./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor153047621 <...> Warning: Permanently added '10.128.0.168' (ED25519) to the list of known hosts. execve("./syz-executor153047621", ["./syz-executor153047621"], 0x7fff5ac36820 /* 10 vars */) = 0 brk(NULL) = 0x5555806b0000 brk(0x5555806b0d00) = 0x5555806b0d00 arch_prctl(ARCH_SET_FS, 0x5555806b0380) = 0 set_tid_address(0x5555806b0650) = 5848 set_robust_list(0x5555806b0660, 24) = 0 rseq(0x5555806b0ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor153047621", 4096) = 27 getrandom("\xf9\xca\xa1\x6e\x2f\x96\x29\x21", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555806b0d00 brk(0x5555806d1d00) = 0x5555806d1d00 brk(0x5555806d2000) = 0x5555806d2000 mprotect(0x7f6582625000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5849 attached [pid 5849] set_robust_list(0x5555806b0660, 24) = 0 [pid 5849] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5848] <... clone resumed>, child_tidptr=0x5555806b0650) = 5849 [pid 5849] <... prctl resumed>) = 0 [pid 5849] setpgid(0, 0) = 0 [pid 5849] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5849] write(3, "1000", 4) = 4 [pid 5849] close(3) = 0 [pid 5849] write(1, "executing program\n", 18executing program ) = 18 [pid 5849] openat(AT_FDCWD, "/proc/thread-self/mountinfo", O_RDWR) = 3 [pid 5849] memfd_create("syzkaller", 0) = 4 [pid 5849] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f657a000000 [pid 5849] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5849] munmap(0x7f657a000000, 138412032) = 0 [pid 5849] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5 [pid 5849] ioctl(5, LOOP_SET_FD, 4) = 0 [pid 5849] close(4) = 0 [pid 5849] close(5) = 0 [pid 5849] mkdir("./file0", 0777) = 0 [ 249.158783][ T5849] loop0: detected capacity change from 0 to 32768 [ 249.257994][ T5849] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): Using encoding defined by superblock: utf8-12.1.0 [ 249.285264][ T5849] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,nojournal_transaction_names [ 249.285264][ T5849] allowing incompatible features above 0.0: (unknown version) [ 249.308093][ T5849] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 249.316321][ T5849] bcachefs (loop0): Version upgrade required: [ 249.316321][ T5849] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 249.316321][ T5849] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags [ 249.316321][ T5849] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 249.395490][ T5849] bcachefs (loop0): bcachefs (loop0): error validating btree node at btree alloc level 0/0 [ 249.395509][ T5849] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0 [ 249.395521][ T5849] node offset 8/24 bset u64s 375 bset byte offset 184: keys out of order: u64s 11 type alloc_v4 0:32:0 len 0 ver 0 > u64s 11 type alloc_v4 0:2:0 len 0 ver 0, fixing [ 249.437020][ T5849] bcachefs (loop0): invalid bkey in btree_node btree=alloc level=0: u64s 12 type alloc_v4 0:27:0 len 0 ver 0: [ 249.437036][ T5849] gen 169 oldest_gen 0 data_type free [ 249.437044][ T5849] journal_seq_nonempty 4 [ 249.437050][ T5849] journal_seq_empty 0 [ 249.437057][ T5849] need_discard 1 [ 249.437064][ T5849] need_inc_gen 1 [ 249.437077][ T5849] dirty_sectors 0 [ 249.437084][ T5849] stripe_sectors 0 [ 249.437091][ T5849] cached_sectors 0 [ 249.437098][ T5849] stripe 0 [ 249.437104][ T5849] stripe_redundancy 0 [ 249.437111][ T5849] io_time[READ] 1 [ 249.437118][ T5849] io_time[WRITE] 256 [ 249.437143][ T5849] fragmentation 0 [ 249.437150][ T5849] bp_start 8 [ 249.437157][ T5849] [ 249.437163][ T5849] invalid data type (got 0 should be 9), deleting [ 249.524141][ T5849] bcachefs (loop0): btree_node_read_work: rewriting btree node at due to error [ 249.524141][ T5849] btree=alloc level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0 [ 249.554144][ T5849] bcachefs (loop0): accounting_read... done [ 249.561258][ T5849] bcachefs (loop0): alloc_read... done [ 249.567050][ T5849] bcachefs (loop0): snapshots_read... done [ 249.573164][ T5849] bcachefs (loop0): check_allocations... [ 249.576781][ T5849] bcachefs (loop0): bucket 0:26 data type btree ptr gen 0 missing in alloc btree [ 249.576799][ T5849] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, fixing [ 249.608632][ T5849] bcachefs (loop0): bucket 0:27 data type btree ptr gen 0 missing in alloc btree [ 249.608648][ T5849] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c6c25c03258c59c5 written 16 min_key POS_MIN durability: 1 ptr: 0:27:0 gen 0, fixing [ 249.635517][ T5849] bcachefs (loop0): bucket 0:38 data type btree ptr gen 0 missing in alloc btree [ 249.635532][ T5849] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0, fixing [ 249.662653][ T5849] bcachefs (loop0): bucket 0:41 data type btree ptr gen 0 missing in alloc btree [ 249.662668][ T5849] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing [ 249.689420][ T5849] bcachefs (loop0): bucket 0:35 data type btree ptr gen 0 missing in alloc btree [ 249.689435][ T5849] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0, fixing [ 249.717063][ T5849] bcachefs (loop0): bucket 0:29 data type btree ptr gen 0 missing in alloc btree [ 249.717079][ T5849] while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0, fixing [ 249.742639][ T5849] bcachefs (loop0): bucket 0:1 gen 0 has wrong data_type: got free, should be sb, fixing [ 249.752799][ T5849] bcachefs (loop0): bucket 0:1 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 249.764923][ T5849] bcachefs (loop0): bucket 0:2 gen 0 has wrong data_type: got free, should be sb, fixing [ 249.775001][ T5849] bcachefs (loop0): bucket 0:2 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 249.786483][ T5849] bcachefs (loop0): bucket 0:3 gen 0 has wrong data_type: got free, should be sb, fixing [ 249.796490][ T5849] bcachefs (loop0): bucket 0:3 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 249.808137][ T5849] bcachefs (loop0): bucket 0:4 gen 0 has wrong data_type: got free, should be sb, fixing [ 249.818136][ T5849] bcachefs (loop0): bucket 0:4 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 249.829540][ T5849] bcachefs (loop0): bucket 0:5 gen 0 has wrong data_type: got free, should be sb, fixing [ 249.839546][ T5849] bcachefs (loop0): bucket 0:5 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 249.851312][ T5849] bcachefs (loop0): bucket 0:6 gen 0 has wrong data_type: got free, should be sb, fixing [ 249.861361][ T5849] bcachefs (loop0): bucket 0:6 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 249.872800][ T5849] bcachefs (loop0): bucket 0:7 gen 0 has wrong data_type: got free, should be sb, fixing [ 249.882798][ T5849] bcachefs (loop0): bucket 0:7 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 249.894200][ T5849] bcachefs (loop0): bucket 0:8 gen 0 has wrong data_type: got free, should be sb, fixing [ 249.904173][ T5849] bcachefs (loop0): bucket 0:8 gen 0 data type sb has wrong dirty_sectors: got 0, should be 8, fixing [ 249.917415][ T5849] bcachefs (loop0): bucket 0:9 gen 0 has wrong data_type: got free, should be journal, fixing [ 249.928038][ T5849] bcachefs (loop0): bucket 0:9 gen 0 data type journal has wrong dirty_sectors: got 0, should be 256, fixing [ 249.940427][ T5849] bcachefs (loop0): bucket 0:16 gen 0 has wrong data_type: got free, should be sb, fixing [ 249.950518][ T5849] bcachefs (loop0): bucket 0:16 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 249.962094][ T5849] bcachefs (loop0): bucket 0:17 gen 0 has wrong data_type: got free, should be sb, fixing [ 249.962110][ T5849] Ratelimiting new instances of previous error [ 249.978556][ T5849] bcachefs (loop0): bucket 0:17 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing [ 249.978571][ T5849] Ratelimiting new instances of previous error [ 250.004730][ T5849] done [ 250.009126][ T5849] bcachefs (loop0): going read-write [ 250.019537][ T5849] bcachefs (loop0): journal_replay... done [ 250.059549][ T5849] bcachefs (loop0): check_alloc_info... [ 250.060980][ T5849] bcachefs (loop0): hole in alloc btree missing in freespace btree [ 250.060997][ T5849] device 0 buckets 10-16, fixing [ 250.085034][ T5849] done [ 250.089881][ T5849] bcachefs (loop0): check_lrus... done [ 250.096646][ T5849] bcachefs (loop0): check_btree_backpointers... done [ 250.104886][ T5849] bcachefs (loop0): check_backpointers_to_extents... done [ 250.116025][ T5849] bcachefs (loop0): check_extents_to_backpointers... [ 250.117400][ T5849] bcachefs (loop0): scanning for missing backpointers in 5/128 buckets [ 250.133571][ T5849] done [ 250.138079][ T5849] bcachefs (loop0): check_alloc_to_lru_refs... done [ 250.146464][ T5849] bcachefs (loop0): bucket_gens_init... done [ 250.159793][ T5849] bcachefs (loop0): check_snapshot_trees... done [ 250.167808][ T5849] bcachefs (loop0): check_snapshots... [ 250.168359][ T5849] bcachefs (loop0): snapshot points to missing/incorrect tree: [ 250.168371][ T5849] u64s 8 type snapshot 0:4294967295:0 len 0 ver 0: is_subvol 1 deleted 0 parent 0 children 0 0 subvol 1 tree 0, fixing [ 250.203231][ T5849] done [ 250.207774][ T5849] bcachefs (loop0): check_subvols... done [ 250.215947][ T5849] bcachefs (loop0): check_subvol_children... done [ 250.223537][ T5849] bcachefs (loop0): delete_dead_snapshots... done [ 250.231000][ T5849] bcachefs (loop0): check_inodes... done [ 250.239291][ T5849] bcachefs (loop0): check_extents... done [ 250.246851][ T5849] bcachefs (loop0): check_indirect_extents... done [ 250.254302][ T5849] bcachefs (loop0): check_dirents... done [ 250.264257][ T5849] bcachefs (loop0): check_xattrs... done [ 250.271424][ T5849] bcachefs (loop0): check_root... done [ 250.279199][ T5849] bcachefs (loop0): check_unreachable_inodes... done [ 250.287180][ T5849] bcachefs (loop0): check_subvolume_structure... done [ 250.294937][ T5849] bcachefs (loop0): check_directory_structure... done [ 250.303490][ T5849] bcachefs (loop0): check_nlinks... [ 250.304154][ T5849] bcachefs (loop0): inode 536870914 type reg has wrong i_nlink (2780562353, should be 1), fixing [ 250.320126][ T5849] done [ 250.325010][ T5849] bcachefs (loop0): resume_logged_ops... done [ 250.331276][ T5849] bcachefs (loop0): delete_dead_inodes... done [ 250.338129][ T5849] bcachefs (loop0): set_fs_needs_rebalance... done [pid 5849] mount("/dev/loop0", "./file0", "bcachefs", MS_I_VERSION, "\xff\xff\xff\xff\xff\xff\xff\xff\x03\x03" [pid 5848] kill(-5849, SIGKILL) = 0 [pid 5848] kill(5849, SIGKILL) = 0 [pid 5848] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5848] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5848] getdents64(3, 0x5555806b16f0 /* 2 entries */, 32768) = 48 [pid 5848] getdents64(3, 0x5555806b16f0 /* 0 entries */, 32768) = 0 [pid 5848] close(3) = 0 [ 260.956040][ T5849] flags: replay_done,running,space_low [ 260.956056][ T5849] dirty journal entries: 0/32768 [ 260.956064][ T5849] seq: 25 [ 260.956071][ T5849] seq_ondisk: 25 [ 260.956078][ T5849] last_seq: 26 [ 260.956085][ T5849] last_seq_ondisk: 25 [ 260.956092][ T5849] flushed_seq_ondisk: 25 [ 260.956099][ T5849] watermark: reclaim [ 260.956106][ T5849] each entry reserved: 321 [ 260.956113][ T5849] nr flush writes: 15 [ 260.956120][ T5849] nr noflush writes: 0 [ 260.956127][ T5849] average write size: 1.98 KiB [ 260.956135][ T5849] free buf: 65536 [ 260.956142][ T5849] nr direct reclaim: 0 [ 260.956149][ T5849] nr background reclaim: 1 [ 260.956155][ T5849] reclaim kicked: 0 [ 260.956162][ T5849] reclaim runs in: 0 ms [ 260.956169][ T5849] blocked: 0 [ 260.956176][ T5849] current entry sectors: 128 [ 260.956183][ T5849] current entry error: (No error) [ 260.956191][ T5849] current entry: closed [ 260.956198][ T5849] unwritten entries: [ 260.956204][ T5849] last buf closed [ 260.956211][ T5849] space: [ 260.956217][ T5849] discarded 128:128 [ 260.956232][ T5849] clean ondisk 128:128 [ 260.956239][ T5849] clean 128:128 [ 260.956246][ T5849] total 256:512 [ 260.956253][ T5849] dev 0: [ 260.956259][ T5849] durability 1: [ 260.956265][ T5849] nr 2 [ 260.956272][ T5849] bucket size 256 [ 260.956279][ T5849] available 0:128 [ 260.956286][ T5849] discard_idx 0 [ 260.956293][ T5849] dirty_ondisk 0 (seq 25) [ 260.956300][ T5849] dirty_idx 0 (seq 25) [ 260.956307][ T5849] cur_idx 0 (seq 25) [ 260.956315][ T5849] replicas want 1 need 1 [ 429.905423][ T31] INFO: task syz-executor153:5849 blocked for more than 143 seconds. [ 429.913593][ T31] Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 [ 429.921389][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 429.930215][ T31] task:syz-executor153 state:D stack:14280 pid:5849 tgid:5849 ppid:5848 task_flags:0x400140 flags:0x00004006 [ 429.942348][ T31] Call Trace: [ 429.945709][ T31] [ 429.948664][ T31] __schedule+0x168f/0x4c70 [ 429.953187][ T31] ? __journal_res_get+0x21b4/0x24f0 [ 429.958607][ T31] ? kasan_save_track+0x3e/0x80 [ 429.963517][ T31] ? bch2_fs_start+0x70b/0xae0 [ 429.968413][ T31] ? __se_sys_mount+0x317/0x410 [ 429.973314][ T31] ? schedule+0x165/0x360 [ 429.977790][ T31] ? __pfx___schedule+0x10/0x10 [ 429.982698][ T31] ? schedule+0x91/0x360 [ 429.987071][ T31] schedule+0x165/0x360 [ 429.991297][ T31] ? __closure_sync+0x113/0x220 [ 429.996247][ T31] __closure_sync+0x163/0x220 [ 430.000961][ T31] ? __pfx___closure_sync+0x10/0x10 [ 430.006235][ T31] bch2_journal_res_get_slowpath+0x88d/0x950 [ 430.012265][ T31] ? __pfx_bch2_journal_res_get_slowpath+0x10/0x10 [ 430.018899][ T31] ? __pfx_closure_sync_fn+0x10/0x10 [ 430.024257][ T31] ? __pfx_closure_sync_fn+0x10/0x10 [ 430.029725][ T31] ? __pfx_closure_sync_fn+0x10/0x10 [ 430.035141][ T31] ? __pfx_journal_res_get_fast+0x10/0x10 [ 430.040886][ T31] ? bch2_journal_flush_pins+0x1e8/0x250 [ 430.046610][ T31] ? _raw_spin_unlock_irq+0x2e/0x50 [ 430.051865][ T31] bch2_journal_res_get+0x14f/0x1f0 [ 430.057163][ T31] __bch2_journal_meta+0x40/0x1d0 [ 430.062238][ T31] bch2_journal_meta+0xf9/0x7f0 [ 430.067201][ T31] bch2_fs_recovery+0x2558/0x37b0 [ 430.072277][ T31] ? __pfx_bch2_fs_recovery+0x10/0x10 [ 430.077772][ T31] ? __lock_acquire+0xaac/0xd20 [ 430.082678][ T31] ? __lock_acquire+0xaac/0xd20 [ 430.087668][ T31] ? percpu_ref_put+0x1e/0x230 [ 430.092499][ T31] ? bch2_get_next_online_dev+0x2d/0x4d0 [ 430.098269][ T31] ? bch2_fs_start+0x65b/0xae0 [ 430.103073][ T31] ? up_write+0x1c4/0x420 [ 430.107483][ T31] bch2_fs_start+0x70b/0xae0 [ 430.112199][ T31] ? __pfx_bch2_fs_start+0x10/0x10 [ 430.117445][ T31] ? sget+0x28a/0x650 [ 430.121470][ T31] bch2_fs_get_tree+0xad7/0x13b0 [ 430.126512][ T31] ? __pfx_bch2_fs_get_tree+0x10/0x10 [ 430.131927][ T31] ? smack_fs_context_parse_param+0x102/0x170 [ 430.138159][ T31] ? vfs_parse_monolithic_sep+0x2e3/0x310 [ 430.143941][ T31] ? cap_capable+0x11f/0x460 [ 430.148613][ T31] ? bch2_init_fs_context+0x88/0x110 [ 430.154021][ T31] ? safesetid_security_capable+0xa9/0x1a0 [ 430.159951][ T31] vfs_get_tree+0x92/0x2b0 [ 430.164418][ T31] do_new_mount+0x24a/0xa40 [ 430.169011][ T31] __se_sys_mount+0x317/0x410 [ 430.173725][ T31] ? __pfx___se_sys_mount+0x10/0x10 [ 430.179044][ T31] ? __x64_sys_mount+0x20/0xc0 [ 430.183849][ T31] do_syscall_64+0xf6/0x210 [ 430.188462][ T31] ? clear_bhb_loop+0x60/0xb0 [ 430.193179][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 430.199205][ T31] RIP: 0033:0x7f65825adeea [ 430.203682][ T31] RSP: 002b:00007fffadfdb6d8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 430.212369][ T31] RAX: ffffffffffffffda RBX: 00007fffadfdb6f0 RCX: 00007f65825adeea [ 430.220494][ T31] RDX: 00002000000000c0 RSI: 0000200000000000 RDI: 00007fffadfdb6f0 [ 430.228613][ T31] RBP: 0000200000000000 R08: 00007fffadfdb730 R09: 000303ffffffffff [ 430.236674][ T31] R10: 0000000000800000 R11: 0000000000000282 R12: 00002000000000c0 [ 430.244669][ T31] R13: 00007fffadfdb730 R14: 0000000000000004 R15: 0000000000800000 [ 430.252783][ T31] [ 430.255923][ T31] [ 430.255923][ T31] Showing all locks held in the system: [ 430.263646][ T31] 1 lock held by khungtaskd/31: [ 430.268581][ T31] #0: ffffffff8df3dce0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180 [ 430.278569][ T31] 2 locks held by getty/5579: [ 430.283247][ T31] #0: ffff8880309430a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 430.293081][ T31] #1: ffffc900036d32f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400 [ 430.303350][ T31] [ 430.305753][ T31] ============================================= [ 430.305753][ T31] [ 430.314195][ T31] NMI backtrace for cpu 1 [ 430.314220][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 PREEMPT(full) [ 430.314242][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 430.314254][ T31] Call Trace: [ 430.314261][ T31] [ 430.314269][ T31] dump_stack_lvl+0x189/0x250 [ 430.314300][ T31] ? __wake_up_klogd+0xd9/0x110 [ 430.314326][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 430.314352][ T31] ? __pfx__printk+0x10/0x10 [ 430.314397][ T31] nmi_cpu_backtrace+0x39e/0x3d0 [ 430.314422][ T31] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 430.314441][ T31] ? _printk+0xcf/0x120 [ 430.314479][ T31] ? __pfx__printk+0x10/0x10 [ 430.314513][ T31] ? debug_show_all_locks+0x2e/0x180 [ 430.314542][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 430.314567][ T31] nmi_trigger_cpumask_backtrace+0x17a/0x300 [ 430.314593][ T31] watchdog+0xfee/0x1030 [ 430.314623][ T31] ? watchdog+0x1de/0x1030 [ 430.314658][ T31] kthread+0x70e/0x8a0 [ 430.314687][ T31] ? __pfx_watchdog+0x10/0x10 [ 430.314712][ T31] ? __pfx_kthread+0x10/0x10 [ 430.314738][ T31] ? __pfx_kthread+0x10/0x10 [ 430.314759][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 430.314781][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 430.314806][ T31] ? __pfx_kthread+0x10/0x10 [ 430.314830][ T31] ret_from_fork+0x4b/0x80 [ 430.314850][ T31] ? __pfx_kthread+0x10/0x10 [ 430.314874][ T31] ret_from_fork_asm+0x1a/0x30 [ 430.314924][ T31] [ 430.314932][ T31] Sending NMI from CPU 1 to CPUs 0: [ 430.467310][ C0] NMI backtrace for cpu 0 [ 430.467329][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 PREEMPT(full) [ 430.467350][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 430.467361][ C0] RIP: 0010:pv_native_safe_halt+0x13/0x20 [ 430.467389][ C0] Code: 43 d4 02 00 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d a3 df 18 00 f3 0f 1e fa fb f4 18 d4 02 00 cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 [ 430.467426][ C0] RSP: 0018:ffffffff8dc07d80 EFLAGS: 000002c6 [ 430.467442][ C0] RAX: ce00312da0d9f600 RBX: ffffffff81977048 RCX: ce00312da0d9f600 [ 430.467457][ C0] RDX: 0000000000000001 RSI: ffffffff8d738c60 RDI: ffffffff8bc10660 [ 430.467469][ C0] RBP: ffffffff8dc07ec0 R08: ffff8880b8832b5b R09: 1ffff1101710656b [ 430.467483][ C0] R10: dffffc0000000000 R11: ffffed101710656c R12: ffffffff8f7dd370 [ 430.467496][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 1ffffffff1b92a48 [ 430.467508][ C0] FS: 0000000000000000(0000) GS:ffff8881260fb000(0000) knlGS:0000000000000000 [ 430.467522][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 430.467535][ C0] CR2: 00005624b0112660 CR3: 000000000dd38000 CR4: 00000000003526f0 [ 430.467550][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 430.467561][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 430.467572][ C0] Call Trace: [ 430.467579][ C0] [ 430.467585][ C0] default_idle+0x13/0x20 [ 430.467610][ C0] default_idle_call+0x74/0xb0 [ 430.467637][ C0] do_idle+0x1e8/0x510 [ 430.467668][ C0] ? __pfx_do_idle+0x10/0x10 [ 430.467705][ C0] cpu_startup_entry+0x44/0x60 [ 430.467733][ C0] rest_init+0x2de/0x300 [ 430.467759][ C0] ? __pfx_x86_late_time_init+0x10/0x10 [ 430.467786][ C0] start_kernel+0x470/0x4f0 [ 430.467809][ C0] x86_64_start_reservations+0x2a/0x30 [ 430.467835][ C0] x86_64_start_kernel+0x66/0x70 [ 430.467859][ C0] common_startup_64+0x13e/0x147 [ 430.467892][ C0] [ 430.468370][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 430.468388][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc6-syzkaller-00105-g088d13246a46 #0 PREEMPT(full) [ 430.468415][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 430.468429][ T31] Call Trace: [ 430.468439][ T31] [ 430.468450][ T31] dump_stack_lvl+0x99/0x250 [ 430.468484][ T31] ? __asan_memcpy+0x40/0x70 [ 430.468516][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 430.468548][ T31] ? __pfx__printk+0x10/0x10 [ 430.468599][ T31] panic+0x2db/0x790 [ 430.468636][ T31] ? __pfx_panic+0x10/0x10 [ 430.468667][ T31] ? nmi_backtrace_stall_check+0x433/0x440 [ 430.468700][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 430.468726][ T31] ? nmi_trigger_cpumask_backtrace+0x2b6/0x300 [ 430.468760][ T31] watchdog+0x102d/0x1030 [ 430.468791][ T31] ? watchdog+0x1de/0x1030 [ 430.468829][ T31] kthread+0x70e/0x8a0 [ 430.468860][ T31] ? __pfx_watchdog+0x10/0x10 [ 430.468888][ T31] ? __pfx_kthread+0x10/0x10 [ 430.468916][ T31] ? __pfx_kthread+0x10/0x10 [ 430.468942][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 430.468968][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 430.468996][ T31] ? __pfx_kthread+0x10/0x10 [ 430.469022][ T31] ret_from_fork+0x4b/0x80 [ 430.469044][ T31] ? __pfx_kthread+0x10/0x10 [ 430.469070][ T31] ret_from_fork_asm+0x1a/0x30 [ 430.469123][ T31] [ 430.804324][ T31] Kernel Offset: disabled [ 430.808659][ T31] Rebooting in 86400 seconds..