./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4048422929 <...> Warning: Permanently added '10.128.1.44' (ED25519) to the list of known hosts. execve("./syz-executor4048422929", ["./syz-executor4048422929"], 0x7ffe8a1b3610 /* 10 vars */) = 0 brk(NULL) = 0x555565ec5000 brk(0x555565ec5d00) = 0x555565ec5d00 arch_prctl(ARCH_SET_FS, 0x555565ec5380) = 0 set_tid_address(0x555565ec5650) = 5242 set_robust_list(0x555565ec5660, 24) = 0 rseq(0x555565ec5ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor4048422929", 4096) = 28 getrandom("\x48\x68\x1b\x54\xa9\x44\x4b\x1c", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555565ec5d00 brk(0x555565ee6d00) = 0x555565ee6d00 brk(0x555565ee7000) = 0x555565ee7000 mprotect(0x7ff552b67000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5243 attached [pid 5243] set_robust_list(0x555565ec5660, 24) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5242] <... clone resumed>, child_tidptr=0x555565ec5650) = 5243 [pid 5242] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5244 attached [pid 5244] set_robust_list(0x555565ec5660, 24 [pid 5243] <... clone resumed>, child_tidptr=0x555565ec5650) = 5244 ./strace-static-x86_64: Process 5245 attached [pid 5244] <... set_robust_list resumed>) = 0 [pid 5242] <... clone resumed>, child_tidptr=0x555565ec5650) = 5245 [pid 5245] set_robust_list(0x555565ec5660, 24 [pid 5242] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5245] <... set_robust_list resumed>) = 0 [pid 5244] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5244] setpgid(0, 0) = 0 [pid 5244] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 5246 attached ./strace-static-x86_64: Process 5247 attached [pid 5246] set_robust_list(0x555565ec5660, 24 [pid 5242] <... clone resumed>, child_tidptr=0x555565ec5650) = 5247 [pid 5247] set_robust_list(0x555565ec5660, 24 [pid 5242] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5247] <... set_robust_list resumed>) = 0 [pid 5246] <... set_robust_list resumed>) = 0 [pid 5245] <... clone resumed>, child_tidptr=0x555565ec5650) = 5246 [pid 5244] <... openat resumed>) = 3 [pid 5244] write(3, "1000", 4./strace-static-x86_64: Process 5248 attached [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5242] <... clone resumed>, child_tidptr=0x555565ec5650) = 5248 [pid 5248] set_robust_list(0x555565ec5660, 24) = 0 [pid 5244] <... write resumed>) = 4 [pid 5244] close(3) = 0 ./strace-static-x86_64: Process 5249 attached [pid 5242] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] <... prctl resumed>) = 0 [pid 5244] write(1, "executing program\n", 18 [pid 5248] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] setpgid(0, 0executing program [pid 5244] <... write resumed>) = 18 [pid 5246] <... setpgid resumed>) = 0 ./strace-static-x86_64: Process 5250 attached [ 128.497962][ T29] audit: type=1400 audit(1729500743.408:88): avc: denied { execmem } for pid=5242 comm="syz-executor404" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [pid 5244] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC [pid 5249] set_robust_list(0x555565ec5660, 24 [pid 5246] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5244] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5251 attached [pid 5250] set_robust_list(0x555565ec5660, 24 [pid 5251] set_robust_list(0x555565ec5660, 24 [pid 5250] <... set_robust_list resumed>) = 0 [pid 5251] <... set_robust_list resumed>) = 0 [pid 5250] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5252 attached [pid 5251] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5244] dup(3 [pid 5251] setpgid(0, 0 [pid 5244] <... dup resumed>) = 4 [pid 5252] set_robust_list(0x555565ec5660, 24 [pid 5244] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5251] <... setpgid resumed>) = 0 [pid 5252] <... set_robust_list resumed>) = 0 [pid 5252] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5251] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5250] <... clone resumed>, child_tidptr=0x555565ec5650) = 5252 [pid 5252] <... prctl resumed>) = 0 [pid 5251] <... openat resumed>) = 3 [pid 5252] setpgid(0, 0) = 0 [pid 5251] write(3, "1000", 4) = 4 [pid 5252] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5242] <... clone resumed>, child_tidptr=0x555565ec5650) = 5250 [pid 5252] <... openat resumed>) = 3 [pid 5251] close(3 [pid 5249] <... set_robust_list resumed>) = 0 [pid 5248] <... clone resumed>, child_tidptr=0x555565ec5650) = 5251 [pid 5247] <... clone resumed>, child_tidptr=0x555565ec5650) = 5249 [pid 5246] <... openat resumed>) = 3 [pid 5251] <... close resumed>) = 0 executing program [pid 5251] write(1, "executing program\n", 18 [pid 5249] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5246] write(3, "1000", 4 [pid 5252] write(3, "1000", 4 [pid 5251] <... write resumed>) = 18 [pid 5252] <... write resumed>) = 4 [pid 5251] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC [pid 5249] <... prctl resumed>) = 0 [pid 5246] <... write resumed>) = 4 [pid 5252] close(3 [pid 5251] <... openat resumed>) = 3 [pid 5249] setpgid(0, 0 [pid 5246] close(3executing program [pid 5252] <... close resumed>) = 0 [pid 5251] dup(3 [pid 5249] <... setpgid resumed>) = 0 [pid 5246] <... close resumed>) = 0 [pid 5252] write(1, "executing program\n", 18executing program [pid 5246] write(1, "executing program\n", 18 [pid 5252] <... write resumed>) = 18 [pid 5251] <... dup resumed>) = 4 [pid 5249] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5252] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC [pid 5251] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5246] <... write resumed>) = 18 [pid 5252] <... openat resumed>) = 3 [pid 5249] <... openat resumed>) = 3 [pid 5246] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC [pid 5252] dup(3 [pid 5249] write(3, "1000", 4 [pid 5246] <... openat resumed>) = 3 [pid 5252] <... dup resumed>) = 4 [pid 5249] <... write resumed>) = 4 [pid 5252] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5246] dup(3executing program [pid 5249] close(3) = 0 [pid 5246] <... dup resumed>) = 4 [pid 5249] write(1, "executing program\n", 18 [pid 5246] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5249] <... write resumed>) = 18 [pid 5249] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC) = 3 [pid 5249] dup(3) = 4 [ 128.545665][ T29] audit: type=1400 audit(1729500743.448:89): avc: denied { read append } for pid=5244 comm="syz-executor404" name="nullb0" dev="devtmpfs" ino=680 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 128.572013][ T29] audit: type=1400 audit(1729500743.448:90): avc: denied { open } for pid=5244 comm="syz-executor404" path="/dev/nullb0" dev="devtmpfs" ino=680 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [pid 5249] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5245] kill(-5246, SIGKILL [pid 5243] kill(-5244, SIGKILL [pid 5245] <... kill resumed>) = 0 [pid 5245] kill(5246, SIGKILL) = 0 [pid 5243] <... kill resumed>) = 0 [pid 5243] kill(5244, SIGKILL) = 0 [pid 5250] kill(-5252, SIGKILL) = 0 [pid 5250] kill(5252, SIGKILL) = 0 [pid 5248] kill(-5251, SIGKILL) = 0 [pid 5248] kill(5251, SIGKILL [pid 5247] kill(-5249, SIGKILL) = 0 [pid 5248] <... kill resumed>) = 0 [pid 5247] kill(5249, SIGKILL) = 0 [pid 5245] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5250] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5248] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] <... openat resumed>) = 3 [pid 5247] <... openat resumed>) = 3 [pid 5250] <... openat resumed>) = 3 [pid 5245] newfstatat(3, "", [pid 5243] <... openat resumed>) = 3 [pid 5247] newfstatat(3, "", [pid 5250] newfstatat(3, "", [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, [pid 5250] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5248] <... openat resumed>) = 3 [pid 5245] getdents64(3, [pid 5243] newfstatat(3, "", [pid 5247] <... getdents64 resumed>0x555565ec66f0 /* 2 entries */, 32768) = 48 [pid 5248] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, [pid 5250] getdents64(3, [pid 5245] <... getdents64 resumed>0x555565ec66f0 /* 2 entries */, 32768) = 48 [pid 5250] <... getdents64 resumed>0x555565ec66f0 /* 2 entries */, 32768) = 48 [pid 5248] getdents64(3, [pid 5247] <... getdents64 resumed>0x555565ec66f0 /* 0 entries */, 32768) = 0 [pid 5245] getdents64(3, [pid 5250] getdents64(3, [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5245] <... getdents64 resumed>0x555565ec66f0 /* 0 entries */, 32768) = 0 [pid 5250] <... getdents64 resumed>0x555565ec66f0 /* 0 entries */, 32768) = 0 [pid 5248] <... getdents64 resumed>0x555565ec66f0 /* 2 entries */, 32768) = 48 [pid 5247] close(3 [pid 5250] close(3 [pid 5248] getdents64(3, [pid 5247] <... close resumed>) = 0 [pid 5245] close(3 [pid 5243] getdents64(3, [pid 5250] <... close resumed>) = 0 [pid 5248] <... getdents64 resumed>0x555565ec66f0 /* 0 entries */, 32768) = 0 [pid 5245] <... close resumed>) = 0 [pid 5248] close(3 [pid 5243] <... getdents64 resumed>0x555565ec66f0 /* 2 entries */, 32768) = 48 [pid 5248] <... close resumed>) = 0 [pid 5243] getdents64(3, 0x555565ec66f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5244] <... fallocate resumed>) = ? [pid 5244] +++ killed by SIGKILL +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5244, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=3211 /* 32.11 s */} --- [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5253 attached [pid 5253] set_robust_list(0x555565ec5660, 24 [pid 5243] <... clone resumed>, child_tidptr=0x555565ec5650) = 5253 [pid 5253] <... set_robust_list resumed>) = 0 [pid 5253] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5253] setpgid(0, 0) = 0 [pid 5253] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 executing program [pid 5253] write(3, "1000", 4) = 4 [pid 5253] close(3) = 0 [pid 5253] write(1, "executing program\n", 18) = 18 [pid 5253] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC) = 3 [pid 5253] dup(3) = 4 [pid 5253] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5243] kill(-5253, SIGKILL) = 0 [pid 5243] kill(5253, SIGKILL) = 0 [pid 5243] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x555565ec66f0 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(3, 0x555565ec66f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5251] <... fallocate resumed>) = ? [pid 5251] +++ killed by SIGKILL +++ [pid 5248] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5251, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=3243 /* 32.43 s */} --- [pid 5248] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5260 attached [pid 5260] set_robust_list(0x555565ec5660, 24 [pid 5248] <... clone resumed>, child_tidptr=0x555565ec5650) = 5260 [pid 5260] <... set_robust_list resumed>) = 0 [pid 5260] prctl(PR_SET_PDEATHSIG, SIGKILLexecuting program ) = 0 [pid 5260] setpgid(0, 0) = 0 [pid 5260] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5260] write(3, "1000", 4) = 4 [pid 5260] close(3) = 0 [pid 5260] write(1, "executing program\n", 18) = 18 [pid 5260] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC) = 3 [pid 5260] dup(3) = 4 [pid 5260] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5248] kill(-5260, SIGKILL) = 0 [pid 5248] kill(5260, SIGKILL) = 0 [pid 5248] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5248] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5248] getdents64(3, 0x555565ec66f0 /* 2 entries */, 32768) = 48 [pid 5248] getdents64(3, 0x555565ec66f0 /* 0 entries */, 32768) = 0 [pid 5248] close(3) = 0 [ 286.758799][ T30] INFO: task syz-executor404:5246 blocked for more than 143 seconds. [ 286.768672][ T30] Not tainted 6.12.0-rc3-syzkaller-00525-gc55228220dd3 #0 [ 286.776344][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.785992][ T30] task:syz-executor404 state:D stack:28384 pid:5246 tgid:5246 ppid:5245 flags:0x00004006 [ 286.797184][ T30] Call Trace: [ 286.800597][ T30] [ 286.803557][ T30] __schedule+0xe55/0x5730 [ 286.808139][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 286.816293][ T30] ? mark_lock+0xb5/0xc60 [ 286.822832][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 286.828135][ T30] ? __pfx___schedule+0x10/0x10 [ 286.833930][ T30] ? schedule+0x298/0x350 [ 286.838414][ T30] ? __pfx_lock_release+0x10/0x10 [ 286.843471][ T30] ? trace_lock_acquire+0x14a/0x1d0 [ 286.848754][ T30] ? lock_acquire+0x2f/0xb0 [ 286.853286][ T30] ? schedule+0x1fd/0x350 [ 286.858657][ T30] schedule+0xe7/0x350 [ 286.864493][ T30] schedule_preempt_disabled+0x13/0x30 [ 286.871023][ T30] rwsem_down_write_slowpath+0x539/0x12a0 [ 286.878529][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 286.886223][ T30] ? rcu_is_watching+0x12/0xc0 [ 286.891104][ T30] ? lock_acquire+0x2f/0xb0 [ 286.895637][ T30] ? blkdev_fallocate+0x1da/0x390 [ 286.900818][ T30] down_write+0x1d8/0x200 [ 286.905202][ T30] ? __pfx_down_write+0x10/0x10 [ 286.911307][ T30] ? inode_security+0x101/0x130 [ 286.917904][ T30] blkdev_fallocate+0x1da/0x390 [ 286.922941][ T30] ? __pfx_blkdev_fallocate+0x10/0x10 [ 286.928533][ T30] vfs_fallocate+0x459/0xf90 [ 286.934104][ T30] __x64_sys_fallocate+0xd9/0x150 [ 286.940046][ T30] do_syscall_64+0xcd/0x250 [ 286.945412][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.952295][ T30] RIP: 0033:0x7ff552af4b29 [ 286.958419][ T30] RSP: 002b:00007ffffc44f878 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 286.966886][ T30] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff552af4b29 [ 286.987638][ T30] RDX: 0000000000000000 RSI: 0000000000000010 RDI: 0000000000000004 [ 286.996377][ T30] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.005387][ T30] R10: 0000002000000400 R11: 0000000000000246 R12: 0000000000000001 [ 287.014316][ T30] R13: 00007ffffc44fa98 R14: 00007ffffc44f8a0 R15: 00007ffffc44f890 [ 287.023135][ T30] [ 287.027019][ T30] INFO: task syz-executor404:5249 blocked for more than 143 seconds. [ 287.037324][ T30] Not tainted 6.12.0-rc3-syzkaller-00525-gc55228220dd3 #0 [ 287.045059][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.067151][ T30] task:syz-executor404 state:D stack:28272 pid:5249 tgid:5249 ppid:5247 flags:0x00004006 [ 287.078402][ T30] Call Trace: [ 287.082682][ T30] [ 287.086343][ T30] __schedule+0xe55/0x5730 [ 287.091631][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 287.097683][ T30] ? mark_lock+0xb5/0xc60 [ 287.102722][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 287.108774][ T30] ? __pfx___schedule+0x10/0x10 [ 287.113677][ T30] ? schedule+0x298/0x350 [ 287.132214][ T30] ? __pfx_lock_release+0x10/0x10 [ 287.137578][ T30] ? trace_lock_acquire+0x14a/0x1d0 [ 287.142831][ T30] ? lock_acquire+0x2f/0xb0 [ 287.147366][ T30] ? schedule+0x1fd/0x350 [ 287.159776][ T30] schedule+0xe7/0x350 [ 287.164656][ T30] schedule_preempt_disabled+0x13/0x30 [ 287.170896][ T30] rwsem_down_write_slowpath+0x539/0x12a0 [ 287.177463][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 287.184511][ T30] ? rcu_is_watching+0x12/0xc0 [ 287.194312][ T30] ? lock_acquire+0x2f/0xb0 [ 287.208309][ T30] ? blkdev_fallocate+0x1da/0x390 [ 287.213405][ T30] down_write+0x1d8/0x200 [ 287.218537][ T30] ? __pfx_down_write+0x10/0x10 [ 287.224231][ T30] ? inode_security+0x101/0x130 [ 287.230047][ T30] blkdev_fallocate+0x1da/0x390 [ 287.235646][ T30] ? __pfx_blkdev_fallocate+0x10/0x10 [ 287.242079][ T30] vfs_fallocate+0x459/0xf90 [ 287.247517][ T30] __x64_sys_fallocate+0xd9/0x150 [ 287.252587][ T30] do_syscall_64+0xcd/0x250 [ 287.257129][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.263809][ T30] RIP: 0033:0x7ff552af4b29 [ 287.282868][ T30] RSP: 002b:00007ffffc44f878 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.291459][ T30] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff552af4b29 [ 287.299525][ T30] RDX: 0000000000000000 RSI: 0000000000000010 RDI: 0000000000000004 [ 287.308601][ T30] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.318475][ T30] R10: 0000002000000400 R11: 0000000000000246 R12: 0000000000000001 [ 287.327539][ T30] R13: 00007ffffc44fa98 R14: 00007ffffc44f8a0 R15: 00007ffffc44f890 [ 287.335571][ T30] [ 287.340269][ T30] [ 287.340269][ T30] Showing all locks held in the system: [ 287.349582][ T30] 1 lock held by khungtaskd/30: [ 287.354465][ T30] #0: ffffffff8e1b8380 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x7f/0x390 [ 287.427853][ T30] 1 lock held by klogd/4663: [ 287.432506][ T30] 2 locks held by getty/4987: [ 287.458696][ T30] #0: ffff88802e2c60a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 287.488499][ T30] #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfba/0x1480 [ 287.518419][ T30] 1 lock held by syz-executor404/5246: [ 287.523953][ T30] #0: ffff8880238870c0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1da/0x390 [ 287.547721][ T30] 1 lock held by syz-executor404/5249: [ 287.567090][ T30] #0: ffff8880238870c0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1da/0x390 [ 287.595775][ T30] 1 lock held by syz-executor404/5252: [ 287.607940][ T30] #0: ffff8880238870c0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1da/0x390 [ 287.619580][ T30] 1 lock held by syz-executor404/5253: [ 287.639128][ T30] #0: ffff8880238870c0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1da/0x390 [ 287.650700][ T30] 1 lock held by syz-executor404/5260: [ 287.656911][ T30] #0: ffff8880238870c0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1da/0x390 [ 287.668508][ T30] [ 287.671638][ T30] ============================================= [ 287.671638][ T30] [ 287.707912][ T30] NMI backtrace for cpu 0 [ 287.712323][ T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-rc3-syzkaller-00525-gc55228220dd3 #0 [ 287.722859][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 287.732952][ T30] Call Trace: [ 287.736253][ T30] [ 287.739214][ T30] dump_stack_lvl+0x116/0x1f0 [ 287.743942][ T30] nmi_cpu_backtrace+0x27b/0x390 [ 287.749040][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 287.755056][ T30] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 287.761062][ T30] watchdog+0xf0c/0x1240 [ 287.765327][ T30] ? __pfx_watchdog+0x10/0x10 [ 287.770020][ T30] ? lockdep_hardirqs_on+0x7c/0x110 [ 287.775247][ T30] ? __kthread_parkme+0x148/0x220 [ 287.780294][ T30] ? __pfx_watchdog+0x10/0x10 [ 287.784982][ T30] kthread+0x2c1/0x3a0 [ 287.789063][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.794274][ T30] ? __pfx_kthread+0x10/0x10 [ 287.798882][ T30] ret_from_fork+0x45/0x80 [ 287.803310][ T30] ? __pfx_kthread+0x10/0x10 [ 287.807912][ T30] ret_from_fork_asm+0x1a/0x30 [ 287.812714][ T30] [ 287.816408][ T30] Sending NMI from CPU 0 to CPUs 1: [ 287.822335][ C1] NMI backtrace for cpu 1 [ 287.822348][ C1] CPU: 1 UID: 0 PID: 5252 Comm: syz-executor404 Not tainted 6.12.0-rc3-syzkaller-00525-gc55228220dd3 #0 [ 287.822378][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 287.822392][ C1] RIP: 0010:__sanitizer_cov_trace_pc+0x1c/0x70 [ 287.822433][ C1] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 65 48 8b 15 b4 5c 76 7e 65 8b 05 b5 5c 76 7e a9 00 01 ff 00 48 8b 34 24 <74> 1d f6 c4 01 74 43 a9 00 00 0f 00 75 3c a9 00 00 f0 00 75 35 8b [ 287.822455][ C1] RSP: 0018:ffffc9000377f790 EFLAGS: 00000246 [ 287.822475][ C1] RAX: 0000000080000000 RBX: ffff888020eb28c0 RCX: dffffc0000000000 [ 287.822492][ C1] RDX: ffff888030c08000 RSI: ffffffff846fb2cd RDI: 0000000000000005 [ 287.822508][ C1] RBP: ffffc9000377f8c0 R08: ffff88814336cb08 R09: ffff888020eb2938 [ 287.822524][ C1] R10: 0000000000100000 R11: 0000000000000000 R12: dffffc0000000000 [ 287.822540][ C1] R13: 0000000000100000 R14: 1ffff920006efeff R15: 0000000000000000 [ 287.822556][ C1] FS: 0000555565ec5380(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 287.822580][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 287.822597][ C1] CR2: 00007ffffc44f778 CR3: 00000000775a0000 CR4: 00000000003526f0 [ 287.822613][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 287.822627][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 287.822642][ C1] Call Trace: [ 287.822648][ C1] [ 287.822656][ C1] ? nmi_cpu_backtrace+0x1d8/0x390 [ 287.822692][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 287.822729][ C1] ? nmi_handle+0x1a9/0x5c0 [ 287.822754][ C1] ? __sanitizer_cov_trace_pc+0x1c/0x70 [ 287.822791][ C1] ? default_do_nmi+0x6a/0x160 [ 287.822817][ C1] ? exc_nmi+0x170/0x1e0 [ 287.822841][ C1] ? end_repeat_nmi+0xf/0x53 [ 287.822877][ C1] ? bio_split_rw_at+0x1cd/0x820 [ 287.822904][ C1] ? __sanitizer_cov_trace_pc+0x1c/0x70 [ 287.822941][ C1] ? __sanitizer_cov_trace_pc+0x1c/0x70 [ 287.822978][ C1] ? __sanitizer_cov_trace_pc+0x1c/0x70 [ 287.823015][ C1] [ 287.823022][ C1] [ 287.823030][ C1] bio_split_rw_at+0x1cd/0x820 [ 287.823061][ C1] ? __pfx_bio_split_rw_at+0x10/0x10 [ 287.823091][ C1] ? blk_mq_submit_bio+0x2480/0x2a90 [ 287.823122][ C1] ? __pfx_lock_release+0x10/0x10 [ 287.823146][ C1] bio_split_rw+0x2e8/0x390 [ 287.823177][ C1] blk_mq_submit_bio+0x1bcd/0x2a90 [ 287.823209][ C1] ? __pfx_blk_mq_submit_bio+0x10/0x10 [ 287.823243][ C1] ? find_held_lock+0x2d/0x110 [ 287.823275][ C1] __submit_bio+0x179/0x4d0 [ 287.823303][ C1] ? __pfx___submit_bio+0x10/0x10 [ 287.823331][ C1] ? find_held_lock+0x2d/0x110 [ 287.823362][ C1] ? bio_associate_blkg+0x137/0x2a0 [ 287.823386][ C1] ? __pfx_lock_release+0x10/0x10 [ 287.823408][ C1] ? blk_cgroup_bio_start+0xba/0x520 [ 287.823435][ C1] submit_bio_noacct_nocheck+0x6fb/0xd70 [ 287.823466][ C1] ? __pfx_submit_bio_noacct_nocheck+0x10/0x10 [ 287.823499][ C1] ? __pfx___might_resched+0x10/0x10 [ 287.823530][ C1] submit_bio_noacct+0x9e6/0x1f10 [ 287.823562][ C1] bio_chain_and_submit+0x2e/0x40 [ 287.823586][ C1] __blkdev_issue_zero_pages+0x191/0x350 [ 287.823621][ C1] blkdev_issue_zeroout+0x397/0x810 [ 287.823653][ C1] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 287.823696][ C1] ? __pfx_blkdev_issue_zeroout+0x10/0x10 [ 287.823736][ C1] blkdev_fallocate+0x306/0x390 [ 287.823770][ C1] ? __pfx_blkdev_fallocate+0x10/0x10 [ 287.823803][ C1] vfs_fallocate+0x459/0xf90 [ 287.823841][ C1] __x64_sys_fallocate+0xd9/0x150 [ 287.823866][ C1] do_syscall_64+0xcd/0x250 [ 287.823901][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.823932][ C1] RIP: 0033:0x7ff552af4b29 [ 287.823950][ C1] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 287.823972][ C1] RSP: 002b:00007ffffc44f878 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.823994][ C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff552af4b29 [ 287.824010][ C1] RDX: 0000000000000000 RSI: 0000000000000010 RDI: 0000000000000004 [ 287.824025][ C1] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.824040][ C1] R10: 0000002000000400 R11: 0000000000000246 R12: 0000000000000001 [ 287.824055][ C1] R13: 00007ffffc44fa98 R14: 00007ffffc44f8a0 R15: 00007ffffc44f890 [ 287.824078][ C1] [ 287.824087][ C1] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.752 msecs [ 288.275705][ T30] Kernel panic - not syncing: hung_task: blocked tasks [ 288.282606][ T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-rc3-syzkaller-00525-gc55228220dd3 #0 [ 288.293134][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 288.303211][ T30] Call Trace: [ 288.306508][ T30] [ 288.309459][ T30] dump_stack_lvl+0x3d/0x1f0 [ 288.314094][ T30] panic+0x71d/0x800 [ 288.318026][ T30] ? __pfx_panic+0x10/0x10 [ 288.322478][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 288.327890][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 288.333904][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 288.339303][ T30] ? watchdog+0xd76/0x1240 [ 288.343744][ T30] ? watchdog+0xd69/0x1240 [ 288.348188][ T30] watchdog+0xd87/0x1240 [ 288.352457][ T30] ? __pfx_watchdog+0x10/0x10 [ 288.357157][ T30] ? lockdep_hardirqs_on+0x7c/0x110 [ 288.362387][ T30] ? __kthread_parkme+0x148/0x220 [ 288.367443][ T30] ? __pfx_watchdog+0x10/0x10 [ 288.372143][ T30] kthread+0x2c1/0x3a0 [ 288.376238][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 288.381464][ T30] ? __pfx_kthread+0x10/0x10 [ 288.386085][ T30] ret_from_fork+0x45/0x80 [ 288.390522][ T30] ? __pfx_kthread+0x10/0x10 [ 288.395139][ T30] ret_from_fork_asm+0x1a/0x30 [ 288.399949][ T30] [ 288.403122][ T30] Kernel Offset: disabled [ 288.407444][ T30] Rebooting in 86400 seconds..