./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1688214514 <...> Warning: Permanently added '10.128.0.233' (ED25519) to the list of known hosts. execve("./syz-executor1688214514", ["./syz-executor1688214514"], 0x7ffdf4107c70 /* 10 vars */) = 0 brk(NULL) = 0x555571171000 brk(0x555571171d00) = 0x555571171d00 arch_prctl(ARCH_SET_FS, 0x555571171380) = 0 set_tid_address(0x555571171650) = 5085 set_robust_list(0x555571171660, 24) = 0 rseq(0x555571171ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1688214514", 4096) = 28 getrandom("\xf6\xb3\xca\x82\x91\xc2\x85\xb9", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555571171d00 brk(0x555571192d00) = 0x555571192d00 brk(0x555571193000) = 0x555571193000 mprotect(0x7f630614b000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5086 attached , child_tidptr=0x555571171650) = 5086 [pid 5086] set_robust_list(0x555571171660, 24) = 0 [pid 5086] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5085] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5087 attached [pid 5086] <... clone resumed>, child_tidptr=0x555571171650) = 5087 [pid 5087] set_robust_list(0x555571171660, 24) = 0 [pid 5087] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5087] setpgid(0, 0./strace-static-x86_64: Process 5088 attached [pid 5085] <... clone resumed>, child_tidptr=0x555571171650) = 5088 [pid 5087] <... setpgid resumed>) = 0 [pid 5085] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5088] set_robust_list(0x555571171660, 24) = 0 [pid 5087] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5088] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5087] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5089 attached [pid 5087] write(3, "1000", 4./strace-static-x86_64: Process 5090 attached ) = 4 [pid 5089] set_robust_list(0x555571171660, 24 [pid 5087] close(3 [pid 5085] <... clone resumed>, child_tidptr=0x555571171650) = 5089 [pid 5090] set_robust_list(0x555571171660, 24 [pid 5088] <... clone resumed>, child_tidptr=0x555571171650) = 5090 [pid 5087] <... close resumed>) = 0 [pid 5089] <... set_robust_list resumed>) = 0 [pid 5090] <... set_robust_list resumed>) = 0 [pid 5090] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5085] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5089] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5087] write(1, "executing program\n", 18executing program [pid 5090] setpgid(0, 0./strace-static-x86_64: Process 5091 attached [pid 5087] <... write resumed>) = 18 [pid 5091] set_robust_list(0x555571171660, 24 [pid 5090] <... setpgid resumed>) = 0 [pid 5091] <... set_robust_list resumed>) = 0 [pid 5090] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 5092 attached [pid 5091] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5092] set_robust_list(0x555571171660, 24 [pid 5090] <... openat resumed>) = 3 [pid 5089] <... clone resumed>, child_tidptr=0x555571171650) = 5092 [pid 5087] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC./strace-static-x86_64: Process 5093 attached [pid 5092] <... set_robust_list resumed>) = 0 [pid 5090] write(3, "1000", 4 [pid 5085] <... clone resumed>, child_tidptr=0x555571171650) = 5091 [pid 5093] set_robust_list(0x555571171660, 24 [pid 5092] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5091] <... clone resumed>, child_tidptr=0x555571171650) = 5093 [pid 5090] <... write resumed>) = 4 [pid 5087] <... openat resumed>) = 3 [pid 5085] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5093] <... set_robust_list resumed>) = 0 [pid 5092] <... prctl resumed>) = 0 [pid 5090] close(3 [pid 5093] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5092] setpgid(0, 0 [pid 5090] <... close resumed>) = 0 [pid 5093] <... prctl resumed>) = 0 [pid 5092] <... setpgid resumed>) = 0 executing program [pid 5090] write(1, "executing program\n", 18 [pid 5093] setpgid(0, 0 [pid 5092] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5090] <... write resumed>) = 18 [pid 5087] ioctl(3, BLKZEROOUT, [0, 137438955520]./strace-static-x86_64: Process 5094 attached [pid 5093] <... setpgid resumed>) = 0 [pid 5092] <... openat resumed>) = 3 [pid 5090] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC [pid 5085] <... clone resumed>, child_tidptr=0x555571171650) = 5094 [pid 5094] set_robust_list(0x555571171660, 24 [pid 5093] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5094] <... set_robust_list resumed>) = 0 [pid 5090] <... openat resumed>) = 3 [pid 5092] write(3, "1000", 4 [pid 5090] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5094] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5092] <... write resumed>) = 4 [pid 5093] <... openat resumed>) = 3 [pid 5092] close(3) = 0 [pid 5092] write(1, "executing program\n", 18) = 18 [pid 5092] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC [pid 5093] write(3, "1000", 4 [pid 5092] <... openat resumed>) = 3 executing program [pid 5093] <... write resumed>) = 4 [pid 5092] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5093] close(3executing program ) = 0 ./strace-static-x86_64: Process 5095 attached [pid 5093] write(1, "executing program\n", 18 [pid 5095] set_robust_list(0x555571171660, 24 [pid 5093] <... write resumed>) = 18 [pid 5095] <... set_robust_list resumed>) = 0 [pid 5093] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC [pid 5095] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5093] <... openat resumed>) = 3 [pid 5095] <... prctl resumed>) = 0 [pid 5093] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5095] setpgid(0, 0 [pid 5094] <... clone resumed>, child_tidptr=0x555571171650) = 5095 [pid 5095] <... setpgid resumed>) = 0 [pid 5095] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5095] write(3, "1000", 4) = 4 [pid 5095] close(3) = 0 executing program [pid 5095] write(1, "executing program\n", 18) = 18 [pid 5095] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC) = 3 [pid 5095] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5086] kill(-5087, SIGKILL) = 0 [pid 5086] kill(5087, SIGKILL) = 0 [pid 5088] kill(-5090, SIGKILL) = 0 [pid 5088] kill(5090, SIGKILL) = 0 [pid 5089] kill(-5092, SIGKILL [pid 5091] kill(-5093, SIGKILL [pid 5089] <... kill resumed>) = 0 [pid 5091] <... kill resumed>) = 0 [pid 5089] kill(5092, SIGKILL [pid 5091] kill(5093, SIGKILL [pid 5089] <... kill resumed>) = 0 [pid 5091] <... kill resumed>) = 0 [pid 5094] kill(-5095, SIGKILL) = 0 [pid 5094] kill(5095, SIGKILL) = 0 [pid 5091] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5086] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5094] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5094] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5091] <... openat resumed>) = 3 [pid 5088] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5094] getdents64(3, [pid 5091] newfstatat(3, "", [pid 5088] <... openat resumed>) = 3 [pid 5094] <... getdents64 resumed>0x5555711726f0 /* 2 entries */, 32768) = 48 [pid 5091] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5088] newfstatat(3, "", [pid 5086] newfstatat(3, "", [pid 5094] getdents64(3, [pid 5091] getdents64(3, [pid 5088] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5086] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5094] <... getdents64 resumed>0x5555711726f0 /* 0 entries */, 32768) = 0 [pid 5086] getdents64(3, [pid 5094] close(3 [pid 5091] <... getdents64 resumed>0x5555711726f0 /* 2 entries */, 32768) = 48 [pid 5088] getdents64(3, [pid 5086] <... getdents64 resumed>0x5555711726f0 /* 2 entries */, 32768) = 48 [pid 5094] <... close resumed>) = 0 [pid 5091] getdents64(3, 0x5555711726f0 /* 0 entries */, 32768) = 0 [pid 5088] <... getdents64 resumed>0x5555711726f0 /* 2 entries */, 32768) = 48 [pid 5086] getdents64(3, [pid 5091] close(3 [pid 5088] getdents64(3, [pid 5086] <... getdents64 resumed>0x5555711726f0 /* 0 entries */, 32768) = 0 [pid 5091] <... close resumed>) = 0 [pid 5088] <... getdents64 resumed>0x5555711726f0 /* 0 entries */, 32768) = 0 [pid 5086] close(3 [pid 5088] close(3 [pid 5086] <... close resumed>) = 0 [pid 5089] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5088] <... close resumed>) = 0 [pid 5089] <... openat resumed>) = 3 [pid 5089] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5089] getdents64(3, 0x5555711726f0 /* 2 entries */, 32768) = 48 [pid 5089] getdents64(3, 0x5555711726f0 /* 0 entries */, 32768) = 0 [pid 5089] close(3) = 0 [ 87.002541][ T9] cfg80211: failed to load regulatory.db [pid 5087] <... ioctl resumed>) = ? [pid 5087] +++ killed by SIGKILL +++ [pid 5086] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5087, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=3476 /* 34.76 s */} --- [pid 5086] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5114 attached , child_tidptr=0x555571171650) = 5114 [pid 5114] set_robust_list(0x555571171660, 24) = 0 [pid 5114] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5114] setpgid(0, 0) = 0 [pid 5114] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5114] write(3, "1000", 4) = 4 [pid 5114] close(3) = 0 executing program [pid 5114] write(1, "executing program\n", 18) = 18 [pid 5114] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC) = 3 [pid 5114] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5086] kill(-5114, SIGKILL) = 0 [pid 5086] kill(5114, SIGKILL) = 0 [pid 5086] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5086] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5086] getdents64(3, 0x5555711726f0 /* 2 entries */, 32768) = 48 [pid 5086] getdents64(3, 0x5555711726f0 /* 0 entries */, 32768) = 0 [pid 5086] close(3) = 0 [pid 5090] <... ioctl resumed>) = ? [pid 5090] +++ killed by SIGKILL +++ [pid 5088] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5090, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=3474 /* 34.74 s */} --- [pid 5088] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5115 attached [pid 5115] set_robust_list(0x555571171660, 24 [pid 5088] <... clone resumed>, child_tidptr=0x555571171650) = 5115 [pid 5115] <... set_robust_list resumed>) = 0 [pid 5115] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5115] setpgid(0, 0) = 0 [pid 5115] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5115] write(3, "1000", 4executing program ) = 4 [pid 5115] close(3) = 0 [pid 5115] write(1, "executing program\n", 18) = 18 [pid 5115] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC) = 3 [pid 5115] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5088] kill(-5115, SIGKILL) = 0 [pid 5088] kill(5115, SIGKILL) = 0 [pid 5088] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5088] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5088] getdents64(3, 0x5555711726f0 /* 2 entries */, 32768) = 48 [pid 5088] getdents64(3, 0x5555711726f0 /* 0 entries */, 32768) = 0 [pid 5088] close(3) = 0 [pid 5092] <... ioctl resumed>) = ? [pid 5092] +++ killed by SIGKILL +++ [pid 5089] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5092, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=3526 /* 35.26 s */} --- [pid 5089] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5116 attached , child_tidptr=0x555571171650) = 5116 [pid 5116] set_robust_list(0x555571171660, 24) = 0 [pid 5116] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5116] setpgid(0, 0) = 0 [pid 5116] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 executing program [pid 5116] write(3, "1000", 4) = 4 [pid 5116] close(3) = 0 [pid 5116] write(1, "executing program\n", 18) = 18 [pid 5116] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC) = 3 [pid 5116] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5089] kill(-5116, SIGKILL) = 0 [pid 5089] kill(5116, SIGKILL) = 0 [pid 5089] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5089] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5089] getdents64(3, 0x5555711726f0 /* 2 entries */, 32768) = 48 [pid 5089] getdents64(3, 0x5555711726f0 /* 0 entries */, 32768) = 0 [pid 5089] close(3) = 0 [pid 5093] <... ioctl resumed>) = ? [pid 5093] +++ killed by SIGKILL +++ [pid 5091] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5093, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=3562 /* 35.62 s */} --- [pid 5091] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5123 attached , child_tidptr=0x555571171650) = 5123 [pid 5123] set_robust_list(0x555571171660, 24) = 0 [pid 5123] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5123] setpgid(0, 0) = 0 [pid 5123] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5123] write(3, "1000", 4executing program ) = 4 [pid 5123] close(3) = 0 [pid 5123] write(1, "executing program\n", 18) = 18 [pid 5123] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC) = 3 [pid 5123] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5091] kill(-5123, SIGKILL) = 0 [pid 5091] kill(5123, SIGKILL) = 0 [pid 5091] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5091] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5091] getdents64(3, 0x5555711726f0 /* 2 entries */, 32768) = 48 [pid 5091] getdents64(3, 0x5555711726f0 /* 0 entries */, 32768) = 0 [pid 5091] close(3) = 0 [ 286.654281][ T30] INFO: task syz-executor168:5114 blocked for more than 143 seconds. [ 286.663058][ T30] Not tainted 6.9.0-syzkaller-12255-g0b32d436c015 #0 [ 286.670648][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.679833][ T30] task:syz-executor168 state:D stack:26320 pid:5114 tgid:5114 ppid:5086 flags:0x00004006 [ 286.690575][ T30] Call Trace: [ 286.694354][ T30] [ 286.697326][ T30] __schedule+0x1796/0x49d0 [ 286.701976][ T30] ? __pfx___schedule+0x10/0x10 [ 286.707283][ T30] ? __pfx_lock_release+0x10/0x10 [ 286.712831][ T30] ? schedule+0x90/0x320 [ 286.717118][ T30] schedule+0x14b/0x320 [ 286.721314][ T30] schedule_preempt_disabled+0x13/0x30 [ 286.727311][ T30] rwsem_down_write_slowpath+0xeeb/0x13b0 [ 286.733129][ T30] ? mark_lock+0x9a/0x350 [ 286.737499][ T30] ? rwsem_down_write_slowpath+0xa06/0x13b0 [ 286.743531][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 286.750187][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 286.756241][ T30] ? __might_fault+0xaa/0x120 [ 286.761365][ T30] __down_write_common+0x1af/0x200 [ 286.766600][ T30] ? __pfx___down_write_common+0x10/0x10 [ 286.772767][ T30] ? __might_fault+0xc6/0x120 [ 286.777892][ T30] blkdev_common_ioctl+0x1637/0x23e0 [ 286.783701][ T30] ? __pfx_blkdev_common_ioctl+0x10/0x10 [ 286.789765][ T30] ? tomoyo_path_number_perm+0x208/0x880 [ 286.795882][ T30] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 286.801997][ T30] ? __asan_memset+0x23/0x50 [ 286.806637][ T30] ? smack_file_ioctl+0x2a1/0x3a0 [ 286.811711][ T30] ? __pfx_smack_file_ioctl+0x10/0x10 [ 286.817649][ T30] ? file_to_blk_mode+0xd5/0x140 [ 286.823129][ T30] blkdev_ioctl+0x4cd/0x6b0 [ 286.828101][ T30] ? __pfx_blkdev_ioctl+0x10/0x10 [ 286.833615][ T30] ? bpf_lsm_file_ioctl+0x9/0x10 [ 286.839024][ T30] ? security_file_ioctl+0x87/0xb0 [ 286.844677][ T30] ? __pfx_blkdev_ioctl+0x10/0x10 [ 286.850131][ T30] __se_sys_ioctl+0xfc/0x170 [ 286.855219][ T30] do_syscall_64+0xf3/0x230 [ 286.859772][ T30] ? clear_bhb_loop+0x35/0x90 [ 286.864832][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.870789][ T30] RIP: 0033:0x7f63060d8b29 [ 286.875280][ T30] RSP: 002b:00007ffd5775adf8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 286.884196][ T30] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f63060d8b29 [ 286.892684][ T30] RDX: 0000000020000040 RSI: 000000000000127f RDI: 0000000000000003 [ 286.901123][ T30] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 286.909655][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000012504 [ 286.918200][ T30] R13: 00007ffd5775ae0c R14: 00007ffd5775ae20 R15: 00007ffd5775ae10 [ 286.926741][ T30] [ 286.929834][ T30] [ 286.929834][ T30] Showing all locks held in the system: [ 286.938094][ T30] 1 lock held by khungtaskd/30: [ 286.943506][ T30] #0: ffffffff8e333e60 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 286.953533][ T30] 1 lock held by klogd/4523: [ 286.958155][ T30] 2 locks held by getty/4844: [ 286.962941][ T30] #0: ffff88802b24b0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 286.972842][ T30] #1: ffffc90002f0e2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 286.983122][ T30] 1 lock held by syz-executor168/5095: [ 286.989043][ T30] 1 lock held by syz-executor168/5114: [ 286.995006][ T30] #0: ffff88801d5442c8 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_common_ioctl+0x1637/0x23e0 [ 287.006235][ T30] 1 lock held by syz-executor168/5115: [ 287.012900][ T30] #0: ffff88801d5442c8 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_common_ioctl+0x1637/0x23e0 [ 287.024589][ T30] 1 lock held by syz-executor168/5116: [ 287.030087][ T30] #0: ffff88801d5442c8 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_common_ioctl+0x1637/0x23e0 [ 287.041708][ T30] 1 lock held by syz-executor168/5123: [ 287.047289][ T30] #0: ffff88801d5442c8 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_common_ioctl+0x1637/0x23e0 [ 287.059050][ T30] [ 287.061830][ T30] ============================================= [ 287.061830][ T30] [ 287.070481][ T30] NMI backtrace for cpu 0 [ 287.074857][ T30] CPU: 0 PID: 30 Comm: khungtaskd Not tainted 6.9.0-syzkaller-12255-g0b32d436c015 #0 [ 287.084347][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 287.094434][ T30] Call Trace: [ 287.097737][ T30] [ 287.100692][ T30] dump_stack_lvl+0x241/0x360 [ 287.105412][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 287.110645][ T30] ? __pfx__printk+0x10/0x10 [ 287.115268][ T30] ? vprintk_emit+0x631/0x770 [ 287.119983][ T30] ? __pfx_vprintk_emit+0x10/0x10 [ 287.125054][ T30] nmi_cpu_backtrace+0x49c/0x4d0 [ 287.130038][ T30] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 287.135536][ T30] ? _printk+0xd5/0x120 [ 287.139723][ T30] ? __pfx__printk+0x10/0x10 [ 287.144347][ T30] ? __wake_up_klogd+0xcc/0x110 [ 287.149250][ T30] ? __pfx__printk+0x10/0x10 [ 287.153891][ T30] ? __rcu_read_unlock+0xa1/0x110 [ 287.159046][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 287.165068][ T30] nmi_trigger_cpumask_backtrace+0x198/0x320 [ 287.171097][ T30] watchdog+0xfde/0x1020 [ 287.175383][ T30] ? watchdog+0x1ea/0x1020 [ 287.179844][ T30] ? __pfx_watchdog+0x10/0x10 [ 287.184572][ T30] kthread+0x2f0/0x390 [ 287.188688][ T30] ? __pfx_watchdog+0x10/0x10 [ 287.193406][ T30] ? __pfx_kthread+0x10/0x10 [ 287.198046][ T30] ret_from_fork+0x4b/0x80 [ 287.202511][ T30] ? __pfx_kthread+0x10/0x10 [ 287.207148][ T30] ret_from_fork_asm+0x1a/0x30 [ 287.211976][ T30] [ 287.215197][ T30] Sending NMI from CPU 0 to CPUs 1: [ 287.220453][ C1] NMI backtrace for cpu 1 [ 287.220466][ C1] CPU: 1 PID: 24 Comm: ksoftirqd/1 Not tainted 6.9.0-syzkaller-12255-g0b32d436c015 #0 [ 287.220486][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 287.220497][ C1] RIP: 0010:rcu_is_watching+0x5a/0xb0 [ 287.220525][ C1] Code: f0 48 c1 e8 03 42 80 3c 38 00 74 08 4c 89 f7 e8 dc 46 7c 00 48 c7 c3 08 7d 03 00 49 03 1e 48 89 d8 48 c1 e8 03 42 0f b6 04 38 <84> c0 75 22 8b 03 65 ff 0d 51 90 87 7e 74 10 83 e0 04 c1 e8 02 5b [ 287.220540][ C1] RSP: 0018:ffffc900001e7930 EFLAGS: 00000a02 [ 287.220557][ C1] RAX: 0000000000000000 RBX: ffff8880b9537d08 RCX: ffff888017ea0000 [ 287.220571][ C1] RDX: ffff888017ea0000 RSI: ffffffff8c1f10e0 RDI: ffffffff8c1f10a0 [ 287.220585][ C1] RBP: 0000000000000001 R08: ffffffff82043cf1 R09: 1ffffffff25edeb0 [ 287.220597][ C1] R10: dffffc0000000000 R11: fffffbfff25edeb1 R12: ffffea00018f9400 [ 287.220611][ C1] R13: 0000000000000000 R14: ffffffff8dda59e8 R15: dffffc0000000000 [ 287.220625][ C1] FS: 0000000000000000(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 [ 287.220640][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 287.220653][ C1] CR2: 00007f630614f0d0 CR3: 00000000684fc000 CR4: 00000000003506f0 [ 287.220669][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 287.220686][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 287.220697][ C1] Call Trace: [ 287.220704][ C1] [ 287.220711][ C1] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 287.220738][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 287.220759][ C1] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 287.220784][ C1] ? nmi_handle+0x2a/0x5a0 [ 287.220820][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 287.220841][ C1] ? nmi_handle+0x14f/0x5a0 [ 287.220868][ C1] ? nmi_handle+0x2a/0x5a0 [ 287.220897][ C1] ? rcu_is_watching+0x5a/0xb0 [ 287.220917][ C1] ? default_do_nmi+0x63/0x160 [ 287.220944][ C1] ? exc_nmi+0x123/0x1f0 [ 287.220968][ C1] ? end_repeat_nmi+0xf/0x53 [ 287.220993][ C1] ? page_ext_get+0x51/0x2a0 [ 287.221016][ C1] ? rcu_is_watching+0x5a/0xb0 [ 287.221037][ C1] ? rcu_is_watching+0x5a/0xb0 [ 287.221058][ C1] ? rcu_is_watching+0x5a/0xb0 [ 287.221079][ C1] [ 287.221085][ C1] [ 287.221091][ C1] ? page_ext_get+0x20/0x2a0 [ 287.221111][ C1] page_ext_get+0x5a/0x2a0 [ 287.221134][ C1] __page_table_check_zero+0xb1/0x340 [ 287.221159][ C1] free_unref_page+0xd2d/0xea0 [ 287.221183][ C1] ? rcu_core+0xa86/0x1830 [ 287.221201][ C1] ? __pfx_rcu_free_slab+0x10/0x10 [ 287.221229][ C1] rcu_core+0xafd/0x1830 [ 287.221256][ C1] ? __pfx_rcu_core+0x10/0x10 [ 287.221277][ C1] ? rcu_qs+0xf1/0x190 [ 287.221295][ C1] ? __pfx_rcu_qs+0x10/0x10 [ 287.221313][ C1] ? sched_clock_cpu+0x76/0x490 [ 287.221341][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 287.221362][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 287.221388][ C1] handle_softirqs+0x2c4/0x970 [ 287.221409][ C1] ? run_ksoftirqd+0xca/0x130 [ 287.221432][ C1] ? __pfx_handle_softirqs+0x10/0x10 [ 287.221456][ C1] run_ksoftirqd+0xca/0x130 [ 287.221476][ C1] ? __pfx_run_ksoftirqd+0x10/0x10 [ 287.221495][ C1] ? __pfx_ksoftirqd_should_run+0x10/0x10 [ 287.221517][ C1] ? __pfx_ksoftirqd_should_run+0x10/0x10 [ 287.221537][ C1] ? smpboot_thread_fn+0x2d3/0xa30 [ 287.221555][ C1] ? smpboot_thread_fn+0x4fb/0xa30 [ 287.221572][ C1] ? smpboot_thread_fn+0x656/0xa30 [ 287.221591][ C1] ? __pfx_run_ksoftirqd+0x10/0x10 [ 287.221610][ C1] smpboot_thread_fn+0x544/0xa30 [ 287.221629][ C1] ? smpboot_thread_fn+0x4e/0xa30 [ 287.221652][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 287.221670][ C1] kthread+0x2f0/0x390 [ 287.221698][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 287.221717][ C1] ? __pfx_kthread+0x10/0x10 [ 287.221740][ C1] ret_from_fork+0x4b/0x80 [ 287.221764][ C1] ? __pfx_kthread+0x10/0x10 [ 287.221786][ C1] ret_from_fork_asm+0x1a/0x30 [ 287.221821][ C1] [ 287.221829][ C1] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.376 msecs [ 287.614864][ T30] Kernel panic - not syncing: hung_task: blocked tasks [ 287.621757][ T30] CPU: 0 PID: 30 Comm: khungtaskd Not tainted 6.9.0-syzkaller-12255-g0b32d436c015 #0 [ 287.631246][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 287.641335][ T30] Call Trace: [ 287.644642][ T30] [ 287.647637][ T30] dump_stack_lvl+0x241/0x360 [ 287.652357][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 287.657593][ T30] ? __pfx__printk+0x10/0x10 [ 287.662212][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 287.668229][ T30] ? vscnprintf+0x5d/0x90 [ 287.672596][ T30] panic+0x349/0x860 [ 287.676525][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 287.682720][ T30] ? __pfx_panic+0x10/0x10 [ 287.687165][ T30] ? tick_nohz_tick_stopped+0x82/0xb0 [ 287.692583][ T30] ? __irq_work_queue_local+0x137/0x410 [ 287.698163][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 287.703569][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 287.709761][ T30] ? nmi_trigger_cpumask_backtrace+0x2d4/0x320 [ 287.715952][ T30] ? nmi_trigger_cpumask_backtrace+0x2d9/0x320 [ 287.722136][ T30] watchdog+0x101d/0x1020 [ 287.726501][ T30] ? watchdog+0x1ea/0x1020 [ 287.730954][ T30] ? __pfx_watchdog+0x10/0x10 [ 287.735656][ T30] kthread+0x2f0/0x390 [ 287.739740][ T30] ? __pfx_watchdog+0x10/0x10 [ 287.744443][ T30] ? __pfx_kthread+0x10/0x10 [ 287.749056][ T30] ret_from_fork+0x4b/0x80 [ 287.753495][ T30] ? __pfx_kthread+0x10/0x10 [ 287.758111][ T30] ret_from_fork_asm+0x1a/0x30 [ 287.762914][ T30] [ 287.766203][ T30] Kernel Offset: disabled [ 287.770542][ T30] Rebooting in 86400 seconds..