./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3025204026 <...> Warning: Permanently added '10.128.0.111' (ED25519) to the list of known hosts. execve("./syz-executor3025204026", ["./syz-executor3025204026"], 0x7ffe2015b150 /* 10 vars */) = 0 brk(NULL) = 0x55558fe74000 brk(0x55558fe74d00) = 0x55558fe74d00 arch_prctl(ARCH_SET_FS, 0x55558fe74380) = 0 set_tid_address(0x55558fe74650) = 5253 set_robust_list(0x55558fe74660, 24) = 0 rseq(0x55558fe74ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3025204026", 4096) = 28 getrandom("\xd3\x1e\x33\xf4\x50\x84\xfd\x73", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55558fe74d00 brk(0x55558fe95d00) = 0x55558fe95d00 brk(0x55558fe96000) = 0x55558fe96000 mprotect(0x7f89fa633000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558fe74650) = 5254 ./strace-static-x86_64: Process 5254 attached [pid 5253] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5254] set_robust_list(0x55558fe74660, 24) = 0 ./strace-static-x86_64: Process 5255 attached [pid 5254] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5253] <... clone resumed>, child_tidptr=0x55558fe74650) = 5255 [pid 5253] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5256 attached [pid 5255] set_robust_list(0x55558fe74660, 24 [pid 5256] set_robust_list(0x55558fe74660, 24 [pid 5255] <... set_robust_list resumed>) = 0 [pid 5254] <... clone resumed>, child_tidptr=0x55558fe74650) = 5256 [pid 5255] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5258 attached ./strace-static-x86_64: Process 5257 attached [pid 5256] <... set_robust_list resumed>) = 0 [pid 5253] <... clone resumed>, child_tidptr=0x55558fe74650) = 5257 [pid 5258] set_robust_list(0x55558fe74660, 24 [pid 5257] set_robust_list(0x55558fe74660, 24 [pid 5256] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5253] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5258] <... set_robust_list resumed>) = 0 [pid 5257] <... set_robust_list resumed>) = 0 [pid 5256] <... prctl resumed>) = 0 [pid 5255] <... clone resumed>, child_tidptr=0x55558fe74650) = 5258 [pid 5258] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5257] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5258] <... prctl resumed>) = 0 [pid 5256] setpgid(0, 0 [pid 5258] setpgid(0, 0 [pid 5256] <... setpgid resumed>) = 0 [pid 5258] <... setpgid resumed>) = 0 [pid 5256] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5258] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5256] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5260 attached ./strace-static-x86_64: Process 5259 attached [pid 5257] <... clone resumed>, child_tidptr=0x55558fe74650) = 5260 [pid 5253] <... clone resumed>, child_tidptr=0x55558fe74650) = 5259 [pid 5260] set_robust_list(0x55558fe74660, 24executing program executing program [pid 5253] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5260] <... set_robust_list resumed>) = 0 [pid 5259] set_robust_list(0x55558fe74660, 24 [pid 5258] <... openat resumed>) = 3 [pid 5256] write(3, "1000", 4) = 4 [pid 5256] close(3 [pid 5260] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5259] <... set_robust_list resumed>) = 0 [pid 5256] <... close resumed>) = 0 [pid 5256] write(1, "executing program\n", 18 [pid 5258] write(3, "1000", 4 [pid 5256] <... write resumed>) = 18 [pid 5258] <... write resumed>) = 4 [pid 5256] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT [pid 5258] close(3 [pid 5256] <... openat resumed>) = 3 [pid 5259] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5258] <... close resumed>) = 0 ./strace-static-x86_64: Process 5261 attached [pid 5258] write(1, "executing program\n", 18 [pid 5261] set_robust_list(0x55558fe74660, 24 [pid 5258] <... write resumed>) = 18 [pid 5256] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 273804165120 [pid 5261] <... set_robust_list resumed>) = 0 [pid 5258] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT [pid 5261] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5260] <... prctl resumed>) = 0 [pid 5258] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5262 attached [pid 5253] <... clone resumed>, child_tidptr=0x55558fe74650) = 5261 [pid 5260] setpgid(0, 0 [pid 5258] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 273804165120 [pid 5262] set_robust_list(0x55558fe74660, 24 [pid 5260] <... setpgid resumed>) = 0 ./strace-static-x86_64: Process 5263 attached [pid 5262] <... set_robust_list resumed>) = 0 [pid 5260] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5259] <... clone resumed>, child_tidptr=0x55558fe74650) = 5262 [pid 5263] set_robust_list(0x55558fe74660, 24 [pid 5261] <... clone resumed>, child_tidptr=0x55558fe74650) = 5263 [pid 5263] <... set_robust_list resumed>) = 0 [pid 5262] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5263] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5263] setpgid(0, 0) = 0 [pid 5262] <... prctl resumed>) = 0 [pid 5260] <... openat resumed>) = 3 [pid 5263] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5262] setpgid(0, 0 [pid 5263] <... openat resumed>) = 3 [pid 5262] <... setpgid resumed>) = 0 [pid 5263] write(3, "1000", 4 [pid 5262] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5260] write(3, "1000", 4 [pid 5263] <... write resumed>) = 4 [pid 5263] close(3 [pid 5262] <... openat resumed>) = 3 [pid 5260] <... write resumed>) = 4 executing program [pid 5263] <... close resumed>) = 0 [pid 5263] write(1, "executing program\n", 18) = 18 [pid 5263] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT) = 3 [pid 5263] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 273804165120 [pid 5262] write(3, "1000", 4 [pid 5260] close(3) = 0 [pid 5262] <... write resumed>) = 4 [pid 5260] write(1, "executing program\n", 18executing program [pid 5262] close(3 [pid 5260] <... write resumed>) = 18 [pid 5260] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT) = 3 [pid 5262] <... close resumed>) = 0 executing program [pid 5260] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 273804165120 [pid 5262] write(1, "executing program\n", 18) = 18 [pid 5262] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT) = 3 [pid 5262] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 273804165120 [pid 5257] kill(-5260, SIGKILL [pid 5255] kill(-5258, SIGKILL [pid 5257] <... kill resumed>) = 0 [pid 5254] kill(-5256, SIGKILL [pid 5255] <... kill resumed>) = 0 [pid 5257] kill(5260, SIGKILL [pid 5255] kill(5258, SIGKILL [pid 5254] <... kill resumed>) = 0 [pid 5255] <... kill resumed>) = 0 [pid 5254] kill(5256, SIGKILL [pid 5257] <... kill resumed>) = 0 [pid 5254] <... kill resumed>) = 0 [pid 5259] kill(-5262, SIGKILL) = 0 [pid 5261] kill(-5263, SIGKILL [pid 5259] kill(5262, SIGKILL [pid 5261] <... kill resumed>) = 0 [pid 5259] <... kill resumed>) = 0 [pid 5261] kill(5263, SIGKILL) = 0 [pid 5261] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5255] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5259] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5257] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5261] <... openat resumed>) = 3 [pid 5261] newfstatat(3, "", [pid 5254] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5261] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5259] <... openat resumed>) = 3 [pid 5257] <... openat resumed>) = 3 [pid 5254] <... openat resumed>) = 3 [pid 5261] getdents64(3, [pid 5259] newfstatat(3, "", [pid 5255] <... openat resumed>) = 3 [pid 5261] <... getdents64 resumed>0x55558fe756f0 /* 2 entries */, 32768) = 48 [pid 5259] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5255] newfstatat(3, "", [pid 5254] newfstatat(3, "", [pid 5261] getdents64(3, 0x55558fe756f0 /* 0 entries */, 32768) = 0 [pid 5261] close(3) = 0 [pid 5254] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5257] newfstatat(3, "", [pid 5259] getdents64(3, 0x55558fe756f0 /* 2 entries */, 32768) = 48 [pid 5254] getdents64(3, [pid 5259] getdents64(3, [pid 5254] <... getdents64 resumed>0x55558fe756f0 /* 2 entries */, 32768) = 48 [pid 5255] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5259] <... getdents64 resumed>0x55558fe756f0 /* 0 entries */, 32768) = 0 [pid 5254] getdents64(3, 0x55558fe756f0 /* 0 entries */, 32768) = 0 [pid 5259] close(3 [pid 5254] close(3 [pid 5259] <... close resumed>) = 0 [pid 5254] <... close resumed>) = 0 [pid 5257] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5255] getdents64(3, [pid 5257] getdents64(3, 0x55558fe756f0 /* 2 entries */, 32768) = 48 [pid 5257] getdents64(3, 0x55558fe756f0 /* 0 entries */, 32768) = 0 [pid 5257] close(3) = 0 [pid 5255] <... getdents64 resumed>0x55558fe756f0 /* 2 entries */, 32768) = 48 [pid 5255] getdents64(3, 0x55558fe756f0 /* 0 entries */, 32768) = 0 [pid 5255] close(3) = 0 [pid 5256] <... fallocate resumed>) = ? [pid 5256] +++ killed by SIGKILL +++ [pid 5254] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5256, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=4732 /* 47.32 s */} --- [pid 5254] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5264 attached , child_tidptr=0x55558fe74650) = 5264 [pid 5264] set_robust_list(0x55558fe74660, 24) = 0 [pid 5264] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5264] setpgid(0, 0) = 0 [pid 5264] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5264] write(3, "1000", 4executing program ) = 4 [pid 5264] close(3) = 0 [pid 5264] write(1, "executing program\n", 18) = 18 [pid 5264] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT) = 3 [pid 5264] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 273804165120 [pid 5254] kill(-5264, SIGKILL) = 0 [pid 5254] kill(5264, SIGKILL) = 0 [pid 5254] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5254] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5254] getdents64(3, 0x55558fe756f0 /* 2 entries */, 32768) = 48 [pid 5254] getdents64(3, 0x55558fe756f0 /* 0 entries */, 32768) = 0 [pid 5254] close(3) = 0 [pid 5258] <... fallocate resumed>) = ? [pid 5258] +++ killed by SIGKILL +++ [pid 5255] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5258, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=4856 /* 48.56 s */} --- [pid 5255] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5271 attached , child_tidptr=0x55558fe74650) = 5271 [pid 5271] set_robust_list(0x55558fe74660, 24) = 0 [pid 5271] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5271] setpgid(0, 0) = 0 [pid 5271] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5271] write(3, "1000", 4) = 4 [pid 5271] close(3executing program ) = 0 [pid 5271] write(1, "executing program\n", 18) = 18 [pid 5271] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT) = 3 [pid 5271] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 273804165120 [pid 5255] kill(-5271, SIGKILL) = 0 [pid 5255] kill(5271, SIGKILL) = 0 [pid 5255] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5255] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5255] getdents64(3, 0x55558fe756f0 /* 2 entries */, 32768) = 48 [pid 5255] getdents64(3, 0x55558fe756f0 /* 0 entries */, 32768) = 0 [pid 5255] close(3) = 0 [ 286.785254][ T30] INFO: task syz-executor302:5260 blocked for more than 143 seconds. [ 286.793528][ T30] Not tainted 6.11.0-rc6-syzkaller-00017-gc9f016e72b5c #0 [ 286.801606][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.811189][ T30] task:syz-executor302 state:D stack:26784 pid:5260 tgid:5260 ppid:5257 flags:0x00004006 [ 286.821882][ T30] Call Trace: [ 286.825593][ T30] [ 286.828549][ T30] __schedule+0x1800/0x4a60 [ 286.833145][ T30] ? __pfx___schedule+0x10/0x10 [ 286.838460][ T30] ? __pfx_lock_release+0x10/0x10 [ 286.843986][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 286.850088][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 286.856837][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 286.862385][ T30] ? schedule+0x90/0x320 [ 286.866715][ T30] schedule+0x14b/0x320 [ 286.870911][ T30] schedule_preempt_disabled+0x13/0x30 [ 286.876875][ T30] rwsem_down_write_slowpath+0xeeb/0x13b0 [ 286.883010][ T30] ? rwsem_down_write_slowpath+0xa06/0x13b0 [ 286.889391][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 286.896018][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 286.901481][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 286.907953][ T30] down_write+0x1d7/0x220 [ 286.912714][ T30] ? __pfx_down_write+0x10/0x10 [ 286.918355][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 286.923818][ T30] ? end_current_label_crit_section+0x151/0x180 [ 286.930162][ T30] blkdev_fallocate+0x1fc/0x530 [ 286.935083][ T30] vfs_fallocate+0x553/0x6c0 [ 286.939713][ T30] __x64_sys_fallocate+0xbd/0x110 [ 286.945193][ T30] do_syscall_64+0xf3/0x230 [ 286.950085][ T30] ? clear_bhb_loop+0x35/0x90 [ 286.955197][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.961493][ T30] RIP: 0033:0x7f89fa5c0ae9 [ 286.966387][ T30] RSP: 002b:00007fffd70c6838 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 286.975221][ T30] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f89fa5c0ae9 [ 286.983639][ T30] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000003 [ 286.992169][ T30] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.000230][ T30] R10: 0000003fc0000000 R11: 0000000000000246 R12: 0000000000000001 [ 287.008369][ T30] R13: 00007fffd70c6a58 R14: 00007fffd70c6860 R15: 00007fffd70c6850 [ 287.016862][ T30] [ 287.020305][ T30] INFO: task syz-executor302:5262 blocked for more than 143 seconds. [ 287.029341][ T30] Not tainted 6.11.0-rc6-syzkaller-00017-gc9f016e72b5c #0 [ 287.037407][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.046544][ T30] task:syz-executor302 state:D stack:26576 pid:5262 tgid:5262 ppid:5259 flags:0x00004006 [ 287.057199][ T30] Call Trace: [ 287.060874][ T30] [ 287.073999][ T30] __schedule+0x1800/0x4a60 [ 287.078817][ T30] ? __pfx___schedule+0x10/0x10 [ 287.083797][ T30] ? __pfx_lock_release+0x10/0x10 [ 287.089807][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 287.097619][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 287.104962][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 287.111806][ T30] ? schedule+0x90/0x320 [ 287.125629][ T30] schedule+0x14b/0x320 [ 287.130696][ T30] schedule_preempt_disabled+0x13/0x30 [ 287.138085][ T30] rwsem_down_write_slowpath+0xeeb/0x13b0 [ 287.144821][ T30] ? rwsem_down_write_slowpath+0xa06/0x13b0 [ 287.151839][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 287.159074][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 287.176651][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 287.182707][ T30] down_write+0x1d7/0x220 [ 287.187988][ T30] ? __pfx_down_write+0x10/0x10 [ 287.193462][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.199331][ T30] ? end_current_label_crit_section+0x151/0x180 [ 287.206150][ T30] blkdev_fallocate+0x1fc/0x530 [ 287.212154][ T30] vfs_fallocate+0x553/0x6c0 [ 287.249657][ T30] __x64_sys_fallocate+0xbd/0x110 [ 287.255138][ T30] do_syscall_64+0xf3/0x230 [ 287.259685][ T30] ? clear_bhb_loop+0x35/0x90 [ 287.264430][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.270867][ T30] RIP: 0033:0x7f89fa5c0ae9 [ 287.275782][ T30] RSP: 002b:00007fffd70c6838 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.284549][ T30] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f89fa5c0ae9 [ 287.293040][ T30] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000003 [ 287.301697][ T30] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.310236][ T30] R10: 0000003fc0000000 R11: 0000000000000246 R12: 0000000000000001 [ 287.318619][ T30] R13: 00007fffd70c6a58 R14: 00007fffd70c6860 R15: 00007fffd70c6850 [ 287.327218][ T30] [ 287.330338][ T30] [ 287.330338][ T30] Showing all locks held in the system: [ 287.416916][ T30] 2 locks held by ksoftirqd/1/24: [ 287.421999][ T30] 1 lock held by khungtaskd/30: [ 287.462685][ T30] #0: ffffffff8e938320 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 287.558362][ T30] 1 lock held by klogd/4680: [ 287.563012][ T30] 2 locks held by dhcpcd/4904: [ 287.584557][ T30] 2 locks held by getty/4991: [ 287.594998][ T30] #0: ffff888034c4a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 287.630342][ T30] #1: ffffc900031232f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6ac/0x1e00 [ 287.672236][ T30] 1 lock held by syz-executor302/5260: [ 287.678706][ T30] #0: ffff88802315e540 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1fc/0x530 [ 287.690422][ T30] 1 lock held by syz-executor302/5262: [ 287.696832][ T30] #0: ffff88802315e540 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1fc/0x530 [ 287.708709][ T30] 1 lock held by syz-executor302/5263: [ 287.715061][ T30] #0: ffff88802315e540 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1fc/0x530 [ 287.727917][ T30] 1 lock held by syz-executor302/5264: [ 287.742851][ T30] #0: ffff88802315e540 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1fc/0x530 [ 287.755425][ T30] 1 lock held by syz-executor302/5271: [ 287.762019][ T30] #0: ffff88802315e540 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1fc/0x530 [ 287.775752][ T30] [ 287.778841][ T30] ============================================= [ 287.778841][ T30] [ 287.796735][ T30] NMI backtrace for cpu 1 [ 287.801139][ T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-rc6-syzkaller-00017-gc9f016e72b5c #0 [ 287.811672][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 287.821793][ T30] Call Trace: [ 287.825092][ T30] [ 287.828062][ T30] dump_stack_lvl+0x241/0x360 [ 287.832842][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 287.838060][ T30] ? __pfx__printk+0x10/0x10 [ 287.842669][ T30] ? vprintk_emit+0x667/0x7c0 [ 287.847410][ T30] ? __pfx_vprintk_emit+0x10/0x10 [ 287.852469][ T30] nmi_cpu_backtrace+0x49c/0x4d0 [ 287.857440][ T30] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 287.862924][ T30] ? _printk+0xd5/0x120 [ 287.867097][ T30] ? __pfx__printk+0x10/0x10 [ 287.871716][ T30] ? __wake_up_klogd+0xcc/0x110 [ 287.876594][ T30] ? __pfx__printk+0x10/0x10 [ 287.881205][ T30] ? __rcu_read_unlock+0xa1/0x110 [ 287.886253][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 287.892268][ T30] nmi_trigger_cpumask_backtrace+0x198/0x320 [ 287.898289][ T30] watchdog+0xff4/0x1040 [ 287.902566][ T30] ? watchdog+0x1ea/0x1040 [ 287.907017][ T30] ? __pfx_watchdog+0x10/0x10 [ 287.911898][ T30] kthread+0x2f0/0x390 [ 287.915996][ T30] ? __pfx_watchdog+0x10/0x10 [ 287.920696][ T30] ? __pfx_kthread+0x10/0x10 [ 287.925304][ T30] ret_from_fork+0x4b/0x80 [ 287.929742][ T30] ? __pfx_kthread+0x10/0x10 [ 287.934351][ T30] ret_from_fork_asm+0x1a/0x30 [ 287.939179][ T30] [ 287.945701][ T30] Sending NMI from CPU 1 to CPUs 0: [ 287.950972][ C0] NMI backtrace for cpu 0 [ 287.950986][ C0] CPU: 0 UID: 0 PID: 4680 Comm: klogd Not tainted 6.11.0-rc6-syzkaller-00017-gc9f016e72b5c #0 [ 287.951005][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 287.951014][ C0] RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x70 [ 287.951039][ C0] Code: 89 fb e8 23 00 00 00 48 8b 3d 6c 76 96 0c 48 89 de 5b e9 83 9d 5b 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1e fa 48 8b 04 24 65 48 8b 0c 25 00 d7 03 00 65 8b 15 40 4a [ 287.951056][ C0] RSP: 0018:ffffc90003ed6c30 EFLAGS: 00000293 [ 287.951070][ C0] RAX: ffffffff81413828 RBX: ffffc90003ed76c0 RCX: ffff888075b45a00 [ 287.951082][ C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffffc90003ed76c0 [ 287.951092][ C0] RBP: 1ffff920007dada6 R08: ffffffff814137ed R09: ffffffff81413746 [ 287.951104][ C0] R10: 0000000000000003 R11: ffff888075b45a00 R12: ffffc90003ed76c0 [ 287.951114][ C0] R13: dffffc0000000000 R14: 1ffff920007dada5 R15: 1ffff920007dada4 [ 287.951126][ C0] FS: 00007fcebf8a5380(0000) GS:ffff8880b8800000(0000) knlGS:0000000000000000 [ 287.951140][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 287.951151][ C0] CR2: 000055558fe7d6f8 CR3: 000000007b3c2000 CR4: 00000000003506f0 [ 287.951165][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 287.951174][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 287.951189][ C0] Call Trace: [ 287.951195][ C0] [ 287.951201][ C0] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 287.951221][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 287.951242][ C0] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 287.951259][ C0] ? nmi_handle+0x2a/0x5a0 [ 287.951282][ C0] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 287.951299][ C0] ? nmi_handle+0x14f/0x5a0 [ 287.951313][ C0] ? nmi_handle+0x2a/0x5a0 [ 287.951328][ C0] ? __pfx___sanitizer_cov_trace_pc+0x10/0x10 [ 287.951346][ C0] ? default_do_nmi+0x63/0x160 [ 287.951364][ C0] ? exc_nmi+0x123/0x1f0 [ 287.951381][ C0] ? end_repeat_nmi+0xf/0x53 [ 287.951401][ C0] ? unwind_next_frame+0xff6/0x2a00 [ 287.951420][ C0] ? unwind_next_frame+0x109d/0x2a00 [ 287.951438][ C0] ? unwind_next_frame+0x10d8/0x2a00 [ 287.951458][ C0] ? __pfx___sanitizer_cov_trace_pc+0x10/0x10 [ 287.951476][ C0] ? __pfx___sanitizer_cov_trace_pc+0x10/0x10 [ 287.951495][ C0] ? __pfx___sanitizer_cov_trace_pc+0x10/0x10 [ 287.951515][ C0] [ 287.951520][ C0] [ 287.951525][ C0] __read_once_word_nocheck+0x9/0x20 [ 287.951544][ C0] unwind_next_frame+0x1356/0x2a00 [ 287.951568][ C0] ? qlist_free_all+0x9e/0x140 [ 287.951588][ C0] ? qlist_free_all+0x9e/0x140 [ 287.951604][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 287.951623][ C0] arch_stack_walk+0x151/0x1b0 [ 287.951641][ C0] ? qlist_free_all+0x9e/0x140 [ 287.951660][ C0] stack_trace_save+0x118/0x1d0 [ 287.951678][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 287.951698][ C0] ? stack_depot_save_flags+0x29/0x830 [ 287.951714][ C0] ? __lock_acquire+0x137a/0x2040 [ 287.951733][ C0] kasan_save_track+0x3f/0x80 [ 287.951751][ C0] ? kasan_save_track+0x3f/0x80 [ 287.951767][ C0] ? __kasan_slab_alloc+0x66/0x80 [ 287.951785][ C0] ? kmem_cache_alloc_noprof+0x135/0x2a0 [ 287.951800][ C0] ? debug_objects_fill_pool+0x46e/0x9b0 [ 287.951819][ C0] ? debug_object_activate+0x135/0x510 [ 287.951838][ C0] ? call_rcu+0x97/0xa70 [ 287.951855][ C0] ? __put_partials+0xeb/0x130 [ 287.951871][ C0] ? put_cpu_partial+0x17c/0x250 [ 287.951887][ C0] ? __slab_free+0x2ea/0x3d0 [ 287.951903][ C0] ? qlist_free_all+0x9e/0x140 [ 287.951943][ C0] __kasan_slab_alloc+0x66/0x80 [ 287.951961][ C0] ? debug_objects_fill_pool+0x46e/0x9b0 [ 287.951980][ C0] kmem_cache_alloc_noprof+0x135/0x2a0 [ 287.951998][ C0] debug_objects_fill_pool+0x46e/0x9b0 [ 287.952020][ C0] ? debug_objects_fill_pool+0x80/0x9b0 [ 287.952044][ C0] ? __pfx_debug_objects_fill_pool+0x10/0x10 [ 287.952070][ C0] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 287.952094][ C0] debug_object_activate+0x135/0x510 [ 287.952113][ C0] ? mark_lock+0x9a/0x350 [ 287.952134][ C0] ? __pfx_debug_object_activate+0x10/0x10 [ 287.952154][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 287.952173][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 287.952199][ C0] ? call_rcu+0x738/0xa70 [ 287.952216][ C0] ? __pfx_rcu_free_slab+0x10/0x10 [ 287.952235][ C0] call_rcu+0x97/0xa70 [ 287.952258][ C0] ? __pfx_call_rcu+0x10/0x10 [ 287.952275][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 287.952295][ C0] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 287.952314][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 287.952333][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 287.952352][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 287.952373][ C0] __put_partials+0xeb/0x130 [ 287.952391][ C0] put_cpu_partial+0x17c/0x250 [ 287.952408][ C0] ? put_cpu_partial+0x70/0x250 [ 287.952427][ C0] __slab_free+0x2ea/0x3d0 [ 287.952447][ C0] ? __phys_addr+0xba/0x170 [ 287.952462][ C0] qlist_free_all+0x9e/0x140 [ 287.952482][ C0] kasan_quarantine_reduce+0x14f/0x170 [ 287.952502][ C0] __kasan_slab_alloc+0x23/0x80 [ 287.952520][ C0] ? __alloc_skb+0x1c3/0x440 [ 287.952536][ C0] kmem_cache_alloc_node_noprof+0x16b/0x320 [ 287.952555][ C0] __alloc_skb+0x1c3/0x440 [ 287.952570][ C0] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 287.952592][ C0] ? __pfx___alloc_skb+0x10/0x10 [ 287.952612][ C0] alloc_skb_with_frags+0xc3/0x770 [ 287.952637][ C0] sock_alloc_send_pskb+0x91a/0xa60 [ 287.952664][ C0] ? __pfx_sock_alloc_send_pskb+0x10/0x10 [ 287.952685][ C0] ? do_raw_spin_unlock+0x13c/0x8b0 [ 287.952706][ C0] unix_dgram_sendmsg+0x6d3/0x1f80 [ 287.952729][ C0] ? aa_sk_perm+0x96d/0xab0 [ 287.952748][ C0] ? __pfx_unix_dgram_sendmsg+0x10/0x10 [ 287.952765][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 287.952782][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 287.952800][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 287.952820][ C0] ? __pfx_unix_dgram_sendmsg+0x10/0x10 [ 287.952834][ C0] __sock_sendmsg+0x221/0x270 [ 287.952856][ C0] __sys_sendto+0x3a4/0x4f0 [ 287.952875][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 287.952904][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 287.952923][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 287.952945][ C0] __x64_sys_sendto+0xde/0x100 [ 287.952963][ C0] do_syscall_64+0xf3/0x230 [ 287.952978][ C0] ? clear_bhb_loop+0x35/0x90 [ 287.952996][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.953013][ C0] RIP: 0033:0x7fcebfa079b5 [ 287.953026][ C0] Code: 8b 44 24 08 48 83 c4 28 48 98 c3 48 98 c3 41 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 26 45 31 c9 45 31 c0 b8 2c 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 7a 48 8b 15 44 c4 0c 00 f7 d8 64 89 02 48 83 [ 287.953037][ C0] RSP: 002b:00007fff63c2dac8 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 287.953052][ C0] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fcebfa079b5 [ 287.953063][ C0] RDX: 000000000000005c RSI: 0000564f8f5a1d80 RDI: 0000000000000003 [ 287.953073][ C0] RBP: 0000564f8f59d910 R08: 0000000000000000 R09: 0000000000000000 [ 287.953082][ C0] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000013 [ 287.953092][ C0] R13: 00007fcebfb95212 R14: 00007fff63c2dbc8 R15: 0000000000000000 [ 287.953110][ C0] [ 287.953117][ C0] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 2.146 msecs [ 288.666442][ T30] Kernel panic - not syncing: hung_task: blocked tasks [ 288.673321][ T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-rc6-syzkaller-00017-gc9f016e72b5c #0 [ 288.683840][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 288.693916][ T30] Call Trace: [ 288.697225][ T30] [ 288.700166][ T30] dump_stack_lvl+0x241/0x360 [ 288.704866][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 288.710083][ T30] ? __pfx__printk+0x10/0x10 [ 288.714715][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 288.720805][ T30] ? vscnprintf+0x5d/0x90 [ 288.725159][ T30] panic+0x349/0x860 [ 288.729073][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 288.735246][ T30] ? __pfx_panic+0x10/0x10 [ 288.739672][ T30] ? tick_nohz_tick_stopped+0x82/0xb0 [ 288.745058][ T30] ? __irq_work_queue_local+0x137/0x410 [ 288.750625][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 288.756021][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 288.762193][ T30] ? nmi_trigger_cpumask_backtrace+0x2d4/0x320 [ 288.768459][ T30] ? nmi_trigger_cpumask_backtrace+0x2d9/0x320 [ 288.774636][ T30] watchdog+0x1033/0x1040 [ 288.778995][ T30] ? watchdog+0x1ea/0x1040 [ 288.783441][ T30] ? __pfx_watchdog+0x10/0x10 [ 288.788132][ T30] kthread+0x2f0/0x390 [ 288.792307][ T30] ? __pfx_watchdog+0x10/0x10 [ 288.797004][ T30] ? __pfx_kthread+0x10/0x10 [ 288.801612][ T30] ret_from_fork+0x4b/0x80 [ 288.806047][ T30] ? __pfx_kthread+0x10/0x10 [ 288.810651][ T30] ret_from_fork_asm+0x1a/0x30 [ 288.815449][ T30] [ 288.818602][ T30] Kernel Offset: disabled [ 288.822924][ T30] Rebooting in 86400 seconds..