./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1753473785 <...> DUID 00:04:ac:03:58:10:d0:76:5c:28:30:a7:8a:8b:4a:a3:06:e2 forked to background, child pid 3180 [ 22.603694][ T3181] 8021q: adding VLAN 0 to HW filter on device bond0 [ 22.615612][ T3181] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.10.40' (ECDSA) to the list of known hosts. execve("./syz-executor1753473785", ["./syz-executor1753473785"], 0x7ffe84078e40 /* 10 vars */) = 0 brk(NULL) = 0x555555728000 brk(0x555555728c40) = 0x555555728c40 arch_prctl(ARCH_SET_FS, 0x555555728300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor1753473785", 4096) = 28 brk(0x555555749c40) = 0x555555749c40 brk(0x55555574a000) = 0x55555574a000 mprotect(0x7f19a7a5e000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555557285d0) = 3603 ./strace-static-x86_64: Process 3603 attached [pid 3602] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 3603] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 3602] <... clone resumed>, child_tidptr=0x5555557285d0) = 3604 [pid 3602] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 3605 attached ./strace-static-x86_64: Process 3604 attached [pid 3603] <... clone resumed>, child_tidptr=0x5555557285d0) = 3605 [pid 3605] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 3606 attached [pid 3602] <... clone resumed>, child_tidptr=0x5555557285d0) = 3606 [pid 3602] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 3605] <... prctl resumed>) = 0 [pid 3605] setpgid(0, 0) = 0 [pid 3605] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 3607 attached [pid 3606] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 3604] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 3602] <... clone resumed>, child_tidptr=0x5555557285d0) = 3607 [pid 3605] <... openat resumed>) = 3 [pid 3602] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 3607] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 3605] write(3, "1000", 4 [pid 3602] <... clone resumed>, child_tidptr=0x5555557285d0) = 3608 [pid 3602] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 3605] <... write resumed>) = 4 [pid 3606] <... clone resumed>, child_tidptr=0x5555557285d0) = 3609 [pid 3602] <... clone resumed>, child_tidptr=0x5555557285d0) = 3610 ./strace-static-x86_64: Process 3608 attached [pid 3607] <... clone resumed>, child_tidptr=0x5555557285d0) = 3611 [pid 3605] close(3./strace-static-x86_64: Process 3611 attached ./strace-static-x86_64: Process 3610 attached ./strace-static-x86_64: Process 3609 attached [pid 3608] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 3605] <... close resumed>) = 0 ./strace-static-x86_64: Process 3612 attached ./strace-static-x86_64: Process 3613 attached [pid 3612] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 3611] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 3605] openat(AT_FDCWD, "/dev/nullb0", O_WRONLY|O_TRUNC|O_APPEND|O_NONBLOCK|O_SYNC [pid 3604] <... clone resumed>, child_tidptr=0x5555557285d0) = 3612 [pid 3611] <... prctl resumed>) = 0 [pid 3608] <... clone resumed>, child_tidptr=0x5555557285d0) = 3613 [pid 3605] <... openat resumed>) = 3 [pid 3611] setpgid(0, 0 [pid 3605] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 18014398509482146 [pid 3613] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 3612] <... prctl resumed>) = 0 [pid 3611] <... setpgid resumed>) = 0 [pid 3610] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 3609] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 3611] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 3609] <... prctl resumed>) = 0 [pid 3611] <... openat resumed>) = 3 [pid 3611] write(3, "1000", 4 [pid 3609] setpgid(0, 0 [pid 3611] <... write resumed>) = 4 [pid 3611] close(3) = 0 [pid 3611] openat(AT_FDCWD, "/dev/nullb0", O_WRONLY|O_TRUNC|O_APPEND|O_NONBLOCK|O_SYNC [pid 3609] <... setpgid resumed>) = 0 [pid 3613] <... prctl resumed>) = 0 ./strace-static-x86_64: Process 3614 attached [pid 3613] setpgid(0, 0 [pid 3612] setpgid(0, 0 [pid 3611] <... openat resumed>) = 3 [pid 3609] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 3613] <... setpgid resumed>) = 0 [pid 3612] <... setpgid resumed>) = 0 [pid 3611] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 18014398509482146 [pid 3610] <... clone resumed>, child_tidptr=0x5555557285d0) = 3614 [pid 3609] <... openat resumed>) = 3 [pid 3613] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 3612] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 3609] write(3, "1000", 4 [pid 3613] <... openat resumed>) = 3 [pid 3612] <... openat resumed>) = 3 [pid 3609] <... write resumed>) = 4 [pid 3613] write(3, "1000", 4 [pid 3612] write(3, "1000", 4 [pid 3609] close(3 [pid 3613] <... write resumed>) = 4 [pid 3612] <... write resumed>) = 4 [pid 3613] close(3 [pid 3612] close(3 [pid 3609] <... close resumed>) = 0 [pid 3613] <... close resumed>) = 0 [pid 3612] <... close resumed>) = 0 [pid 3613] openat(AT_FDCWD, "/dev/nullb0", O_WRONLY|O_TRUNC|O_APPEND|O_NONBLOCK|O_SYNC [pid 3612] openat(AT_FDCWD, "/dev/nullb0", O_WRONLY|O_TRUNC|O_APPEND|O_NONBLOCK|O_SYNC [pid 3609] openat(AT_FDCWD, "/dev/nullb0", O_WRONLY|O_TRUNC|O_APPEND|O_NONBLOCK|O_SYNC [pid 3614] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 3613] <... openat resumed>) = 3 [pid 3612] <... openat resumed>) = 3 [pid 3609] <... openat resumed>) = 3 [pid 3614] <... prctl resumed>) = 0 [pid 3613] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 18014398509482146 [pid 3612] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 18014398509482146 [pid 3609] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 18014398509482146 [pid 3614] setpgid(0, 0) = 0 [pid 3614] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3614] write(3, "1000", 4) = 4 [pid 3614] close(3) = 0 [pid 3614] openat(AT_FDCWD, "/dev/nullb0", O_WRONLY|O_TRUNC|O_APPEND|O_NONBLOCK|O_SYNC) = 3 [pid 3614] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 18014398509482146 [pid 3603] kill(-3605, SIGKILL) = 0 [pid 3603] kill(3605, SIGKILL) = 0 [pid 3608] kill(-3613, SIGKILL [pid 3607] kill(-3611, SIGKILL [pid 3606] kill(-3609, SIGKILL [pid 3608] <... kill resumed>) = 0 [pid 3607] <... kill resumed>) = 0 [pid 3606] <... kill resumed>) = 0 [pid 3608] kill(3613, SIGKILL [pid 3607] kill(3611, SIGKILL [pid 3608] <... kill resumed>) = 0 [pid 3606] kill(3609, SIGKILL [pid 3607] <... kill resumed>) = 0 [pid 3606] <... kill resumed>) = 0 [pid 3604] kill(-3612, SIGKILL) = 0 [pid 3604] kill(3612, SIGKILL) = 0 [pid 3610] kill(-3614, SIGKILL) = 0 [pid 3610] kill(3614, SIGKILL) = 0 [pid 3603] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 3608] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 3607] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 3606] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 3604] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 3610] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 3606] <... openat resumed>) = 3 [pid 3604] <... openat resumed>) = 3 [pid 3606] fstat(3, [pid 3607] <... openat resumed>) = 3 [pid 3606] <... fstat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 3604] fstat(3, [pid 3607] fstat(3, [pid 3606] getdents64(3, [pid 3604] <... fstat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 3607] <... fstat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 3606] <... getdents64 resumed>0x555555729620 /* 2 entries */, 32768) = 48 [pid 3604] getdents64(3, [pid 3606] getdents64(3, [pid 3607] getdents64(3, [pid 3606] <... getdents64 resumed>0x555555729620 /* 0 entries */, 32768) = 0 [pid 3607] <... getdents64 resumed>0x555555729620 /* 2 entries */, 32768) = 48 [pid 3604] <... getdents64 resumed>0x555555729620 /* 2 entries */, 32768) = 48 [pid 3607] getdents64(3, [pid 3606] close(3 [pid 3604] getdents64(3, [pid 3607] <... getdents64 resumed>0x555555729620 /* 0 entries */, 32768) = 0 [pid 3606] <... close resumed>) = 0 [pid 3604] <... getdents64 resumed>0x555555729620 /* 0 entries */, 32768) = 0 [pid 3607] close(3 [pid 3604] close(3 [pid 3607] <... close resumed>) = 0 [pid 3604] <... close resumed>) = 0 [pid 3608] <... openat resumed>) = 3 [pid 3603] <... openat resumed>) = 3 [pid 3608] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 3608] getdents64(3, 0x555555729620 /* 2 entries */, 32768) = 48 [pid 3608] getdents64(3, 0x555555729620 /* 0 entries */, 32768) = 0 [pid 3608] close(3) = 0 [pid 3610] <... openat resumed>) = 3 [pid 3610] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 3603] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 3610] getdents64(3, [pid 3603] getdents64(3, [pid 3610] <... getdents64 resumed>0x555555729620 /* 2 entries */, 32768) = 48 [pid 3603] <... getdents64 resumed>0x555555729620 /* 2 entries */, 32768) = 48 [pid 3610] getdents64(3, [pid 3603] getdents64(3, [pid 3610] <... getdents64 resumed>0x555555729620 /* 0 entries */, 32768) = 0 [pid 3603] <... getdents64 resumed>0x555555729620 /* 0 entries */, 32768) = 0 [pid 3610] close(3 [pid 3603] close(3 [pid 3610] <... close resumed>) = 0 [pid 3603] <... close resumed>) = 0 syzkaller login: [ 76.212699][ T7] cfg80211: failed to load regulatory.db [pid 3605] <... fallocate resumed>) = ? [pid 3605] +++ killed by SIGKILL +++ [pid 3603] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=3605, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=3734} --- [pid 3603] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555557285d0) = 3625 ./strace-static-x86_64: Process 3625 attached [pid 3625] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3625] setpgid(0, 0) = 0 [pid 3625] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3625] write(3, "1000", 4) = 4 [pid 3625] close(3) = 0 [pid 3625] openat(AT_FDCWD, "/dev/nullb0", O_WRONLY|O_TRUNC|O_APPEND|O_NONBLOCK|O_SYNC) = 3 [pid 3625] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 18014398509482146 [pid 3603] kill(-3625, SIGKILL) = 0 [pid 3603] kill(3625, SIGKILL) = 0 [pid 3603] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 3603] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 3603] getdents64(3, 0x555555729620 /* 2 entries */, 32768) = 48 [pid 3603] getdents64(3, 0x555555729620 /* 0 entries */, 32768) = 0 [pid 3603] close(3) = 0 [pid 3611] <... fallocate resumed>) = ? [pid 3611] +++ killed by SIGKILL +++ [pid 3607] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=3611, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=3681} --- [pid 3607] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 3632 attached , child_tidptr=0x5555557285d0) = 3632 [pid 3632] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3632] setpgid(0, 0) = 0 [pid 3632] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3632] write(3, "1000", 4) = 4 [pid 3632] close(3) = 0 [pid 3632] openat(AT_FDCWD, "/dev/nullb0", O_WRONLY|O_TRUNC|O_APPEND|O_NONBLOCK|O_SYNC) = 3 [pid 3632] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 18014398509482146 [pid 3607] kill(-3632, SIGKILL) = 0 [pid 3607] kill(3632, SIGKILL) = 0 [pid 3607] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 3607] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 3607] getdents64(3, 0x555555729620 /* 2 entries */, 32768) = 48 [pid 3607] getdents64(3, 0x555555729620 /* 0 entries */, 32768) = 0 [pid 3607] close(3) = 0 [pid 3613] <... fallocate resumed>) = ? [pid 3613] +++ killed by SIGKILL +++ [pid 3608] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=3613, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=3691} --- [pid 3608] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 3633 attached , child_tidptr=0x5555557285d0) = 3633 [pid 3633] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3633] setpgid(0, 0) = 0 [pid 3633] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3633] write(3, "1000", 4) = 4 [pid 3633] close(3) = 0 [pid 3633] openat(AT_FDCWD, "/dev/nullb0", O_WRONLY|O_TRUNC|O_APPEND|O_NONBLOCK|O_SYNC) = 3 [pid 3633] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 18014398509482146 [pid 3608] kill(-3633, SIGKILL) = 0 [pid 3608] kill(3633, SIGKILL) = 0 [pid 3608] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 3608] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 3608] getdents64(3, 0x555555729620 /* 2 entries */, 32768) = 48 [pid 3608] getdents64(3, 0x555555729620 /* 0 entries */, 32768) = 0 [pid 3608] close(3) = 0 [pid 3612] <... fallocate resumed>) = ? [pid 3612] +++ killed by SIGKILL +++ [pid 3604] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=3612, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=3718} --- [pid 3604] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555557285d0) = 3640 ./strace-static-x86_64: Process 3640 attached [pid 3640] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3640] setpgid(0, 0) = 0 [pid 3640] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3640] write(3, "1000", 4) = 4 [pid 3640] close(3) = 0 [pid 3640] openat(AT_FDCWD, "/dev/nullb0", O_WRONLY|O_TRUNC|O_APPEND|O_NONBLOCK|O_SYNC) = 3 [pid 3640] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 18014398509482146 [pid 3604] kill(-3640, SIGKILL) = 0 [pid 3604] kill(3640, SIGKILL) = 0 [pid 3604] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 3604] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 3604] getdents64(3, 0x555555729620 /* 2 entries */, 32768) = 48 [pid 3604] getdents64(3, 0x555555729620 /* 0 entries */, 32768) = 0 [pid 3604] close(3) = 0 [pid 3609] <... fallocate resumed>) = ? [pid 3609] +++ killed by SIGKILL +++ [pid 3606] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=3609, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=3703} --- [pid 3606] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555557285d0) = 3641 ./strace-static-x86_64: Process 3641 attached [pid 3641] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3641] setpgid(0, 0) = 0 [pid 3641] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3641] write(3, "1000", 4) = 4 [pid 3641] close(3) = 0 [pid 3641] openat(AT_FDCWD, "/dev/nullb0", O_WRONLY|O_TRUNC|O_APPEND|O_NONBLOCK|O_SYNC) = 3 [pid 3641] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 18014398509482146 [pid 3606] kill(-3641, SIGKILL) = 0 [pid 3606] kill(3641, SIGKILL) = 0 [pid 3606] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 3606] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 3606] getdents64(3, 0x555555729620 /* 2 entries */, 32768) = 48 [pid 3606] getdents64(3, 0x555555729620 /* 0 entries */, 32768) = 0 [pid 3606] close(3) = 0 [ 286.127821][ T28] INFO: task syz-executor175:3625 blocked for more than 143 seconds. [ 286.136106][ T28] Not tainted 6.1.0-rc1-next-20221021-syzkaller #0 [ 286.143773][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.152513][ T28] task:syz-executor175 state:D stack:28968 pid:3625 ppid:3603 flags:0x00004004 [ 286.162526][ T28] Call Trace: [ 286.166464][ T28] [ 286.170774][ T28] __schedule+0xae9/0x53f0 [ 286.175901][ T28] ? rcu_read_lock_sched_held+0xd/0x70 [ 286.181705][ T28] ? lock_acquire+0x4fc/0x630 [ 286.186609][ T28] ? rcu_read_lock_sched_held+0xd/0x70 [ 286.192317][ T28] ? lock_release+0x5cb/0x810 [ 286.197174][ T28] ? rwsem_down_write_slowpath+0x4e0/0x12d0 [ 286.203335][ T28] ? __schedule+0x0/0x53f0 [ 286.208002][ T28] ? do_raw_spin_lock+0x120/0x2a0 [ 286.213217][ T28] ? do_raw_spin_lock+0x0/0x2a0 [ 286.220722][ T28] schedule+0xda/0x1b0 [ 286.224986][ T28] rwsem_down_write_slowpath+0x5fc/0x12d0 [ 286.231392][ T28] ? rwsem_down_write_slowpath+0x0/0x12d0 [ 286.237838][ T28] ? lock_acquire+0x4fc/0x630 [ 286.244909][ T28] ? lock_acquire+0x0/0x630 [ 286.251019][ T28] ? rwlock_bug.part.0+0x80/0x90 [ 286.256003][ T28] down_write+0x1e4/0x220 [ 286.260416][ T28] ? down_write+0x0/0x220 [ 286.264771][ T28] ? rcu_read_lock_sched_held+0xd/0x70 [ 286.274800][ T28] blkdev_fallocate+0x1e2/0x410 [ 286.280483][ T28] ? blkdev_fallocate+0x0/0x410 [ 286.286002][ T28] vfs_fallocate+0x487/0xe00 [ 286.293000][ T28] __x64_sys_fallocate+0xcf/0x140 [ 286.299853][ T28] do_syscall_64+0x35/0xb0 [ 286.304325][ T28] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 286.310511][ T28] RIP: 0033:0x7f19a79f1e09 [ 286.314940][ T28] RSP: 002b:00007ffe17d9ca28 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 286.323594][ T28] RAX: ffffffffffffffda RBX: 00000000000f4240 RCX: 00007f19a79f1e09 [ 286.331818][ T28] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000003 [ 286.339866][ T28] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000001 [ 286.348508][ T28] R10: 00400000000000a2 R11: 0000000000000246 R12: 000000000000ad0a [ 286.356511][ T28] R13: 00007ffe17d9ca3c R14: 00007ffe17d9ca50 R15: 00007ffe17d9ca40 [ 286.364727][ T28] [ 286.368003][ T28] INFO: task syz-executor175:3632 blocked for more than 143 seconds. [ 286.376249][ T28] Not tainted 6.1.0-rc1-next-20221021-syzkaller #0 [ 286.383524][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.392450][ T28] task:syz-executor175 state:D stack:28320 pid:3632 ppid:3607 flags:0x00004004 [ 286.401871][ T28] Call Trace: [ 286.405320][ T28] [ 286.408476][ T28] __schedule+0xae9/0x53f0 [ 286.412924][ T28] ? rcu_read_lock_sched_held+0xd/0x70 [ 286.418626][ T28] ? lock_acquire+0x4fc/0x630 [ 286.423515][ T28] ? rcu_read_lock_sched_held+0xd/0x70 [ 286.429209][ T28] ? lock_release+0x5cb/0x810 [ 286.434070][ T28] ? __schedule+0x0/0x53f0 [ 286.438778][ T28] ? do_raw_spin_lock+0x120/0x2a0 [ 286.444035][ T28] ? do_raw_spin_lock+0x0/0x2a0 [ 286.449149][ T28] schedule+0xda/0x1b0 [ 286.453419][ T28] rwsem_down_write_slowpath+0x5fc/0x12d0 [ 286.459210][ T28] ? rwsem_down_write_slowpath+0x0/0x12d0 [ 286.465128][ T28] ? lock_acquire+0x4fc/0x630 [ 286.470050][ T28] ? lock_acquire+0x0/0x630 [ 286.474890][ T28] ? rwlock_bug.part.0+0x80/0x90 [ 286.480031][ T28] down_write+0x1e4/0x220 [ 286.484547][ T28] ? down_write+0x0/0x220 [ 286.489108][ T28] ? rcu_read_lock_sched_held+0xd/0x70 [ 286.494797][ T28] blkdev_fallocate+0x1e2/0x410 [ 286.499930][ T28] ? blkdev_fallocate+0x0/0x410 [ 286.504812][ T28] vfs_fallocate+0x487/0xe00 [ 286.509616][ T28] __x64_sys_fallocate+0xcf/0x140 [ 286.514660][ T28] do_syscall_64+0x35/0xb0 [ 286.519321][ T28] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 286.525439][ T28] RIP: 0033:0x7f19a79f1e09 [ 286.530080][ T28] RSP: 002b:00007ffe17d9ca28 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 286.538717][ T28] RAX: ffffffffffffffda RBX: 00000000000f4240 RCX: 00007f19a79f1e09 [ 286.546870][ T28] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000003 [ 286.555080][ T28] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000001 [ 286.563268][ T28] R10: 00400000000000a2 R11: 0000000000000246 R12: 000000000000ad10 [ 286.571455][ T28] R13: 00007ffe17d9ca3c R14: 00007ffe17d9ca50 R15: 00007ffe17d9ca40 [ 286.579640][ T28] [ 286.582839][ T28] INFO: lockdep is turned off. [ 286.587997][ T28] NMI backtrace for cpu 1 [ 286.592336][ T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.1.0-rc1-next-20221021-syzkaller #0 [ 286.601620][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 286.611658][ T28] Call Trace: [ 286.614930][ T28] [ 286.617854][ T28] dump_stack_lvl+0xcd/0x134 [ 286.622457][ T28] nmi_cpu_backtrace.cold+0x24/0x18a [ 286.627748][ T28] nmi_trigger_cpumask_backtrace+0x32f/0x3c0 [ 286.633751][ T28] ? nmi_raise_cpu_backtrace+0x0/0x70 [ 286.639128][ T28] watchdog+0xc71/0xfc0 [ 286.643296][ T28] ? watchdog+0x0/0xfc0 [ 286.647453][ T28] kthread+0x2e4/0x3a0 [ 286.651521][ T28] ? kthread+0x0/0x3a0 [ 286.655589][ T28] ret_from_fork+0x1f/0x30 [ 286.660013][ T28] [ 286.663137][ T28] Sending NMI from CPU 1 to CPUs 0: [ 286.668386][ C0] NMI backtrace for cpu 0 [ 286.668396][ C0] CPU: 0 PID: 2957 Comm: klogd Not tainted 6.1.0-rc1-next-20221021-syzkaller #0 [ 286.668416][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 286.668425][ C0] RIP: 0010:__list_del_entry_valid+0xc/0x110 [ 286.668521][ C0] Code: fd 48 8b 34 24 eb a1 48 89 f7 48 89 34 24 e8 eb 60 c0 fd 48 8b 34 24 eb b4 0f 1f 44 00 00 48 b8 00 00 00 00 00 fc ff df 41 55 <41> 54 55 48 89 fd 48 83 c7 08 48 89 fa 48 c1 ea 03 80 3c 02 00 0f [ 286.668538][ C0] RSP: 0018:ffffc9000c2477d0 EFLAGS: 00000046 [ 286.668553][ C0] RAX: dffffc0000000000 RBX: 0000000000070000 RCX: ffff88805f8b1100 [ 286.668566][ C0] RDX: ffff88805f8b0000 RSI: ffffea00017e2c00 RDI: ffffea00017e2c20 [ 286.668579][ C0] RBP: ffffea00017e2c00 R08: ffff88805f8b1100 R09: dead000000070000 [ 286.668591][ C0] R10: ffff8880177df240 R11: 0000000000000000 R12: ffff88805f8b1100 [ 286.668603][ C0] R13: ffff8880177df240 R14: ffff8881451e7dc0 R15: ffff88805f8b1100 [ 286.668616][ C0] FS: 00007f677fa18800(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000 [ 286.668634][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 286.668647][ C0] CR2: 00005555557282c0 CR3: 0000000025b7e000 CR4: 00000000003506f0 [ 286.668666][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 286.668676][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 286.668688][ C0] Call Trace: [ 286.668692][ C0] [ 286.668698][ C0] __slab_free+0x2a3/0x350 [ 286.668725][ C0] ? trace_hardirqs_on+0x2d/0x180 [ 286.668744][ C0] ? __phys_addr+0xc4/0x140 [ 286.668761][ C0] ? qlist_free_all+0x4c/0x170 [ 286.668782][ C0] qlist_free_all+0x6a/0x170 [ 286.668801][ C0] ? trace_hardirqs_on+0x2d/0x180 [ 286.668820][ C0] kasan_quarantine_reduce+0x18e/0x220 [ 286.668842][ C0] __kasan_slab_alloc+0x62/0x80 [ 286.668868][ C0] kmem_cache_alloc_node+0x2fc/0x400 [ 286.668892][ C0] ? __alloc_skb+0x210/0x2f0 [ 286.668939][ C0] __alloc_skb+0x210/0x2f0 [ 286.668962][ C0] alloc_skb_with_frags+0x93/0x6c0 [ 286.668993][ C0] ? lock_release+0x5cb/0x810 [ 286.669011][ C0] ? rcu_preempt_deferred_qs_irqrestore+0x57b/0xd60 [ 286.669038][ C0] ? lock_release+0x0/0x810 [ 286.669057][ C0] sock_alloc_send_pskb+0x7a3/0x930 [ 286.669079][ C0] ? lock_acquire+0x4fc/0x630 [ 286.669099][ C0] ? sock_alloc_send_pskb+0x0/0x930 [ 286.669118][ C0] ? lock_release+0x0/0x810 [ 286.669137][ C0] ? do_raw_spin_lock+0x120/0x2a0 [ 286.669157][ C0] ? do_raw_spin_lock+0x0/0x2a0 [ 286.669178][ C0] ? __rcu_read_unlock+0x29c/0x5b0 [ 286.669204][ C0] unix_dgram_sendmsg+0x415/0x1b50 [ 286.669245][ C0] ? aa_sk_perm+0x30f/0xaa0 [ 286.669282][ C0] ? unix_dgram_sendmsg+0x0/0x1b50 [ 286.669301][ C0] ? aa_sk_perm+0x0/0xaa0 [ 286.669323][ C0] ? bpf_lsm_socket_recvmsg-0xb/0x10 [ 286.669350][ C0] ? unix_dgram_sendmsg+0x0/0x1b50 [ 286.669370][ C0] sock_sendmsg+0xcf/0x120 [ 286.669410][ C0] __sys_sendto+0x236/0x340 [ 286.669433][ C0] ? __sys_sendto+0x0/0x340 [ 286.669462][ C0] ? lock_release+0x5cb/0x810 [ 286.669480][ C0] ? __ct_user_exit+0xff/0x150 [ 286.669499][ C0] ? lock_release+0x0/0x810 [ 286.669519][ C0] ? lock_release+0x0/0x810 [ 286.669537][ C0] ? restore_fpregs_from_fpstate+0xbd/0x1c0 [ 286.669567][ C0] ? vtime_user_exit+0x218/0x6c0 [ 286.669594][ C0] __x64_sys_sendto+0xdd/0x1b0 [ 286.669618][ C0] ? syscall_enter_from_user_mode+0x22/0xb0 [ 286.669638][ C0] do_syscall_64+0x35/0xb0 [ 286.669667][ C0] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 286.669694][ C0] RIP: 0033:0x7f677fbb40ac [ 286.669707][ C0] Code: 89 02 48 c7 c0 ff ff ff ff eb b8 0f 1f 00 41 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 19 45 31 c9 45 31 c0 b8 2c 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 64 c3 0f 1f 00 55 48 83 ec 20 48 89 54 24 10 [ 286.669724][ C0] RSP: 002b:00007ffd303125b8 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 286.669741][ C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f677fbb40ac [ 286.669753][ C0] RDX: 000000000000004d RSI: 0000556a8fcd0e60 RDI: 0000000000000003 [ 286.669765][ C0] RBP: 0000556a8fccc910 R08: 0000000000000000 R09: 0000000000000000 [ 286.669776][ C0] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000014 [ 286.669787][ C0] R13: 0000000000000001 R14: 00007f677fd2f77d R15: 00007ffd303126c8 [ 286.669805][ C0] [ 286.669811][ C0] INFO: NMI handler (hw_nmi_get_sample_period) took too long to run: 1.426 msecs [ 286.670679][ T28] Kernel panic - not syncing: hung_task: blocked tasks [ 287.102578][ T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.1.0-rc1-next-20221021-syzkaller #0 [ 287.111877][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 287.121925][ T28] Call Trace: [ 287.125285][ T28] [ 287.128211][ T28] dump_stack_lvl+0xcd/0x134 [ 287.132811][ T28] panic+0x2c8/0x622 [ 287.136756][ T28] ? panic+0x0/0x622 [ 287.140652][ T28] ? preempt_schedule_notrace_thunk-0xa/0x20 [ 287.146644][ T28] ? watchdog.cold+0x130/0x158 [ 287.151429][ T28] watchdog.cold+0x141/0x158 [ 287.156021][ T28] ? watchdog+0x0/0xfc0 [ 287.160202][ T28] kthread+0x2e4/0x3a0 [ 287.164272][ T28] ? kthread+0x0/0x3a0 [ 287.168338][ T28] ret_from_fork+0x1f/0x30 [ 287.172760][ T28] [ 287.175973][ T28] Kernel Offset: disabled [ 287.180290][ T28] Rebooting in 86400 seconds..