./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1440230736 <...> Warning: Permanently added '10.128.0.232' (ED25519) to the list of known hosts. execve("./syz-executor1440230736", ["./syz-executor1440230736"], 0x7ffd6a84b920 /* 10 vars */) = 0 brk(NULL) = 0x55556b819000 brk(0x55556b819e00) = 0x55556b819e00 arch_prctl(ARCH_SET_FS, 0x55556b819480) = 0 set_tid_address(0x55556b819750) = 5864 set_robust_list(0x55556b819760, 24) = 0 rseq(0x55556b819da0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1440230736", 4096) = 28 getrandom("\xf2\x62\xac\x1b\x68\x6c\x85\xb5", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55556b819e00 brk(0x55556b83ae00) = 0x55556b83ae00 brk(0x55556b83b000) = 0x55556b83b000 mprotect(0x7f8753a10000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 rt_sigaction(SIGRTMIN, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0 rt_sigaction(SIGRT_1, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0 rt_sigaction(SIGSEGV, {sa_handler=0x7f875396a930, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f8753973000}, NULL, 8) = 0 rt_sigaction(SIGBUS, {sa_handler=0x7f875396a930, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f8753973000}, NULL, 8) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5865 attached , child_tidptr=0x55556b819750) = 5865 [pid 5865] set_robust_list(0x55556b819760, 24) = 0 [pid 5864] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5865] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5867 attached ./strace-static-x86_64: Process 5866 attached [pid 5864] <... clone resumed>, child_tidptr=0x55556b819750) = 5866 [pid 5867] set_robust_list(0x55556b819760, 24 [pid 5866] set_robust_list(0x55556b819760, 24 [pid 5867] <... set_robust_list resumed>) = 0 [pid 5864] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5867] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5866] <... set_robust_list resumed>) = 0 [pid 5865] <... clone resumed>, child_tidptr=0x55556b819750) = 5867 [pid 5867] <... prctl resumed>) = 0 [pid 5867] setpgid(0, 0 [pid 5866] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5867] <... setpgid resumed>) = 0 [pid 5867] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5867] write(3, "1000", 4./strace-static-x86_64: Process 5869 attached ./strace-static-x86_64: Process 5868 attached [pid 5864] <... clone resumed>, child_tidptr=0x55556b819750) = 5869 [pid 5869] set_robust_list(0x55556b819760, 24 [pid 5867] <... write resumed>) = 4 [pid 5868] set_robust_list(0x55556b819760, 24 [pid 5866] <... clone resumed>, child_tidptr=0x55556b819750) = 5868 [pid 5864] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5869] <... set_robust_list resumed>) = 0 [pid 5868] <... set_robust_list resumed>) = 0 executing program [pid 5867] close(3 [pid 5869] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5868] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5867] <... close resumed>) = 0 [pid 5867] write(1, "executing program\n", 18) = 18 ./strace-static-x86_64: Process 5871 attached [pid 5868] <... prctl resumed>) = 0 [pid 5868] setpgid(0, 0) = 0 [pid 5868] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5867] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3 ./strace-static-x86_64: Process 5870 attached [pid 5864] <... clone resumed>, child_tidptr=0x55556b819750) = 5870 [pid 5871] set_robust_list(0x55556b819760, 24 [pid 5870] set_robust_list(0x55556b819760, 24 [pid 5868] write(3, "1000", 4 [pid 5867] sendmsg(3, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x14\x00\x00\x00\x25\x00\x01\x00\x20\x00\x00\x00\x00\x40\x00\x00\x06\x00\x00\x00", iov_len=20}], msg_iovlen=1, msg_controllen=0, msg_flags=MSG_DONTWAIT|MSG_EOR|MSG_FASTOPEN}, MSG_PROBE|MSG_EOR|MSG_BATCH [pid 5864] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5871] <... set_robust_list resumed>) = 0 [pid 5870] <... set_robust_list resumed>) = 0 [pid 5869] <... clone resumed>, child_tidptr=0x55556b819750) = 5871 [pid 5868] <... write resumed>) = 4 [pid 5871] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 5872 attached [pid 5870] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5868] close(3 [pid 5872] set_robust_list(0x55556b819760, 24) = 0 [pid 5872] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLDexecuting program [pid 5871] <... prctl resumed>) = 0 [pid 5868] <... close resumed>) = 0 [pid 5868] write(1, "executing program\n", 18) = 18 executing program ./strace-static-x86_64: Process 5877 attached ./strace-static-x86_64: Process 5876 attached [pid 5864] <... clone resumed>, child_tidptr=0x55556b819750) = 5872 [pid 5871] setpgid(0, 0 [pid 5868] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5872] <... clone resumed>, child_tidptr=0x55556b819750) = 5876 [pid 5871] <... setpgid resumed>) = 0 [pid 5868] <... socket resumed>) = 3 [pid 5876] set_robust_list(0x55556b819760, 24 [pid 5871] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5876] <... set_robust_list resumed>) = 0 [pid 5876] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5868] sendmsg(3, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x14\x00\x00\x00\x25\x00\x01\x00\x20\x00\x00\x00\x00\x40\x00\x00\x06\x00\x00\x00", iov_len=20}], msg_iovlen=1, msg_controllen=0, msg_flags=MSG_DONTWAIT|MSG_EOR|MSG_FASTOPEN}, MSG_PROBE|MSG_EOR|MSG_BATCH [pid 5876] <... prctl resumed>) = 0 [pid 5876] setpgid(0, 0 [pid 5871] <... openat resumed>) = 3 [pid 5876] <... setpgid resumed>) = 0 [pid 5876] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5876] write(3, "1000", 4) = 4 [pid 5876] close(3) = 0 [pid 5876] write(1, "executing program\n", 18) = 18 [pid 5876] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3 [pid 5876] sendmsg(3, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x14\x00\x00\x00\x25\x00\x01\x00\x20\x00\x00\x00\x00\x40\x00\x00\x06\x00\x00\x00", iov_len=20}], msg_iovlen=1, msg_controllen=0, msg_flags=MSG_DONTWAIT|MSG_EOR|MSG_FASTOPEN}, MSG_PROBE|MSG_EOR|MSG_BATCH [pid 5877] set_robust_list(0x55556b819760, 24 [pid 5871] write(3, "1000", 4 [pid 5870] <... clone resumed>, child_tidptr=0x55556b819750) = 5877 [pid 5871] <... write resumed>) = 4 [pid 5877] <... set_robust_list resumed>) = 0 [pid 5877] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5871] close(3 [pid 5877] setpgid(0, 0 [pid 5871] <... close resumed>) = 0 executing program [pid 5877] <... setpgid resumed>) = 0 [pid 5871] write(1, "executing program\n", 18 [pid 5877] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5871] <... write resumed>) = 18 [pid 5877] <... openat resumed>) = 3 [pid 5871] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3 [pid 5877] write(3, "1000", 4 [pid 5871] sendmsg(3, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x14\x00\x00\x00\x25\x00\x01\x00\x20\x00\x00\x00\x00\x40\x00\x00\x06\x00\x00\x00", iov_len=20}], msg_iovlen=1, msg_controllen=0, msg_flags=MSG_DONTWAIT|MSG_EOR|MSG_FASTOPEN}, MSG_PROBE|MSG_EOR|MSG_BATCH [pid 5877] <... write resumed>) = 4 [pid 5877] close(3) = 0 [pid 5877] write(1, "executing program\n", 18executing program ) = 18 [pid 5877] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3 [pid 5877] sendmsg(3, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x14\x00\x00\x00\x25\x00\x01\x00\x20\x00\x00\x00\x00\x40\x00\x00\x06\x00\x00\x00", iov_len=20}], msg_iovlen=1, msg_controllen=0, msg_flags=MSG_DONTWAIT|MSG_EOR|MSG_FASTOPEN}, MSG_PROBE|MSG_EOR|MSG_BATCH [pid 5867] <... sendmsg resumed>) = 20 [pid 5867] socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE) = 4 [pid 5867] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_XDP, insn_cnt=3, insns=0x2000000003c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(4, 17, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_LSM_MAC, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 5 [pid 5867] sendmsg(4, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x3c\x00\x00\x00\x10\x00\x01\x08\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x0c\x00\x2b\x80\x08\x00\x01\x00\x05\x00\x00\x00\x08\x00\x1b\x00\x00\x00\x00\x00\x08\x00\x0a\x00\x00\x00\x00\x00", iov_len=60}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0 [pid 5868] <... sendmsg resumed>) = 20 [pid 5868] socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE) = 4 [pid 5868] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_XDP, insn_cnt=3, insns=0x2000000003c0, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(4, 17, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_LSM_MAC, prog_btf_fd=-1, func_info_rec_size=8, func_info=NULL, func_info_cnt=0, line_info_rec_size=16, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL, ...}, 148) = 5 [pid 5868] sendmsg(4, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x3c\x00\x00\x00\x10\x00\x01\x08\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x0c\x00\x2b\x80\x08\x00\x01\x00\x05\x00\x00\x00\x08\x00\x1b\x00\x00\x00\x00\x00\x08\x00\x0a\x00\x00\x00\x00\x00", iov_len=60}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0 [pid 5867] <... sendmsg resumed>) = 60 [pid 5867] exit_group(0) = ? [pid 5867] +++ exited with 0 +++ [pid 5865] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5867, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 5865] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5879 attached , child_tidptr=0x55556b819750) = 5879 [pid 5879] set_robust_list(0x55556b819760, 24) = 0 [pid 5879] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5879] setpgid(0, 0) = 0 [pid 5879] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5879] write(3, "1000", 4) = 4 [pid 5879] close(3executing program ) = 0 [pid 5879] write(1, "executing program\n", 18) = 18 [pid 5879] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3 [pid 5879] sendmsg(3, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x14\x00\x00\x00\x25\x00\x01\x00\x20\x00\x00\x00\x00\x40\x00\x00\x06\x00\x00\x00", iov_len=20}], msg_iovlen=1, msg_controllen=0, msg_flags=MSG_DONTWAIT|MSG_EOR|MSG_FASTOPEN}, MSG_PROBE|MSG_EOR|MSG_BATCH [pid 5868] <... sendmsg resumed>) = 60 [pid 5868] exit_group(0) = ? [pid 5868] +++ exited with 0 +++ [pid 5866] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5868, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 5866] restart_syscall(<... resuming interrupted clone ...>) = 0 [ 137.735263][ T5867] A link change request failed with some changes committed already. Interface eth0 may have been left with an inconsistent configuration, please check. [ 137.767689][ T5868] A link change request failed with some changes committed already. Interface eth0 may have been left with an inconsistent configuration, please check. [pid 5866] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5881 attached , child_tidptr=0x55556b819750) = 5881 [pid 5881] set_robust_list(0x55556b819760, 24) = 0 [pid 5881] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5881] setpgid(0, 0) = 0 [pid 5881] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5881] write(3, "1000", 4) = 4 [pid 5881] close(3) = 0 executing program [pid 5881] write(1, "executing program\n", 18) = 18 [pid 5881] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3 [pid 5881] sendmsg(3, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x14\x00\x00\x00\x25\x00\x01\x00\x20\x00\x00\x00\x00\x40\x00\x00\x06\x00\x00\x00", iov_len=20}], msg_iovlen=1, msg_controllen=0, msg_flags=MSG_DONTWAIT|MSG_EOR|MSG_FASTOPEN}, MSG_PROBE|MSG_EOR|MSG_BATCH [pid 5869] kill(-5871, SIGKILL) = 0 [pid 5869] kill(5871, SIGKILL) = 0 [pid 5870] kill(-5877, SIGKILL) = 0 [pid 5870] kill(5877, SIGKILL [pid 5872] kill(-5876, SIGKILL [pid 5870] <... kill resumed>) = 0 [pid 5872] <... kill resumed>) = 0 [pid 5872] kill(5876, SIGKILL) = 0 [pid 5865] kill(-5879, SIGKILL) = 0 [pid 5865] kill(5879, SIGKILL) = 0 [pid 5866] kill(-5881, SIGKILL) = 0 [pid 5866] kill(5881, SIGKILL) = 0 [pid 5869] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5869] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5869] getdents64(3, 0x55556b81a7f0 /* 2 entries */, 32768) = 48 [pid 5869] getdents64(3, 0x55556b81a7f0 /* 0 entries */, 32768) = 0 [pid 5869] close(3) = 0 [pid 5872] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5872] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5872] getdents64(3, 0x55556b81a7f0 /* 2 entries */, 32768) = 48 [pid 5872] getdents64(3, 0x55556b81a7f0 /* 0 entries */, 32768) = 0 [pid 5872] close(3) = 0 [pid 5870] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5870] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5870] getdents64(3, 0x55556b81a7f0 /* 2 entries */, 32768) = 48 [pid 5870] getdents64(3, 0x55556b81a7f0 /* 0 entries */, 32768) = 0 [pid 5870] close(3) = 0 [pid 5865] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5865] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5865] getdents64(3, 0x55556b81a7f0 /* 2 entries */, 32768) = 48 [pid 5865] getdents64(3, 0x55556b81a7f0 /* 0 entries */, 32768) = 0 [pid 5865] close(3) = 0 [pid 5866] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5866] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5866] getdents64(3, 0x55556b81a7f0 /* 2 entries */, 32768) = 48 [pid 5866] getdents64(3, 0x55556b81a7f0 /* 0 entries */, 32768) = 0 [pid 5866] close(3) = 0 [ 193.193285][ T34] sched: DL replenish lagged too much [ 286.385324][ T31] INFO: task syz-executor144:5871 blocked for more than 143 seconds. [ 286.393657][ T31] Not tainted 6.16.0-syzkaller-06600-g1dbf1d590d10 #0 [ 286.400970][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.409807][ T31] task:syz-executor144 state:D stack:27016 pid:5871 tgid:5871 ppid:5869 task_flags:0x400140 flags:0x00004006 [ 286.422063][ T31] Call Trace: [ 286.425442][ T31] [ 286.428406][ T31] __schedule+0x1737/0x4d30 [ 286.432950][ T31] ? __lock_acquire+0xab9/0xd20 [ 286.437891][ T31] ? schedule+0x165/0x360 [ 286.442261][ T31] ? __lock_acquire+0xab9/0xd20 [ 286.447182][ T31] ? __pfx___schedule+0x10/0x10 [ 286.452089][ T31] ? schedule+0x91/0x360 [ 286.456449][ T31] schedule+0x165/0x360 [ 286.460714][ T31] schedule_preempt_disabled+0x13/0x30 [ 286.466348][ T31] __mutex_lock+0x7e3/0x1340 [ 286.470988][ T31] ? __mutex_lock+0x5b6/0x1340 [ 286.475820][ T31] ? nfsd_nl_listener_set_doit+0x137/0x1690 [ 286.481759][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 286.487050][ T31] ? __asan_memset+0x22/0x50 [ 286.491681][ T31] ? ____sys_sendmsg+0x505/0x830 [ 286.496861][ T31] ? ___sys_sendmsg+0x21f/0x2a0 [ 286.501747][ T31] ? __x64_sys_sendmsg+0x19b/0x260 [ 286.506940][ T31] nfsd_nl_listener_set_doit+0x137/0x1690 [ 286.512698][ T31] ? __pfx___nla_validate_parse+0x10/0x10 [ 286.518537][ T31] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 286.524807][ T31] ? __nla_parse+0x40/0x60 [ 286.529267][ T31] ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0 [ 286.535688][ T31] genl_family_rcv_msg_doit+0x215/0x300 [ 286.541282][ T31] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 286.547423][ T31] ? bpf_lsm_capable+0x9/0x20 [ 286.552156][ T31] ? security_capable+0x7e/0x2e0 [ 286.557175][ T31] genl_rcv_msg+0x60e/0x790 [ 286.561733][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 286.566813][ T31] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 286.573010][ T31] netlink_rcv_skb+0x205/0x470 [ 286.577875][ T31] ? __lock_acquire+0xab9/0xd20 [ 286.582825][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 286.587907][ T31] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 286.593322][ T31] ? down_read+0x1ad/0x2e0 [ 286.597839][ T31] genl_rcv+0x28/0x40 [ 286.601825][ T31] netlink_unicast+0x82c/0x9e0 [ 286.606666][ T31] ? __pfx_netlink_unicast+0x10/0x10 [ 286.611999][ T31] ? netlink_sendmsg+0x642/0xb30 [ 286.617016][ T31] ? skb_put+0x11b/0x210 [ 286.621305][ T31] netlink_sendmsg+0x805/0xb30 [ 286.626160][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 286.631491][ T31] ? aa_sock_msg_perm+0x94/0x160 [ 286.636493][ T31] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 286.641801][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 286.647144][ T31] __sock_sendmsg+0x21c/0x270 [ 286.651853][ T31] ____sys_sendmsg+0x505/0x830 [ 286.656734][ T31] ? __pfx_____sys_sendmsg+0x10/0x10 [ 286.662063][ T31] ? import_iovec+0x74/0xa0 [ 286.666673][ T31] ___sys_sendmsg+0x21f/0x2a0 [ 286.671399][ T31] ? __pfx____sys_sendmsg+0x10/0x10 [ 286.676713][ T31] ? do_raw_spin_lock+0x121/0x290 [ 286.681849][ T31] __x64_sys_sendmsg+0x19b/0x260 [ 286.686858][ T31] ? _raw_spin_unlock_irq+0x2e/0x50 [ 286.692089][ T31] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 286.697663][ T31] do_syscall_64+0xfa/0x3b0 [ 286.702208][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 286.707469][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.713698][ T31] ? clear_bhb_loop+0x60/0xb0 [ 286.718423][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.724361][ T31] RIP: 0033:0x7f875399d329 [ 286.728804][ T31] RSP: 002b:00007ffc35ee6d18 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 286.737290][ T31] RAX: ffffffffffffffda RBX: 00007ffc35ee6d50 RCX: 00007f875399d329 [ 286.745316][ T31] RDX: 0000000000040090 RSI: 0000200000000000 RDI: 0000000000000003 [ 286.753358][ T31] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000f4240 [ 286.761362][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000f4240 [ 286.769409][ T31] R13: 00007ffc35ee6fd8 R14: 00007ffc35ee6d3c R15: 00007ffc35ee6d40 [ 286.777468][ T31] [ 286.780502][ T31] INFO: task syz-executor144:5877 blocked for more than 143 seconds. [ 286.788634][ T31] Not tainted 6.16.0-syzkaller-06600-g1dbf1d590d10 #0 [ 286.796000][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.804723][ T31] task:syz-executor144 state:D stack:27016 pid:5877 tgid:5877 ppid:5870 task_flags:0x400140 flags:0x00004006 [ 286.816757][ T31] Call Trace: [ 286.820063][ T31] [ 286.823152][ T31] __schedule+0x1737/0x4d30 [ 286.827712][ T31] ? __lock_acquire+0xab9/0xd20 [ 286.832595][ T31] ? schedule+0x165/0x360 [ 286.837091][ T31] ? __lock_acquire+0xab9/0xd20 [ 286.842010][ T31] ? __pfx___schedule+0x10/0x10 [ 286.847037][ T31] ? schedule+0x91/0x360 [ 286.851326][ T31] schedule+0x165/0x360 [ 286.855556][ T31] schedule_preempt_disabled+0x13/0x30 [ 286.861049][ T31] __mutex_lock+0x7e3/0x1340 [ 286.865721][ T31] ? __mutex_lock+0x5b6/0x1340 [ 286.870521][ T31] ? nfsd_nl_listener_set_doit+0x137/0x1690 [ 286.876481][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 286.881543][ T31] ? __asan_memset+0x22/0x50 [ 286.886207][ T31] ? ____sys_sendmsg+0x505/0x830 [ 286.891166][ T31] ? ___sys_sendmsg+0x21f/0x2a0 [ 286.896069][ T31] ? __x64_sys_sendmsg+0x19b/0x260 [ 286.901214][ T31] nfsd_nl_listener_set_doit+0x137/0x1690 [ 286.907091][ T31] ? __pfx___nla_validate_parse+0x10/0x10 [ 286.912880][ T31] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 286.919114][ T31] ? __nla_parse+0x40/0x60 [ 286.923593][ T31] ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0 [ 286.929962][ T31] genl_family_rcv_msg_doit+0x215/0x300 [ 286.935586][ T31] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 286.941700][ T31] ? bpf_lsm_capable+0x9/0x20 [ 286.946443][ T31] ? security_capable+0x7e/0x2e0 [ 286.951423][ T31] genl_rcv_msg+0x60e/0x790 [ 286.956006][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 286.961052][ T31] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 286.967282][ T31] netlink_rcv_skb+0x205/0x470 [ 286.972080][ T31] ? __lock_acquire+0xab9/0xd20 [ 286.977006][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 286.982059][ T31] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 286.987426][ T31] ? down_read+0x1ad/0x2e0 [ 286.991890][ T31] genl_rcv+0x28/0x40 [ 286.995932][ T31] netlink_unicast+0x82c/0x9e0 [ 287.000749][ T31] ? __pfx_netlink_unicast+0x10/0x10 [ 287.006094][ T31] ? netlink_sendmsg+0x642/0xb30 [ 287.011062][ T31] ? skb_put+0x11b/0x210 [ 287.015362][ T31] netlink_sendmsg+0x805/0xb30 [ 287.020187][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 287.025547][ T31] ? aa_sock_msg_perm+0x94/0x160 [ 287.030518][ T31] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 287.035907][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 287.041249][ T31] __sock_sendmsg+0x21c/0x270 [ 287.046012][ T31] ____sys_sendmsg+0x505/0x830 [ 287.050902][ T31] ? __pfx_____sys_sendmsg+0x10/0x10 [ 287.056351][ T31] ? import_iovec+0x74/0xa0 [ 287.060890][ T31] ___sys_sendmsg+0x21f/0x2a0 [ 287.065653][ T31] ? __pfx____sys_sendmsg+0x10/0x10 [ 287.070901][ T31] ? do_raw_spin_lock+0x121/0x290 [ 287.076044][ T31] __x64_sys_sendmsg+0x19b/0x260 [ 287.081014][ T31] ? _raw_spin_unlock_irq+0x2e/0x50 [ 287.086294][ T31] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 287.091801][ T31] do_syscall_64+0xfa/0x3b0 [ 287.096468][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 287.101697][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.107819][ T31] ? clear_bhb_loop+0x60/0xb0 [ 287.112546][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.118498][ T31] RIP: 0033:0x7f875399d329 [ 287.122944][ T31] RSP: 002b:00007ffc35ee6d18 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 287.131437][ T31] RAX: ffffffffffffffda RBX: 00007ffc35ee6d50 RCX: 00007f875399d329 [ 287.139573][ T31] RDX: 0000000000040090 RSI: 0000200000000000 RDI: 0000000000000003 [ 287.147691][ T31] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000f4240 [ 287.155724][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000f4240 [ 287.163740][ T31] R13: 00007ffc35ee6fd8 R14: 00007ffc35ee6d3c R15: 00007ffc35ee6d40 [ 287.171749][ T31] [ 287.174925][ T31] INFO: task syz-executor144:5879 blocked for more than 144 seconds. [ 287.183095][ T31] Not tainted 6.16.0-syzkaller-06600-g1dbf1d590d10 #0 [ 287.190419][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.199150][ T31] task:syz-executor144 state:D stack:26888 pid:5879 tgid:5879 ppid:5865 task_flags:0x400140 flags:0x00004006 [ 287.211156][ T31] Call Trace: [ 287.214518][ T31] [ 287.217481][ T31] __schedule+0x1737/0x4d30 [ 287.222068][ T31] ? __lock_acquire+0xab9/0xd20 [ 287.226999][ T31] ? schedule+0x165/0x360 [ 287.231459][ T31] ? __lock_acquire+0xab9/0xd20 [ 287.236383][ T31] ? __pfx___schedule+0x10/0x10 [ 287.241280][ T31] ? schedule+0x91/0x360 [ 287.245590][ T31] schedule+0x165/0x360 [ 287.249794][ T31] schedule_preempt_disabled+0x13/0x30 [ 287.255324][ T31] __mutex_lock+0x7e3/0x1340 [ 287.259961][ T31] ? __mutex_lock+0x5b6/0x1340 [ 287.264835][ T31] ? nfsd_nl_listener_set_doit+0x137/0x1690 [ 287.270761][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 287.275870][ T31] ? __asan_memset+0x22/0x50 [ 287.280492][ T31] ? ____sys_sendmsg+0x505/0x830 [ 287.285584][ T31] ? ___sys_sendmsg+0x21f/0x2a0 [ 287.290567][ T31] ? __x64_sys_sendmsg+0x19b/0x260 [ 287.295773][ T31] nfsd_nl_listener_set_doit+0x137/0x1690 [ 287.301518][ T31] ? __pfx___nla_validate_parse+0x10/0x10 [ 287.307317][ T31] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 287.313549][ T31] ? __nla_parse+0x40/0x60 [ 287.317990][ T31] ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0 [ 287.324510][ T31] genl_family_rcv_msg_doit+0x215/0x300 [ 287.330094][ T31] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 287.336250][ T31] ? bpf_lsm_capable+0x9/0x20 [ 287.340960][ T31] ? security_capable+0x7e/0x2e0 [ 287.345958][ T31] genl_rcv_msg+0x60e/0x790 [ 287.350495][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 287.355578][ T31] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 287.361861][ T31] netlink_rcv_skb+0x205/0x470 [ 287.366715][ T31] ? __lock_acquire+0xab9/0xd20 [ 287.371593][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 287.376693][ T31] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 287.382019][ T31] ? down_read+0x1ad/0x2e0 [ 287.386492][ T31] genl_rcv+0x28/0x40 [ 287.390505][ T31] netlink_unicast+0x82c/0x9e0 [ 287.395364][ T31] ? __pfx_netlink_unicast+0x10/0x10 [ 287.400687][ T31] ? netlink_sendmsg+0x642/0xb30 [ 287.405693][ T31] ? skb_put+0x11b/0x210 [ 287.409958][ T31] netlink_sendmsg+0x805/0xb30 [ 287.414817][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 287.420138][ T31] ? aa_sock_msg_perm+0x94/0x160 [ 287.425131][ T31] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 287.430441][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 287.435782][ T31] __sock_sendmsg+0x21c/0x270 [ 287.440487][ T31] ____sys_sendmsg+0x505/0x830 [ 287.445311][ T31] ? __pfx_____sys_sendmsg+0x10/0x10 [ 287.450628][ T31] ? import_iovec+0x74/0xa0 [ 287.455212][ T31] ___sys_sendmsg+0x21f/0x2a0 [ 287.459922][ T31] ? __pfx____sys_sendmsg+0x10/0x10 [ 287.465197][ T31] ? do_raw_spin_lock+0x121/0x290 [ 287.470296][ T31] __x64_sys_sendmsg+0x19b/0x260 [ 287.475314][ T31] ? _raw_spin_unlock_irq+0x2e/0x50 [ 287.480556][ T31] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 287.486328][ T31] do_syscall_64+0xfa/0x3b0 [ 287.490857][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 287.496130][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.502236][ T31] ? clear_bhb_loop+0x60/0xb0 [ 287.507137][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.513120][ T31] RIP: 0033:0x7f875399d329 [ 287.517556][ T31] RSP: 002b:00007ffc35ee6d18 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 287.526049][ T31] RAX: ffffffffffffffda RBX: 00007ffc35ee6d50 RCX: 00007f875399d329 [ 287.534106][ T31] RDX: 0000000000040090 RSI: 0000200000000000 RDI: 0000000000000003 [ 287.542089][ T31] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000f4240 [ 287.550104][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000f4240 [ 287.558233][ T31] R13: 0000000000021960 R14: 00007ffc35ee6d3c R15: 00007ffc35ee6d40 [ 287.566297][ T31] [ 287.569407][ T31] INFO: task syz-executor144:5881 blocked for more than 144 seconds. [ 287.577545][ T31] Not tainted 6.16.0-syzkaller-06600-g1dbf1d590d10 #0 [ 287.584912][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.593708][ T31] task:syz-executor144 state:D stack:26272 pid:5881 tgid:5881 ppid:5866 task_flags:0x400140 flags:0x00004006 [ 287.605732][ T31] Call Trace: [ 287.609035][ T31] [ 287.611999][ T31] __schedule+0x1737/0x4d30 [ 287.616617][ T31] ? __lock_acquire+0xab9/0xd20 [ 287.621500][ T31] ? schedule+0x165/0x360 [ 287.625882][ T31] ? __lock_acquire+0xab9/0xd20 [ 287.630762][ T31] ? __pfx___schedule+0x10/0x10 [ 287.635703][ T31] ? schedule+0x91/0x360 [ 287.639980][ T31] schedule+0x165/0x360 [ 287.644202][ T31] schedule_preempt_disabled+0x13/0x30 [ 287.649687][ T31] __mutex_lock+0x7e3/0x1340 [ 287.654356][ T31] ? __mutex_lock+0x5b6/0x1340 [ 287.659171][ T31] ? nfsd_nl_listener_set_doit+0x137/0x1690 [ 287.665145][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 287.670209][ T31] ? __asan_memset+0x22/0x50 [ 287.674867][ T31] ? ____sys_sendmsg+0x505/0x830 [ 287.679838][ T31] ? ___sys_sendmsg+0x21f/0x2a0 [ 287.684734][ T31] ? __x64_sys_sendmsg+0x19b/0x260 [ 287.689878][ T31] nfsd_nl_listener_set_doit+0x137/0x1690 [ 287.695673][ T31] ? __pfx___nla_validate_parse+0x10/0x10 [ 287.701454][ T31] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 287.707705][ T31] ? __nla_parse+0x40/0x60 [ 287.712158][ T31] ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0 [ 287.718566][ T31] genl_family_rcv_msg_doit+0x215/0x300 [ 287.724214][ T31] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 287.730322][ T31] ? bpf_lsm_capable+0x9/0x20 [ 287.735053][ T31] ? security_capable+0x7e/0x2e0 [ 287.740042][ T31] genl_rcv_msg+0x60e/0x790 [ 287.744628][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 287.749763][ T31] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 287.755998][ T31] netlink_rcv_skb+0x205/0x470 [ 287.760793][ T31] ? __lock_acquire+0xab9/0xd20 [ 287.765705][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 287.770757][ T31] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 287.776131][ T31] ? down_read+0x1ad/0x2e0 [ 287.780572][ T31] genl_rcv+0x28/0x40 [ 287.784628][ T31] netlink_unicast+0x82c/0x9e0 [ 287.789431][ T31] ? __pfx_netlink_unicast+0x10/0x10 [ 287.794780][ T31] ? netlink_sendmsg+0x642/0xb30 [ 287.799750][ T31] ? skb_put+0x11b/0x210 [ 287.804042][ T31] netlink_sendmsg+0x805/0xb30 [ 287.808936][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 287.814307][ T31] ? aa_sock_msg_perm+0x94/0x160 [ 287.819275][ T31] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 287.824737][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 287.830061][ T31] __sock_sendmsg+0x21c/0x270 [ 287.834796][ T31] ____sys_sendmsg+0x505/0x830 [ 287.839595][ T31] ? __pfx_____sys_sendmsg+0x10/0x10 [ 287.844942][ T31] ? import_iovec+0x74/0xa0 [ 287.849479][ T31] ___sys_sendmsg+0x21f/0x2a0 [ 287.854215][ T31] ? __pfx____sys_sendmsg+0x10/0x10 [ 287.859445][ T31] ? do_raw_spin_lock+0x121/0x290 [ 287.864597][ T31] __x64_sys_sendmsg+0x19b/0x260 [ 287.869566][ T31] ? _raw_spin_unlock_irq+0x2e/0x50 [ 287.874854][ T31] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 287.880342][ T31] ? rcu_is_watching+0x15/0xb0 [ 287.885171][ T31] do_syscall_64+0xfa/0x3b0 [ 287.889705][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 287.894965][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.901072][ T31] ? clear_bhb_loop+0x60/0xb0 [ 287.905802][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.911716][ T31] RIP: 0033:0x7f875399d329 [ 287.916181][ T31] RSP: 002b:00007ffc35ee6d18 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 287.924686][ T31] RAX: ffffffffffffffda RBX: 00007ffc35ee6d50 RCX: 00007f875399d329 [ 287.932757][ T31] RDX: 0000000000040090 RSI: 0000200000000000 RDI: 0000000000000003 [ 287.940787][ T31] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000f4240 [ 287.948805][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000f4240 [ 287.956869][ T31] R13: 000000000002196f R14: 00007ffc35ee6d3c R15: 00007ffc35ee6d40 [ 287.964912][ T31] [ 287.967941][ T31] [ 287.967941][ T31] Showing all locks held in the system: [ 287.975715][ T31] 1 lock held by khungtaskd/31: [ 287.980585][ T31] #0: ffffffff8e13c4e0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180 [ 287.990702][ T31] 2 locks held by getty/5598: [ 287.995444][ T31] #0: ffff8880347970a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 288.005270][ T31] #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400 [ 288.015460][ T31] 2 locks held by syz-executor144/5871: [ 288.021022][ T31] #0: ffffffff8f56e570 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 [ 288.029286][ T31] #1: ffffffff8e418c48 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0x137/0x1690 [ 288.039546][ T31] 2 locks held by syz-executor144/5876: [ 288.045131][ T31] #0: ffffffff8f56e570 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 [ 288.053412][ T31] #1: ffffffff8e418c48 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0x137/0x1690 [ 288.063677][ T31] 2 locks held by syz-executor144/5877: [ 288.069315][ T31] #0: ffffffff8f56e570 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 [ 288.077576][ T31] #1: ffffffff8e418c48 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0x137/0x1690 [ 288.088041][ T31] 2 locks held by syz-executor144/5879: [ 288.093646][ T31] #0: ffffffff8f56e570 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 [ 288.101975][ T31] #1: ffffffff8e418c48 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0x137/0x1690 [ 288.112348][ T31] 2 locks held by syz-executor144/5881: [ 288.117958][ T31] #0: ffffffff8f56e570 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 [ 288.126231][ T31] #1: ffffffff8e418c48 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0x137/0x1690 [ 288.136611][ T31] [ 288.138957][ T31] ============================================= [ 288.138957][ T31] [ 288.147655][ T31] NMI backtrace for cpu 0 [ 288.147683][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-syzkaller-06600-g1dbf1d590d10 #0 PREEMPT(full) [ 288.147708][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 288.147721][ T31] Call Trace: [ 288.147733][ T31] [ 288.147744][ T31] dump_stack_lvl+0x189/0x250 [ 288.147783][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 288.147803][ T31] ? __pfx__printk+0x10/0x10 [ 288.147843][ T31] nmi_cpu_backtrace+0x39e/0x3d0 [ 288.147872][ T31] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 288.147912][ T31] ? __pfx__printk+0x10/0x10 [ 288.147940][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 288.147973][ T31] nmi_trigger_cpumask_backtrace+0x17a/0x300 [ 288.148001][ T31] watchdog+0xf93/0xfe0 [ 288.148032][ T31] ? watchdog+0x1de/0xfe0 [ 288.148066][ T31] kthread+0x70e/0x8a0 [ 288.148093][ T31] ? __pfx_watchdog+0x10/0x10 [ 288.148119][ T31] ? __pfx_kthread+0x10/0x10 [ 288.148145][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 288.148168][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 288.148190][ T31] ? __pfx_kthread+0x10/0x10 [ 288.148210][ T31] ret_from_fork+0x3fc/0x770 [ 288.148239][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 288.148271][ T31] ? __switch_to_asm+0x39/0x70 [ 288.148289][ T31] ? __switch_to_asm+0x33/0x70 [ 288.148307][ T31] ? __pfx_kthread+0x10/0x10 [ 288.148328][ T31] ret_from_fork_asm+0x1a/0x30 [ 288.148360][ T31] [ 288.148370][ T31] Sending NMI from CPU 0 to CPUs 1: [ 288.296213][ C1] NMI backtrace for cpu 1 [ 288.296231][ C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.16.0-syzkaller-06600-g1dbf1d590d10 #0 PREEMPT(full) [ 288.296253][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 288.296263][ C1] RIP: 0010:pv_native_safe_halt+0x13/0x20 [ 288.296294][ C1] Code: 53 e8 02 00 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 13 6f 18 00 f3 0f 1e fa fb f4 cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 [ 288.296310][ C1] RSP: 0018:ffffc90000197de0 EFLAGS: 000002c2 [ 288.296327][ C1] RAX: e5c9f91c06ec2700 RBX: ffffffff81969b18 RCX: e5c9f91c06ec2700 [ 288.296341][ C1] RDX: 0000000000000001 RSI: ffffffff8d9792e3 RDI: ffffffff8be30a00 [ 288.296353][ C1] RBP: ffffc90000197f20 R08: ffff8880b8732f5b R09: 1ffff110170e65eb [ 288.296366][ C1] R10: dffffc0000000000 R11: ffffed10170e65ec R12: ffffffff8fa07bf0 [ 288.296379][ C1] R13: 0000000000000001 R14: 0000000000000001 R15: 1ffff11003a58b40 [ 288.296390][ C1] FS: 0000000000000000(0000) GS:ffff888125d80000(0000) knlGS:0000000000000000 [ 288.296405][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 288.296416][ C1] CR2: 000055d9dd621660 CR3: 000000000df38000 CR4: 00000000003526f0 [ 288.296432][ C1] Call Trace: [ 288.296441][ C1] [ 288.296448][ C1] default_idle+0x13/0x20 [ 288.296465][ C1] default_idle_call+0x74/0xb0 [ 288.296484][ C1] do_idle+0x1e8/0x510 [ 288.296527][ C1] ? __pfx_do_idle+0x10/0x10 [ 288.296564][ C1] cpu_startup_entry+0x44/0x60 [ 288.296590][ C1] start_secondary+0x101/0x110 [ 288.296615][ C1] common_startup_64+0x13e/0x147 [ 288.296646][ C1] [ 288.297199][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 288.297218][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-syzkaller-06600-g1dbf1d590d10 #0 PREEMPT(full) [ 288.297246][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 288.297261][ T31] Call Trace: [ 288.297272][ T31] [ 288.297283][ T31] dump_stack_lvl+0x99/0x250 [ 288.297311][ T31] ? __asan_memcpy+0x40/0x70 [ 288.297342][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 288.297368][ T31] ? __pfx__printk+0x10/0x10 [ 288.297414][ T31] panic+0x2db/0x790 [ 288.297446][ T31] ? __pfx_panic+0x10/0x10 [ 288.297471][ T31] ? __pfx___x2apic_send_IPI_mask+0x10/0x10 [ 288.297553][ T31] ? irq_work_queue+0xc3/0x140 [ 288.297600][ T31] watchdog+0xfd2/0xfe0 [ 288.297643][ T31] ? watchdog+0x1de/0xfe0 [ 288.297684][ T31] kthread+0x70e/0x8a0 [ 288.297718][ T31] ? __pfx_watchdog+0x10/0x10 [ 288.297751][ T31] ? __pfx_kthread+0x10/0x10 [ 288.297782][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 288.297814][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 288.297847][ T31] ? __pfx_kthread+0x10/0x10 [ 288.297877][ T31] ret_from_fork+0x3fc/0x770 [ 288.297921][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 288.297967][ T31] ? __switch_to_asm+0x39/0x70 [ 288.297994][ T31] ? __switch_to_asm+0x33/0x70 [ 288.298022][ T31] ? __pfx_kthread+0x10/0x10 [ 288.298053][ T31] ret_from_fork_asm+0x1a/0x30 [ 288.298102][ T31] [ 288.599059][ T31] Kernel Offset: disabled [ 288.603383][ T31] Rebooting in 86400 seconds..