./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1963019112

<...>
forked to background, child pid 4739
no interfaces have a carrier
[   34.243605][ T4740] 8021q: adding VLAN 0 to HW filter on device bond0
[   34.255397][ T4740] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.10.1' (ED25519) to the list of known hosts.
execve("./syz-executor1963019112", ["./syz-executor1963019112"], 0x7ffd3b284740 /* 10 vars */) = 0
brk(NULL)                               = 0x555575ead000
brk(0x555575eadd00)                     = 0x555575eadd00
arch_prctl(ARCH_SET_FS, 0x555575ead380) = 0
set_tid_address(0x555575ead650)         = 5070
set_robust_list(0x555575ead660, 24)     = 0
rseq(0x555575eadca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor1963019112", 4096) = 28
getrandom("\x57\xaa\x4b\x17\x7c\x1f\xb4\xbd", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x555575eadd00
brk(0x555575eced00)                     = 0x555575eced00
brk(0x555575ecf000)                     = 0x555575ecf000
mprotect(0x7f527caf1000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = -1 ENXIO (No such device or address)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5071 attached
, child_tidptr=0x555575ead650) = 5071
[pid  5071] set_robust_list(0x555575ead660, 24) = 0
[pid  5071] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5071] setpgid(0, 0)               = 0
[pid  5071] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5071] write(3, "1000", 4)         = 4
[pid  5071] close(3)                    = 0
[pid  5071] memfd_create("syzkaller", 0) = 3
[pid  5071] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f5274600000
[pid  5071] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5071] munmap(0x7f5274600000, 138412032) = 0
[pid  5071] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5071] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5071] close(3)                    = 0
[pid  5071] close(4)                    = 0
[pid  5071] mkdir("./file0", 0777)      = 0
syzkaller login: [   56.548366][ T5071] loop0: detected capacity change from 0 to 32768
[   56.629494][ T5071] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=data_checksum=crc64,str_hash=crc64,nojournal_transaction_names,nocow
[   56.643544][ T5071] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[   56.663023][ T5071] bcachefs (loop0): alloc_read... done
[   56.668814][ T5071] bcachefs (loop0): stripes_read... done
[pid  5071] mount("/dev/loop0", "./file0", "bcachefs", 0, "str_hash=crc64,data_checksum=crc64,metadata_checksum=crc32c,nocow,") = 0
[pid  5071] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5071] chdir("./file0")            = 0
[pid  5071] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5071] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5071] close(4)                    = 0
[   56.674526][ T5071] bcachefs (loop0): snapshots_read... done
[   56.682938][ T5071] bcachefs (loop0): journal_replay... done
[   56.688892][ T5071] bcachefs (loop0): resume_logged_ops... done
[   56.695219][ T5071] bcachefs (loop0): going read-write
[   56.703714][ T5071] bcachefs (loop0): done starting filesystem
[pid  5071] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT|O_SYNC|O_DIRECT, 000) = 4
[   56.748128][   T28] audit: type=1800 audit(1715164669.805:2): pid=5071 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor196" name="file1" dev="loop0" ino=1610612736 res=0 errno=0
[pid  5071] pwrite64(4, "\x1f\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 142606336, 134217728 <unfinished ...>
[pid  5070] kill(-5071, SIGKILL)        = 0
[pid  5070] kill(5071, SIGKILL)         = 0
[pid  5070] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5070] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5070] getdents64(3, 0x555575eae6f0 /* 2 entries */, 32768) = 48
[pid  5070] getdents64(3, 0x555575eae6f0 /* 0 entries */, 32768) = 0
[pid  5070] close(3)                    = 0
[   76.848536][   T44] cfg80211: failed to load regulatory.db
[  286.766629][   T29] INFO: task syz-executor196:5071 blocked for more than 143 seconds.
[  286.774805][   T29]       Not tainted 6.9.0-rc7-syzkaller-00012-gdccb07f2914c #0
[  286.782440][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  286.791156][   T29] task:syz-executor196 state:D stack:16344 pid:5071  tgid:5071  ppid:5070   flags:0x00004006
[  286.801437][   T29] Call Trace:
[  286.804732][   T29]  <TASK>
[  286.807770][   T29]  __schedule+0x1796/0x4a00
[  286.812501][   T29]  ? __pfx___schedule+0x10/0x10
[  286.817439][   T29]  ? __pfx_lock_release+0x10/0x10
[  286.822544][   T29]  ? __pfx_lock_release+0x10/0x10
[  286.827617][   T29]  ? schedule+0x90/0x320
[  286.831906][   T29]  schedule+0x14b/0x320
[  286.836058][   T29]  __closure_sync+0x259/0x2f0
[  286.840860][   T29]  ? __closure_sync+0x149/0x2f0
[  286.845723][   T29]  ? __pfx___closure_sync+0x10/0x10
[  286.850974][   T29]  __bch2_write+0x5458/0x5bd0
[  286.855738][   T29]  ? __pfx___bch2_write+0x10/0x10
[  286.860848][   T29]  ? ttwu_queue_wakelist+0x286/0x3b0
[  286.866182][   T29]  ? __pfx_lock_release+0x10/0x10
[  286.871448][   T29]  ? do_raw_spin_unlock+0x13c/0x8b0
[  286.876733][   T29]  bch2_write+0x947/0x1590
[  286.881171][   T29]  ? __pfx_bch2_write+0x10/0x10
[  286.886006][   T29]  ? bio_uninit+0x2b0/0x3b0
[  286.890612][   T29]  ? iov_iter_revert+0x1be/0x390
[  286.895656][   T29]  ? bch2_direct_write+0x1160/0x3050
[  286.901072][   T29]  bch2_direct_write+0x1a52/0x3050
[  286.906243][   T29]  ? __pfx_bch2_direct_write+0x10/0x10
[  286.912111][   T29]  bch2_write_iter+0x206/0x2840
[  286.917090][   T29]  ? __pfx_lock_acquire+0x10/0x10
[  286.922132][   T29]  ? __pfx_bch2_write_iter+0x10/0x10
[  286.927457][   T29]  ? rcu_read_lock_any_held+0xb7/0x160
[  286.932929][   T29]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  286.938894][   T29]  vfs_write+0xa84/0xcb0
[  286.943280][   T29]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  286.949310][   T29]  ? __pfx_vfs_write+0x10/0x10
[  286.954105][   T29]  ? _raw_spin_unlock_irq+0x2e/0x50
[  286.959364][   T29]  ? ptrace_notify+0x279/0x380
[  286.964192][   T29]  __x64_sys_pwrite64+0x1aa/0x230
[  286.969272][   T29]  ? __pfx___x64_sys_pwrite64+0x10/0x10
[  286.974845][   T29]  ? exc_page_fault+0x577/0x8a0
[  286.979871][   T29]  do_syscall_64+0xf5/0x240
[  286.984433][   T29]  ? clear_bhb_loop+0x35/0x90
[  286.989228][   T29]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  286.995138][   T29] RIP: 0033:0x7f527ca6ca99
[  286.999623][   T29] RSP: 002b:00007ffc4beea1d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  287.008124][   T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f527ca6ca99
[  287.016097][   T29] RDX: 0000000008800000 RSI: 0000000020000000 RDI: 0000000000000004
[  287.024114][   T29] RBP: 00007f527caf15f0 R08: 0000555575eae4c0 R09: 0000555575eae4c0
[  287.032151][   T29] R10: 0000000008000000 R11: 0000000000000246 R12: 00007ffc4beea200
[  287.040197][   T29] R13: 00007ffc4beea428 R14: 431bde82d7b634db R15: 00007f527cab503b
[  287.048249][   T29]  </TASK>
[  287.051291][   T29] 
[  287.051291][   T29] Showing all locks held in the system:
[  287.059049][   T29] 1 lock held by khungtaskd/29:
[  287.063907][   T29]  #0: ffffffff8e334da0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  287.073872][   T29] 1 lock held by klogd/4515:
[  287.078524][   T29]  #0: ffff8880b943e658 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  287.088506][   T29] 2 locks held by getty/4828:
[  287.093186][   T29]  #0: ffff88802aca30a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  287.103077][   T29]  #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10
[  287.113241][   T29] 2 locks held by syz-executor196/5071:
[  287.118889][   T29]  #0: ffff888072d10420 (sb_writers#9){.+.+}-{0:0}, at: vfs_write+0x233/0xcb0
[  287.127966][   T29]  #1: ffff8880776d8150 (&sb->s_type->i_mutex_key#14){+.+.}-{3:3}, at: bch2_direct_write+0x243/0x3050
[  287.139026][   T29] 
[  287.141358][   T29] =============================================
[  287.141358][   T29] 
[  287.149802][   T29] NMI backtrace for cpu 1
[  287.154132][   T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.9.0-rc7-syzkaller-00012-gdccb07f2914c #0
[  287.163942][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[  287.174000][   T29] Call Trace:
[  287.177271][   T29]  <TASK>
[  287.180187][   T29]  dump_stack_lvl+0x241/0x360
[  287.184855][   T29]  ? __pfx_dump_stack_lvl+0x10/0x10
[  287.190044][   T29]  ? __pfx__printk+0x10/0x10
[  287.194650][   T29]  ? vprintk_emit+0x631/0x770
[  287.199318][   T29]  ? __pfx_vprintk_emit+0x10/0x10
[  287.204332][   T29]  nmi_cpu_backtrace+0x49c/0x4d0
[  287.209337][   T29]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  287.214789][   T29]  ? _printk+0xd5/0x120
[  287.218946][   T29]  ? __pfx__printk+0x10/0x10
[  287.223535][   T29]  ? __wake_up_klogd+0xcc/0x110
[  287.228391][   T29]  ? __pfx__printk+0x10/0x10
[  287.232977][   T29]  ? wq_watchdog_touch+0x72/0x110
[  287.238005][   T29]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  287.244023][   T29]  nmi_trigger_cpumask_backtrace+0x198/0x320
[  287.250007][   T29]  watchdog+0xfde/0x1020
[  287.254264][   T29]  ? watchdog+0x1ea/0x1020
[  287.258702][   T29]  ? __pfx_watchdog+0x10/0x10
[  287.263401][   T29]  kthread+0x2f0/0x390
[  287.267484][   T29]  ? __pfx_watchdog+0x10/0x10
[  287.272153][   T29]  ? __pfx_kthread+0x10/0x10
[  287.276740][   T29]  ret_from_fork+0x4b/0x80
[  287.281240][   T29]  ? __pfx_kthread+0x10/0x10
[  287.285825][   T29]  ret_from_fork_asm+0x1a/0x30
[  287.290618][   T29]  </TASK>
[  287.293744][   T29] Sending NMI from CPU 1 to CPUs 0:
[  287.299004][    C0] NMI backtrace for cpu 0
[  287.299015][    C0] CPU: 0 PID: 50 Comm: kworker/u8:3 Not tainted 6.9.0-rc7-syzkaller-00012-gdccb07f2914c #0
[  287.299031][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[  287.299040][    C0] Workqueue: events_unbound toggle_allocation_gate
[  287.299077][    C0] RIP: 0010:lock_release+0x5/0x9f0
[  287.299096][    C0] Code: ff ff 48 c7 c7 b0 fe a7 8f e8 47 b9 84 00 e9 26 f6 ff ff 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 55 <48> 89 e5 41 57 41 56 41 55 41 54 53 48 83 e4 e0 48 81 ec 00 01 00
[  287.299108][    C0] RSP: 0018:ffffc90000ba7630 EFLAGS: 00000087
[  287.299120][    C0] RAX: 0000000000000000 RBX: ffff8880162b6458 RCX: ffff88801517bc00
[  287.299131][    C0] RDX: dffffc0000000000 RSI: ffffffff8169bd38 RDI: ffffffff8e334da0
[  287.299142][    C0] RBP: ffffc90000ba77c0 R08: ffffffff92efe507 R09: 1ffffffff25dfca0
[  287.299153][    C0] R10: dffffc0000000000 R11: fffffbfff25dfca1 R12: 00000000fffffa99
[  287.299164][    C0] R13: dffffc0000000000 R14: ffffffff8169bd38 R15: ffff8880b943e640
[  287.299175][    C0] FS:  0000000000000000(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000
[  287.299188][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  287.299198][    C0] CR2: 00007f9441072580 CR3: 000000000e134000 CR4: 00000000003506f0
[  287.299211][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  287.299227][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  287.299236][    C0] Call Trace:
[  287.299244][    C0]  <NMI>
[  287.299251][    C0]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  287.299269][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  287.299285][    C0]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  287.299301][    C0]  ? nmi_handle+0x2a/0x5a0
[  287.299334][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  287.299351][    C0]  ? nmi_handle+0x14f/0x5a0
[  287.299365][    C0]  ? nmi_handle+0x2a/0x5a0
[  287.299381][    C0]  ? lock_release+0x5/0x9f0
[  287.299399][    C0]  ? default_do_nmi+0x63/0x160
[  287.299416][    C0]  ? exc_nmi+0x123/0x1f0
[  287.299432][    C0]  ? end_repeat_nmi+0xf/0x53
[  287.299449][    C0]  ? newidle_balance+0x2a8/0x1080
[  287.299471][    C0]  ? newidle_balance+0x2a8/0x1080
[  287.299487][    C0]  ? lock_release+0x5/0x9f0
[  287.299502][    C0]  ? lock_release+0x5/0x9f0
[  287.299517][    C0]  ? lock_release+0x5/0x9f0
[  287.299532][    C0]  </NMI>
[  287.299537][    C0]  <TASK>
[  287.299542][    C0]  newidle_balance+0x461/0x1080
[  287.299564][    C0]  ? newidle_balance+0x2a8/0x1080
[  287.299585][    C0]  ? __pfx_newidle_balance+0x10/0x10
[  287.299608][    C0]  pick_next_task_fair+0x27a/0xde0
[  287.299629][    C0]  __pick_next_task+0xb0/0x2c0
[  287.299651][    C0]  __schedule+0x729/0x4a00
[  287.299683][    C0]  ? __pfx___schedule+0x10/0x10
[  287.299702][    C0]  ? schedule+0x90/0x320
[  287.299721][    C0]  ? __pfx_lock_release+0x10/0x10
[  287.299734][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  287.299757][    C0]  ? kthread_data+0x52/0xd0
[  287.299773][    C0]  ? wq_worker_sleeping+0x66/0x240
[  287.299789][    C0]  ? process_scheduled_works+0x91b/0x17c0
[  287.299803][    C0]  ? schedule+0x90/0x320
[  287.299821][    C0]  schedule+0x14b/0x320
[  287.299839][    C0]  ? process_scheduled_works+0x91b/0x17c0
[  287.299854][    C0]  toggle_allocation_gate+0x16a/0x250
[  287.299872][    C0]  ? __pfx_toggle_allocation_gate+0x10/0x10
[  287.299889][    C0]  ? __pfx_autoremove_wake_function+0x10/0x10
[  287.299911][    C0]  process_scheduled_works+0xa10/0x17c0
[  287.299940][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  287.299959][    C0]  ? assign_work+0x364/0x3d0
[  287.299977][    C0]  worker_thread+0x86d/0xd70
[  287.299997][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  287.300017][    C0]  ? __kthread_parkme+0x169/0x1d0
[  287.300035][    C0]  ? __pfx_worker_thread+0x10/0x10
[  287.300050][    C0]  kthread+0x2f0/0x390
[  287.300067][    C0]  ? __pfx_worker_thread+0x10/0x10
[  287.300082][    C0]  ? __pfx_kthread+0x10/0x10
[  287.300099][    C0]  ret_from_fork+0x4b/0x80
[  287.300117][    C0]  ? __pfx_kthread+0x10/0x10
[  287.300134][    C0]  ret_from_fork_asm+0x1a/0x30
[  287.300161][    C0]  </TASK>
[  287.300168][    C0] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.164 msecs
[  287.301046][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[  287.301058][   T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.9.0-rc7-syzkaller-00012-gdccb07f2914c #0
[  287.301075][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[  287.301086][   T29] Call Trace:
[  287.301093][   T29]  <TASK>
[  287.301101][   T29]  dump_stack_lvl+0x241/0x360
[  287.301130][   T29]  ? __pfx_dump_stack_lvl+0x10/0x10
[  287.301155][   T29]  ? __pfx__printk+0x10/0x10
[  287.301183][   T29]  ? vscnprintf+0x5d/0x90
[  287.301203][   T29]  panic+0x349/0x860
[  287.301233][   T29]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  287.301254][   T29]  ? __pfx_panic+0x10/0x10
[  287.301273][   T29]  ? tick_nohz_tick_stopped+0x82/0xb0
[  287.301307][   T29]  ? __irq_work_queue_local+0x137/0x410
[  287.301338][   T29]  ? preempt_schedule_thunk+0x1a/0x30
[  287.301357][   T29]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  287.301375][   T29]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[  287.301396][   T29]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[  287.301418][   T29]  watchdog+0x101d/0x1020
[  287.301437][   T29]  ? watchdog+0x1ea/0x1020
[  287.301458][   T29]  ? __pfx_watchdog+0x10/0x10
[  287.301474][   T29]  kthread+0x2f0/0x390
[  287.301494][   T29]  ? __pfx_watchdog+0x10/0x10
[  287.301510][   T29]  ? __pfx_kthread+0x10/0x10
[  287.301531][   T29]  ret_from_fork+0x4b/0x80
[  287.301554][   T29]  ? __pfx_kthread+0x10/0x10
[  287.301574][   T29]  ret_from_fork_asm+0x1a/0x30
[  287.301609][   T29]  </TASK>
[  287.304921][   T29] Kernel Offset: disabled
[  287.848981][   T29] Rebooting in 86400 seconds..