parsed 1 programs
[ 71.208109][ T27] kauditd_printk_skb: 5 callbacks suppressed
[ 71.208117][ T27] audit: type=1400 audit(1684905882.084:204): avc: denied { getattr } for pid=3876 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 71.240849][ T14] cfg80211: failed to load regulatory.db
2023/05/24 05:24:42 executed programs: 0
[ 71.266300][ T27] audit: type=1400 audit(1684905882.084:205): avc: denied { read } for pid=3876 comm="syz-execprog" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 71.304738][ T27] audit: type=1400 audit(1684905882.084:206): avc: denied { open } for pid=3876 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 71.329264][ T27] audit: type=1400 audit(1684905882.124:207): avc: denied { mounton } for pid=3881 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[ 71.362773][ T48] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 71.370457][ T27] audit: type=1400 audit(1684905882.124:208): avc: denied { mount } for pid=3881 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[ 71.395191][ T48] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 71.403105][ T48] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 71.410769][ T48] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 71.418402][ T48] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 71.426295][ T48] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 71.445659][ T27] audit: type=1400 audit(1684905882.324:209): avc: denied { mounton } for pid=3889 comm="syz-executor.0" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[ 71.599365][ T3889] chnl_net:caif_netlink_parms(): no params data found
[ 71.664962][ T3889] bridge0: port 1(bridge_slave_0) entered blocking state
[ 71.672131][ T3889] bridge0: port 1(bridge_slave_0) entered disabled state
[ 71.680319][ T3889] device bridge_slave_0 entered promiscuous mode
[ 71.689343][ T3889] bridge0: port 2(bridge_slave_1) entered blocking state
[ 71.696672][ T3889] bridge0: port 2(bridge_slave_1) entered disabled state
[ 71.704920][ T3889] device bridge_slave_1 entered promiscuous mode
[ 71.731582][ T3889] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 71.743121][ T3889] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 71.774958][ T3889] team0: Port device team_slave_0 added
[ 71.782706][ T3889] team0: Port device team_slave_1 added
[ 71.807420][ T3889] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 71.814439][ T3889] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 71.840616][ T3889] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 71.854910][ T3889] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 71.861876][ T3889] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 71.888091][ T3889] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 71.914702][ T3889] device hsr_slave_0 entered promiscuous mode
[ 71.921492][ T3889] device hsr_slave_1 entered promiscuous mode
[ 72.607375][ T3889] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 72.616984][ T3889] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 72.627901][ T3889] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 72.637686][ T3889] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 72.720809][ T3889] 8021q: adding VLAN 0 to HW filter on device bond0
[ 72.736038][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 72.746921][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 72.757950][ T3889] 8021q: adding VLAN 0 to HW filter on device team0
[ 72.774695][ T2953] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 72.785203][ T2953] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 72.794293][ T2953] bridge0: port 1(bridge_slave_0) entered blocking state
[ 72.801388][ T2953] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 72.820796][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 72.830316][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 72.839295][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 72.849604][ T6] bridge0: port 2(bridge_slave_1) entered blocking state
[ 72.856743][ T6] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 72.865747][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 72.874670][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 72.893214][ T3889] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 72.907531][ T3889] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 72.920014][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 72.930801][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 72.939509][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 72.950196][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 72.958889][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 72.968601][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 72.977364][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 72.987181][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 72.999095][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 73.008250][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 73.026498][ T27] audit: type=1400 audit(1684905883.904:210): avc: denied { sys_module } for pid=3889 comm="syz-executor.0" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[ 73.104675][ T3549] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 73.112144][ T3549] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 73.122872][ T3889] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 73.144578][ T3549] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 73.153978][ T3549] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 73.175665][ T3549] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 73.184666][ T3549] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 73.195487][ T3889] device veth0_vlan entered promiscuous mode
[ 73.204169][ T3549] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 73.211995][ T3549] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 73.222948][ T3889] device veth1_vlan entered promiscuous mode
[ 73.245884][ T3549] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 73.254338][ T3549] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 73.263121][ T3549] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 73.272280][ T3549] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 73.283149][ T3889] device veth0_macvtap entered promiscuous mode
[ 73.293886][ T3889] device veth1_macvtap entered promiscuous mode
[ 73.310411][ T3889] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 73.318791][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 73.327463][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 73.336027][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 73.344760][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 73.356831][ T3889] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 73.366170][ T2953] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 73.375040][ T2953] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 73.386675][ T3889] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 73.395892][ T3889] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 73.405410][ T3889] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 73.414521][ T3889] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 73.452937][ T27] audit: type=1400 audit(1684905884.324:211): avc: denied { mounton } for pid=3889 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=2322 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[ 73.485525][ T14] Bluetooth: hci0: command 0x0409 tx timeout
2023/05/24 05:24:47 executed programs: 58
2023/05/24 05:24:52 executed programs: 176
2023/05/24 05:24:57 executed programs: 326
2023/05/24 05:25:02 executed programs: 477
2023/05/24 05:25:07 executed programs: 627
2023/05/24 05:25:12 executed programs: 776
2023/05/24 05:25:17 executed programs: 931
2023/05/24 05:25:22 executed programs: 1117
2023/05/24 05:25:27 executed programs: 1307
2023/05/24 05:25:32 executed programs: 1500
2023/05/24 05:25:37 executed programs: 1687
[ 127.556120][ T1250] ieee802154 phy0 wpan0: encryption failed: -22
[ 127.562519][ T1250] ieee802154 phy1 wpan1: encryption failed: -22
2023/05/24 05:25:42 executed programs: 1874
2023/05/24 05:25:47 executed programs: 2053
2023/05/24 05:25:52 executed programs: 2243
[ 188.995310][ T1250] ieee802154 phy0 wpan0: encryption failed: -22
[ 189.001681][ T1250] ieee802154 phy1 wpan1: encryption failed: -22
2023/05/24 05:26:49 executed programs: 2318
[ 250.434789][ T1250] ieee802154 phy0 wpan0: encryption failed: -22
[ 250.441060][ T1250] ieee802154 phy1 wpan1: encryption failed: -22
[ 293.953699][ T28] INFO: task kworker/1:5:4033 blocked for more than 143 seconds.
[ 293.964355][ T28] Not tainted 6.0.0-rc1-syzkaller #0
[ 293.971955][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 293.982456][ T28] task:kworker/1:5 state:D stack:27184 pid: 4033 ppid: 2 flags:0x00004000
[ 293.993299][ T28] Workqueue: events rfkill_sync_work
[ 293.999738][ T28] Call Trace:
[ 294.003228][ T28]
[ 294.006569][ T28] __schedule+0xa9f/0x5270
[ 294.012508][ T28] ? io_schedule_timeout+0x150/0x150
[ 294.019975][ T28] ? _raw_spin_unlock_irq+0x23/0x50
[ 294.025796][ T28] ? lockdep_hardirqs_on_prepare+0x17f/0x410
[ 294.032859][ T28] schedule+0xde/0x1b0
[ 294.039117][ T28] schedule_preempt_disabled+0x13/0x20
[ 294.045545][ T28] __mutex_lock+0xa48/0x1360
[ 294.051983][ T28] ? nfc_dev_down+0x23/0x270
[ 294.058319][ T28] ? mutex_lock_io_nested+0x11a0/0x11a0
[ 294.066712][ T28] ? find_held_lock+0x2d/0x110
[ 294.073675][ T28] ? mark_held_locks+0x9f/0xe0
[ 294.080605][ T28] ? nfc_dev_down+0x270/0x270
[ 294.087169][ T28] nfc_dev_down+0x23/0x270
[ 294.091952][ T28] ? nfc_dev_down+0x270/0x270
[ 294.097336][ T28] nfc_rfkill_set_block+0x19/0xa0
[ 294.102855][ T28] rfkill_set_block+0x191/0x440
[ 294.108415][ T28] rfkill_sync_work+0x89/0xc0
[ 294.113206][ T28] process_one_work+0x865/0x13d0
[ 294.118739][ T28] ? lock_release+0x780/0x780
[ 294.123971][ T28] ? pwq_dec_nr_in_flight+0x230/0x230
[ 294.132063][ T28] ? rwlock_bug.part.0+0x90/0x90
[ 294.139398][ T28] ? _raw_spin_lock_irq+0x45/0x50
[ 294.145963][ T28] worker_thread+0x59c/0xec0
[ 294.150909][ T28] ? __kthread_parkme+0xc1/0x1f0
[ 294.157366][ T28] ? process_one_work+0x13d0/0x13d0
[ 294.162786][ T28] kthread+0x29e/0x340
[ 294.167775][ T28] ? kthread_complete_and_exit+0x20/0x20
[ 294.174353][ T28] ret_from_fork+0x1f/0x30
[ 294.178910][ T28]
[ 294.182005][ T28] INFO: task syz-executor.0:15908 blocked for more than 143 seconds.
[ 294.191627][ T28] Not tainted 6.0.0-rc1-syzkaller #0
[ 294.197846][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 294.207358][ T28] task:syz-executor.0 state:D stack:28592 pid:15908 ppid: 3889 flags:0x00004004
[ 294.216779][ T28] Call Trace:
[ 294.220287][ T28]
[ 294.223246][ T28] __schedule+0xa9f/0x5270
[ 294.227884][ T28] ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 294.234317][ T28] ? io_schedule_timeout+0x150/0x150
[ 294.241108][ T28] schedule+0xde/0x1b0
[ 294.246828][ T28] schedule_timeout+0x1a1/0x260
[ 294.251770][ T28] ? usleep_range_state+0x190/0x190
[ 294.257066][ T28] ? __wait_for_common+0x1b9/0x540
[ 294.262295][ T28] ? lock_downgrade+0x6e0/0x6e0
[ 294.267626][ T28] ? do_raw_spin_lock+0x124/0x2b0
[ 294.272963][ T28] ? rwlock_bug.part.0+0x90/0x90
[ 294.278535][ T28] ? _raw_spin_unlock_irq+0x23/0x50
[ 294.284186][ T28] ? lockdep_hardirqs_on_prepare+0x17f/0x410
[ 294.290467][ T28] ? _raw_spin_unlock_irq+0x23/0x50
[ 294.295812][ T28] __wait_for_common+0x1c2/0x540
[ 294.300788][ T28] ? usleep_range_state+0x190/0x190
[ 294.306284][ T28] ? bit_wait_timeout+0x160/0x160
[ 294.311380][ T28] ? _raw_spin_unlock_irq+0x23/0x50
[ 294.316872][ T28] ? lockdep_hardirqs_on_prepare+0x17f/0x410
[ 294.323130][ T28] __flush_work+0x48f/0xa30
[ 294.327992][ T28] ? lock_downgrade+0x6e0/0x6e0
[ 294.333041][ T28] ? queue_delayed_work_on+0x90/0x90
[ 294.338638][ T28] ? flush_workqueue_prep_pwqs+0x410/0x410
[ 294.345559][ T28] ? try_to_grab_pending+0x67/0x80
[ 294.350887][ T28] __cancel_work_timer+0x315/0x460
[ 294.356136][ T28] ? cancel_delayed_work+0x10/0x10
[ 294.361362][ T28] ? mutex_lock_io_nested+0x11a0/0x11a0
[ 294.367234][ T28] ? nfc_genl_device_removed+0x1f9/0x2c0
[ 294.374793][ T28] ? nfc_genl_device_added+0x200/0x200
[ 294.381737][ T28] ? lockdep_hardirqs_on_prepare+0x17f/0x410
[ 294.388920][ T28] rfkill_unregister+0x81/0x290
[ 294.394401][ T28] nfc_unregister_device+0x6c/0x2d0
[ 294.399924][ T28] virtual_ncidev_close+0x57/0x80
[ 294.405517][ T28] __fput+0x1f5/0x8c0
[ 294.409871][ T28] task_work_run+0xc4/0x160
[ 294.414570][ T28] exit_to_user_mode_prepare+0x23c/0x250
[ 294.420380][ T28] syscall_exit_to_user_mode+0x1d/0x50
[ 294.426354][ T28] do_syscall_64+0x46/0xb0
[ 294.432012][ T28] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 294.438495][ T28] RIP: 0033:0x7f0a78a3e01b
[ 294.443227][ T28] RSP: 002b:00007fffba8705c0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 294.452516][ T28] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 00007f0a78a3e01b
[ 294.460836][ T28] RDX: 00007f0a78600298 RSI: ffffffffffffffff RDI: 0000000000000003
[ 294.469437][ T28] RBP: 00007f0a78bad980 R08: 0000000000000000 R09: 00007f0a78600000
[ 294.478418][ T28] R10: 00007f0a786002a0 R11: 0000000000000293 R12: 00000000000230a2
[ 294.487292][ T28] R13: 00007fffba8706c0 R14: 00007f0a78babf80 R15: 0000000000000032
[ 294.497121][ T28]
[ 294.501010][ T28]
[ 294.501010][ T28] Showing all locks held in the system:
[ 294.512111][ T28] 1 lock held by rcu_tasks_kthre/12:
[ 294.517721][ T28] #0: ffffffff8b780830 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x26/0xc70
[ 294.532024][ T28] 1 lock held by rcu_tasks_trace/13:
[ 294.539250][ T28] #0: ffffffff8b780530 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x26/0xc70
[ 294.553589][ T28] 1 lock held by khungtaskd/28:
[ 294.559227][ T28] #0: ffffffff8b781380 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x57/0x264
[ 294.570162][ T28] 2 locks held by getty/3290:
[ 294.575048][ T28] #0: ffff88801d77c098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x23/0x80
[ 294.586236][ T28] #1: ffffc900020282f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xb73/0x1040
[ 294.597505][ T28] 4 locks held by kworker/1:5/4033:
[ 294.602894][ T28] #0: ffff888011467d38 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x78a/0x13d0
[ 294.613640][ T28] #1: ffffc9000318fdb8 ((work_completion)(&rfkill->sync_work)){+.+.}-{0:0}, at: process_one_work+0x7b7/0x13d0
[ 294.628804][ T28] #2: ffffffff8d39d408 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_sync_work+0x1e/0xc0
[ 294.639178][ T28] #3: ffff8880759fc100 (&dev->mutex){....}-{3:3}, at: nfc_dev_down+0x23/0x270
[ 294.648682][ T28] 1 lock held by syz-executor.0/15908:
[ 294.654762][ T28] #0: ffff8880759fc100 (&dev->mutex){....}-{3:3}, at: nfc_unregister_device+0x40/0x2d0
[ 294.665064][ T28] 2 locks held by syz-executor.0/15914:
[ 294.670876][ T28] #0: ffff88801d9a0118 (&data->open_mutex){+.+.}-{3:3}, at: vhci_write+0x268/0x3f0
[ 294.680629][ T28] #1: ffffffff8d39d408 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_register+0x2c/0xa00
[ 294.691507][ T28] 2 locks held by syz-executor.0/15921:
[ 294.698617][ T28] #0: ffff88807367c918 (&data->open_mutex){+.+.}-{3:3}, at: vhci_write+0x268/0x3f0
[ 294.710612][ T28] #1: ffffffff8d39d408 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_register+0x2c/0xa00
[ 294.722613][ T28]
[ 294.726006][ T28] =============================================
[ 294.726006][ T28]
[ 294.737225][ T28] NMI backtrace for cpu 0
[ 294.742601][ T28] CPU: 0 PID: 28 Comm: khungtaskd Not tainted 6.0.0-rc1-syzkaller #0
[ 294.753150][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/28/2023
[ 294.768517][ T28] Call Trace:
[ 294.772830][ T28]
[ 294.777083][ T28] dump_stack_lvl+0x5b/0x81
[ 294.783385][ T28] nmi_cpu_backtrace.cold+0x30/0xca
[ 294.789794][ T28] ? lapic_can_unplug_cpu+0x80/0x80
[ 294.796313][ T28] nmi_trigger_cpumask_backtrace+0x158/0x190
[ 294.803892][ T28] watchdog+0x890/0xbf0
[ 294.808554][ T28] ? proc_dohung_task_timeout_secs+0x30/0x30
[ 294.816306][ T28] kthread+0x29e/0x340
[ 294.822395][ T28] ? kthread_complete_and_exit+0x20/0x20
[ 294.830494][ T28] ret_from_fork+0x1f/0x30
[ 294.837329][ T28]
[ 294.841194][ T28] Sending NMI from CPU 0 to CPUs 1:
[ 294.849021][ C1] NMI backtrace for cpu 1
[ 294.849027][ C1] CPU: 1 PID: 11 Comm: kworker/u4:1 Not tainted 6.0.0-rc1-syzkaller #0
[ 294.849034][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/28/2023
[ 294.849038][ C1] Workqueue: events_unbound toggle_allocation_gate
[ 294.849128][ C1] RIP: 0010:__lock_acquire+0xbcb/0x56d0
[ 294.849137][ C1] Code: 20 66 81 e3 ff 1f 0f b7 db be 08 00 00 00 48 89 d8 48 c1 e8 06 48 8d 3c c5 80 3a 16 90 e8 0d fa 5a 00 48 0f a3 1d 85 17 bf 0e <0f> 83 0c 0d 00 00 48 8d 1c 5b 48 c1 e3 06 48 81 c3 a0 3e 16 90 48
[ 294.849142][ C1] RSP: 0018:ffffc9000031f810 EFLAGS: 00000047
[ 294.849146][ C1] RAX: 0000000000000001 RBX: 0000000000000008 RCX: ffffffff815722f3
[ 294.849150][ C1] RDX: fffffbfff202c751 RSI: 0000000000000008 RDI: ffffffff90163a80
[ 294.849153][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffffff90163a87
[ 294.849156][ C1] R10: fffffbfff202c750 R11: 0000000000000000 R12: ffff8880117e4b18
[ 294.849159][ C1] R13: ffff8880117e4000 R14: ffff8880117e4a78 R15: 0000000000000000
[ 294.849162][ C1] FS: 0000000000000000(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000
[ 294.849168][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 294.849171][ C1] CR2: 000055ee23038390 CR3: 000000000b48e000 CR4: 00000000003506e0
[ 294.849175][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 294.849177][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 294.849180][ C1] Call Trace:
[ 294.849184][ C1]
[ 294.849188][ C1] ? __lock_acquire+0x166e/0x56d0
[ 294.849193][ C1] ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 294.849200][ C1] lock_acquire+0x1af/0x570
[ 294.849205][ C1] ? arch_jump_label_transform_queue+0x5c/0x100
[ 294.849653][ C1] ? lock_release+0x780/0x780
[ 294.849660][ C1] ? find_held_lock+0x2d/0x110
[ 294.849665][ C1] __mutex_lock+0x12f/0x1360
[ 294.849676][ C1] ? arch_jump_label_transform_queue+0x5c/0x100
[ 294.849682][ C1] ? arch_jump_label_transform_queue+0x5c/0x100
[ 294.849688][ C1] ? mutex_lock_io_nested+0x11a0/0x11a0
[ 294.849693][ C1] ? wait_for_completion_io_timeout+0x20/0x20
[ 294.849698][ C1] ? kmem_cache_alloc+0x123/0x520
[ 294.849704][ C1] ? __jump_label_patch+0x173/0x330
[ 294.849709][ C1] ? lock_release+0x780/0x780
[ 294.849714][ C1] arch_jump_label_transform_queue+0x5c/0x100
[ 294.849720][ C1] __jump_label_update+0xea/0x330
[ 294.849788][ C1] static_key_disable_cpuslocked+0x104/0x160
[ 294.849793][ C1] static_key_disable+0x15/0x20
[ 294.849798][ C1] toggle_allocation_gate+0x158/0x310
[ 294.849806][ C1] ? wake_up_kfence_timer+0x20/0x20
[ 294.849811][ C1] ? lockdep_hardirqs_on+0x7d/0x100
[ 294.849817][ C1] ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 294.849822][ C1] process_one_work+0x865/0x13d0
[ 294.849832][ C1] ? lock_release+0x780/0x780
[ 294.849836][ C1] ? pwq_dec_nr_in_flight+0x230/0x230
[ 294.849842][ C1] ? rwlock_bug.part.0+0x90/0x90
[ 294.849847][ C1] ? _raw_spin_lock_irq+0x45/0x50
[ 294.849854][ C1] worker_thread+0x59c/0xec0
[ 294.849860][ C1] ? process_one_work+0x13d0/0x13d0
[ 294.849865][ C1] kthread+0x29e/0x340
[ 294.849871][ C1] ? kthread_complete_and_exit+0x20/0x20
[ 294.849876][ C1] ret_from_fork+0x1f/0x30
[ 294.849885][ C1]
[ 294.850060][ T28] Kernel panic - not syncing: hung_task: blocked tasks
[ 295.268904][ T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.0.0-rc1-syzkaller #0
[ 295.279030][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/28/2023
[ 295.291872][ T28] Call Trace:
[ 295.296112][ T28]
[ 295.299835][ T28] dump_stack_lvl+0x5b/0x81
[ 295.304850][ T28] panic+0x21d/0x45c
[ 295.309105][ T28] ? panic_print_sys_info.part.0+0x69/0x69
[ 295.316230][ T28] ? lapic_can_unplug_cpu+0x80/0x80
[ 295.322775][ T28] ? preempt_schedule_thunk+0x1a/0x1c
[ 295.329132][ T28] watchdog.cold+0x111/0x157
[ 295.334559][ T28] ? proc_dohung_task_timeout_secs+0x30/0x30
[ 295.342808][ T28] kthread+0x29e/0x340
[ 295.346929][ T28] ? kthread_complete_and_exit+0x20/0x20
[ 295.352653][ T28] ret_from_fork+0x1f/0x30
[ 295.357287][ T28]
[ 295.360651][ T28] Kernel Offset: disabled
[ 295.365428][ T28] Rebooting in 86400 seconds..