./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1953933730 <...> Warning: Permanently added '10.128.10.20' (ED25519) to the list of known hosts. execve("./syz-executor1953933730", ["./syz-executor1953933730"], 0x7ffc0a3efe90 /* 10 vars */) = 0 brk(NULL) = 0x5555570a8000 brk(0x5555570a8d00) = 0x5555570a8d00 arch_prctl(ARCH_SET_FS, 0x5555570a8380) = 0 set_tid_address(0x5555570a8650) = 5070 set_robust_list(0x5555570a8660, 24) = 0 rseq(0x5555570a8ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1953933730", 4096) = 28 getrandom("\x3c\x86\x6b\x55\x2b\xbf\x77\xed", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555570a8d00 brk(0x5555570c9d00) = 0x5555570c9d00 brk(0x5555570ca000) = 0x5555570ca000 mprotect(0x7f798731a000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555570a8650) = 5071 ./strace-static-x86_64: Process 5071 attached [pid 5070] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5071] set_robust_list(0x5555570a8660, 24) = 0 ./strace-static-x86_64: Process 5072 attached [pid 5071] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5070] <... clone resumed>, child_tidptr=0x5555570a8650) = 5072 [pid 5072] set_robust_list(0x5555570a8660, 24./strace-static-x86_64: Process 5073 attached [pid 5070] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5072] <... set_robust_list resumed>) = 0 [pid 5073] set_robust_list(0x5555570a8660, 24 [pid 5072] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5071] <... clone resumed>, child_tidptr=0x5555570a8650) = 5073 [pid 5073] <... set_robust_list resumed>) = 0 ./strace-static-x86_64: Process 5074 attached [pid 5073] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 ./strace-static-x86_64: Process 5075 attached [pid 5070] <... clone resumed>, child_tidptr=0x5555570a8650) = 5074 [pid 5074] set_robust_list(0x5555570a8660, 24 [pid 5073] setpgid(0, 0 [pid 5070] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5075] set_robust_list(0x5555570a8660, 24 [pid 5074] <... set_robust_list resumed>) = 0 [pid 5073] <... setpgid resumed>) = 0 [pid 5072] <... clone resumed>, child_tidptr=0x5555570a8650) = 5075 [pid 5075] <... set_robust_list resumed>) = 0 [pid 5074] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5073] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 5077 attached ./strace-static-x86_64: Process 5076 attached [pid 5075] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5073] <... openat resumed>) = 3 [pid 5070] <... clone resumed>, child_tidptr=0x5555570a8650) = 5077 [pid 5073] write(3, "1000", 4 [pid 5075] <... prctl resumed>) = 0 [pid 5073] <... write resumed>) = 4 [pid 5070] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5077] set_robust_list(0x5555570a8660, 24 [pid 5076] set_robust_list(0x5555570a8660, 24 [pid 5075] setpgid(0, 0 [pid 5074] <... clone resumed>, child_tidptr=0x5555570a8650) = 5076 [pid 5073] close(3 [pid 5077] <... set_robust_list resumed>) = 0 [pid 5077] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5078 attached [pid 5076] <... set_robust_list resumed>) = 0 [pid 5075] <... setpgid resumed>) = 0 [pid 5073] <... close resumed>) = 0 ./strace-static-x86_64: Process 5079 attached [pid 5070] <... clone resumed>, child_tidptr=0x5555570a8650) = 5078 [pid 5078] set_robust_list(0x5555570a8660, 24 [pid 5076] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5079] set_robust_list(0x5555570a8660, 24 [pid 5077] <... clone resumed>, child_tidptr=0x5555570a8650) = 5079 [pid 5076] <... prctl resumed>) = 0 [pid 5075] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5079] <... set_robust_list resumed>) = 0 [pid 5076] setpgid(0, 0 [pid 5078] <... set_robust_list resumed>) = 0 [pid 5073] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT [pid 5079] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5078] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5079] <... prctl resumed>) = 0 [pid 5079] setpgid(0, 0 [pid 5075] <... openat resumed>) = 3 [pid 5076] <... setpgid resumed>) = 0 [pid 5079] <... setpgid resumed>) = 0 [pid 5079] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5076] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5079] write(3, "1000", 4./strace-static-x86_64: Process 5080 attached [pid 5076] <... openat resumed>) = 3 [pid 5075] write(3, "1000", 4 [pid 5073] <... openat resumed>) = 3 [pid 5078] <... clone resumed>, child_tidptr=0x5555570a8650) = 5080 [pid 5080] set_robust_list(0x5555570a8660, 24 [pid 5079] <... write resumed>) = 4 [pid 5076] write(3, "1000", 4 [pid 5075] <... write resumed>) = 4 [pid 5073] dup(3 [pid 5080] <... set_robust_list resumed>) = 0 [pid 5079] close(3 [pid 5076] <... write resumed>) = 4 [pid 5075] close(3 [pid 5073] <... dup resumed>) = 4 [pid 5080] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5079] <... close resumed>) = 0 [pid 5076] close(3 [pid 5075] <... close resumed>) = 0 [pid 5073] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 [pid 5080] <... prctl resumed>) = 0 [pid 5079] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT [pid 5076] <... close resumed>) = 0 [pid 5075] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT [pid 5080] setpgid(0, 0) = 0 [pid 5079] <... openat resumed>) = 3 [pid 5076] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT [pid 5080] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5079] dup(3 [pid 5076] <... openat resumed>) = 3 [pid 5075] <... openat resumed>) = 3 [pid 5076] dup(3 [pid 5079] <... dup resumed>) = 4 [pid 5075] dup(3 [pid 5076] <... dup resumed>) = 4 [pid 5080] <... openat resumed>) = 3 [pid 5079] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 [pid 5076] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 [pid 5075] <... dup resumed>) = 4 [pid 5080] write(3, "1000", 4) = 4 [pid 5075] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 [pid 5080] close(3) = 0 [pid 5080] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT) = 3 [pid 5080] dup(3) = 4 [pid 5080] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 [pid 5071] kill(-5073, SIGKILL) = 0 [pid 5071] kill(5073, SIGKILL) = 0 [pid 5072] kill(-5075, SIGKILL) = 0 [pid 5072] kill(5075, SIGKILL) = 0 [pid 5074] kill(-5076, SIGKILL) = 0 [pid 5074] kill(5076, SIGKILL) = 0 [pid 5077] kill(-5079, SIGKILL) = 0 [pid 5077] kill(5079, SIGKILL) = 0 [pid 5078] kill(-5080, SIGKILL) = 0 [pid 5078] kill(5080, SIGKILL) = 0 [pid 5072] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5078] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5071] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5078] <... openat resumed>) = 3 [pid 5071] newfstatat(3, "", [pid 5078] newfstatat(3, "", [pid 5077] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5071] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5078] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5077] <... openat resumed>) = 3 [pid 5071] getdents64(3, [pid 5077] newfstatat(3, "", [pid 5078] getdents64(3, [pid 5072] <... openat resumed>) = 3 [pid 5077] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5072] newfstatat(3, "", [pid 5077] getdents64(3, [pid 5074] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5072] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5078] <... getdents64 resumed>0x5555570a96f0 /* 2 entries */, 32768) = 48 [pid 5071] <... getdents64 resumed>0x5555570a96f0 /* 2 entries */, 32768) = 48 [pid 5078] getdents64(3, [pid 5077] <... getdents64 resumed>0x5555570a96f0 /* 2 entries */, 32768) = 48 [pid 5074] <... openat resumed>) = 3 [pid 5072] getdents64(3, [pid 5071] getdents64(3, [pid 5078] <... getdents64 resumed>0x5555570a96f0 /* 0 entries */, 32768) = 0 [pid 5077] getdents64(3, [pid 5074] newfstatat(3, "", [pid 5071] <... getdents64 resumed>0x5555570a96f0 /* 0 entries */, 32768) = 0 [pid 5078] close(3 [pid 5077] <... getdents64 resumed>0x5555570a96f0 /* 0 entries */, 32768) = 0 [pid 5071] close(3 [pid 5078] <... close resumed>) = 0 [pid 5077] close(3 [pid 5074] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5072] <... getdents64 resumed>0x5555570a96f0 /* 2 entries */, 32768) = 48 [pid 5071] <... close resumed>) = 0 [pid 5077] <... close resumed>) = 0 [pid 5074] getdents64(3, [pid 5072] getdents64(3, [pid 5074] <... getdents64 resumed>0x5555570a96f0 /* 2 entries */, 32768) = 48 [pid 5072] <... getdents64 resumed>0x5555570a96f0 /* 0 entries */, 32768) = 0 [pid 5074] getdents64(3, 0x5555570a96f0 /* 0 entries */, 32768) = 0 [pid 5072] close(3 [pid 5074] close(3 [pid 5072] <... close resumed>) = 0 [pid 5074] <... close resumed>) = 0 [pid 5073] <... fallocate resumed>) = ? [pid 5073] +++ killed by SIGKILL +++ [pid 5071] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5073, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=12722 /* 127.22 s */} --- [pid 5071] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5098 attached [pid 5098] set_robust_list(0x5555570a8660, 24 [pid 5071] <... clone resumed>, child_tidptr=0x5555570a8650) = 5098 [pid 5098] <... set_robust_list resumed>) = 0 [pid 5098] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5098] setpgid(0, 0) = 0 [pid 5098] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5098] write(3, "1000", 4) = 4 [pid 5098] close(3) = 0 [pid 5098] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT) = 3 [pid 5098] dup(3) = 4 [pid 5098] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 [pid 5071] kill(-5098, SIGKILL) = 0 [pid 5071] kill(5098, SIGKILL) = 0 [pid 5071] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5071] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5071] getdents64(3, 0x5555570a96f0 /* 2 entries */, 32768) = 48 [pid 5071] getdents64(3, 0x5555570a96f0 /* 0 entries */, 32768) = 0 [pid 5071] close(3) = 0 [ 286.860816][ T29] INFO: task syz-executor195:5075 blocked for more than 143 seconds. [ 286.869319][ T29] Not tainted 6.8.0-rc1-syzkaller-00311-g3a5879d495b2 #0 [ 286.879062][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.888081][ T29] task:syz-executor195 state:D stack:27680 pid:5075 tgid:5075 ppid:5072 flags:0x00004006 [ 286.900143][ T29] Call Trace: [ 286.905246][ T29] [ 286.909995][ T29] __schedule+0xf12/0x5c00 [ 286.918764][ T29] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 286.928463][ T29] ? hlock_class+0x4e/0x130 [ 286.936545][ T29] ? mark_lock+0xb5/0xc50 [ 286.949515][ T29] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 286.971422][ T29] ? io_schedule_timeout+0x150/0x150 [ 286.976811][ T29] ? schedule+0x1fc/0x270 [ 286.993443][ T29] ? reacquire_held_locks+0x4c0/0x4c0 [ 287.000523][ T29] ? __down_write_common+0x899/0x1400 [ 287.005994][ T29] schedule+0xe9/0x270 [ 287.011072][ T29] schedule_preempt_disabled+0x13/0x20 [ 287.017100][ T29] __down_write_common+0x948/0x1400 [ 287.023171][ T29] ? aa_file_perm+0x4f2/0x1000 [ 287.028628][ T29] ? up_write+0x510/0x510 [ 287.033558][ T29] ? lock_sync+0x190/0x190 [ 287.038043][ T29] ? preempt_count_sub+0x160/0x160 [ 287.043949][ T29] blkdev_fallocate+0x1e9/0x450 [ 287.049466][ T29] ? file_to_blk_mode+0x1a0/0x1a0 [ 287.054608][ T29] vfs_fallocate+0x4b4/0xf70 [ 287.059387][ T29] __x64_sys_fallocate+0xd5/0x140 [ 287.064594][ T29] do_syscall_64+0xd3/0x250 [ 287.069237][ T29] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 287.075285][ T29] RIP: 0033:0x7f79872a7b29 [ 287.079758][ T29] RSP: 002b:00007fff0125ef18 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.089355][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f79872a7b29 [ 287.097918][ T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.106832][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.114911][ T29] R10: 0000100001002000 R11: 0000000000000246 R12: 0000000000000001 [ 287.123532][ T29] R13: 00007fff0125f138 R14: 00007fff0125ef40 R15: 00007fff0125ef30 [ 287.131623][ T29] [ 287.135205][ T29] INFO: task syz-executor195:5079 blocked for more than 143 seconds. [ 287.146010][ T29] Not tainted 6.8.0-rc1-syzkaller-00311-g3a5879d495b2 #0 [ 287.154690][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.164060][ T29] task:syz-executor195 state:D stack:28208 pid:5079 tgid:5079 ppid:5077 flags:0x00004006 [ 287.174349][ T29] Call Trace: [ 287.177664][ T29] [ 287.180705][ T29] __schedule+0xf12/0x5c00 [ 287.185176][ T29] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 287.191768][ T29] ? hlock_class+0x4e/0x130 [ 287.196361][ T29] ? mark_lock+0xb5/0xc50 [ 287.200827][ T29] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 287.207371][ T29] ? io_schedule_timeout+0x150/0x150 [ 287.213300][ T29] ? schedule+0x1fc/0x270 [ 287.218196][ T29] ? reacquire_held_locks+0x4c0/0x4c0 [ 287.224189][ T29] ? __down_write_common+0x899/0x1400 [ 287.229660][ T29] schedule+0xe9/0x270 [ 287.235169][ T29] schedule_preempt_disabled+0x13/0x20 [ 287.241341][ T29] __down_write_common+0x948/0x1400 [ 287.247126][ T29] ? aa_file_perm+0x4f2/0x1000 [ 287.252524][ T29] ? up_write+0x510/0x510 [ 287.256939][ T29] ? lock_sync+0x190/0x190 [ 287.261586][ T29] ? preempt_count_sub+0x160/0x160 [ 287.266775][ T29] blkdev_fallocate+0x1e9/0x450 [ 287.272221][ T29] ? file_to_blk_mode+0x1a0/0x1a0 [ 287.277371][ T29] vfs_fallocate+0x4b4/0xf70 [ 287.282288][ T29] __x64_sys_fallocate+0xd5/0x140 [ 287.287377][ T29] do_syscall_64+0xd3/0x250 [ 287.292000][ T29] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 287.298496][ T29] RIP: 0033:0x7f79872a7b29 [ 287.303546][ T29] RSP: 002b:00007fff0125ef18 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.312552][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f79872a7b29 [ 287.320640][ T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.329229][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.338310][ T29] R10: 0000100001002000 R11: 0000000000000246 R12: 0000000000000001 [ 287.347044][ T29] R13: 00007fff0125f138 R14: 00007fff0125ef40 R15: 00007fff0125ef30 [ 287.355609][ T29] [ 287.359236][ T29] INFO: task syz-executor195:5080 blocked for more than 143 seconds. [ 287.379416][ T29] Not tainted 6.8.0-rc1-syzkaller-00311-g3a5879d495b2 #0 [ 287.387147][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.397566][ T29] task:syz-executor195 state:D stack:28208 pid:5080 tgid:5080 ppid:5078 flags:0x00004006 [ 287.407904][ T29] Call Trace: [ 287.411294][ T29] [ 287.414308][ T29] __schedule+0xf12/0x5c00 [ 287.419235][ T29] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 287.425817][ T29] ? hlock_class+0x4e/0x130 [ 287.430914][ T29] ? mark_lock+0xb5/0xc50 [ 287.435336][ T29] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 287.441759][ T29] ? io_schedule_timeout+0x150/0x150 [ 287.447568][ T29] ? schedule+0x1fc/0x270 [ 287.452542][ T29] ? reacquire_held_locks+0x4c0/0x4c0 [ 287.458413][ T29] ? __down_write_common+0x899/0x1400 [ 287.464430][ T29] schedule+0xe9/0x270 [ 287.469088][ T29] schedule_preempt_disabled+0x13/0x20 [ 287.475170][ T29] __down_write_common+0x948/0x1400 [ 287.480473][ T29] ? aa_file_perm+0x4f2/0x1000 [ 287.486004][ T29] ? up_write+0x510/0x510 [ 287.491001][ T29] ? lock_sync+0x190/0x190 [ 287.495843][ T29] ? preempt_count_sub+0x160/0x160 [ 287.501238][ T29] blkdev_fallocate+0x1e9/0x450 [ 287.506168][ T29] ? file_to_blk_mode+0x1a0/0x1a0 [ 287.511320][ T29] vfs_fallocate+0x4b4/0xf70 [ 287.515988][ T29] __x64_sys_fallocate+0xd5/0x140 [ 287.521752][ T29] do_syscall_64+0xd3/0x250 [ 287.526761][ T29] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 287.533279][ T29] RIP: 0033:0x7f79872a7b29 [ 287.538300][ T29] RSP: 002b:00007fff0125ef18 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.547419][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f79872a7b29 [ 287.556006][ T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.564560][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.573130][ T29] R10: 0000100001002000 R11: 0000000000000246 R12: 0000000000000001 [ 287.581280][ T29] R13: 00007fff0125f138 R14: 00007fff0125ef40 R15: 00007fff0125ef30 [ 287.589324][ T29] [ 287.592482][ T29] [ 287.592482][ T29] Showing all locks held in the system: [ 287.601151][ T29] 3 locks held by kworker/0:0H/10: [ 287.606315][ T29] 2 locks held by ksoftirqd/0/16: [ 287.632265][ T29] 1 lock held by khungtaskd/29: [ 287.637175][ T29] #0: ffffffff8d1acba0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x75/0x340 [ 287.653107][ T29] 2 locks held by getty/4820: [ 287.657842][ T29] #0: ffff8880299c60a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 287.667910][ T29] #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfc6/0x1490 [ 287.678170][ T29] 1 lock held by syz-executor195/5075: [ 287.683772][ T29] #0: ffff88801b4b2040 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e9/0x450 [ 287.695111][ T29] 1 lock held by syz-executor195/5076: [ 287.701323][ T29] 1 lock held by syz-executor195/5079: [ 287.707325][ T29] #0: ffff88801b4b2040 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e9/0x450 [ 287.718859][ T29] 1 lock held by syz-executor195/5080: [ 287.725032][ T29] #0: ffff88801b4b2040 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e9/0x450 [ 287.736066][ T29] 1 lock held by syz-executor195/5098: [ 287.741928][ T29] #0: ffff88801b4b2040 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e9/0x450 [ 287.754944][ T29] [ 287.757317][ T29] ============================================= [ 287.757317][ T29] [ 287.770659][ T29] NMI backtrace for cpu 1 [ 287.775111][ T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc1-syzkaller-00311-g3a5879d495b2 #0 [ 287.785019][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 287.795095][ T29] Call Trace: [ 287.798416][ T29] [ 287.801366][ T29] dump_stack_lvl+0xd9/0x1b0 [ 287.806024][ T29] nmi_cpu_backtrace+0x277/0x390 [ 287.811001][ T29] ? lapic_can_unplug_cpu+0xa0/0xa0 [ 287.816242][ T29] nmi_trigger_cpumask_backtrace+0x299/0x300 [ 287.822271][ T29] watchdog+0xf87/0x1210 [ 287.826567][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 287.832574][ T29] ? lockdep_hardirqs_on+0x7d/0x110 [ 287.837801][ T29] ? __kthread_parkme+0x14b/0x220 [ 287.842858][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 287.848864][ T29] kthread+0x2c6/0x3a0 [ 287.852953][ T29] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.858169][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 287.863823][ T29] ret_from_fork+0x45/0x80 [ 287.868453][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 287.874106][ T29] ret_from_fork_asm+0x11/0x20 [ 287.878918][ T29] [ 287.882171][ T29] Sending NMI from CPU 1 to CPUs 0: [ 287.887430][ C0] NMI backtrace for cpu 0 [ 287.887442][ C0] CPU: 0 PID: 1028 Comm: kworker/u4:6 Not tainted 6.8.0-rc1-syzkaller-00311-g3a5879d495b2 #0 [ 287.887469][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 287.887484][ C0] Workqueue: events_unbound toggle_allocation_gate [ 287.887556][ C0] RIP: 0010:__lock_acquire+0x563/0x3b30 [ 287.887583][ C0] Code: ca 7f 08 84 d2 0f 85 9e 22 00 00 41 0f b6 56 21 44 31 fa 83 e2 60 74 c2 83 c3 01 65 8b 15 3d 4d 9a 7e 85 d2 0f 85 23 0b 00 00 <48> ba 00 00 00 00 00 fc ff df 48 8b 7c 24 48 48 89 fe 83 e7 07 48 [ 287.887606][ C0] RSP: 0018:ffffc90003d87678 EFLAGS: 00000046 [ 287.887624][ C0] RAX: 0000000000000002 RBX: 0000000000000000 RCX: 0000000000000001 [ 287.887640][ C0] RDX: 0000000000000000 RSI: ffff888020293b80 RDI: ffff888020294751 [ 287.887656][ C0] RBP: dffffc0000000000 R08: 0000000000000006 R09: fffffbfff242ade8 [ 287.887672][ C0] R10: ffffffff92156f47 R11: 0000000000000005 R12: ffff888020294730 [ 287.887688][ C0] R13: ffff888020294639 R14: ffff888020294640 R15: 0000000000000000 [ 287.887704][ C0] FS: 0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 287.887730][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 287.887747][ C0] CR2: 00007f798731e0d0 CR3: 000000000cf78000 CR4: 00000000003506f0 [ 287.887769][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 287.887783][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 287.887799][ C0] Call Trace: [ 287.887806][ C0] [ 287.887814][ C0] ? show_regs+0x8f/0xa0 [ 287.887847][ C0] ? nmi_cpu_backtrace+0x1d4/0x390 [ 287.887880][ C0] ? nmi_cpu_backtrace_handler+0xc/0x10 [ 287.887918][ C0] ? nmi_handle+0x1a6/0x570 [ 287.887951][ C0] ? __lock_acquire+0x563/0x3b30 [ 287.887974][ C0] ? default_do_nmi+0x6a/0x160 [ 287.888016][ C0] ? exc_nmi+0x186/0x200 [ 287.888055][ C0] ? end_repeat_nmi+0xf/0x2a [ 287.888093][ C0] ? __lock_acquire+0x563/0x3b30 [ 287.888116][ C0] ? __lock_acquire+0x563/0x3b30 [ 287.888139][ C0] ? __lock_acquire+0x563/0x3b30 [ 287.888162][ C0] [ 287.888168][ C0] [ 287.888181][ C0] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 287.888205][ C0] ? mark_lock+0xb5/0xc50 [ 287.888244][ C0] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 287.888268][ C0] ? hlock_class+0x4e/0x130 [ 287.888309][ C0] lock_acquire+0x1ae/0x520 [ 287.888331][ C0] ? __pte_offset_map_lock+0xf1/0x2f0 [ 287.888359][ C0] ? lock_sync+0x190/0x190 [ 287.888379][ C0] ? mark_lock+0xb5/0xc50 [ 287.888418][ C0] ? do_raw_spin_lock+0x12e/0x2b0 [ 287.888445][ C0] ? rcu_is_watching+0x12/0xb0 [ 287.888486][ C0] _raw_spin_lock+0x2e/0x40 [ 287.888517][ C0] ? __pte_offset_map_lock+0xf1/0x2f0 [ 287.888546][ C0] __pte_offset_map_lock+0xf1/0x2f0 [ 287.888573][ C0] ? pte_offset_map_nolock+0x1b0/0x1b0 [ 287.888602][ C0] __get_locked_pte+0x75/0xc0 [ 287.888628][ C0] ? kmem_cache_alloc_node+0xa3/0x340 [ 287.888667][ C0] __text_poke+0x224/0xca0 [ 287.888692][ C0] ? setup_data_read+0x280/0x280 [ 287.888717][ C0] ? kmem_cache_alloc_lru+0xab/0x6f0 [ 287.888784][ C0] ? apply_relocation+0x830/0x830 [ 287.888810][ C0] ? kmem_cache_alloc_node+0xa3/0x340 [ 287.888851][ C0] text_poke_bp_batch+0x3e0/0x750 [ 287.888881][ C0] ? kmem_cache_alloc_node+0xa3/0x340 [ 287.888919][ C0] ? alternatives_enable_smp+0x400/0x400 [ 287.888947][ C0] ? __jump_label_patch+0x1db/0x400 [ 287.888984][ C0] ? text_poke_queue+0xef/0x180 [ 287.889016][ C0] ? arch_jump_label_transform_queue+0xc0/0x110 [ 287.889061][ C0] text_poke_finish+0x30/0x40 [ 287.889089][ C0] arch_jump_label_transform_apply+0x1c/0x30 [ 287.889129][ C0] jump_label_update+0x1d7/0x400 [ 287.889176][ C0] static_key_enable_cpuslocked+0x1b7/0x270 [ 287.889216][ C0] static_key_enable+0x1a/0x20 [ 287.889252][ C0] toggle_allocation_gate+0xf4/0x250 [ 287.889289][ C0] ? wake_up_kfence_timer+0x30/0x30 [ 287.889331][ C0] process_one_work+0x886/0x15d0 [ 287.889371][ C0] ? lock_sync+0x190/0x190 [ 287.889393][ C0] ? workqueue_congested+0x300/0x300 [ 287.889433][ C0] ? assign_work+0x1a0/0x250 [ 287.889468][ C0] worker_thread+0x8b9/0x1290 [ 287.889510][ C0] ? process_one_work+0x15d0/0x15d0 [ 287.889551][ C0] kthread+0x2c6/0x3a0 [ 287.889580][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.889612][ C0] ? kthread_complete_and_exit+0x40/0x40 [ 287.889645][ C0] ret_from_fork+0x45/0x80 [ 287.889676][ C0] ? kthread_complete_and_exit+0x40/0x40 [ 287.889708][ C0] ret_from_fork_asm+0x11/0x20 [ 287.889751][ C0] [ 287.889760][ C0] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 2.330 msecs [ 287.890997][ T29] Kernel panic - not syncing: hung_task: blocked tasks [ 287.891013][ T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc1-syzkaller-00311-g3a5879d495b2 #0 [ 287.891056][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 287.891074][ T29] Call Trace: [ 287.891084][ T29] [ 287.891095][ T29] dump_stack_lvl+0xd9/0x1b0 [ 287.891141][ T29] panic+0x6dc/0x790 [ 287.891188][ T29] ? panic_smp_self_stop+0xa0/0xa0 [ 287.891233][ T29] ? preempt_schedule_thunk+0x1a/0x30 [ 287.891290][ T29] ? lapic_can_unplug_cpu+0xa0/0xa0 [ 287.891338][ T29] ? preempt_schedule_thunk+0x1a/0x30 [ 287.891391][ T29] ? watchdog+0xd3e/0x1210 [ 287.891433][ T29] ? watchdog+0xd31/0x1210 [ 287.891481][ T29] watchdog+0xd4f/0x1210 [ 287.891532][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 287.891577][ T29] ? lockdep_hardirqs_on+0x7d/0x110 [ 287.891614][ T29] ? __kthread_parkme+0x14b/0x220 [ 287.891656][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 287.891703][ T29] kthread+0x2c6/0x3a0 [ 287.891742][ T29] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.891783][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 287.891829][ T29] ret_from_fork+0x45/0x80 [ 287.891870][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 287.891915][ T29] ret_from_fork_asm+0x11/0x20 [ 287.891978][ T29] [ 287.895153][ T29] Kernel Offset: disabled [ 288.482900][ T29] Rebooting in 86400 seconds..