Warning: Permanently added '10.128.1.102' (ED25519) to the list of known hosts.
2024/04/21 10:04:23 ignoring optional flag "sandboxArg"="0"
2024/04/21 10:04:24 parsed 1 programs
2024/04/21 10:04:24 executed programs: 0
[  107.071016][ T4478] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  107.078906][ T4478] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  107.087116][ T4478] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  107.095261][ T4478] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  107.103252][ T4478] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  107.110643][ T4478] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  107.281014][ T5444] chnl_net:caif_netlink_parms(): no params data found
[  107.360044][ T5444] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.367262][ T5444] bridge0: port 1(bridge_slave_0) entered disabled state
[  107.374510][ T5444] bridge_slave_0: entered allmulticast mode
[  107.382200][ T5444] bridge_slave_0: entered promiscuous mode
[  107.390822][ T5444] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.398599][ T5444] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.406423][ T5444] bridge_slave_1: entered allmulticast mode
[  107.413924][ T5444] bridge_slave_1: entered promiscuous mode
[  107.448918][ T5444] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  107.461143][ T5444] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  107.499990][ T5444] team0: Port device team_slave_0 added
[  107.509231][ T5444] team0: Port device team_slave_1 added
[  107.540721][ T5444] batman_adv: batadv0: Adding interface: batadv_slave_0
[  107.548200][ T5444] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  107.574155][ T5444] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  107.586926][ T5444] batman_adv: batadv0: Adding interface: batadv_slave_1
[  107.593957][ T5444] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  107.620093][ T5444] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  107.671063][ T5444] hsr_slave_0: entered promiscuous mode
[  107.678354][ T5444] hsr_slave_1: entered promiscuous mode
[  108.378807][ T5444] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  108.390424][ T5444] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  108.401283][ T5444] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  108.413189][ T5444] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  108.535825][ T5444] 8021q: adding VLAN 0 to HW filter on device bond0
[  108.563208][ T5444] 8021q: adding VLAN 0 to HW filter on device team0
[  108.585796][   T44] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.593068][   T44] bridge0: port 1(bridge_slave_0) entered forwarding state
[  108.613744][   T44] bridge0: port 2(bridge_slave_1) entered blocking state
[  108.620932][   T44] bridge0: port 2(bridge_slave_1) entered forwarding state
[  108.681265][ T5444] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  108.898895][ T5444] 8021q: adding VLAN 0 to HW filter on device batadv0
[  108.958232][ T5444] veth0_vlan: entered promiscuous mode
[  108.981786][ T5444] veth1_vlan: entered promiscuous mode
[  109.026444][ T5444] veth0_macvtap: entered promiscuous mode
[  109.040383][ T5444] veth1_macvtap: entered promiscuous mode
[  109.068074][ T5444] batman_adv: batadv0: Interface activated: batadv_slave_0
[  109.088952][ T5444] batman_adv: batadv0: Interface activated: batadv_slave_1
[  109.106808][ T5444] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  109.117678][ T5444] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  109.127985][ T5444] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  109.137059][ T5444] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  109.154608][ T4478] Bluetooth: hci0: command tx timeout
[  109.270129][ T1032] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.287635][ T1032] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.323677][ T5098] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.332915][ T5098] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.592400][ T5505] nbd0: detected capacity change from 0 to 485291868
[  110.233488][ T4478] block nbd0: Receive control failed (result -104)
[  111.221953][ T4478] Bluetooth: hci0: command tx timeout
[  113.302830][ T4478] Bluetooth: hci0: command tx timeout
[  115.391806][ T4478] Bluetooth: hci0: command tx timeout
[  132.434701][ T1239] ieee802154 phy0 wpan0: encryption failed: -22
[  132.441314][ T1239] ieee802154 phy1 wpan1: encryption failed: -22
[  140.103940][   T99] block nbd0: Possible stuck request ffff888020f30000: control (read@0,4096B). Runtime 30 seconds
2024/04/21 10:05:21 executed programs: 1
[  165.438021][   T52] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  165.447858][   T52] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  165.455759][   T52] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  165.464591][   T52] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  165.472612][   T52] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  165.479955][   T52] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  165.661298][ T5805] chnl_net:caif_netlink_parms(): no params data found
[  165.742848][ T5805] bridge0: port 1(bridge_slave_0) entered blocking state
[  165.750036][ T5805] bridge0: port 1(bridge_slave_0) entered disabled state
[  165.758204][ T5805] bridge_slave_0: entered allmulticast mode
[  165.766953][ T5805] bridge_slave_0: entered promiscuous mode
[  165.775810][ T5805] bridge0: port 2(bridge_slave_1) entered blocking state
[  165.783086][ T5805] bridge0: port 2(bridge_slave_1) entered disabled state
[  165.790231][ T5805] bridge_slave_1: entered allmulticast mode
[  165.797694][ T5805] bridge_slave_1: entered promiscuous mode
[  165.832870][ T5805] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  165.845330][ T5805] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  165.885734][ T5805] team0: Port device team_slave_0 added
[  165.894606][ T5805] team0: Port device team_slave_1 added
[  165.926474][ T5805] batman_adv: batadv0: Adding interface: batadv_slave_0
[  165.933472][ T5805] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  165.959820][ T5805] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  165.972511][ T5805] batman_adv: batadv0: Adding interface: batadv_slave_1
[  165.979458][ T5805] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  166.006670][ T5805] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  166.056801][ T5805] hsr_slave_0: entered promiscuous mode
[  166.063359][ T5805] hsr_slave_1: entered promiscuous mode
[  166.069653][ T5805] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  166.078448][ T5805] Cannot create hsr debugfs directory
[  166.205987][ T5805] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  166.279238][ T5805] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  166.351861][ T5805] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  166.414576][ T5805] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  166.535298][ T5805] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  166.547031][ T5805] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  166.557314][ T5805] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  166.567354][ T5805] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  166.595320][ T5805] bridge0: port 2(bridge_slave_1) entered blocking state
[  166.602565][ T5805] bridge0: port 2(bridge_slave_1) entered forwarding state
[  166.610028][ T5805] bridge0: port 1(bridge_slave_0) entered blocking state
[  166.617281][ T5805] bridge0: port 1(bridge_slave_0) entered forwarding state
[  166.663875][ T1141] bridge0: port 1(bridge_slave_0) entered disabled state
[  166.673061][ T1141] bridge0: port 2(bridge_slave_1) entered disabled state
[  166.715276][ T5805] 8021q: adding VLAN 0 to HW filter on device bond0
[  166.738036][ T5805] 8021q: adding VLAN 0 to HW filter on device team0
[  166.751252][ T4856] bridge0: port 1(bridge_slave_0) entered blocking state
[  166.758452][ T4856] bridge0: port 1(bridge_slave_0) entered forwarding state
[  166.775912][ T5097] bridge0: port 2(bridge_slave_1) entered blocking state
[  166.783093][ T5097] bridge0: port 2(bridge_slave_1) entered forwarding state
[  166.980349][ T5805] 8021q: adding VLAN 0 to HW filter on device batadv0
[  167.034211][ T5805] veth0_vlan: entered promiscuous mode
[  167.050388][ T5805] veth1_vlan: entered promiscuous mode
[  167.086350][ T5805] veth0_macvtap: entered promiscuous mode
[  167.097125][ T5805] veth1_macvtap: entered promiscuous mode
[  167.118143][ T5805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  167.129489][ T5805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.141238][ T5805] batman_adv: batadv0: Interface activated: batadv_slave_0
[  167.158387][ T5805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  167.169381][ T5805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.180971][ T5805] batman_adv: batadv0: Interface activated: batadv_slave_1
[  167.196539][ T5805] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  167.205519][ T5805] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  167.214765][ T5805] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  167.224619][ T5805] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  167.295536][   T34] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  167.304173][   T34] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  167.336480][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  167.344628][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  167.541774][ T4478] Bluetooth: hci1: command tx timeout
[  169.621459][ T4478] Bluetooth: hci1: command tx timeout
[  170.182653][   T99] block nbd0: Possible stuck request ffff888020f30000: control (read@0,4096B). Runtime 60 seconds
[  170.400485][ T4534] udevd[4534]: worker [5430] /devices/virtual/block/nbd0 is taking a long time
[  171.701446][ T4478] Bluetooth: hci1: command tx timeout
[  173.781541][ T4478] Bluetooth: hci1: command tx timeout
[  193.864096][ T1239] ieee802154 phy0 wpan0: encryption failed: -22
[  193.870405][ T1239] ieee802154 phy1 wpan1: encryption failed: -22
[  200.265074][   T57] block nbd0: Possible stuck request ffff888020f30000: control (read@0,4096B). Runtime 90 seconds
2024/04/21 10:06:19 executed programs: 2
[  223.449264][   T52] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  223.457272][   T52] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  223.465931][   T52] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  223.474223][   T52] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  223.482646][   T52] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  223.490196][   T52] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  223.677057][ T5821] chnl_net:caif_netlink_parms(): no params data found
[  223.764219][ T5821] bridge0: port 1(bridge_slave_0) entered blocking state
[  223.771619][ T5821] bridge0: port 1(bridge_slave_0) entered disabled state
[  223.778790][ T5821] bridge_slave_0: entered allmulticast mode
[  223.786271][ T5821] bridge_slave_0: entered promiscuous mode
[  223.796240][ T5821] bridge0: port 2(bridge_slave_1) entered blocking state
[  223.803497][ T5821] bridge0: port 2(bridge_slave_1) entered disabled state
[  223.810623][ T5821] bridge_slave_1: entered allmulticast mode
[  223.818201][ T5821] bridge_slave_1: entered promiscuous mode
[  223.856981][ T5821] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  223.869025][ T5821] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  223.908225][ T5821] team0: Port device team_slave_0 added
[  223.916825][ T5821] team0: Port device team_slave_1 added
[  223.949970][ T5821] batman_adv: batadv0: Adding interface: batadv_slave_0
[  223.959173][ T5821] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  223.986627][ T5821] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  223.999153][ T5821] batman_adv: batadv0: Adding interface: batadv_slave_1
[  224.006202][ T5821] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  224.032167][ T5821] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  224.085873][ T5821] hsr_slave_0: entered promiscuous mode
[  224.093084][ T5821] hsr_slave_1: entered promiscuous mode
[  224.099373][ T5821] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  224.107442][ T5821] Cannot create hsr debugfs directory
[  224.230905][ T5821] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  224.291220][ T5821] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  224.362216][ T5821] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  224.416733][ T5821] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  224.611856][ T5821] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  224.622181][ T5821] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  224.632876][ T5821] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  224.643616][ T5821] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  224.744852][ T5821] 8021q: adding VLAN 0 to HW filter on device bond0
[  224.769327][ T5821] 8021q: adding VLAN 0 to HW filter on device team0
[  224.783432][ T1141] bridge0: port 1(bridge_slave_0) entered blocking state
[  224.790562][ T1141] bridge0: port 1(bridge_slave_0) entered forwarding state
[  224.808166][   T24] bridge0: port 2(bridge_slave_1) entered blocking state
[  224.815341][   T24] bridge0: port 2(bridge_slave_1) entered forwarding state
[  225.019610][ T5821] 8021q: adding VLAN 0 to HW filter on device batadv0
[  225.069009][ T5821] veth0_vlan: entered promiscuous mode
[  225.083799][ T5821] veth1_vlan: entered promiscuous mode
[  225.119382][ T5821] veth0_macvtap: entered promiscuous mode
[  225.136272][ T5821] veth1_macvtap: entered promiscuous mode
[  225.157752][ T5821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  225.168906][ T5821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  225.179282][ T5821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  225.191181][ T5821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  225.203496][ T5821] batman_adv: batadv0: Interface activated: batadv_slave_0
[  225.218103][ T5821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  225.228921][ T5821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  225.239868][ T5821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  225.252134][ T5821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  225.263532][ T5821] batman_adv: batadv0: Interface activated: batadv_slave_1
[  225.277018][ T5821] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  225.286217][ T5821] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  225.295530][ T5821] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  225.304500][ T5821] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  225.386911][ T5098] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  225.404592][ T5098] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  225.437999][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  225.447039][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  225.551755][   T52] Bluetooth: hci2: command tx timeout
[  227.631574][   T52] Bluetooth: hci2: command tx timeout
[  229.702767][   T52] Bluetooth: hci2: command tx timeout
[  230.345196][   T57] block nbd0: Possible stuck request ffff888020f30000: control (read@0,4096B). Runtime 120 seconds
[  231.791555][ T4478] Bluetooth: hci2: command tx timeout
[  231.795914][   T52] Bluetooth: hci0: command 0x0406 tx timeout
[  253.382245][   T29] INFO: task syz-executor.0:5508 blocked for more than 143 seconds.
[  253.390430][   T29]       Not tainted 6.9.0-rc4-syzkaller-00266-g977b1ef51866 #0
[  253.398297][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  253.407075][   T29] task:syz-executor.0  state:D stack:25784 pid:5508  tgid:5503  ppid:5444   flags:0x00004006
[  253.417329][   T29] Call Trace:
[  253.420621][   T29]  <TASK>
[  253.423658][   T29]  __schedule+0x17e8/0x4a50
[  253.428221][   T29]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.433922][   T29]  ? __pfx___schedule+0x10/0x10
[  253.438808][   T29]  ? __pfx_lock_release+0x10/0x10
[  253.445382][   T29]  ? __mutex_trylock_common+0x92/0x2e0
[  253.450890][   T29]  ? schedule+0x90/0x320
[  253.456341][   T29]  schedule+0x14b/0x320
[  253.460548][   T29]  schedule_preempt_disabled+0x13/0x30
[  253.466235][   T29]  __mutex_lock+0x6a4/0xd70
[  253.470777][   T29]  ? __mutex_lock+0x527/0xd70
[  253.475619][   T29]  ? bdev_release+0x1c8/0x720
[  253.480354][   T29]  ? __pfx___mutex_lock+0x10/0x10
[  253.485452][   T29]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.491127][   T29]  ? __fsnotify_parent+0x20c/0x5e0
[  253.496301][   T29]  ? __pfx___fsnotify_parent+0x10/0x10
[  253.501857][   T29]  bdev_release+0x1c8/0x720
[  253.506402][   T29]  ? __pfx_blkdev_release+0x10/0x10
[  253.511654][   T29]  blkdev_release+0x15/0x20
[  253.516175][   T29]  __fput+0x42b/0x8a0
[  253.520196][   T29]  task_work_run+0x251/0x310
[  253.524938][   T29]  ? __pfx_task_work_run+0x10/0x10
[  253.530099][   T29]  get_signal+0x15e6/0x1740
[  253.534675][   T29]  ? __pfx_get_signal+0x10/0x10
[  253.539567][   T29]  ? __phys_addr+0xba/0x170
[  253.544388][   T29]  arch_do_signal_or_restart+0x96/0x860
[  253.550332][   T29]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  253.556813][   T29]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  253.563134][   T29]  ? syscall_exit_to_user_mode+0xa3/0x370
[  253.568889][   T29]  syscall_exit_to_user_mode+0xc9/0x370
[  253.574606][   T29]  do_syscall_64+0x102/0x240
[  253.580102][   T29]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.585844][   T29]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  253.592192][   T29] RIP: 0033:0x7f8ba927c859
[  253.596652][   T29] RSP: 002b:00007f8baa0790c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  253.606459][   T29] RAX: 0000000000000000 RBX: 00007f8ba939c050 RCX: 00007f8ba927c859
[  253.614496][   T29] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000003
[  253.622598][   T29] RBP: 00007f8ba92d8ad0 R08: 0000000000000000 R09: 0000000000000000
[  253.630594][   T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  253.638626][   T29] R13: 000000000000006e R14: 00007f8ba939c050 R15: 00007ffc3211f6f8
[  253.646688][   T29]  </TASK>
[  253.651344][   T29] 
[  253.651344][   T29] Showing all locks held in the system:
[  253.659082][   T29] 1 lock held by khungtaskd/29:
[  253.664206][   T29]  #0: ffffffff8e334d20 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  253.674273][   T29] 1 lock held by syslogd/4516:
[  253.679055][   T29]  #0: ffff8880b953e698 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  253.689334][   T29] 2 locks held by getty/4837:
[  253.694240][   T29]  #0: ffff88802b68a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  253.704181][   T29]  #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10
[  253.714560][   T29] 1 lock held by udevd/5430:
[  253.719180][   T29]  #0: ffff888020e8c4c8 (&disk->open_mutex){+.+.}-{3:3}, at: bdev_open+0xdd/0xcb0
[  253.728858][   T29] 1 lock held by syz-executor.0/5508:
[  253.734334][   T29]  #0: ffff888020e8c4c8 (&disk->open_mutex){+.+.}-{3:3}, at: bdev_release+0x1c8/0x720
[  253.744030][   T29] 1 lock held by syz-executor.0/5818:
[  253.749900][   T29]  #0: ffff888020e8c4c8 (&disk->open_mutex){+.+.}-{3:3}, at: bdev_open+0xdd/0xcb0
[  253.759342][   T29] 1 lock held by syz-executor.0/5834:
[  253.764756][   T29]  #0: ffff888020e8c4c8 (&disk->open_mutex){+.+.}-{3:3}, at: bdev_open+0xdd/0xcb0
[  253.774180][   T29] 
[  253.776522][   T29] =============================================
[  253.776522][   T29] 
[  253.785136][   T29] NMI backtrace for cpu 1
[  253.789476][   T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.9.0-rc4-syzkaller-00266-g977b1ef51866 #0
[  253.799276][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[  253.809328][   T29] Call Trace:
[  253.812616][   T29]  <TASK>
[  253.815558][   T29]  dump_stack_lvl+0x241/0x360
[  253.820248][   T29]  ? __pfx_dump_stack_lvl+0x10/0x10
[  253.825450][   T29]  ? __pfx__printk+0x10/0x10
[  253.830043][   T29]  ? vprintk_emit+0x631/0x770
[  253.834734][   T29]  ? __pfx_vprintk_emit+0x10/0x10
[  253.839786][   T29]  nmi_cpu_backtrace+0x49c/0x4d0
[  253.844740][   T29]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  253.850209][   T29]  ? _printk+0xd5/0x120
[  253.854387][   T29]  ? __pfx__printk+0x10/0x10
[  253.858997][   T29]  ? __wake_up_klogd+0xcc/0x110
[  253.863870][   T29]  ? __pfx__printk+0x10/0x10
[  253.868476][   T29]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.874126][   T29]  ? __rcu_read_unlock+0xa1/0x110
[  253.879171][   T29]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  253.885172][   T29]  nmi_trigger_cpumask_backtrace+0x198/0x320
[  253.891166][   T29]  watchdog+0xfde/0x1020
[  253.895419][   T29]  ? watchdog+0x1ea/0x1020
[  253.899851][   T29]  ? __pfx_watchdog+0x10/0x10
[  253.904537][   T29]  kthread+0x2f2/0x390
[  253.908621][   T29]  ? __pfx_watchdog+0x10/0x10
[  253.913307][   T29]  ? __pfx_kthread+0x10/0x10
[  253.917912][   T29]  ret_from_fork+0x4d/0x80
[  253.922348][   T29]  ? __pfx_kthread+0x10/0x10
[  253.926955][   T29]  ret_from_fork_asm+0x1a/0x30
[  253.931752][   T29]  </TASK>
[  253.935240][   T29] Sending NMI from CPU 1 to CPUs 0:
[  253.940474][    C0] NMI backtrace for cpu 0
[  253.940487][    C0] CPU: 0 PID: 1141 Comm: kworker/0:2 Not tainted 6.9.0-rc4-syzkaller-00266-g977b1ef51866 #0
[  253.940510][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[  253.940524][    C0] Workqueue: events nsim_dev_trap_report_work
[  253.940549][    C0] RIP: 0010:clear_page_erms+0xb/0x20
[  253.940586][    C0] Code: 48 8d 7f 40 75 d9 90 e9 3e 7b 34 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa b9 00 10 00 00 31 c0 <f3> aa e9 19 7b 34 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 90
[  253.940604][    C0] RSP: 0018:ffffc900045d7458 EFLAGS: 00000246
[  253.940623][    C0] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000000d40
[  253.940638][    C0] RDX: ffff88802a40e000 RSI: 0000000000000002 RDI: ffff88802a40e2c0
[  253.940654][    C0] RBP: ffffc900045d7710 R08: ffffea0000a90237 R09: ffffed1005481000
[  253.940671][    C0] R10: dffffc0000000000 R11: fffff94000152047 R12: 0000000000000001
[  253.940687][    C0] R13: 0000000000000008 R14: ffffea0000a90200 R15: 0000000000000000
[  253.940705][    C0] FS:  0000000000000000(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000
[  253.940731][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  253.940747][    C0] CR2: 000055be8295f680 CR3: 000000000e134000 CR4: 0000000000350ef0
[  253.940765][    C0] Call Trace:
[  253.940774][    C0]  <NMI>
[  253.940782][    C0]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  253.940806][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  253.940833][    C0]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  253.940856][    C0]  ? nmi_handle+0x2a/0x5a0
[  253.940893][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  253.940924][    C0]  ? nmi_handle+0x151/0x5a0
[  253.940948][    C0]  ? nmi_handle+0x2a/0x5a0
[  253.940973][    C0]  ? clear_page_erms+0xb/0x20
[  253.941007][    C0]  ? default_do_nmi+0x63/0x160
[  253.941032][    C0]  ? exc_nmi+0x123/0x1f0
[  253.941055][    C0]  ? end_repeat_nmi+0xf/0x53
[  253.941092][    C0]  ? clear_page_erms+0xb/0x20
[  253.941128][    C0]  ? clear_page_erms+0xb/0x20
[  253.941164][    C0]  ? clear_page_erms+0xb/0x20
[  253.941199][    C0]  </NMI>
[  253.941206][    C0]  <TASK>
[  253.941213][    C0]  post_alloc_hook+0xf8/0x210
[  253.941242][    C0]  get_page_from_freelist+0x3410/0x35b0
[  253.941275][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.941316][    C0]  ? ret_from_fork_asm+0x19/0x30
[  253.941361][    C0]  ? __kernel_text_address+0xd/0x40
[  253.941398][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  253.941455][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.941493][    C0]  ? __pfx_get_page_from_freelist+0x10/0x10
[  253.941521][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.941550][    C0]  ? prepare_alloc_pages+0x369/0x5d0
[  253.941586][    C0]  __alloc_pages+0x256/0x6c0
[  253.941616][    C0]  ? __pfx___alloc_pages+0x10/0x10
[  253.941652][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.941681][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  253.941712][    C0]  alloc_slab_page+0x5f/0x160
[  253.941755][    C0]  ? __kmalloc_node_track_caller+0x2d6/0x4e0
[  253.941784][    C0]  new_slab+0x84/0x2f0
[  253.941817][    C0]  ? __kmalloc_node_track_caller+0x2d6/0x4e0
[  253.941847][    C0]  ___slab_alloc+0xc73/0x1260
[  253.941881][    C0]  ? __alloc_skb+0x1f3/0x440
[  253.941915][    C0]  ? __kmalloc_node_track_caller+0x42e/0x4e0
[  253.941948][    C0]  ? __alloc_skb+0x1f3/0x440
[  253.941981][    C0]  __kmalloc_node_track_caller+0x2d6/0x4e0
[  253.942011][    C0]  ? __alloc_skb+0x1f3/0x440
[  253.942044][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.942078][    C0]  ? __alloc_skb+0x1f3/0x440
[  253.942111][    C0]  kmalloc_reserve+0x111/0x2a0
[  253.942150][    C0]  __alloc_skb+0x1f3/0x440
[  253.942189][    C0]  ? __pfx___alloc_skb+0x10/0x10
[  253.942232][    C0]  nsim_dev_trap_report_work+0x254/0xaa0
[  253.942258][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  253.942291][    C0]  ? process_scheduled_works+0x91b/0x17c0
[  253.942316][    C0]  process_scheduled_works+0xa12/0x17c0
[  253.942362][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  253.942394][    C0]  ? assign_work+0x364/0x3d0
[  253.942422][    C0]  worker_thread+0x86d/0xd70
[  253.942454][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  253.942492][    C0]  ? __kthread_parkme+0x169/0x1d0
[  253.942521][    C0]  ? __pfx_worker_thread+0x10/0x10
[  253.942547][    C0]  kthread+0x2f2/0x390
[  253.942576][    C0]  ? __pfx_worker_thread+0x10/0x10
[  253.942601][    C0]  ? __pfx_kthread+0x10/0x10
[  253.942631][    C0]  ret_from_fork+0x4d/0x80
[  253.942666][    C0]  ? __pfx_kthread+0x10/0x10
[  253.942695][    C0]  ret_from_fork_asm+0x1a/0x30
[  253.942746][    C0]  </TASK>
[  253.944819][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[  253.944835][   T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.9.0-rc4-syzkaller-00266-g977b1ef51866 #0
[  253.944861][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[  253.944876][   T29] Call Trace:
[  253.944886][   T29]  <TASK>
[  253.944897][   T29]  dump_stack_lvl+0x241/0x360
[  253.944938][   T29]  ? __pfx_dump_stack_lvl+0x10/0x10
[  253.944975][   T29]  ? __pfx__printk+0x10/0x10
[  253.945006][   T29]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  253.945042][   T29]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.945075][   T29]  ? vscnprintf+0x5d/0x90
[  253.945103][   T29]  panic+0x349/0x860
[  253.945135][   T29]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.945170][   T29]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  253.945199][   T29]  ? __pfx_panic+0x10/0x10
[  253.945236][   T29]  ? tick_nohz_tick_stopped+0x82/0xb0
[  253.945273][   T29]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.945306][   T29]  ? __irq_work_queue_local+0x137/0x410
[  253.945345][   T29]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.945377][   T29]  ? preempt_schedule_thunk+0x1a/0x30
[  253.945405][   T29]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  253.945431][   T29]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[  253.945461][   T29]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.945493][   T29]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[  253.945524][   T29]  watchdog+0x101d/0x1020
[  253.945552][   T29]  ? watchdog+0x1ea/0x1020
[  253.945584][   T29]  ? __pfx_watchdog+0x10/0x10
[  253.945609][   T29]  kthread+0x2f2/0x390
[  253.945641][   T29]  ? __pfx_watchdog+0x10/0x10
[  253.945665][   T29]  ? __pfx_kthread+0x10/0x10
[  253.945699][   T29]  ret_from_fork+0x4d/0x80
[  253.945737][   T29]  ? __pfx_kthread+0x10/0x10
[  253.945770][   T29]  ret_from_fork_asm+0x1a/0x30
[  253.945823][   T29]  </TASK>
[  253.947387][   T29] Kernel Offset: disabled
[  254.562755][   T29] Rebooting in 86400 seconds..