./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2731962777

<...>
Warning: Permanently added '10.128.1.165' (ED25519) to the list of known hosts.
execve("./syz-executor2731962777", ["./syz-executor2731962777"], 0x7ffc45f353a0 /* 10 vars */) = 0
brk(NULL)                               = 0x555556325000
brk(0x555556325d00)                     = 0x555556325d00
arch_prctl(ARCH_SET_FS, 0x555556325380) = 0
set_tid_address(0x555556325650)         = 5073
set_robust_list(0x555556325660, 24)     = 0
rseq(0x555556325ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor2731962777", 4096) = 28
getrandom("\x95\x5c\xe5\x29\xd7\x48\x59\x60", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x555556325d00
brk(0x555556346d00)                     = 0x555556346d00
brk(0x555556347000)                     = 0x555556347000
mprotect(0x7fa9a4d3e000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5074 attached
, child_tidptr=0x555556325650) = 5074
[pid  5073] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5074] set_robust_list(0x555556325660, 24) = 0
[pid  5074] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5075 attached
 <unfinished ...>
[pid  5073] <... clone resumed>, child_tidptr=0x555556325650) = 5075
[pid  5075] set_robust_list(0x555556325660, 24) = 0
[pid  5073] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5075] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5076 attached
 <unfinished ...>
[pid  5076] set_robust_list(0x555556325660, 24 <unfinished ...>
[pid  5074] <... clone resumed>, child_tidptr=0x555556325650) = 5076
[pid  5076] <... set_robust_list resumed>) = 0
./strace-static-x86_64: Process 5077 attached
[pid  5076] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5075] <... clone resumed>, child_tidptr=0x555556325650) = 5077
./strace-static-x86_64: Process 5078 attached
[pid  5076] <... prctl resumed>)        = 0
[pid  5076] setpgid(0, 0)               = 0
[pid  5076] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5077] set_robust_list(0x555556325660, 24 <unfinished ...>
[pid  5076] <... openat resumed>)       = 3
[pid  5078] set_robust_list(0x555556325660, 24 <unfinished ...>
[pid  5073] <... clone resumed>, child_tidptr=0x555556325650) = 5078
[pid  5078] <... set_robust_list resumed>) = 0
[pid  5077] <... set_robust_list resumed>) = 0
[pid  5073] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5077] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5076] write(3, "1000", 4./strace-static-x86_64: Process 5079 attached
 <unfinished ...>
[pid  5078] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5077] <... prctl resumed>)        = 0
[pid  5073] <... clone resumed>, child_tidptr=0x555556325650) = 5079
[pid  5079] set_robust_list(0x555556325660, 24 <unfinished ...>
[pid  5076] <... write resumed>)        = 4
[pid  5077] setpgid(0, 0 <unfinished ...>
[pid  5079] <... set_robust_list resumed>) = 0
[pid  5077] <... setpgid resumed>)      = 0
[pid  5076] close(3./strace-static-x86_64: Process 5080 attached
 <unfinished ...>
[pid  5073] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5079] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5077] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5076] <... close resumed>)        = 0
[pid  5080] set_robust_list(0x555556325660, 24 <unfinished ...>
[pid  5078] <... clone resumed>, child_tidptr=0x555556325650) = 5080
[pid  5077] <... openat resumed>)       = 3
[pid  5076] openat(AT_FDCWD, "/dev/nullb0", O_WRONLY|O_NONBLOCK <unfinished ...>
[pid  5080] <... set_robust_list resumed>) = 0
[pid  5080] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 5082 attached
./strace-static-x86_64: Process 5081 attached
 <unfinished ...>
[pid  5073] <... clone resumed>, child_tidptr=0x555556325650) = 5081
[pid  5080] <... prctl resumed>)        = 0
[pid  5077] write(3, "1000", 4 <unfinished ...>
[pid  5076] <... openat resumed>)       = 3
[pid  5073] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5082] set_robust_list(0x555556325660, 24 <unfinished ...>
[pid  5081] set_robust_list(0x555556325660, 24 <unfinished ...>
[pid  5080] setpgid(0, 0 <unfinished ...>
[pid  5079] <... clone resumed>, child_tidptr=0x555556325650) = 5082
[pid  5077] <... write resumed>)        = 4
[pid  5082] <... set_robust_list resumed>) = 0
[pid  5080] <... setpgid resumed>)      = 0
[pid  5077] close(3 <unfinished ...>
[pid  5076] ioctl(3, BLKZEROOUT, [0, 137506079744]./strace-static-x86_64: Process 5083 attached
 <unfinished ...>
[pid  5082] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5081] <... set_robust_list resumed>) = 0
[pid  5080] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5077] <... close resumed>)        = 0
[pid  5073] <... clone resumed>, child_tidptr=0x555556325650) = 5083
[pid  5083] set_robust_list(0x555556325660, 24 <unfinished ...>
[pid  5082] <... prctl resumed>)        = 0
[pid  5081] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5080] <... openat resumed>)       = 3
[pid  5077] openat(AT_FDCWD, "/dev/nullb0", O_WRONLY|O_NONBLOCK <unfinished ...>
[pid  5080] write(3, "1000", 4 <unfinished ...>
[pid  5077] <... openat resumed>)       = 3
[pid  5080] <... write resumed>)        = 4
[pid  5080] close(3)                    = 0
[pid  5080] openat(AT_FDCWD, "/dev/nullb0", O_WRONLY|O_NONBLOCK) = 3
[pid  5077] ioctl(3, BLKZEROOUT, [0, 137506079744] <unfinished ...>
[pid  5082] setpgid(0, 0 <unfinished ...>
[pid  5080] ioctl(3, BLKZEROOUT, [0, 137506079744] <unfinished ...>
[pid  5082] <... setpgid resumed>)      = 0
[pid  5083] <... set_robust_list resumed>) = 0
[pid  5083] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5084 attached
 <unfinished ...>
[pid  5081] <... clone resumed>, child_tidptr=0x555556325650) = 5084
./strace-static-x86_64: Process 5085 attached
[pid  5084] set_robust_list(0x555556325660, 24 <unfinished ...>
[pid  5082] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5085] set_robust_list(0x555556325660, 24 <unfinished ...>
[pid  5084] <... set_robust_list resumed>) = 0
[pid  5083] <... clone resumed>, child_tidptr=0x555556325650) = 5085
[pid  5082] <... openat resumed>)       = 3
[pid  5084] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5085] <... set_robust_list resumed>) = 0
[pid  5082] write(3, "1000", 4 <unfinished ...>
[pid  5085] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5084] <... prctl resumed>)        = 0
[pid  5082] <... write resumed>)        = 4
[pid  5085] <... prctl resumed>)        = 0
[pid  5084] setpgid(0, 0 <unfinished ...>
[pid  5082] close(3 <unfinished ...>
[pid  5085] setpgid(0, 0 <unfinished ...>
[pid  5084] <... setpgid resumed>)      = 0
[pid  5082] <... close resumed>)        = 0
[pid  5085] <... setpgid resumed>)      = 0
[pid  5084] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5082] openat(AT_FDCWD, "/dev/nullb0", O_WRONLY|O_NONBLOCK <unfinished ...>
[pid  5085] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5084] <... openat resumed>)       = 3
[pid  5082] <... openat resumed>)       = 3
[pid  5085] <... openat resumed>)       = 3
[pid  5082] ioctl(3, BLKZEROOUT, [0, 137506079744] <unfinished ...>
[pid  5085] write(3, "1000", 4 <unfinished ...>
[pid  5084] write(3, "1000", 4 <unfinished ...>
[pid  5085] <... write resumed>)        = 4
[pid  5084] <... write resumed>)        = 4
[pid  5085] close(3 <unfinished ...>
[pid  5084] close(3 <unfinished ...>
[pid  5085] <... close resumed>)        = 0
[pid  5084] <... close resumed>)        = 0
[pid  5085] openat(AT_FDCWD, "/dev/nullb0", O_WRONLY|O_NONBLOCK) = 3
[pid  5084] openat(AT_FDCWD, "/dev/nullb0", O_WRONLY|O_NONBLOCK) = 3
[pid  5085] ioctl(3, BLKZEROOUT, [0, 137506079744] <unfinished ...>
[   97.141648][    T9] cfg80211: failed to load regulatory.db
[pid  5084] ioctl(3, BLKZEROOUT, [0, 137506079744] <unfinished ...>
[pid  5075] kill(-5077, SIGKILL <unfinished ...>
[pid  5074] kill(-5076, SIGKILL <unfinished ...>
[pid  5075] <... kill resumed>)         = 0
[pid  5074] <... kill resumed>)         = 0
[pid  5075] kill(5077, SIGKILL <unfinished ...>
[pid  5074] kill(5076, SIGKILL <unfinished ...>
[pid  5075] <... kill resumed>)         = 0
[pid  5074] <... kill resumed>)         = 0
[pid  5078] kill(-5080, SIGKILL)        = 0
[pid  5078] kill(5080, SIGKILL)         = 0
[pid  5079] kill(-5082, SIGKILL)        = 0
[pid  5079] kill(5082, SIGKILL)         = 0
[pid  5083] kill(-5085, SIGKILL <unfinished ...>
[pid  5081] kill(-5084, SIGKILL <unfinished ...>
[pid  5083] <... kill resumed>)         = 0
[pid  5081] <... kill resumed>)         = 0
[pid  5083] kill(5085, SIGKILL)         = 0
[pid  5081] kill(5084, SIGKILL)         = 0
[pid  5075] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5075] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5075] getdents64(3,  <unfinished ...>
[pid  5074] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5074] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5075] <... getdents64 resumed>0x5555563266f0 /* 2 entries */, 32768) = 48
[pid  5078] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5075] getdents64(3,  <unfinished ...>
[pid  5078] <... openat resumed>)       = 3
[pid  5075] <... getdents64 resumed>0x5555563266f0 /* 0 entries */, 32768) = 0
[pid  5083] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5075] close(3 <unfinished ...>
[pid  5083] <... openat resumed>)       = 3
[pid  5078] newfstatat(3, "",  <unfinished ...>
[pid  5074] getdents64(3,  <unfinished ...>
[pid  5075] <... close resumed>)        = 0
[pid  5078] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5074] <... getdents64 resumed>0x5555563266f0 /* 2 entries */, 32768) = 48
[pid  5074] getdents64(3,  <unfinished ...>
[pid  5083] newfstatat(3, "",  <unfinished ...>
[pid  5074] <... getdents64 resumed>0x5555563266f0 /* 0 entries */, 32768) = 0
[pid  5083] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5078] getdents64(3,  <unfinished ...>
[pid  5074] close(3 <unfinished ...>
[pid  5083] getdents64(3,  <unfinished ...>
[pid  5078] <... getdents64 resumed>0x5555563266f0 /* 2 entries */, 32768) = 48
[pid  5074] <... close resumed>)        = 0
[pid  5078] getdents64(3, 0x5555563266f0 /* 0 entries */, 32768) = 0
[pid  5083] <... getdents64 resumed>0x5555563266f0 /* 2 entries */, 32768) = 48
[pid  5078] close(3 <unfinished ...>
[pid  5083] getdents64(3,  <unfinished ...>
[pid  5081] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5078] <... close resumed>)        = 0
[pid  5083] <... getdents64 resumed>0x5555563266f0 /* 0 entries */, 32768) = 0
[pid  5083] close(3 <unfinished ...>
[pid  5081] <... openat resumed>)       = 3
[pid  5083] <... close resumed>)        = 0
[pid  5081] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5081] getdents64(3, 0x5555563266f0 /* 2 entries */, 32768) = 48
[pid  5081] getdents64(3, 0x5555563266f0 /* 0 entries */, 32768) = 0
[pid  5081] close(3)                    = 0
[pid  5079] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5079] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5079] getdents64(3, 0x5555563266f0 /* 2 entries */, 32768) = 48
[pid  5079] getdents64(3, 0x5555563266f0 /* 0 entries */, 32768) = 0
[pid  5079] close(3)                    = 0
[pid  5076] <... ioctl resumed>)        = ?
[pid  5076] +++ killed by SIGKILL +++
[pid  5074] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5076, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=5999 /* 59.99 s */} ---
[pid  5074] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5103 attached
, child_tidptr=0x555556325650) = 5103
[pid  5103] set_robust_list(0x555556325660, 24) = 0
[pid  5103] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5103] setpgid(0, 0)               = 0
[pid  5103] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5103] write(3, "1000", 4)         = 4
[pid  5103] close(3)                    = 0
[pid  5103] openat(AT_FDCWD, "/dev/nullb0", O_WRONLY|O_NONBLOCK) = 3
[pid  5103] ioctl(3, BLKZEROOUT, [0, 137506079744] <unfinished ...>
[pid  5074] kill(-5103, SIGKILL)        = 0
[pid  5074] kill(5103, SIGKILL)         = 0
[pid  5074] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5074] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5074] getdents64(3, 0x5555563266f0 /* 2 entries */, 32768) = 48
[pid  5074] getdents64(3, 0x5555563266f0 /* 0 entries */, 32768) = 0
[pid  5074] close(3)                    = 0
[pid  5077] <... ioctl resumed>)        = ?
[pid  5077] +++ killed by SIGKILL +++
[pid  5075] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5077, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=5956 /* 59.56 s */} ---
[pid  5075] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5104 attached
, child_tidptr=0x555556325650) = 5104
[pid  5104] set_robust_list(0x555556325660, 24) = 0
[pid  5104] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5104] setpgid(0, 0)               = 0
[pid  5104] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5104] write(3, "1000", 4)         = 4
[pid  5104] close(3)                    = 0
[pid  5104] openat(AT_FDCWD, "/dev/nullb0", O_WRONLY|O_NONBLOCK) = 3
[pid  5104] ioctl(3, BLKZEROOUT, [0, 137506079744] <unfinished ...>
[pid  5075] kill(-5104, SIGKILL)        = 0
[pid  5075] kill(5104, SIGKILL)         = 0
[pid  5075] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5075] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5075] getdents64(3, 0x5555563266f0 /* 2 entries */, 32768) = 48
[pid  5075] getdents64(3, 0x5555563266f0 /* 0 entries */, 32768) = 0
[pid  5075] close(3)                    = 0
[  286.578351][   T29] INFO: task syz-executor273:5082 blocked for more than 143 seconds.
[  286.586623][   T29]       Not tainted 6.7.0-rc1-syzkaller-00019-gc42d9eeef8e5 #0
[  286.595267][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  286.604079][   T29] task:syz-executor273 state:D stack:28208 pid:5082  tgid:5082  ppid:5079   flags:0x00004006
[  286.614350][   T29] Call Trace:
[  286.617747][   T29]  <TASK>
[  286.622439][   T29]  __schedule+0xedb/0x5af0
[  286.628789][   T29]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[  286.636517][   T29]  ? hlock_class+0x4e/0x130
[  286.642762][   T29]  ? mark_lock+0xb5/0xc50
[  286.648184][   T29]  ? io_schedule_timeout+0x150/0x150
[  286.653542][   T29]  ? schedule+0x1fc/0x270
[  286.657934][   T29]  ? reacquire_held_locks+0x4c0/0x4c0
[  286.664301][   T29]  ? __down_write_common+0x899/0x1400
[  286.671548][   T29]  schedule+0xe9/0x270
[  286.677250][   T29]  schedule_preempt_disabled+0x13/0x20
[  286.704557][   T29]  __down_write_common+0x948/0x1400
[  286.711662][   T29]  ? up_write+0x510/0x510
[  286.717658][   T29]  ? lock_sync+0x190/0x190
[  286.724013][   T29]  ? preempt_count_sub+0x160/0x160
[  286.731038][   T29]  blkdev_common_ioctl+0x10ee/0x1ce0
[  286.738040][   T29]  ? blkdev_pr_preempt+0x2f0/0x2f0
[  286.745081][   T29]  ? ptrace_notify+0xf4/0x130
[  286.756306][   T29]  blkdev_ioctl+0x249/0x770
[  286.767253][   T29]  ? blkdev_common_ioctl+0x1ce0/0x1ce0
[  286.778284][   T29]  ? bpf_lsm_file_ioctl+0x9/0x10
[  286.788102][   T29]  ? blkdev_common_ioctl+0x1ce0/0x1ce0
[  286.796095][   T29]  __x64_sys_ioctl+0x18f/0x210
[  286.801045][   T29]  do_syscall_64+0x40/0x110
[  286.805607][   T29]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[  286.812425][   T29] RIP: 0033:0x7fa9a4ccbae9
[  286.817381][   T29] RSP: 002b:00007ffdf2748de8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  286.826414][   T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa9a4ccbae9
[  286.834930][   T29] RDX: 0000000020000040 RSI: 000000000000127f RDI: 0000000000000003
[  286.843534][   T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0
[  286.852097][   T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  286.860653][   T29] R13: 00007ffdf2749008 R14: 00007ffdf2748e10 R15: 00007ffdf2748e00
[  286.869269][   T29]  </TASK>
[  286.872353][   T29] INFO: task syz-executor273:5084 blocked for more than 143 seconds.
[  286.880527][   T29]       Not tainted 6.7.0-rc1-syzkaller-00019-gc42d9eeef8e5 #0
[  286.888110][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  286.896851][   T29] task:syz-executor273 state:D stack:28208 pid:5084  tgid:5084  ppid:5081   flags:0x00004006
[  286.907729][   T29] Call Trace:
[  286.911604][   T29]  <TASK>
[  286.914587][   T29]  __schedule+0xedb/0x5af0
[  286.919485][   T29]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[  286.926040][   T29]  ? hlock_class+0x4e/0x130
[  286.931186][   T29]  ? mark_lock+0xb5/0xc50
[  286.935609][   T29]  ? io_schedule_timeout+0x150/0x150
[  286.941547][   T29]  ? schedule+0x1fc/0x270
[  286.946413][   T29]  ? reacquire_held_locks+0x4c0/0x4c0
[  286.952425][   T29]  ? __down_write_common+0x899/0x1400
[  286.960414][   T29]  schedule+0xe9/0x270
[  286.964569][   T29]  schedule_preempt_disabled+0x13/0x20
[  286.971926][   T29]  __down_write_common+0x948/0x1400
[  286.978195][   T29]  ? up_write+0x510/0x510
[  286.982600][   T29]  ? lock_sync+0x190/0x190
[  286.987095][   T29]  ? preempt_count_sub+0x160/0x160
[  286.993162][   T29]  blkdev_common_ioctl+0x10ee/0x1ce0
[  286.998595][   T29]  ? blkdev_pr_preempt+0x2f0/0x2f0
[  287.003782][   T29]  ? ptrace_notify+0xf4/0x130
[  287.008567][   T29]  blkdev_ioctl+0x249/0x770
[  287.013658][   T29]  ? blkdev_common_ioctl+0x1ce0/0x1ce0
[  287.019727][   T29]  ? bpf_lsm_file_ioctl+0x9/0x10
[  287.025228][   T29]  ? blkdev_common_ioctl+0x1ce0/0x1ce0
[  287.031508][   T29]  __x64_sys_ioctl+0x18f/0x210
[  287.036783][   T29]  do_syscall_64+0x40/0x110
[  287.041921][   T29]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[  287.048417][   T29] RIP: 0033:0x7fa9a4ccbae9
[  287.052876][   T29] RSP: 002b:00007ffdf2748de8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  287.061951][   T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa9a4ccbae9
[  287.070039][   T29] RDX: 0000000020000040 RSI: 000000000000127f RDI: 0000000000000003
[  287.078060][   T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0
[  287.086607][   T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  287.095105][   T29] R13: 00007ffdf2749008 R14: 00007ffdf2748e10 R15: 00007ffdf2748e00
[  287.103710][   T29]  </TASK>
[  287.107209][   T29] INFO: task syz-executor273:5085 blocked for more than 143 seconds.
[  287.115886][   T29]       Not tainted 6.7.0-rc1-syzkaller-00019-gc42d9eeef8e5 #0
[  287.124025][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  287.133188][   T29] task:syz-executor273 state:D stack:28208 pid:5085  tgid:5085  ppid:5083   flags:0x00004006
[  287.143977][   T29] Call Trace:
[  287.147306][   T29]  <TASK>
[  287.150339][   T29]  __schedule+0xedb/0x5af0
[  287.154820][   T29]  ? lockdep_hardirqs_on_prepare+0x420/0x420
[  287.160947][   T29]  ? hlock_class+0x4e/0x130
[  287.165514][   T29]  ? mark_lock+0xb5/0xc50
[  287.169996][   T29]  ? io_schedule_timeout+0x150/0x150
[  287.175352][   T29]  ? schedule+0x1fc/0x270
[  287.180310][   T29]  ? reacquire_held_locks+0x4c0/0x4c0
[  287.186230][   T29]  ? __down_write_common+0x899/0x1400
[  287.192158][   T29]  schedule+0xe9/0x270
[  287.196777][   T29]  schedule_preempt_disabled+0x13/0x20
[  287.202851][   T29]  __down_write_common+0x948/0x1400
[  287.208621][   T29]  ? up_write+0x510/0x510
[  287.213004][   T29]  ? lock_sync+0x190/0x190
[  287.217457][   T29]  ? preempt_count_sub+0x160/0x160
[  287.223159][   T29]  blkdev_common_ioctl+0x10ee/0x1ce0
[  287.229039][   T29]  ? blkdev_pr_preempt+0x2f0/0x2f0
[  287.234234][   T29]  ? ptrace_notify+0xf4/0x130
[  287.239048][   T29]  blkdev_ioctl+0x249/0x770
[  287.243609][   T29]  ? blkdev_common_ioctl+0x1ce0/0x1ce0
[  287.249690][   T29]  ? bpf_lsm_file_ioctl+0x9/0x10
[  287.255134][   T29]  ? blkdev_common_ioctl+0x1ce0/0x1ce0
[  287.261212][   T29]  __x64_sys_ioctl+0x18f/0x210
[  287.266507][   T29]  do_syscall_64+0x40/0x110
[  287.271586][   T29]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[  287.278013][   T29] RIP: 0033:0x7fa9a4ccbae9
[  287.282580][   T29] RSP: 002b:00007ffdf2748de8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  287.291214][   T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa9a4ccbae9
[  287.308225][   T29] RDX: 0000000020000040 RSI: 000000000000127f RDI: 0000000000000003
[  287.316686][   T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0
[  287.325262][   T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  287.333772][   T29] R13: 00007ffdf2749008 R14: 00007ffdf2748e10 R15: 00007ffdf2748e00
[  287.342368][   T29]  </TASK>
[  287.345921][   T29] 
[  287.345921][   T29] Showing all locks held in the system:
[  287.354330][   T29] 1 lock held by khungtaskd/29:
[  287.359335][   T29]  #0: ffffffff8cfabce0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x75/0x340
[  287.378292][   T29] 2 locks held by getty/4825:
[  287.383496][   T29]  #0: ffff88802608c0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  287.393892][   T29]  #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfc6/0x1490
[  287.404602][   T29] 1 lock held by syz-executor273/5080:
[  287.410662][   T29] 1 lock held by syz-executor273/5082:
[  287.416685][   T29]  #0: ffff88801b64c2c0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_common_ioctl+0x10ee/0x1ce0
[  287.428755][   T29] 1 lock held by syz-executor273/5084:
[  287.434713][   T29]  #0: ffff88801b64c2c0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_common_ioctl+0x10ee/0x1ce0
[  287.446445][   T29] 1 lock held by syz-executor273/5085:
[  287.452013][   T29]  #0: ffff88801b64c2c0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_common_ioctl+0x10ee/0x1ce0
[  287.463284][   T29] 1 lock held by syz-executor273/5103:
[  287.469251][   T29]  #0: ffff88801b64c2c0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_common_ioctl+0x10ee/0x1ce0
[  287.480896][   T29] 1 lock held by syz-executor273/5104:
[  287.486816][   T29]  #0: ffff88801b64c2c0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_common_ioctl+0x10ee/0x1ce0
[  287.498594][   T29] 
[  287.501353][   T29] =============================================
[  287.501353][   T29] 
[  287.510635][   T29] NMI backtrace for cpu 0
[  287.515005][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.7.0-rc1-syzkaller-00019-gc42d9eeef8e5 #0
[  287.524819][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[  287.534876][   T29] Call Trace:
[  287.538172][   T29]  <TASK>
[  287.541122][   T29]  dump_stack_lvl+0xd9/0x1b0
[  287.545729][   T29]  nmi_cpu_backtrace+0x277/0x390
[  287.550683][   T29]  ? lapic_can_unplug_cpu+0xa0/0xa0
[  287.555900][   T29]  nmi_trigger_cpumask_backtrace+0x299/0x300
[  287.561895][   T29]  watchdog+0xf87/0x1210
[  287.566156][   T29]  ? proc_dohung_task_timeout_secs+0x90/0x90
[  287.572160][   T29]  ? lockdep_hardirqs_on+0x7d/0x110
[  287.577396][   T29]  ? __kthread_parkme+0x14b/0x220
[  287.582450][   T29]  ? proc_dohung_task_timeout_secs+0x90/0x90
[  287.588472][   T29]  kthread+0x2c6/0x3a0
[  287.592567][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[  287.597789][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  287.603461][   T29]  ret_from_fork+0x45/0x80
[  287.607906][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  287.613573][   T29]  ret_from_fork_asm+0x11/0x20
[  287.618386][   T29]  </TASK>
[  287.621541][   T29] Sending NMI from CPU 0 to CPUs 1:
[  287.626785][    C1] NMI backtrace for cpu 1
[  287.626796][    C1] CPU: 1 PID: 743 Comm: kworker/u4:6 Not tainted 6.7.0-rc1-syzkaller-00019-gc42d9eeef8e5 #0
[  287.626823][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[  287.626838][    C1] Workqueue: events_unbound toggle_allocation_gate
[  287.626869][    C1] RIP: 0010:memcmp+0x74/0x1c0
[  287.626904][    C1] Code: 83 c5 01 4c 39 e3 0f 84 21 01 00 00 48 89 d8 48 89 da 48 c1 e8 03 83 e2 07 42 0f b6 04 28 38 d0 7f 08 84 c0 0f 85 27 01 00 00 <48> 89 ea 48 89 e9 0f b6 03 48 c1 ea 03 83 e1 07 42 0f b6 14 2a 38
[  287.626927][    C1] RSP: 0018:ffffc90003abf970 EFLAGS: 00000046
[  287.626945][    C1] RAX: 0000000000000000 RBX: ffffffff81ddd7f5 RCX: 0000000000000003
[  287.626965][    C1] RDX: 0000000000000005 RSI: ffffffff90b2f34b RDI: ffffffff81ddd7f4
[  287.626980][    C1] RBP: ffffffff90b2f34c R08: 0000000000000000 R09: 0000000000011e81
[  287.626996][    C1] R10: ffff888013068627 R11: 0000000000000006 R12: ffffffff81ddd7f8
[  287.627011][    C1] R13: dffffc0000000000 R14: ffffffff8d1217c0 R15: 0000000000000000
[  287.627027][    C1] FS:  0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[  287.627050][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  287.627067][    C1] CR2: 000056389f043680 CR3: 000000000cd77000 CR4: 00000000003506f0
[  287.627083][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  287.627097][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  287.627112][    C1] Call Trace:
[  287.627120][    C1]  <NMI>
[  287.627127][    C1]  ? show_regs+0x8f/0xa0
[  287.627159][    C1]  ? nmi_cpu_backtrace+0x1d4/0x390
[  287.627188][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x10
[  287.627226][    C1]  ? nmi_handle+0x1a6/0x570
[  287.627258][    C1]  ? memcmp+0x74/0x1c0
[  287.627289][    C1]  ? default_do_nmi+0x6a/0x160
[  287.627323][    C1]  ? exc_nmi+0x186/0x200
[  287.627355][    C1]  ? end_repeat_nmi+0xf/0x2a
[  287.627379][    C1]  ? __kmem_cache_alloc_node+0xc8/0x310
[  287.627415][    C1]  ? __kmem_cache_alloc_node+0xc5/0x310
[  287.627454][    C1]  ? __kmem_cache_alloc_node+0xc4/0x310
[  287.627488][    C1]  ? memcmp+0x74/0x1c0
[  287.627519][    C1]  ? memcmp+0x74/0x1c0
[  287.627551][    C1]  ? memcmp+0x74/0x1c0
[  287.627581][    C1]  </NMI>
[  287.627587][    C1]  <TASK>
[  287.627595][    C1]  ? __kmem_cache_alloc_node+0xc4/0x310
[  287.627630][    C1]  __text_poke+0x914/0xca0
[  287.627655][    C1]  ? setup_data_read+0x280/0x280
[  287.627684][    C1]  ? apply_relocation+0x830/0x830
[  287.627710][    C1]  ? __kmem_cache_alloc_node+0xc4/0x310
[  287.627748][    C1]  text_poke_bp_batch+0x3e0/0x750
[  287.627777][    C1]  ? __kmem_cache_alloc_node+0xc4/0x310
[  287.627814][    C1]  ? alternatives_enable_smp+0x400/0x400
[  287.627841][    C1]  ? __jump_label_patch+0x1db/0x400
[  287.627877][    C1]  ? text_poke_queue+0xef/0x180
[  287.627903][    C1]  ? arch_jump_label_transform_queue+0xc0/0x110
[  287.627953][    C1]  text_poke_finish+0x30/0x40
[  287.627980][    C1]  arch_jump_label_transform_apply+0x1c/0x30
[  287.628020][    C1]  jump_label_update+0x1d7/0x400
[  287.628055][    C1]  static_key_disable_cpuslocked+0x154/0x1c0
[  287.628091][    C1]  static_key_disable+0x1a/0x20
[  287.628127][    C1]  toggle_allocation_gate+0x13f/0x250
[  287.628161][    C1]  ? wake_up_kfence_timer+0x30/0x30
[  287.628190][    C1]  ? prepare_to_swait_exclusive+0x240/0x240
[  287.628236][    C1]  process_one_work+0x886/0x15d0
[  287.628276][    C1]  ? lock_sync+0x190/0x190
[  287.628313][    C1]  ? workqueue_congested+0x300/0x300
[  287.628353][    C1]  ? assign_work+0x1a0/0x250
[  287.628387][    C1]  worker_thread+0x8b9/0x1290
[  287.628427][    C1]  ? __kthread_parkme+0x14b/0x220
[  287.628457][    C1]  ? process_one_work+0x15d0/0x15d0
[  287.628491][    C1]  kthread+0x2c6/0x3a0
[  287.628520][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  287.628544][    C1]  ? kthread_complete_and_exit+0x40/0x40
[  287.628577][    C1]  ret_from_fork+0x45/0x80
[  287.628607][    C1]  ? kthread_complete_and_exit+0x40/0x40
[  287.628640][    C1]  ret_from_fork_asm+0x11/0x20
[  287.628683][    C1]  </TASK>
[  287.628691][    C1] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.905 msecs
[  287.629318][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[  287.629333][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.7.0-rc1-syzkaller-00019-gc42d9eeef8e5 #0
[  287.629368][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[  287.629385][   T29] Call Trace:
[  287.629396][   T29]  <TASK>
[  287.629407][   T29]  dump_stack_lvl+0xd9/0x1b0
[  287.629455][   T29]  panic+0x6dc/0x790
[  287.629500][   T29]  ? panic_smp_self_stop+0xa0/0xa0
[  287.629545][   T29]  ? preempt_schedule_thunk+0x1a/0x30
[  287.629601][   T29]  ? lapic_can_unplug_cpu+0xa0/0xa0
[  287.629650][   T29]  ? preempt_schedule_thunk+0x1a/0x30
[  287.629704][   T29]  ? watchdog+0xd3e/0x1210
[  287.629743][   T29]  ? watchdog+0xd31/0x1210
[  287.629789][   T29]  watchdog+0xd4f/0x1210
[  287.629836][   T29]  ? proc_dohung_task_timeout_secs+0x90/0x90
[  287.629878][   T29]  ? lockdep_hardirqs_on+0x7d/0x110
[  287.629930][   T29]  ? __kthread_parkme+0x14b/0x220
[  287.629971][   T29]  ? proc_dohung_task_timeout_secs+0x90/0x90
[  287.630015][   T29]  kthread+0x2c6/0x3a0
[  287.630052][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[  287.630086][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  287.630131][   T29]  ret_from_fork+0x45/0x80
[  287.630170][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  287.630214][   T29]  ret_from_fork_asm+0x11/0x20
[  287.630277][   T29]  </TASK>
[  287.633461][   T29] Kernel Offset: disabled
[  288.158201][   T29] Rebooting in 86400 seconds..