DUID 00:04:b5:83:26:17:e0:27:12:d6:a5:87:80:2d:51:b0:dc:e4
forked to background, child pid 3188
[   25.949266][ T3189] 8021q: adding VLAN 0 to HW filter on device bond0
[   25.962174][ T3189] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
syzkaller login: [   76.206057][   T14] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.0.166' (ECDSA) to the list of known hosts.
executing program
[  859.564199][   T29] INFO: task kworker/1:1:27 blocked for more than 143 seconds.
[  859.571848][   T29]       Not tainted 5.19.0-rc3-syzkaller-00167-ge65af5403e46 #0
[  859.579654][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  859.588447][   T29] task:kworker/1:1     state:D stack:27856 pid:   27 ppid:     2 flags:0x00004000
[  859.597823][   T29] Workqueue: ipv6_addrconf addrconf_verify_work
[  859.604243][   T29] Call Trace:
[  859.607537][   T29]  <TASK>
[  859.610465][   T29]  __schedule+0xa00/0x4b50
[  859.615088][   T29]  ? find_held_lock+0x2d/0x110
[  859.619901][   T29]  ? wq_worker_sleeping+0x1e5/0x250
[  859.625238][   T29]  ? mark_held_locks+0x9f/0xe0
[  859.630038][   T29]  ? rwlock_bug.part.0+0x90/0x90
[  859.635103][   T29]  ? io_schedule_timeout+0x140/0x140
[  859.640417][   T29]  ? lockdep_hardirqs_on+0x79/0x100
[  859.645727][   T29]  schedule+0xd2/0x1f0
[  859.649823][   T29]  schedule_preempt_disabled+0xf/0x20
[  859.655318][   T29]  __mutex_lock+0xa70/0x1350
[  859.659937][   T29]  ? addrconf_verify_work+0xe/0x20
[  859.665177][   T29]  ? mutex_lock_io_nested+0x1190/0x1190
[  859.670753][   T29]  ? lock_release+0x780/0x780
[  859.675601][   T29]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  859.681656][   T29]  addrconf_verify_work+0xe/0x20
[  859.686758][   T29]  process_one_work+0x996/0x1610
[  859.691740][   T29]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[  859.697258][   T29]  ? rwlock_bug.part.0+0x90/0x90
[  859.702230][   T29]  ? _raw_spin_lock_irq+0x41/0x50
[  859.707479][   T29]  worker_thread+0x665/0x1080
[  859.712232][   T29]  ? __kthread_parkme+0x15f/0x220
[  859.717444][   T29]  ? process_one_work+0x1610/0x1610
[  859.722675][   T29]  kthread+0x2e9/0x3a0
[  859.726936][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  859.732599][   T29]  ret_from_fork+0x1f/0x30
[  859.737230][   T29]  </TASK>
[  859.740360][   T29] 
[  859.740360][   T29] Showing all locks held in the system:
[  859.748196][   T29] 3 locks held by kworker/1:1/27:
[  859.753244][   T29]  #0: ffff888025faed38 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x87a/0x1610
[  859.764410][   T29]  #1: ffffc90000a2fda8 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_one_work+0x8ae/0x1610
[  859.777606][   T29]  #2: ffffffff8d58e828 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0xe/0x20
[  859.787152][   T29] 1 lock held by khungtaskd/29:
[  859.792014][   T29]  #0: ffffffff8bd86ba0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260
[  859.802384][   T29] 2 locks held by getty/3291:
[  859.807433][   T29]  #0: ffff88814aaeb098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x22/0x80
[  859.817467][   T29]  #1: ffffc90002d162e8 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xe50/0x13c0
[  859.827766][   T29] 1 lock held by syz-executor267/3653:
[  859.833244][   T29] 2 locks held by kworker/1:2/3654:
[  859.838514][   T29]  #0: ffff888011866538 ((wq_completion)rcu_gp){+.+.}-{0:0}, at: process_one_work+0x87a/0x1610
[  859.848963][   T29]  #1: ffffc900031afda8 ((work_completion)(&rew->rew_work)){+.+.}-{0:0}, at: process_one_work+0x8ae/0x1610
[  859.860479][   T29] 2 locks held by dhcpcd/3666:
[  859.865323][   T29]  #0: ffff8880224ac130 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x2f/0xdc0
[  859.875163][   T29]  #1: ffffffff8bd90ea0 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x4f8/0x610
[  859.886240][   T29] 
[  859.888644][   T29] =============================================
[  859.888644][   T29] 
[  859.897249][   T29] NMI backtrace for cpu 0
[  859.901579][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 5.19.0-rc3-syzkaller-00167-ge65af5403e46 #0
[  859.911467][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  859.921511][   T29] Call Trace:
[  859.924795][   T29]  <TASK>
[  859.927735][   T29]  dump_stack_lvl+0xcd/0x134
[  859.932376][   T29]  nmi_cpu_backtrace.cold+0x47/0x144
[  859.937655][   T29]  ? lapic_can_unplug_cpu+0x80/0x80
[  859.942863][   T29]  nmi_trigger_cpumask_backtrace+0x1e6/0x230
[  859.948891][   T29]  watchdog+0xc22/0xf90
[  859.953069][   T29]  ? proc_dohung_task_timeout_secs+0x80/0x80
[  859.959131][   T29]  kthread+0x2e9/0x3a0
[  859.963211][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  859.968854][   T29]  ret_from_fork+0x1f/0x30
[  859.973302][   T29]  </TASK>
[  859.976491][   T29] Sending NMI from CPU 0 to CPUs 1:
[  859.981731][    C1] NMI backtrace for cpu 1
[  859.981741][    C1] CPU: 1 PID: 42 Comm: kworker/u4:2 Not tainted 5.19.0-rc3-syzkaller-00167-ge65af5403e46 #0
[  859.981762][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  859.981772][    C1] Workqueue: events_unbound toggle_allocation_gate
[  859.981797][    C1] RIP: 0010:memcpy_erms+0x8/0x10
[  859.981821][    C1] Code: cc cc eb 1e 0f 1f 00 48 89 f8 48 89 d1 48 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 c3 66 0f 1f 44 00 00 48 89 f8 48 89 d1 f3 a4 <c3> 0f 1f 80 00 00 00 00 48 89 f8 48 83 fa 20 72 7e 40 38 fe 7c 35
[  859.981839][    C1] RSP: 0018:ffffc90000b379d0 EFLAGS: 00000002
[  859.981852][    C1] RAX: 00002aaaaaaab870 RBX: ffffffff8dbbb98c RCX: 0000000000000000
[  859.981865][    C1] RDX: 0000000000000004 RSI: ffffffff8f29267f RDI: 00002aaaaaaab874
[  859.981877][    C1] RBP: ffff88813fe4c558 R08: 0000000000000001 R09: 00002aaaaaaab874
[  859.981889][    C1] R10: fffffbfff1e524cf R11: 0000000000000001 R12: ffffffff81c6d870
[  859.981901][    C1] R13: 0000000000000004 R14: 0000000000000874 R15: ffffffff8bec6940
[  859.981913][    C1] FS:  0000000000000000(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000
[  859.981929][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  859.981942][    C1] CR2: 0000563b2b066600 CR3: 00000001400fc000 CR4: 00000000003506e0
[  859.981954][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  859.981965][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  859.981977][    C1] Call Trace:
[  859.981981][    C1]  <TASK>
[  859.981987][    C1]  __text_poke+0x497/0x8e0
[  859.982010][    C1]  ? cpumask_weight+0x40/0x40
[  859.982035][    C1]  ? text_poke_memset+0x60/0x60
[  859.982059][    C1]  ? kmem_cache_alloc_trace+0x120/0x3f0
[  859.982084][    C1]  text_poke_bp_batch+0x382/0x6c0
[  859.982110][    C1]  ? do_sync_core+0x20/0x20
[  859.982135][    C1]  ? __jump_label_update+0x351/0x400
[  859.982155][    C1]  text_poke_finish+0x16/0x30
[  859.982172][    C1]  arch_jump_label_transform_apply+0x13/0x20
[  859.982195][    C1]  jump_label_update+0x32f/0x410
[  859.982215][    C1]  static_key_enable_cpuslocked+0x1b1/0x260
[  859.982235][    C1]  static_key_enable+0x16/0x20
[  859.982252][    C1]  toggle_allocation_gate+0x100/0x390
[  859.982272][    C1]  ? lock_release+0x780/0x780
[  859.982296][    C1]  ? wake_up_kfence_timer+0x20/0x20
[  859.982316][    C1]  ? lockdep_hardirqs_on+0x79/0x100
[  859.982341][    C1]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  859.982370][    C1]  process_one_work+0x996/0x1610
[  859.982394][    C1]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[  859.982416][    C1]  ? rwlock_bug.part.0+0x90/0x90
[  859.982434][    C1]  ? _raw_spin_lock_irq+0x41/0x50
[  859.982457][    C1]  worker_thread+0x665/0x1080
[  859.982482][    C1]  ? process_one_work+0x1610/0x1610
[  859.982503][    C1]  kthread+0x2e9/0x3a0
[  859.982519][    C1]  ? kthread_complete_and_exit+0x40/0x40
[  859.982539][    C1]  ret_from_fork+0x1f/0x30
[  859.982566][    C1]  </TASK>
[  859.982767][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[  860.271248][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 5.19.0-rc3-syzkaller-00167-ge65af5403e46 #0
[  860.281144][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  860.291197][   T29] Call Trace:
[  860.294474][   T29]  <TASK>
[  860.297408][   T29]  dump_stack_lvl+0xcd/0x134
[  860.302014][   T29]  panic+0x2d7/0x64a
[  860.305913][   T29]  ? panic_print_sys_info.part.0+0x10b/0x10b
[  860.311905][   T29]  ? lapic_can_unplug_cpu+0x80/0x80
[  860.317109][   T29]  ? preempt_schedule_thunk+0x16/0x18
[  860.322489][   T29]  ? watchdog.cold+0x5/0x143
[  860.327120][   T29]  watchdog.cold+0x16/0x143
[  860.331649][   T29]  ? proc_dohung_task_timeout_secs+0x80/0x80
[  860.337645][   T29]  kthread+0x2e9/0x3a0
[  860.341718][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  860.347358][   T29]  ret_from_fork+0x1f/0x30
[  860.351808][   T29]  </TASK>
[  860.355118][   T29] Kernel Offset: disabled
[  860.359453][   T29] Rebooting in 86400 seconds..