./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2959429972 <...> Warning: Permanently added '10.128.0.55' (ED25519) to the list of known hosts. execve("./syz-executor2959429972", ["./syz-executor2959429972"], 0x7ffda83b6420 /* 10 vars */) = 0 brk(NULL) = 0x555567899000 brk(0x555567899d00) = 0x555567899d00 arch_prctl(ARCH_SET_FS, 0x555567899380) = 0 set_tid_address(0x555567899650) = 5844 set_robust_list(0x555567899660, 24) = 0 rseq(0x555567899ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2959429972", 4096) = 28 getrandom("\x56\x26\x1c\xd7\x24\x46\xfb\xf6", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555567899d00 brk(0x5555678bad00) = 0x5555678bad00 brk(0x5555678bb000) = 0x5555678bb000 mprotect(0x7f440d7d4000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5845 attached , child_tidptr=0x555567899650) = 5845 [pid 5845] set_robust_list(0x555567899660, 24) = 0 [pid 5845] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5845] setpgid(0, 0) = 0 [pid 5845] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5845] write(3, "1000", 4) = 4 [pid 5845] close(3) = 0 executing program [pid 5845] write(1, "executing program\n", 18) = 18 [pid 5845] memfd_create("syzkaller", 0) = 3 [pid 5845] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4405200000 [pid 5845] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5845] munmap(0x7f4405200000, 138412032) = 0 [pid 5845] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5845] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5845] close(3) = 0 [pid 5845] close(4) = 0 [pid 5845] mkdir("./file0", 0777) = 0 [ 235.204764][ T5845] loop0: detected capacity change from 0 to 32768 [ 235.313800][ T5845] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,background_compression=lz4,nojournal_transaction_names,version_upgrade=none [ 235.313800][ T5845] allowing incompatible features above 0.0: (unknown version) [ 235.341052][ T5845] bcachefs (loop0): recovering from clean shutdown, journal seq 13 [ 235.365470][ T5845] bcachefs (loop0): accounting_read... done [ 235.372541][ T5845] bcachefs (loop0): alloc_read... done [ 235.378272][ T5845] bcachefs (loop0): snapshots_read... done [ 235.387035][ T5845] bcachefs (loop0): going read-write [ 235.396243][ T5845] bcachefs (loop0): journal_replay... done [ 235.402778][ T5845] bcachefs (loop0): resume_logged_ops... done [ 235.409667][ T5845] bcachefs (loop0): delete_dead_inodes... done [pid 5845] mount("/dev/loop0", "./file0", "bcachefs", 0, "version_upgrade=none,background_compression=lz4,") = 0 [pid 5845] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [ 235.418108][ T5845] bcachefs (loop0): done starting filesystem [ 235.424504][ T5855] bcachefs (loop0): backpointer doesn't match extent it points to: [ 235.424529][ T5855] u64s 9 type backpointer 0:8921088:0 len 0 ver 0: bucket=0:34:8 btree=extents level=0 data_type=user suboffset=0 len=8 gen=0 pos=1073741825:24:U32_MAX [ 235.424547][ T5855] u64s 8 type extent 1073741825:24:U32_MAX len 24 ver 2: durability: 1 crc: c_size 8 size 24 offset 0 nonce 0 csum chacha20_poly1305_80 5c1d:75853c64f7009f9d compress lz4 ptr: 0:34:8 gen 0 [pid 5845] chdir("./file0") = 0 [pid 5845] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5845] ioctl(4, LOOP_CLR_FD) = 0 [pid 5845] close(4) = 0 [ 235.424566][ T5855] u64s 9 type backpointer 0:8921088:0 len 0 ver 0: bucket=0:34:8 btree=extents level=0 data_type=user suboffset=0 len=8 gen=0 pos=1073741825:24:U32_MAX, fixing [pid 5845] open("./file1", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 0400 [pid 5844] kill(-5845, SIGKILL) = 0 [pid 5844] kill(5845, SIGKILL) = 0 [pid 5844] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5844] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5844] getdents64(3, 0x55556789a6f0 /* 2 entries */, 32768) = 48 [pid 5844] getdents64(3, 0x55556789a6f0 /* 0 entries */, 32768) = 0 [pid 5844] close(3) = 0 [ 266.678864][ T5845] Allocator stuck? Waited for 30 seconds [ 266.678891][ T5845] Allocator debug: [ 266.678903][ T5845] capacity1536 [ 266.678913][ T5845] reserved 31232 [ 266.678924][ T5845] hidden 0 [ 266.678935][ T5845] btree 0 [ 266.678945][ T5845] data 0 [ 266.678956][ T5845] cached 0 [ 266.678966][ T5845] reserved 0 [ 266.678977][ T5845] online_reserved 768 [ 266.678987][ T5845] nr_inodes 0 [ 266.678998][ T5845] [ 266.679007][ T5845] freelist_wait waiting [ 266.679018][ T5845] open buckets allocated1 [ 266.679028][ T5845] open buckets total 1024 [ 266.679039][ T5845] open_buckets_wait empty [ 266.679050][ T5845] open_buckets_btree 0 [ 266.679060][ T5845] open_buckets_user 0 [ 266.679071][ T5845] btree reserve cache 0 [ 266.679081][ T5845] [ 266.679090][ T5845] Dev 0: [ 266.679100][ T5845] buckets sectors fragmented [ 266.679113][ T5845] free 0 0 0 [ 266.679125][ T5845] sb 0 0 0 [ 266.679138][ T5845] journal 0 0 0 [ 266.679150][ T5845] btree 0 0 0 [ 266.679163][ T5845] user 0 0 0 [ 266.679176][ T5845] cached 0 0 0 [ 266.679188][ T5845] parity 0 0 0 [ 266.679201][ T5845] stripe 0 0 0 [ 266.679213][ T5845] need_gc_gens 0 0 0 [ 266.679226][ T5845] need_discard 0 0 0 [ 266.679239][ T5845] unstriped 0 0 0 [ 266.679251][ T5845] capacity 128 [ 266.679262][ T5845] [ 266.679271][ T5845] reserves: [ 266.679280][ T5845] stripe 60 [ 266.679291][ T5845] normal 58 [ 266.679302][ T5845] copygc 56 [ 266.679313][ T5845] btree 28 [ 266.679323][ T5845] btree_copygc 0 [ 266.679334][ T5845] reclaim 0 [ 266.679345][ T5845] interior_updates 0 [ 266.679355][ T5845] [ 266.679365][ T5845] open buckets 0 [ 266.679375][ T5845] buckets to invalidate 0 [ 266.679386][ T5845] [ 266.679395][ T5845] Copygc debug: [ 266.679405][ T5845] running: 1 [ 266.679415][ T5845] copygc_wait:0 [ 266.679425][ T5845] copygc_wait_at:0 [ 266.679435][ T5845] Currently waiting for:0 B [ 266.679446][ T5845] Currently waiting since:640 KiB [ 266.679457][ T5845] Currently calculated wait:0 B [ 266.679468][ T5845] [ 266.679477][ T5845] Journal debug: [ 266.679487][ T5845] flags: replay_done,running,may_skip_flush [ 266.679499][ T5845] dirty journal entries: 0/32768 [ 266.679510][ T5845] seq: 14 [ 266.679521][ T5845] seq_ondisk: 14 [ 266.679532][ T5845] last_seq: 15 [ 266.679543][ T5845] last_seq_ondisk: 14 [ 266.679554][ T5845] flushed_seq_ondisk: 14 [ 266.679564][ T5845] watermark: stripe [ 266.679583][ T5845] each entry reserved: 321 [ 266.679594][ T5845] nr flush writes: 1 [ 266.679605][ T5845] nr noflush writes: 0 [ 266.679616][ T5845] average write size: 1.27 KiB [ 266.679627][ T5845] free buf: 65536 [ 266.679638][ T5845] nr direct reclaim: 0 [ 266.679649][ T5845] nr background reclaim: 1 [ 266.679660][ T5845] reclaim kicked: 0 [ 266.679670][ T5845] reclaim runs in: 0 ms [ 266.679681][ T5845] blocked: 0 [ 266.679692][ T5845] current entry sectors: 256 [ 266.679703][ T5845] current entry error: (No error) [ 266.679714][ T5845] current entry: closed [ 266.679725][ T5845] unwritten entries: [ 266.679736][ T5845] last buf closed [ 266.679746][ T5845] space: [ 266.679755][ T5845] discarded 256:1536 [ 266.679767][ T5845] clean ondisk 256:1536 [ 266.679778][ T5845] clean 256:1536 [ 266.679789][ T5845] total 256:2048 [ 266.679800][ T5845] dev 0: [ 266.679810][ T5845] durability 1: [ 266.679820][ T5845] nr 8 [ 266.679830][ T5845] bucket size 256 [ 266.679841][ T5845] available 6:248 [ 266.679852][ T5845] discard_idx 0 [ 266.679863][ T5845] dirty_ondisk 0 (seq 14) [ 266.679874][ T5845] dirty_idx 0 (seq 14) [ 266.679885][ T5845] cur_idx 0 (seq 14) [ 266.679897][ T5845] replicas want 1 need 1 [ 429.867783][ T31] INFO: task syz-executor295:5845 blocked for more than 143 seconds. [ 429.875988][ T31] Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 [ 429.885279][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 429.894411][ T31] task:syz-executor295 state:D stack:18320 pid:5845 tgid:5845 ppid:5844 task_flags:0x400140 flags:0x00004006 [ 429.907232][ T31] Call Trace: [ 429.910948][ T31] [ 429.913922][ T31] __schedule+0x1b33/0x51f0 [ 429.919051][ T31] ? schedule+0x163/0x360 [ 429.923443][ T31] ? __pfx___schedule+0x10/0x10 [ 429.928819][ T31] ? kfree+0x198/0x430 [ 429.932958][ T31] ? schedule+0x90/0x360 [ 429.937248][ T31] ? schedule+0x90/0x360 [ 429.942242][ T31] schedule+0x163/0x360 [ 429.946473][ T31] ? __closure_sync+0x143/0x2a0 [ 429.951975][ T31] __closure_sync+0x1c0/0x2a0 [ 429.956713][ T31] ? __pfx___closure_sync+0x10/0x10 [ 429.962468][ T31] ? __bch2_wait_on_allocator+0x1d6/0x250 [ 429.968611][ T31] bch2_btree_update_start+0x12bd/0x16c0 [ 429.974307][ T31] ? bch2_btree_split_leaf+0x12d/0x8a0 [ 429.980321][ T31] ? __pfx_bch2_btree_update_start+0x10/0x10 [ 429.986364][ T31] ? bch2_logged_op_start+0x1e6/0x3f0 [ 429.992328][ T31] ? bch2_btree_path_peek_slot+0x3f8/0xff0 [ 429.998556][ T31] ? __pfx_closure_sync_fn+0x10/0x10 [ 430.003906][ T31] ? __pfx_bch2_btree_path_peek_slot+0x10/0x10 [ 430.011100][ T31] ? bch2_trans_update_by_path+0xffe/0x2150 [ 430.017054][ T31] bch2_btree_split_leaf+0x12d/0x8a0 [ 430.022907][ T31] bch2_trans_commit_error+0x1b3/0x1480 [ 430.028904][ T31] ? bch2_logged_op_start+0x22d/0x3f0 [ 430.034336][ T31] ? six_unlock_ip+0x2f8/0x440 [ 430.039702][ T31] ? __pfx_bch2_trans_commit_error+0x10/0x10 [ 430.045762][ T31] ? bch2_trans_verify_locks+0x33c/0x3c0 [ 430.051954][ T31] __bch2_trans_commit+0x8886/0x9da0 [ 430.058067][ T31] ? bch2_logged_op_start+0x22d/0x3f0 [ 430.063499][ T31] ? __pfx___bch2_trans_commit+0x10/0x10 [ 430.069737][ T31] ? bch2_trans_begin+0x1795/0x1d30 [ 430.075141][ T31] ? bch2_path_put+0x1de/0x2330 [ 430.080718][ T31] ? __pfx_bch2_bkey_get_empty_slot+0x10/0x10 [ 430.087229][ T31] ? bch2_trans_iter_exit+0x18a/0x300 [ 430.093241][ T31] bch2_logged_op_start+0x22d/0x3f0 [ 430.098924][ T31] ? __pfx_bch2_logged_op_start+0x10/0x10 [ 430.104711][ T31] ? bch2_bkey_get_empty_slot+0x111/0x5b0 [ 430.111163][ T31] bch2_truncate+0x1eb/0x340 [ 430.115824][ T31] ? __pfx_bch2_truncate+0x10/0x10 [ 430.121977][ T31] ? unmap_mapping_range+0xfa/0x2a0 [ 430.127244][ T31] ? truncate_setsize+0xcf/0xf0 [ 430.132688][ T31] bchfs_truncate+0x97b/0xc60 [ 430.137767][ T31] ? bch2_trans_put+0xa59/0x1030 [ 430.142813][ T31] ? __pfx_bchfs_truncate+0x10/0x10 [ 430.148637][ T31] ? setattr_prepare+0x1f5/0xb20 [ 430.154181][ T31] ? bch2_setattr+0x1a4/0x220 [ 430.159453][ T31] ? __pfx_bch2_setattr+0x10/0x10 [ 430.164545][ T31] notify_change+0xbca/0xe90 [ 430.169699][ T31] do_truncate+0x222/0x310 [ 430.174167][ T31] ? __pfx_do_truncate+0x10/0x10 [ 430.179714][ T31] path_openat+0x2e4f/0x35d0 [ 430.184403][ T31] ? __pfx_path_openat+0x10/0x10 [ 430.189931][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 430.196067][ T31] do_filp_open+0x284/0x4e0 [ 430.201146][ T31] ? __pfx_do_filp_open+0x10/0x10 [ 430.206244][ T31] ? do_raw_spin_lock+0x151/0x370 [ 430.212198][ T31] do_sys_openat2+0x12b/0x1d0 [ 430.216946][ T31] ? __pfx_do_sys_openat2+0x10/0x10 [ 430.222823][ T31] ? lockdep_hardirqs_on+0x9d/0x150 [ 430.229251][ T31] ? _raw_spin_unlock_irq+0x2e/0x50 [ 430.234521][ T31] ? ptrace_notify+0x282/0x390 [ 430.240333][ T31] __x64_sys_open+0x226/0x280 [ 430.245163][ T31] ? __pfx___x64_sys_open+0x10/0x10 [ 430.251269][ T31] do_syscall_64+0xf3/0x210 [ 430.255824][ T31] ? clear_bhb_loop+0x45/0xa0 [ 430.261194][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 430.267147][ T31] RIP: 0033:0x7f440d751b19 [ 430.272188][ T31] RSP: 002b:00007ffc957c9428 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 430.281213][ T31] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f440d751b19 [ 430.289623][ T31] RDX: 0000000000000100 RSI: 000000000014927e RDI: 0000200000000140 [ 430.298006][ T31] RBP: 00007f440d7d45f0 R08: 000000000000f624 R09: 000055556789a4c0 [ 430.306110][ T31] R10: 00007ffc957c92f0 R11: 0000000000000246 R12: 00007ffc957c9450 [ 430.314802][ T31] R13: 00007ffc957c9678 R14: 431bde82d7b634db R15: 00007f440d79a03b [ 430.323247][ T31] [ 430.326394][ T31] [ 430.326394][ T31] Showing all locks held in the system: [ 430.335083][ T31] 1 lock held by khungtaskd/31: [ 430.341313][ T31] #0: ffffffff8ed3df20 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x30/0x180 [ 430.351744][ T31] 2 locks held by getty/5582: [ 430.356619][ T31] #0: ffff88814d4910a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 430.367502][ T31] #1: ffffc9000334b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x5bb/0x1700 [ 430.378283][ T31] 5 locks held by syz-executor295/5845: [ 430.383870][ T31] #0: ffff88807e204420 (sb_writers#8){.+.+}-{0:0}, at: mnt_want_write+0x3f/0x90 [ 430.393636][ T31] #1: ffff888073678148 (&sb->s_type->i_mutex_key#14){+.+.}-{4:4}, at: do_truncate+0x20e/0x310 [ 430.405021][ T31] #2: ffff888074880a70 (&c->snapshot_create_lock){.+.+}-{4:4}, at: bch2_truncate+0x1ae/0x340 [ 430.415696][ T31] #3: ffff888074884228 (&c->btree_trans_barrier){.+.+}-{0:0}, at: __bch2_trans_get+0x7ed/0xd40 [ 430.426633][ T31] #4: ffff8880748a6590 (&c->gc_lock){.+.+}-{4:4}, at: bch2_btree_update_start+0x68a/0x16c0 [ 430.437179][ T31] 3 locks held by bch-copygc/loop/5855: [ 430.443183][ T31] [ 430.445544][ T31] ============================================= [ 430.445544][ T31] [ 430.455084][ T31] NMI backtrace for cpu 0 [ 430.455112][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(full) [ 430.455138][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 430.455150][ T31] Call Trace: [ 430.455159][ T31] [ 430.455167][ T31] dump_stack_lvl+0x241/0x360 [ 430.455203][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 430.455231][ T31] ? __pfx__printk+0x10/0x10 [ 430.455271][ T31] nmi_cpu_backtrace+0x4ab/0x4e0 [ 430.455308][ T31] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 430.455335][ T31] ? _printk+0xd5/0x120 [ 430.455361][ T31] ? __wake_up_klogd+0xcc/0x110 [ 430.455386][ T31] ? __pfx__printk+0x10/0x10 [ 430.455416][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 430.455448][ T31] nmi_trigger_cpumask_backtrace+0x198/0x320 [ 430.455482][ T31] watchdog+0x1058/0x10a0 [ 430.455509][ T31] ? watchdog+0x1ea/0x10a0 [ 430.455540][ T31] ? __pfx_watchdog+0x10/0x10 [ 430.455564][ T31] kthread+0x7b7/0x940 [ 430.455584][ T31] ? __pfx_watchdog+0x10/0x10 [ 430.455610][ T31] ? __pfx_kthread+0x10/0x10 [ 430.455629][ T31] ? __pfx_kthread+0x10/0x10 [ 430.455650][ T31] ? __pfx_kthread+0x10/0x10 [ 430.455671][ T31] ? __pfx_kthread+0x10/0x10 [ 430.455692][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 430.455721][ T31] ? lockdep_hardirqs_on+0x9d/0x150 [ 430.455740][ T31] ? __pfx_kthread+0x10/0x10 [ 430.455763][ T31] ret_from_fork+0x4b/0x80 [ 430.455780][ T31] ? __pfx_kthread+0x10/0x10 [ 430.455802][ T31] ret_from_fork_asm+0x1a/0x30 [ 430.455856][ T31] [ 430.455864][ T31] Sending NMI from CPU 0 to CPUs 1: [ 430.618283][ C1] NMI backtrace for cpu 1 [ 430.618349][ C1] CPU: 1 UID: 0 PID: 1164 Comm: kworker/u8:6 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(full) [ 430.618371][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 430.618383][ C1] Workqueue: events_unbound toggle_allocation_gate [ 430.618409][ C1] RIP: 0010:walk_to_pmd+0xd7/0x240 [ 430.618429][ C1] Code: 8b 03 48 21 d0 4c 89 fb 48 c1 eb 1b 81 e3 f8 0f 00 00 48 09 c3 48 01 cb 0f 84 d9 00 00 00 49 89 dc 49 c1 ec 03 43 80 3c 2c 00 <74> 08 48 89 df e8 9f 35 1b 00 48 8b 2b 48 89 ee 48 83 e6 9f 31 ff [ 430.618442][ C1] RSP: 0018:ffffc90003e7f638 EFLAGS: 00000246 [ 430.618456][ C1] RAX: 000000001b06f000 RBX: ffff88801b06f550 RCX: ffff888000000000 [ 430.618469][ C1] RDX: 000ffffffffff000 RSI: 800000001b06f007 RDI: 0000000000000000 [ 430.618487][ C1] RBP: 800000001b06f007 R08: ffffffff820f34ca R09: 1ffffd4000010f80 [ 430.618499][ C1] R10: dffffc0000000000 R11: fffff94000010f81 R12: 1ffff1100360deaa [ 430.618511][ C1] R13: dffffc0000000000 R14: ffff88801b070000 R15: 00002aaaaaaab000 [ 430.618524][ C1] FS: 0000000000000000(0000) GS:ffff8881250cf000(0000) knlGS:0000000000000000 [ 430.618537][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 430.618548][ C1] CR2: 00007ffdef7b0f1c CR3: 000000000eb38000 CR4: 00000000003526f0 [ 430.618563][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 430.618572][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 430.618582][ C1] Call Trace: [ 430.618590][ C1] [ 430.618599][ C1] __get_locked_pte+0x25/0xc0 [ 430.618617][ C1] ? __kvmalloc_node_noprof+0x183/0x5a0 [ 430.618639][ C1] __text_poke+0x2ec/0xe20 [ 430.618661][ C1] ? __kmalloc_cache_node_noprof+0x8d/0x3c0 [ 430.618684][ C1] ? __pfx_text_poke_memcpy+0x10/0x10 [ 430.618706][ C1] ? __pfx___text_poke+0x10/0x10 [ 430.618726][ C1] ? perf_event_text_poke+0x262/0x330 [ 430.618753][ C1] ? __pfx_preempt_schedule+0x10/0x10 [ 430.618779][ C1] ? __pfx_smp_call_function_many_cond+0x10/0x10 [ 430.618805][ C1] ? __pfx_perf_event_text_poke+0x10/0x10 [ 430.618840][ C1] text_poke_bp_batch+0x8cf/0xb30 [ 430.618867][ C1] ? kmem_cache_alloc_bulk_noprof+0x15b/0x7c0 [ 430.618890][ C1] ? __pfx_text_poke_bp_batch+0x10/0x10 [ 430.618915][ C1] ? arch_jump_label_transform_queue+0x9b/0x100 [ 430.618946][ C1] text_poke_finish+0x30/0x50 [ 430.618966][ C1] arch_jump_label_transform_apply+0x1c/0x30 [ 430.618991][ C1] static_key_disable_cpuslocked+0xd2/0x1c0 [ 430.619015][ C1] static_key_disable+0x1a/0x20 [ 430.619036][ C1] toggle_allocation_gate+0x1b1/0x250 [ 430.619056][ C1] ? __pfx_toggle_allocation_gate+0x10/0x10 [ 430.619076][ C1] ? __pfx_autoremove_wake_function+0x10/0x10 [ 430.619102][ C1] ? process_scheduled_works+0x9cb/0x18e0 [ 430.619127][ C1] process_scheduled_works+0xac3/0x18e0 [ 430.619166][ C1] ? __pfx_process_scheduled_works+0x10/0x10 [ 430.619195][ C1] ? assign_work+0x367/0x3d0 [ 430.619221][ C1] worker_thread+0x870/0xd50 [ 430.619254][ C1] ? __kthread_parkme+0x1a8/0x200 [ 430.619281][ C1] ? __pfx_worker_thread+0x10/0x10 [ 430.619305][ C1] kthread+0x7b7/0x940 [ 430.619323][ C1] ? __pfx_worker_thread+0x10/0x10 [ 430.619348][ C1] ? __pfx_kthread+0x10/0x10 [ 430.619364][ C1] ? __pfx_kthread+0x10/0x10 [ 430.619380][ C1] ? __pfx_kthread+0x10/0x10 [ 430.619397][ C1] ? __pfx_kthread+0x10/0x10 [ 430.619413][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 430.619437][ C1] ? lockdep_hardirqs_on+0x9d/0x150 [ 430.619452][ C1] ? __pfx_kthread+0x10/0x10 [ 430.619469][ C1] ret_from_fork+0x4b/0x80 [ 430.619490][ C1] ? __pfx_kthread+0x10/0x10 [ 430.619507][ C1] ret_from_fork_asm+0x1a/0x30 [ 430.619540][ C1] [ 430.619548][ C1] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.266 msecs [ 430.620290][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 430.996147][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(full) [ 431.007957][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 431.018019][ T31] Call Trace: [ 431.021305][ T31] [ 431.024767][ T31] dump_stack_lvl+0x241/0x360 [ 431.029476][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 431.034685][ T31] ? __pfx__printk+0x10/0x10 [ 431.039379][ T31] ? vscnprintf+0x5d/0x90 [ 431.043833][ T31] panic+0x349/0x880 [ 431.047742][ T31] ? __pfx_preempt_schedule+0x10/0x10 [ 431.053129][ T31] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 431.059294][ T31] ? __pfx_panic+0x10/0x10 [ 431.063718][ T31] ? __pfx_delay_tsc+0x10/0x10 [ 431.068503][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 431.073882][ T31] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 431.080046][ T31] ? nmi_trigger_cpumask_backtrace+0x2d4/0x320 [ 431.086220][ T31] ? nmi_trigger_cpumask_backtrace+0x2d9/0x320 [ 431.092387][ T31] watchdog+0x1097/0x10a0 [ 431.096742][ T31] ? watchdog+0x1ea/0x10a0 [ 431.101283][ T31] ? __pfx_watchdog+0x10/0x10 [ 431.105985][ T31] kthread+0x7b7/0x940 [ 431.110162][ T31] ? __pfx_watchdog+0x10/0x10 [ 431.114855][ T31] ? __pfx_kthread+0x10/0x10 [ 431.119482][ T31] ? __pfx_kthread+0x10/0x10 [ 431.124091][ T31] ? __pfx_kthread+0x10/0x10 [ 431.128690][ T31] ? __pfx_kthread+0x10/0x10 [ 431.133287][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 431.138499][ T31] ? lockdep_hardirqs_on+0x9d/0x150 [ 431.143706][ T31] ? __pfx_kthread+0x10/0x10 [ 431.148310][ T31] ret_from_fork+0x4b/0x80 [ 431.152733][ T31] ? __pfx_kthread+0x10/0x10 [ 431.157336][ T31] ret_from_fork_asm+0x1a/0x30 [ 431.162137][ T31] [ 431.165493][ T31] Kernel Offset: disabled [ 431.169829][ T31] Rebooting in 86400 seconds..