./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4237313281 <...> Warning: Permanently added '10.128.0.195' (ED25519) to the list of known hosts. execve("./syz-executor4237313281", ["./syz-executor4237313281"], 0x7ffffae4ab10 /* 10 vars */) = 0 brk(NULL) = 0x5555560d5000 brk(0x5555560d5d00) = 0x5555560d5d00 arch_prctl(ARCH_SET_FS, 0x5555560d5380) = 0 set_tid_address(0x5555560d5650) = 5071 set_robust_list(0x5555560d5660, 24) = 0 rseq(0x5555560d5ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor4237313281", 4096) = 28 getrandom("\x07\x7e\x1c\x8d\xf3\x80\xac\x2c", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555560d5d00 brk(0x5555560f6d00) = 0x5555560f6d00 brk(0x5555560f7000) = 0x5555560f7000 mprotect(0x7f1c7d1ad000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555560d5650) = 5072 ./strace-static-x86_64: Process 5072 attached [pid 5071] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5072] set_robust_list(0x5555560d5660, 24) = 0 ./strace-static-x86_64: Process 5073 attached [pid 5072] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5073] set_robust_list(0x5555560d5660, 24./strace-static-x86_64: Process 5074 attached [pid 5071] <... clone resumed>, child_tidptr=0x5555560d5650) = 5073 [pid 5073] <... set_robust_list resumed>) = 0 [pid 5071] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5074] set_robust_list(0x5555560d5660, 24 [pid 5073] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5072] <... clone resumed>, child_tidptr=0x5555560d5650) = 5074 [pid 5074] <... set_robust_list resumed>) = 0 [pid 5074] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 5076 attached ./strace-static-x86_64: Process 5075 attached ) = 0 [pid 5076] set_robust_list(0x5555560d5660, 24 [pid 5075] set_robust_list(0x5555560d5660, 24 [pid 5074] setpgid(0, 0 [pid 5073] <... clone resumed>, child_tidptr=0x5555560d5650) = 5075 [pid 5076] <... set_robust_list resumed>) = 0 [pid 5076] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5075] <... set_robust_list resumed>) = 0 [pid 5074] <... setpgid resumed>) = 0 [pid 5071] <... clone resumed>, child_tidptr=0x5555560d5650) = 5076 [pid 5071] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5075] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5074] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5075] <... prctl resumed>) = 0 [pid 5074] <... openat resumed>) = 3 [pid 5075] setpgid(0, 0 [pid 5074] write(3, "1000", 4./strace-static-x86_64: Process 5078 attached ./strace-static-x86_64: Process 5077 attached [pid 5075] <... setpgid resumed>) = 0 [pid 5074] <... write resumed>) = 4 [pid 5078] set_robust_list(0x5555560d5660, 24) = 0 [pid 5075] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5071] <... clone resumed>, child_tidptr=0x5555560d5650) = 5078 [pid 5078] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5074] close(3 [pid 5071] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5077] set_robust_list(0x5555560d5660, 24 [pid 5076] <... clone resumed>, child_tidptr=0x5555560d5650) = 5077 [pid 5075] <... openat resumed>) = 3 [pid 5074] <... close resumed>) = 0 ./strace-static-x86_64: Process 5079 attached [pid 5077] <... set_robust_list resumed>) = 0 [pid 5074] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME [pid 5077] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5075] write(3, "1000", 4 [pid 5079] set_robust_list(0x5555560d5660, 24 [pid 5078] <... clone resumed>, child_tidptr=0x5555560d5650) = 5079 [pid 5077] <... prctl resumed>) = 0 [pid 5075] <... write resumed>) = 4 [pid 5074] <... openat resumed>) = 3 [pid 5079] <... set_robust_list resumed>) = 0 [pid 5077] setpgid(0, 0 [pid 5075] close(3 [pid 5079] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5075] <... close resumed>) = 0 [pid 5077] <... setpgid resumed>) = 0 [pid 5075] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME [pid 5079] <... prctl resumed>) = 0 [pid 5079] setpgid(0, 0 [pid 5077] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5075] <... openat resumed>) = 3 [pid 5074] dup(3 [pid 5079] <... setpgid resumed>) = 0 [pid 5077] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5080 attached [pid 5075] dup(3 [pid 5074] <... dup resumed>) = 4 [pid 5080] set_robust_list(0x5555560d5660, 24 [pid 5077] write(3, "1000", 4 [pid 5075] <... dup resumed>) = 4 [pid 5074] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 3072, 8796109807616 [pid 5071] <... clone resumed>, child_tidptr=0x5555560d5650) = 5080 [pid 5080] <... set_robust_list resumed>) = 0 [pid 5079] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5077] <... write resumed>) = 4 [pid 5075] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 3072, 8796109807616 [pid 5080] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5077] close(3 [pid 5071] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5077] <... close resumed>) = 0 [pid 5077] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME) = 3 ./strace-static-x86_64: Process 5082 attached ./strace-static-x86_64: Process 5081 attached [pid 5079] <... openat resumed>) = 3 [pid 5077] dup(3 [pid 5071] <... clone resumed>, child_tidptr=0x5555560d5650) = 5081 [pid 5082] set_robust_list(0x5555560d5660, 24 [pid 5081] set_robust_list(0x5555560d5660, 24 [pid 5080] <... clone resumed>, child_tidptr=0x5555560d5650) = 5082 [pid 5079] write(3, "1000", 4 [pid 5077] <... dup resumed>) = 4 [pid 5082] <... set_robust_list resumed>) = 0 [pid 5081] <... set_robust_list resumed>) = 0 [pid 5079] <... write resumed>) = 4 [pid 5082] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5081] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5079] close(3 [pid 5077] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 3072, 8796109807616 [pid 5082] <... prctl resumed>) = 0 [pid 5079] <... close resumed>) = 0 [pid 5079] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME./strace-static-x86_64: Process 5083 attached [pid 5082] setpgid(0, 0 [pid 5079] <... openat resumed>) = 3 [pid 5083] set_robust_list(0x5555560d5660, 24 [pid 5082] <... setpgid resumed>) = 0 [pid 5081] <... clone resumed>, child_tidptr=0x5555560d5650) = 5083 [pid 5079] dup(3 [pid 5083] <... set_robust_list resumed>) = 0 [pid 5083] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5079] <... dup resumed>) = 4 [pid 5083] <... prctl resumed>) = 0 [pid 5083] setpgid(0, 0 [pid 5082] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5079] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 3072, 8796109807616 [pid 5083] <... setpgid resumed>) = 0 [pid 5082] <... openat resumed>) = 3 [pid 5082] write(3, "1000", 4 [pid 5083] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5082] <... write resumed>) = 4 [pid 5082] close(3 [pid 5083] <... openat resumed>) = 3 [pid 5082] <... close resumed>) = 0 [pid 5082] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME [pid 5083] write(3, "1000", 4 [pid 5082] <... openat resumed>) = 3 [pid 5083] <... write resumed>) = 4 [pid 5083] close(3 [pid 5082] dup(3) = 4 [pid 5082] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 3072, 8796109807616 [pid 5083] <... close resumed>) = 0 [pid 5083] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME) = 3 [pid 5083] dup(3) = 4 [ 102.627779][ T23] cfg80211: failed to load regulatory.db [pid 5083] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 3072, 8796109807616 [pid 5072] kill(-5074, SIGKILL) = 0 [pid 5072] kill(5074, SIGKILL) = 0 [pid 5073] kill(-5075, SIGKILL) = 0 [pid 5073] kill(5075, SIGKILL) = 0 [pid 5076] kill(-5077, SIGKILL) = 0 [pid 5076] kill(5077, SIGKILL) = 0 [pid 5078] kill(-5079, SIGKILL) = 0 [pid 5078] kill(5079, SIGKILL) = 0 [pid 5080] kill(-5082, SIGKILL) = 0 [pid 5080] kill(5082, SIGKILL) = 0 [pid 5081] kill(-5083, SIGKILL) = 0 [pid 5081] kill(5083, SIGKILL) = 0 [pid 5081] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5072] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5072] newfstatat(3, "", [pid 5081] <... openat resumed>) = 3 [pid 5072] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5081] newfstatat(3, "", [pid 5073] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5081] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5073] <... openat resumed>) = 3 [pid 5072] getdents64(3, [pid 5081] getdents64(3, [pid 5073] newfstatat(3, "", [pid 5072] <... getdents64 resumed>0x5555560d66f0 /* 2 entries */, 32768) = 48 [pid 5081] <... getdents64 resumed>0x5555560d66f0 /* 2 entries */, 32768) = 48 [pid 5073] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5072] getdents64(3, [pid 5081] getdents64(3, [pid 5073] getdents64(3, [pid 5072] <... getdents64 resumed>0x5555560d66f0 /* 0 entries */, 32768) = 0 [pid 5081] <... getdents64 resumed>0x5555560d66f0 /* 0 entries */, 32768) = 0 [pid 5081] close(3 [pid 5073] <... getdents64 resumed>0x5555560d66f0 /* 2 entries */, 32768) = 48 [pid 5072] close(3 [pid 5081] <... close resumed>) = 0 [pid 5073] getdents64(3, [pid 5072] <... close resumed>) = 0 [pid 5073] <... getdents64 resumed>0x5555560d66f0 /* 0 entries */, 32768) = 0 [pid 5073] close(3) = 0 [pid 5078] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5076] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5078] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5076] newfstatat(3, "", [pid 5078] getdents64(3, [pid 5076] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5076] getdents64(3, [pid 5078] <... getdents64 resumed>0x5555560d66f0 /* 2 entries */, 32768) = 48 [pid 5080] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5078] getdents64(3, [pid 5076] <... getdents64 resumed>0x5555560d66f0 /* 2 entries */, 32768) = 48 [pid 5080] <... openat resumed>) = 3 [pid 5078] <... getdents64 resumed>0x5555560d66f0 /* 0 entries */, 32768) = 0 [pid 5076] getdents64(3, 0x5555560d66f0 /* 0 entries */, 32768) = 0 [pid 5078] close(3 [pid 5076] close(3 [pid 5080] newfstatat(3, "", [pid 5078] <... close resumed>) = 0 [pid 5076] <... close resumed>) = 0 [pid 5080] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5080] getdents64(3, 0x5555560d66f0 /* 2 entries */, 32768) = 48 [pid 5080] getdents64(3, 0x5555560d66f0 /* 0 entries */, 32768) = 0 [pid 5080] close(3) = 0 [pid 5074] <... fallocate resumed>) = ? [pid 5074] +++ killed by SIGKILL +++ [pid 5072] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5074, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=11978 /* 119.78 s */} --- [pid 5072] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5101 attached , child_tidptr=0x5555560d5650) = 5101 [pid 5101] set_robust_list(0x5555560d5660, 24) = 0 [pid 5101] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5101] setpgid(0, 0) = 0 [pid 5101] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5101] write(3, "1000", 4) = 4 [pid 5101] close(3) = 0 [pid 5101] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME) = 3 [pid 5101] dup(3) = 4 [pid 5101] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 3072, 8796109807616 [pid 5072] kill(-5101, SIGKILL) = 0 [pid 5072] kill(5101, SIGKILL) = 0 [pid 5072] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5072] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5072] getdents64(3, 0x5555560d66f0 /* 2 entries */, 32768) = 48 [pid 5072] getdents64(3, 0x5555560d66f0 /* 0 entries */, 32768) = 0 [pid 5072] close(3) = 0 [ 286.919225][ T29] INFO: task syz-executor423:5077 blocked for more than 143 seconds. [ 286.927599][ T29] Not tainted 6.7.0-rc8-syzkaller #0 [ 286.944225][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.963737][ T29] task:syz-executor423 state:D stack:28208 pid:5077 tgid:5077 ppid:5076 flags:0x00004006 [ 286.976032][ T29] Call Trace: [ 286.981008][ T29] [ 286.984407][ T29] __schedule+0xedb/0x5af0 [ 286.989039][ T29] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 286.996990][ T29] ? hlock_class+0x4e/0x130 [ 287.001629][ T29] ? mark_lock+0xb5/0xc50 [ 287.006078][ T29] ? io_schedule_timeout+0x150/0x150 [ 287.013375][ T29] ? schedule+0x1fc/0x270 [ 287.019468][ T29] ? reacquire_held_locks+0x4c0/0x4c0 [ 287.026888][ T29] ? __down_write_common+0x899/0x1400 [ 287.032422][ T29] schedule+0xe9/0x270 [ 287.036610][ T29] schedule_preempt_disabled+0x13/0x20 [ 287.044006][ T29] __down_write_common+0x948/0x1400 [ 287.066643][ T29] ? aa_file_perm+0x4f2/0x1000 [ 287.073444][ T29] ? up_write+0x510/0x510 [ 287.078996][ T29] ? lock_sync+0x190/0x190 [ 287.083715][ T29] ? preempt_count_sub+0x160/0x160 [ 287.089629][ T29] ? ptrace_notify+0xf4/0x130 [ 287.096508][ T29] blkdev_fallocate+0x1e9/0x450 [ 287.103251][ T29] ? file_to_blk_mode+0x1a0/0x1a0 [ 287.109413][ T29] vfs_fallocate+0x46c/0xe50 [ 287.114117][ T29] __x64_sys_fallocate+0xd5/0x140 [ 287.120630][ T29] do_syscall_64+0x40/0x110 [ 287.127128][ T29] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 287.135504][ T29] RIP: 0033:0x7f1c7d13ab29 [ 287.141710][ T29] RSP: 002b:00007ffe80775be8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.174494][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1c7d13ab29 [ 287.184342][ T29] RDX: 0000000000000c00 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.193759][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.202549][ T29] R10: 0000080001002000 R11: 0000000000000246 R12: 0000000000000001 [ 287.211343][ T29] R13: 00007ffe80775e08 R14: 00007ffe80775c10 R15: 00007ffe80775c00 [ 287.220052][ T29] [ 287.223216][ T29] INFO: task syz-executor423:5079 blocked for more than 143 seconds. [ 287.232010][ T29] Not tainted 6.7.0-rc8-syzkaller #0 [ 287.238438][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.247337][ T29] task:syz-executor423 state:D stack:27920 pid:5079 tgid:5079 ppid:5078 flags:0x00004006 [ 287.257901][ T29] Call Trace: [ 287.261723][ T29] [ 287.264972][ T29] __schedule+0xedb/0x5af0 [ 287.269523][ T29] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 287.276151][ T29] ? hlock_class+0x4e/0x130 [ 287.281643][ T29] ? mark_lock+0xb5/0xc50 [ 287.286099][ T29] ? io_schedule_timeout+0x150/0x150 [ 287.292081][ T29] ? schedule+0x1fc/0x270 [ 287.297060][ T29] ? reacquire_held_locks+0x4c0/0x4c0 [ 287.303160][ T29] ? __down_write_common+0x899/0x1400 [ 287.309186][ T29] schedule+0xe9/0x270 [ 287.314770][ T29] schedule_preempt_disabled+0x13/0x20 [ 287.321063][ T29] __down_write_common+0x948/0x1400 [ 287.326394][ T29] ? aa_file_perm+0x4f2/0x1000 [ 287.331414][ T29] ? up_write+0x510/0x510 [ 287.336094][ T29] ? lock_sync+0x190/0x190 [ 287.340800][ T29] ? preempt_count_sub+0x160/0x160 [ 287.346539][ T29] ? ptrace_notify+0xf4/0x130 [ 287.351865][ T29] blkdev_fallocate+0x1e9/0x450 [ 287.357286][ T29] ? file_to_blk_mode+0x1a0/0x1a0 [ 287.363201][ T29] vfs_fallocate+0x46c/0xe50 [ 287.367876][ T29] __x64_sys_fallocate+0xd5/0x140 [ 287.373684][ T29] do_syscall_64+0x40/0x110 [ 287.378814][ T29] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 287.385445][ T29] RIP: 0033:0x7f1c7d13ab29 [ 287.390432][ T29] RSP: 002b:00007ffe80775be8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.399096][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1c7d13ab29 [ 287.407124][ T29] RDX: 0000000000000c00 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.415181][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.423325][ T29] R10: 0000080001002000 R11: 0000000000000246 R12: 0000000000000001 [ 287.431893][ T29] R13: 00007ffe80775e08 R14: 00007ffe80775c10 R15: 00007ffe80775c00 [ 287.440587][ T29] [ 287.444185][ T29] INFO: task syz-executor423:5082 blocked for more than 143 seconds. [ 287.452816][ T29] Not tainted 6.7.0-rc8-syzkaller #0 [ 287.459284][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.468459][ T29] task:syz-executor423 state:D stack:28016 pid:5082 tgid:5082 ppid:5080 flags:0x00004006 [ 287.479695][ T29] Call Trace: [ 287.483489][ T29] [ 287.486491][ T29] __schedule+0xedb/0x5af0 [ 287.491065][ T29] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 287.497127][ T29] ? hlock_class+0x4e/0x130 [ 287.501842][ T29] ? mark_lock+0xb5/0xc50 [ 287.506727][ T29] ? io_schedule_timeout+0x150/0x150 [ 287.512661][ T29] ? schedule+0x1fc/0x270 [ 287.517508][ T29] ? reacquire_held_locks+0x4c0/0x4c0 [ 287.523585][ T29] ? __down_write_common+0x899/0x1400 [ 287.529556][ T29] schedule+0xe9/0x270 [ 287.534146][ T29] schedule_preempt_disabled+0x13/0x20 [ 287.540361][ T29] __down_write_common+0x948/0x1400 [ 287.546110][ T29] ? aa_file_perm+0x4f2/0x1000 [ 287.551043][ T29] ? up_write+0x510/0x510 [ 287.555449][ T29] ? lock_sync+0x190/0x190 [ 287.560159][ T29] ? preempt_count_sub+0x160/0x160 [ 287.565337][ T29] ? ptrace_notify+0xf4/0x130 [ 287.570147][ T29] blkdev_fallocate+0x1e9/0x450 [ 287.575336][ T29] ? file_to_blk_mode+0x1a0/0x1a0 [ 287.581132][ T29] vfs_fallocate+0x46c/0xe50 [ 287.586239][ T29] __x64_sys_fallocate+0xd5/0x140 [ 287.591894][ T29] do_syscall_64+0x40/0x110 [ 287.596950][ T29] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 287.603566][ T29] RIP: 0033:0x7f1c7d13ab29 [ 287.608641][ T29] RSP: 002b:00007ffe80775be8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.617773][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1c7d13ab29 [ 287.626639][ T29] RDX: 0000000000000c00 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.634774][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.642958][ T29] R10: 0000080001002000 R11: 0000000000000246 R12: 0000000000000001 [ 287.651526][ T29] R13: 00007ffe80775e08 R14: 00007ffe80775c10 R15: 00007ffe80775c00 [ 287.660259][ T29] [ 287.663858][ T29] INFO: task syz-executor423:5083 blocked for more than 144 seconds. [ 287.672526][ T29] Not tainted 6.7.0-rc8-syzkaller #0 [ 287.678854][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.688357][ T29] task:syz-executor423 state:D stack:28208 pid:5083 tgid:5083 ppid:5081 flags:0x00004006 [ 287.698686][ T29] Call Trace: [ 287.702183][ T29] [ 287.705189][ T29] __schedule+0xedb/0x5af0 [ 287.711850][ T29] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 287.718376][ T29] ? hlock_class+0x4e/0x130 [ 287.724058][ T29] ? mark_lock+0xb5/0xc50 [ 287.729406][ T29] ? io_schedule_timeout+0x150/0x150 [ 287.739108][ T29] ? schedule+0x1fc/0x270 [ 287.744175][ T29] ? reacquire_held_locks+0x4c0/0x4c0 [ 287.750478][ T29] ? __down_write_common+0x899/0x1400 [ 287.757815][ T29] schedule+0xe9/0x270 [ 287.762638][ T29] schedule_preempt_disabled+0x13/0x20 [ 287.768718][ T29] __down_write_common+0x948/0x1400 [ 287.774594][ T29] ? aa_file_perm+0x4f2/0x1000 [ 287.779961][ T29] ? up_write+0x510/0x510 [ 287.784888][ T29] ? lock_sync+0x190/0x190 [ 287.789534][ T29] ? preempt_count_sub+0x160/0x160 [ 287.794718][ T29] ? ptrace_notify+0xf4/0x130 [ 287.799567][ T29] blkdev_fallocate+0x1e9/0x450 [ 287.804491][ T29] ? file_to_blk_mode+0x1a0/0x1a0 [ 287.810205][ T29] vfs_fallocate+0x46c/0xe50 [ 287.815441][ T29] __x64_sys_fallocate+0xd5/0x140 [ 287.821263][ T29] do_syscall_64+0x40/0x110 [ 287.826360][ T29] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 287.832911][ T29] RIP: 0033:0x7f1c7d13ab29 [ 287.837869][ T29] RSP: 002b:00007ffe80775be8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.847038][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1c7d13ab29 [ 287.855278][ T29] RDX: 0000000000000c00 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.869069][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.877128][ T29] R10: 0000080001002000 R11: 0000000000000246 R12: 0000000000000001 [ 287.885698][ T29] R13: 00007ffe80775e08 R14: 00007ffe80775c10 R15: 00007ffe80775c00 [ 287.894324][ T29] [ 287.897876][ T29] [ 287.897876][ T29] Showing all locks held in the system: [ 287.906375][ T29] 1 lock held by khungtaskd/29: [ 287.911987][ T29] #0: ffffffff8cfab760 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x75/0x340 [ 287.922676][ T29] 2 locks held by getty/4826: [ 287.927410][ T29] #0: ffff88802a5820a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 287.937794][ T29] #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfc6/0x1490 [ 287.948330][ T29] 1 lock held by syz-executor423/5075: [ 287.954254][ T29] 1 lock held by syz-executor423/5077: [ 287.959916][ T29] #0: ffff888148c94e40 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e9/0x450 [ 287.971123][ T29] 1 lock held by syz-executor423/5079: [ 287.976663][ T29] #0: ffff888148c94e40 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e9/0x450 [ 287.988213][ T29] 1 lock held by syz-executor423/5082: [ 287.994518][ T29] #0: ffff888148c94e40 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e9/0x450 [ 288.006173][ T29] 1 lock held by syz-executor423/5083: [ 288.012143][ T29] #0: ffff888148c94e40 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e9/0x450 [ 288.023191][ T29] 1 lock held by syz-executor423/5101: [ 288.028713][ T29] #0: ffff888148c94e40 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e9/0x450 [ 288.039971][ T29] [ 288.042806][ T29] ============================================= [ 288.042806][ T29] [ 288.052339][ T29] NMI backtrace for cpu 1 [ 288.056713][ T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.7.0-rc8-syzkaller #0 [ 288.064794][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 288.074980][ T29] Call Trace: [ 288.078281][ T29] [ 288.081284][ T29] dump_stack_lvl+0xd9/0x1b0 [ 288.086002][ T29] nmi_cpu_backtrace+0x277/0x390 [ 288.090989][ T29] ? lapic_can_unplug_cpu+0xa0/0xa0 [ 288.096226][ T29] nmi_trigger_cpumask_backtrace+0x299/0x300 [ 288.102277][ T29] watchdog+0xf87/0x1210 [ 288.106606][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 288.112632][ T29] ? lockdep_hardirqs_on+0x7d/0x110 [ 288.117876][ T29] ? __kthread_parkme+0x14b/0x220 [ 288.122960][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 288.128983][ T29] kthread+0x2c6/0x3a0 [ 288.133095][ T29] ? _raw_spin_unlock_irq+0x23/0x50 [ 288.138509][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 288.144214][ T29] ret_from_fork+0x45/0x80 [ 288.148713][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 288.154376][ T29] ret_from_fork_asm+0x11/0x20 [ 288.159203][ T29] [ 288.162427][ T29] Sending NMI from CPU 1 to CPUs 0: [ 288.167768][ C0] NMI backtrace for cpu 0 skipped: idling at acpi_safe_halt+0x1b/0x20 [ 288.177977][ T29] Kernel panic - not syncing: hung_task: blocked tasks [ 288.184987][ T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.7.0-rc8-syzkaller #0 [ 288.193097][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 288.203179][ T29] Call Trace: [ 288.206501][ T29] [ 288.209446][ T29] dump_stack_lvl+0xd9/0x1b0 [ 288.214067][ T29] panic+0x6dc/0x790 [ 288.217992][ T29] ? panic_smp_self_stop+0xa0/0xa0 [ 288.223161][ T29] ? preempt_schedule_thunk+0x1a/0x30 [ 288.228609][ T29] ? lapic_can_unplug_cpu+0xa0/0xa0 [ 288.233879][ T29] ? preempt_schedule_thunk+0x1a/0x30 [ 288.239309][ T29] ? watchdog+0xd3e/0x1210 [ 288.244476][ T29] ? watchdog+0xd31/0x1210 [ 288.248924][ T29] watchdog+0xd4f/0x1210 [ 288.253221][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 288.259244][ T29] ? lockdep_hardirqs_on+0x7d/0x110 [ 288.264464][ T29] ? __kthread_parkme+0x14b/0x220 [ 288.269516][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 288.275555][ T29] kthread+0x2c6/0x3a0 [ 288.279650][ T29] ? _raw_spin_unlock_irq+0x23/0x50 [ 288.284874][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 288.290536][ T29] ret_from_fork+0x45/0x80 [ 288.294996][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 288.300669][ T29] ret_from_fork_asm+0x11/0x20 [ 288.305626][ T29] [ 288.308944][ T29] Kernel Offset: disabled [ 288.313286][ T29] Rebooting in 86400 seconds..