./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2490789110 <...> Warning: Permanently added '10.128.1.49' (ED25519) to the list of known hosts. execve("./syz-executor2490789110", ["./syz-executor2490789110"], 0x7fff15a087b0 /* 10 vars */) = 0 brk(NULL) = 0x555592158000 brk(0x555592158d00) = 0x555592158d00 arch_prctl(ARCH_SET_FS, 0x555592158380) = 0 set_tid_address(0x555592158650) = 5218 set_robust_list(0x555592158660, 24) = 0 rseq(0x555592158ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2490789110", 4096) = 28 getrandom("\xa1\x8c\xc5\x67\x18\x67\xd1\xd9", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555592158d00 brk(0x555592179d00) = 0x555592179d00 brk(0x55559217a000) = 0x55559217a000 mprotect(0x7fdc4f7b5000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 mkdir("./syzkaller.QivAWf", 0700) = 0 chmod("./syzkaller.QivAWf", 0777) = 0 chdir("./syzkaller.QivAWf") = 0 mkdir("./0", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5220 attached [pid 5220] set_robust_list(0x555592158660, 24 [pid 5218] <... clone resumed>, child_tidptr=0x555592158650) = 5220 [pid 5220] <... set_robust_list resumed>) = 0 [pid 5220] chdir("./0") = 0 [pid 5220] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5220] setpgid(0, 0) = 0 [pid 5220] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5220] write(3, "1000", 4) = 4 [pid 5220] close(3) = 0 [pid 5220] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5220] write(1, "executing program\n", 18) = 18 [pid 5220] memfd_create("syzkaller", 0) = 3 [pid 5220] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fdc47200000 [pid 5220] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5220] munmap(0x7fdc47200000, 138412032) = 0 [pid 5220] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5220] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5220] close(3) = 0 [pid 5220] close(4) = 0 [pid 5220] mkdir("./file0", 0777) = 0 [ 70.115725][ T5220] loop0: detected capacity change from 0 to 32768 [ 70.196415][ T5220] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,compression=lz4,no_splitbrain_check,norecovery,recovery_pass_last=check_dirents,reconstruct_alloc [ 70.214979][ T5220] bcachefs (loop0): recovering from clean shutdown, journal seq 7 [ 70.223539][ T5220] bcachefs (loop0): Doing compatible version upgrade from 1.7: mi_btree_bitmap to 1.12: rebalance_work_acct_fix [ 70.223539][ T5220] running recovery passes: check_allocations [ 70.243893][ T5220] bcachefs (loop0): dropping and reconstructing all alloc info [ 70.262457][ T5220] bcachefs (loop0): accounting_read... done [ 70.268820][ T5220] bcachefs (loop0): alloc_read... done [ 70.274434][ T5220] bcachefs (loop0): stripes_read... done [ 70.280155][ T5220] bcachefs (loop0): snapshots_read... done [ 70.286779][ T5220] bcachefs (loop0): check_allocations... [ 70.290887][ T5220] btree ptr not marked in member info btree allocated bitmap [ 70.290910][ T5220] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 19bc58a6c09b6540 written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0, fixing [ 70.321490][ T5220] btree ptr not marked in member info btree allocated bitmap [ 70.321507][ T5220] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c18f4a4face03c6 written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing [ 70.344981][ T5220] btree ptr not marked in member info btree allocated bitmap [ 70.344997][ T5220] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7675f41d391e5d36 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0, fixing [ 70.369496][ T5220] btree ptr not marked in member info btree allocated bitmap [ 70.369513][ T5220] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq bcb9905dfb2993d5 written 16 min_key POS_MIN durability: 1 ptr: 0:32:0 gen 0, fixing [ 70.397209][ T5220] bucket 0:34 gen 0 data type user has wrong fragmentation_lru: got 0, should be 67108864, fixing [ 70.408250][ T5220] bucket 0:36 gen 0 data type user has wrong fragmentation_lru: got 0, should be 67108864, fixing [ 70.421897][ T5220] done [ 70.426889][ T5220] bcachefs (loop0): going read-write [ 70.437830][ T5220] bcachefs (loop0): Fixed errors, running fsck a second time to verify fs is clean [pid 5220] mount("/dev/loop0", "./file0", "bcachefs", 0, "errors=continue,reconstruct_alloc,shard_inode_numbers,journal_transaction_names,read_only,recovery_p"...) = 0 [pid 5220] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5220] chdir("./file0") = 0 [pid 5220] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5220] ioctl(4, LOOP_CLR_FD) = 0 [pid 5220] close(4) = 0 [ 70.450352][ T5220] bcachefs (loop0): done starting filesystem [ 70.509718][ T5220] bucket 0:36 gen 0 data type user sector count overflow: 0 + -8 > U32_MAX [ 70.509751][ T5220] while marking u64s 7 type extent 4098:24:U32_MAX len 24 ver 0: durability: 1 crc: c_size 8 size 24 offset 0 nonce 0 csum crc32c 0:4925b703 compress lz4 ptr: 0:36:0 gen 0, continuing [ 70.539185][ T5220] bucket 0:36 gen 0 data type user sector count overflow: 0 + -8 > U32_MAX [pid 5220] truncate("./file2", 9000) = 0 [pid 5220] exit_group(0) = ? [ 70.539209][ T5220] while marking u64s 7 type extent 4098:24:U32_MAX len 24 ver 0: durability: 1 crc: c_size 8 size 24 offset 0 nonce 0 csum crc32c 0:4925b703 compress lz4 ptr: 0:36:0 gen 0, continuing [ 70.567911][ T5220] bucket 0:36 gen 0 data type user sector count overflow: 0 + -8 > U32_MAX [ 70.567928][ T5220] while marking u64s 7 type extent 4098:24:U32_MAX len 24 ver 0: durability: 1 crc: c_size 8 size 24 offset 0 nonce 0 csum crc32c 0:4925b703 compress lz4 ptr: 0:36:0 gen 0, continuing [pid 5220] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5220, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=46 /* 0.46 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 70.643203][ T5220] syz-executor249 (5220) used greatest stack depth: 11760 bytes left newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555921596f0 /* 4 entries */, 32768) = 112 umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./0/binderfs") = 0 [ 70.787922][ T5218] bcachefs (loop0): shutting down [ 70.793317][ T5218] bcachefs (loop0): going read-only [ 70.798767][ T5218] bcachefs (loop0): finished waiting for writes to stop [ 70.808737][ T5218] bcachefs (loop0): flushing journal and stopping allocators, journal seq 9 [ 87.064888][ T8] cfg80211: failed to load regulatory.db [ 286.744678][ T30] INFO: task bch-reclaim/loo:5228 blocked for more than 143 seconds. [ 286.753083][ T30] Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 286.760477][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.770659][ T30] task:bch-reclaim/loo state:D stack:26528 pid:5228 tgid:5228 ppid:2 flags:0x00004000 [ 286.781316][ T30] Call Trace: [ 286.784919][ T30] [ 286.787885][ T30] __schedule+0x1843/0x4ae0 [ 286.792466][ T30] ? __pfx___schedule+0x10/0x10 [ 286.798104][ T30] ? __pfx_lock_release+0x10/0x10 [ 286.803470][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 286.809073][ T30] ? schedule+0x90/0x320 [ 286.813863][ T30] schedule+0x14b/0x320 [ 286.818083][ T30] schedule_preempt_disabled+0x13/0x30 [ 286.823994][ T30] __mutex_lock+0x6a7/0xd70 [ 286.828544][ T30] ? __mutex_lock+0x52a/0xd70 [ 286.833567][ T30] ? bch2_journal_reclaim_thread+0x167/0x560 [ 286.839777][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 286.845330][ T30] ? do_raw_spin_unlock+0x13c/0x8b0 [ 286.850587][ T30] bch2_journal_reclaim_thread+0x167/0x560 [ 286.856838][ T30] ? bch2_journal_reclaim_thread+0x249/0x560 [ 286.863120][ T30] ? __pfx_bch2_journal_reclaim_thread+0x10/0x10 [ 286.869494][ T30] kthread+0x2f0/0x390 [ 286.874643][ T30] ? __pfx_bch2_journal_reclaim_thread+0x10/0x10 [ 286.881110][ T30] ? __pfx_kthread+0x10/0x10 [ 286.886165][ T30] ret_from_fork+0x4b/0x80 [ 286.890639][ T30] ? __pfx_kthread+0x10/0x10 [ 286.895828][ T30] ret_from_fork_asm+0x1a/0x30 [ 286.900667][ T30] [ 286.904212][ T30] [ 286.904212][ T30] Showing all locks held in the system: [ 286.911962][ T30] 1 lock held by khungtaskd/30: [ 286.917480][ T30] #0: ffffffff8e937da0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 286.927788][ T30] 2 locks held by getty/4978: [ 286.932504][ T30] #0: ffff88802f88b0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 286.942779][ T30] #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6a6/0x1e00 [ 286.953362][ T30] 5 locks held by syz-executor249/5218: [ 286.958940][ T30] 1 lock held by bch-reclaim/loo/5228: [ 286.964879][ T30] #0: ffff8880774cb0a8 (&j->reclaim_lock){+.+.}-{3:3}, at: bch2_journal_reclaim_thread+0x167/0x560 [ 286.976156][ T30] [ 286.978513][ T30] ============================================= [ 286.978513][ T30] [ 286.988072][ T30] NMI backtrace for cpu 0 [ 286.992473][ T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 287.002744][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 287.012821][ T30] Call Trace: [ 287.016130][ T30] [ 287.019106][ T30] dump_stack_lvl+0x241/0x360 [ 287.023824][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 287.029060][ T30] ? __pfx__printk+0x10/0x10 [ 287.033741][ T30] nmi_cpu_backtrace+0x49c/0x4d0 [ 287.038733][ T30] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 287.044221][ T30] ? _printk+0xd5/0x120 [ 287.048402][ T30] ? __pfx__printk+0x10/0x10 [ 287.053021][ T30] ? __wake_up_klogd+0xcc/0x110 [ 287.057921][ T30] ? __pfx__printk+0x10/0x10 [ 287.062536][ T30] ? __rcu_read_unlock+0xa1/0x110 [ 287.067598][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 287.073624][ T30] nmi_trigger_cpumask_backtrace+0x198/0x320 [ 287.079637][ T30] watchdog+0xff4/0x1040 [ 287.083922][ T30] ? watchdog+0x1ea/0x1040 [ 287.088382][ T30] ? __pfx_watchdog+0x10/0x10 [ 287.093096][ T30] kthread+0x2f0/0x390 [ 287.097191][ T30] ? __pfx_watchdog+0x10/0x10 [ 287.101905][ T30] ? __pfx_kthread+0x10/0x10 [ 287.106520][ T30] ret_from_fork+0x4b/0x80 [ 287.110976][ T30] ? __pfx_kthread+0x10/0x10 [ 287.115603][ T30] ret_from_fork_asm+0x1a/0x30 [ 287.120420][ T30] [ 287.123573][ T30] Sending NMI from CPU 0 to CPUs 1: [ 287.128919][ C1] NMI backtrace for cpu 1 [ 287.128937][ C1] CPU: 1 UID: 0 PID: 5218 Comm: syz-executor249 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 287.128957][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 287.128971][ C1] RIP: 0010:__sanitizer_cov_trace_cmp8+0x35/0x90 [ 287.129000][ C1] Code: 0c 25 80 d7 03 00 65 8b 05 40 ef 6e 7e 25 00 01 ff 00 74 10 3d 00 01 00 00 75 57 83 b9 1c 16 00 00 00 74 4e 8b 81 f8 15 00 00 <83> f8 03 75 43 48 8b 91 00 16 00 00 44 8b 89 fc 15 00 00 49 c1 e1 [ 287.129018][ C1] RSP: 0018:ffffc90003b26dd8 EFLAGS: 00000246 [ 287.129034][ C1] RAX: 0000000000000000 RBX: ffff8880614000c0 RCX: ffff88802b6ebc00 [ 287.129047][ C1] RDX: 0000000000000000 RSI: 0000000406000008 RDI: 0000000d06000009 [ 287.129059][ C1] RBP: ffffc90003b26f30 R08: ffffffff842102c8 R09: 0000000000000000 [ 287.129071][ C1] R10: 0000000000000000 R11: 1400000000000000 R12: dffffc0000000000 [ 287.129083][ C1] R13: 0000000000000008 R14: 0000000d06000009 R15: 0000000406000008 [ 287.129095][ C1] FS: 0000555592158380(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 287.129111][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 287.129123][ C1] CR2: 0000558d3ae2e600 CR3: 0000000078452000 CR4: 00000000003526f0 [ 287.129139][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 287.129149][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 287.129161][ C1] Call Trace: [ 287.129167][ C1] [ 287.129174][ C1] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 287.129198][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 287.129227][ C1] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 287.129249][ C1] ? nmi_handle+0x2a/0x5a0 [ 287.129274][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 287.129299][ C1] ? nmi_handle+0x14f/0x5a0 [ 287.129317][ C1] ? nmi_handle+0x2a/0x5a0 [ 287.129335][ C1] ? __sanitizer_cov_trace_cmp8+0x35/0x90 [ 287.129358][ C1] ? default_do_nmi+0x63/0x160 [ 287.129381][ C1] ? exc_nmi+0x123/0x1f0 [ 287.129403][ C1] ? end_repeat_nmi+0xf/0x53 [ 287.129422][ C1] ? wb_sort+0x588/0x720 [ 287.129445][ C1] ? __sanitizer_cov_trace_cmp8+0x35/0x90 [ 287.129468][ C1] ? __sanitizer_cov_trace_cmp8+0x35/0x90 [ 287.129492][ C1] ? __sanitizer_cov_trace_cmp8+0x35/0x90 [ 287.129515][ C1] [ 287.129521][ C1] [ 287.129526][ C1] wb_sort+0x588/0x720 [ 287.129552][ C1] ? __pfx_wb_sort+0x10/0x10 [ 287.129575][ C1] ? __pfx_move_keys_from_inc_to_flushing+0x10/0x10 [ 287.129600][ C1] ? bch2_trans_unlock+0x333/0x470 [ 287.129620][ C1] ? bch2_btree_write_buffer_flush_locked+0x32b/0x59f0 [ 287.129653][ C1] bch2_btree_write_buffer_flush_locked+0x48a/0x59f0 [ 287.129683][ C1] ? __lock_acquire+0x1384/0x2050 [ 287.129723][ C1] ? __pfx_bch2_btree_write_buffer_flush_locked+0x10/0x10 [ 287.129747][ C1] ? __mutex_trylock_common+0x183/0x2e0 [ 287.129768][ C1] ? __pfx___might_resched+0x10/0x10 [ 287.129794][ C1] ? __pfx___mutex_trylock_common+0x10/0x10 [ 287.129817][ C1] ? rcu_is_watching+0x15/0xb0 [ 287.129837][ C1] ? trace_contention_end+0x3c/0x120 [ 287.129858][ C1] ? __mutex_lock+0x2ef/0xd70 [ 287.129875][ C1] ? __bch2_next_write_buffer_flush_journal_buf+0x287/0x2a0 [ 287.129911][ C1] ? __pfx___mutex_lock+0x10/0x10 [ 287.129931][ C1] ? bch2_trans_unlock+0x3a6/0x470 [ 287.129954][ C1] btree_write_buffer_flush_seq+0x1a43/0x1bc0 [ 287.129987][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 287.130013][ C1] ? __asan_memset+0x23/0x50 [ 287.130035][ C1] ? lockdep_init_map_type+0xa1/0x910 [ 287.130061][ C1] ? __pfx_btree_write_buffer_flush_seq+0x10/0x10 [ 287.130084][ C1] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 287.130112][ C1] ? journal_flush_pins+0x597/0xb20 [ 287.130134][ C1] ? do_raw_spin_lock+0x14f/0x370 [ 287.130161][ C1] ? __bch2_trans_get+0x975/0xd20 [ 287.130188][ C1] bch2_btree_write_buffer_journal_flush+0x4e/0x80 [ 287.130212][ C1] ? __pfx_bch2_btree_write_buffer_journal_flush+0x10/0x10 [ 287.130236][ C1] journal_flush_pins+0x5f7/0xb20 [ 287.130271][ C1] journal_flush_done+0x8e/0x260 [ 287.130296][ C1] bch2_journal_flush_pins+0x102/0x3a0 [ 287.130321][ C1] ? __pfx_bch2_journal_flush_pins+0x10/0x10 [ 287.130344][ C1] ? __bch2_print+0x17a/0x220 [ 287.130364][ C1] ? __pfx_bch2_btree_interior_updates_flush+0x10/0x10 [ 287.130387][ C1] ? __pfx___bch2_print+0x10/0x10 [ 287.130408][ C1] ? rcu_is_watching+0x15/0xb0 [ 287.130427][ C1] ? kthread_stop+0x2c2/0x640 [ 287.130454][ C1] ? bch2_copygc_stop+0x103/0x150 [ 287.130474][ C1] __bch2_fs_read_only+0x124/0x430 [ 287.130498][ C1] bch2_fs_read_only+0xb57/0x1200 [ 287.130527][ C1] ? __pfx_bch2_fs_read_only+0x10/0x10 [ 287.130547][ C1] ? __bch2_print+0x17a/0x220 [ 287.130569][ C1] ? down_write+0x18c/0x220 [ 287.130588][ C1] ? __pfx_down_write+0x10/0x10 [ 287.130608][ C1] ? hook_sb_delete+0xaa0/0xbd0 [ 287.130640][ C1] __bch2_fs_stop+0x105/0x540 [ 287.130662][ C1] ? __pfx___bch2_fs_stop+0x10/0x10 [ 287.130685][ C1] ? __pfx_evict_inodes+0x10/0x10 [ 287.130712][ C1] ? bch2_sync_fs+0x155/0x300 [ 287.130738][ C1] ? __pfx_bch2_put_super+0x10/0x10 [ 287.130763][ C1] generic_shutdown_super+0x139/0x2d0 [ 287.130786][ C1] bch2_kill_sb+0x41/0x50 [ 287.130809][ C1] deactivate_locked_super+0xc4/0x130 [ 287.130830][ C1] cleanup_mnt+0x41f/0x4b0 [ 287.130848][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 287.130876][ C1] task_work_run+0x24f/0x310 [ 287.130899][ C1] ? __pfx_task_work_run+0x10/0x10 [ 287.130917][ C1] ? path_umount+0x284/0xf70 [ 287.130943][ C1] ptrace_notify+0x2d2/0x380 [ 287.130964][ C1] ? __pfx_path_umount+0x10/0x10 [ 287.130986][ C1] ? __pfx_ptrace_notify+0x10/0x10 [ 287.131010][ C1] ? __x64_sys_umount+0x123/0x170 [ 287.131032][ C1] ? __pfx___x64_sys_umount+0x10/0x10 [ 287.131055][ C1] syscall_exit_work+0xc6/0x190 [ 287.131072][ C1] syscall_exit_to_user_mode+0x279/0x370 [ 287.131091][ C1] do_syscall_64+0x100/0x230 [ 287.131110][ C1] ? clear_bhb_loop+0x35/0x90 [ 287.131127][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.131154][ C1] RIP: 0033:0x7fdc4f73d547 [ 287.131174][ C1] Code: 07 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8 [ 287.131188][ C1] RSP: 002b:00007ffe9220f5b8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a6 [ 287.131205][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fdc4f73d547 [ 287.131216][ C1] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe9220f670 [ 287.131227][ C1] RBP: 00007ffe9220f670 R08: 0000000000000000 R09: 0000000000000000 [ 287.131238][ C1] R10: 00000000ffffffff R11: 0000000000000206 R12: 00007ffe922106e0 [ 287.131250][ C1] R13: 00005555921596c0 R14: 431bde82d7b634db R15: 00007ffe92210700 [ 287.131271][ C1] [ 287.131278][ C1] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 2.359 msecs [ 287.801881][ T30] Kernel panic - not syncing: hung_task: blocked tasks [ 287.808758][ T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0 [ 287.818939][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 287.829016][ T30] Call Trace: [ 287.832320][ T30] [ 287.835285][ T30] dump_stack_lvl+0x241/0x360 [ 287.840000][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 287.845226][ T30] ? __pfx__printk+0x10/0x10 [ 287.849841][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 287.855867][ T30] ? vscnprintf+0x5d/0x90 [ 287.860230][ T30] panic+0x349/0x880 [ 287.864152][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 287.870341][ T30] ? __pfx_panic+0x10/0x10 [ 287.874776][ T30] ? tick_nohz_tick_stopped+0x82/0xb0 [ 287.880186][ T30] ? __irq_work_queue_local+0x137/0x410 [ 287.885774][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 287.891173][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 287.897356][ T30] ? nmi_trigger_cpumask_backtrace+0x2d4/0x320 [ 287.903542][ T30] ? nmi_trigger_cpumask_backtrace+0x2d9/0x320 [ 287.909730][ T30] watchdog+0x1033/0x1040 [ 287.914098][ T30] ? watchdog+0x1ea/0x1040 [ 287.918551][ T30] ? __pfx_watchdog+0x10/0x10 [ 287.923267][ T30] kthread+0x2f0/0x390 [ 287.927447][ T30] ? __pfx_watchdog+0x10/0x10 [ 287.932155][ T30] ? __pfx_kthread+0x10/0x10 [ 287.936770][ T30] ret_from_fork+0x4b/0x80 [ 287.941228][ T30] ? __pfx_kthread+0x10/0x10 [ 287.945847][ T30] ret_from_fork_asm+0x1a/0x30 [ 287.950662][ T30] [ 287.954010][ T30] Kernel Offset: disabled [ 287.958351][ T30] Rebooting in 86400 seconds..