./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor266169536 <...> Warning: Permanently added '10.128.0.42' (ED25519) to the list of known hosts. execve("./syz-executor266169536", ["./syz-executor266169536"], 0x7ffe0cf8d370 /* 10 vars */) = 0 brk(NULL) = 0x55557c8a4000 brk(0x55557c8a4d00) = 0x55557c8a4d00 arch_prctl(ARCH_SET_FS, 0x55557c8a4380) = 0 set_tid_address(0x55557c8a4650) = 5840 set_robust_list(0x55557c8a4660, 24) = 0 rseq(0x55557c8a4ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor266169536", 4096) = 27 getrandom("\x4c\x1b\xf6\x77\x8b\x52\x9d\x42", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55557c8a4d00 brk(0x55557c8c5d00) = 0x55557c8c5d00 brk(0x55557c8c6000) = 0x55557c8c6000 mprotect(0x7fcaca72b000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5841 attached [pid 5841] set_robust_list(0x55557c8a4660, 24 [pid 5840] <... clone resumed>, child_tidptr=0x55557c8a4650) = 5841 [pid 5841] <... set_robust_list resumed>) = 0 [pid 5841] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5840] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5842 attached [pid 5842] set_robust_list(0x55557c8a4660, 24 [pid 5841] <... clone resumed>, child_tidptr=0x55557c8a4650) = 5842 [pid 5842] <... set_robust_list resumed>) = 0 ./strace-static-x86_64: Process 5843 attached [pid 5842] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5843] set_robust_list(0x55557c8a4660, 24 [pid 5840] <... clone resumed>, child_tidptr=0x55557c8a4650) = 5843 [pid 5842] setpgid(0, 0 [pid 5840] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5843] <... set_robust_list resumed>) = 0 ./strace-static-x86_64: Process 5844 attached [pid 5843] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5842] <... setpgid resumed>) = 0 [pid 5840] <... clone resumed>, child_tidptr=0x55557c8a4650) = 5844 [pid 5842] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5840] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5842] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5846 attached ./strace-static-x86_64: Process 5845 attached [pid 5844] set_robust_list(0x55557c8a4660, 24 [pid 5843] <... clone resumed>, child_tidptr=0x55557c8a4650) = 5846 [pid 5842] write(3, "1000", 4) = 4 [pid 5842] close(3executing program ) = 0 [pid 5844] <... set_robust_list resumed>) = 0 [pid 5846] set_robust_list(0x55557c8a4660, 24 [pid 5842] write(1, "executing program\n", 18 [pid 5845] set_robust_list(0x55557c8a4660, 24 [pid 5842] <... write resumed>) = 18 [pid 5846] <... set_robust_list resumed>) = 0 [pid 5845] <... set_robust_list resumed>) = 0 [pid 5844] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5842] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT./strace-static-x86_64: Process 5847 attached [pid 5840] <... clone resumed>, child_tidptr=0x55557c8a4650) = 5845 [pid 5846] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5840] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5847] set_robust_list(0x55557c8a4660, 24 [pid 5846] <... prctl resumed>) = 0 [pid 5844] <... clone resumed>, child_tidptr=0x55557c8a4650) = 5847 [pid 5842] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5849 attached ./strace-static-x86_64: Process 5848 attached [pid 5847] <... set_robust_list resumed>) = 0 [pid 5842] dup(3 [pid 5846] setpgid(0, 0) = 0 [pid 5847] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5846] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5849] set_robust_list(0x55557c8a4660, 24) = 0 [pid 5848] set_robust_list(0x55557c8a4660, 24 [pid 5845] <... clone resumed>, child_tidptr=0x55557c8a4650) = 5848 [pid 5842] <... dup resumed>) = 4 [pid 5847] <... prctl resumed>) = 0 [pid 5842] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 [pid 5846] <... openat resumed>) = 3 [pid 5849] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5848] <... set_robust_list resumed>) = 0 [pid 5848] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5847] setpgid(0, 0 [pid 5846] write(3, "1000", 4./strace-static-x86_64: Process 5850 attached [pid 5840] <... clone resumed>, child_tidptr=0x55557c8a4650) = 5849 [pid 5847] <... setpgid resumed>) = 0 [pid 5849] <... clone resumed>, child_tidptr=0x55557c8a4650) = 5850 [pid 5848] <... prctl resumed>) = 0 [pid 5847] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5846] <... write resumed>) = 4 [pid 5850] set_robust_list(0x55557c8a4660, 24 [pid 5847] <... openat resumed>) = 3 [pid 5850] <... set_robust_list resumed>) = 0 [pid 5846] close(3 [pid 5848] setpgid(0, 0 [pid 5850] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5848] <... setpgid resumed>) = 0 [pid 5847] write(3, "1000", 4 [pid 5846] <... close resumed>) = 0 [pid 5850] <... prctl resumed>) = 0 [pid 5848] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC executing program [pid 5846] write(1, "executing program\n", 18 [pid 5850] setpgid(0, 0 [pid 5847] <... write resumed>) = 4 [pid 5846] <... write resumed>) = 18 [pid 5850] <... setpgid resumed>) = 0 [pid 5848] <... openat resumed>) = 3 [pid 5847] close(3 [pid 5846] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT [pid 5850] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5847] <... close resumed>) = 0 executing program [pid 5850] <... openat resumed>) = 3 [pid 5848] write(3, "1000", 4 [pid 5847] write(1, "executing program\n", 18 [pid 5846] <... openat resumed>) = 3 [pid 5848] <... write resumed>) = 4 [pid 5848] close(3 [pid 5847] <... write resumed>) = 18 [pid 5850] write(3, "1000", 4 [pid 5848] <... close resumed>) = 0 [pid 5847] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT [pid 5846] dup(3 [pid 5850] <... write resumed>) = 4 [pid 5847] <... openat resumed>) = 3 [pid 5850] close(3executing program executing program ) = 0 [pid 5848] write(1, "executing program\n", 18 [pid 5847] dup(3 [pid 5846] <... dup resumed>) = 4 [pid 5848] <... write resumed>) = 18 [pid 5846] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 [pid 5850] write(1, "executing program\n", 18 [pid 5848] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT [pid 5847] <... dup resumed>) = 4 [pid 5850] <... write resumed>) = 18 [pid 5847] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 [pid 5850] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT [pid 5848] <... openat resumed>) = 3 [pid 5850] <... openat resumed>) = 3 [pid 5850] dup(3) = 4 [pid 5848] dup(3 [pid 5850] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 [pid 5848] <... dup resumed>) = 4 [pid 5848] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 [pid 5841] kill(-5842, SIGKILL) = 0 [pid 5841] kill(5842, SIGKILL) = 0 [pid 5843] kill(-5846, SIGKILL) = 0 [pid 5843] kill(5846, SIGKILL) = 0 [pid 5849] kill(-5850, SIGKILL) = 0 [pid 5844] kill(-5847, SIGKILL [pid 5849] kill(5850, SIGKILL [pid 5845] kill(-5848, SIGKILL [pid 5844] <... kill resumed>) = 0 [pid 5849] <... kill resumed>) = 0 [pid 5845] <... kill resumed>) = 0 [pid 5844] kill(5847, SIGKILL [pid 5845] kill(5848, SIGKILL [pid 5844] <... kill resumed>) = 0 [pid 5845] <... kill resumed>) = 0 [pid 5849] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5841] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5845] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5849] <... openat resumed>) = 3 [pid 5843] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5841] <... openat resumed>) = 3 [pid 5849] newfstatat(3, "", [pid 5845] newfstatat(3, "", [pid 5841] newfstatat(3, "", [pid 5849] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5843] <... openat resumed>) = 3 [pid 5841] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5849] getdents64(3, [pid 5845] getdents64(3, [pid 5843] newfstatat(3, "", [pid 5841] getdents64(3, [pid 5849] <... getdents64 resumed>0x55557c8a56f0 /* 2 entries */, 32768) = 48 [pid 5845] <... getdents64 resumed>0x55557c8a56f0 /* 2 entries */, 32768) = 48 [pid 5844] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5843] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5841] <... getdents64 resumed>0x55557c8a56f0 /* 2 entries */, 32768) = 48 [pid 5845] getdents64(3, [pid 5844] <... openat resumed>) = 3 [pid 5843] getdents64(3, [pid 5841] getdents64(3, [pid 5849] getdents64(3, [pid 5845] <... getdents64 resumed>0x55557c8a56f0 /* 0 entries */, 32768) = 0 [pid 5844] newfstatat(3, "", [pid 5843] <... getdents64 resumed>0x55557c8a56f0 /* 2 entries */, 32768) = 48 [pid 5841] <... getdents64 resumed>0x55557c8a56f0 /* 0 entries */, 32768) = 0 [pid 5849] <... getdents64 resumed>0x55557c8a56f0 /* 0 entries */, 32768) = 0 [pid 5845] close(3 [pid 5843] getdents64(3, [pid 5849] close(3 [pid 5845] <... close resumed>) = 0 [pid 5844] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5843] <... getdents64 resumed>0x55557c8a56f0 /* 0 entries */, 32768) = 0 [pid 5841] close(3 [pid 5849] <... close resumed>) = 0 [pid 5844] getdents64(3, [pid 5843] close(3 [pid 5841] <... close resumed>) = 0 [pid 5843] <... close resumed>) = 0 [pid 5844] <... getdents64 resumed>0x55557c8a56f0 /* 2 entries */, 32768) = 48 [pid 5844] getdents64(3, 0x55557c8a56f0 /* 0 entries */, 32768) = 0 [pid 5844] close(3) = 0 [ 286.706727][ T30] INFO: task syz-executor266:5846 blocked for more than 143 seconds. [ 286.718332][ T30] Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0 [ 286.726529][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.736536][ T30] task:syz-executor266 state:D stack:26736 pid:5846 tgid:5846 ppid:5843 flags:0x00004006 [ 286.778268][ T30] Call Trace: [ 286.781626][ T30] [ 286.784611][ T30] __schedule+0x17fb/0x4be0 [ 286.808259][ T30] ? __pfx___schedule+0x10/0x10 [ 286.813207][ T30] ? __pfx_lock_release+0x10/0x10 [ 286.822846][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 286.829097][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 286.835472][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 286.840835][ T30] ? schedule+0x90/0x320 [ 286.845138][ T30] schedule+0x14b/0x320 [ 286.871888][ T30] schedule_preempt_disabled+0x13/0x30 [ 286.879447][ T30] rwsem_down_write_slowpath+0xeee/0x13b0 [ 286.885241][ T30] ? rwsem_down_write_slowpath+0xa09/0x13b0 [ 286.891400][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 286.897646][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 286.902727][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 286.915119][ T30] down_write+0x1d7/0x220 [ 286.925571][ T30] ? __pfx_down_write+0x10/0x10 [ 286.938152][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 286.943530][ T30] blkdev_fallocate+0x20e/0x490 [ 286.949503][ T30] vfs_fallocate+0x569/0x6e0 [ 286.954173][ T30] __x64_sys_fallocate+0xbc/0x110 [ 286.959303][ T30] do_syscall_64+0xf3/0x230 [ 286.963849][ T30] ? clear_bhb_loop+0x35/0x90 [ 286.968822][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.975882][ T30] RIP: 0033:0x7fcaca6b8b29 [ 286.981802][ T30] RSP: 002b:00007ffe0d9e37c8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 286.991463][ T30] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fcaca6b8b29 [ 287.000618][ T30] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.009610][ T30] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.018799][ T30] R10: 0000100001002000 R11: 0000000000000246 R12: 0000000000000001 [ 287.028004][ T30] R13: 00007ffe0d9e39e8 R14: 00007ffe0d9e37f0 R15: 00007ffe0d9e37e0 [ 287.037135][ T30] [ 287.040288][ T30] INFO: task syz-executor266:5847 blocked for more than 143 seconds. [ 287.049019][ T30] Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0 [ 287.056901][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.065610][ T30] task:syz-executor266 state:D stack:26232 pid:5847 tgid:5847 ppid:5844 flags:0x00004006 [ 287.086257][ T30] Call Trace: [ 287.089624][ T30] [ 287.092593][ T30] __schedule+0x17fb/0x4be0 [ 287.106302][ T30] ? __pfx___schedule+0x10/0x10 [ 287.112129][ T30] ? __pfx_lock_release+0x10/0x10 [ 287.123102][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 287.130117][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 287.137550][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 287.143680][ T30] ? schedule+0x90/0x320 [ 287.148035][ T30] schedule+0x14b/0x320 [ 287.152250][ T30] schedule_preempt_disabled+0x13/0x30 [ 287.157893][ T30] rwsem_down_write_slowpath+0xeee/0x13b0 [ 287.163661][ T30] ? rwsem_down_write_slowpath+0xa09/0x13b0 [ 287.169696][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 287.175903][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 287.181041][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 287.187992][ T30] down_write+0x1d7/0x220 [ 287.192388][ T30] ? __pfx_down_write+0x10/0x10 [ 287.197346][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.203531][ T30] blkdev_fallocate+0x20e/0x490 [ 287.210194][ T30] vfs_fallocate+0x569/0x6e0 [ 287.215766][ T30] __x64_sys_fallocate+0xbc/0x110 [ 287.221955][ T30] do_syscall_64+0xf3/0x230 [ 287.227731][ T30] ? clear_bhb_loop+0x35/0x90 [ 287.233380][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.240284][ T30] RIP: 0033:0x7fcaca6b8b29 [ 287.244758][ T30] RSP: 002b:00007ffe0d9e37c8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.253275][ T30] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fcaca6b8b29 [ 287.261326][ T30] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.269445][ T30] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.277530][ T30] R10: 0000100001002000 R11: 0000000000000246 R12: 0000000000000001 [ 287.286426][ T30] R13: 00007ffe0d9e39e8 R14: 00007ffe0d9e37f0 R15: 00007ffe0d9e37e0 [ 287.294465][ T30] [ 287.297602][ T30] INFO: task syz-executor266:5848 blocked for more than 143 seconds. [ 287.306659][ T30] Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0 [ 287.314335][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.323398][ T30] task:syz-executor266 state:D stack:26232 pid:5848 tgid:5848 ppid:5845 flags:0x00004006 [ 287.333704][ T30] Call Trace: [ 287.337059][ T30] [ 287.340027][ T30] __schedule+0x17fb/0x4be0 [ 287.344604][ T30] ? __pfx___schedule+0x10/0x10 [ 287.349546][ T30] ? __pfx_lock_release+0x10/0x10 [ 287.355610][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 287.361712][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 287.368120][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 287.374147][ T30] ? schedule+0x90/0x320 [ 287.378476][ T30] schedule+0x14b/0x320 [ 287.382683][ T30] schedule_preempt_disabled+0x13/0x30 [ 287.388605][ T30] rwsem_down_write_slowpath+0xeee/0x13b0 [ 287.395219][ T30] ? rwsem_down_write_slowpath+0xa09/0x13b0 [ 287.402078][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 287.409288][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 287.415450][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 287.421550][ T30] down_write+0x1d7/0x220 [ 287.426010][ T30] ? __pfx_down_write+0x10/0x10 [ 287.430945][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.436245][ T30] blkdev_fallocate+0x20e/0x490 [ 287.441186][ T30] vfs_fallocate+0x569/0x6e0 [ 287.445826][ T30] __x64_sys_fallocate+0xbc/0x110 [ 287.450929][ T30] do_syscall_64+0xf3/0x230 [ 287.455471][ T30] ? clear_bhb_loop+0x35/0x90 [ 287.460223][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.466227][ T30] RIP: 0033:0x7fcaca6b8b29 [ 287.470687][ T30] RSP: 002b:00007ffe0d9e37c8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.494702][ T30] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fcaca6b8b29 [ 287.517201][ T30] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.525261][ T30] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.534208][ T30] R10: 0000100001002000 R11: 0000000000000246 R12: 0000000000000001 [ 287.543327][ T30] R13: 00007ffe0d9e39e8 R14: 00007ffe0d9e37f0 R15: 00007ffe0d9e37e0 [ 287.551407][ T30] [ 287.554504][ T30] INFO: task syz-executor266:5850 blocked for more than 144 seconds. [ 287.562642][ T30] Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0 [ 287.570359][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.579096][ T30] task:syz-executor266 state:D stack:26648 pid:5850 tgid:5850 ppid:5849 flags:0x00004006 [ 287.589752][ T30] Call Trace: [ 287.593072][ T30] [ 287.596039][ T30] __schedule+0x17fb/0x4be0 [ 287.600671][ T30] ? __pfx___schedule+0x10/0x10 [ 287.605577][ T30] ? __pfx_lock_release+0x10/0x10 [ 287.610711][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 287.616772][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 287.623184][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 287.643437][ T30] ? schedule+0x90/0x320 [ 287.647858][ T30] schedule+0x14b/0x320 [ 287.652066][ T30] schedule_preempt_disabled+0x13/0x30 [ 287.657679][ T30] rwsem_down_write_slowpath+0xeee/0x13b0 [ 287.663448][ T30] ? rwsem_down_write_slowpath+0xa09/0x13b0 [ 287.669485][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 287.694727][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 287.701442][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 287.707594][ T30] down_write+0x1d7/0x220 [ 287.711976][ T30] ? __pfx_down_write+0x10/0x10 [ 287.716985][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.722240][ T30] blkdev_fallocate+0x20e/0x490 [ 287.727240][ T30] vfs_fallocate+0x569/0x6e0 [ 287.746241][ T30] __x64_sys_fallocate+0xbc/0x110 [ 287.751366][ T30] do_syscall_64+0xf3/0x230 [ 287.755928][ T30] ? clear_bhb_loop+0x35/0x90 [ 287.767837][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.773814][ T30] RIP: 0033:0x7fcaca6b8b29 [ 287.778626][ T30] RSP: 002b:00007ffe0d9e37c8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.787193][ T30] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fcaca6b8b29 [ 287.795214][ T30] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.804316][ T30] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.813506][ T30] R10: 0000100001002000 R11: 0000000000000246 R12: 0000000000000001 [ 287.822616][ T30] R13: 00007ffe0d9e39e8 R14: 00007ffe0d9e37f0 R15: 00007ffe0d9e37e0 [ 287.831655][ T30] [ 287.835778][ T30] [ 287.835778][ T30] Showing all locks held in the system: [ 287.846903][ T30] 1 lock held by khungtaskd/30: [ 287.860017][ T30] #0: ffffffff8e937ae0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x55/0x2a0 [ 287.885120][ T30] 2 locks held by klogd/5184: [ 287.901223][ T30] 2 locks held by getty/5587: [ 287.905977][ T30] #0: ffff88807cda00a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 287.925412][ T30] #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x6a6/0x1e00 [ 287.937696][ T30] 1 lock held by syz-executor266/5842: [ 287.944653][ T30] #0: ffff8880234642c0 (mapping.invalidate_lock#2){++++}-{4:4}, at: blkdev_fallocate+0x20e/0x490 [ 287.957429][ T30] 1 lock held by syz-executor266/5846: [ 287.964851][ T30] #0: ffff8880234642c0 (mapping.invalidate_lock#2){++++}-{4:4}, at: blkdev_fallocate+0x20e/0x490 [ 287.984924][ T30] 1 lock held by syz-executor266/5847: [ 287.990545][ T30] #0: ffff8880234642c0 (mapping.invalidate_lock#2){++++}-{4:4}, at: blkdev_fallocate+0x20e/0x490 [ 288.001352][ T30] 1 lock held by syz-executor266/5848: [ 288.006978][ T30] #0: ffff8880234642c0 (mapping.invalidate_lock#2){++++}-{4:4}, at: blkdev_fallocate+0x20e/0x490 [ 288.017781][ T30] 1 lock held by syz-executor266/5850: [ 288.039379][ T30] #0: ffff8880234642c0 (mapping.invalidate_lock#2){++++}-{4:4}, at: blkdev_fallocate+0x20e/0x490 [ 288.054558][ T30] [ 288.057001][ T30] ============================================= [ 288.057001][ T30] [ 288.065465][ T30] NMI backtrace for cpu 0 [ 288.069847][ T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0 [ 288.080392][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 288.090498][ T30] Call Trace: [ 288.093807][ T30] [ 288.096767][ T30] dump_stack_lvl+0x241/0x360 [ 288.101499][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 288.106736][ T30] ? __pfx__printk+0x10/0x10 [ 288.111375][ T30] nmi_cpu_backtrace+0x49c/0x4d0 [ 288.116364][ T30] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 288.121854][ T30] ? _printk+0xd5/0x120 [ 288.126025][ T30] ? __pfx__printk+0x10/0x10 [ 288.130627][ T30] ? __wake_up_klogd+0xcc/0x110 [ 288.135510][ T30] ? __pfx__printk+0x10/0x10 [ 288.140113][ T30] ? __rcu_read_unlock+0xa1/0x110 [ 288.145147][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 288.151145][ T30] nmi_trigger_cpumask_backtrace+0x198/0x320 [ 288.157143][ T30] watchdog+0xff6/0x1040 [ 288.161399][ T30] ? watchdog+0x1ea/0x1040 [ 288.165873][ T30] ? __pfx_watchdog+0x10/0x10 [ 288.170581][ T30] kthread+0x2f0/0x390 [ 288.174666][ T30] ? __pfx_watchdog+0x10/0x10 [ 288.179357][ T30] ? __pfx_kthread+0x10/0x10 [ 288.183960][ T30] ret_from_fork+0x4b/0x80 [ 288.188386][ T30] ? __pfx_kthread+0x10/0x10 [ 288.192990][ T30] ret_from_fork_asm+0x1a/0x30 [ 288.197781][ T30] [ 288.200990][ T30] Sending NMI from CPU 0 to CPUs 1: [ 288.206290][ C1] NMI backtrace for cpu 1 [ 288.206305][ C1] CPU: 1 UID: 0 PID: 5184 Comm: klogd Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0 [ 288.206326][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 288.206337][ C1] RIP: 0010:lock_release+0x12a/0xa30 [ 288.206361][ C1] Code: 7e 85 c0 0f 85 46 05 00 00 65 48 8b 04 25 80 d4 03 00 48 89 44 24 20 48 8d 98 dc 0a 00 00 48 89 d8 48 c1 e8 03 42 0f b6 04 38 <84> c0 0f 85 fb 05 00 00 83 3b 00 0f 85 14 05 00 00 4c 89 f0 48 c1 [ 288.206375][ C1] RSP: 0018:ffffc90000a18ba0 EFLAGS: 00000a07 [ 288.206392][ C1] RAX: 0000000000000000 RBX: ffff88807d9228dc RCX: ffffffff817ad780 [ 288.206405][ C1] RDX: 0000000000000000 RSI: ffffffff8c5edf00 RDI: ffffffff8c5edec0 [ 288.206418][ C1] RBP: ffffc90000a18cd0 R08: ffffffff90185a77 R09: 1ffffffff2030b4e [ 288.206431][ C1] R10: dffffc0000000000 R11: fffffbfff2030b4f R12: 1ffff92000143180 [ 288.206445][ C1] R13: ffffffff81730e52 R14: ffffffff8e937ae0 R15: dffffc0000000000 [ 288.206460][ C1] FS: 00007f9ab849d380(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 288.206475][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 288.206488][ C1] CR2: 000055893fde4600 CR3: 000000007de6e000 CR4: 00000000003526f0 [ 288.206504][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 288.206514][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 288.206525][ C1] Call Trace: [ 288.206531][ C1] [ 288.206538][ C1] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 288.206561][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 288.206582][ C1] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 288.206603][ C1] ? nmi_handle+0x2a/0x5a0 [ 288.206630][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 288.206656][ C1] ? nmi_handle+0x14f/0x5a0 [ 288.206674][ C1] ? nmi_handle+0x2a/0x5a0 [ 288.206695][ C1] ? lock_release+0x12a/0xa30 [ 288.206712][ C1] ? default_do_nmi+0x63/0x160 [ 288.206733][ C1] ? exc_nmi+0x123/0x1f0 [ 288.206753][ C1] ? end_repeat_nmi+0xf/0x53 [ 288.206770][ C1] ? sched_balance_domains+0x1b2/0xa90 [ 288.206796][ C1] ? lock_release+0xb0/0xa30 [ 288.206814][ C1] ? lock_release+0x12a/0xa30 [ 288.206832][ C1] ? lock_release+0x12a/0xa30 [ 288.206851][ C1] ? lock_release+0x12a/0xa30 [ 288.206870][ C1] [ 288.206875][ C1] [ 288.206883][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 288.206903][ C1] ? __pfx_lock_release+0x10/0x10 [ 288.206928][ C1] sched_balance_domains+0x916/0xa90 [ 288.206958][ C1] ? sched_balance_domains+0x1b2/0xa90 [ 288.206981][ C1] ? __pfx_sched_balance_domains+0x10/0x10 [ 288.207004][ C1] ? do_raw_spin_unlock+0x13c/0x8b0 [ 288.207048][ C1] ? sched_balance_softirq+0xe7/0x170 [ 288.207070][ C1] handle_softirqs+0x2d4/0x9b0 [ 288.207100][ C1] ? __irq_exit_rcu+0xf7/0x220 [ 288.207126][ C1] ? __pfx_handle_softirqs+0x10/0x10 [ 288.207153][ C1] ? irqtime_account_irq+0xd4/0x1e0 [ 288.207175][ C1] __irq_exit_rcu+0xf7/0x220 [ 288.207205][ C1] ? __pfx___irq_exit_rcu+0x10/0x10 [ 288.207235][ C1] irq_exit_rcu+0x9/0x30 [ 288.207258][ C1] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 288.207283][ C1] [ 288.207289][ C1] [ 288.207295][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 288.207313][ C1] RIP: 0010:memset_orig+0x36/0xb0 [ 288.207331][ C1] Code: b8 01 01 01 01 01 01 01 01 48 0f af c1 41 89 f9 41 83 e1 07 75 70 48 89 d1 48 c1 e9 06 74 35 0f 1f 44 00 00 48 ff c9 48 89 07 <48> 89 47 08 48 89 47 10 48 89 47 18 48 89 47 20 48 89 47 28 48 89 [ 288.207344][ C1] RSP: 0018:ffffc900031f7460 EFLAGS: 00000212 [ 288.207359][ C1] RAX: ffffffffffffffff RBX: 0000000000000000 RCX: 000000000000002f [ 288.207371][ C1] RDX: 0000000000001000 RSI: 00000000000000ff RDI: ffffed100923a400 [ 288.207383][ C1] RBP: ffffea0001247400 R08: dffffc0000000000 R09: 0000000000000000 [ 288.207395][ C1] R10: ffffed100923a000 R11: fffffbfff284e317 R12: 0000000000000008 [ 288.207408][ C1] R13: 0000000000000003 R14: 0005088000000000 R15: dffffc0000000000 [ 288.207428][ C1] free_unref_page+0x4ed/0x1000 [ 288.207455][ C1] __put_partials+0x160/0x1c0 [ 288.207476][ C1] ? put_cpu_partial+0x14c/0x250 [ 288.207499][ C1] put_cpu_partial+0x17c/0x250 [ 288.207519][ C1] ? put_cpu_partial+0x70/0x250 [ 288.207543][ C1] __slab_free+0x290/0x380 [ 288.207567][ C1] ? __phys_addr+0xba/0x170 [ 288.207587][ C1] qlist_free_all+0x9a/0x140 [ 288.207612][ C1] kasan_quarantine_reduce+0x14f/0x170 [ 288.207636][ C1] __kasan_kmalloc+0x23/0xb0 [ 288.207661][ C1] __kmalloc_node_track_caller_noprof+0x28b/0x4c0 [ 288.207680][ C1] ? __alloc_skb+0x1f3/0x440 [ 288.207699][ C1] ? __alloc_skb+0x1f3/0x440 [ 288.207716][ C1] kmalloc_reserve+0x111/0x2a0 [ 288.207736][ C1] __alloc_skb+0x1f3/0x440 [ 288.207754][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 288.207779][ C1] ? __pfx___alloc_skb+0x10/0x10 [ 288.207803][ C1] alloc_skb_with_frags+0xc3/0x820 [ 288.207830][ C1] sock_alloc_send_pskb+0x91a/0xa60 [ 288.207861][ C1] ? __pfx_sock_alloc_send_pskb+0x10/0x10 [ 288.207887][ C1] ? do_raw_spin_unlock+0x13c/0x8b0 [ 288.207916][ C1] unix_dgram_sendmsg+0x6d3/0x1f80 [ 288.207943][ C1] ? __pfx_smack_socket_sendmsg+0x10/0x10 [ 288.207966][ C1] ? tomoyo_socket_sendmsg_permission+0x288/0x420 [ 288.207994][ C1] ? __pfx_unix_dgram_sendmsg+0x10/0x10 [ 288.208023][ C1] ? __pfx_unix_dgram_sendmsg+0x10/0x10 [ 288.208043][ C1] __sock_sendmsg+0x221/0x270 [ 288.208070][ C1] __sys_sendto+0x363/0x4c0 [ 288.208091][ C1] ? __pfx___sys_sendto+0x10/0x10 [ 288.208121][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 288.208141][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 288.208163][ C1] __x64_sys_sendto+0xde/0x100 [ 288.208183][ C1] do_syscall_64+0xf3/0x230 [ 288.208204][ C1] ? clear_bhb_loop+0x35/0x90 [ 288.208223][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 288.208250][ C1] RIP: 0033:0x7f9ab85ff9b5 [ 288.208264][ C1] Code: 8b 44 24 08 48 83 c4 28 48 98 c3 48 98 c3 41 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 26 45 31 c9 45 31 c0 b8 2c 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 7a 48 8b 15 44 c4 0c 00 f7 d8 64 89 02 48 83 [ 288.208278][ C1] RSP: 002b:00007ffcbb057e38 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 288.208295][ C1] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f9ab85ff9b5 [ 288.208308][ C1] RDX: 000000000000004f RSI: 00005608c862a910 RDI: 0000000000000003 [ 288.208319][ C1] RBP: 00005608c8626910 R08: 0000000000000000 R09: 0000000000000000 [ 288.208330][ C1] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000013 [ 288.208341][ C1] R13: 00007f9ab878d212 R14: 00007ffcbb057f38 R15: 0000000000000000 [ 288.208360][ C1] [ 288.208367][ C1] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 2.078 msecs [ 288.210251][ T30] Kernel panic - not syncing: hung_task: blocked tasks [ 288.862708][ T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0 [ 288.873213][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 288.883273][ T30] Call Trace: [ 288.886560][ T30] [ 288.889515][ T30] dump_stack_lvl+0x241/0x360 [ 288.894211][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 288.899442][ T30] ? __pfx__printk+0x10/0x10 [ 288.904041][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 288.910032][ T30] ? vscnprintf+0x5d/0x90 [ 288.914369][ T30] panic+0x349/0x880 [ 288.918271][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 288.924446][ T30] ? __pfx_panic+0x10/0x10 [ 288.928873][ T30] ? tick_nohz_tick_stopped+0x82/0xb0 [ 288.934259][ T30] ? __irq_work_queue_local+0x137/0x410 [ 288.939812][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 288.945199][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 288.951364][ T30] ? nmi_trigger_cpumask_backtrace+0x2d4/0x320 [ 288.957530][ T30] ? nmi_trigger_cpumask_backtrace+0x2d9/0x320 [ 288.963693][ T30] watchdog+0x1035/0x1040 [ 288.968033][ T30] ? watchdog+0x1ea/0x1040 [ 288.972463][ T30] ? __pfx_watchdog+0x10/0x10 [ 288.977145][ T30] kthread+0x2f0/0x390 [ 288.981222][ T30] ? __pfx_watchdog+0x10/0x10 [ 288.985988][ T30] ? __pfx_kthread+0x10/0x10 [ 288.990589][ T30] ret_from_fork+0x4b/0x80 [ 288.995030][ T30] ? __pfx_kthread+0x10/0x10 [ 288.999630][ T30] ret_from_fork_asm+0x1a/0x30 [ 289.004412][ T30] [ 289.007763][ T30] Kernel Offset: disabled [ 289.012095][ T30] Rebooting in 86400 seconds..