./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2525653041 <...> Warning: Permanently added '10.128.1.134' (ED25519) to the list of known hosts. execve("./syz-executor2525653041", ["./syz-executor2525653041"], 0x7ffc064995b0 /* 10 vars */) = 0 brk(NULL) = 0x5555619e6000 brk(0x5555619e6d00) = 0x5555619e6d00 arch_prctl(ARCH_SET_FS, 0x5555619e6380) = 0 set_tid_address(0x5555619e6650) = 5240 set_robust_list(0x5555619e6660, 24) = 0 rseq(0x5555619e6ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2525653041", 4096) = 28 getrandom("\xbe\xb6\x4c\x4f\xb7\x8d\x72\xbd", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555619e6d00 brk(0x555561a07d00) = 0x555561a07d00 brk(0x555561a08000) = 0x555561a08000 mprotect(0x7fcc15323000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5241 attached , child_tidptr=0x5555619e6650) = 5241 [pid 5240] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5241] set_robust_list(0x5555619e6660, 24) = 0 ./strace-static-x86_64: Process 5242 attached [pid 5240] <... clone resumed>, child_tidptr=0x5555619e6650) = 5242 [pid 5241] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5242] set_robust_list(0x5555619e6660, 24) = 0 [pid 5242] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5243 attached [pid 5240] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5244 attached [pid 5243] set_robust_list(0x5555619e6660, 24 [pid 5241] <... clone resumed>, child_tidptr=0x5555619e6650) = 5243 ./strace-static-x86_64: Process 5245 attached [pid 5240] <... clone resumed>, child_tidptr=0x5555619e6650) = 5244 [pid 5244] set_robust_list(0x5555619e6660, 24 [pid 5243] <... set_robust_list resumed>) = 0 [pid 5240] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5245] set_robust_list(0x5555619e6660, 24 [pid 5244] <... set_robust_list resumed>) = 0 [pid 5243] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5242] <... clone resumed>, child_tidptr=0x5555619e6650) = 5245 [ 255.863063][ T30] audit: type=1400 audit(1727036058.076:88): avc: denied { execmem } for pid=5240 comm="syz-executor252" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [pid 5245] <... set_robust_list resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5243] <... prctl resumed>) = 0 [pid 5243] setpgid(0, 0./strace-static-x86_64: Process 5247 attached ./strace-static-x86_64: Process 5246 attached [pid 5245] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5243] <... setpgid resumed>) = 0 [pid 5244] <... clone resumed>, child_tidptr=0x5555619e6650) = 5247 [pid 5243] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5240] <... clone resumed>, child_tidptr=0x5555619e6650) = 5246 [pid 5247] set_robust_list(0x5555619e6660, 24 [pid 5246] set_robust_list(0x5555619e6660, 24 [pid 5245] <... prctl resumed>) = 0 [pid 5243] <... openat resumed>) = 3 [pid 5240] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5247] <... set_robust_list resumed>) = 0 [pid 5246] <... set_robust_list resumed>) = 0 [pid 5245] setpgid(0, 0 [pid 5243] write(3, "1000", 4 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5243] <... write resumed>) = 4 [pid 5243] close(3) = 0 executing program [pid 5243] write(1, "executing program\n", 18./strace-static-x86_64: Process 5249 attached ./strace-static-x86_64: Process 5248 attached [pid 5247] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5245] <... setpgid resumed>) = 0 [pid 5243] <... write resumed>) = 18 [pid 5246] <... clone resumed>, child_tidptr=0x5555619e6650) = 5249 executing program [pid 5245] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5240] <... clone resumed>, child_tidptr=0x5555619e6650) = 5248 [pid 5249] set_robust_list(0x5555619e6660, 24 [pid 5245] <... openat resumed>) = 3 [pid 5248] set_robust_list(0x5555619e6660, 24 [pid 5247] <... prctl resumed>) = 0 [pid 5243] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC [pid 5249] <... set_robust_list resumed>) = 0 [pid 5248] <... set_robust_list resumed>) = 0 [pid 5247] setpgid(0, 0 [pid 5245] write(3, "1000", 4) = 4 [pid 5248] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5245] close(3 [pid 5247] <... setpgid resumed>) = 0 [pid 5245] <... close resumed>) = 0 [pid 5245] write(1, "executing program\n", 18) = 18 [pid 5249] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5247] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5245] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC [pid 5243] <... openat resumed>) = 3 [pid 5245] <... openat resumed>) = 3 [pid 5245] dup(3) = 4 [pid 5245] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496./strace-static-x86_64: Process 5250 attached [pid 5249] <... prctl resumed>) = 0 [pid 5247] <... openat resumed>) = 3 [pid 5243] dup(3executing program [pid 5250] set_robust_list(0x5555619e6660, 24 [pid 5249] setpgid(0, 0 [pid 5248] <... clone resumed>, child_tidptr=0x5555619e6650) = 5250 [pid 5247] write(3, "1000", 4 [pid 5243] <... dup resumed>) = 4 [pid 5247] <... write resumed>) = 4 [pid 5243] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5247] close(3 [pid 5250] <... set_robust_list resumed>) = 0 [pid 5249] <... setpgid resumed>) = 0 [pid 5247] <... close resumed>) = 0 [pid 5250] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5249] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5247] write(1, "executing program\n", 18 [pid 5250] <... prctl resumed>) = 0 [pid 5249] <... openat resumed>) = 3 [pid 5247] <... write resumed>) = 18 [pid 5250] setpgid(0, 0 [pid 5247] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC [pid 5250] <... setpgid resumed>) = 0 [pid 5247] <... openat resumed>) = 3 [pid 5250] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5249] write(3, "1000", 4 [pid 5247] dup(3 [pid 5250] <... openat resumed>) = 3 [pid 5249] <... write resumed>) = 4 [pid 5247] <... dup resumed>) = 4 [pid 5249] close(3 [pid 5247] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5250] write(3, "1000", 4 [pid 5249] <... close resumed>) = 0 executing program [pid 5250] <... write resumed>) = 4 [pid 5249] write(1, "executing program\n", 18) = 18 [pid 5250] close(3 [pid 5249] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNCexecuting program [pid 5250] <... close resumed>) = 0 [pid 5249] <... openat resumed>) = 3 [pid 5250] write(1, "executing program\n", 18) = 18 [pid 5249] dup(3 [pid 5250] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC [pid 5249] <... dup resumed>) = 4 [pid 5249] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5250] <... openat resumed>) = 3 [pid 5250] dup(3) = 4 [ 255.971305][ T30] audit: type=1400 audit(1727036058.176:89): avc: denied { read append } for pid=5243 comm="syz-executor252" name="nullb0" dev="devtmpfs" ino=682 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 255.995089][ T30] audit: type=1400 audit(1727036058.176:90): avc: denied { open } for pid=5245 comm="syz-executor252" path="/dev/nullb0" dev="devtmpfs" ino=682 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [pid 5250] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5241] kill(-5243, SIGKILL) = 0 [pid 5241] kill(5243, SIGKILL) = 0 [pid 5242] kill(-5245, SIGKILL) = 0 [pid 5242] kill(5245, SIGKILL) = 0 [pid 5244] kill(-5247, SIGKILL) = 0 [pid 5244] kill(5247, SIGKILL) = 0 [pid 5246] kill(-5249, SIGKILL) = 0 [pid 5246] kill(5249, SIGKILL) = 0 [pid 5248] kill(-5250, SIGKILL) = 0 [pid 5248] kill(5250, SIGKILL) = 0 [pid 5241] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5242] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5246] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5241] <... openat resumed>) = 3 [pid 5244] <... openat resumed>) = 3 [pid 5246] <... openat resumed>) = 3 [pid 5244] newfstatat(3, "", [pid 5246] newfstatat(3, "", [pid 5241] newfstatat(3, "", [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5248] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5248] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5248] getdents64(3, 0x5555619e76f0 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(3, [pid 5248] getdents64(3, 0x5555619e76f0 /* 0 entries */, 32768) = 0 [pid 5248] close(3 [pid 5244] <... getdents64 resumed>0x5555619e76f0 /* 2 entries */, 32768) = 48 [pid 5241] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5248] <... close resumed>) = 0 [pid 5244] getdents64(3, 0x5555619e76f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3 [pid 5242] <... openat resumed>) = 3 [pid 5241] getdents64(3, [pid 5244] <... close resumed>) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5242] newfstatat(3, "", [pid 5246] getdents64(3, [pid 5242] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5241] <... getdents64 resumed>0x5555619e76f0 /* 2 entries */, 32768) = 48 [pid 5241] getdents64(3, [pid 5246] <... getdents64 resumed>0x5555619e76f0 /* 2 entries */, 32768) = 48 [pid 5241] <... getdents64 resumed>0x5555619e76f0 /* 0 entries */, 32768) = 0 [pid 5242] getdents64(3, [pid 5241] close(3 [pid 5246] getdents64(3, [pid 5242] <... getdents64 resumed>0x5555619e76f0 /* 2 entries */, 32768) = 48 [pid 5241] <... close resumed>) = 0 [pid 5242] getdents64(3, 0x5555619e76f0 /* 0 entries */, 32768) = 0 [pid 5246] <... getdents64 resumed>0x5555619e76f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3 [pid 5242] close(3 [pid 5246] <... close resumed>) = 0 [pid 5242] <... close resumed>) = 0 [pid 5245] <... fallocate resumed>) = ? [pid 5245] +++ killed by SIGKILL +++ [pid 5242] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5245, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=6000 /* 60.00 s */} --- [pid 5242] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5257 attached , child_tidptr=0x5555619e6650) = 5257 [pid 5257] set_robust_list(0x5555619e6660, 24) = 0 [pid 5257] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5257] setpgid(0, 0) = 0 [pid 5257] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5257] write(3, "1000", 4) = 4 [pid 5257] close(3) = 0 executing program [pid 5257] write(1, "executing program\n", 18) = 18 [pid 5257] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC) = 3 [pid 5257] dup(3) = 4 [pid 5257] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5242] kill(-5257, SIGKILL) = 0 [pid 5242] kill(5257, SIGKILL) = 0 [pid 5242] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5242] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5242] getdents64(3, 0x5555619e76f0 /* 2 entries */, 32768) = 48 [pid 5242] getdents64(3, 0x5555619e76f0 /* 0 entries */, 32768) = 0 [pid 5242] close(3) = 0 [pid 5243] <... fallocate resumed>) = ? [pid 5243] +++ killed by SIGKILL +++ [pid 5241] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5243, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=5941 /* 59.41 s */} --- [pid 5241] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5265 attached , child_tidptr=0x5555619e6650) = 5265 [pid 5265] set_robust_list(0x5555619e6660, 24) = 0 [pid 5265] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5265] setpgid(0, 0) = 0 [pid 5265] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5265] write(3, "1000", 4) = 4 [pid 5265] close(3) = 0 [pid 5265] write(1, "executing program\n", 18executing program ) = 18 [pid 5265] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC) = 3 [pid 5265] dup(3) = 4 [pid 5265] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5241] kill(-5265, SIGKILL) = 0 [pid 5241] kill(5265, SIGKILL) = 0 [pid 5241] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5241] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5241] getdents64(3, 0x5555619e76f0 /* 2 entries */, 32768) = 48 [pid 5241] getdents64(3, 0x5555619e76f0 /* 0 entries */, 32768) = 0 [pid 5241] close(3) = 0 [ 430.351851][ T31] INFO: task syz-executor252:5249 blocked for more than 143 seconds. [ 430.360931][ T31] Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 430.368410][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 430.378975][ T31] task:syz-executor252 state:D stack:28352 pid:5249 tgid:5249 ppid:5246 flags:0x00004006 [ 430.390904][ T31] Call Trace: [ 430.394373][ T31] [ 430.397356][ T31] __schedule+0xe37/0x5490 [ 430.404110][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 430.411442][ T31] ? hlock_class+0x4e/0x130 [ 430.417839][ T31] ? mark_lock+0xb5/0xc60 [ 430.424413][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 430.431604][ T31] ? __pfx___schedule+0x10/0x10 [ 430.436791][ T31] ? schedule+0x298/0x350 [ 430.441185][ T31] ? __pfx_lock_release+0x10/0x10 [ 430.468747][ T31] ? rwsem_down_write_slowpath+0x48a/0x12a0 [ 430.474899][ T31] schedule+0xe7/0x350 [ 430.479046][ T31] schedule_preempt_disabled+0x13/0x30 [ 430.485485][ T31] rwsem_down_write_slowpath+0x539/0x12a0 [ 430.491291][ T31] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 430.498669][ T31] ? __pfx___might_resched+0x10/0x10 [ 430.504624][ T31] down_write+0x1d8/0x200 [ 430.509520][ T31] ? __pfx_down_write+0x10/0x10 [ 430.515558][ T31] ? inode_security+0x101/0x130 [ 430.521030][ T31] blkdev_fallocate+0x1da/0x390 [ 430.526486][ T31] ? __pfx_blkdev_fallocate+0x10/0x10 [ 430.533155][ T31] vfs_fallocate+0x459/0xf90 [ 430.538349][ T31] __x64_sys_fallocate+0xd5/0x140 [ 430.544450][ T31] do_syscall_64+0xcd/0x250 [ 430.549018][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 430.555122][ T31] RIP: 0033:0x7fcc152b0b29 [ 430.559603][ T31] RSP: 002b:00007ffcaadf6a88 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 430.568131][ T31] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fcc152b0b29 [ 430.576290][ T31] RDX: 0000000000000000 RSI: 0000000000000010 RDI: 0000000000000004 [ 430.584922][ T31] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 430.594116][ T31] R10: 0000002000000400 R11: 0000000000000246 R12: 0000000000000001 [ 430.603535][ T31] R13: 00007ffcaadf6ca8 R14: 00007ffcaadf6ab0 R15: 00007ffcaadf6aa0 [ 430.612284][ T31] [ 430.615903][ T31] INFO: task syz-executor252:5250 blocked for more than 143 seconds. [ 430.624584][ T31] Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 430.634118][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 430.642907][ T31] task:syz-executor252 state:D stack:27872 pid:5250 tgid:5250 ppid:5248 flags:0x00004006 [ 430.653735][ T31] Call Trace: [ 430.657062][ T31] [ 430.660039][ T31] __schedule+0xe37/0x5490 [ 430.664574][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 430.669853][ T31] ? hlock_class+0x4e/0x130 [ 430.674499][ T31] ? mark_lock+0xb5/0xc60 [ 430.678895][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 430.684232][ T31] ? __pfx___schedule+0x10/0x10 [ 430.689164][ T31] ? schedule+0x298/0x350 [ 430.693650][ T31] ? __pfx_lock_release+0x10/0x10 [ 430.699338][ T31] ? rwsem_down_write_slowpath+0x48a/0x12a0 [ 430.706258][ T31] schedule+0xe7/0x350 [ 430.710943][ T31] schedule_preempt_disabled+0x13/0x30 [ 430.716564][ T31] rwsem_down_write_slowpath+0x539/0x12a0 [ 430.722911][ T31] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 430.729698][ T31] ? __pfx___might_resched+0x10/0x10 [ 430.735685][ T31] down_write+0x1d8/0x200 [ 430.740563][ T31] ? __pfx_down_write+0x10/0x10 [ 430.745543][ T31] ? inode_security+0x101/0x130 [ 430.751011][ T31] blkdev_fallocate+0x1da/0x390 [ 430.756010][ T31] ? __pfx_blkdev_fallocate+0x10/0x10 [ 430.761446][ T31] vfs_fallocate+0x459/0xf90 [ 430.766203][ T31] __x64_sys_fallocate+0xd5/0x140 [ 430.771297][ T31] do_syscall_64+0xcd/0x250 [ 430.775943][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 430.781957][ T31] RIP: 0033:0x7fcc152b0b29 [ 430.786960][ T31] RSP: 002b:00007ffcaadf6a88 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 430.796062][ T31] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fcc152b0b29 [ 430.804622][ T31] RDX: 0000000000000000 RSI: 0000000000000010 RDI: 0000000000000004 [ 430.812738][ T31] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 430.821329][ T31] R10: 0000002000000400 R11: 0000000000000246 R12: 0000000000000001 [ 430.829433][ T31] R13: 00007ffcaadf6ca8 R14: 00007ffcaadf6ab0 R15: 00007ffcaadf6aa0 [ 430.838108][ T31] [ 430.841207][ T31] [ 430.841207][ T31] Showing all locks held in the system: [ 430.849012][ T31] 1 lock held by khungtaskd/31: [ 430.853980][ T31] #0: ffffffff8ddba6a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x75/0x340 [ 430.863994][ T31] 7 locks held by kworker/u8:3/52: [ 430.869177][ T31] 2 locks held by klogd/4662: [ 430.873976][ T31] 2 locks held by getty/4975: [ 430.878689][ T31] #0: ffff88803010c0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 430.889143][ T31] #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfba/0x1480 [ 430.900003][ T31] 1 lock held by syz-executor252/5247: [ 430.906113][ T31] 1 lock held by syz-executor252/5249: [ 430.911719][ T31] #0: ffff88802315b748 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1da/0x390 [ 430.922512][ T31] 1 lock held by syz-executor252/5250: [ 430.928018][ T31] #0: ffff88802315b748 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1da/0x390 [ 430.938858][ T31] 1 lock held by syz-executor252/5257: [ 430.944524][ T31] #0: ffff88802315b748 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1da/0x390 [ 430.955367][ T31] 1 lock held by syz-executor252/5265: [ 430.960875][ T31] #0: ffff88802315b748 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1da/0x390 [ 430.971743][ T31] [ 430.974097][ T31] ============================================= [ 430.974097][ T31] [ 430.983169][ T31] NMI backtrace for cpu 0 [ 430.987552][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 430.997950][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 431.008056][ T31] Call Trace: [ 431.011367][ T31] [ 431.014325][ T31] dump_stack_lvl+0x116/0x1f0 [ 431.019039][ T31] nmi_cpu_backtrace+0x27b/0x390 [ 431.024021][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 431.030056][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 431.036079][ T31] watchdog+0xf0c/0x1240 [ 431.040353][ T31] ? __pfx_watchdog+0x10/0x10 [ 431.045054][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 431.050295][ T31] ? __kthread_parkme+0x148/0x220 [ 431.055357][ T31] ? __pfx_watchdog+0x10/0x10 [ 431.060058][ T31] kthread+0x2c1/0x3a0 [ 431.064164][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 431.069419][ T31] ? __pfx_kthread+0x10/0x10 [ 431.074051][ T31] ret_from_fork+0x45/0x80 [ 431.078526][ T31] ? __pfx_kthread+0x10/0x10 [ 431.083162][ T31] ret_from_fork_asm+0x1a/0x30 [ 431.087993][ T31] [ 431.091217][ T31] Sending NMI from CPU 0 to CPUs 1: [ 431.096591][ C1] NMI backtrace for cpu 1 [ 431.096618][ C1] CPU: 1 UID: 0 PID: 24 Comm: ksoftirqd/1 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 431.096649][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 431.096665][ C1] RIP: 0010:stack_access_ok+0x1f9/0x270 [ 431.096698][ C1] Code: fd 0f 83 d3 fe ff ff e8 85 da 4e 00 48 8b 44 24 08 48 01 e8 49 39 c6 48 89 04 24 0f 83 b9 fe ff ff e8 6b da 4e 00 48 8b 04 24 <41> be 01 00 00 00 49 39 c7 0f 83 ec fe ff ff e9 9c fe ff ff 48 89 [ 431.096722][ C1] RSP: 0018:ffffc900001e78e8 EFLAGS: 00000246 [ 431.096743][ C1] RAX: ffffc900001e7ef0 RBX: ffffc900001e79b0 RCX: ffffffff813cfd16 [ 431.096761][ C1] RDX: ffff88801dab0000 RSI: ffffffff813cfe75 RDI: 0000000000000005 [ 431.096778][ C1] RBP: ffffc900001e7ee8 R08: 0000000000000005 R09: 0000000000000000 [ 431.096794][ C1] R10: 0000000000000001 R11: 0000000000000000 R12: ffffc900001e79b8 [ 431.096811][ C1] R13: ffffc900001e79c0 R14: ffffc900001e0000 R15: ffffc900001e8000 [ 431.096829][ C1] FS: 0000000000000000(0000) GS:ffff8880b8900000(0000) knlGS:0000000000000000 [ 431.096854][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 431.096873][ C1] CR2: 00005555619ef6f8 CR3: 0000000032b3a000 CR4: 00000000003506f0 [ 431.096890][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 431.096905][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 431.096921][ C1] Call Trace: [ 431.096930][ C1] [ 431.096939][ C1] ? show_regs+0x8c/0xa0 [ 431.096979][ C1] ? nmi_cpu_backtrace+0x1d8/0x390 [ 431.097020][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 431.097058][ C1] ? nmi_handle+0x1a9/0x5c0 [ 431.097083][ C1] ? stack_access_ok+0x1f9/0x270 [ 431.097109][ C1] ? default_do_nmi+0x6a/0x160 [ 431.097143][ C1] ? exc_nmi+0x170/0x1e0 [ 431.097175][ C1] ? end_repeat_nmi+0xf/0x53 [ 431.097203][ C1] ? stack_access_ok+0x96/0x270 [ 431.097228][ C1] ? stack_access_ok+0x1f5/0x270 [ 431.097254][ C1] ? stack_access_ok+0x1f9/0x270 [ 431.097280][ C1] ? stack_access_ok+0x1f9/0x270 [ 431.097307][ C1] ? stack_access_ok+0x1f9/0x270 [ 431.097334][ C1] [ 431.097341][ C1] [ 431.097358][ C1] unwind_next_frame+0xd9b/0x23a0 [ 431.097386][ C1] ? smpboot_thread_fn+0x661/0xa10 [ 431.097419][ C1] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 431.097455][ C1] arch_stack_walk+0x100/0x170 [ 431.097488][ C1] ? smpboot_thread_fn+0x661/0xa10 [ 431.097521][ C1] stack_trace_save+0x95/0xd0 [ 431.097554][ C1] ? __pfx_stack_trace_save+0x10/0x10 [ 431.097587][ C1] ? hlock_class+0x4e/0x130 [ 431.097621][ C1] ? lock_acquire+0x1b1/0x560 [ 431.097661][ C1] save_stack+0x162/0x1f0 [ 431.097697][ C1] ? __pfx_save_stack+0x10/0x10 [ 431.097730][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 431.097768][ C1] ? free_unref_page+0x64a/0xe40 [ 431.097792][ C1] ? rcu_core+0x828/0x16b0 [ 431.097829][ C1] ? handle_softirqs+0x216/0x8f0 [ 431.097857][ C1] ? run_ksoftirqd+0x3a/0x60 [ 431.097883][ C1] ? smpboot_thread_fn+0x661/0xa10 [ 431.097923][ C1] __reset_page_owner+0x8d/0x400 [ 431.097964][ C1] free_unref_page+0x64a/0xe40 [ 431.097992][ C1] ? rcu_core+0x826/0x16b0 [ 431.098029][ C1] rcu_core+0x828/0x16b0 [ 431.098072][ C1] ? __pfx_rcu_core+0x10/0x10 [ 431.098118][ C1] handle_softirqs+0x216/0x8f0 [ 431.098151][ C1] ? __pfx_handle_softirqs+0x10/0x10 [ 431.098180][ C1] ? rcu_is_watching+0x12/0xc0 [ 431.098222][ C1] ? __pfx_run_ksoftirqd+0x10/0x10 [ 431.098249][ C1] ? smpboot_thread_fn+0x59d/0xa10 [ 431.098279][ C1] run_ksoftirqd+0x3a/0x60 [ 431.098306][ C1] smpboot_thread_fn+0x661/0xa10 [ 431.098340][ C1] ? __kthread_parkme+0x148/0x220 [ 431.098377][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 431.098408][ C1] kthread+0x2c1/0x3a0 [ 431.098437][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 431.098476][ C1] ? __pfx_kthread+0x10/0x10 [ 431.098507][ C1] ret_from_fork+0x45/0x80 [ 431.098546][ C1] ? __pfx_kthread+0x10/0x10 [ 431.098577][ C1] ret_from_fork_asm+0x1a/0x30 [ 431.098625][ C1] [ 431.098634][ C1] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 2.043 msecs [ 431.100126][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 431.507857][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0 [ 431.518034][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 431.528114][ T31] Call Trace: [ 431.531412][ T31] [ 431.534363][ T31] dump_stack_lvl+0x3d/0x1f0 [ 431.538994][ T31] panic+0x6dc/0x7c0 [ 431.542931][ T31] ? __pfx_panic+0x10/0x10 [ 431.547392][ T31] ? preempt_schedule_thunk+0x1a/0x30 [ 431.552800][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 431.558829][ T31] ? preempt_schedule_thunk+0x1a/0x30 [ 431.564232][ T31] ? watchdog+0xd76/0x1240 [ 431.568681][ T31] ? watchdog+0xd69/0x1240 [ 431.573136][ T31] watchdog+0xd87/0x1240 [ 431.577421][ T31] ? __pfx_watchdog+0x10/0x10 [ 431.582129][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 431.587387][ T31] ? __kthread_parkme+0x148/0x220 [ 431.592453][ T31] ? __pfx_watchdog+0x10/0x10 [ 431.597164][ T31] kthread+0x2c1/0x3a0 [ 431.601257][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 431.606497][ T31] ? __pfx_kthread+0x10/0x10 [ 431.611119][ T31] ret_from_fork+0x45/0x80 [ 431.615577][ T31] ? __pfx_kthread+0x10/0x10 [ 431.620223][ T31] ret_from_fork_asm+0x1a/0x30 [ 431.625038][ T31] [ 431.628399][ T31] Kernel Offset: disabled [ 431.632740][ T31] Rebooting in 86400 seconds..