./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3134357085 <...> Warning: Permanently added '10.128.1.61' (ED25519) to the list of known hosts. execve("./syz-executor3134357085", ["./syz-executor3134357085"], 0x7ffffbd400d0 /* 10 vars */) = 0 brk(NULL) = 0x555555b60000 brk(0x555555b60d00) = 0x555555b60d00 arch_prctl(ARCH_SET_FS, 0x555555b60380) = 0 set_tid_address(0x555555b60650) = 5040 set_robust_list(0x555555b60660, 24) = 0 rseq(0x555555b60ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3134357085", 4096) = 28 getrandom("\x88\x7c\xc9\x0d\x5a\xbf\x6b\x94", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555555b60d00 brk(0x555555b81d00) = 0x555555b81d00 brk(0x555555b82000) = 0x555555b82000 mprotect(0x7f55d548b000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5041 attached , child_tidptr=0x555555b60650) = 5041 [pid 5041] set_robust_list(0x555555b60660, 24) = 0 [pid 5041] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5041] setpgid(0, 0) = 0 [pid 5041] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5041] write(3, "1000", 4) = 4 [pid 5041] close(3) = 0 [pid 5041] memfd_create("syzkaller", 0) = 3 [pid 5041] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f55ccfb9000 [ 70.538324][ T5041] syz-executor313[5041]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [pid 5041] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5041] munmap(0x7f55ccfb9000, 16777216) = 0 [pid 5041] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5041] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5041] close(3) = 0 [pid 5041] mkdir("./file0", 0777) = 0 [ 70.772303][ T5041] loop0: detected capacity change from 0 to 32768 [ 70.783624][ T5041] gfs2: fsid=gfs2: Trying to join cluster "lock_nolock", "gfs2" [ 70.793098][ T5041] gfs2: fsid=gfs2: Now mounting FS (format 1801)... [ 70.803635][ T5041] gfs2: fsid=gfs2.s: journal 0 mapped with 3 extents in 0ms [pid 5041] mount("/dev/loop0", "./file0", "gfs2", MS_NOATIME|0x200, "\x6c\x6f\x63\x6b\x74\x61\x62\x6c\x65\x3d\xe2\x2c\x6c\x6f\x63\x6b\x74\x61\x62\x6c\x65\x3d\x26\x28\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x6e\x6f\x72\x67\x72\x70\x6c\x76\x62\x2c\x73\x74\x61\x74\x66\x73\x5f\x71\x75\x61\x6e\x74\x75\x6d\x3d\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x39\x2c\x6e\x6f\x61\x63\x6c\x2c\x64\x61\x74\x61\x3d\x6f\x72\x64\x65\x72\x65\x64\x2c\x6c"... [pid 5040] kill(-5041, SIGKILL) = 0 [pid 5040] kill(5041, SIGKILL) = 0 [pid 5040] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5040] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5040] getdents64(3, 0x555555b616f0 /* 2 entries */, 32768) = 48 [pid 5040] getdents64(3, 0x555555b616f0 /* 0 entries */, 32768) = 0 [pid 5040] close(3) = 0 [ 87.045990][ T779] cfg80211: failed to load regulatory.db [ 286.725357][ T29] INFO: task syz-executor313:5041 blocked for more than 143 seconds. [ 286.733449][ T29] Not tainted 6.5.0-rc7-next-20230822-syzkaller #0 [ 286.740494][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.749200][ T29] task:syz-executor313 state:D stack:26160 pid:5041 ppid:5040 flags:0x00004006 [ 286.758473][ T29] Call Trace: [ 286.761764][ T29] [ 286.764685][ T29] __schedule+0xee1/0x59f0 [ 286.769459][ T29] ? rcu_read_lock_held+0x9/0x40 [ 286.774486][ T29] ? __mem_cgroup_uncharge_list+0xb0/0x170 [ 286.780442][ T29] ? __mem_cgroup_uncharge+0x2d0/0x2d0 [ 286.785949][ T29] ? io_schedule_timeout+0x150/0x150 [ 286.791245][ T29] ? rcu_is_watching+0x12/0xb0 [ 286.796035][ T29] ? lock_release+0x4bf/0x680 [ 286.800997][ T29] ? reacquire_held_locks+0x4b0/0x4b0 [ 286.806400][ T29] ? do_raw_spin_lock+0x12e/0x2b0 [ 286.811447][ T29] schedule+0xe7/0x1b0 [ 286.815549][ T29] io_schedule+0xbe/0x130 [ 286.819900][ T29] folio_wait_bit_common+0x3d2/0x9b0 [ 286.825275][ T29] ? filemap_cachestat+0xa10/0xa10 [ 286.830411][ T29] ? folio_unlock+0xd0/0xd0 [ 286.834909][ T29] ? __filemap_get_folio+0x31c/0xbc0 [ 286.840227][ T29] ? folio_add_lru+0x458/0x7e0 [ 286.845013][ T29] gfs2_jhead_process_page+0x4bc/0x590 [ 286.850630][ T29] ? __filemap_add_folio+0xf10/0xf10 [ 286.855970][ T29] ? bvec_try_merge_page+0x18f/0x300 [ 286.861283][ T29] ? revoke_lo_scan_elements+0x6f0/0x6f0 [ 286.866952][ T29] ? bio_add_page+0x19b/0x2b0 [ 286.871645][ T29] ? __bio_add_page+0x2c0/0x2c0 [ 286.876537][ T29] ? folio_flags+0x71/0x1f0 [ 286.881073][ T29] gfs2_find_jhead+0x6a5/0xd40 [ 286.885883][ T29] ? databuf_lo_before_commit+0x100/0x100 [ 286.891599][ T29] check_journal_clean+0x1da/0x350 [ 286.896739][ T29] ? gfs2_assert_i+0x30/0x30 [ 286.901366][ T29] ? lock_release+0x4bf/0x680 [ 286.906074][ T29] ? do_raw_spin_lock+0x12e/0x2b0 [ 286.911144][ T29] ? init_inodes+0x1113/0x2e30 [ 286.915945][ T29] ? do_raw_spin_unlock+0x173/0x230 [ 286.921165][ T29] ? _raw_spin_unlock+0x28/0x40 [ 286.926094][ T29] ? gfs2_jdesc_find+0xbf/0xf0 [ 286.930960][ T29] init_inodes+0x1113/0x2e30 [ 286.935584][ T29] ? end_bio_io_page+0xd0/0xd0 [ 286.940372][ T29] ? gfs2_fill_super+0x1a9e/0x2b10 [ 286.945509][ T29] ? init_sb+0x9d8/0x10e0 [ 286.949878][ T29] ? vsprintf+0x30/0x30 [ 286.954055][ T29] ? __debugfs_create_file+0x446/0x6a0 [ 286.959562][ T29] ? gfs2_fill_super+0x1a9e/0x2b10 [ 286.964700][ T29] gfs2_fill_super+0x1a9e/0x2b10 [ 286.969701][ T29] ? rcu_is_watching+0x12/0xb0 [ 286.974480][ T29] ? gfs2_reconfigure+0xee0/0xee0 [ 286.979534][ T29] ? gfs2_fill_super+0x1736/0x2b10 [ 286.984673][ T29] ? down_write+0x14f/0x200 [ 286.989198][ T29] ? down_write_killable_nested+0x250/0x250 [ 286.995106][ T29] ? sb_set_blocksize+0xf6/0x120 [ 287.000080][ T29] ? setup_bdev_super+0x366/0x6f0 [ 287.005186][ T29] get_tree_bdev+0x390/0x630 [ 287.009807][ T29] ? gfs2_reconfigure+0xee0/0xee0 [ 287.014849][ T29] ? get_tree_keyed+0x1c0/0x1c0 [ 287.019725][ T29] ? apparmor_capable+0x1da/0x4e0 [ 287.024795][ T29] gfs2_get_tree+0x4e/0x280 [ 287.029337][ T29] vfs_get_tree+0x8c/0x370 [ 287.033774][ T29] path_mount+0x1492/0x1ed0 [ 287.038310][ T29] ? kmem_cache_free+0xf0/0x480 [ 287.043188][ T29] ? finish_automount+0xa50/0xa50 [ 287.048242][ T29] ? putname+0x101/0x140 [ 287.052502][ T29] __x64_sys_mount+0x293/0x310 [ 287.057295][ T29] ? copy_mnt_ns+0xb60/0xb60 [ 287.061904][ T29] ? _raw_spin_unlock_irq+0x2e/0x50 [ 287.067126][ T29] ? ptrace_notify+0xf4/0x130 [ 287.071848][ T29] do_syscall_64+0x38/0xb0 [ 287.076328][ T29] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 287.082315][ T29] RIP: 0033:0x7f55d53f916a [ 287.086845][ T29] RSP: 002b:00007ffc35116508 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 287.095300][ T29] RAX: ffffffffffffffda RBX: 00007ffc35116520 RCX: 00007f55d53f916a [ 287.103361][ T29] RDX: 000000002001f680 RSI: 000000002001f6c0 RDI: 00007ffc35116520 [ 287.111461][ T29] RBP: 0000000000000004 R08: 00007ffc35116560 R09: 000000000001f672 [ 287.119467][ T29] R10: 0000000000000600 R11: 0000000000000282 R12: 0000000000000600 [ 287.127506][ T29] R13: 00007ffc35116560 R14: 0000000000000003 R15: 0000000001000000 [ 287.135526][ T29] [ 287.138581][ T29] INFO: lockdep is turned off. [ 287.143335][ T29] NMI backtrace for cpu 1 [ 287.147642][ T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.5.0-rc7-next-20230822-syzkaller #0 [ 287.156908][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023 [ 287.166949][ T29] Call Trace: [ 287.170220][ T29] [ 287.173136][ T29] dump_stack_lvl+0xd9/0x1b0 [ 287.177788][ T29] nmi_cpu_backtrace+0x277/0x380 [ 287.182834][ T29] ? lapic_can_unplug_cpu+0xa0/0xa0 [ 287.188057][ T29] nmi_trigger_cpumask_backtrace+0x299/0x300 [ 287.194129][ T29] watchdog+0xfac/0x1230 [ 287.198390][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 287.204369][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 287.210435][ T29] kthread+0x33a/0x430 [ 287.214512][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 287.220148][ T29] ret_from_fork+0x45/0x80 [ 287.224597][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 287.230265][ T29] ret_from_fork_asm+0x11/0x20 [ 287.235070][ T29] [ 287.238221][ T29] Sending NMI from CPU 1 to CPUs 0: [ 287.243486][ C0] NMI backtrace for cpu 0 skipped: idling at acpi_safe_halt+0x1b/0x20 [ 287.244496][ T29] Kernel panic - not syncing: hung_task: blocked tasks [ 287.259469][ T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.5.0-rc7-next-20230822-syzkaller #0 [ 287.268741][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023 [ 287.278783][ T29] Call Trace: [ 287.282051][ T29] [ 287.284973][ T29] dump_stack_lvl+0xd9/0x1b0 [ 287.289573][ T29] panic+0x6a6/0x750 [ 287.293467][ T29] ? panic_smp_self_stop+0xa0/0xa0 [ 287.298587][ T29] ? lapic_can_unplug_cpu+0xa0/0xa0 [ 287.303816][ T29] ? preempt_schedule_thunk+0x1a/0x30 [ 287.310959][ T29] ? watchdog+0xd63/0x1230 [ 287.315393][ T29] watchdog+0xd74/0x1230 [ 287.319652][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 287.325658][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 287.331660][ T29] kthread+0x33a/0x430 [ 287.335750][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 287.341398][ T29] ret_from_fork+0x45/0x80 [ 287.345860][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 287.351525][ T29] ret_from_fork_asm+0x11/0x20 [ 287.356321][ T29] [ 287.359420][ T29] Kernel Offset: disabled [ 287.363745][ T29] Rebooting in 86400 seconds..