./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2287155319 <...> Warning: Permanently added '10.128.0.212' (ED25519) to the list of known hosts. execve("./syz-executor2287155319", ["./syz-executor2287155319"], 0x7ffde02ef1d0 /* 10 vars */) = 0 brk(NULL) = 0x55556be87000 brk(0x55556be87d00) = 0x55556be87d00 arch_prctl(ARCH_SET_FS, 0x55556be87380) = 0 set_tid_address(0x55556be87650) = 5074 set_robust_list(0x55556be87660, 24) = 0 rseq(0x55556be87ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2287155319", 4096) = 28 getrandom("\x54\x4e\x33\x85\x76\x5c\xa8\x7b", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55556be87d00 brk(0x55556bea8d00) = 0x55556bea8d00 brk(0x55556bea9000) = 0x55556bea9000 mprotect(0x7fa1e646d000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55556be87650) = 5075 ./strace-static-x86_64: Process 5075 attached [pid 5074] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5075] set_robust_list(0x55556be87660, 24) = 0 ./strace-static-x86_64: Process 5076 attached [pid 5075] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5074] <... clone resumed>, child_tidptr=0x55556be87650) = 5076 [pid 5074] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5076] set_robust_list(0x55556be87660, 24./strace-static-x86_64: Process 5077 attached ) = 0 ./strace-static-x86_64: Process 5078 attached [pid 5077] set_robust_list(0x55556be87660, 24 [pid 5075] <... clone resumed>, child_tidptr=0x55556be87650) = 5077 [pid 5076] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5078] set_robust_list(0x55556be87660, 24 [pid 5074] <... clone resumed>, child_tidptr=0x55556be87650) = 5078 [pid 5077] <... set_robust_list resumed>) = 0 [pid 5077] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 5079 attached [pid 5074] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5078] <... set_robust_list resumed>) = 0 [pid 5076] <... clone resumed>, child_tidptr=0x55556be87650) = 5079 [pid 5077] <... prctl resumed>) = 0 [pid 5079] set_robust_list(0x55556be87660, 24./strace-static-x86_64: Process 5080 attached [pid 5078] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5077] setpgid(0, 0 [pid 5074] <... clone resumed>, child_tidptr=0x55556be87650) = 5080 [pid 5080] set_robust_list(0x55556be87660, 24 [pid 5077] <... setpgid resumed>) = 0 [pid 5074] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5080] <... set_robust_list resumed>) = 0 [pid 5079] <... set_robust_list resumed>) = 0 [pid 5077] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5080] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5081 attached [pid 5079] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5077] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5083 attached ./strace-static-x86_64: Process 5082 attached [pid 5081] set_robust_list(0x55556be87660, 24 [pid 5079] <... prctl resumed>) = 0 [pid 5078] <... clone resumed>, child_tidptr=0x55556be87650) = 5081 [pid 5077] write(3, "1000", 4 [pid 5074] <... clone resumed>, child_tidptr=0x55556be87650) = 5082 [pid 5083] set_robust_list(0x55556be87660, 24 [pid 5080] <... clone resumed>, child_tidptr=0x55556be87650) = 5083 [pid 5079] setpgid(0, 0 [pid 5077] <... write resumed>) = 4 [pid 5083] <... set_robust_list resumed>) = 0 [pid 5082] set_robust_list(0x55556be87660, 24 [pid 5081] <... set_robust_list resumed>) = 0 [pid 5079] <... setpgid resumed>) = 0 [pid 5077] close(3 [pid 5083] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5079] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5077] <... close resumed>) = 0 [pid 5081] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5077] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5082] <... set_robust_list resumed>) = 0 [pid 5083] <... prctl resumed>) = 0 [pid 5081] <... prctl resumed>) = 0 [pid 5077] <... openat resumed>) = 3 [pid 5079] <... openat resumed>) = 3 [pid 5077] ioctl(3, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5083] setpgid(0, 0 [pid 5082] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5081] setpgid(0, 0 [pid 5079] write(3, "1000", 4 [pid 5083] <... setpgid resumed>) = 0 [pid 5081] <... setpgid resumed>) = 0 [pid 5079] <... write resumed>) = 4 [pid 5077] <... ioctl resumed>) = 0 [pid 5077] ioctl(3, SNDRV_TIMER_IOCTL_PARAMS, 0x20000440./strace-static-x86_64: Process 5084 attached [pid 5083] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5081] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5079] close(3 [pid 5084] set_robust_list(0x55556be87660, 24 [pid 5083] <... openat resumed>) = 3 [pid 5082] <... clone resumed>, child_tidptr=0x55556be87650) = 5084 [pid 5079] <... close resumed>) = 0 [pid 5077] <... ioctl resumed>) = 0 [pid 5084] <... set_robust_list resumed>) = 0 [pid 5083] write(3, "1000", 4 [pid 5081] <... openat resumed>) = 3 [pid 5079] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5084] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5083] <... write resumed>) = 4 [pid 5081] write(3, "1000", 4 [pid 5077] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5084] <... prctl resumed>) = 0 [pid 5083] close(3 [pid 5081] <... write resumed>) = 4 [pid 5079] <... openat resumed>) = 3 [pid 5077] <... openat resumed>) = 4 [pid 5084] setpgid(0, 0 [pid 5083] <... close resumed>) = 0 [pid 5081] close(3 [pid 5077] ioctl(4, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5079] ioctl(3, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5084] <... setpgid resumed>) = 0 [pid 5083] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5081] <... close resumed>) = 0 [pid 5079] <... ioctl resumed>) = 0 [pid 5077] <... ioctl resumed>) = 0 [pid 5081] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5077] ioctl(4, SNDRV_TIMER_IOCTL_START, 0 [pid 5084] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5083] <... openat resumed>) = 3 [pid 5081] <... openat resumed>) = 3 [pid 5079] ioctl(3, SNDRV_TIMER_IOCTL_PARAMS, 0x20000440 [pid 5077] <... ioctl resumed>) = 0 [pid 5084] write(3, "1000", 4 [pid 5079] <... ioctl resumed>) = 0 [pid 5083] ioctl(3, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5081] ioctl(3, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5079] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5083] <... ioctl resumed>) = 0 [pid 5084] <... write resumed>) = 4 [pid 5084] close(3 [pid 5077] ioctl(3, SNDRV_TIMER_IOCTL_CONTINUE, 0 [pid 5084] <... close resumed>) = 0 [pid 5079] <... openat resumed>) = 4 [pid 5084] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5081] <... ioctl resumed>) = 0 [pid 5077] <... ioctl resumed>) = 0 [pid 5084] <... openat resumed>) = 3 [pid 5083] ioctl(3, SNDRV_TIMER_IOCTL_PARAMS, 0x20000440 [pid 5084] ioctl(3, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5083] <... ioctl resumed>) = 0 [pid 5081] ioctl(3, SNDRV_TIMER_IOCTL_PARAMS, 0x20000440 [pid 5079] ioctl(4, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5077] exit_group(0 [pid 5084] <... ioctl resumed>) = 0 [pid 5083] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5081] <... ioctl resumed>) = 0 [pid 5079] <... ioctl resumed>) = 0 [pid 5083] <... openat resumed>) = 4 [pid 5079] ioctl(4, SNDRV_TIMER_IOCTL_START, 0 [pid 5084] ioctl(3, SNDRV_TIMER_IOCTL_PARAMS, 0x20000440 [pid 5079] <... ioctl resumed>) = 0 [pid 5077] <... exit_group resumed>) = ? [pid 5084] <... ioctl resumed>) = 0 [pid 5083] ioctl(4, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5081] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5079] ioctl(3, SNDRV_TIMER_IOCTL_CONTINUE, 0 [pid 5084] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY) = 4 [pid 5084] ioctl(4, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5083] <... ioctl resumed>) = 0 [pid 5081] <... openat resumed>) = 4 [pid 5079] <... ioctl resumed>) = 0 [pid 5079] exit_group(0 [pid 5083] ioctl(4, SNDRV_TIMER_IOCTL_START, 0 [pid 5081] ioctl(4, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5079] <... exit_group resumed>) = ? [pid 5084] <... ioctl resumed>) = 0 [pid 5083] <... ioctl resumed>) = 0 [pid 5081] <... ioctl resumed>) = 0 [pid 5077] +++ exited with 0 +++ [pid 5084] ioctl(4, SNDRV_TIMER_IOCTL_START, 0 [pid 5081] ioctl(4, SNDRV_TIMER_IOCTL_START, 0 [pid 5084] <... ioctl resumed>) = 0 [pid 5081] <... ioctl resumed>) = 0 [pid 5079] +++ exited with 0 +++ [pid 5084] ioctl(3, SNDRV_TIMER_IOCTL_CONTINUE, 0 [pid 5083] ioctl(3, SNDRV_TIMER_IOCTL_CONTINUE, 0 [pid 5081] ioctl(3, SNDRV_TIMER_IOCTL_CONTINUE, 0 [pid 5075] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5077, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5083] <... ioctl resumed>) = 0 [pid 5076] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5079, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5084] <... ioctl resumed>) = 0 [pid 5083] exit_group(0 [pid 5081] <... ioctl resumed>) = 0 [pid 5076] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5084] exit_group(0) = ? [pid 5083] <... exit_group resumed>) = ? [pid 5081] exit_group(0 [pid 5075] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5085 attached [pid 5083] +++ exited with 0 +++ [pid 5081] <... exit_group resumed>) = ? ./strace-static-x86_64: Process 5086 attached [pid 5085] set_robust_list(0x55556be87660, 24 [pid 5084] +++ exited with 0 +++ [pid 5076] <... clone resumed>, child_tidptr=0x55556be87650) = 5085 [pid 5075] <... clone resumed>, child_tidptr=0x55556be87650) = 5086 [pid 5086] set_robust_list(0x55556be87660, 24 [pid 5081] +++ exited with 0 +++ [pid 5080] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5083, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} --- [pid 5086] <... set_robust_list resumed>) = 0 [pid 5085] <... set_robust_list resumed>) = 0 [pid 5082] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5084, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5080] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5078] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5081, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5086] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5085] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5082] restart_syscall(<... resuming interrupted clone ...> [pid 5078] restart_syscall(<... resuming interrupted clone ...>) = 0 ./strace-static-x86_64: Process 5087 attached [pid 5086] <... prctl resumed>) = 0 [pid 5085] <... prctl resumed>) = 0 [pid 5082] <... restart_syscall resumed>) = 0 [pid 5086] setpgid(0, 0 [pid 5085] setpgid(0, 0 [pid 5078] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5087] set_robust_list(0x55556be87660, 24 [pid 5085] <... setpgid resumed>) = 0 [pid 5086] <... setpgid resumed>) = 0 [pid 5085] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 5088 attached [pid 5087] <... set_robust_list resumed>) = 0 [pid 5086] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5080] <... clone resumed>, child_tidptr=0x55556be87650) = 5087 [pid 5088] set_robust_list(0x55556be87660, 24 [pid 5087] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5086] <... openat resumed>) = 3 [pid 5085] <... openat resumed>) = 3 [pid 5082] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5086] write(3, "1000", 4 [pid 5085] write(3, "1000", 4) = 4 [pid 5085] close(3 [pid 5088] <... set_robust_list resumed>) = 0 [pid 5087] <... prctl resumed>) = 0 [pid 5088] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5087] setpgid(0, 0 [pid 5088] <... prctl resumed>) = 0 [pid 5087] <... setpgid resumed>) = 0 [pid 5078] <... clone resumed>, child_tidptr=0x55556be87650) = 5088 [pid 5088] setpgid(0, 0 [pid 5087] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5088] <... setpgid resumed>) = 0 [pid 5087] <... openat resumed>) = 3 [pid 5088] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5087] write(3, "1000", 4) = 4 [pid 5087] close(3) = 0 [pid 5087] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5088] <... openat resumed>) = 3 [pid 5087] <... openat resumed>) = 3 [pid 5086] <... write resumed>) = 4 [pid 5085] <... close resumed>) = 0 ./strace-static-x86_64: Process 5089 attached [pid 5088] write(3, "1000", 4 [pid 5087] ioctl(3, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5086] close(3 [pid 5089] set_robust_list(0x55556be87660, 24 [pid 5088] <... write resumed>) = 4 [pid 5087] <... ioctl resumed>) = 0 [pid 5086] <... close resumed>) = 0 [pid 5085] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5082] <... clone resumed>, child_tidptr=0x55556be87650) = 5089 [pid 5089] <... set_robust_list resumed>) = 0 [pid 5088] close(3 [pid 5087] ioctl(3, SNDRV_TIMER_IOCTL_PARAMS, 0x20000440 [pid 5085] <... openat resumed>) = 3 [pid 5089] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5088] <... close resumed>) = 0 [pid 5087] <... ioctl resumed>) = 0 [pid 5086] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5089] <... prctl resumed>) = 0 [pid 5088] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5087] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5086] <... openat resumed>) = 3 [pid 5085] ioctl(3, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5089] setpgid(0, 0 [pid 5088] <... openat resumed>) = 3 [pid 5087] <... openat resumed>) = 4 [pid 5086] ioctl(3, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5085] <... ioctl resumed>) = 0 [pid 5089] <... setpgid resumed>) = 0 [pid 5088] ioctl(3, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5087] ioctl(4, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5086] <... ioctl resumed>) = 0 [pid 5085] ioctl(3, SNDRV_TIMER_IOCTL_PARAMS, 0x20000440 [pid 5089] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5088] <... ioctl resumed>) = 0 [pid 5087] <... ioctl resumed>) = 0 [pid 5086] ioctl(3, SNDRV_TIMER_IOCTL_PARAMS, 0x20000440 [pid 5085] <... ioctl resumed>) = 0 [pid 5089] <... openat resumed>) = 3 [pid 5088] ioctl(3, SNDRV_TIMER_IOCTL_PARAMS, 0x20000440 [pid 5087] ioctl(4, SNDRV_TIMER_IOCTL_START, 0 [pid 5086] <... ioctl resumed>) = 0 [pid 5085] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5088] <... ioctl resumed>) = 0 [pid 5086] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5085] <... openat resumed>) = 4 [pid 5085] ioctl(4, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5089] write(3, "1000", 4 [pid 5088] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5087] <... ioctl resumed>) = 0 [pid 5089] <... write resumed>) = 4 [pid 5088] <... openat resumed>) = 4 [pid 5087] ioctl(3, SNDRV_TIMER_IOCTL_CONTINUE, 0 [pid 5086] <... openat resumed>) = 4 [pid 5089] close(3 [pid 5088] ioctl(4, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5087] <... ioctl resumed>) = 0 [pid 5085] <... ioctl resumed>) = 0 [pid 5089] <... close resumed>) = 0 [pid 5088] <... ioctl resumed>) = 0 [pid 5087] exit_group(0 [pid 5086] ioctl(4, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5085] ioctl(4, SNDRV_TIMER_IOCTL_START, 0 [pid 5089] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY) = 3 [pid 5088] ioctl(4, SNDRV_TIMER_IOCTL_START, 0 [pid 5087] <... exit_group resumed>) = ? [pid 5086] <... ioctl resumed>) = 0 [pid 5089] ioctl(3, SNDRV_TIMER_IOCTL_SELECT, 0x20000100 [pid 5088] <... ioctl resumed>) = 0 [pid 5086] ioctl(4, SNDRV_TIMER_IOCTL_START, 0 [pid 5085] <... ioctl resumed>) = 0 [pid 5086] <... ioctl resumed>) = 0 [pid 5085] ioctl(3, SNDRV_TIMER_IOCTL_CONTINUE, 0 [pid 5089] <... ioctl resumed>) = 0 [pid 5088] ioctl(3, SNDRV_TIMER_IOCTL_CONTINUE, 0 [pid 5086] ioctl(3, SNDRV_TIMER_IOCTL_CONTINUE, 0 [pid 5085] <... ioctl resumed>) = 0 [pid 5089] ioctl(3, SNDRV_TIMER_IOCTL_PARAMS, 0x20000440 [pid 5088] <... ioctl resumed>) = 0 [pid 5086] <... ioctl resumed>) = 0 [pid 5085] exit_group(0 [pid 5086] exit_group(0) = ? [pid 5085] <... exit_group resumed>) = ? [pid 5089] <... ioctl resumed>) = 0 [pid 5088] exit_group(0 [pid 5089] openat(AT_FDCWD, "/dev/snd/timer", O_RDONLY [pid 5088] <... exit_group resumed>) = ? [pid 5089] <... openat resumed>) = 4 [ 177.876166][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 177.883244][ C0] rcu: 1-...!: (1 ticks this GP) idle=6cdc/1/0x4000000000000000 softirq=5910/5910 fqs=0 [ 177.893590][ C0] rcu: (detected by 0, t=10502 jiffies, g=6389, q=12 ncpus=2) [ 177.901170][ C0] Sending NMI from CPU 0 to CPUs 1: [ 177.906403][ C1] NMI backtrace for cpu 1 [ 177.906415][ C1] CPU: 1 PID: 5087 Comm: syz-executor228 Not tainted 6.8.0-syzkaller-08073-g480e035fc4c7 #0 [ 177.906433][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 177.906443][ C1] RIP: 0010:lock_acquire+0x9e/0x530 [ 177.906484][ C1] Code: ec 03 48 b8 f1 f1 f1 f1 00 f2 f2 f2 4b 89 04 2c 43 c7 44 2c 09 f2 f2 f2 00 43 c7 44 2c 11 f3 f3 f3 f3 66 43 c7 44 2c 15 f3 f3 <43> c6 44 2c 17 f3 0f 1f 44 00 00 65 8b 05 7c 36 92 7e 83 f8 08 0f [ 177.906498][ C1] RSP: 0018:ffffc90000a08a40 EFLAGS: 00000806 [ 177.906514][ C1] RAX: f2f2f200f1f1f1f1 RBX: ffff888026fff930 RCX: 0000000000000000 [ 177.906527][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff888026fff948 [ 177.906538][ C1] RBP: ffffc90000a08b90 R08: 0000000000000001 R09: 0000000000000000 [ 177.906549][ C1] R10: dffffc0000000000 R11: ffffed100f93db16 R12: 1ffff92000141150 [ 177.906562][ C1] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff888026fff9a0 [ 177.906574][ C1] FS: 0000000000000000(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 [ 177.906589][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 177.906601][ C1] CR2: 00007fa1e64710d0 CR3: 000000002d3b6000 CR4: 00000000003506f0 [ 177.906616][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 177.906626][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 177.906636][ C1] Call Trace: [ 177.906644][ C1] [ 177.906652][ C1] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 177.906675][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 177.906694][ C1] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 177.906711][ C1] ? nmi_handle+0x2a/0x580 [ 177.906737][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 177.906764][ C1] ? nmi_handle+0x14f/0x580 [ 177.906781][ C1] ? nmi_handle+0x2a/0x580 [ 177.906799][ C1] ? lock_acquire+0x9e/0x530 [ 177.906816][ C1] ? default_do_nmi+0x63/0x160 [ 177.906834][ C1] ? exc_nmi+0x123/0x1f0 [ 177.906851][ C1] ? end_repeat_nmi+0xf/0x53 [ 177.906876][ C1] ? lock_acquire+0x9e/0x530 [ 177.906893][ C1] ? lock_acquire+0x9e/0x530 [ 177.906911][ C1] ? lock_acquire+0x9e/0x530 [ 177.906928][ C1] [ 177.906933][ C1] [ 177.906943][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 177.906961][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 177.906985][ C1] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 177.907008][ C1] ? do_raw_spin_unlock+0x13c/0x8b0 [ 177.907037][ C1] ? __pfx_snd_timer_user_interrupt+0x10/0x10 [ 177.907068][ C1] ? __wake_up_common_lock+0x18c/0x1e0 [ 177.907087][ C1] ? __pfx_snd_timer_user_interrupt+0x10/0x10 [ 177.907114][ C1] _raw_spin_lock+0x2e/0x40 [ 177.907135][ C1] ? snd_timer_process_callbacks+0x26e/0x320 [ 177.907159][ C1] snd_timer_process_callbacks+0x26e/0x320 [ 177.907187][ C1] snd_timer_interrupt+0xf02/0x10d0 [ 177.907220][ C1] snd_hrtimer_callback+0x20b/0x380 [ 177.907252][ C1] ? __pfx_snd_hrtimer_callback+0x10/0x10 [ 177.907279][ C1] __hrtimer_run_queues+0x595/0xd00 [ 177.907313][ C1] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 177.907336][ C1] ? ktime_get_update_offsets_now+0x411/0x430 [ 177.907359][ C1] hrtimer_interrupt+0x396/0x990 [ 177.907395][ C1] __sysvec_apic_timer_interrupt+0x107/0x3a0 [ 177.907425][ C1] sysvec_apic_timer_interrupt+0xa1/0xc0 [ 177.907447][ C1] [ 177.907453][ C1] [ 177.907459][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 177.907478][ C1] RIP: 0010:_raw_spin_unlock_irqrestore+0xd8/0x140 [ 177.907503][ C1] Code: 9c 8f 44 24 20 42 80 3c 23 00 74 08 4c 89 f7 e8 fe 49 79 f6 f6 44 24 21 02 75 52 41 f7 c7 00 02 00 00 74 01 fb bf 01 00 00 00 a3 f1 e5 f5 65 8b 05 f4 d5 84 74 85 c0 74 43 48 c7 04 24 0e 36 [ 177.907517][ C1] RSP: 0018:ffffc90003b47940 EFLAGS: 00000206 [ 177.907531][ C1] RAX: 6bc00ddc6210a000 RBX: 1ffff92000768f2c RCX: ffffffff81720c2a [ 177.907544][ C1] RDX: dffffc0000000000 RSI: ffffffff8baac1e0 RDI: 0000000000000001 [ 177.907556][ C1] RBP: ffffc90003b479d0 R08: ffffffff92ce1587 R09: 1ffffffff259c2b0 [ 177.907569][ C1] R10: dffffc0000000000 R11: fffffbfff259c2b1 R12: dffffc0000000000 [ 177.907582][ C1] R13: 1ffff92000768f28 R14: ffffc90003b47960 R15: 0000000000000246 [ 177.907599][ C1] ? mark_lock+0x9a/0x350 [ 177.907622][ C1] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 177.907653][ C1] snd_timer_stop1+0x7d9/0x930 [ 177.907684][ C1] snd_timer_close_locked+0x217/0x8c0 [ 177.907707][ C1] ? __fsnotify_parent+0x20c/0x5e0 [ 177.907727][ C1] snd_timer_user_release+0x129/0x2d0 [ 177.907760][ C1] ? __pfx_snd_timer_user_release+0x10/0x10 [ 177.907786][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 177.907805][ C1] ? evm_file_release+0x140/0x1d0 [ 177.907824][ C1] ? __pfx_snd_timer_user_release+0x10/0x10 [ 177.907849][ C1] __fput+0x429/0x8a0 [ 177.907874][ C1] task_work_run+0x24f/0x310 [ 177.907902][ C1] ? __pfx_task_work_run+0x10/0x10 [ 177.907927][ C1] ? switch_task_namespaces+0xe1/0x110 [ 177.907946][ C1] do_exit+0xa1b/0x27e0 [ 177.907973][ C1] ? __pfx_do_exit+0x10/0x10 [ 177.907996][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 177.908015][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 177.908036][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 177.908059][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 177.908083][ C1] do_group_exit+0x207/0x2c0 [ 177.908109][ C1] __x64_sys_exit_group+0x3f/0x40 [ 177.908131][ C1] do_syscall_64+0xfb/0x240 [ 177.908159][ C1] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 177.908177][ C1] RIP: 0033:0x7fa1e63f8db9 [ 177.908191][ C1] Code: Unable to access opcode bytes at 0x7fa1e63f8d8f. [ 177.908199][ C1] RSP: 002b:00007fff8aadfdd8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 177.908216][ C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa1e63f8db9 [ 177.908228][ C1] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000 [ 177.908238][ C1] RBP: 00007fa1e64732b0 R08: ffffffffffffffb8 R09: 00000000000000a0 [ 177.908250][ C1] R10: 00000000000000a0 R11: 0000000000000246 R12: 00007fa1e64732b0 [ 177.908262][ C1] R13: 0000000000000000 R14: 00007fa1e6473d20 R15: 00007fa1e63c9f50 [ 177.908283][ C1] [ 177.908290][ C1] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.887 msecs [ 177.908398][ C0] rcu: rcu_preempt kthread timer wakeup didn't happen for 10501 jiffies! g6389 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 [ 178.520897][ C0] rcu: Possible timer handling issue on cpu=1 timer-softirq=2760 [ 178.528717][ C0] rcu: rcu_preempt kthread starved for 10502 jiffies! g6389 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=1 [ 178.540038][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 178.550023][ C0] rcu: RCU grace-period kthread stack dump: [ 178.555922][ C0] task:rcu_preempt state:I stack:26256 pid:16 tgid:16 ppid:2 flags:0x00004000 [ 178.566113][ C0] Call Trace: [ 178.569411][ C0] [ 178.572363][ C0] __schedule+0x17d3/0x4a20 [ 178.576932][ C0] ? __pfx___schedule+0x10/0x10 [ 178.581815][ C0] ? __pfx_lock_release+0x10/0x10 [ 178.586868][ C0] ? __asan_memset+0x23/0x50 [ 178.591488][ C0] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 178.597318][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 178.603683][ C0] ? schedule+0x90/0x320 [ 178.607956][ C0] schedule+0x14b/0x320 [ 178.612150][ C0] schedule_timeout+0x1be/0x310 [ 178.617028][ C0] ? __pfx_schedule_timeout+0x10/0x10 [ 178.622430][ C0] ? __pfx_process_timeout+0x10/0x10 [ 178.627745][ C0] ? prepare_to_swait_event+0x32e/0x350 [ 178.633421][ C0] rcu_gp_fqs_loop+0x2df/0x1370 [ 178.638302][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 178.643538][ C0] ? __pfx_rcu_gp_init+0x10/0x10 [ 178.648517][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 178.653743][ C0] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 178.659046][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 178.664975][ C0] ? finish_swait+0xd4/0x1e0 [ 178.669604][ C0] rcu_gp_kthread+0xa7/0x3b0 [ 178.674242][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 178.679471][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 178.685400][ C0] ? __kthread_parkme+0x169/0x1d0 [ 178.690455][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 178.695685][ C0] kthread+0x2f0/0x390 [ 178.699780][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 178.705011][ C0] ? __pfx_kthread+0x10/0x10 [ 178.709630][ C0] ret_from_fork+0x4b/0x80 [ 178.714104][ C0] ? __pfx_kthread+0x10/0x10 [ 178.718719][ C0] ret_from_fork_asm+0x1a/0x30 [ 178.723529][ C0]