./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1252734151 <...> Warning: Permanently added '10.128.1.39' (ED25519) to the list of known hosts. execve("./syz-executor1252734151", ["./syz-executor1252734151"], 0x7ffe09b0c9e0 /* 10 vars */) = 0 brk(NULL) = 0x5555656f1000 brk(0x5555656f1d00) = 0x5555656f1d00 arch_prctl(ARCH_SET_FS, 0x5555656f1380) = 0 set_tid_address(0x5555656f1650) = 5872 set_robust_list(0x5555656f1660, 24) = 0 rseq(0x5555656f1ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1252734151", 4096) = 28 getrandom("\xef\x77\x08\xca\xb1\x32\x18\x05", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555656f1d00 brk(0x555565712d00) = 0x555565712d00 brk(0x555565713000) = 0x555565713000 mprotect(0x7f405725d000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5873 attached [pid 5873] set_robust_list(0x5555656f1660, 24 [pid 5872] <... clone resumed>, child_tidptr=0x5555656f1650) = 5873 [pid 5873] <... set_robust_list resumed>) = 0 [pid 5873] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5872] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5874 attached [pid 5873] <... clone resumed>, child_tidptr=0x5555656f1650) = 5874 ./strace-static-x86_64: Process 5875 attached [pid 5874] set_robust_list(0x5555656f1660, 24 [pid 5875] set_robust_list(0x5555656f1660, 24 [pid 5872] <... clone resumed>, child_tidptr=0x5555656f1650) = 5875 [pid 5874] <... set_robust_list resumed>) = 0 [pid 5875] <... set_robust_list resumed>) = 0 [pid 5874] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5875] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5874] <... prctl resumed>) = 0 ./strace-static-x86_64: Process 5876 attached [pid 5872] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5874] setpgid(0, 0 [pid 5875] <... clone resumed>, child_tidptr=0x5555656f1650) = 5876 [pid 5874] <... setpgid resumed>) = 0 [pid 5874] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5876] set_robust_list(0x5555656f1660, 24 [pid 5874] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5877 attached [pid 5876] <... set_robust_list resumed>) = 0 [pid 5877] set_robust_list(0x5555656f1660, 24 [pid 5874] write(3, "1000", 4 [pid 5872] <... clone resumed>, child_tidptr=0x5555656f1650) = 5877 [pid 5877] <... set_robust_list resumed>) = 0 [pid 5876] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5874] <... write resumed>) = 4 [pid 5872] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5877] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5876] <... prctl resumed>) = 0 [pid 5874] close(3) = 0 executing program [pid 5876] setpgid(0, 0 [pid 5874] write(1, "executing program\n", 18) = 18 [pid 5874] openat(AT_FDCWD, "/dev/comedi3", O_RDONLY|O_APPEND./strace-static-x86_64: Process 5878 attached ) = 3 ./strace-static-x86_64: Process 5879 attached [pid 5872] <... clone resumed>, child_tidptr=0x5555656f1650) = 5879 [pid 5878] set_robust_list(0x5555656f1660, 24 [pid 5877] <... clone resumed>, child_tidptr=0x5555656f1650) = 5878 [pid 5876] <... setpgid resumed>) = 0 [pid 5874] ioctl(3, COMEDI_DEVCONFIG [pid 5879] set_robust_list(0x5555656f1660, 24) = 0 [pid 5879] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5880 attached [pid 5880] set_robust_list(0x5555656f1660, 24) = 0 [pid 5878] <... set_robust_list resumed>) = 0 [pid 5876] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5880] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5879] <... clone resumed>, child_tidptr=0x5555656f1650) = 5880 [pid 5878] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5876] <... openat resumed>) = 3 [pid 5878] <... prctl resumed>) = 0 [pid 5876] write(3, "1000", 4 [pid 5880] setpgid(0, 0 [pid 5878] setpgid(0, 0 [pid 5876] <... write resumed>) = 4 [pid 5880] <... setpgid resumed>) = 0 [pid 5878] <... setpgid resumed>) = 0 [pid 5876] close(3 [pid 5880] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXECexecuting program [pid 5876] <... close resumed>) = 0 [pid 5876] write(1, "executing program\n", 18 [pid 5880] <... openat resumed>) = 3 [pid 5878] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5876] <... write resumed>) = 18 [pid 5876] openat(AT_FDCWD, "/dev/comedi3", O_RDONLY|O_APPEND [pid 5880] write(3, "1000", 4) = 4 [pid 5880] close(3) = 0 [pid 5878] <... openat resumed>) = 3 executing program [pid 5878] write(3, "1000", 4 [pid 5880] write(1, "executing program\n", 18 [pid 5878] <... write resumed>) = 4 [pid 5880] <... write resumed>) = 18 [pid 5878] close(3 [pid 5880] openat(AT_FDCWD, "/dev/comedi3", O_RDONLY|O_APPEND [pid 5878] <... close resumed>) = 0 executing program [pid 5878] write(1, "executing program\n", 18) = 18 [pid 5878] openat(AT_FDCWD, "/dev/comedi3", O_RDONLY|O_APPEND [pid 5873] kill(-5874, SIGKILL) = 0 [pid 5873] kill(5874, SIGKILL) = 0 [pid 5875] kill(-5876, SIGKILL) = 0 [pid 5875] kill(5876, SIGKILL) = 0 [pid 5877] kill(-5878, SIGKILL) = 0 [pid 5877] kill(5878, SIGKILL) = 0 [pid 5879] kill(-5880, SIGKILL) = 0 [pid 5879] kill(5880, SIGKILL) = 0 [pid 5873] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5873] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5873] getdents64(3, 0x5555656f26f0 /* 2 entries */, 32768) = 48 [pid 5875] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5873] getdents64(3, [pid 5875] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5873] <... getdents64 resumed>0x5555656f26f0 /* 0 entries */, 32768) = 0 [pid 5873] close(3 [pid 5875] getdents64(3, [pid 5873] <... close resumed>) = 0 [pid 5875] <... getdents64 resumed>0x5555656f26f0 /* 2 entries */, 32768) = 48 [pid 5875] getdents64(3, 0x5555656f26f0 /* 0 entries */, 32768) = 0 [pid 5875] close(3) = 0 [pid 5879] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5877] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5879] newfstatat(3, "", [pid 5877] <... openat resumed>) = 3 [pid 5879] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5879] getdents64(3, [pid 5877] newfstatat(3, "", [pid 5879] <... getdents64 resumed>0x5555656f26f0 /* 2 entries */, 32768) = 48 [pid 5877] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5879] getdents64(3, [pid 5877] getdents64(3, [pid 5879] <... getdents64 resumed>0x5555656f26f0 /* 0 entries */, 32768) = 0 [pid 5877] <... getdents64 resumed>0x5555656f26f0 /* 2 entries */, 32768) = 48 [pid 5879] close(3 [pid 5877] getdents64(3, [pid 5879] <... close resumed>) = 0 [pid 5877] <... getdents64 resumed>0x5555656f26f0 /* 0 entries */, 32768) = 0 [pid 5877] close(3) = 0 [ 286.450250][ T31] INFO: task syz-executor125:5876 blocked for more than 143 seconds. [ 286.458483][ T31] Not tainted 6.16.0-next-20250731-syzkaller #0 [ 286.466531][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.475246][ T31] task:syz-executor125 state:D stack:28040 pid:5876 tgid:5876 ppid:5875 task_flags:0x400040 flags:0x00004006 [ 286.487472][ T31] Call Trace: [ 286.490759][ T31] [ 286.493777][ T31] __schedule+0x1798/0x4cc0 [ 286.498618][ T31] ? __lock_acquire+0xab9/0xd20 [ 286.503488][ T31] ? __lock_acquire+0xab9/0xd20 [ 286.508582][ T31] ? __pfx___schedule+0x10/0x10 [ 286.513465][ T31] ? schedule+0x91/0x360 [ 286.518509][ T31] schedule+0x165/0x360 [ 286.522688][ T31] schedule_preempt_disabled+0x13/0x30 [ 286.528414][ T31] __mutex_lock+0x7e6/0x1360 [ 286.533028][ T31] ? __mutex_lock+0x5b6/0x1360 [ 286.538026][ T31] ? comedi_open+0xc0/0x590 [ 286.542549][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 286.547816][ T31] ? __kasan_kmalloc+0x93/0xb0 [ 286.552599][ T31] ? __kmalloc_cache_noprof+0x230/0x3d0 [ 286.558384][ T31] ? comedi_open+0x8b/0x590 [ 286.562916][ T31] comedi_open+0xc0/0x590 [ 286.567593][ T31] ? do_raw_spin_unlock+0x122/0x240 [ 286.572821][ T31] chrdev_open+0x4c9/0x5e0 [ 286.577850][ T31] ? __pfx_chrdev_open+0x10/0x10 [ 286.582907][ T31] ? fsnotify_open_perm_and_set_mode+0x113/0x610 [ 286.589952][ T31] ? __pfx_chrdev_open+0x10/0x10 [ 286.594913][ T31] do_dentry_open+0x953/0x13f0 [ 286.600134][ T31] vfs_open+0x3b/0x340 [ 286.604223][ T31] ? path_openat+0x2ecd/0x3830 [ 286.609489][ T31] path_openat+0x2ee5/0x3830 [ 286.614087][ T31] ? arch_stack_walk+0xfc/0x150 [ 286.619323][ T31] ? stack_depot_save_flags+0x40/0x860 [ 286.624978][ T31] ? __pfx_path_openat+0x10/0x10 [ 286.630254][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.636672][ T31] do_filp_open+0x1fa/0x410 [ 286.641177][ T31] ? __lock_acquire+0xab9/0xd20 [ 286.646393][ T31] ? __pfx_do_filp_open+0x10/0x10 [ 286.651454][ T31] ? _raw_spin_unlock+0x28/0x50 [ 286.656640][ T31] ? alloc_fd+0x64c/0x6c0 [ 286.660989][ T31] do_sys_openat2+0x121/0x1c0 [ 286.666004][ T31] ? __pfx_do_sys_openat2+0x10/0x10 [ 286.671235][ T31] __x64_sys_openat+0x138/0x170 [ 286.676302][ T31] do_syscall_64+0xfa/0x3b0 [ 286.680804][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 286.686455][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.692524][ T31] ? clear_bhb_loop+0x60/0xb0 [ 286.697765][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.703663][ T31] RIP: 0033:0x7f40571eac29 [ 286.708694][ T31] RSP: 002b:00007ffeb3e18ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 286.717375][ T31] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f40571eac29 [ 286.725363][ T31] RDX: 0000000000000400 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 286.733733][ T31] RBP: 00000000000f4240 R08: 0000000000000000 R09: 00000000000000a0 [ 286.741963][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 286.750161][ T31] R13: 00007ffeb3e18f08 R14: 00007ffeb3e18d10 R15: 00007ffeb3e18d00 [ 286.758574][ T31] [ 286.761790][ T31] INFO: task syz-executor125:5878 blocked for more than 143 seconds. [ 286.770322][ T31] Not tainted 6.16.0-next-20250731-syzkaller #0 [ 286.777407][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.786439][ T31] task:syz-executor125 state:D stack:27080 pid:5878 tgid:5878 ppid:5877 task_flags:0x400040 flags:0x00004006 [ 286.799214][ T31] Call Trace: [ 286.802497][ T31] [ 286.805444][ T31] __schedule+0x1798/0x4cc0 [ 286.810255][ T31] ? __lock_acquire+0xab9/0xd20 [ 286.815117][ T31] ? __lock_acquire+0xab9/0xd20 [ 286.820730][ T31] ? __pfx___schedule+0x10/0x10 [ 286.826090][ T31] ? schedule+0x91/0x360 [ 286.830353][ T31] schedule+0x165/0x360 [ 286.834537][ T31] schedule_preempt_disabled+0x13/0x30 [ 286.840509][ T31] __mutex_lock+0x7e6/0x1360 [ 286.845130][ T31] ? __mutex_lock+0x5b6/0x1360 [ 286.850417][ T31] ? comedi_open+0xc0/0x590 [ 286.854942][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 286.860359][ T31] ? __kasan_kmalloc+0x93/0xb0 [ 286.865161][ T31] ? __kmalloc_cache_noprof+0x230/0x3d0 [ 286.871122][ T31] ? comedi_open+0x8b/0x590 [ 286.875895][ T31] comedi_open+0xc0/0x590 [ 286.880239][ T31] ? do_raw_spin_unlock+0x122/0x240 [ 286.885559][ T31] chrdev_open+0x4c9/0x5e0 [ 286.890576][ T31] ? __pfx_chrdev_open+0x10/0x10 [ 286.895545][ T31] ? fsnotify_open_perm_and_set_mode+0x113/0x610 [ 286.902284][ T31] ? __pfx_chrdev_open+0x10/0x10 [ 286.907462][ T31] do_dentry_open+0x953/0x13f0 [ 286.912255][ T31] vfs_open+0x3b/0x340 [ 286.916691][ T31] ? path_openat+0x2ecd/0x3830 [ 286.921464][ T31] path_openat+0x2ee5/0x3830 [ 286.926780][ T31] ? arch_stack_walk+0xfc/0x150 [ 286.931680][ T31] ? stack_depot_save_flags+0x40/0x860 [ 286.937894][ T31] ? __pfx_path_openat+0x10/0x10 [ 286.942839][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.949377][ T31] do_filp_open+0x1fa/0x410 [ 286.954020][ T31] ? __lock_acquire+0xab9/0xd20 [ 286.959338][ T31] ? __pfx_do_filp_open+0x10/0x10 [ 286.964406][ T31] ? _raw_spin_unlock+0x28/0x50 [ 286.969658][ T31] ? alloc_fd+0x64c/0x6c0 [ 286.974012][ T31] do_sys_openat2+0x121/0x1c0 [ 286.979152][ T31] ? __pfx_do_sys_openat2+0x10/0x10 [ 286.984386][ T31] __x64_sys_openat+0x138/0x170 [ 286.989664][ T31] do_syscall_64+0xfa/0x3b0 [ 286.994178][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 286.999856][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.006190][ T31] ? clear_bhb_loop+0x60/0xb0 [ 287.010880][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.017132][ T31] RIP: 0033:0x7f40571eac29 [ 287.021554][ T31] RSP: 002b:00007ffeb3e18ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 287.030358][ T31] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f40571eac29 [ 287.038572][ T31] RDX: 0000000000000400 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 287.047279][ T31] RBP: 00000000000f4240 R08: 0000000000000000 R09: 00000000000000a0 [ 287.055349][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 287.063777][ T31] R13: 00007ffeb3e18f08 R14: 00007ffeb3e18d10 R15: 00007ffeb3e18d00 [ 287.073196][ T31] [ 287.076522][ T31] INFO: task syz-executor125:5880 blocked for more than 143 seconds. [ 287.084603][ T31] Not tainted 6.16.0-next-20250731-syzkaller #0 [ 287.091822][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.101344][ T31] task:syz-executor125 state:D stack:26824 pid:5880 tgid:5880 ppid:5879 task_flags:0x400040 flags:0x00004006 [ 287.113597][ T31] Call Trace: [ 287.117140][ T31] [ 287.120087][ T31] __schedule+0x1798/0x4cc0 [ 287.124618][ T31] ? __lock_acquire+0xab9/0xd20 [ 287.130031][ T31] ? __lock_acquire+0xab9/0xd20 [ 287.134909][ T31] ? __pfx___schedule+0x10/0x10 [ 287.140286][ T31] ? schedule+0x91/0x360 [ 287.144559][ T31] schedule+0x165/0x360 [ 287.149131][ T31] schedule_preempt_disabled+0x13/0x30 [ 287.154606][ T31] __mutex_lock+0x7e6/0x1360 [ 287.160113][ T31] ? __mutex_lock+0x5b6/0x1360 [ 287.164910][ T31] ? comedi_open+0xc0/0x590 [ 287.169807][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 287.174858][ T31] ? __kasan_kmalloc+0x93/0xb0 [ 287.180038][ T31] ? __kmalloc_cache_noprof+0x230/0x3d0 [ 287.185608][ T31] ? comedi_open+0x8b/0x590 [ 287.190465][ T31] comedi_open+0xc0/0x590 [ 287.194804][ T31] ? do_raw_spin_unlock+0x122/0x240 [ 287.200424][ T31] chrdev_open+0x4c9/0x5e0 [ 287.204858][ T31] ? __pfx_chrdev_open+0x10/0x10 [ 287.210217][ T31] ? fsnotify_open_perm_and_set_mode+0x113/0x610 [ 287.216773][ T31] ? __pfx_chrdev_open+0x10/0x10 [ 287.221734][ T31] do_dentry_open+0x953/0x13f0 [ 287.226897][ T31] vfs_open+0x3b/0x340 [ 287.230977][ T31] ? path_openat+0x2ecd/0x3830 [ 287.236210][ T31] path_openat+0x2ee5/0x3830 [ 287.240814][ T31] ? arch_stack_walk+0xfc/0x150 [ 287.246059][ T31] ? stack_depot_save_flags+0x40/0x860 [ 287.251542][ T31] ? __pfx_path_openat+0x10/0x10 [ 287.256870][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.262964][ T31] do_filp_open+0x1fa/0x410 [ 287.268330][ T31] ? __lock_acquire+0xab9/0xd20 [ 287.273212][ T31] ? __pfx_do_filp_open+0x10/0x10 [ 287.278759][ T31] ? _raw_spin_unlock+0x28/0x50 [ 287.283640][ T31] ? alloc_fd+0x64c/0x6c0 [ 287.288470][ T31] do_sys_openat2+0x121/0x1c0 [ 287.293170][ T31] ? __pfx_do_sys_openat2+0x10/0x10 [ 287.298816][ T31] __x64_sys_openat+0x138/0x170 [ 287.303693][ T31] do_syscall_64+0xfa/0x3b0 [ 287.308565][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 287.313781][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.320302][ T31] ? clear_bhb_loop+0x60/0xb0 [ 287.324993][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.331266][ T31] RIP: 0033:0x7f40571eac29 [ 287.335906][ T31] RSP: 002b:00007ffeb3e18ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 287.344328][ T31] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f40571eac29 [ 287.352788][ T31] RDX: 0000000000000400 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 287.360995][ T31] RBP: 00000000000f4240 R08: 0000000000000000 R09: 00000000000000a0 [ 287.369282][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 287.378029][ T31] R13: 00007ffeb3e18f08 R14: 00007ffeb3e18d10 R15: 00007ffeb3e18d00 [ 287.386271][ T31] [ 287.389312][ T31] [ 287.389312][ T31] Showing all locks held in the system: [ 287.397288][ T31] 1 lock held by khungtaskd/31: [ 287.402137][ T31] #0: ffffffff8e539f20 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180 [ 287.412635][ T31] 2 locks held by getty/5613: [ 287.417529][ T31] #0: ffff88814d5e60a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 287.427544][ T31] #1: ffffc900036cb2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400 [ 287.437884][ T31] 2 locks held by syz-executor125/5874: [ 287.443428][ T31] 1 lock held by syz-executor125/5876: [ 287.449274][ T31] #0: ffff88802f20a0f8 (&dev->mutex#4){+.+.}-{4:4}, at: comedi_open+0xc0/0x590 [ 287.458592][ T31] 1 lock held by syz-executor125/5878: [ 287.464091][ T31] #0: ffff88802f20a0f8 (&dev->mutex#4){+.+.}-{4:4}, at: comedi_open+0xc0/0x590 [ 287.473540][ T31] 1 lock held by syz-executor125/5880: [ 287.479289][ T31] #0: ffff88802f20a0f8 (&dev->mutex#4){+.+.}-{4:4}, at: comedi_open+0xc0/0x590 [ 287.489121][ T31] [ 287.491451][ T31] ============================================= [ 287.491451][ T31] [ 287.500447][ T31] NMI backtrace for cpu 1 [ 287.500471][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full) [ 287.500492][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 287.500503][ T31] Call Trace: [ 287.500511][ T31] [ 287.500518][ T31] dump_stack_lvl+0x189/0x250 [ 287.500549][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 287.500573][ T31] ? __pfx__printk+0x10/0x10 [ 287.500610][ T31] nmi_cpu_backtrace+0x39e/0x3d0 [ 287.500636][ T31] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 287.500661][ T31] ? __pfx__printk+0x10/0x10 [ 287.500689][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 287.500713][ T31] nmi_trigger_cpumask_backtrace+0x17a/0x300 [ 287.500738][ T31] watchdog+0xf93/0xfe0 [ 287.500760][ T31] ? watchdog+0x1de/0xfe0 [ 287.500781][ T31] kthread+0x70e/0x8a0 [ 287.500810][ T31] ? __pfx_watchdog+0x10/0x10 [ 287.500826][ T31] ? __pfx_kthread+0x10/0x10 [ 287.500852][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.500877][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 287.500901][ T31] ? __pfx_kthread+0x10/0x10 [ 287.500923][ T31] ret_from_fork+0x3fc/0x770 [ 287.500946][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 287.500973][ T31] ? __switch_to_asm+0x39/0x70 [ 287.500998][ T31] ? __switch_to_asm+0x33/0x70 [ 287.501022][ T31] ? __pfx_kthread+0x10/0x10 [ 287.501047][ T31] ret_from_fork_asm+0x1a/0x30 [ 287.501077][ T31] [ 287.501084][ T31] Sending NMI from CPU 1 to CPUs 0: [ 287.647570][ C0] NMI backtrace for cpu 0 [ 287.647587][ C0] CPU: 0 UID: 0 PID: 5874 Comm: syz-executor125 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full) [ 287.647607][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 287.647617][ C0] RIP: 0010:multiq3_attach+0x613/0x950 [ 287.647643][ C0] Code: 00 74 08 48 89 df e8 2c 92 2a f9 8b 13 83 c2 0e b0 06 ee 41 80 3c 2c 00 74 08 48 89 df e8 15 92 2a f9 8b 13 83 c2 0e b0 01 ee <41> 80 3c 2c 00 74 08 48 89 df e8 fe 91 2a f9 8b 13 83 c2 0c 31 c0 [ 287.647656][ C0] RSP: 0018:ffffc90004077a98 EFLAGS: 00000216 [ 287.647672][ C0] RAX: 0000000000000601 RBX: ffff88802f20a1d0 RCX: ffff88802c9c8000 [ 287.647684][ C0] RDX: 0000000000004f35 RSI: 0000000020000004 RDI: 0000000000000000 [ 287.647695][ C0] RBP: dffffc0000000000 R08: 0000000000000dc0 R09: 00000000ffffffff [ 287.647706][ C0] R10: dffffc0000000000 R11: fffffbfff1fc6867 R12: 1ffff11005e4143a [ 287.647719][ C0] R13: 00000000028c6a90 R14: 1ffff1100675b692 R15: 0000000000518d53 [ 287.647730][ C0] FS: 00005555656f1380(0000) GS:ffff88812580a000(0000) knlGS:0000000000000000 [ 287.647745][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 287.647756][ C0] CR2: 0000562ca0ee9168 CR3: 0000000078df4000 CR4: 00000000003526f0 [ 287.647770][ C0] Call Trace: [ 287.647779][ C0] [ 287.647789][ C0] comedi_device_attach+0x51c/0x720 [ 287.647816][ C0] comedi_unlocked_ioctl+0x5ff/0x1020 [ 287.647837][ C0] ? __pfx_comedi_unlocked_ioctl+0x10/0x10 [ 287.647863][ C0] ? _raw_spin_lock_irq+0xae/0xf0 [ 287.647898][ C0] ? __pfx_ptrace_notify+0x10/0x10 [ 287.647920][ C0] ? bpf_lsm_file_ioctl+0x9/0x20 [ 287.647942][ C0] ? __pfx_comedi_unlocked_ioctl+0x10/0x10 [ 287.647959][ C0] __se_sys_ioctl+0xfc/0x170 [ 287.647985][ C0] do_syscall_64+0xfa/0x3b0 [ 287.647999][ C0] ? lockdep_hardirqs_on+0x9c/0x150 [ 287.648022][ C0] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.648038][ C0] ? clear_bhb_loop+0x60/0xb0 [ 287.648056][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.648072][ C0] RIP: 0033:0x7f40571eac29 [ 287.648087][ C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 287.648100][ C0] RSP: 002b:00007ffeb3e18ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 287.648116][ C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f40571eac29 [ 287.648127][ C0] RDX: 0000200000000180 RSI: 0000000040946400 RDI: 0000000000000003 [ 287.648138][ C0] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.648148][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 287.648158][ C0] R13: 00007ffeb3e18f08 R14: 00007ffeb3e18d10 R15: 00007ffeb3e18d00 [ 287.648183][ C0] [ 287.648818][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 287.925489][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full) [ 287.936415][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 287.946468][ T31] Call Trace: [ 287.949741][ T31] [ 287.952659][ T31] dump_stack_lvl+0x99/0x250 [ 287.957247][ T31] ? __asan_memcpy+0x40/0x70 [ 287.961832][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 287.967021][ T31] ? __pfx__printk+0x10/0x10 [ 287.971614][ T31] vpanic+0x281/0x750 [ 287.975591][ T31] ? __pfx_vpanic+0x10/0x10 [ 287.980090][ T31] ? __x2apic_send_IPI_mask+0x1e4/0x260 [ 287.985647][ T31] ? preempt_schedule+0xae/0xc0 [ 287.990497][ T31] ? preempt_schedule_common+0x83/0xd0 [ 287.995954][ T31] panic+0xb9/0xc0 [ 287.999663][ T31] ? __pfx_panic+0x10/0x10 [ 288.004075][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 288.009462][ T31] ? nmi_trigger_cpumask_backtrace+0x2bb/0x300 [ 288.015610][ T31] watchdog+0xfd2/0xfe0 [ 288.019761][ T31] ? watchdog+0x1de/0xfe0 [ 288.024084][ T31] kthread+0x70e/0x8a0 [ 288.028148][ T31] ? __pfx_watchdog+0x10/0x10 [ 288.032823][ T31] ? __pfx_kthread+0x10/0x10 [ 288.037408][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 288.042610][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 288.047820][ T31] ? __pfx_kthread+0x10/0x10 [ 288.052419][ T31] ret_from_fork+0x3fc/0x770 [ 288.057125][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 288.062253][ T31] ? __switch_to_asm+0x39/0x70 [ 288.067024][ T31] ? __switch_to_asm+0x33/0x70 [ 288.071799][ T31] ? __pfx_kthread+0x10/0x10 [ 288.076384][ T31] ret_from_fork_asm+0x1a/0x30 [ 288.081162][ T31] [ 288.084448][ T31] Kernel Offset: disabled [ 288.088769][ T31] Rebooting in 86400 seconds..