Warning: Permanently added '10.128.0.104' (ED25519) to the list of known hosts.
2023/09/17 20:50:06 ignoring optional flag "sandboxArg"="0"
2023/09/17 20:50:06 parsed 1 programs
2023/09/17 20:50:08 executed programs: 0
[   99.451331][ T5388] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   99.515611][ T4446] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   99.523563][ T4446] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   99.531964][ T4446] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   99.539765][ T4446] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   99.547182][ T4446] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   99.701206][ T5395] chnl_net:caif_netlink_parms(): no params data found
[   99.770874][ T5395] bridge0: port 1(bridge_slave_0) entered blocking state
[   99.778671][ T5395] bridge0: port 1(bridge_slave_0) entered disabled state
[   99.785814][ T5395] bridge_slave_0: entered allmulticast mode
[   99.793269][ T5395] bridge_slave_0: entered promiscuous mode
[   99.805320][ T5395] bridge0: port 2(bridge_slave_1) entered blocking state
[   99.812591][ T5395] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.820105][ T5395] bridge_slave_1: entered allmulticast mode
[   99.827110][ T5395] bridge_slave_1: entered promiscuous mode
[   99.858537][ T5395] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   99.871363][ T5395] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   99.905261][ T5395] team0: Port device team_slave_0 added
[   99.913568][ T5395] team0: Port device team_slave_1 added
[   99.944691][ T5395] batman_adv: batadv0: Adding interface: batadv_slave_0
[   99.951980][ T5395] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   99.978105][ T5395] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   99.990800][ T5395] batman_adv: batadv0: Adding interface: batadv_slave_1
[   99.997747][ T5395] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  100.023713][ T5395] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  100.068717][ T5395] hsr_slave_0: entered promiscuous mode
[  100.075443][ T5395] hsr_slave_1: entered promiscuous mode
[  100.900997][ T5395] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  100.915493][ T5395] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  100.929572][ T5395] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  100.942162][ T5395] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  101.082007][ T5395] 8021q: adding VLAN 0 to HW filter on device bond0
[  101.114953][ T5395] 8021q: adding VLAN 0 to HW filter on device team0
[  101.134516][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.141751][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[  101.167898][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.175152][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  101.447660][ T5395] 8021q: adding VLAN 0 to HW filter on device batadv0
[  101.514186][ T5395] veth0_vlan: entered promiscuous mode
[  101.532802][ T5395] veth1_vlan: entered promiscuous mode
[  101.585638][ T5395] veth0_macvtap: entered promiscuous mode
[  101.602206][ T5395] veth1_macvtap: entered promiscuous mode
[  101.619158][ T4446] Bluetooth: hci0: command 0x0409 tx timeout
[  101.643878][ T5395] batman_adv: batadv0: Interface activated: batadv_slave_0
[  101.667029][ T5395] batman_adv: batadv0: Interface activated: batadv_slave_1
[  101.685068][ T5395] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  101.694070][ T5395] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  101.707467][ T5395] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  101.717654][ T5395] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  101.859371][ T5053] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  101.867230][ T5053] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  101.932453][  T780] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  101.942070][  T780] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.044662][ T5458] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4)
[  102.051441][ T5458] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  102.062996][ T5458] vhci_hcd vhci_hcd.0: Device attached
[  102.438327][   T27] usb 9-1: new low-speed USB device number 2 using vhci_hcd
[  103.698216][ T4446] Bluetooth: hci0: command 0x041b tx timeout
[  105.778749][ T4446] Bluetooth: hci0: command 0x040f tx timeout
[  107.857953][ T4446] Bluetooth: hci0: command 0x0419 tx timeout
[  133.073649][ T1230] ieee802154 phy0 wpan0: encryption failed: -22
[  133.080354][ T1230] ieee802154 phy1 wpan1: encryption failed: -22
2023/09/17 20:51:06 executed programs: 1
[  158.080064][ T5042] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  158.091063][ T5042] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  158.099478][ T5042] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  158.107359][ T5042] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  158.115796][ T5042] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  158.123616][ T5042] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  158.280419][ T5762] chnl_net:caif_netlink_parms(): no params data found
[  158.352613][ T5762] bridge0: port 1(bridge_slave_0) entered blocking state
[  158.359839][ T5762] bridge0: port 1(bridge_slave_0) entered disabled state
[  158.367140][ T5762] bridge_slave_0: entered allmulticast mode
[  158.374454][ T5762] bridge_slave_0: entered promiscuous mode
[  158.382479][ T5762] bridge0: port 2(bridge_slave_1) entered blocking state
[  158.389803][ T5762] bridge0: port 2(bridge_slave_1) entered disabled state
[  158.397120][ T5762] bridge_slave_1: entered allmulticast mode
[  158.404402][ T5762] bridge_slave_1: entered promiscuous mode
[  158.436874][ T5762] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  158.450870][ T5762] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  158.487609][ T5762] team0: Port device team_slave_0 added
[  158.495898][ T5762] team0: Port device team_slave_1 added
[  158.524853][ T5762] batman_adv: batadv0: Adding interface: batadv_slave_0
[  158.532035][ T5762] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  158.558691][ T5762] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  158.571496][ T5762] batman_adv: batadv0: Adding interface: batadv_slave_1
[  158.578708][ T5762] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  158.604679][ T5762] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  158.650815][ T5762] hsr_slave_0: entered promiscuous mode
[  158.657763][ T5762] hsr_slave_1: entered promiscuous mode
[  158.666457][ T5762] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  158.674824][ T5762] Cannot create hsr debugfs directory
[  158.795106][ T5762] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  158.896705][ T5762] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  158.979526][ T5762] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  159.104136][ T5762] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  159.267760][ T5762] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  159.278181][ T5762] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  159.289921][ T5762] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  159.301259][ T5762] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  159.390624][ T5762] 8021q: adding VLAN 0 to HW filter on device bond0
[  159.413846][ T5762] 8021q: adding VLAN 0 to HW filter on device team0
[  159.429736][  T780] bridge0: port 1(bridge_slave_0) entered blocking state
[  159.436855][  T780] bridge0: port 1(bridge_slave_0) entered forwarding state
[  159.447933][  T780] bridge0: port 2(bridge_slave_1) entered blocking state
[  159.455088][  T780] bridge0: port 2(bridge_slave_1) entered forwarding state
[  159.629870][ T5762] 8021q: adding VLAN 0 to HW filter on device batadv0
[  159.676607][ T5762] veth0_vlan: entered promiscuous mode
[  159.691510][ T5762] veth1_vlan: entered promiscuous mode
[  159.725591][ T5762] veth0_macvtap: entered promiscuous mode
[  159.736005][ T5762] veth1_macvtap: entered promiscuous mode
[  159.756870][ T5762] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  159.767584][ T5762] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  159.781092][ T5762] batman_adv: batadv0: Interface activated: batadv_slave_0
[  159.802474][ T5762] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  159.813502][ T5762] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  159.824864][ T5762] batman_adv: batadv0: Interface activated: batadv_slave_1
[  159.841276][ T5762] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  159.850120][ T5762] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  159.859846][ T5762] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  159.868911][ T5762] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  159.947212][   T23] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  159.957240][   T23] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  159.990798][   T23] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  159.999896][   T23] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  160.105818][ T5778] vhci_hcd vhci_hcd.0: port 0 already used
[  160.178655][ T4446] Bluetooth: hci1: command 0x0409 tx timeout
[  162.257967][ T4446] Bluetooth: hci1: command 0x041b tx timeout
[  164.338756][ T4446] Bluetooth: hci1: command 0x040f tx timeout
[  166.417940][ T4446] Bluetooth: hci1: command 0x0419 tx timeout
[  194.501843][ T1230] ieee802154 phy0 wpan0: encryption failed: -22
[  194.508244][ T1230] ieee802154 phy1 wpan1: encryption failed: -22
2023/09/17 20:52:04 executed programs: 2
[  216.161770][ T5042] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  216.170887][ T5042] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  216.179643][ T5042] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  216.187873][ T5042] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  216.195842][ T5042] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  216.203920][ T5042] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  216.374552][ T5782] chnl_net:caif_netlink_parms(): no params data found
[  216.451180][ T5782] bridge0: port 1(bridge_slave_0) entered blocking state
[  216.458580][ T5782] bridge0: port 1(bridge_slave_0) entered disabled state
[  216.465909][ T5782] bridge_slave_0: entered allmulticast mode
[  216.473343][ T5782] bridge_slave_0: entered promiscuous mode
[  216.481917][ T5782] bridge0: port 2(bridge_slave_1) entered blocking state
[  216.489397][ T5782] bridge0: port 2(bridge_slave_1) entered disabled state
[  216.496623][ T5782] bridge_slave_1: entered allmulticast mode
[  216.504678][ T5782] bridge_slave_1: entered promiscuous mode
[  216.539484][ T5782] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  216.552068][ T5782] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  216.589258][ T5782] team0: Port device team_slave_0 added
[  216.598747][ T5782] team0: Port device team_slave_1 added
[  216.632502][ T5782] batman_adv: batadv0: Adding interface: batadv_slave_0
[  216.639679][ T5782] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  216.666127][ T5782] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  216.679495][ T5782] batman_adv: batadv0: Adding interface: batadv_slave_1
[  216.686455][ T5782] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  216.712892][ T5782] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  216.761029][ T5782] hsr_slave_0: entered promiscuous mode
[  216.767495][ T5782] hsr_slave_1: entered promiscuous mode
[  216.773691][ T5782] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  216.781805][ T5782] Cannot create hsr debugfs directory
[  216.897256][ T5782] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.006472][ T5782] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.096929][ T5782] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.202996][ T5782] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.360566][ T5782] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  217.372244][ T5782] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  217.385850][ T5782] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  217.401805][ T5782] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  217.490774][ T5782] 8021q: adding VLAN 0 to HW filter on device bond0
[  217.513318][ T5782] 8021q: adding VLAN 0 to HW filter on device team0
[  217.530597][ T5053] bridge0: port 1(bridge_slave_0) entered blocking state
[  217.537715][ T5053] bridge0: port 1(bridge_slave_0) entered forwarding state
[  217.558332][  T780] bridge0: port 2(bridge_slave_1) entered blocking state
[  217.565459][  T780] bridge0: port 2(bridge_slave_1) entered forwarding state
[  217.611868][ T5782] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  217.750427][ T5782] 8021q: adding VLAN 0 to HW filter on device batadv0
[  217.800126][ T5782] veth0_vlan: entered promiscuous mode
[  217.814131][ T5782] veth1_vlan: entered promiscuous mode
[  217.848223][ T5782] veth0_macvtap: entered promiscuous mode
[  217.858830][ T5782] veth1_macvtap: entered promiscuous mode
[  217.876727][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  217.889484][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  217.901975][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  217.913006][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  217.925069][ T5782] batman_adv: batadv0: Interface activated: batadv_slave_0
[  217.943971][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  217.955312][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  217.965269][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  217.975952][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  217.987184][ T5782] batman_adv: batadv0: Interface activated: batadv_slave_1
[  218.004819][ T5782] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  218.013770][ T5782] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  218.022750][ T5782] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  218.031505][ T5782] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  218.109961][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  218.124322][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  218.156614][ T5542] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  218.164817][ T5542] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  218.259143][ T5042] Bluetooth: hci2: command 0x0409 tx timeout
[  218.290378][ T5797] vhci_hcd vhci_hcd.0: port 0 already used
[  220.338031][ T4446] Bluetooth: hci2: command 0x041b tx timeout
[  222.178085][ T4446] Bluetooth: hci0: command 0x0406 tx timeout
[  222.418019][ T5042] Bluetooth: hci2: command 0x040f tx timeout
[  224.498127][ T5042] Bluetooth: hci2: command 0x0419 tx timeout
[  252.737916][   T30] INFO: task kworker/1:1:27 blocked for more than 143 seconds.
[  252.745619][   T30]       Not tainted 6.6.0-rc1-syzkaller-00269-ge789286468a9 #0
[  252.753364][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  252.766614][   T30] task:kworker/1:1     state:D stack:26448 pid:27    ppid:2      flags:0x00004000
[  252.775910][   T30] Workqueue: usb_hub_wq hub_event
[  252.784516][   T30] Call Trace:
[  252.787860][   T30]  <TASK>
[  252.790811][   T30]  __schedule+0xee1/0x5a10
[  252.795276][   T30]  ? io_schedule_timeout+0x150/0x150
[  252.801063][   T30]  ? reacquire_held_locks+0x4b0/0x4b0
[  252.806541][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  252.811860][   T30]  ? lockdep_hardirqs_on+0x7d/0x100
[  252.817158][   T30]  schedule+0xe7/0x1b0
[  252.824823][   T30]  usb_kill_urb.part.0+0x1c6/0x250
[  252.830127][   T30]  ? usb_anchor_suspend_wakeups+0x40/0x40
[  252.835909][   T30]  ? cpuacct_percpu_seq_show+0x10/0x10
[  252.841901][   T30]  ? preempt_count_sub+0x150/0x150
[  252.847063][   T30]  usb_kill_urb+0x83/0xa0
[  252.851596][   T30]  usb_start_wait_urb+0x251/0x4c0
[  252.856621][   T30]  ? usb_api_blocking_completion+0xa0/0xa0
[  252.863126][   T30]  ? rcu_is_watching+0x12/0xb0
[  252.868039][   T30]  usb_control_msg+0x327/0x4a0
[  252.872801][   T30]  ? usb_start_wait_urb+0x4c0/0x4c0
[  252.878446][   T30]  ? hub_resume+0x3e0/0x3e0
[  252.883000][   T30]  get_bMaxPacketSize0.constprop.0+0xa5/0x1c0
[  252.889119][   T30]  hub_port_init+0x680/0x3850
[  252.893818][   T30]  hub_event+0x2b64/0x4e00
[  252.899416][   T30]  ? hub_port_debounce+0x3d0/0x3d0
[  252.904564][   T30]  ? mark_lock+0x1b1/0x1950
[  252.909188][   T30]  ? lock_sync+0x190/0x190
[  252.913626][   T30]  ? reacquire_held_locks+0x4b0/0x4b0
[  252.919339][   T30]  process_one_work+0x884/0x15c0
[  252.924332][   T30]  ? lock_sync+0x190/0x190
[  252.929672][   T30]  ? init_worker_pool+0x770/0x770
[  252.934705][   T30]  ? assign_work+0x1a0/0x240
[  252.939387][   T30]  worker_thread+0x8b9/0x1290
[  252.944119][   T30]  ? process_one_work+0x15c0/0x15c0
[  252.949509][   T30]  kthread+0x33c/0x440
[  252.953602][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  252.958921][   T30]  ? kthread_complete_and_exit+0x40/0x40
[  252.965526][   T30]  ret_from_fork+0x45/0x80
[  252.970094][   T30]  ? kthread_complete_and_exit+0x40/0x40
[  252.975751][   T30]  ret_from_fork_asm+0x11/0x20
[  252.980731][   T30]  </TASK>
[  252.983855][   T30] INFO: task syz-executor.0:5456 blocked for more than 143 seconds.
[  252.991894][   T30]       Not tainted 6.6.0-rc1-syzkaller-00269-ge789286468a9 #0
[  252.999452][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  253.008168][   T30] task:syz-executor.0  state:D stack:26416 pid:5456  ppid:5395   flags:0x00000006
[  253.017413][   T30] Call Trace:
[  253.020740][   T30]  <TASK>
[  253.023677][   T30]  __schedule+0xee1/0x5a10
[  253.028182][   T30]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  253.034205][   T30]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  253.040246][   T30]  ? print_usage_bug.part.0+0x670/0x670
[  253.045815][   T30]  ? io_schedule_timeout+0x150/0x150
[  253.051180][   T30]  ? __mutex_lock+0x964/0x1340
[  253.055991][   T30]  schedule+0xe7/0x1b0
[  253.060245][   T30]  schedule_preempt_disabled+0x13/0x20
[  253.065908][   T30]  __mutex_lock+0x969/0x1340
[  253.071571][   T30]  ? usbdev_release+0x87/0x4b0
[  253.076443][   T30]  ? mutex_lock_io_nested+0x11a0/0x11a0
[  253.082890][   T30]  ? __fsnotify_parent+0x4fc/0xa10
[  253.090067][   T30]  ? __fsnotify_update_child_dentry_flags+0x360/0x360
[  253.096836][   T30]  ? locks_remove_file+0x399/0x5a0
[  253.101999][   T30]  ? free_async+0x520/0x520
[  253.106497][   T30]  ? usbdev_release+0x87/0x4b0
[  253.111376][   T30]  usbdev_release+0x87/0x4b0
[  253.115968][   T30]  ? free_async+0x520/0x520
[  253.120530][   T30]  __fput+0x3f7/0xa70
[  253.124644][   T30]  __fput_sync+0x47/0x50
[  253.128975][   T30]  __x64_sys_close+0x87/0xf0
[  253.133599][   T30]  do_syscall_64+0x38/0xb0
[  253.138170][   T30]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  253.144136][   T30] RIP: 0033:0x7fe779e7b9da
[  253.149262][   T30] RSP: 002b:00007fff2667b0b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  253.157699][   T30] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007fe779e7b9da
[  253.165768][   T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  253.175229][   T30] RBP: 0000000000000032 R08: 0000001b2ce60000 R09: 00007fe779f9bf8c
[  253.183285][   T30] R10: 00007fff2667b200 R11: 0000000000000293 R12: 00007fe779a000c8
[  253.191309][   T30] R13: ffffffffffffffff R14: 00007fe779a00000 R15: 0000000000018e6c
[  253.199469][   T30]  </TASK>
[  253.202517][   T30] 
[  253.202517][   T30] Showing all locks held in the system:
[  253.210315][   T30] 5 locks held by kworker/1:1/27:
[  253.215444][   T30]  #0: ffff888145e65138 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_one_work+0x787/0x15c0
[  253.226222][   T30]  #1: ffffc90000a2fd80 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_one_work+0x7e9/0x15c0
[  253.237554][   T30]  #2: ffff8880213e0190 (&dev->mutex){....}-{3:3}, at: hub_event+0x1c1/0x4e00
[  253.246495][   T30]  #3: ffff8880213e4508 (&port_dev->status_lock){+.+.}-{3:3}, at: hub_event+0x2801/0x4e00
[  253.256486][   T30]  #4: ffff888141fcc268 (hcd->address0_mutex){+.+.}-{3:3}, at: hub_event+0x282a/0x4e00
[  253.266220][   T30] 1 lock held by khungtaskd/30:
[  253.272232][   T30]  #0: ffffffff8cbab2e0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x75/0x340
[  253.282321][   T30] 2 locks held by getty/4794:
[  253.286993][   T30]  #0: ffff88814a65f0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  253.297490][   T30]  #1: ffffc900015d02f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfc5/0x1480
[  253.307811][   T30] 1 lock held by syz-executor.0/5456:
[  253.313297][   T30]  #0: ffff8880213e0190 (&dev->mutex){....}-{3:3}, at: usbdev_release+0x87/0x4b0
[  253.322609][   T30] 1 lock held by syz-executor.0/5777:
[  253.328054][   T30]  #0: ffff8880213e0190 (&dev->mutex){....}-{3:3}, at: usbdev_open+0x1b5/0x900
[  253.337071][   T30] 1 lock held by syz-executor.0/5796:
[  253.342502][   T30]  #0: ffff8880213e0190 (&dev->mutex){....}-{3:3}, at: usbdev_open+0x1b5/0x900
[  253.351537][   T30] 
[  253.353848][   T30] =============================================
[  253.353848][   T30] 
[  253.362291][   T30] NMI backtrace for cpu 1
[  253.366618][   T30] CPU: 1 PID: 30 Comm: khungtaskd Not tainted 6.6.0-rc1-syzkaller-00269-ge789286468a9 #0
[  253.376411][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[  253.386457][   T30] Call Trace:
[  253.389735][   T30]  <TASK>
[  253.392667][   T30]  dump_stack_lvl+0xd9/0x1b0
[  253.397285][   T30]  nmi_cpu_backtrace+0x277/0x380
[  253.402228][   T30]  ? lapic_can_unplug_cpu+0xa0/0xa0
[  253.407457][   T30]  nmi_trigger_cpumask_backtrace+0x299/0x300
[  253.413435][   T30]  watchdog+0xf87/0x1210
[  253.417681][   T30]  ? proc_dohung_task_timeout_secs+0x90/0x90
[  253.423648][   T30]  ? lockdep_hardirqs_on+0x7d/0x100
[  253.428860][   T30]  ? __kthread_parkme+0x14b/0x220
[  253.433892][   T30]  ? proc_dohung_task_timeout_secs+0x90/0x90
[  253.439961][   T30]  kthread+0x33c/0x440
[  253.444027][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  253.449236][   T30]  ? kthread_complete_and_exit+0x40/0x40
[  253.454893][   T30]  ret_from_fork+0x45/0x80
[  253.459308][   T30]  ? kthread_complete_and_exit+0x40/0x40
[  253.464944][   T30]  ret_from_fork_asm+0x11/0x20
[  253.469733][   T30]  </TASK>
[  253.473626][   T30] Sending NMI from CPU 1 to CPUs 0:
[  253.478975][    C0] NMI backtrace for cpu 0
[  253.478985][    C0] CPU: 0 PID: 9 Comm: kworker/0:1 Not tainted 6.6.0-rc1-syzkaller-00269-ge789286468a9 #0
[  253.479005][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[  253.479016][    C0] Workqueue: events nsim_dev_trap_report_work
[  253.479099][    C0] RIP: 0010:__orc_find+0x95/0x130
[  253.479130][    C0] Code: e8 60 89 4d 00 48 39 dd 72 67 e8 56 89 4d 00 48 89 e8 48 29 d8 48 89 c2 48 c1 e8 3f 48 c1 fa 02 48 01 d0 48 d1 f8 4c 8d 3c 83 <4c> 89 fa 48 c1 ea 03 42 0f b6 0c 32 4c 89 fa 83 e2 07 83 c2 03 38
[  253.479148][    C0] RSP: 0018:ffffc900000e7640 EFLAGS: 00000206
[  253.479162][    C0] RAX: 0000000000000006 RBX: ffffffff8f34caf0 RCX: 0000000000000000
[  253.479174][    C0] RDX: 000000000000000c RSI: ffffffff813a3cda RDI: 0000000000000006
[  253.479186][    C0] RBP: ffffffff8f34cb20 R08: 0000000000000006 R09: ffffffff882aed1f
[  253.479198][    C0] R10: ffffffff882aed90 R11: f95609f327277871 R12: ffffffff882aed1f
[  253.479211][    C0] R13: ffffffff882aed90 R14: dffffc0000000000 R15: ffffffff8f34cb08
[  253.479224][    C0] FS:  0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[  253.479243][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  253.479256][    C0] CR2: 000055c911187600 CR3: 000000000c976000 CR4: 00000000003506f0
[  253.479268][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  253.479278][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  253.479290][    C0] Call Trace:
[  253.479295][    C0]  <NMI>
[  253.479302][    C0]  ? show_regs+0x8f/0xa0
[  253.479324][    C0]  ? nmi_cpu_backtrace+0x1d4/0x380
[  253.479355][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x10
[  253.479382][    C0]  ? nmi_handle+0x1a6/0x570
[  253.479403][    C0]  ? __orc_find+0x95/0x130
[  253.479430][    C0]  ? default_do_nmi+0x69/0x160
[  253.479453][    C0]  ? exc_nmi+0x171/0x1e0
[  253.479474][    C0]  ? end_repeat_nmi+0x16/0x31
[  253.479518][    C0]  ? skb_free_head+0x180/0x1b0
[  253.479595][    C0]  ? skb_free_head+0x10f/0x1b0
[  253.479622][    C0]  ? skb_free_head+0x180/0x1b0
[  253.479648][    C0]  ? skb_free_head+0x10f/0x1b0
[  253.479676][    C0]  ? __orc_find+0x7a/0x130
[  253.479702][    C0]  ? __orc_find+0x95/0x130
[  253.479728][    C0]  ? __orc_find+0x95/0x130
[  253.479756][    C0]  ? __orc_find+0x95/0x130
[  253.479782][    C0]  </NMI>
[  253.479787][    C0]  <TASK>
[  253.479794][    C0]  ? skb_free_head+0x10f/0x1b0
[  253.479822][    C0]  unwind_next_frame+0x329/0x2390
[  253.479858][    C0]  ? skb_free_head+0x110/0x1b0
[  253.479886][    C0]  ? write_profile+0x450/0x450
[  253.479914][    C0]  arch_stack_walk+0xfa/0x170
[  253.479935][    C0]  ? skb_free_head+0x110/0x1b0
[  253.479963][    C0]  ? __kmem_cache_free+0xb8/0x2f0
[  253.479996][    C0]  stack_trace_save+0x96/0xd0
[  253.480024][    C0]  ? filter_irq_stacks+0x90/0x90
[  253.480054][    C0]  kasan_save_stack+0x33/0x50
[  253.480082][    C0]  ? kasan_save_stack+0x33/0x50
[  253.480109][    C0]  ? kasan_set_track+0x25/0x30
[  253.480135][    C0]  ? kasan_save_free_info+0x2b/0x40
[  253.480155][    C0]  ? ____kasan_slab_free+0x15b/0x1b0
[  253.480182][    C0]  ? slab_free_freelist_hook+0x114/0x1e0
[  253.480207][    C0]  ? __kmem_cache_free+0xb8/0x2f0
[  253.480233][    C0]  ? skb_free_head+0x110/0x1b0
[  253.480281][    C0]  kasan_set_track+0x25/0x30
[  253.480309][    C0]  kasan_save_free_info+0x2b/0x40
[  253.480329][    C0]  ____kasan_slab_free+0x15b/0x1b0
[  253.480360][    C0]  slab_free_freelist_hook+0x114/0x1e0
[  253.480388][    C0]  ? skb_free_head+0x110/0x1b0
[  253.480415][    C0]  __kmem_cache_free+0xb8/0x2f0
[  253.480446][    C0]  skb_free_head+0x110/0x1b0
[  253.480475][    C0]  skb_release_data+0x5ba/0x870
[  253.480493][    C0]  ? nsim_dev_trap_report_work+0x872/0xc70
[  253.480517][    C0]  consume_skb+0xd2/0x170
[  253.480536][    C0]  nsim_dev_trap_report_work+0x872/0xc70
[  253.480565][    C0]  process_one_work+0x884/0x15c0
[  253.480591][    C0]  ? lock_sync+0x190/0x190
[  253.480615][    C0]  ? init_worker_pool+0x770/0x770
[  253.480642][    C0]  ? assign_work+0x1a0/0x240
[  253.480665][    C0]  worker_thread+0x8b9/0x1290
[  253.480692][    C0]  ? __kthread_parkme+0x14b/0x220
[  253.480712][    C0]  ? process_one_work+0x15c0/0x15c0
[  253.480734][    C0]  kthread+0x33c/0x440
[  253.480753][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  253.480781][    C0]  ? kthread_complete_and_exit+0x40/0x40
[  253.480803][    C0]  ret_from_fork+0x45/0x80
[  253.480824][    C0]  ? kthread_complete_and_exit+0x40/0x40
[  253.480850][    C0]  ret_from_fork_asm+0x11/0x20
[  253.480882][    C0]  </TASK>
[  253.482117][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  253.924057][   T30] CPU: 0 PID: 30 Comm: khungtaskd Not tainted 6.6.0-rc1-syzkaller-00269-ge789286468a9 #0
[  253.933852][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[  253.943997][   T30] Call Trace:
[  253.947265][   T30]  <TASK>
[  253.950195][   T30]  dump_stack_lvl+0xd9/0x1b0
[  253.954803][   T30]  panic+0x6a6/0x750
[  253.958697][   T30]  ? panic_smp_self_stop+0xa0/0xa0
[  253.963804][   T30]  ? lapic_can_unplug_cpu+0xa0/0xa0
[  253.968997][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  253.974379][   T30]  ? watchdog+0xd3e/0x1210
[  253.978783][   T30]  watchdog+0xd4f/0x1210
[  253.983192][   T30]  ? proc_dohung_task_timeout_secs+0x90/0x90
[  253.989161][   T30]  ? lockdep_hardirqs_on+0x7d/0x100
[  253.994354][   T30]  ? __kthread_parkme+0x14b/0x220
[  253.999401][   T30]  ? proc_dohung_task_timeout_secs+0x90/0x90
[  254.005387][   T30]  kthread+0x33c/0x440
[  254.009445][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  254.014641][   T30]  ? kthread_complete_and_exit+0x40/0x40
[  254.020261][   T30]  ret_from_fork+0x45/0x80
[  254.024666][   T30]  ? kthread_complete_and_exit+0x40/0x40
[  254.030305][   T30]  ret_from_fork_asm+0x11/0x20
[  254.035071][   T30]  </TASK>
[  254.038277][   T30] Kernel Offset: disabled
[  254.042612][   T30] Rebooting in 86400 seconds..