./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1291253902
<...>
Warning: Permanently added '10.128.0.232' (ECDSA) to the list of known hosts.
execve("./syz-executor1291253902", ["./syz-executor1291253902"], 0x7fff1657c6a0 /* 10 vars */) = 0
brk(NULL) = 0x555555dab000
brk(0x555555dabc40) = 0x555555dabc40
arch_prctl(ARCH_SET_FS, 0x555555dab300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor1291253902", 4096) = 28
brk(0x555555dccc40) = 0x555555dccc40
brk(0x555555dcd000) = 0x555555dcd000
mprotect(0x7f9454c82000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555dab5d0) = 4989
./strace-static-x86_64: Process 4989 attached
[pid 4989] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 4989] setpgid(0, 0) = 0
[pid 4989] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 4989] write(3, "1000", 4) = 4
[pid 4989] close(3) = 0
[pid 4989] memfd_create("syzkaller", 0) = 3
[pid 4989] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f944c7bc000
[ 57.308225][ T4989] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=4989 'syz-executor129'
[pid 4989] write(3, "\x58\x46\x53\x42\x00\x00\x02\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x5e\x62\x73\xb8\x21\x67\x42\xbb\x91\x1b\x41\x8a\xa1\x4a\x12\x61\x00\x00\x00\x00\x00\x00\x80\x40\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x00\x21\x00\x00\x00\x00\x00\x00\x00\x22\x00\x00\x00\x08\x00\x00\x80\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x01\x00"..., 33554432) = 33554432
[pid 4989] munmap(0x7f944c7bc000, 33554432) = 0
[pid 4989] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 4989] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 4989] close(3) = 0
[pid 4989] mkdir("./file0", 0777) = 0
[ 57.617540][ T4989] loop0: detected capacity change from 0 to 65536
[ 57.628659][ T4989] XFS: noikeep mount option is deprecated.
[ 57.634526][ T4989] XFS: ikeep mount option is deprecated.
[ 57.640259][ T4989] XFS: attr2 mount option is deprecated.
[ 57.651709][ T4989] XFS (loop0): Deprecated V4 format (crc=0) will not be supported after September 2030.
[ 57.661600][ T4989] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[ 57.670540][ T4989] XFS (loop0): Mounting V4 Filesystem 5e6273b8-2167-42bb-911b-418aa14a1261
[ 57.680464][ T4989] XFS (loop0): Log size 256 blocks too small, minimum size is 2880 blocks
[ 57.689274][ T4989] XFS (loop0): Log size out of supported range.
[ 57.695772][ T4989] XFS (loop0): Continuing onwards, but if log hangs are experienced then please report this message in the bug report.
[pid 4989] mount("/dev/loop0", "./file0", "xfs", 0, "noikeep,grpquota,usrquota,ikeep,grpquota,attr2,dax,noquota,largeio,,nouuid") = 0
[pid 4989] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 4989] chdir("./file0") = 0
[pid 4989] ioctl(4, LOOP_CLR_FD) = 0
[pid 4989] close(4) = 0
[ 57.725878][ T4989] XFS (loop0): Starting recovery (logdev: internal)
[ 57.738662][ T4989] XFS (loop0): Ending recovery (logdev: internal)
[ 57.745672][ T4989] xfs filesystem being mounted at /root/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[pid 4989] openat(AT_FDCWD, "cpuacct.usage_sys", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 <unfinished ...>
[pid 4988] kill(-4989, SIGKILL) = 0
[pid 4988] kill(4989, SIGKILL) = 0
[pid 4988] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid 4988] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0
[pid 4988] getdents64(3, 0x555555dac620 /* 2 entries */, 32768) = 48
[pid 4988] getdents64(3, 0x555555dac620 /* 0 entries */, 32768) = 0
[pid 4988] close(3) = 0
[ 76.446456][ T26] cfg80211: failed to load regulatory.db
[ 286.365280][ T28] INFO: task syz-executor129:4989 blocked for more than 143 seconds.
[ 286.373433][ T28] Not tainted 6.4.0-rc2-syzkaller-00330-g0dd2a6fb1e34 #0
[ 286.381028][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 286.389748][ T28] task:syz-executor129 state:D stack:22080 pid:4989 ppid:4988 flags:0x00004004
[ 286.399027][ T28] Call Trace:
[ 286.402307][ T28] <TASK>
[ 286.405274][ T28] __schedule+0x187b/0x4900
[ 286.409910][ T28] ? release_firmware_map_entry+0x190/0x190
[ 286.415852][ T28] ? __lock_acquire+0x2000/0x2000
[ 286.420930][ T28] ? xlog_space_left+0x152/0x2b0
[ 286.425961][ T28] ? do_raw_spin_unlock+0x13b/0x8b0
[ 286.431175][ T28] ? xlog_grant_push_threshold+0x1a7/0x1f0
[ 286.437031][ T28] schedule+0xc3/0x180
[ 286.441113][ T28] xlog_grant_head_wait+0x387/0x910
[ 286.446434][ T28] xlog_grant_head_check+0x299/0x480
[ 286.451741][ T28] ? xlog_grant_push_ail+0xd0/0xd0
[ 286.456904][ T28] ? xlog_grant_push_threshold+0x1a7/0x1f0
[ 286.462739][ T28] xfs_log_reserve+0x3c4/0xb10
[ 286.467603][ T28] ? xlog_grant_head_check+0x480/0x480
[ 286.473088][ T28] ? xfs_mod_freecounter+0x1e6/0x490
[ 286.478479][ T28] xfs_trans_reserve+0x239/0x6a0
[ 286.483434][ T28] xfs_trans_alloc+0x423/0x810
[ 286.488246][ T28] xfs_trans_alloc_icreate+0xc9/0x2b0
[ 286.493644][ T28] ? xfs_trans_alloc_inode+0x460/0x460
[ 286.499168][ T28] xfs_create+0x6c9/0x1240
[ 286.503605][ T28] ? xfs_inode_inherit_flags2+0x340/0x340
[ 286.509372][ T28] ? __get_acl+0x9f/0x470
[ 286.513760][ T28] ? get_inode_acl+0x30/0x30
[ 286.518433][ T28] ? posix_acl_create+0x162/0x420
[ 286.523480][ T28] xfs_generic_create+0x491/0xd70
[ 286.528571][ T28] ? xfs_vn_tmpfile+0xc0/0xc0
[ 286.533256][ T28] ? xfs_vn_lookup+0x1cf/0x290
[ 286.538082][ T28] ? bpf_lsm_inode_create+0x9/0x10
[ 286.543221][ T28] ? security_inode_create+0xb8/0x100
[ 286.548688][ T28] ? xfs_vn_ci_lookup+0x440/0x440
[ 286.553719][ T28] path_openat+0x13df/0x3170
[ 286.558389][ T28] ? do_filp_open+0x490/0x490
[ 286.563084][ T28] do_filp_open+0x234/0x490
[ 286.567620][ T28] ? vfs_tmpfile+0x4a0/0x4a0
[ 286.572229][ T28] ? _raw_spin_unlock+0x28/0x40
[ 286.577163][ T28] ? alloc_fd+0x59c/0x640
[ 286.581506][ T28] do_sys_openat2+0x13f/0x500
[ 286.586213][ T28] ? print_irqtrace_events+0x220/0x220
[ 286.591680][ T28] ? do_sys_open+0x230/0x230
[ 286.596314][ T28] ? lockdep_hardirqs_on+0x98/0x140
[ 286.601593][ T28] ? _raw_spin_unlock_irq+0x2e/0x50
[ 286.606827][ T28] ? ptrace_notify+0x278/0x380
[ 286.611621][ T28] __x64_sys_openat+0x247/0x290
[ 286.616516][ T28] ? __ia32_sys_open+0x270/0x270
[ 286.621469][ T28] ? syscall_enter_from_user_mode+0x32/0x230
[ 286.627479][ T28] ? syscall_enter_from_user_mode+0x8c/0x230
[ 286.633468][ T28] do_syscall_64+0x41/0xc0
[ 286.637944][ T28] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 286.643898][ T28] RIP: 0033:0x7f9454c092c9
[ 286.648364][ T28] RSP: 002b:00007ffe83e260d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 286.656828][ T28] RAX: ffffffffffffffda RBX: 61746f7571727375 RCX: 00007f9454c092c9
[ 286.664787][ T28] RDX: 000000000000275a RSI: 0000000020000040 RDI: 00000000ffffff9c
[ 286.672795][ T28] RBP: 0000000000000000 R08: 0000000000000002 R09: 00007f9454c82ec0
[ 286.680822][ T28] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe83e26100
[ 286.688835][ T28] R13: 0000000000000000 R14: 431bde82d7b634db R15: 0000000000000000
[ 286.696849][ T28] </TASK>
[ 286.699871][ T28]
[ 286.699871][ T28] Showing all locks held in the system:
[ 286.707624][ T28] 1 lock held by rcu_tasks_kthre/13:
[ 286.712908][ T28] #0: ffffffff8cf27670 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xd20
[ 286.723421][ T28] 1 lock held by rcu_tasks_trace/14:
[ 286.728744][ T28] #0: ffffffff8cf27a30 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xd20
[ 286.739750][ T28] 1 lock held by khungtaskd/28:
[ 286.744597][ T28] #0: ffffffff8cf274a0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x0/0x30
[ 286.753968][ T28] 2 locks held by getty/4742:
[ 286.758672][ T28] #0: ffff888028f46098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 286.768541][ T28] #1: ffffc900015b02f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6ab/0x1db0
[ 286.778713][ T28] 3 locks held by syz-executor129/4989:
[ 286.784250][ T28] #0: ffff88807d4c4460 (sb_writers#9){.+.+}-{0:0}, at: mnt_want_write+0x3f/0x90
[ 286.793421][ T28] #1: ffff888077240338 (&inode->i_sb->s_type->i_mutex_dir_key){+.+.}-{3:3}, at: path_openat+0x7ba/0x3170
[ 286.804812][ T28] #2: ffff88807d4c4650 (sb_internal#2){.+.+}-{0:0}, at: xfs_trans_alloc_icreate+0xc9/0x2b0
[ 286.814935][ T28]
[ 286.817313][ T28] =============================================
[ 286.817313][ T28]
[ 286.825751][ T28] NMI backtrace for cpu 1
[ 286.830075][ T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.4.0-rc2-syzkaller-00330-g0dd2a6fb1e34 #0
[ 286.839857][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/28/2023
[ 286.849892][ T28] Call Trace:
[ 286.853156][ T28] <TASK>
[ 286.856072][ T28] dump_stack_lvl+0x1e7/0x2d0
[ 286.860736][ T28] ? nf_tcp_handle_invalid+0x650/0x650
[ 286.866176][ T28] ? panic+0x770/0x770
[ 286.870230][ T28] nmi_cpu_backtrace+0x498/0x4d0
[ 286.875176][ T28] ? vprintk_emit+0x10d/0x1f0
[ 286.879848][ T28] ? nmi_trigger_cpumask_backtrace+0x300/0x300
[ 286.885988][ T28] ? _printk+0xd5/0x120
[ 286.890136][ T28] ? panic+0x770/0x770
[ 286.894194][ T28] ? __wake_up_klogd+0xcc/0x100
[ 286.899038][ T28] ? panic+0x770/0x770
[ 286.903093][ T28] ? wq_watchdog_touch+0x72/0x110
[ 286.908111][ T28] ? arch_trigger_cpumask_backtrace+0x10/0x10
[ 286.914178][ T28] nmi_trigger_cpumask_backtrace+0x187/0x300
[ 286.920149][ T28] watchdog+0xec2/0xf00
[ 286.924309][ T28] kthread+0x2b8/0x350
[ 286.928371][ T28] ? hungtask_pm_notify+0x90/0x90
[ 286.933385][ T28] ? kthread_blkcg+0xd0/0xd0
[ 286.937966][ T28] ret_from_fork+0x1f/0x30
[ 286.942392][ T28] </TASK>
[ 286.945502][ T28] Sending NMI from CPU 1 to CPUs 0:
[ 286.950730][ C0] NMI backtrace for cpu 0
[ 286.950739][ C0] CPU: 0 PID: 10 Comm: kworker/u4:0 Not tainted 6.4.0-rc2-syzkaller-00330-g0dd2a6fb1e34 #0
[ 286.950754][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/28/2023
[ 286.950763][ C0] Workqueue: events_unbound toggle_allocation_gate
[ 286.950794][ C0] RIP: 0010:kasan_check_range+0x4e/0x290
[ 286.950813][ C0] Code: 48 c1 ed 2f 81 fd ff ff 01 00 0f 82 47 02 00 00 48 89 fb 48 c1 eb 03 49 b8 00 00 00 00 00 fc ff df 4e 8d 0c 03 4c 8d 54 37 ff <49> c1 ea 03 49 bb 01 00 00 00 00 fc ff df 4f 8d 34 1a 4c 89 f5 4c
[ 286.950824][ C0] RSP: 0018:ffffc900000f7838 EFLAGS: 00000a02
[ 286.950835][ C0] RAX: 0000000000000001 RBX: 1ffffffff1cab8b5 RCX: ffffffff816b38a0
[ 286.950844][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff8e55c5a8
[ 286.950853][ C0] RBP: 000000000001ffff R08: dffffc0000000000 R09: fffffbfff1cab8b5
[ 286.950862][ C0] R10: ffffffff8e55c5af R11: ffff888015a51dc0 R12: 1ffff9200001ef18
[ 286.950872][ C0] R13: ffffffff81311ff1 R14: ffffffff8cdd8800 R15: dffffc0000000000
[ 286.950882][ C0] FS: 0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[ 286.950893][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 286.950902][ C0] CR2: 000056388b79e5e8 CR3: 000000000cd30000 CR4: 00000000003506f0
[ 286.950914][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 286.950921][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 286.950929][ C0] Call Trace:
[ 286.950933][ C0] <TASK>
[ 286.950939][ C0] lock_release+0xb0/0x9d0
[ 286.950959][ C0] ? insn_get_immediate+0x3a0/0x13d0
[ 286.950974][ C0] ? __lock_acquire+0x2000/0x2000
[ 286.950993][ C0] ? insn_decode+0x355/0x500
[ 286.951014][ C0] ? arch_jump_label_transform_queue+0x81/0xd0
[ 286.951030][ C0] __mutex_unlock_slowpath+0xe2/0x750
[ 286.951049][ C0] ? text_poke_finish+0x30/0x30
[ 286.951068][ C0] ? mutex_unlock+0x10/0x10
[ 286.951089][ C0] ? mutex_lock_io_nested+0x60/0x60
[ 286.951108][ C0] arch_jump_label_transform_queue+0x81/0xd0
[ 286.951125][ C0] __jump_label_update+0x177/0x3a0
[ 286.951151][ C0] static_key_disable_cpuslocked+0xce/0x1b0
[ 286.951169][ C0] static_key_disable+0x1a/0x20
[ 286.951185][ C0] toggle_allocation_gate+0x1b8/0x250
[ 286.951199][ C0] ? show_object+0xa0/0xa0
[ 286.951211][ C0] ? print_irqtrace_events+0x220/0x220
[ 286.951227][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 286.951247][ C0] process_one_work+0x8a0/0x10e0
[ 286.951273][ C0] ? worker_detach_from_pool+0x290/0x290
[ 286.951293][ C0] ? _raw_spin_lock_irqsave+0x120/0x120
[ 286.951305][ C0] ? kthread_data+0x52/0xc0
[ 286.951322][ C0] ? wq_worker_running+0x9b/0x1a0
[ 286.951339][ C0] worker_thread+0xa63/0x1210
[ 286.951368][ C0] kthread+0x2b8/0x350
[ 286.951383][ C0] ? pr_cont_work+0x5e0/0x5e0
[ 286.951400][ C0] ? kthread_blkcg+0xd0/0xd0
[ 286.951416][ C0] ret_from_fork+0x1f/0x30
[ 286.951440][ C0] </TASK>
[ 286.951751][ T28] Kernel panic - not syncing: hung_task: blocked tasks
[ 287.244379][ T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.4.0-rc2-syzkaller-00330-g0dd2a6fb1e34 #0
[ 287.254168][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/28/2023
[ 287.264208][ T28] Call Trace:
[ 287.267493][ T28] <TASK>
[ 287.270412][ T28] dump_stack_lvl+0x1e7/0x2d0
[ 287.275085][ T28] ? nf_tcp_handle_invalid+0x650/0x650
[ 287.280538][ T28] ? panic+0x770/0x770
[ 287.284600][ T28] ? vscnprintf+0x5d/0x80
[ 287.288920][ T28] panic+0x30f/0x770
[ 287.292832][ T28] ? nmi_trigger_cpumask_backtrace+0x233/0x300
[ 287.298994][ T28] ? __memcpy_flushcache+0x2b0/0x2b0
[ 287.304279][ T28] ? arch_trigger_cpumask_backtrace+0x10/0x10
[ 287.310353][ T28] ? nmi_trigger_cpumask_backtrace+0x233/0x300
[ 287.316504][ T28] ? nmi_trigger_cpumask_backtrace+0x2b4/0x300
[ 287.322649][ T28] ? nmi_trigger_cpumask_backtrace+0x2b9/0x300
[ 287.328796][ T28] watchdog+0xf00/0xf00
[ 287.332963][ T28] kthread+0x2b8/0x350
[ 287.337028][ T28] ? hungtask_pm_notify+0x90/0x90
[ 287.342054][ T28] ? kthread_blkcg+0xd0/0xd0
[ 287.346637][ T28] ret_from_fork+0x1f/0x30
[ 287.351057][ T28] </TASK>
[ 287.354203][ T28] Kernel Offset: disabled
[ 287.358565][ T28] Rebooting in 86400 seconds..