./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2475225305

<...>
Warning: Permanently added '10.128.1.10' (ECDSA) to the list of known hosts.
execve("./syz-executor2475225305", ["./syz-executor2475225305"], 0x7ffe0c593580 /* 10 vars */) = 0
brk(NULL)                               = 0x5555558e1000
brk(0x5555558e1c40)                     = 0x5555558e1c40
arch_prctl(ARCH_SET_FS, 0x5555558e1300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
set_tid_address(0x5555558e15d0)         = 5084
set_robust_list(0x5555558e15e0, 24)     = 0
rt_sigaction(SIGRTMIN, {sa_handler=0x7f44ae61c5d0, sa_mask=[], sa_flags=SA_RESTORER|SA_SIGINFO, sa_restorer=0x7f44ae61cca0}, NULL, 8) = 0
rt_sigaction(SIGRT_1, {sa_handler=0x7f44ae61c670, sa_mask=[], sa_flags=SA_RESTORER|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f44ae61cca0}, NULL, 8) = 0
rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor2475225305", 4096) = 28
brk(0x555555902c40)                     = 0x555555902c40
brk(0x555555903000)                     = 0x555555903000
mprotect(0x7f44ae6de000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
unshare(CLONE_NEWPID)                   = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5085 attached
, child_tidptr=0x5555558e15d0) = 5085
[pid  5085] set_robust_list(0x5555558e15e0, 24) = 0
[pid  5085] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy)
[pid  5085] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5085] setsid()                    = 1
[pid  5085] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0
[pid  5085] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0
[pid  5085] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0
[pid  5085] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0
[pid  5085] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0
[pid  5085] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0
[pid  5085] unshare(CLONE_NEWNS)        = 0
[pid  5085] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0
[pid  5085] unshare(CLONE_NEWIPC)       = 0
[pid  5085] unshare(CLONE_NEWCGROUP)    = 0
[pid  5085] unshare(CLONE_NEWUTS)       = 0
[pid  5085] unshare(CLONE_SYSVSEM)      = 0
[pid  5085] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5085] write(3, "16777216", 8)     = 8
[pid  5085] close(3)                    = 0
[pid  5085] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3
[pid  5085] write(3, "536870912", 9)    = 9
[pid  5085] close(3)                    = 0
[pid  5085] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5085] write(3, "1024", 4)         = 4
[pid  5085] close(3)                    = 0
[pid  5085] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5085] write(3, "8192", 4)         = 4
[pid  5085] close(3)                    = 0
[pid  5085] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5085] write(3, "1024", 4)         = 4
[pid  5085] close(3)                    = 0
[pid  5085] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3
[pid  5085] write(3, "1024", 4)         = 4
[pid  5085] close(3)                    = 0
[pid  5085] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3
[pid  5085] write(3, "1024 1048576 500 1024", 21) = 21
[pid  5085] close(3)                    = 0
[pid  5085] getpid()                    = 1
[pid  5085] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5085] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5085] unshare(CLONE_NEWNET)       = 0
[pid  5085] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3
[pid  5085] write(3, "0 65535", 7)      = 7
[pid  5085] close(3)                    = 0
[pid  5085] mkdir("/dev/binderfs", 0777) = 0
[pid  5085] mount("binder", "/dev/binderfs", "binder", 0, NULL) = 0
[pid  5085] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5085] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5087 attached
 <unfinished ...>
[pid  5087] set_robust_list(0x5555558e15e0, 24) = 0
[pid  5087] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5085] <... clone resumed>, child_tidptr=0x5555558e15d0) = 2
[pid  5087] <... prctl resumed>)        = 0
[pid  5087] setpgid(0, 0)               = 0
[pid  5087] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5087] write(3, "1000", 4)         = 4
[pid  5087] close(3)                    = 0
[pid  5087] futex(0x7f44ae6e44cc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5087] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f44ae5ec000
[pid  5087] mprotect(0x7f44ae5ed000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5087] clone(child_stack=0x7f44ae60c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3], tls=0x7f44ae60c700, child_tidptr=0x7f44ae60c9d0) = 3
[pid  5087] futex(0x7f44ae6e44c8, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5088 attached
) = 0
[pid  5087] futex(0x7f44ae6e44cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5088] set_robust_list(0x7f44ae60c9e0, 24) = 0
[pid  5088] socketpair(AF_UNIX, SOCK_STREAM, 0, [3, 4]) = 0
[pid  5088] futex(0x7f44ae6e44cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5087] <... futex resumed>)        = 0
[pid  5087] futex(0x7f44ae6e44c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5087] futex(0x7f44ae6e44cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5088] <... futex resumed>)        = 1
[pid  5088] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 5
[pid  5088] futex(0x7f44ae6e44cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5087] <... futex resumed>)        = 0
[pid  5087] futex(0x7f44ae6e44c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5087] futex(0x7f44ae6e44cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5088] <... futex resumed>)        = 1
[pid  5088] ioctl(5, NBD_SET_SOCK, 3)   = 0
[pid  5088] futex(0x7f44ae6e44cc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5087] <... futex resumed>)        = 0
[pid  5088] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY|O_NOATIME <unfinished ...>
[pid  5087] futex(0x7f44ae6e44c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5088] <... openat resumed>)       = 6
[pid  5087] <... futex resumed>)        = 0
[pid  5088] futex(0x7f44ae6e44cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5087] futex(0x7f44ae6e44cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5088] <... futex resumed>)        = 0
[pid  5087] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  5088] ioctl(6, NBD_DO_IT <unfinished ...>
[pid  5087] futex(0x7f44ae6e44c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5087] futex(0x7f44ae6e44cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out)
[pid  5087] futex(0x7f44ae6e44dc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5087] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f44ae5cb000
[pid  5087] mprotect(0x7f44ae5cc000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5087] clone(child_stack=0x7f44ae5eb3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5090 attached
, parent_tid=[4], tls=0x7f44ae5eb700, child_tidptr=0x7f44ae5eb9d0) = 4
[pid  5090] set_robust_list(0x7f44ae5eb9e0, 24) = 0
[pid  5090] futex(0x7f44ae6e44d8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5087] futex(0x7f44ae6e44d8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5090] <... futex resumed>)        = 0
[pid  5087] <... futex resumed>)        = 1
[pid  5090] ioctl(6, NBD_SET_SIZE_BLOCKS, 65536 <unfinished ...>
[pid  5087] futex(0x7f44ae6e44dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5090] <... ioctl resumed>)        = 0
[pid  5090] futex(0x7f44ae6e44dc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5087] <... futex resumed>)        = 0
[   63.951649][ T5090] nbd0: detected capacity change from 0 to 131072
[pid  5090] futex(0x7f44ae6e44d8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5087] close(3)                    = 0
[pid  5087] close(4 <unfinished ...>
[pid  5088] <... ioctl resumed>)        = 0
[pid  5088] futex(0x7f44ae6e44cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5087] <... close resumed>)        = 0
[pid  5088] <... futex resumed>)        = 0
[pid  5087] close(5 <unfinished ...>
[   64.097387][ T4402] block nbd0: Receive control failed (result -104)
[pid  5088] futex(0x7f44ae6e44c8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5085] kill(-2, SIGKILL <unfinished ...>
[pid  5090] <... futex resumed>)        = ?
[pid  5088] <... futex resumed>)        = ?
[pid  5085] <... kill resumed>)         = 0
[pid  5090] +++ killed by SIGKILL +++
[pid  5088] +++ killed by SIGKILL +++
[pid  5085] kill(2, SIGKILL)            = 0
[pid  5085] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5085] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0
[pid  5085] getdents64(3, 0x5555558e2620 /* 2 entries */, 32768) = 48
[pid  5085] getdents64(3, 0x5555558e2620 /* 0 entries */, 32768) = 0
[pid  5085] close(3)                    = 0
[   76.531449][  T898] cfg80211: failed to load regulatory.db
[   94.449860][   T52] block nbd0: Possible stuck request ffff88801e950000: control (read@0,4096B). Runtime 30 seconds
[  124.529740][   T52] block nbd0: Possible stuck request ffff88801e950000: control (read@0,4096B). Runtime 60 seconds
[  126.553715][ T4447] udevd[4447]: worker [5089] /devices/virtual/block/nbd0 is taking a long time
[  154.609346][   T52] block nbd0: Possible stuck request ffff88801e950000: control (read@0,4096B). Runtime 90 seconds
[  184.689375][   T52] block nbd0: Possible stuck request ffff88801e950000: control (read@0,4096B). Runtime 120 seconds
[  214.769400][   T52] block nbd0: Possible stuck request ffff88801e950000: control (read@0,4096B). Runtime 150 seconds
[  244.849417][   T52] block nbd0: Possible stuck request ffff88801e950000: control (read@0,4096B). Runtime 180 seconds
[  246.713822][ T4447] udevd[4447]: worker [5089] /devices/virtual/block/nbd0 timeout; kill it
[  246.722753][ T4447] udevd[4447]: seq 7532 '/devices/virtual/block/nbd0' killed
[  274.929450][   T52] block nbd0: Possible stuck request ffff88801e950000: control (read@0,4096B). Runtime 210 seconds
[  286.449282][   T28] INFO: task syz-executor247:5087 blocked for more than 143 seconds.
[  286.457438][   T28]       Not tainted 6.3.0-rc3-next-20230322-syzkaller #0
[  286.464605][   T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  286.473321][   T28] task:syz-executor247 state:D stack:27440 pid:5087  ppid:5085   flags:0x00004006
[  286.482596][   T28] Call Trace:
[  286.485886][   T28]  <TASK>
[  286.488810][   T28]  __schedule+0x1d23/0x5650
[  286.493430][   T28]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  286.499464][   T28]  ? mark_lock.part.0+0xee/0x1970
[  286.504492][   T28]  ? io_schedule_timeout+0x150/0x150
[  286.509809][   T28]  ? __mutex_lock+0xa36/0x1350
[  286.514604][   T28]  schedule+0xde/0x1a0
[  286.518669][   T28]  schedule_preempt_disabled+0x13/0x20
[  286.524166][   T28]  __mutex_lock+0xa3b/0x1350
[  286.528784][   T28]  ? blkdev_put+0xc0/0x770
[  286.533305][   T28]  ? mutex_lock_io_nested+0x11a0/0x11a0
[  286.538873][   T28]  ? locks_check_ctx_file_list+0x1d/0x320
[  286.544737][   T28]  ? lock_acquire+0x32/0xc0
[  286.549288][   T28]  ? do_raw_spin_unlock+0x175/0x230
[  286.554484][   T28]  ? _raw_spin_unlock+0x28/0x40
[  286.559365][   T28]  ? locks_remove_file+0x2fb/0x5b0
[  286.564510][   T28]  blkdev_put+0xc0/0x770
[  286.568753][   T28]  blkdev_close+0x68/0x80
[  286.573119][   T28]  __fput+0x27c/0xa90
[  286.577195][   T28]  ? blkdev_fsync+0xa0/0xa0
[  286.581764][   T28]  task_work_run+0x16f/0x270
[  286.586442][   T28]  ? task_work_cancel+0x30/0x30
[  286.591383][   T28]  ptrace_notify+0x118/0x140
[  286.596036][   T28]  syscall_exit_to_user_mode_prepare+0x129/0x220
[  286.602426][   T28]  syscall_exit_to_user_mode+0xd/0x50
[  286.607832][   T28]  do_syscall_64+0x46/0xb0
[  286.612289][   T28]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  286.618272][   T28] RIP: 0033:0x7f44ae61bbbb
[  286.622718][   T28] RSP: 002b:00007fffa2fdd5c0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  286.631691][   T28] RAX: 0000000000000000 RBX: 0000000000000006 RCX: 00007f44ae61bbbb
[  286.639695][   T28] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  286.647938][   T28] RBP: 0000000000000006 R08: 0000000000000000 R09: 0000000000000064
[  286.655941][   T28] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000f2be
[  286.664142][   T28] R13: 00007f44ae6e44dc R14: 00007fffa2fdd620 R15: 00007f44ae6e44c0
[  286.672182][   T28]  </TASK>
[  286.675237][   T28] 
[  286.675237][   T28] Showing all locks held in the system:
[  286.683083][   T28] 1 lock held by rcu_tasks_kthre/13:
[  286.688408][   T28]  #0: ffffffff8c795a70 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x31/0xd80
[  286.698947][   T28] 1 lock held by rcu_tasks_trace/14:
[  286.704274][   T28]  #0: ffffffff8c795770 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x31/0xd80
[  286.715291][   T28] 1 lock held by khungtaskd/28:
[  286.720178][   T28]  #0: ffffffff8c796680 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x51/0x390
[  286.730118][   T28] 2 locks held by getty/4763:
[  286.734797][   T28]  #0: ffff888028452098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x26/0x80
[  286.744740][   T28]  #1: ffffc900015902f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xef4/0x13e0
[  286.755170][   T28] 1 lock held by syz-executor247/5087:
[  286.760666][   T28]  #0: ffff888146b3b4c8 (&disk->open_mutex){+.+.}-{3:3}, at: blkdev_put+0xc0/0x770
[  286.770062][   T28] 1 lock held by udevd/5089:
[  286.774659][   T28]  #0: ffff888146b3b4c8 (&disk->open_mutex){+.+.}-{3:3}, at: blkdev_get_by_dev.part.0+0x9b/0xb80
[  286.785246][   T28] 
[  286.787586][   T28] =============================================
[  286.787586][   T28] 
[  286.796093][   T28] NMI backtrace for cpu 1
[  286.800430][   T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.3.0-rc3-next-20230322-syzkaller #0
[  286.809707][   T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[  286.819758][   T28] Call Trace:
[  286.823026][   T28]  <TASK>
[  286.826122][   T28]  dump_stack_lvl+0xd9/0x150
[  286.830791][   T28]  nmi_cpu_backtrace+0x29c/0x350
[  286.835757][   T28]  ? lapic_can_unplug_cpu+0xa0/0xa0
[  286.841021][   T28]  nmi_trigger_cpumask_backtrace+0x2a4/0x300
[  286.847011][   T28]  watchdog+0xe16/0x1090
[  286.851301][   T28]  ? proc_dohung_task_timeout_secs+0x80/0x80
[  286.857296][   T28]  kthread+0x33e/0x440
[  286.861456][   T28]  ? kthread_complete_and_exit+0x40/0x40
[  286.867099][   T28]  ret_from_fork+0x1f/0x30
[  286.871544][   T28]  </TASK>
[  286.874666][   T28] Sending NMI from CPU 1 to CPUs 0:
[  286.879917][    C0] NMI backtrace for cpu 0
[  286.879926][    C0] CPU: 0 PID: 2801 Comm: kworker/u4:6 Not tainted 6.3.0-rc3-next-20230322-syzkaller #0
[  286.879945][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[  286.879955][    C0] Workqueue: events_unbound toggle_allocation_gate
[  286.880043][    C0] RIP: 0010:decay_load+0x9/0xa0
[  286.880083][    C0] Code: 0c 48 2d b0 01 00 00 5b c3 31 c0 5b c3 0f 0b eb f0 e8 bb 9e 77 00 eb b5 e8 d4 9e 77 00 eb d6 66 90 48 81 fe e0 07 00 00 77 65 <55> 89 f0 48 89 e5 41 54 53 48 89 fb 48 83 e4 f0 48 83 fe 1f 77 52
[  286.880100][    C0] RSP: 0018:ffffc9000c1c7698 EFLAGS: 00000087
[  286.880113][    C0] RAX: 000000000000001a RBX: 0000000000000000 RCX: 0000000000000000
[  286.880124][    C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000ba7e
[  286.880135][    C0] RBP: ffff8880b993c500 R08: ffff8880b993d0d0 R09: ffff8880b993d0c8
[  286.880147][    C0] R10: fffffbfff1cf1072 R11: ffff8880b993d0d8 R12: 0000000000000001
[  286.880159][    C0] R13: ffff8880b993d0dc R14: 0000000000000000 R15: 0000000000000000
[  286.880170][    C0] FS:  0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[  286.880188][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  286.880202][    C0] CR2: 0000563246f0f680 CR3: 000000000c571000 CR4: 00000000003506f0
[  286.880221][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  286.880231][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  286.880242][    C0] Call Trace:
[  286.880247][    C0]  <TASK>
[  286.880252][    C0]  update_irq_load_avg+0x74d/0xd40
[  286.880283][    C0]  update_rq_clock+0x3e5/0xaa0
[  286.880324][    C0]  load_balance+0xb00/0x2c40
[  286.880342][    C0]  ? trace_lock_acquire+0x12d/0x180
[  286.880369][    C0]  ? find_busiest_group+0x9f0/0x9f0
[  286.880398][    C0]  newidle_balance+0x6e2/0x11e0
[  286.880422][    C0]  ? load_balance+0x2c40/0x2c40
[  286.880445][    C0]  pick_next_task_fair+0x9a/0x1290
[  286.880468][    C0]  __schedule+0x45c/0x5650
[  286.880497][    C0]  ? prepare_to_wait_event+0xd0/0x6a0
[  286.880518][    C0]  ? lock_downgrade+0x670/0x690
[  286.880540][    C0]  ? io_schedule_timeout+0x150/0x150
[  286.880565][    C0]  ? mark_held_locks+0x9f/0xe0
[  286.880585][    C0]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[  286.880604][    C0]  ? lockdep_hardirqs_on+0x7d/0x100
[  286.880631][    C0]  ? _raw_spin_unlock_irqrestore+0x41/0x70
[  286.880651][    C0]  schedule+0xde/0x1a0
[  286.880674][    C0]  toggle_allocation_gate+0x1ad/0x230
[  286.880703][    C0]  ? wake_up_kfence_timer+0x30/0x30
[  286.880731][    C0]  ? trace_lock_acquire+0x12d/0x180
[  286.880749][    C0]  ? prepare_to_wait_exclusive+0x2c0/0x2c0
[  286.880771][    C0]  ? process_one_work+0x8b7/0x15e0
[  286.880794][    C0]  ? lock_acquire+0x32/0xc0
[  286.880814][    C0]  ? process_one_work+0x8b7/0x15e0
[  286.880839][    C0]  process_one_work+0x99a/0x15e0
[  286.880867][    C0]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[  286.880889][    C0]  ? rcu_is_watching+0x12/0xb0
[  286.880916][    C0]  ? spin_bug+0x1c0/0x1c0
[  286.880937][    C0]  ? lock_acquire+0x32/0xc0
[  286.880956][    C0]  ? worker_thread+0x16d/0x10c0
[  286.880982][    C0]  worker_thread+0x67d/0x10c0
[  286.881010][    C0]  ? process_one_work+0x15e0/0x15e0
[  286.881034][    C0]  kthread+0x33e/0x440
[  286.881053][    C0]  ? kthread_complete_and_exit+0x40/0x40
[  286.881075][    C0]  ret_from_fork+0x1f/0x30
[  286.881106][    C0]  </TASK>
[  286.881112][    C0] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.195 msecs
[  286.881919][   T28] Kernel panic - not syncing: hung_task: blocked tasks
[  286.881930][   T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.3.0-rc3-next-20230322-syzkaller #0
[  286.881954][   T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[  286.881965][   T28] Call Trace:
[  286.881970][   T28]  <TASK>
[  286.881977][   T28]  dump_stack_lvl+0xd9/0x150
[  286.882011][   T28]  panic+0x688/0x730
[  286.882072][   T28]  ? panic_smp_self_stop+0x90/0x90
[  286.882106][   T28]  ? lapic_can_unplug_cpu+0xa0/0xa0
[  286.882128][   T28]  ? preempt_schedule_thunk+0x1a/0x20
[  286.882164][   T28]  ? watchdog+0xbe8/0x1090
[  286.882194][   T28]  watchdog+0xbf9/0x1090
[  286.882222][   T28]  ? proc_dohung_task_timeout_secs+0x80/0x80
[  286.882252][   T28]  kthread+0x33e/0x440
[  286.882275][   T28]  ? kthread_complete_and_exit+0x40/0x40
[  286.882304][   T28]  ret_from_fork+0x1f/0x30
[  286.882347][   T28]  </TASK>
[  286.885948][   T28] Kernel Offset: disabled
[  287.307089][   T28] Rebooting in 86400 seconds..