./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2802323113 <...> Warning: Permanently added '10.128.0.188' (ECDSA) to the list of known hosts. execve("./syz-executor2802323113", ["./syz-executor2802323113"], 0x7ffe08e00d20 /* 10 vars */) = 0 brk(NULL) = 0x555557014000 brk(0x555557014c40) = 0x555557014c40 arch_prctl(ARCH_SET_FS, 0x555557014300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor2802323113", 4096) = 28 brk(0x555557035c40) = 0x555557035c40 brk(0x555557036000) = 0x555557036000 mprotect(0x7f62159e4000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5003 attached , child_tidptr=0x5555570145d0) = 5003 [pid 5002] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5003] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5004 attached [pid 5004] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5004] setpgid(0, 0) = 0 [pid 5004] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 5005 attached [pid 5002] <... clone resumed>, child_tidptr=0x5555570145d0) = 5005 [pid 5003] <... clone resumed>, child_tidptr=0x5555570145d0) = 5004 [pid 5002] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5004] <... openat resumed>) = 3 [pid 5004] write(3, "1000", 4) = 4 [pid 5004] close(3) = 0 [pid 5004] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_APPEND|O_LARGEFILE) = 3 [pid 5004] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 1099511627778 [pid 5002] <... clone resumed>, child_tidptr=0x5555570145d0) = 5006 ./strace-static-x86_64: Process 5006 attached [pid 5002] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5006] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5002] <... clone resumed>, child_tidptr=0x5555570145d0) = 5007 [pid 5002] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5005] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5006] <... clone resumed>, child_tidptr=0x5555570145d0) = 5008 ./strace-static-x86_64: Process 5007 attached [pid 5007] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5002] <... clone resumed>, child_tidptr=0x5555570145d0) = 5010 [pid 5002] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570145d0) = 5012 [pid 5007] <... clone resumed>, child_tidptr=0x5555570145d0) = 5009 [pid 5005] <... clone resumed>, child_tidptr=0x5555570145d0) = 5011 ./strace-static-x86_64: Process 5009 attached ./strace-static-x86_64: Process 5011 attached ./strace-static-x86_64: Process 5010 attached ./strace-static-x86_64: Process 5008 attached [pid 5011] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5008] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5011] <... prctl resumed>) = 0 [pid 5010] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5008] <... prctl resumed>) = 0 [pid 5011] setpgid(0, 0 [pid 5008] setpgid(0, 0 [pid 5011] <... setpgid resumed>) = 0 [pid 5008] <... setpgid resumed>) = 0 [pid 5011] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5008] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5011] <... openat resumed>) = 3 [pid 5011] write(3, "1000", 4 [pid 5008] <... openat resumed>) = 3 [pid 5011] <... write resumed>) = 4 [pid 5008] write(3, "1000", 4 [pid 5011] close(3 [pid 5008] <... write resumed>) = 4 [pid 5011] <... close resumed>) = 0 [pid 5008] close(3 [pid 5011] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_APPEND|O_LARGEFILE [pid 5009] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5008] <... close resumed>) = 0 [pid 5011] <... openat resumed>) = 3 [pid 5009] <... prctl resumed>) = 0 [pid 5008] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_APPEND|O_LARGEFILE [pid 5011] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 1099511627778 [pid 5010] <... clone resumed>, child_tidptr=0x5555570145d0) = 5013 [pid 5009] setpgid(0, 0 [pid 5008] <... openat resumed>) = 3 [pid 5009] <... setpgid resumed>) = 0 [pid 5008] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 1099511627778 [pid 5009] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 5013 attached ) = 3 [pid 5013] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5009] write(3, "1000", 4 [pid 5013] <... prctl resumed>) = 0 [pid 5009] <... write resumed>) = 4 [pid 5013] setpgid(0, 0 [pid 5009] close(3 [pid 5013] <... setpgid resumed>) = 0 [pid 5009] <... close resumed>) = 0 ./strace-static-x86_64: Process 5012 attached [pid 5013] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5009] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_APPEND|O_LARGEFILE [pid 5013] <... openat resumed>) = 3 [pid 5012] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5009] <... openat resumed>) = 3 [pid 5013] write(3, "1000", 4 [pid 5009] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 1099511627778 [pid 5013] <... write resumed>) = 4 [pid 5013] close(3) = 0 [pid 5012] <... clone resumed>, child_tidptr=0x5555570145d0) = 5014 [pid 5013] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_APPEND|O_LARGEFILE) = 3 [pid 5013] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 1099511627778./strace-static-x86_64: Process 5014 attached [pid 5014] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5014] setpgid(0, 0) = 0 [pid 5014] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5014] write(3, "1000", 4) = 4 [pid 5014] close(3) = 0 [pid 5014] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_APPEND|O_LARGEFILE) = 3 [pid 5014] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 1099511627778 [pid 5003] kill(-5004, SIGKILL) = 0 [pid 5003] kill(5004, SIGKILL) = 0 [pid 5006] kill(-5008, SIGKILL) = 0 [pid 5006] kill(5008, SIGKILL) = 0 [pid 5007] kill(-5009, SIGKILL [pid 5005] kill(-5011, SIGKILL [pid 5007] <... kill resumed>) = 0 [pid 5005] <... kill resumed>) = 0 [pid 5007] kill(5009, SIGKILL [pid 5005] kill(5011, SIGKILL [pid 5007] <... kill resumed>) = 0 [pid 5005] <... kill resumed>) = 0 [pid 5010] kill(-5013, SIGKILL) = 0 [pid 5010] kill(5013, SIGKILL) = 0 [pid 5012] kill(-5014, SIGKILL) = 0 [pid 5012] kill(5014, SIGKILL) = 0 [pid 5003] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5006] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5006] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 5006] getdents64(3, [pid 5003] <... openat resumed>) = 3 [pid 5006] <... getdents64 resumed>0x555557015620 /* 2 entries */, 32768) = 48 [pid 5006] getdents64(3, 0x555557015620 /* 0 entries */, 32768) = 0 [pid 5006] close(3) = 0 [pid 5003] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 5003] getdents64(3, 0x555557015620 /* 2 entries */, 32768) = 48 [pid 5003] getdents64(3, 0x555557015620 /* 0 entries */, 32768) = 0 [pid 5003] close(3 [pid 5007] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5007] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 5007] getdents64(3, 0x555557015620 /* 2 entries */, 32768) = 48 [pid 5007] getdents64(3, 0x555557015620 /* 0 entries */, 32768) = 0 [pid 5007] close(3) = 0 [pid 5003] <... close resumed>) = 0 [pid 5005] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5005] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 5005] getdents64(3, 0x555557015620 /* 2 entries */, 32768) = 48 [pid 5005] getdents64(3, 0x555557015620 /* 0 entries */, 32768) = 0 [pid 5005] close(3) = 0 [pid 5010] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5010] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 5010] getdents64(3, 0x555557015620 /* 2 entries */, 32768) = 48 [pid 5010] getdents64(3, 0x555557015620 /* 0 entries */, 32768) = 0 [pid 5010] close(3) = 0 [pid 5012] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5012] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 5012] getdents64(3, 0x555557015620 /* 2 entries */, 32768) = 48 [pid 5012] getdents64(3, 0x555557015620 /* 0 entries */, 32768) = 0 [pid 5012] close(3) = 0 [ 76.572024][ T2556] cfg80211: failed to load regulatory.db [pid 5004] <... fallocate resumed>) = ? [pid 5004] +++ killed by SIGKILL +++ [pid 5003] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5004, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=5332 /* 53.32 s */} --- [pid 5003] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5031 attached [pid 5031] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5031] setpgid(0, 0) = 0 [pid 5031] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5003] <... clone resumed>, child_tidptr=0x5555570145d0) = 5031 [pid 5031] <... openat resumed>) = 3 [pid 5031] write(3, "1000", 4) = 4 [pid 5031] close(3) = 0 [pid 5031] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_APPEND|O_LARGEFILE) = 3 [pid 5031] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 1099511627778 [pid 5003] kill(-5031, SIGKILL) = 0 [pid 5003] kill(5031, SIGKILL) = 0 [pid 5003] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5003] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 5003] getdents64(3, 0x555557015620 /* 2 entries */, 32768) = 48 [pid 5003] getdents64(3, 0x555557015620 /* 0 entries */, 32768) = 0 [pid 5003] close(3) = 0 [pid 5011] <... fallocate resumed>) = ? [pid 5011] +++ killed by SIGKILL +++ [pid 5005] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5011, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=5191 /* 51.91 s */} --- [pid 5005] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570145d0) = 5032 ./strace-static-x86_64: Process 5032 attached [pid 5032] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5032] setpgid(0, 0) = 0 [pid 5032] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5032] write(3, "1000", 4) = 4 [pid 5032] close(3) = 0 [pid 5032] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_APPEND|O_LARGEFILE) = 3 [pid 5032] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 1099511627778 [pid 5005] kill(-5032, SIGKILL) = 0 [pid 5005] kill(5032, SIGKILL) = 0 [pid 5005] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5005] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 5005] getdents64(3, 0x555557015620 /* 2 entries */, 32768) = 48 [pid 5005] getdents64(3, 0x555557015620 /* 0 entries */, 32768) = 0 [pid 5005] close(3) = 0 [pid 5008] <... fallocate resumed>) = ? [pid 5008] +++ killed by SIGKILL +++ [pid 5006] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5008, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=5234 /* 52.34 s */} --- [pid 5006] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570145d0) = 5039 ./strace-static-x86_64: Process 5039 attached [pid 5039] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5039] setpgid(0, 0) = 0 [pid 5039] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5039] write(3, "1000", 4) = 4 [pid 5039] close(3) = 0 [pid 5039] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_APPEND|O_LARGEFILE) = 3 [pid 5039] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 1099511627778 [pid 5006] kill(-5039, SIGKILL) = 0 [pid 5006] kill(5039, SIGKILL) = 0 [pid 5006] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5006] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 5006] getdents64(3, 0x555557015620 /* 2 entries */, 32768) = 48 [pid 5006] getdents64(3, 0x555557015620 /* 0 entries */, 32768) = 0 [pid 5006] close(3) = 0 [ 286.461922][ T28] INFO: task syz-executor280:5013 blocked for more than 143 seconds. [ 286.470118][ T28] Not tainted 6.3.0-syzkaller-12049-g58390c8ce1bd #0 [ 286.477813][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.487069][ T28] task:syz-executor280 state:D stack:28240 pid:5013 ppid:5010 flags:0x00004004 [ 286.496348][ T28] Call Trace: [ 286.500017][ T28] [ 286.503428][ T28] __schedule+0xc9a/0x5880 [ 286.508012][ T28] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 286.514388][ T28] ? print_usage_bug.part.0+0x660/0x660 [ 286.520199][ T28] ? io_schedule_timeout+0x150/0x150 [ 286.526061][ T28] ? rwsem_down_write_slowpath+0x3b8/0x1220 [ 286.532437][ T28] schedule+0xde/0x1a0 [ 286.536912][ T28] schedule_preempt_disabled+0x13/0x20 [ 286.542853][ T28] rwsem_down_write_slowpath+0x3e2/0x1220 [ 286.549015][ T28] ? down_timeout+0x90/0x90 [ 286.554110][ T28] ? lock_sync+0x190/0x190 [ 286.558967][ T28] down_write+0x1d2/0x200 [ 286.563775][ T28] ? rwsem_down_write_slowpath+0x1220/0x1220 [ 286.569802][ T28] blkdev_fallocate+0x1e8/0x420 [ 286.575131][ T28] ? blkdev_writepage+0x30/0x30 [ 286.580377][ T28] vfs_fallocate+0x48b/0xe40 [ 286.585513][ T28] __x64_sys_fallocate+0xd3/0x140 [ 286.590957][ T28] do_syscall_64+0x39/0xb0 [ 286.595914][ T28] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 286.602352][ T28] RIP: 0033:0x7f6215977e09 [ 286.607159][ T28] RSP: 002b:00007fff7c2f1a18 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 286.616013][ T28] RAX: ffffffffffffffda RBX: 00000000000f4240 RCX: 00007f6215977e09 [ 286.624076][ T28] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000003 [ 286.632131][ T28] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000001 [ 286.640525][ T28] R10: 0000010000000002 R11: 0000000000000246 R12: 00007f621593b5e0 [ 286.649040][ T28] R13: 0000000000000000 R14: 00007fff7c2f1a40 R15: 00007fff7c2f1a30 [ 286.657510][ T28] [ 286.660868][ T28] INFO: task syz-executor280:5014 blocked for more than 143 seconds. [ 286.669440][ T28] Not tainted 6.3.0-syzkaller-12049-g58390c8ce1bd #0 [ 286.677089][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.686210][ T28] task:syz-executor280 state:D stack:28240 pid:5014 ppid:5012 flags:0x00004004 [ 286.695841][ T28] Call Trace: [ 286.699143][ T28] [ 286.702170][ T28] __schedule+0xc9a/0x5880 [ 286.706617][ T28] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 286.713051][ T28] ? print_usage_bug.part.0+0x660/0x660 [ 286.719029][ T28] ? io_schedule_timeout+0x150/0x150 [ 286.724895][ T28] ? rwsem_down_write_slowpath+0x3b8/0x1220 [ 286.731217][ T28] schedule+0xde/0x1a0 [ 286.735743][ T28] schedule_preempt_disabled+0x13/0x20 [ 286.741595][ T28] rwsem_down_write_slowpath+0x3e2/0x1220 [ 286.747779][ T28] ? down_timeout+0x90/0x90 [ 286.752740][ T28] ? lock_sync+0x190/0x190 [ 286.757218][ T28] down_write+0x1d2/0x200 [ 286.761577][ T28] ? rwsem_down_write_slowpath+0x1220/0x1220 [ 286.768041][ T28] blkdev_fallocate+0x1e8/0x420 [ 286.773325][ T28] ? blkdev_writepage+0x30/0x30 [ 286.778598][ T28] vfs_fallocate+0x48b/0xe40 [ 286.783670][ T28] __x64_sys_fallocate+0xd3/0x140 [ 286.789120][ T28] do_syscall_64+0x39/0xb0 [ 286.793986][ T28] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 286.800305][ T28] RIP: 0033:0x7f6215977e09 [ 286.805160][ T28] RSP: 002b:00007fff7c2f1a18 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 286.813645][ T28] RAX: ffffffffffffffda RBX: 00000000000f4240 RCX: 00007f6215977e09 [ 286.822165][ T28] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000003 [ 286.830548][ T28] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000001 [ 286.838896][ T28] R10: 0000010000000002 R11: 0000000000000246 R12: 00007f621593b5e0 [ 286.847331][ T28] R13: 0000000000000000 R14: 00007fff7c2f1a40 R15: 00007fff7c2f1a30 [ 286.855784][ T28] [ 286.859224][ T28] INFO: task syz-executor280:5031 blocked for more than 143 seconds. [ 286.867727][ T28] Not tainted 6.3.0-syzkaller-12049-g58390c8ce1bd #0 [ 286.875348][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.884100][ T28] task:syz-executor280 state:D stack:26880 pid:5031 ppid:5003 flags:0x00004004 [ 286.893381][ T28] Call Trace: [ 286.897018][ T28] [ 286.899974][ T28] __schedule+0xc9a/0x5880 [ 286.904853][ T28] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 286.911236][ T28] ? print_usage_bug.part.0+0x660/0x660 [ 286.917237][ T28] ? io_schedule_timeout+0x150/0x150 [ 286.922985][ T28] ? rwsem_down_write_slowpath+0x3b8/0x1220 [ 286.929302][ T28] schedule+0xde/0x1a0 [ 286.933926][ T28] schedule_preempt_disabled+0x13/0x20 [ 286.939788][ T28] rwsem_down_write_slowpath+0x3e2/0x1220 [ 286.945708][ T28] ? down_timeout+0x90/0x90 [ 286.950254][ T28] ? lock_sync+0x190/0x190 [ 286.955202][ T28] down_write+0x1d2/0x200 [ 286.959911][ T28] ? rwsem_down_write_slowpath+0x1220/0x1220 [ 286.966360][ T28] blkdev_fallocate+0x1e8/0x420 [ 286.971650][ T28] ? blkdev_writepage+0x30/0x30 [ 286.976939][ T28] vfs_fallocate+0x48b/0xe40 [ 286.982668][ T28] __x64_sys_fallocate+0xd3/0x140 [ 286.989882][ T28] do_syscall_64+0x39/0xb0 [ 286.998969][ T28] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 287.005366][ T28] RIP: 0033:0x7f6215977e09 [ 287.009811][ T28] RSP: 002b:00007fff7c2f1a18 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.025534][ T28] RAX: ffffffffffffffda RBX: 00000000000f4240 RCX: 00007f6215977e09 [ 287.034649][ T28] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000003 [ 287.042923][ T28] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000001 [ 287.051745][ T28] R10: 0000010000000002 R11: 0000000000000246 R12: 000000000000d8cf [ 287.060082][ T28] R13: 00007fff7c2f1a2c R14: 00007fff7c2f1a40 R15: 00007fff7c2f1a30 [ 287.068550][ T28] [ 287.072000][ T28] [ 287.072000][ T28] Showing all locks held in the system: [ 287.080109][ T28] 1 lock held by rcu_tasks_kthre/13: [ 287.085920][ T28] #0: ffffffff8c799630 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x31/0xd80 [ 287.096798][ T28] 1 lock held by rcu_tasks_trace/14: [ 287.102511][ T28] #0: ffffffff8c799330 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x31/0xd80 [ 287.113617][ T28] 1 lock held by khungtaskd/28: [ 287.125902][ T28] #0: ffffffff8c79a240 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x340 [ 287.136033][ T28] 2 locks held by getty/4755: [ 287.141569][ T28] #0: ffff888028bc4098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x26/0x80 [ 287.151778][ T28] #1: ffffc900015802f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xef4/0x13e0 [ 287.163041][ T28] 1 lock held by syz-executor280/5009: [ 287.169423][ T28] #0: ffff888148c988b0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e8/0x420 [ 287.180176][ T28] 1 lock held by syz-executor280/5013: [ 287.190124][ T28] #0: ffff888148c988b0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e8/0x420 [ 287.201933][ T28] 1 lock held by syz-executor280/5014: [ 287.208358][ T28] #0: ffff888148c988b0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e8/0x420 [ 287.219115][ T28] 1 lock held by syz-executor280/5031: [ 287.229033][ T28] #0: ffff888148c988b0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e8/0x420 [ 287.241101][ T28] 1 lock held by syz-executor280/5032: [ 287.249596][ T28] #0: ffff888148c988b0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e8/0x420 [ 287.261772][ T28] 1 lock held by syz-executor280/5039: [ 287.267259][ T28] #0: ffff888148c988b0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e8/0x420 [ 287.278119][ T28] [ 287.281360][ T28] ============================================= [ 287.281360][ T28] [ 287.290707][ T28] NMI backtrace for cpu 1 [ 287.295055][ T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.3.0-syzkaller-12049-g58390c8ce1bd #0 [ 287.304534][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023 [ 287.314598][ T28] Call Trace: [ 287.317867][ T28] [ 287.320784][ T28] dump_stack_lvl+0xd9/0x150 [ 287.325474][ T28] nmi_cpu_backtrace+0x29c/0x350 [ 287.330413][ T28] ? lapic_can_unplug_cpu+0xa0/0xa0 [ 287.335615][ T28] nmi_trigger_cpumask_backtrace+0x2a4/0x300 [ 287.341594][ T28] watchdog+0xe16/0x1090 [ 287.345866][ T28] ? proc_dohung_task_timeout_secs+0x80/0x80 [ 287.351883][ T28] kthread+0x344/0x440 [ 287.355980][ T28] ? kthread_complete_and_exit+0x40/0x40 [ 287.361635][ T28] ret_from_fork+0x1f/0x30 [ 287.366122][ T28] [ 287.369210][ T28] Sending NMI from CPU 1 to CPUs 0: [ 287.374483][ C0] NMI backtrace for cpu 0 [ 287.374493][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.3.0-syzkaller-12049-g58390c8ce1bd #0 [ 287.374511][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023 [ 287.374520][ C0] RIP: 0010:tsc_verify_tsc_adjust+0x79/0x2e0 [ 287.374568][ C0] Code: e0 21 72 09 5b 5d 41 5c 41 5d 41 5e c3 4a 8d 3c e5 00 1a 13 8c 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 <0f> 85 e4 01 00 00 4e 8b 24 e5 00 1a 13 8c e8 34 d5 f8 ff 85 c0 75 [ 287.374585][ C0] RSP: 0018:ffffffff8c407de0 EFLAGS: 00000046 [ 287.374599][ C0] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff81604059 [ 287.374611][ C0] RDX: 1ffffffff1826340 RSI: 0000000000000001 RDI: ffffffff8c131a00 [ 287.374622][ C0] RBP: 0000000000028200 R08: 0000000000000000 R09: ffffffff8e7a8ad7 [ 287.374633][ C0] R10: fffffbfff1cf515a R11: 0000000000000000 R12: 0000000000000000 [ 287.374644][ C0] R13: ffffffff8e7a8ad0 R14: 0000000000000000 R15: 0000000000000000 [ 287.374655][ C0] FS: 0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 287.374673][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 287.374685][ C0] CR2: 00007f62159e8130 CR3: 000000000c572000 CR4: 00000000003506f0 [ 287.374696][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 287.374706][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 287.374716][ C0] Call Trace: [ 287.374721][ C0] [ 287.374728][ C0] arch_cpu_idle_enter+0xb/0x10 [ 287.374753][ C0] do_idle+0xfc/0x3c0 [ 287.374778][ C0] ? arch_cpu_idle_exit+0x30/0x30 [ 287.374806][ C0] cpu_startup_entry+0x18/0x20 [ 287.374830][ C0] rest_init+0x16f/0x2b0 [ 287.374853][ C0] ? regulator_has_full_constraints+0x9/0x20 [ 287.374879][ C0] ? trace_init_perf_perm_irq_work_exit+0x20/0x20 [ 287.374951][ C0] arch_call_rest_init+0x13/0x30 [ 287.374971][ C0] start_kernel+0x3b6/0x490 [ 287.374991][ C0] x86_64_start_reservations+0x18/0x30 [ 287.375017][ C0] x86_64_start_kernel+0xb3/0xc0 [ 287.375041][ C0] secondary_startup_64_no_verify+0xf4/0xfb [ 287.375072][ C0] [ 287.375796][ T28] Kernel panic - not syncing: hung_task: blocked tasks [ 287.375807][ T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.3.0-syzkaller-12049-g58390c8ce1bd #0 [ 287.375831][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023 [ 287.375849][ T28] Call Trace: [ 287.375855][ T28] [ 287.375863][ T28] dump_stack_lvl+0xd9/0x150 [ 287.375903][ T28] panic+0x686/0x730 [ 287.375935][ T28] ? panic_smp_self_stop+0xa0/0xa0 [ 287.375971][ T28] ? lapic_can_unplug_cpu+0xa0/0xa0 [ 287.375994][ T28] ? preempt_schedule_thunk+0x1a/0x20 [ 287.376030][ T28] ? watchdog+0xbe8/0x1090 [ 287.376066][ T28] watchdog+0xbf9/0x1090 [ 287.376099][ T28] ? proc_dohung_task_timeout_secs+0x80/0x80 [ 287.376133][ T28] kthread+0x344/0x440 [ 287.376160][ T28] ? kthread_complete_and_exit+0x40/0x40 [ 287.376192][ T28] ret_from_fork+0x1f/0x30 [ 287.376236][ T28] [ 287.380148][ T28] Kernel Offset: disabled [ 287.672232][ T28] Rebooting in 86400 seconds..