./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1710549226 <...> Warning: Permanently added '10.128.1.9' (ED25519) to the list of known hosts. execve("./syz-executor1710549226", ["./syz-executor1710549226"], 0x7fff1e00a310 /* 10 vars */) = 0 brk(NULL) = 0x55555df50000 brk(0x55555df50d00) = 0x55555df50d00 arch_prctl(ARCH_SET_FS, 0x55555df50380) = 0 set_tid_address(0x55555df50650) = 5834 set_robust_list(0x55555df50660, 24) = 0 rseq(0x55555df50ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1710549226", 4096) = 28 getrandom("\x8a\x24\xc1\xbe\xb8\x22\x92\x76", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55555df50d00 brk(0x55555df71d00) = 0x55555df71d00 brk(0x55555df72000) = 0x55555df72000 mprotect(0x7f38fa6ce000, 16384, PROT_READ) = 0 mmap(0x3ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x3ffffffff000 mmap(0x400000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x400000000000 mmap(0x400001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x400001000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5835 attached [pid 5835] set_robust_list(0x55555df50660, 24 [pid 5834] <... clone resumed>, child_tidptr=0x55555df50650) = 5835 [pid 5834] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5835] <... set_robust_list resumed>) = 0 [pid 5835] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5836 attached [pid 5834] <... clone resumed>, child_tidptr=0x55555df50650) = 5836 [pid 5836] set_robust_list(0x55555df50660, 24 [pid 5834] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5837 attached [pid 5836] <... set_robust_list resumed>) = 0 ./strace-static-x86_64: Process 5838 attached [pid 5837] set_robust_list(0x55555df50660, 24 [pid 5836] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5834] <... clone resumed>, child_tidptr=0x55555df50650) = 5838 [pid 5834] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5838] set_robust_list(0x55555df50660, 24 [pid 5837] <... set_robust_list resumed>) = 0 [pid 5838] <... set_robust_list resumed>) = 0 [pid 5837] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5835] <... clone resumed>, child_tidptr=0x55555df50650) = 5837 [ 130.421059][ T30] audit: type=1400 audit(1742246295.467:88): avc: denied { execmem } for pid=5834 comm="syz-executor171" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [pid 5834] <... clone resumed>, child_tidptr=0x55555df50650) = 5839 ./strace-static-x86_64: Process 5840 attached ./strace-static-x86_64: Process 5839 attached [pid 5838] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5837] <... prctl resumed>) = 0 [pid 5834] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5840] set_robust_list(0x55555df50660, 24 [pid 5839] set_robust_list(0x55555df50660, 24 [pid 5840] <... set_robust_list resumed>) = 0 [pid 5837] setpgid(0, 0./strace-static-x86_64: Process 5841 attached [pid 5836] <... clone resumed>, child_tidptr=0x55555df50650) = 5840 [pid 5839] <... set_robust_list resumed>) = 0 [pid 5839] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5837] <... setpgid resumed>) = 0 ./strace-static-x86_64: Process 5842 attached [pid 5840] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5837] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5841] set_robust_list(0x55555df50660, 24./strace-static-x86_64: Process 5843 attached ) = 0 [pid 5840] <... prctl resumed>) = 0 [pid 5838] <... clone resumed>, child_tidptr=0x55555df50650) = 5842 [pid 5834] <... clone resumed>, child_tidptr=0x55555df50650) = 5841 [pid 5840] setpgid(0, 0 [pid 5843] set_robust_list(0x55555df50660, 24 [pid 5842] set_robust_list(0x55555df50660, 24 [pid 5841] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5840] <... setpgid resumed>) = 0 [pid 5843] <... set_robust_list resumed>) = 0 [pid 5842] <... set_robust_list resumed>) = 0 [pid 5840] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5843] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5842] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5839] <... clone resumed>, child_tidptr=0x55555df50650) = 5843 ./strace-static-x86_64: Process 5844 attached [pid 5840] <... openat resumed>) = 3 [pid 5837] <... openat resumed>) = 3 [pid 5844] set_robust_list(0x55555df50660, 24 [pid 5843] <... prctl resumed>) = 0 [pid 5842] <... prctl resumed>) = 0 [pid 5844] <... set_robust_list resumed>) = 0 [pid 5843] setpgid(0, 0 [pid 5842] setpgid(0, 0 [pid 5841] <... clone resumed>, child_tidptr=0x55555df50650) = 5844 [pid 5840] write(3, "1000", 4 [pid 5844] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5843] <... setpgid resumed>) = 0 [pid 5842] <... setpgid resumed>) = 0 [pid 5840] <... write resumed>) = 4 [pid 5837] write(3, "1000", 4 [pid 5844] <... prctl resumed>) = 0 [pid 5843] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5842] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5840] close(3 [pid 5837] <... write resumed>) = 4 [pid 5844] setpgid(0, 0 [pid 5843] <... openat resumed>) = 3 [pid 5842] <... openat resumed>) = 3 [pid 5840] <... close resumed>) = 0 [pid 5837] close(3 [pid 5844] <... setpgid resumed>) = 0 [pid 5843] write(3, "1000", 4 [pid 5842] write(3, "1000", 4 [pid 5840] write(1, "executing program\n", 18 [pid 5837] <... close resumed>) = 0 executing program [pid 5837] write(1, "executing program\n", 18) = 18 [pid 5837] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECTexecuting program executing program [pid 5844] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5843] <... write resumed>) = 4 [pid 5842] <... write resumed>) = 4 [pid 5840] <... write resumed>) = 18 [pid 5843] close(3 [pid 5842] close(3 [pid 5840] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT [pid 5843] <... close resumed>) = 0 [pid 5842] <... close resumed>) = 0 [pid 5840] <... openat resumed>) = 3 [pid 5843] write(1, "executing program\n", 18 [pid 5837] <... openat resumed>) = 3 [pid 5844] <... openat resumed>) = 3 [pid 5843] <... write resumed>) = 18 [pid 5842] write(1, "executing program\n", 18executing program [pid 5840] dup(3 [pid 5844] write(3, "1000", 4 [pid 5843] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT [pid 5842] <... write resumed>) = 18 [pid 5837] dup(3 [pid 5844] <... write resumed>) = 4 [pid 5843] <... openat resumed>) = 3 [pid 5842] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT [pid 5840] <... dup resumed>) = 4 [pid 5844] close(3 [pid 5842] <... openat resumed>) = 3 [pid 5837] <... dup resumed>) = 4 [pid 5844] <... close resumed>) = 0 [pid 5843] dup(3 [pid 5842] dup(3 [pid 5840] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 [pid 5837] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 [pid 5844] write(1, "executing program\n", 18 [pid 5843] <... dup resumed>) = 4 [pid 5842] <... dup resumed>) = 4 executing program [pid 5844] <... write resumed>) = 18 [pid 5842] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 [pid 5843] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 [pid 5844] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT) = 3 [pid 5844] dup(3) = 4 [ 130.507634][ T30] audit: type=1400 audit(1742246295.557:89): avc: denied { read write } for pid=5837 comm="syz-executor171" name="nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 130.531537][ T30] audit: type=1400 audit(1742246295.557:90): avc: denied { open } for pid=5840 comm="syz-executor171" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 130.556212][ T30] audit: type=1400 audit(1742246295.557:91): avc: denied { open } for pid=5837 comm="syz-executor171" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [pid 5844] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 [pid 5835] kill(-5837, SIGKILL) = 0 [pid 5835] kill(5837, SIGKILL) = 0 [pid 5839] kill(-5843, SIGKILL) = 0 [pid 5836] kill(-5840, SIGKILL [pid 5839] kill(5843, SIGKILL [pid 5838] kill(-5842, SIGKILL [pid 5836] <... kill resumed>) = 0 [pid 5838] <... kill resumed>) = 0 [pid 5838] kill(5842, SIGKILL [pid 5836] kill(5840, SIGKILL [pid 5841] kill(-5844, SIGKILL [pid 5838] <... kill resumed>) = 0 [pid 5841] <... kill resumed>) = 0 [pid 5836] <... kill resumed>) = 0 [pid 5841] kill(5844, SIGKILL) = 0 [pid 5839] <... kill resumed>) = 0 [pid 5839] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5839] newfstatat(3, "", [pid 5838] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5839] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5838] <... openat resumed>) = 3 [pid 5841] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5838] newfstatat(3, "", [pid 5839] getdents64(3, 0x55555df516f0 /* 2 entries */, 32768) = 48 [pid 5839] getdents64(3, 0x55555df516f0 /* 0 entries */, 32768) = 0 [pid 5839] close(3) = 0 [pid 5835] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5841] <... openat resumed>) = 3 [pid 5838] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5841] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5838] getdents64(3, [pid 5835] <... openat resumed>) = 3 [pid 5841] getdents64(3, [pid 5838] <... getdents64 resumed>0x55555df516f0 /* 2 entries */, 32768) = 48 [pid 5841] <... getdents64 resumed>0x55555df516f0 /* 2 entries */, 32768) = 48 [pid 5838] getdents64(3, [pid 5835] newfstatat(3, "", [pid 5841] getdents64(3, [pid 5838] <... getdents64 resumed>0x55555df516f0 /* 0 entries */, 32768) = 0 [pid 5841] <... getdents64 resumed>0x55555df516f0 /* 0 entries */, 32768) = 0 [pid 5838] close(3 [pid 5835] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5841] close(3 [pid 5838] <... close resumed>) = 0 [pid 5836] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5835] getdents64(3, [pid 5841] <... close resumed>) = 0 [pid 5836] <... openat resumed>) = 3 [pid 5836] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5835] <... getdents64 resumed>0x55555df516f0 /* 2 entries */, 32768) = 48 [pid 5835] getdents64(3, 0x55555df516f0 /* 0 entries */, 32768) = 0 [pid 5836] getdents64(3, [pid 5835] close(3 [pid 5836] <... getdents64 resumed>0x55555df516f0 /* 2 entries */, 32768) = 48 [pid 5836] getdents64(3, [pid 5835] <... close resumed>) = 0 [pid 5836] <... getdents64 resumed>0x55555df516f0 /* 0 entries */, 32768) = 0 [pid 5836] close(3) = 0 [pid 5840] <... fallocate resumed>) = ? [pid 5840] +++ killed by SIGKILL +++ [pid 5836] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5840, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=8675 /* 86.75 s */} --- [pid 5836] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5851 attached [pid 5851] set_robust_list(0x55555df50660, 24) = 0 [pid 5836] <... clone resumed>, child_tidptr=0x55555df50650) = 5851 [pid 5851] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5851] setpgid(0, 0) = 0 [pid 5851] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 executing program [pid 5851] write(3, "1000", 4) = 4 [pid 5851] close(3) = 0 [pid 5851] write(1, "executing program\n", 18) = 18 [pid 5851] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT) = 3 [pid 5851] dup(3) = 4 [pid 5851] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 [pid 5836] kill(-5851, SIGKILL) = 0 [pid 5836] kill(5851, SIGKILL) = 0 [pid 5836] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5836] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5836] getdents64(3, 0x55555df516f0 /* 2 entries */, 32768) = 48 [pid 5836] getdents64(3, 0x55555df516f0 /* 0 entries */, 32768) = 0 [pid 5836] close(3) = 0 [ 286.944283][ T31] INFO: task syz-executor171:5842 blocked for more than 143 seconds. [ 286.954209][ T31] Not tainted 6.14.0-rc7-syzkaller #0 [ 286.960751][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.970264][ T31] task:syz-executor171 state:D stack:27632 pid:5842 tgid:5842 ppid:5838 task_flags:0x400040 flags:0x00004006 [ 286.983010][ T31] Call Trace: [ 286.986415][ T31] [ 286.989371][ T31] __schedule+0xf43/0x5890 [ 286.994478][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 286.999731][ T31] ? mark_lock+0xb5/0xc60 [ 287.004788][ T31] ? __pfx_mark_lock+0x10/0x10 [ 287.010333][ T31] ? __pfx___schedule+0x10/0x10 [ 287.015942][ T31] ? schedule+0x298/0x350 [ 287.020534][ T31] ? __pfx_lock_release+0x10/0x10 [ 287.025692][ T31] ? lock_acquire+0x2f/0xb0 [ 287.030496][ T31] ? schedule+0x1fd/0x350 [ 287.035165][ T31] schedule+0xe7/0x350 [ 287.039561][ T31] schedule_preempt_disabled+0x13/0x30 [ 287.045428][ T31] rwsem_down_write_slowpath+0x539/0x12a0 [ 287.051211][ T31] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 287.057434][ T31] ? blkdev_fallocate+0x1d1/0x380 [ 287.076919][ T31] ? lock_acquire+0x2f/0xb0 [ 287.081634][ T31] ? blkdev_fallocate+0x1d1/0x380 [ 287.086762][ T31] down_write+0x1d8/0x200 [ 287.106293][ T31] ? __pfx_down_write+0x10/0x10 [ 287.111316][ T31] ? inode_security+0x101/0x130 [ 287.116617][ T31] blkdev_fallocate+0x1d1/0x380 [ 287.122253][ T31] ? __pfx_blkdev_fallocate+0x10/0x10 [ 287.128608][ T31] vfs_fallocate+0x60d/0x10d0 [ 287.134429][ T31] ? __pfx_vfs_fallocate+0x10/0x10 [ 287.140556][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.146642][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 287.152680][ T31] __x64_sys_fallocate+0xd5/0x150 [ 287.158639][ T31] do_syscall_64+0xcd/0x250 [ 287.164240][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.170219][ T31] RIP: 0033:0x7f38fa65bb29 [ 287.174749][ T31] RSP: 002b:00007fff4a1a31c8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.183308][ T31] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f38fa65bb29 [ 287.191989][ T31] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.200866][ T31] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.209667][ T31] R10: 0000100001002000 R11: 0000000000000246 R12: 0000000000000001 [ 287.218522][ T31] R13: 00007fff4a1a33e8 R14: 00007fff4a1a31f0 R15: 00007fff4a1a31e0 [ 287.227296][ T31] [ 287.231080][ T31] INFO: task syz-executor171:5843 blocked for more than 143 seconds. [ 287.241655][ T31] Not tainted 6.14.0-rc7-syzkaller #0 [ 287.247674][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.256440][ T31] task:syz-executor171 state:D stack:28368 pid:5843 tgid:5843 ppid:5839 task_flags:0x400040 flags:0x00004006 [ 287.268475][ T31] Call Trace: [ 287.272463][ T31] [ 287.276242][ T31] __schedule+0xf43/0x5890 [ 287.281410][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 287.287423][ T31] ? mark_lock+0xb5/0xc60 [ 287.292518][ T31] ? __pfx_mark_lock+0x10/0x10 [ 287.298608][ T31] ? __pfx___schedule+0x10/0x10 [ 287.304347][ T31] ? schedule+0x298/0x350 [ 287.309313][ T31] ? __pfx_lock_release+0x10/0x10 [ 287.314406][ T31] ? lock_acquire+0x2f/0xb0 [ 287.318930][ T31] ? schedule+0x1fd/0x350 [ 287.323331][ T31] schedule+0xe7/0x350 [ 287.327424][ T31] schedule_preempt_disabled+0x13/0x30 [ 287.332937][ T31] rwsem_down_write_slowpath+0x539/0x12a0 [ 287.339624][ T31] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 287.346712][ T31] ? blkdev_fallocate+0x1d1/0x380 [ 287.352651][ T31] ? lock_acquire+0x2f/0xb0 [ 287.358021][ T31] ? blkdev_fallocate+0x1d1/0x380 [ 287.363890][ T31] down_write+0x1d8/0x200 [ 287.369037][ T31] ? __pfx_down_write+0x10/0x10 [ 287.374651][ T31] ? inode_security+0x101/0x130 [ 287.380285][ T31] blkdev_fallocate+0x1d1/0x380 [ 287.385245][ T31] ? __pfx_blkdev_fallocate+0x10/0x10 [ 287.390653][ T31] vfs_fallocate+0x60d/0x10d0 [ 287.396344][ T31] ? __pfx_vfs_fallocate+0x10/0x10 [ 287.401479][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.406761][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 287.411998][ T31] __x64_sys_fallocate+0xd5/0x150 [ 287.417960][ T31] do_syscall_64+0xcd/0x250 [ 287.423636][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.430255][ T31] RIP: 0033:0x7f38fa65bb29 [ 287.435463][ T31] RSP: 002b:00007fff4a1a31c8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.444723][ T31] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f38fa65bb29 [ 287.452851][ T31] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.461652][ T31] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.470442][ T31] R10: 0000100001002000 R11: 0000000000000246 R12: 0000000000000001 [ 287.479418][ T31] R13: 00007fff4a1a33e8 R14: 00007fff4a1a31f0 R15: 00007fff4a1a31e0 [ 287.487611][ T31] [ 287.490674][ T31] INFO: task syz-executor171:5844 blocked for more than 143 seconds. [ 287.499072][ T31] Not tainted 6.14.0-rc7-syzkaller #0 [ 287.505137][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.513886][ T31] task:syz-executor171 state:D stack:27440 pid:5844 tgid:5844 ppid:5841 task_flags:0x400040 flags:0x00004006 [ 287.525913][ T31] Call Trace: [ 287.529205][ T31] [ 287.532185][ T31] __schedule+0xf43/0x5890 [ 287.536639][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 287.542770][ T31] ? mark_lock+0xb5/0xc60 [ 287.547159][ T31] ? __pfx_mark_lock+0x10/0x10 [ 287.552717][ T31] ? __pfx___schedule+0x10/0x10 [ 287.557600][ T31] ? schedule+0x298/0x350 [ 287.562677][ T31] ? __pfx_lock_release+0x10/0x10 [ 287.567764][ T31] ? lock_acquire+0x2f/0xb0 [ 287.572357][ T31] ? schedule+0x1fd/0x350 [ 287.577423][ T31] schedule+0xe7/0x350 [ 287.582471][ T31] schedule_preempt_disabled+0x13/0x30 [ 287.587985][ T31] rwsem_down_write_slowpath+0x539/0x12a0 [ 287.593793][ T31] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 287.600774][ T31] ? blkdev_fallocate+0x1d1/0x380 [ 287.606545][ T31] ? lock_acquire+0x2f/0xb0 [ 287.611715][ T31] ? blkdev_fallocate+0x1d1/0x380 [ 287.616831][ T31] down_write+0x1d8/0x200 [ 287.621215][ T31] ? __pfx_down_write+0x10/0x10 [ 287.626241][ T31] ? inode_security+0x101/0x130 [ 287.631142][ T31] blkdev_fallocate+0x1d1/0x380 [ 287.637205][ T31] ? __pfx_blkdev_fallocate+0x10/0x10 [ 287.643366][ T31] vfs_fallocate+0x60d/0x10d0 [ 287.648954][ T31] ? __pfx_vfs_fallocate+0x10/0x10 [ 287.655022][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.661027][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 287.667198][ T31] __x64_sys_fallocate+0xd5/0x150 [ 287.673010][ T31] do_syscall_64+0xcd/0x250 [ 287.678799][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.684913][ T31] RIP: 0033:0x7f38fa65bb29 [ 287.689381][ T31] RSP: 002b:00007fff4a1a31c8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.697963][ T31] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f38fa65bb29 [ 287.706984][ T31] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.715874][ T31] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.724583][ T31] R10: 0000100001002000 R11: 0000000000000246 R12: 0000000000000001 [ 287.733232][ T31] R13: 00007fff4a1a33e8 R14: 00007fff4a1a31f0 R15: 00007fff4a1a31e0 [ 287.742102][ T31] [ 287.745880][ T31] [ 287.745880][ T31] Showing all locks held in the system: [ 287.775123][ T31] 1 lock held by khungtaskd/31: [ 287.780678][ T31] #0: ffffffff8e1bd140 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x7f/0x390 [ 287.791068][ T31] 1 lock held by klogd/5182: [ 287.795733][ T31] 2 locks held by getty/5588: [ 287.800422][ T31] #0: ffff88803620a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 287.810359][ T31] #1: ffffc900032eb2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0xfba/0x1480 [ 287.820587][ T31] 1 lock held by syz-executor171/5837: [ 287.826167][ T31] 1 lock held by syz-executor171/5842: [ 287.832296][ T31] #0: ffff888148c8e540 (mapping.invalidate_lock#2){++++}-{4:4}, at: blkdev_fallocate+0x1d1/0x380 [ 287.844397][ T31] 1 lock held by syz-executor171/5843: [ 287.851472][ T31] #0: ffff888148c8e540 (mapping.invalidate_lock#2){++++}-{4:4}, at: blkdev_fallocate+0x1d1/0x380 [ 287.862875][ T31] 1 lock held by syz-executor171/5844: [ 287.869081][ T31] #0: ffff888148c8e540 (mapping.invalidate_lock#2){++++}-{4:4}, at: blkdev_fallocate+0x1d1/0x380 [ 287.879902][ T31] 1 lock held by syz-executor171/5851: [ 287.886035][ T31] #0: ffff888148c8e540 (mapping.invalidate_lock#2){++++}-{4:4}, at: blkdev_fallocate+0x1d1/0x380 [ 287.897460][ T31] [ 287.899798][ T31] ============================================= [ 287.899798][ T31] [ 287.909394][ T31] NMI backtrace for cpu 0 [ 287.909409][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.14.0-rc7-syzkaller #0 [ 287.909427][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 287.909438][ T31] Call Trace: [ 287.909443][ T31] [ 287.909451][ T31] dump_stack_lvl+0x116/0x1f0 [ 287.909479][ T31] nmi_cpu_backtrace+0x27b/0x390 [ 287.909496][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 287.909520][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 287.909540][ T31] watchdog+0xf62/0x12b0 [ 287.909570][ T31] ? __pfx_watchdog+0x10/0x10 [ 287.909594][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 287.909618][ T31] ? __kthread_parkme+0x148/0x220 [ 287.909637][ T31] ? __pfx_watchdog+0x10/0x10 [ 287.909662][ T31] kthread+0x3af/0x750 [ 287.909683][ T31] ? __pfx_kthread+0x10/0x10 [ 287.909707][ T31] ? __pfx_kthread+0x10/0x10 [ 287.909727][ T31] ret_from_fork+0x45/0x80 [ 287.909750][ T31] ? __pfx_kthread+0x10/0x10 [ 287.909771][ T31] ret_from_fork_asm+0x1a/0x30 [ 287.909800][ T31] [ 287.909806][ T31] Sending NMI from CPU 0 to CPUs 1: [ 288.020728][ C1] NMI backtrace for cpu 1 [ 288.020743][ C1] CPU: 1 UID: 0 PID: 5182 Comm: klogd Not tainted 6.14.0-rc7-syzkaller #0 [ 288.020758][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 288.020765][ C1] RIP: 0010:do_raw_spin_lock+0x8a/0x2c0 [ 288.020785][ C1] Code: 48 89 54 24 60 31 d2 48 89 fa 48 c1 ea 03 0f b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 e5 01 00 00 8b 43 04 <3d> ad 4e ad de 0f 85 81 01 00 00 4c 8d 6b 10 48 b8 00 00 00 00 00 [ 288.020797][ C1] RSP: 0018:ffffc90003b6f878 EFLAGS: 00000046 [ 288.020810][ C1] RAX: 00000000dead4ead RBX: ffffffff9aa4fa68 RCX: ffffffff8195c82e [ 288.020818][ C1] RDX: 0000000000000000 RSI: ffffffff8b6cfee0 RDI: ffffffff9aa4fa6c [ 288.020826][ C1] RBP: 1ffff9200076df10 R08: 0000000000000000 R09: fffffbfff2dd8d98 [ 288.020833][ C1] R10: ffffffff96ec6cc7 R11: 0000000000000001 R12: ffffffff9aa4fa60 [ 288.020841][ C1] R13: 00000000000002a0 R14: 0000000000000000 R15: ffff8880504b0000 [ 288.020849][ C1] FS: 00007fa1dfb18500(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 288.020863][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 288.020871][ C1] CR2: 00007fff4a1a2f98 CR3: 0000000034cee000 CR4: 00000000003526f0 [ 288.020879][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 288.020887][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 288.020894][ C1] Call Trace: [ 288.020899][ C1] [ 288.020904][ C1] ? nmi_cpu_backtrace+0x1d8/0x390 [ 288.020920][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 288.020937][ C1] ? nmi_handle+0x1ac/0x5d0 [ 288.020955][ C1] ? do_raw_spin_lock+0x8a/0x2c0 [ 288.020966][ C1] ? default_do_nmi+0x6a/0x160 [ 288.020979][ C1] ? exc_nmi+0x170/0x1e0 [ 288.020989][ C1] ? end_repeat_nmi+0xf/0x53 [ 288.021009][ C1] ? hlock_class+0x4e/0x130 [ 288.021023][ C1] ? do_raw_spin_lock+0x8a/0x2c0 [ 288.021035][ C1] ? do_raw_spin_lock+0x8a/0x2c0 [ 288.021046][ C1] ? do_raw_spin_lock+0x8a/0x2c0 [ 288.021057][ C1] [ 288.021061][ C1] [ 288.021065][ C1] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 288.021076][ C1] ? debug_check_no_obj_freed+0x1cf/0x600 [ 288.021094][ C1] ? lock_acquire+0x2f/0xb0 [ 288.021109][ C1] ? debug_check_no_obj_freed+0x1cf/0x600 [ 288.021124][ C1] _raw_spin_lock_irqsave+0x42/0x60 [ 288.021137][ C1] ? debug_check_no_obj_freed+0x1cf/0x600 [ 288.021152][ C1] debug_check_no_obj_freed+0x1cf/0x600 [ 288.021167][ C1] ? page_ext_put+0x3e/0xd0 [ 288.021181][ C1] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 288.021198][ C1] ? page_ext_put+0x48/0xd0 [ 288.021211][ C1] free_frozen_pages+0x283/0xfb0 [ 288.021225][ C1] __put_partials+0x14c/0x170 [ 288.021245][ C1] qlist_free_all+0x4e/0x120 [ 288.021264][ C1] kasan_quarantine_reduce+0x195/0x1e0 [ 288.021282][ C1] __kasan_slab_alloc+0x69/0x90 [ 288.021295][ C1] __kmalloc_cache_noprof+0x243/0x410 [ 288.021314][ C1] syslog_print+0xf9/0x5d0 [ 288.021332][ C1] ? __pfx_syslog_print+0x10/0x10 [ 288.021348][ C1] ? avc_has_perm_noaudit+0x143/0x3a0 [ 288.021363][ C1] ? avc_has_perm+0x11b/0x1c0 [ 288.021380][ C1] do_syslog+0x3e1/0x6c0 [ 288.021391][ C1] ? __pfx_do_syslog+0x10/0x10 [ 288.021405][ C1] ? rcu_is_watching+0x12/0xc0 [ 288.021420][ C1] __x64_sys_syslog+0x74/0xb0 [ 288.021432][ C1] ? lockdep_hardirqs_on+0x7c/0x110 [ 288.021450][ C1] do_syscall_64+0xcd/0x250 [ 288.021466][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 288.021481][ C1] RIP: 0033:0x7fa1dfc79fa7 [ 288.021491][ C1] Code: 73 01 c3 48 8b 0d 81 ce 0c 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 67 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 51 ce 0c 00 f7 d8 64 89 01 48 [ 288.021502][ C1] RSP: 002b:00007ffdfbc93fa8 EFLAGS: 00000206 ORIG_RAX: 0000000000000067 [ 288.021514][ C1] RAX: ffffffffffffffda RBX: 00007fa1dfe184a0 RCX: 00007fa1dfc79fa7 [ 288.021522][ C1] RDX: 00000000000003ff RSI: 00007fa1dfe184a0 RDI: 0000000000000002 [ 288.021530][ C1] RBP: 0000000000000000 R08: 0000000000000007 R09: ea2f8b8abbcdbdd6 [ 288.021537][ C1] R10: 0000000000004000 R11: 0000000000000206 R12: 00007fa1dfe184a0 [ 288.021544][ C1] R13: 00007fa1dfe08212 R14: 00007fa1dfe1887f R15: 00007fa1dfe1887f [ 288.021556][ C1] [ 288.488357][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 288.495283][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.14.0-rc7-syzkaller #0 [ 288.504094][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 288.514272][ T31] Call Trace: [ 288.517587][ T31] [ 288.520551][ T31] dump_stack_lvl+0x3d/0x1f0 [ 288.525380][ T31] panic+0x71d/0x800 [ 288.529425][ T31] ? __pfx_panic+0x10/0x10 [ 288.533880][ T31] ? preempt_schedule_thunk+0x1a/0x30 [ 288.539344][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 288.545388][ T31] ? preempt_schedule_thunk+0x1a/0x30 [ 288.550794][ T31] ? watchdog+0xdcc/0x12b0 [ 288.555276][ T31] ? watchdog+0xdbf/0x12b0 [ 288.560253][ T31] watchdog+0xddd/0x12b0 [ 288.564547][ T31] ? __pfx_watchdog+0x10/0x10 [ 288.569387][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 288.574622][ T31] ? __kthread_parkme+0x148/0x220 [ 288.579678][ T31] ? __pfx_watchdog+0x10/0x10 [ 288.584417][ T31] kthread+0x3af/0x750 [ 288.588607][ T31] ? __pfx_kthread+0x10/0x10 [ 288.593233][ T31] ? __pfx_kthread+0x10/0x10 [ 288.597861][ T31] ret_from_fork+0x45/0x80 [ 288.602299][ T31] ? __pfx_kthread+0x10/0x10 [ 288.606905][ T31] ret_from_fork_asm+0x1a/0x30 [ 288.611710][ T31] [ 288.614974][ T31] Kernel Offset: disabled [ 288.619283][ T31] Rebooting in 86400 seconds..