./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1778060700

<...>
DUID 00:04:2f:bc:f2:2f:e4:1d:55:f7:99:3b:0f:15:66:5c:e9:07
forked to background, child pid 4727
[   32.625941][ T4728] 8021q: adding VLAN 0 to HW filter on device bond0
[   32.637846][ T4728] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.0.157' (ED25519) to the list of known hosts.
execve("./syz-executor1778060700", ["./syz-executor1778060700"], 0x7ffcd4479720 /* 10 vars */) = 0
brk(NULL)                               = 0x555556a3a000
brk(0x555556a3ad00)                     = 0x555556a3ad00
arch_prctl(ARCH_SET_FS, 0x555556a3a380) = 0
set_tid_address(0x555556a3a650)         = 5058
set_robust_list(0x555556a3a660, 24)     = 0
rseq(0x555556a3aca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor1778060700", 4096) = 28
getrandom("\xe9\xc1\xec\xc9\x0f\x89\xbf\xf2", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x555556a3ad00
brk(0x555556a5bd00)                     = 0x555556a5bd00
brk(0x555556a5c000)                     = 0x555556a5c000
mprotect(0x7f9e137df000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5059 attached
, child_tidptr=0x555556a3a650) = 5059
[pid  5058] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5059] set_robust_list(0x555556a3a660, 24) = 0
./strace-static-x86_64: Process 5060 attached
[pid  5059] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5058] <... clone resumed>, child_tidptr=0x555556a3a650) = 5060
[pid  5060] set_robust_list(0x555556a3a660, 24 <unfinished ...>
[pid  5058] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5060] <... set_robust_list resumed>) = 0
[pid  5060] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5061 attached
./strace-static-x86_64: Process 5062 attached
 <unfinished ...>
[pid  5058] <... clone resumed>, child_tidptr=0x555556a3a650) = 5061
[pid  5061] set_robust_list(0x555556a3a660, 24./strace-static-x86_64: Process 5063 attached
 <unfinished ...>
[pid  5062] set_robust_list(0x555556a3a660, 24 <unfinished ...>
[pid  5061] <... set_robust_list resumed>) = 0
[pid  5059] <... clone resumed>, child_tidptr=0x555556a3a650) = 5062
[pid  5060] <... clone resumed>, child_tidptr=0x555556a3a650) = 5063
[pid  5061] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5062] <... set_robust_list resumed>) = 0
[pid  5058] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5064 attached
 <unfinished ...>
[pid  5063] set_robust_list(0x555556a3a660, 24 <unfinished ...>
[pid  5062] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5064] set_robust_list(0x555556a3a660, 24 <unfinished ...>
[pid  5063] <... set_robust_list resumed>) = 0
[pid  5062] <... prctl resumed>)        = 0
[pid  5062] setpgid(0, 0)               = 0
./strace-static-x86_64: Process 5065 attached
[pid  5058] <... clone resumed>, child_tidptr=0x555556a3a650) = 5065
[pid  5062] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5061] <... clone resumed>, child_tidptr=0x555556a3a650) = 5064
[pid  5065] set_robust_list(0x555556a3a660, 24 <unfinished ...>
[pid  5058] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5065] <... set_robust_list resumed>) = 0
[pid  5064] <... set_robust_list resumed>) = 0
[pid  5063] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5064] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5063] <... prctl resumed>)        = 0
[pid  5062] <... openat resumed>)       = 3
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5064] <... prctl resumed>)        = 0
[pid  5063] setpgid(0, 0 <unfinished ...>
[pid  5064] setpgid(0, 0 <unfinished ...>
[pid  5063] <... setpgid resumed>)      = 0
[pid  5062] write(3, "1000", 4 <unfinished ...>
[pid  5064] <... setpgid resumed>)      = 0
[pid  5063] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5062] <... write resumed>)        = 4
[pid  5064] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5063] <... openat resumed>)       = 3
[pid  5062] close(3)                    = 0
./strace-static-x86_64: Process 5066 attached
[pid  5064] <... openat resumed>)       = 3
[pid  5062] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME./strace-static-x86_64: Process 5067 attached
 <unfinished ...>
[pid  5058] <... clone resumed>, child_tidptr=0x555556a3a650) = 5067
[pid  5066] set_robust_list(0x555556a3a660, 24 <unfinished ...>
[pid  5065] <... clone resumed>, child_tidptr=0x555556a3a650) = 5066
[pid  5064] write(3, "1000", 4 <unfinished ...>
[pid  5063] write(3, "1000", 4 <unfinished ...>
[pid  5067] set_robust_list(0x555556a3a660, 24 <unfinished ...>
[pid  5066] <... set_robust_list resumed>) = 0
[pid  5063] <... write resumed>)        = 4
[pid  5062] <... openat resumed>)       = 3
[pid  5067] <... set_robust_list resumed>) = 0
[pid  5066] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5064] <... write resumed>)        = 4
[pid  5063] close(3 <unfinished ...>
[pid  5062] dup(3 <unfinished ...>
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5066] <... prctl resumed>)        = 0
[pid  5064] close(3 <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  5062] <... dup resumed>)          = 4
[pid  5066] setpgid(0, 0 <unfinished ...>
[pid  5064] <... close resumed>)        = 0
[pid  5066] <... setpgid resumed>)      = 0
[pid  5064] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME <unfinished ...>
[pid  5066] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5064] <... openat resumed>)       = 3
[pid  5063] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME./strace-static-x86_64: Process 5068 attached
 <unfinished ...>
[pid  5066] <... openat resumed>)       = 3
[pid  5064] dup(3 <unfinished ...>
[pid  5062] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 9223372036854775807 <unfinished ...>
[pid  5066] write(3, "1000", 4 <unfinished ...>
[pid  5064] <... dup resumed>)          = 4
[pid  5063] <... openat resumed>)       = 3
[pid  5066] <... write resumed>)        = 4
[pid  5064] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 9223372036854775807 <unfinished ...>
[pid  5068] set_robust_list(0x555556a3a660, 24 <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x555556a3a650) = 5068
[pid  5066] close(3 <unfinished ...>
[pid  5063] dup(3 <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  5066] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME <unfinished ...>
[pid  5068] <... set_robust_list resumed>) = 0
[pid  5066] <... openat resumed>)       = 3
[pid  5063] <... dup resumed>)          = 4
[pid  5068] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5066] dup(3 <unfinished ...>
[pid  5063] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 9223372036854775807 <unfinished ...>
[pid  5068] <... prctl resumed>)        = 0
[pid  5066] <... dup resumed>)          = 4
[pid  5066] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 9223372036854775807 <unfinished ...>
[pid  5068] setpgid(0, 0)               = 0
[pid  5068] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5068] write(3, "1000", 4)         = 4
[pid  5068] close(3)                    = 0
[pid  5068] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME) = 3
[pid  5068] dup(3)                      = 4
[pid  5068] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 9223372036854775807 <unfinished ...>
[pid  5059] kill(-5062, SIGKILL <unfinished ...>
[pid  5061] kill(-5064, SIGKILL <unfinished ...>
[pid  5060] kill(-5063, SIGKILL <unfinished ...>
[pid  5059] <... kill resumed>)         = 0
[pid  5060] <... kill resumed>)         = 0
[pid  5061] <... kill resumed>)         = 0
[pid  5059] kill(5062, SIGKILL <unfinished ...>
[pid  5060] kill(5063, SIGKILL <unfinished ...>
[pid  5061] kill(5064, SIGKILL <unfinished ...>
[pid  5059] <... kill resumed>)         = 0
[pid  5060] <... kill resumed>)         = 0
[pid  5061] <... kill resumed>)         = 0
[pid  5065] kill(-5066, SIGKILL)        = 0
[pid  5065] kill(5066, SIGKILL)         = 0
[pid  5067] kill(-5068, SIGKILL)        = 0
[pid  5067] kill(5068, SIGKILL)         = 0
[pid  5060] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5060] newfstatat(3, "",  <unfinished ...>
[pid  5067] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5065] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5067] <... openat resumed>)       = 3
[pid  5061] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5067] newfstatat(3, "",  <unfinished ...>
[pid  5061] <... openat resumed>)       = 3
[pid  5060] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5065] <... openat resumed>)       = 3
[pid  5061] newfstatat(3, "",  <unfinished ...>
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5060] getdents64(3,  <unfinished ...>
[pid  5059] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5067] <... getdents64 resumed>0x555556a3b6f0 /* 2 entries */, 32768) = 48
[pid  5061] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5060] <... getdents64 resumed>0x555556a3b6f0 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(3, 0x555556a3b6f0 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5065] newfstatat(3, "",  <unfinished ...>
[pid  5061] getdents64(3,  <unfinished ...>
[pid  5060] getdents64(3,  <unfinished ...>
[pid  5059] <... openat resumed>)       = 3
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5061] <... getdents64 resumed>0x555556a3b6f0 /* 2 entries */, 32768) = 48
[pid  5060] <... getdents64 resumed>0x555556a3b6f0 /* 0 entries */, 32768) = 0
[pid  5059] newfstatat(3, "",  <unfinished ...>
[pid  5060] close(3 <unfinished ...>
[pid  5059] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5061] getdents64(3,  <unfinished ...>
[pid  5060] <... close resumed>)        = 0
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5061] <... getdents64 resumed>0x555556a3b6f0 /* 0 entries */, 32768) = 0
[pid  5059] getdents64(3,  <unfinished ...>
[pid  5065] <... getdents64 resumed>0x555556a3b6f0 /* 2 entries */, 32768) = 48
[pid  5061] close(3)                    = 0
[pid  5065] getdents64(3, 0x555556a3b6f0 /* 0 entries */, 32768) = 0
[pid  5059] <... getdents64 resumed>0x555556a3b6f0 /* 2 entries */, 32768) = 48
[pid  5065] close(3)                    = 0
[pid  5059] getdents64(3, 0x555556a3b6f0 /* 0 entries */, 32768) = 0
[pid  5059] close(3)                    = 0
syzkaller login: [   76.790578][    T8] cfg80211: failed to load regulatory.db
[pid  5062] <... fallocate resumed>)    = ?
[pid  5062] +++ killed by SIGKILL +++
[pid  5059] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5062, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=5267 /* 52.67 s */} ---
[pid  5059] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5085 attached
, child_tidptr=0x555556a3a650) = 5085
[pid  5085] set_robust_list(0x555556a3a660, 24) = 0
[pid  5085] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5085] setpgid(0, 0)               = 0
[pid  5085] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5085] write(3, "1000", 4)         = 4
[pid  5085] close(3)                    = 0
[pid  5085] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME) = 3
[pid  5085] dup(3)                      = 4
[pid  5085] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 9223372036854775807 <unfinished ...>
[pid  5059] kill(-5085, SIGKILL)        = 0
[pid  5059] kill(5085, SIGKILL)         = 0
[pid  5059] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5059] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5059] getdents64(3, 0x555556a3b6f0 /* 2 entries */, 32768) = 48
[pid  5059] getdents64(3, 0x555556a3b6f0 /* 0 entries */, 32768) = 0
[pid  5059] close(3)                    = 0
[pid  5064] <... fallocate resumed>)    = ?
[pid  5064] +++ killed by SIGKILL +++
[pid  5061] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5064, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=5241 /* 52.41 s */} ---
[pid  5061] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5086 attached
, child_tidptr=0x555556a3a650) = 5086
[pid  5086] set_robust_list(0x555556a3a660, 24) = 0
[pid  5086] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5086] setpgid(0, 0)               = 0
[pid  5086] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5086] write(3, "1000", 4)         = 4
[pid  5086] close(3)                    = 0
[pid  5086] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME) = 3
[pid  5086] dup(3)                      = 4
[pid  5086] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 9223372036854775807 <unfinished ...>
[pid  5061] kill(-5086, SIGKILL)        = 0
[pid  5061] kill(5086, SIGKILL)         = 0
[pid  5061] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5061] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5061] getdents64(3, 0x555556a3b6f0 /* 2 entries */, 32768) = 48
[pid  5061] getdents64(3, 0x555556a3b6f0 /* 0 entries */, 32768) = 0
[pid  5061] close(3)                    = 0
[pid  5063] <... fallocate resumed>)    = ?
[pid  5063] +++ killed by SIGKILL +++
[pid  5060] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5063, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=5279 /* 52.79 s */} ---
[pid  5060] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5093 attached
, child_tidptr=0x555556a3a650) = 5093
[pid  5093] set_robust_list(0x555556a3a660, 24) = 0
[pid  5093] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5093] setpgid(0, 0)               = 0
[pid  5093] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5093] write(3, "1000", 4)         = 4
[pid  5093] close(3)                    = 0
[pid  5093] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME) = 3
[pid  5093] dup(3)                      = 4
[pid  5093] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 9223372036854775807 <unfinished ...>
[pid  5060] kill(-5093, SIGKILL)        = 0
[pid  5060] kill(5093, SIGKILL)         = 0
[pid  5060] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5060] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5060] getdents64(3, 0x555556a3b6f0 /* 2 entries */, 32768) = 48
[pid  5060] getdents64(3, 0x555556a3b6f0 /* 0 entries */, 32768) = 0
[pid  5060] close(3)                    = 0
[  286.682401][   T29] INFO: task syz-executor177:5068 blocked for more than 143 seconds.
[  286.690615][   T29]       Not tainted 6.8.0-rc4-syzkaller-00034-g8d3dea210042 #0
[  286.698752][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  286.708029][   T29] task:syz-executor177 state:D stack:26800 pid:5068  tgid:5068  ppid:5067   flags:0x00004006
[  286.718619][   T29] Call Trace:
[  286.721917][   T29]  <TASK>
[  286.724918][   T29]  __schedule+0x177f/0x49a0
[  286.729597][   T29]  ? __pfx___schedule+0x10/0x10
[  286.734539][   T29]  ? __pfx_lock_release+0x10/0x10
[  286.739646][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  286.746008][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  286.752405][   T29]  ? _raw_spin_lock_irq+0xdf/0x120
[  286.757960][   T29]  ? schedule+0x8e/0x260
[  286.762598][   T29]  schedule+0x149/0x260
[  286.767128][   T29]  schedule_preempt_disabled+0x13/0x30
[  286.773005][   T29]  rwsem_down_write_slowpath+0xeea/0x13b0
[  286.779088][   T29]  ? rwsem_down_write_slowpath+0xa05/0x13b0
[  286.785385][   T29]  ? __pfx_rwsem_down_write_slowpath+0x10/0x10
[  286.791926][   T29]  ? __pfx_lock_acquire+0x10/0x10
[  286.797030][   T29]  __down_write_common+0x1ae/0x200
[  286.802160][   T29]  ? __pfx___down_write_common+0x10/0x10
[  286.807870][   T29]  blkdev_fallocate+0x22a/0x580
[  286.813585][   T29]  vfs_fallocate+0x564/0x6c0
[  286.818234][   T29]  __x64_sys_fallocate+0xbd/0x110
[  286.823633][   T29]  do_syscall_64+0xf9/0x240
[  286.828230][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[  286.834585][   T29] RIP: 0033:0x7f9e1376cb29
[  286.839350][   T29] RSP: 002b:00007ffdb97443f8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  286.848154][   T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9e1376cb29
[  286.856515][   T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004
[  286.864895][   T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0
[  286.873249][   T29] R10: 7fffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  286.881231][   T29] R13: 00007ffdb9744618 R14: 00007ffdb9744420 R15: 00007ffdb9744410
[  286.889262][   T29]  </TASK>
[  286.892355][   T29] INFO: task syz-executor177:5085 blocked for more than 143 seconds.
[  286.900768][   T29]       Not tainted 6.8.0-rc4-syzkaller-00034-g8d3dea210042 #0
[  286.908706][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  286.917762][   T29] task:syz-executor177 state:D stack:24312 pid:5085  tgid:5085  ppid:5059   flags:0x00004006
[  286.928730][   T29] Call Trace:
[  286.933048][   T29]  <TASK>
[  286.936004][   T29]  __schedule+0x177f/0x49a0
[  286.940550][   T29]  ? __pfx___schedule+0x10/0x10
[  286.945825][   T29]  ? __pfx_lock_release+0x10/0x10
[  286.951230][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  286.957311][   T29]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  286.964056][   T29]  ? _raw_spin_lock_irq+0xdf/0x120
[  286.969521][   T29]  ? schedule+0x8e/0x260
[  286.974159][   T29]  schedule+0x149/0x260
[  286.978694][   T29]  schedule_preempt_disabled+0x13/0x30
[  286.984532][   T29]  rwsem_down_write_slowpath+0xeea/0x13b0
[  286.990644][   T29]  ? rwsem_down_write_slowpath+0xa05/0x13b0
[  286.996990][   T29]  ? __pfx_rwsem_down_write_slowpath+0x10/0x10
[  287.003586][   T29]  ? __pfx_lock_acquire+0x10/0x10
[  287.008642][   T29]  __down_write_common+0x1ae/0x200
[  287.013832][   T29]  ? __pfx___down_write_common+0x10/0x10
[  287.019489][   T29]  blkdev_fallocate+0x22a/0x580
[  287.024756][   T29]  vfs_fallocate+0x564/0x6c0
[  287.029706][   T29]  __x64_sys_fallocate+0xbd/0x110
[  287.035563][   T29]  do_syscall_64+0xf9/0x240
[  287.040455][   T29]  entry_SYSCALL_64_after_hwframe+0x6f/0x77
[  287.046726][   T29] RIP: 0033:0x7f9e1376cb29
[  287.051155][   T29] RSP: 002b:00007ffdb97443f8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  287.059993][   T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9e1376cb29
[  287.068378][   T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004
[  287.076780][   T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0
[  287.084799][   T29] R10: 7fffffffffffffff R11: 0000000000000246 R12: 000000000000d67f
[  287.092829][   T29] R13: 00007ffdb974440c R14: 00007ffdb9744420 R15: 00007ffdb9744410
[  287.101170][   T29]  </TASK>
[  287.104620][   T29] 
[  287.104620][   T29] Showing all locks held in the system:
[  287.112756][   T29] 1 lock held by khungtaskd/29:
[  287.117951][   T29]  #0: ffffffff8e130ae0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  287.128244][   T29] 2 locks held by getty/4813:
[  287.133330][   T29]  #0: ffff88802b2b70a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  287.143991][   T29]  #1: ffffc900015b72f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b4/0x1e10
[  287.154182][   T29] 1 lock held by syz-executor177/5066:
[  287.159974][   T29] 1 lock held by syz-executor177/5068:
[  287.165531][   T29]  #0: ffff88801d1570c0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x22a/0x580
[  287.176316][   T29] 1 lock held by syz-executor177/5085:
[  287.181781][   T29]  #0: ffff88801d1570c0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x22a/0x580
[  287.192854][   T29] 1 lock held by syz-executor177/5086:
[  287.198675][   T29]  #0: ffff88801d1570c0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x22a/0x580
[  287.209713][   T29] 1 lock held by syz-executor177/5093:
[  287.215229][   T29]  #0: ffff88801d1570c0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x22a/0x580
[  287.226290][   T29] 
[  287.228628][   T29] =============================================
[  287.228628][   T29] 
[  287.237472][   T29] NMI backtrace for cpu 0
[  287.241809][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc4-syzkaller-00034-g8d3dea210042 #0
[  287.251615][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[  287.261677][   T29] Call Trace:
[  287.264964][   T29]  <TASK>
[  287.267900][   T29]  dump_stack_lvl+0x1e7/0x2e0
[  287.272590][   T29]  ? preempt_schedule_thunk+0x1a/0x30
[  287.278005][   T29]  ? __pfx_dump_stack_lvl+0x10/0x10
[  287.283217][   T29]  ? __pfx__printk+0x10/0x10
[  287.287863][   T29]  ? vprintk_emit+0x607/0x720
[  287.292557][   T29]  ? __pfx_vprintk_emit+0x10/0x10
[  287.297601][   T29]  nmi_cpu_backtrace+0x49c/0x4d0
[  287.302597][   T29]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  287.308062][   T29]  ? _printk+0xd5/0x120
[  287.312232][   T29]  ? __pfx__printk+0x10/0x10
[  287.316835][   T29]  ? __wake_up_klogd+0xcc/0x110
[  287.321694][   T29]  ? __pfx__printk+0x10/0x10
[  287.326294][   T29]  ? __rcu_read_unlock+0xa0/0x110
[  287.331344][   T29]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  287.337348][   T29]  nmi_trigger_cpumask_backtrace+0x198/0x320
[  287.343336][   T29]  watchdog+0xfaf/0xff0
[  287.347531][   T29]  ? watchdog+0x1e9/0xff0
[  287.351877][   T29]  ? __pfx_watchdog+0x10/0x10
[  287.356565][   T29]  kthread+0x2ef/0x390
[  287.360658][   T29]  ? __pfx_watchdog+0x10/0x10
[  287.365345][   T29]  ? __pfx_kthread+0x10/0x10
[  287.369942][   T29]  ret_from_fork+0x4b/0x80
[  287.374370][   T29]  ? __pfx_kthread+0x10/0x10
[  287.378971][   T29]  ret_from_fork_asm+0x1b/0x30
[  287.383769][   T29]  </TASK>
[  287.386981][   T29] Sending NMI from CPU 0 to CPUs 1:
[  287.392198][    C1] NMI backtrace for cpu 1
[  287.392207][    C1] CPU: 1 PID: 2460 Comm: kworker/u4:10 Not tainted 6.8.0-rc4-syzkaller-00034-g8d3dea210042 #0
[  287.392225][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[  287.392235][    C1] Workqueue: events_unbound toggle_allocation_gate
[  287.392260][    C1] RIP: 0010:lock_release+0x1cf/0x9d0
[  287.392284][    C1] Code: 18 0f 85 57 05 00 00 c7 84 24 80 00 00 00 01 00 00 00 48 c7 c0 bc 61 84 8f 48 c1 e8 03 42 0f b6 04 38 84 c0 0f 85 62 05 00 00 <83> 3d 16 25 13 0e 00 0f 84 c7 03 00 00 4d 8d b5 b8 0a 00 00 4c 89
[  287.392296][    C1] RSP: 0018:ffffc9000aeef640 EFLAGS: 00000046
[  287.392308][    C1] RAX: 0000000000000000 RBX: 0000000000000246 RCX: ffffc9000aeef603
[  287.392318][    C1] RDX: 1ffff920015dded8 RSI: ffffffff8baac2c0 RDI: ffffffff8bfd9460
[  287.392330][    C1] RBP: ffffc9000aeef770 R08: ffffffff8f842eaf R09: 1ffffffff1f085d5
[  287.392341][    C1] R10: dffffc0000000000 R11: fffffbfff1f085d6 R12: 1ffff920015dded4
[  287.392352][    C1] R13: ffff88802a258000 R14: ffffc9000aeef6f0 R15: dffffc0000000000
[  287.392369][    C1] FS:  0000000000000000(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000
[  287.392386][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  287.392397][    C1] CR2: 00007fb8b45f5580 CR3: 000000000df32000 CR4: 00000000003506f0
[  287.392410][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  287.392419][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  287.392428][    C1] Call Trace:
[  287.392434][    C1]  <NMI>
[  287.392439][    C1]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  287.392455][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  287.392477][    C1]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  287.392499][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  287.392517][    C1]  ? nmi_handle+0x14f/0x580
[  287.392550][    C1]  ? nmi_handle+0x2a/0x580
[  287.392565][    C1]  ? lock_release+0x1cf/0x9d0
[  287.392584][    C1]  ? default_do_nmi+0x63/0x160
[  287.392636][    C1]  ? exc_nmi+0x121/0x210
[  287.392650][    C1]  ? end_repeat_nmi+0xf/0x60
[  287.392693][    C1]  ? lock_release+0x1cf/0x9d0
[  287.392719][    C1]  ? lock_release+0x1cf/0x9d0
[  287.392740][    C1]  ? lock_release+0x1cf/0x9d0
[  287.392760][    C1]  </NMI>
[  287.392764][    C1]  <TASK>
[  287.392770][    C1]  ? __text_poke+0xa71/0xd30
[  287.392787][    C1]  ? __text_poke+0xaf7/0xd30
[  287.392802][    C1]  ? __pfx_lock_release+0x10/0x10
[  287.392821][    C1]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  287.392844][    C1]  ? do_raw_spin_unlock+0x13b/0x8b0
[  287.392865][    C1]  ? __kmalloc_node+0x12b/0x4e0
[  287.392896][    C1]  __text_poke+0xb03/0xd30
[  287.392911][    C1]  ? __pfx_do_sync_core+0x10/0x10
[  287.392928][    C1]  ? __kmalloc_node+0x12b/0x4e0
[  287.392949][    C1]  ? __pfx_text_poke_memcpy+0x10/0x10
[  287.392966][    C1]  ? __pfx___text_poke+0x10/0x10
[  287.392981][    C1]  ? kmem_cache_alloc_node+0xb5/0x380
[  287.393002][    C1]  ? perf_event_text_poke+0x258/0x330
[  287.393035][    C1]  ? __pfx_perf_event_text_poke+0x10/0x10
[  287.393049][    C1]  ? __mutex_trylock_common+0x182/0x2e0
[  287.393065][    C1]  ? __pfx___might_resched+0x10/0x10
[  287.393087][    C1]  text_poke_bp_batch+0x59c/0xb30
[  287.393108][    C1]  ? __kmalloc_node+0x12b/0x4e0
[  287.393129][    C1]  ? __pfx_text_poke_bp_batch+0x10/0x10
[  287.393148][    C1]  ? arch_jump_label_transform_queue+0x9b/0x100
[  287.393171][    C1]  text_poke_finish+0x30/0x50
[  287.393187][    C1]  arch_jump_label_transform_apply+0x1c/0x30
[  287.393206][    C1]  static_key_enable_cpuslocked+0x136/0x260
[  287.393231][    C1]  static_key_enable+0x1a/0x20
[  287.393249][    C1]  toggle_allocation_gate+0xb5/0x250
[  287.393267][    C1]  ? __pfx_toggle_allocation_gate+0x10/0x10
[  287.393286][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  287.393313][    C1]  ? process_scheduled_works+0x825/0x1420
[  287.393335][    C1]  process_scheduled_works+0x913/0x1420
[  287.393372][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  287.393402][    C1]  ? assign_work+0x364/0x3d0
[  287.393425][    C1]  worker_thread+0xa5f/0x1000
[  287.393456][    C1]  ? __pfx_worker_thread+0x10/0x10
[  287.393477][    C1]  kthread+0x2ef/0x390
[  287.393492][    C1]  ? __pfx_worker_thread+0x10/0x10
[  287.393513][    C1]  ? __pfx_kthread+0x10/0x10
[  287.393528][    C1]  ret_from_fork+0x4b/0x80
[  287.393547][    C1]  ? __pfx_kthread+0x10/0x10
[  287.393562][    C1]  ret_from_fork_asm+0x1b/0x30
[  287.393589][    C1]  </TASK>
[  287.393595][    C1] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.397 msecs
[  287.394607][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[  287.394617][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc4-syzkaller-00034-g8d3dea210042 #0
[  287.394634][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
[  287.394642][   T29] Call Trace:
[  287.394648][   T29]  <TASK>
[  287.394654][   T29]  dump_stack_lvl+0x1e7/0x2e0
[  287.394680][   T29]  ? __pfx_dump_stack_lvl+0x10/0x10
[  287.394701][   T29]  ? __pfx__printk+0x10/0x10
[  287.394718][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  287.394744][   T29]  ? vscnprintf+0x5d/0x90
[  287.394761][   T29]  panic+0x349/0x860
[  287.394782][   T29]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  287.394799][   T29]  ? __pfx_panic+0x10/0x10
[  287.394815][   T29]  ? tick_nohz_tick_stopped+0x7b/0xc0
[  287.394844][   T29]  ? __irq_work_queue_local+0x137/0x3e0
[  287.394873][   T29]  ? preempt_schedule_thunk+0x1a/0x30
[  287.394895][   T29]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  287.394910][   T29]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[  287.394928][   T29]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[  287.394947][   T29]  watchdog+0xfee/0xff0
[  287.394969][   T29]  ? watchdog+0x1e9/0xff0
[  287.394993][   T29]  ? __pfx_watchdog+0x10/0x10
[  287.395013][   T29]  kthread+0x2ef/0x390
[  287.395029][   T29]  ? __pfx_watchdog+0x10/0x10
[  287.395048][   T29]  ? __pfx_kthread+0x10/0x10
[  287.395064][   T29]  ret_from_fork+0x4b/0x80
[  287.395083][   T29]  ? __pfx_kthread+0x10/0x10
[  287.395100][   T29]  ret_from_fork_asm+0x1b/0x30
[  287.395131][   T29]  </TASK>
[  287.398181][   T29] Kernel Offset: disabled
[  287.975154][   T29] Rebooting in 86400 seconds..