./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1088051838 <...> Warning: Permanently added '10.128.1.158' (ED25519) to the list of known hosts. execve("./syz-executor1088051838", ["./syz-executor1088051838"], 0x7ffe3d4d9860 /* 10 vars */) = 0 brk(NULL) = 0x55556dffb000 brk(0x55556dffbd00) = 0x55556dffbd00 arch_prctl(ARCH_SET_FS, 0x55556dffb380) = 0 set_tid_address(0x55556dffb650) = 5070 set_robust_list(0x55556dffb660, 24) = 0 rseq(0x55556dffbca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1088051838", 4096) = 28 getrandom("\x5d\xdc\x91\x51\x52\xba\x3d\x88", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55556dffbd00 brk(0x55556e01cd00) = 0x55556e01cd00 brk(0x55556e01d000) = 0x55556e01d000 mprotect(0x7fd793372000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 unshare(CLONE_NEWPID) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5071 attached , child_tidptr=0x55556dffb650) = 5071 [pid 5071] set_robust_list(0x55556dffb660, 24) = 0 [pid 5071] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy) [pid 5071] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5071] setsid() = 1 [pid 5071] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0 [pid 5071] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0 [pid 5071] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0 [pid 5071] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0 [pid 5071] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0 [pid 5071] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0 [pid 5071] unshare(CLONE_NEWNS) = 0 [pid 5071] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0 [pid 5071] unshare(CLONE_NEWIPC) = 0 [pid 5071] unshare(CLONE_NEWCGROUP) = 0 [pid 5071] unshare(CLONE_NEWUTS) = 0 [pid 5071] unshare(CLONE_SYSVSEM) = 0 [pid 5071] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5071] write(3, "16777216", 8) = 8 [pid 5071] close(3) = 0 [pid 5071] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3 [pid 5071] write(3, "536870912", 9) = 9 [pid 5071] close(3) = 0 [pid 5071] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5071] write(3, "1024", 4) = 4 [pid 5071] close(3) = 0 [pid 5071] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5071] write(3, "8192", 4) = 4 [pid 5071] close(3) = 0 [pid 5071] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5071] write(3, "1024", 4) = 4 [pid 5071] close(3) = 0 [pid 5071] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3 [pid 5071] write(3, "1024", 4) = 4 [pid 5071] close(3) = 0 [pid 5071] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3 [pid 5071] write(3, "1024 1048576 500 1024", 21) = 21 [pid 5071] close(3) = 0 [pid 5071] getpid() = 1 [pid 5071] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< [pid 5071] kill(-2, SIGKILL) = 0 [pid 5071] kill(2, SIGKILL) = 0 [pid 5071] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5071] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5071] getdents64(3, 0x55556dffc6f0 /* 2 entries */, 32768) = 48 [pid 5071] getdents64(3, 0x55556dffc6f0 /* 0 entries */, 32768) = 0 [pid 5071] close(3) = 0 [ 189.052386][ C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 189.059468][ C1] rcu: 0-...!: (1 ticks this GP) idle=cb2c/1/0x4000000000000000 softirq=6738/6738 fqs=0 [ 189.069881][ C1] rcu: (detected by 1, t=10502 jiffies, g=8333, q=276 ncpus=2) [ 189.077542][ C1] Sending NMI from CPU 1 to CPUs 0: [ 189.082785][ C0] NMI backtrace for cpu 0 [ 189.082797][ C0] CPU: 0 PID: 5081 Comm: syz-executor108 Not tainted 6.8.0-syzkaller-05271-gf99c5f563c17 #0 [ 189.082815][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 189.082824][ C0] RIP: 0010:check_preemption_disabled+0x19/0x120 [ 189.082880][ C0] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 41 57 41 56 41 54 53 48 83 ec 10 65 48 8b 04 25 28 00 00 00 48 89 44 24 08 <65> 8b 1d bc cd 93 74 65 8b 05 b1 cd 93 74 a9 ff ff ff 7f 74 26 65 [ 189.082894][ C0] RSP: 0018:ffffc900000079e8 EFLAGS: 00000086 [ 189.082909][ C0] RAX: 1cf3174e7e8b4d00 RBX: 0000000000000046 RCX: ffffffff8171c080 [ 189.082922][ C0] RDX: 0000000000000000 RSI: ffffffff8baacf00 RDI: ffffffff8bfec660 [ 189.082933][ C0] RBP: ffffc90000007b50 R08: ffffffff8f86ae6f R09: 1ffffffff1f0d5cd [ 189.082946][ C0] R10: dffffc0000000000 R11: fffffbfff1f0d5ce R12: 1ffff92000000f50 [ 189.082958][ C0] R13: ffffffff84ac41f4 R14: ffffc90000007ad0 R15: dffffc0000000000 [ 189.082971][ C0] FS: 000055556dffb380(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000 [ 189.082986][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 189.082997][ C0] CR2: 00007fd7933473b0 CR3: 000000001e2d0000 CR4: 00000000003506f0 [ 189.083012][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 189.083021][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 189.083032][ C0] Call Trace: [ 189.083040][ C0] [ 189.083047][ C0] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 189.083072][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 189.083092][ C0] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 189.083117][ C0] ? nmi_handle+0x2a/0x580 [ 189.083144][ C0] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 189.083165][ C0] ? nmi_handle+0x14f/0x580 [ 189.083182][ C0] ? nmi_handle+0x2a/0x580 [ 189.083200][ C0] ? check_preemption_disabled+0x19/0x120 [ 189.083222][ C0] ? default_do_nmi+0x63/0x160 [ 189.083248][ C0] ? exc_nmi+0x123/0x1f0 [ 189.083273][ C0] ? end_repeat_nmi+0xf/0x53 [ 189.083300][ C0] ? debug_object_activate+0x3e4/0x510 [ 189.083320][ C0] ? lock_release+0xb0/0x9d0 [ 189.083337][ C0] ? check_preemption_disabled+0x19/0x120 [ 189.083360][ C0] ? check_preemption_disabled+0x19/0x120 [ 189.083384][ C0] ? check_preemption_disabled+0x19/0x120 [ 189.083406][ C0] [ 189.083411][ C0] [ 189.083418][ C0] lock_release+0x188/0x9d0 [ 189.083439][ C0] ? debug_object_activate+0x3e4/0x510 [ 189.083455][ C0] ? do_raw_spin_lock+0x14f/0x370 [ 189.083478][ C0] ? __pfx_lock_release+0x10/0x10 [ 189.083499][ C0] ? __pfx_debug_objects_fill_pool+0x10/0x10 [ 189.083520][ C0] _raw_spin_unlock_irqrestore+0x79/0x140 [ 189.083542][ C0] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 189.083569][ C0] debug_object_activate+0x3e4/0x510 [ 189.083589][ C0] ? __pfx_debug_object_activate+0x10/0x10 [ 189.083604][ C0] ? advance_sched+0xa02/0xca0 [ 189.083642][ C0] ? _raw_spin_lock_irq+0xdf/0x120 [ 189.083661][ C0] ? __pfx__raw_spin_lock_irq+0x10/0x10 [ 189.083683][ C0] enqueue_hrtimer+0x30/0x3a0 [ 189.083707][ C0] __hrtimer_run_queues+0x6b5/0xd00 [ 189.083740][ C0] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 189.083761][ C0] ? ktime_get_update_offsets_now+0x411/0x430 [ 189.083792][ C0] hrtimer_interrupt+0x396/0x990 [ 189.083826][ C0] __sysvec_apic_timer_interrupt+0x107/0x3a0 [ 189.083856][ C0] sysvec_apic_timer_interrupt+0xa1/0xc0 [ 189.083876][ C0] [ 189.083881][ C0] [ 189.083886][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 189.083912][ C0] RIP: 0010:_raw_spin_unlock_irqrestore+0xd8/0x140 [ 189.083933][ C0] Code: 9c 8f 44 24 20 42 80 3c 23 00 74 08 4c 89 f7 e8 3e 8e 7d f6 f6 44 24 21 02 75 52 41 f7 c7 00 02 00 00 74 01 fb bf 01 00 00 00 e3 43 ea f5 65 8b 05 34 26 89 74 85 c0 74 43 48 c7 04 24 0e 36 [ 189.083946][ C0] RSP: 0018:ffffc90003baeb40 EFLAGS: 00000206 [ 189.083959][ C0] RAX: 1cf3174e7e8b4d00 RBX: 1ffff92000775d6c RCX: ffffffff81720c2a [ 189.083972][ C0] RDX: dffffc0000000000 RSI: ffffffff8baac220 RDI: 0000000000000001 [ 189.083983][ C0] RBP: ffffc90003baebd0 R08: ffffffff92cc75c7 R09: 1ffffffff2598eb8 [ 189.083996][ C0] R10: dffffc0000000000 R11: fffffbfff2598eb9 R12: dffffc0000000000 [ 189.084008][ C0] R13: 1ffff92000775d68 R14: ffffc90003baeb60 R15: 0000000000000246 [ 189.084025][ C0] ? mark_lock+0x9a/0x350 [ 189.084048][ C0] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 189.084075][ C0] taprio_change+0x339b/0x42d0 [ 189.084107][ C0] ? __pfx_taprio_change+0x10/0x10 [ 189.084129][ C0] ? __pfx_do_sync_core+0x10/0x10 [ 189.084150][ C0] ? __pfx_do_sync_core+0x10/0x10 [ 189.084169][ C0] ? on_each_cpu_cond_mask+0x62/0x80 [ 189.084206][ C0] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 189.084233][ C0] taprio_init+0x9da/0xc80 [ 189.084253][ C0] ? ____sys_sendmsg+0x525/0x7d0 [ 189.084274][ C0] ? __sys_sendmsg+0x2b0/0x3a0 [ 189.084294][ C0] ? do_syscall_64+0xfb/0x240 [ 189.084322][ C0] ? __pfx_taprio_init+0x10/0x10 [ 189.084345][ C0] ? lockdep_rtnl_is_held+0x26/0x40 [ 189.084362][ C0] ? qdisc_lookup+0x350/0x6b0 [ 189.084389][ C0] ? __pfx_taprio_init+0x10/0x10 [ 189.084409][ C0] qdisc_create+0x9d4/0x1190 [ 189.084433][ C0] ? __pfx_qdisc_create+0x10/0x10 [ 189.084456][ C0] tc_modify_qdisc+0xa26/0x1e40 [ 189.084483][ C0] ? __pfx_tc_modify_qdisc+0x10/0x10 [ 189.084516][ C0] ? __pfx_tc_modify_qdisc+0x10/0x10 [ 189.084533][ C0] rtnetlink_rcv_msg+0x89b/0x10d0 [ 189.084560][ C0] ? rtnetlink_rcv_msg+0x208/0x10d0 [ 189.084585][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 189.084604][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 189.084639][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 189.084658][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 189.084678][ C0] ? __local_bh_enable_ip+0x168/0x200 [ 189.084695][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 189.084715][ C0] ? __local_bh_enable_ip+0x168/0x200 [ 189.084731][ C0] ? dev_hard_start_xmit+0x724/0x790 [ 189.084752][ C0] ? __dev_queue_xmit+0x2c4/0x3b10 [ 189.084774][ C0] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 189.084794][ C0] ? __dev_queue_xmit+0x2c4/0x3b10 [ 189.084817][ C0] ? __dev_queue_xmit+0x15fd/0x3b10 [ 189.084846][ C0] ? __dev_queue_xmit+0x2c4/0x3b10 [ 189.084873][ C0] ? ref_tracker_free+0x643/0x7e0 [ 189.084895][ C0] netlink_rcv_skb+0x1e3/0x430 [ 189.084918][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 189.084945][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 189.084979][ C0] ? netlink_deliver_tap+0x2e/0x1b0 [ 189.085001][ C0] netlink_unicast+0x7ea/0x980 [ 189.085025][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 189.085042][ C0] ? __virt_addr_valid+0x44e/0x520 [ 189.085069][ C0] ? __phys_addr_symbol+0x2f/0x70 [ 189.085094][ C0] ? __check_object_size+0x4bc/0xa00 [ 189.085120][ C0] ? bpf_lsm_netlink_send+0x9/0x10 [ 189.085139][ C0] netlink_sendmsg+0x8e1/0xcb0 [ 189.085168][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 189.085190][ C0] ? __import_iovec+0x536/0x820 [ 189.085210][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 189.085230][ C0] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 189.085246][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 189.085272][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 189.085294][ C0] __sock_sendmsg+0x221/0x270 [ 189.085312][ C0] ____sys_sendmsg+0x525/0x7d0 [ 189.085339][ C0] ? __pfx_____sys_sendmsg+0x10/0x10 [ 189.085385][ C0] ? do_raw_spin_lock+0x14f/0x370 [ 189.085414][ C0] __sys_sendmsg+0x2b0/0x3a0 [ 189.085437][ C0] ? __pfx___sys_sendmsg+0x10/0x10 [ 189.085466][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 189.085491][ C0] ? _raw_spin_unlock_irq+0x2e/0x50 [ 189.085510][ C0] ? ptrace_notify+0x279/0x380 [ 189.085543][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 189.085561][ C0] ? do_syscall_64+0x10a/0x240 [ 189.085583][ C0] ? syscall_trace_enter+0x5f/0x150 [ 189.085604][ C0] do_syscall_64+0xfb/0x240 [ 189.085633][ C0] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 189.085658][ C0] RIP: 0033:0x7fd7932fa3e9 [ 189.085682][ C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 d1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 189.085695][ C0] RSP: 002b:00007ffd32133168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 189.085712][ C0] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fd7932fa3e9 [ 189.085724][ C0] RDX: 0000000000000000 RSI: 00000000200007c0 RDI: 0000000000000004 [ 189.085733][ C0] RBP: 00000000000f4240 R08: 0000000000000000 R09: 0000000100000000 [ 189.085743][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd321331c0 [ 189.085754][ C0] R13: 0000000000000001 R14: 00007ffd321331c0 R15: 0000000000000003 [ 189.085773][ C0] [ 189.085781][ C0] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 2.995 msecs [ 189.086784][ C1] rcu: rcu_preempt kthread timer wakeup didn't happen for 10501 jiffies! g8333 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 [ 189.951571][ C1] rcu: Possible timer handling issue on cpu=0 timer-softirq=6550 [ 189.959393][ C1] rcu: rcu_preempt kthread starved for 10502 jiffies! g8333 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=0 [ 189.970695][ C1] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 189.980707][ C1] rcu: RCU grace-period kthread stack dump: [ 189.986619][ C1] task:rcu_preempt state:I stack:25040 pid:16 tgid:16 ppid:2 flags:0x00004000 [ 189.996823][ C1] Call Trace: [ 190.000120][ C1] [ 190.003084][ C1] __schedule+0x17d3/0x4a20 [ 190.007654][ C1] ? __pfx___schedule+0x10/0x10 [ 190.012538][ C1] ? __pfx_lock_release+0x10/0x10 [ 190.017585][ C1] ? __asan_memset+0x23/0x50 [ 190.022206][ C1] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 190.028057][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 190.034411][ C1] ? schedule+0x90/0x320 [ 190.038684][ C1] schedule+0x14b/0x320 [ 190.042876][ C1] schedule_timeout+0x1be/0x310 [ 190.047755][ C1] ? __pfx_schedule_timeout+0x10/0x10 [ 190.053158][ C1] ? __pfx_process_timeout+0x10/0x10 [ 190.058475][ C1] ? prepare_to_swait_event+0x32e/0x350 [ 190.064066][ C1] rcu_gp_fqs_loop+0x2df/0x1370 [ 190.068963][ C1] ? __pfx_rcu_gp_init+0x10/0x10 [ 190.073937][ C1] ? _raw_spin_unlock_irqrestore+0x8f/0x140 [ 190.079857][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 190.085090][ C1] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 190.090417][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 190.096346][ C1] ? finish_swait+0xd4/0x1e0 [ 190.104740][ C1] rcu_gp_kthread+0xa7/0x3b0 [ 190.109391][ C1] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 190.114652][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 190.120596][ C1] ? __kthread_parkme+0x169/0x1d0 [ 190.125658][ C1] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 190.130892][ C1] kthread+0x2f0/0x390 [ 190.134993][ C1] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 190.140223][ C1] ? __pfx_kthread+0x10/0x10 [ 190.144845][ C1] ret_from_fork+0x4b/0x80 [ 190.149298][ C1] ? __pfx_kthread+0x10/0x10 [ 190.153919][ C1] ret_from_fork_asm+0x1a/0x30 [ 190.158740][ C1]