./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor810594806

<...>
DUID 00:04:e3:38:52:80:67:3f:e9:c9:a2:47:22:a3:59:23:7d:1e
forked to background, child pid 4716
[   47.052677][ T4717] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.063266][ T4717] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.0.89' (ED25519) to the list of known hosts.
execve("./syz-executor810594806", ["./syz-executor810594806"], 0x7ffeef149d70 /* 10 vars */) = 0
brk(NULL)                               = 0x55555700c000
brk(0x55555700cd00)                     = 0x55555700cd00
arch_prctl(ARCH_SET_FS, 0x55555700c380) = 0
set_tid_address(0x55555700c650)         = 5054
set_robust_list(0x55555700c660, 24)     = 0
rseq(0x55555700cca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor810594806", 4096) = 27
getrandom("\x24\x1f\x56\xdb\xf9\xf0\x6e\x57", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x55555700cd00
brk(0x55555702dd00)                     = 0x55555702dd00
brk(0x55555702e000)                     = 0x55555702e000
mprotect(0x7f5357982000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5055 attached
, child_tidptr=0x55555700c650) = 5055
[pid  5054] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5055] set_robust_list(0x55555700c660, 24) = 0
./strace-static-x86_64: Process 5056 attached
[pid  5055] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5054] <... clone resumed>, child_tidptr=0x55555700c650) = 5056
[pid  5056] set_robust_list(0x55555700c660, 24 <unfinished ...>
[pid  5054] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5057 attached
 <unfinished ...>
[pid  5056] <... set_robust_list resumed>) = 0
[pid  5057] set_robust_list(0x55555700c660, 24 <unfinished ...>
[pid  5056] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5055] <... clone resumed>, child_tidptr=0x55555700c650) = 5057
[pid  5057] <... set_robust_list resumed>) = 0
[pid  5057] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 5059 attached
./strace-static-x86_64: Process 5058 attached
 <unfinished ...>
[pid  5056] <... clone resumed>, child_tidptr=0x55555700c650) = 5059
[pid  5057] <... prctl resumed>)        = 0
[pid  5059] set_robust_list(0x55555700c660, 24 <unfinished ...>
[pid  5058] set_robust_list(0x55555700c660, 24 <unfinished ...>
[pid  5057] setpgid(0, 0 <unfinished ...>
[pid  5054] <... clone resumed>, child_tidptr=0x55555700c650) = 5058
[pid  5054] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5059] <... set_robust_list resumed>) = 0
[pid  5058] <... set_robust_list resumed>) = 0
[pid  5057] <... setpgid resumed>)      = 0
[pid  5059] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5058] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5057] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 5061 attached
./strace-static-x86_64: Process 5060 attached
 <unfinished ...>
[pid  5059] <... prctl resumed>)        = 0
[pid  5057] <... openat resumed>)       = 3
[pid  5061] set_robust_list(0x55555700c660, 24 <unfinished ...>
[pid  5057] write(3, "1000", 4 <unfinished ...>
[pid  5061] <... set_robust_list resumed>) = 0
[pid  5057] <... write resumed>)        = 4
[pid  5061] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5057] close(3)                    = 0
[pid  5054] <... clone resumed>, child_tidptr=0x55555700c650) = 5060
[pid  5061] <... prctl resumed>)        = 0
[pid  5060] set_robust_list(0x55555700c660, 24 <unfinished ...>
[pid  5059] setpgid(0, 0 <unfinished ...>
[pid  5058] <... clone resumed>, child_tidptr=0x55555700c650) = 5061
[pid  5057] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT <unfinished ...>
[pid  5059] <... setpgid resumed>)      = 0
[pid  5054] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5061] setpgid(0, 0 <unfinished ...>
[pid  5060] <... set_robust_list resumed>) = 0
[pid  5059] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5060] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5059] <... openat resumed>)       = 3
[pid  5057] <... openat resumed>)       = 3
[pid  5061] <... setpgid resumed>)      = 0
[pid  5061] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 5062 attached
) = 3
[pid  5059] write(3, "1000", 4 <unfinished ...>
[pid  5057] dup(3 <unfinished ...>
[pid  5059] <... write resumed>)        = 4
[pid  5057] <... dup resumed>)          = 4
[pid  5061] write(3, "1000", 4 <unfinished ...>
[pid  5059] close(3 <unfinished ...>
[pid  5057] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 <unfinished ...>
[pid  5061] <... write resumed>)        = 4
[pid  5059] <... close resumed>)        = 0
[pid  5061] close(3)                    = 0
[pid  5061] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT) = 3
./strace-static-x86_64: Process 5063 attached
[pid  5054] <... clone resumed>, child_tidptr=0x55555700c650) = 5062
[pid  5062] set_robust_list(0x55555700c660, 24 <unfinished ...>
[pid  5059] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT <unfinished ...>
[pid  5063] set_robust_list(0x55555700c660, 24 <unfinished ...>
[pid  5062] <... set_robust_list resumed>) = 0
[pid  5061] dup(3 <unfinished ...>
[pid  5060] <... clone resumed>, child_tidptr=0x55555700c650) = 5063
[pid  5059] <... openat resumed>)       = 3
[pid  5063] <... set_robust_list resumed>) = 0
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5061] <... dup resumed>)          = 4
[pid  5059] dup(3 <unfinished ...>
[pid  5063] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5059] <... dup resumed>)          = 4
[pid  5061] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 <unfinished ...>
[pid  5059] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 <unfinished ...>
[pid  5063] <... prctl resumed>)        = 0
[pid  5063] setpgid(0, 0)               = 0
[pid  5063] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 5064 attached
) = 3
[pid  5063] write(3, "1000", 4 <unfinished ...>
[pid  5064] set_robust_list(0x55555700c660, 24 <unfinished ...>
[pid  5063] <... write resumed>)        = 4
[pid  5062] <... clone resumed>, child_tidptr=0x55555700c650) = 5064
[pid  5064] <... set_robust_list resumed>) = 0
[pid  5063] close(3)                    = 0
[pid  5064] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5063] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT <unfinished ...>
[pid  5064] <... prctl resumed>)        = 0
[pid  5064] setpgid(0, 0)               = 0
[pid  5064] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5063] <... openat resumed>)       = 3
[pid  5064] <... openat resumed>)       = 3
[pid  5064] write(3, "1000", 4 <unfinished ...>
[pid  5063] dup(3)                      = 4
[pid  5064] <... write resumed>)        = 4
[pid  5064] close(3 <unfinished ...>
[pid  5063] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 <unfinished ...>
[pid  5064] <... close resumed>)        = 0
[pid  5064] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT) = 3
[pid  5064] dup(3)                      = 4
[pid  5064] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 <unfinished ...>
[pid  5055] kill(-5057, SIGKILL)        = 0
[pid  5055] kill(5057, SIGKILL)         = 0
[pid  5056] kill(-5059, SIGKILL)        = 0
[pid  5056] kill(5059, SIGKILL)         = 0
[pid  5058] kill(-5061, SIGKILL)        = 0
[pid  5058] kill(5061, SIGKILL)         = 0
[pid  5060] kill(-5063, SIGKILL)        = 0
[pid  5060] kill(5063, SIGKILL)         = 0
[pid  5062] kill(-5064, SIGKILL)        = 0
[pid  5062] kill(5064, SIGKILL)         = 0
[pid  5056] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5060] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5062] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5055] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5058] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5060] <... openat resumed>)       = 3
[pid  5055] <... openat resumed>)       = 3
[pid  5062] <... openat resumed>)       = 3
[pid  5058] <... openat resumed>)       = 3
[pid  5056] <... openat resumed>)       = 3
[pid  5060] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5062] newfstatat(3, "",  <unfinished ...>
[pid  5058] newfstatat(3, "",  <unfinished ...>
[pid  5056] newfstatat(3, "",  <unfinished ...>
[pid  5055] newfstatat(3, "",  <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5058] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5055] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(3,  <unfinished ...>
[pid  5060] getdents64(3,  <unfinished ...>
[pid  5058] getdents64(3,  <unfinished ...>
[pid  5056] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5055] getdents64(3,  <unfinished ...>
[pid  5056] getdents64(3,  <unfinished ...>
[pid  5060] <... getdents64 resumed>0x55555700d6f0 /* 2 entries */, 32768) = 48
[pid  5058] <... getdents64 resumed>0x55555700d6f0 /* 2 entries */, 32768) = 48
[pid  5056] <... getdents64 resumed>0x55555700d6f0 /* 2 entries */, 32768) = 48
[pid  5060] getdents64(3,  <unfinished ...>
[pid  5056] getdents64(3,  <unfinished ...>
[pid  5060] <... getdents64 resumed>0x55555700d6f0 /* 0 entries */, 32768) = 0
[pid  5056] <... getdents64 resumed>0x55555700d6f0 /* 0 entries */, 32768) = 0
[pid  5062] <... getdents64 resumed>0x55555700d6f0 /* 2 entries */, 32768) = 48
[pid  5060] close(3 <unfinished ...>
[pid  5058] getdents64(3,  <unfinished ...>
[pid  5056] close(3 <unfinished ...>
[pid  5055] <... getdents64 resumed>0x55555700d6f0 /* 2 entries */, 32768) = 48
[pid  5062] getdents64(3,  <unfinished ...>
[pid  5058] <... getdents64 resumed>0x55555700d6f0 /* 0 entries */, 32768) = 0
[pid  5055] getdents64(3,  <unfinished ...>
[pid  5062] <... getdents64 resumed>0x55555700d6f0 /* 0 entries */, 32768) = 0
[pid  5058] close(3 <unfinished ...>
[pid  5055] <... getdents64 resumed>0x55555700d6f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3 <unfinished ...>
[pid  5060] <... close resumed>)        = 0
[pid  5058] <... close resumed>)        = 0
[pid  5056] <... close resumed>)        = 0
[pid  5055] close(3 <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  5055] <... close resumed>)        = 0
syzkaller login: [   86.986591][    T8] cfg80211: failed to load regulatory.db
[pid  5057] <... fallocate resumed>)    = ?
[pid  5057] +++ killed by SIGKILL +++
[pid  5055] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5057, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=7852 /* 78.52 s */} ---
[pid  5055] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5081 attached
 <unfinished ...>
[pid  5081] set_robust_list(0x55555700c660, 24 <unfinished ...>
[pid  5055] <... clone resumed>, child_tidptr=0x55555700c650) = 5081
[pid  5081] <... set_robust_list resumed>) = 0
[pid  5081] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5081] setpgid(0, 0)               = 0
[pid  5081] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5081] write(3, "1000", 4)         = 4
[pid  5081] close(3)                    = 0
[pid  5081] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT) = 3
[pid  5081] dup(3)                      = 4
[pid  5081] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 <unfinished ...>
[pid  5055] kill(-5081, SIGKILL)        = 0
[pid  5055] kill(5081, SIGKILL)         = 0
[pid  5055] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5055] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5055] getdents64(3, 0x55555700d6f0 /* 2 entries */, 32768) = 48
[pid  5055] getdents64(3, 0x55555700d6f0 /* 0 entries */, 32768) = 0
[pid  5055] close(3)                    = 0
[pid  5061] <... fallocate resumed>)    = ?
[pid  5061] +++ killed by SIGKILL +++
[pid  5058] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5061, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=7989 /* 79.89 s */} ---
[pid  5058] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5088 attached
, child_tidptr=0x55555700c650) = 5088
[pid  5088] set_robust_list(0x55555700c660, 24) = 0
[pid  5088] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5088] setpgid(0, 0)               = 0
[pid  5088] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5088] write(3, "1000", 4)         = 4
[pid  5088] close(3)                    = 0
[pid  5088] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT) = 3
[pid  5088] dup(3)                      = 4
[pid  5088] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 <unfinished ...>
[pid  5058] kill(-5088, SIGKILL)        = 0
[pid  5058] kill(5088, SIGKILL)         = 0
[pid  5058] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5058] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5058] getdents64(3, 0x55555700d6f0 /* 2 entries */, 32768) = 48
[pid  5058] getdents64(3, 0x55555700d6f0 /* 0 entries */, 32768) = 0
[pid  5058] close(3)                    = 0
[  286.627659][   T29] INFO: task syz-executor810:5063 blocked for more than 143 seconds.
[  286.636461][   T29]       Not tainted 6.8.0-rc1-syzkaller-00169-gecb1b8288dc7 #0
[  286.644557][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  286.653780][   T29] task:syz-executor810 state:D stack:26800 pid:5063  tgid:5063  ppid:5060   flags:0x00004006
[  286.664491][   T29] Call Trace:
[  286.667866][   T29]  <TASK>
[  286.671253][   T29]  __schedule+0x177f/0x4960
[  286.676004][   T29]  ? release_firmware_map_entry+0x190/0x190
[  286.682439][   T29]  ? __lock_acquire+0x1fd0/0x1fd0
[  286.688078][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  286.694115][   T29]  ? print_irqtrace_events+0x220/0x220
[  286.700135][   T29]  ? _raw_spin_lock_irq+0xdf/0x120
[  286.705316][   T29]  ? schedule+0x8e/0x260
[  286.710158][   T29]  schedule+0x149/0x260
[  286.714377][   T29]  schedule_preempt_disabled+0x13/0x20
[  286.719956][   T29]  rwsem_down_write_slowpath+0xeea/0x13b0
[  286.725721][   T29]  ? rwsem_down_write_slowpath+0xa05/0x13b0
[  286.731727][   T29]  ? down_write_killable_nested+0x80/0x80
[  286.737661][   T29]  ? read_lock_is_recursive+0x20/0x20
[  286.743527][   T29]  __down_write_common+0x1aa/0x200
[  286.749177][   T29]  ? clear_nonspinnable+0x60/0x60
[  286.754719][   T29]  blkdev_fallocate+0x22a/0x570
[  286.760136][   T29]  vfs_fallocate+0x55c/0x6c0
[  286.765246][   T29]  __x64_sys_fallocate+0xbd/0x100
[  286.770782][   T29]  do_syscall_64+0xf5/0x230
[  286.775843][   T29]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[  286.782316][   T29] RIP: 0033:0x7f535790fb29
[  286.786783][   T29] RSP: 002b:00007ffdb0014788 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  286.795287][   T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f535790fb29
[  286.803394][   T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004
[  286.811954][   T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0
[  286.821004][   T29] R10: 0000100001002000 R11: 0000000000000246 R12: 0000000000000001
[  286.829604][   T29] R13: 00007ffdb00149a8 R14: 00007ffdb00147b0 R15: 00007ffdb00147a0
[  286.838145][   T29]  </TASK>
[  286.841663][   T29] INFO: task syz-executor810:5064 blocked for more than 143 seconds.
[  286.850224][   T29]       Not tainted 6.8.0-rc1-syzkaller-00169-gecb1b8288dc7 #0
[  286.858288][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  286.867513][   T29] task:syz-executor810 state:D stack:26864 pid:5064  tgid:5064  ppid:5062   flags:0x00004006
[  286.877790][   T29] Call Trace:
[  286.881114][   T29]  <TASK>
[  286.884088][   T29]  __schedule+0x177f/0x4960
[  286.888727][   T29]  ? release_firmware_map_entry+0x190/0x190
[  286.895115][   T29]  ? __lock_acquire+0x1fd0/0x1fd0
[  286.900677][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  286.907232][   T29]  ? print_irqtrace_events+0x220/0x220
[  286.913186][   T29]  ? _raw_spin_lock_irq+0xdf/0x120
[  286.918823][   T29]  ? schedule+0x8e/0x260
[  286.923123][   T29]  schedule+0x149/0x260
[  286.928085][   T29]  schedule_preempt_disabled+0x13/0x20
[  286.934041][   T29]  rwsem_down_write_slowpath+0xeea/0x13b0
[  286.940301][   T29]  ? rwsem_down_write_slowpath+0xa05/0x13b0
[  286.946267][   T29]  ? down_write_killable_nested+0x80/0x80
[  286.952100][   T29]  ? read_lock_is_recursive+0x20/0x20
[  286.957575][   T29]  __down_write_common+0x1aa/0x200
[  286.962747][   T29]  ? clear_nonspinnable+0x60/0x60
[  286.967874][   T29]  blkdev_fallocate+0x22a/0x570
[  286.973216][   T29]  vfs_fallocate+0x55c/0x6c0
[  286.978390][   T29]  __x64_sys_fallocate+0xbd/0x100
[  286.983929][   T29]  do_syscall_64+0xf5/0x230
[  286.988974][   T29]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[  286.995373][   T29] RIP: 0033:0x7f535790fb29
[  287.000325][   T29] RSP: 002b:00007ffdb0014788 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  287.009255][   T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f535790fb29
[  287.017784][   T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004
[  287.025807][   T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0
[  287.033890][   T29] R10: 0000100001002000 R11: 0000000000000246 R12: 0000000000000001
[  287.041952][   T29] R13: 00007ffdb00149a8 R14: 00007ffdb00147b0 R15: 00007ffdb00147a0
[  287.050056][   T29]  </TASK>
[  287.053562][   T29] 
[  287.053562][   T29] Showing all locks held in the system:
[  287.061809][   T29] 1 lock held by khungtaskd/29:
[  287.067166][   T29]  #0: ffffffff8d92ef20 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  287.077170][   T29] 2 locks held by klogd/4492:
[  287.082328][   T29] 2 locks held by getty/4807:
[  287.087524][   T29]  #0: ffff8880299c60a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  287.097868][   T29]  #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b4/0x1e10
[  287.108108][   T29] 1 lock held by syz-executor810/5059:
[  287.113664][   T29] 1 lock held by syz-executor810/5063:
[  287.119653][   T29]  #0: ffff88801b49d9c0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x22a/0x570
[  287.130910][   T29] 1 lock held by syz-executor810/5064:
[  287.136418][   T29]  #0: ffff88801b49d9c0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x22a/0x570
[  287.147196][   T29] 1 lock held by syz-executor810/5081:
[  287.152691][   T29]  #0: ffff88801b49d9c0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x22a/0x570
[  287.163518][   T29] 1 lock held by syz-executor810/5088:
[  287.169096][   T29]  #0: ffff88801b49d9c0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x22a/0x570
[  287.179881][   T29] 
[  287.182248][   T29] =============================================
[  287.182248][   T29] 
[  287.191257][   T29] NMI backtrace for cpu 1
[  287.195620][   T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc1-syzkaller-00169-gecb1b8288dc7 #0
[  287.205449][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[  287.215522][   T29] Call Trace:
[  287.218818][   T29]  <TASK>
[  287.221761][   T29]  dump_stack_lvl+0x1e7/0x2d0
[  287.226462][   T29]  ? preempt_schedule_thunk+0x1a/0x30
[  287.231916][   T29]  ? tcp_gro_dev_warn+0x260/0x260
[  287.236961][   T29]  ? panic+0x850/0x850
[  287.241058][   T29]  ? vprintk_emit+0x607/0x720
[  287.245757][   T29]  ? printk_sprint+0x480/0x480
[  287.250554][   T29]  nmi_cpu_backtrace+0x498/0x4d0
[  287.255551][   T29]  ? nmi_trigger_cpumask_backtrace+0x310/0x310
[  287.261730][   T29]  ? _printk+0xd5/0x120
[  287.265903][   T29]  ? panic+0x850/0x850
[  287.269986][   T29]  ? __wake_up_klogd+0xcc/0x100
[  287.274861][   T29]  ? panic+0x850/0x850
[  287.278957][   T29]  ? __rcu_read_unlock+0x98/0x100
[  287.284007][   T29]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  287.290128][   T29]  nmi_trigger_cpumask_backtrace+0x198/0x310
[  287.296139][   T29]  watchdog+0xfaf/0xff0
[  287.300326][   T29]  ? watchdog+0x1e9/0xff0
[  287.304687][   T29]  kthread+0x2d3/0x370
[  287.308784][   T29]  ? hungtask_pm_notify+0x90/0x90
[  287.313828][   T29]  ? kthread_blkcg+0xd0/0xd0
[  287.318436][   T29]  ret_from_fork+0x48/0x80
[  287.322890][   T29]  ? kthread_blkcg+0xd0/0xd0
[  287.327508][   T29]  ret_from_fork_asm+0x11/0x20
[  287.332365][   T29]  </TASK>
[  287.335606][   T29] Sending NMI from CPU 1 to CPUs 0:
[  287.340936][    C0] NMI backtrace for cpu 0
[  287.340949][    C0] CPU: 0 PID: 16 Comm: ksoftirqd/0 Not tainted 6.8.0-rc1-syzkaller-00169-gecb1b8288dc7 #0
[  287.340967][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[  287.340976][    C0] RIP: 0010:__sanitizer_cov_trace_pc+0x5c/0x60
[  287.341009][    C0] Code: d8 15 00 00 83 fa 02 75 21 48 8b 91 e0 15 00 00 48 8b 32 48 8d 7e 01 8b 89 dc 15 00 00 48 39 cf 73 08 48 89 3a 48 89 44 f2 08 <c3> 0f 1f 00 f3 0f 1e fa 4c 8b 04 24 65 48 8b 15 f0 c2 74 7e 65 8b
[  287.341023][    C0] RSP: 0018:ffffc900001575a0 EFLAGS: 00000246
[  287.341044][    C0] RAX: ffffffff813e2b6c RBX: 0000000080000100 RCX: ffff8880156dd940
[  287.341057][    C0] RDX: 0000000080000100 RSI: 0000000080000100 RDI: 0000000000000000
[  287.341071][    C0] RBP: ffffc90000157680 R08: ffffffff813e2b5f R09: ffffffff813e2660
[  287.341084][    C0] R10: 0000000000000003 R11: ffff8880156dd940 R12: ffffc90000157ee8
[  287.341095][    C0] R13: dffffc0000000000 R14: ffffc90000150000 R15: ffffc90000157ef0
[  287.341107][    C0] FS:  0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[  287.341121][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  287.341132][    C0] CR2: 00007f5357937320 CR3: 000000000d732000 CR4: 00000000003506f0
[  287.341146][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  287.341156][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  287.341166][    C0] Call Trace:
[  287.341172][    C0]  <NMI>
[  287.341178][    C0]  ? nmi_cpu_backtrace+0x3be/0x4d0
[  287.341205][    C0]  ? read_lock_is_recursive+0x20/0x20
[  287.341229][    C0]  ? nmi_trigger_cpumask_backtrace+0x310/0x310
[  287.341254][    C0]  ? nmi_handle+0x2a/0x570
[  287.341285][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x10
[  287.341308][    C0]  ? nmi_handle+0x14c/0x570
[  287.341329][    C0]  ? nmi_handle+0x2a/0x570
[  287.341350][    C0]  ? __sanitizer_cov_trace_pc+0x5c/0x60
[  287.341375][    C0]  ? default_do_nmi+0x63/0x150
[  287.341401][    C0]  ? exc_nmi+0x121/0x210
[  287.341425][    C0]  ? end_repeat_nmi+0xf/0x2a
[  287.341448][    C0]  ? unwind_next_frame+0x1970/0x29e0
[  287.341473][    C0]  ? unwind_next_frame+0x1e6f/0x29e0
[  287.341497][    C0]  ? unwind_next_frame+0x1e7c/0x29e0
[  287.341523][    C0]  ? __sanitizer_cov_trace_pc+0x5c/0x60
[  287.341550][    C0]  ? __sanitizer_cov_trace_pc+0x5c/0x60
[  287.341576][    C0]  ? __sanitizer_cov_trace_pc+0x5c/0x60
[  287.341602][    C0]  </NMI>
[  287.341606][    C0]  <TASK>
[  287.341611][    C0]  unwind_next_frame+0x1e7c/0x29e0
[  287.341642][    C0]  ? smpboot_thread_fn+0x530/0x9f0
[  287.341659][    C0]  ? smpboot_thread_fn+0x530/0x9f0
[  287.341674][    C0]  ? stack_trace_save+0x1c0/0x1c0
[  287.341698][    C0]  arch_stack_walk+0x146/0x1a0
[  287.341718][    C0]  ? kthread+0x2d3/0x370
[  287.341737][    C0]  stack_trace_save+0x117/0x1c0
[  287.341762][    C0]  ? stack_trace_snprint+0xf0/0xf0
[  287.341793][    C0]  save_stack+0xfa/0x1e0
[  287.341837][    C0]  ? __lock_acquire+0x1345/0x1fd0
[  287.341858][    C0]  ? __reset_page_owner+0x2d0/0x2d0
[  287.341877][    C0]  ? free_unref_page_prepare+0x959/0xa80
[  287.341897][    C0]  ? free_unref_page+0x37/0x3f0
[  287.341915][    C0]  ? rcu_core+0xad8/0x17c0
[  287.341933][    C0]  ? __do_softirq+0x2b8/0x939
[  287.341954][    C0]  ? run_ksoftirqd+0xc5/0x120
[  287.341970][    C0]  ? smpboot_thread_fn+0x530/0x9f0
[  287.341990][    C0]  ? page_ext_get+0x20/0x2a0
[  287.342017][    C0]  __reset_page_owner+0x44/0x2d0
[  287.342046][    C0]  free_unref_page_prepare+0x959/0xa80
[  287.342071][    C0]  free_unref_page+0x37/0x3f0
[  287.342092][    C0]  ? check_object+0x380/0x380
[  287.342109][    C0]  ? rcu_core+0xa61/0x17c0
[  287.342128][    C0]  rcu_core+0xad8/0x17c0
[  287.342155][    C0]  ? rcu_cpu_kthread_park+0x90/0x90
[  287.342175][    C0]  ? rcu_qs+0xf1/0x190
[  287.342199][    C0]  ? rcu_softirq_qs+0x2f0/0x2f0
[  287.342229][    C0]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  287.342252][    C0]  ? print_irqtrace_events+0x220/0x220
[  287.342279][    C0]  __do_softirq+0x2b8/0x939
[  287.342302][    C0]  ? run_ksoftirqd+0xc5/0x120
[  287.342322][    C0]  ? __lock_text_end+0xa/0xa
[  287.342340][    C0]  ? preempt_schedule_common+0x83/0xc0
[  287.342372][    C0]  run_ksoftirqd+0xc5/0x120
[  287.342389][    C0]  ? ksoftirqd_should_run+0x20/0x20
[  287.342406][    C0]  ? preempt_schedule_thunk+0x1a/0x30
[  287.342431][    C0]  ? smpboot_thread_fn+0x4eb/0x9f0
[  287.342445][    C0]  ? smpboot_thread_fn+0x640/0x9f0
[  287.342458][    C0]  ? ksoftirqd_should_run+0x20/0x20
[  287.342476][    C0]  smpboot_thread_fn+0x530/0x9f0
[  287.342491][    C0]  ? smpboot_thread_fn+0x4e/0x9f0
[  287.342511][    C0]  kthread+0x2d3/0x370
[  287.342526][    C0]  ? smpboot_unregister_percpu_thread+0x2a0/0x2a0
[  287.342554][    C0]  ? kthread_blkcg+0xd0/0xd0
[  287.342571][    C0]  ret_from_fork+0x48/0x80
[  287.342590][    C0]  ? kthread_blkcg+0xd0/0xd0
[  287.342606][    C0]  ret_from_fork_asm+0x11/0x20
[  287.342637][    C0]  </TASK>
[  287.342643][    C0] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.707 msecs
[  287.343510][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[  287.828081][   T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc1-syzkaller-00169-gecb1b8288dc7 #0
[  287.837897][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[  287.847965][   T29] Call Trace:
[  287.851256][   T29]  <TASK>
[  287.854195][   T29]  dump_stack_lvl+0x1e7/0x2d0
[  287.858902][   T29]  ? tcp_gro_dev_warn+0x260/0x260
[  287.863943][   T29]  ? panic+0x850/0x850
[  287.868028][   T29]  ? vscnprintf+0x5d/0x80
[  287.872373][   T29]  panic+0x349/0x850
[  287.876281][   T29]  ? nmi_trigger_cpumask_backtrace+0x244/0x310
[  287.882455][   T29]  ? __memcpy_flushcache+0x2b0/0x2b0
[  287.887759][   T29]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  287.893852][   T29]  ? preempt_schedule_thunk+0x1a/0x30
[  287.899249][   T29]  ? nmi_trigger_cpumask_backtrace+0x244/0x310
[  287.905426][   T29]  ? nmi_trigger_cpumask_backtrace+0x2c7/0x310
[  287.911636][   T29]  ? nmi_trigger_cpumask_backtrace+0x2cc/0x310
[  287.917815][   T29]  watchdog+0xfee/0xff0
[  287.922013][   T29]  ? watchdog+0x1e9/0xff0
[  287.926357][   T29]  kthread+0x2d3/0x370
[  287.930447][   T29]  ? hungtask_pm_notify+0x90/0x90
[  287.935485][   T29]  ? kthread_blkcg+0xd0/0xd0
[  287.940088][   T29]  ret_from_fork+0x48/0x80
[  287.944520][   T29]  ? kthread_blkcg+0xd0/0xd0
[  287.949122][   T29]  ret_from_fork_asm+0x11/0x20
[  287.953913][   T29]  </TASK>
[  287.957196][   T29] Kernel Offset: disabled
[  287.961524][   T29] Rebooting in 86400 seconds..