./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1822406181 <...> Warning: Permanently added '10.128.0.195' (ED25519) to the list of known hosts. execve("./syz-executor1822406181", ["./syz-executor1822406181"], 0x7ffda01d1310 /* 10 vars */) = 0 brk(NULL) = 0x5555558a4000 brk(0x5555558a4d00) = 0x5555558a4d00 arch_prctl(ARCH_SET_FS, 0x5555558a4380) = 0 set_tid_address(0x5555558a4650) = 5068 set_robust_list(0x5555558a4660, 24) = 0 rseq(0x5555558a4ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1822406181", 4096) = 28 getrandom("\x64\x94\x59\x06\x66\x7c\x97\xdd", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555558a4d00 brk(0x5555558c5d00) = 0x5555558c5d00 brk(0x5555558c6000) = 0x5555558c6000 mprotect(0x7f537af61000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 unshare(CLONE_NEWPID) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555558a4650) = 5069 ./strace-static-x86_64: Process 5069 attached [pid 5069] set_robust_list(0x5555558a4660, 24) = 0 [pid 5069] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy) [pid 5069] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5069] setsid() = 1 [pid 5069] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0 [pid 5069] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0 [pid 5069] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0 [pid 5069] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0 [pid 5069] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0 [pid 5069] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0 [pid 5069] unshare(CLONE_NEWNS) = 0 [pid 5069] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0 [pid 5069] unshare(CLONE_NEWIPC) = 0 [pid 5069] unshare(CLONE_NEWCGROUP) = 0 [pid 5069] unshare(CLONE_NEWUTS) = 0 [pid 5069] unshare(CLONE_SYSVSEM) = 0 [pid 5069] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5069] write(3, "16777216", 8) = 8 [pid 5069] close(3) = 0 [pid 5069] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3 [pid 5069] write(3, "536870912", 9) = 9 [pid 5069] close(3) = 0 [pid 5069] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5069] write(3, "1024", 4) = 4 [pid 5069] close(3) = 0 [pid 5069] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5069] write(3, "8192", 4) = 4 [pid 5069] close(3) = 0 [pid 5069] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5069] write(3, "1024", 4) = 4 [pid 5069] close(3) = 0 [pid 5069] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3 [pid 5069] write(3, "1024", 4) = 4 [pid 5069] close(3) = 0 [pid 5069] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3 [pid 5069] write(3, "1024 1048576 500 1024", 21) = 21 [pid 5069] close(3) = 0 [pid 5069] getpid() = 1 [pid 5069] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<qsmask 0x0 [ 184.198630][ C0] rcu: rcu_preempt kthread starved for 10502 jiffies! g7957 f0x2 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 184.209750][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 184.219729][ C0] rcu: RCU grace-period kthread stack dump: [ 184.225624][ C0] task:rcu_preempt state:R running task stack:24656 pid:17 tgid:17 ppid:2 flags:0x00004000 [ 184.237386][ C0] Call Trace: [ 184.240683][ C0] [ 184.243633][ C0] __schedule+0x17d1/0x49f0 [ 184.248236][ C0] ? __pfx___schedule+0x10/0x10 [ 184.253121][ C0] ? __pfx_lock_release+0x10/0x10 [ 184.258184][ C0] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 184.264023][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 184.270398][ C0] ? schedule+0x8e/0x260 [ 184.274667][ C0] schedule+0x149/0x260 [ 184.278851][ C0] schedule_timeout+0x1bd/0x310 [ 184.283736][ C0] ? __pfx_schedule_timeout+0x10/0x10 [ 184.289132][ C0] ? __pfx_process_timeout+0x10/0x10 [ 184.294447][ C0] ? prepare_to_swait_event+0x32d/0x350 [ 184.300029][ C0] rcu_gp_fqs_loop+0x2df/0x1330 [ 184.304910][ C0] ? __pfx_rcu_gp_init+0x10/0x10 [ 184.309868][ C0] ? _raw_spin_unlock_irqrestore+0x8f/0x140 [ 184.315781][ C0] ? lockdep_hardirqs_on+0x98/0x140 [ 184.321002][ C0] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 184.326308][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 184.332239][ C0] ? finish_swait+0xd3/0x1e0 [ 184.336854][ C0] rcu_gp_kthread+0xa7/0x3b0 [ 184.341487][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 184.346708][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 184.352628][ C0] ? __kthread_parkme+0x168/0x1d0 [ 184.357685][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 184.362911][ C0] kthread+0x2ef/0x390 [ 184.366998][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 184.372216][ C0] ? __pfx_kthread+0x10/0x10 [ 184.376822][ C0] ret_from_fork+0x4b/0x80 [ 184.381266][ C0] ? __pfx_kthread+0x10/0x10 [ 184.385893][ C0] ret_from_fork_asm+0x1b/0x30 [ 184.390704][ C0] [ 184.393735][ C0] rcu: Stack dump where RCU GP kthread last ran: [ 184.400064][ C0] Sending NMI from CPU 0 to CPUs 1: [ 184.405281][ C1] NMI backtrace for cpu 1 [ 184.405291][ C1] CPU: 1 PID: 5080 Comm: syz-executor182 Not tainted 6.8.0-rc5-syzkaller #0 [ 184.405307][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 184.405316][ C1] RIP: 0010:lock_acquire+0x22d/0x530 [ 184.405375][ C1] Code: 0f 85 ac 01 00 00 49 89 de 48 c1 eb 03 42 80 3c 2b 00 74 08 4c 89 f7 e8 11 73 84 00 48 c7 44 24 60 00 00 00 00 9c 8f 44 24 60 <42> 80 3c 2b 00 74 08 4c 89 f7 e8 04 72 84 00 f6 44 24 61 02 0f 85 [ 184.405388][ C1] RSP: 0018:ffffc900001f0b60 EFLAGS: 00000046 [ 184.405403][ C1] RAX: 0000000000000001 RBX: 1ffff9200003e178 RCX: 0000000000000001 [ 184.405414][ C1] RDX: dffffc0000000000 RSI: ffffffff8baac740 RDI: ffffffff8bfe6c60 [ 184.405426][ C1] RBP: ffffc900001f0ca8 R08: ffffffff92c8c42f R09: 1ffffffff2591885 [ 184.405437][ C1] R10: dffffc0000000000 R11: fffffbfff2591886 R12: 1ffff9200003e174 [ 184.405449][ C1] R13: dffffc0000000000 R14: ffffc900001f0bc0 R15: 0000000000000046 [ 184.405461][ C1] FS: 00005555558a4380(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 [ 184.405479][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 184.405491][ C1] CR2: 0000000020000600 CR3: 0000000028e3c000 CR4: 00000000003506f0 [ 184.405504][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 184.405513][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 184.405523][ C1] Call Trace: [ 184.405529][ C1] [ 184.405535][ C1] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 184.405552][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 184.405576][ C1] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 184.405592][ C1] ? nmi_handle+0x2a/0x580 [ 184.405615][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 184.405633][ C1] ? nmi_handle+0x14f/0x580 [ 184.405647][ C1] ? nmi_handle+0x2a/0x580 [ 184.405662][ C1] ? lock_acquire+0x22d/0x530 [ 184.405684][ C1] ? default_do_nmi+0x63/0x160 [ 184.405700][ C1] ? exc_nmi+0x121/0x210 [ 184.405716][ C1] ? end_repeat_nmi+0xf/0x60 [ 184.405745][ C1] ? lock_acquire+0x22d/0x530 [ 184.405768][ C1] ? lock_acquire+0x22d/0x530 [ 184.405790][ C1] ? lock_acquire+0x22d/0x530 [ 184.405813][ C1] [ 184.405817][ C1] [ 184.405822][ C1] ? advance_sched+0xa02/0xca0 [ 184.405892][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 184.405919][ C1] ? do_raw_spin_unlock+0x13b/0x8b0 [ 184.405938][ C1] ? taprio_set_budgets+0x32c/0x370 [ 184.405955][ C1] ? advance_sched+0xa02/0xca0 [ 184.405972][ C1] ? advance_sched+0xa02/0xca0 [ 184.405991][ C1] _raw_spin_lock_irq+0xd3/0x120 [ 184.406010][ C1] ? __hrtimer_run_queues+0x659/0xd00 [ 184.406026][ C1] ? __pfx__raw_spin_lock_irq+0x10/0x10 [ 184.406051][ C1] __hrtimer_run_queues+0x659/0xd00 [ 184.406077][ C1] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 184.406093][ C1] ? ktime_get_update_offsets_now+0x411/0x430 [ 184.406119][ C1] hrtimer_interrupt+0x396/0x990 [ 184.406147][ C1] __sysvec_apic_timer_interrupt+0x107/0x3a0 [ 184.406170][ C1] sysvec_apic_timer_interrupt+0x92/0xb0 [ 184.406190][ C1] [ 184.406195][ C1] [ 184.406200][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 184.406224][ C1] RIP: 0010:_raw_spin_unlock_irqrestore+0xd8/0x140 [ 184.406245][ C1] Code: 9c 8f 44 24 20 42 80 3c 23 00 74 08 4c 89 f7 e8 fe 19 84 f6 f6 44 24 21 02 75 52 41 f7 c7 00 02 00 00 74 01 fb bf 01 00 00 00 f3 dc f2 f5 65 8b 05 94 4e 92 74 85 c0 74 43 48 c7 04 24 0e 36 [ 184.406258][ C1] RSP: 0018:ffffc9000395eca0 EFLAGS: 00000206 [ 184.406272][ C1] RAX: bb49747661e62a00 RBX: 1ffff9200072bd98 RCX: ffffffff817188da [ 184.406284][ C1] RDX: dffffc0000000000 RSI: ffffffff8baab5c0 RDI: 0000000000000001 [ 184.406295][ C1] RBP: ffffc9000395ed30 R08: ffffffff92c8c4e7 R09: 1ffffffff259189c [ 184.406306][ C1] R10: dffffc0000000000 R11: fffffbfff259189d R12: dffffc0000000000 [ 184.406318][ C1] R13: 1ffff9200072bd94 R14: ffffc9000395ecc0 R15: 0000000000000246 [ 184.406334][ C1] ? mark_lock+0x9a/0x350 [ 184.406352][ C1] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 184.406379][ C1] taprio_change+0x4912/0x57d0 [ 184.406408][ C1] ? __pfx_taprio_change+0x10/0x10 [ 184.406455][ C1] ? nla_strcmp+0xd5/0x110 [ 184.406486][ C1] ? __pfx_taprio_change+0x10/0x10 [ 184.406501][ C1] tc_modify_qdisc+0x190d/0x1e40 [ 184.406531][ C1] ? __pfx_tc_modify_qdisc+0x10/0x10 [ 184.406566][ C1] ? __pfx_tc_modify_qdisc+0x10/0x10 [ 184.406587][ C1] rtnetlink_rcv_msg+0x885/0x1040 [ 184.406612][ C1] ? rtnetlink_rcv_msg+0x208/0x1040 [ 184.406635][ C1] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 184.406660][ C1] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 184.406685][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 184.406711][ C1] ? __local_bh_enable_ip+0x168/0x200 [ 184.406735][ C1] ? lockdep_hardirqs_on+0x98/0x140 [ 184.406756][ C1] ? __local_bh_enable_ip+0x168/0x200 [ 184.406780][ C1] ? __dev_queue_xmit+0x2c4/0x3b10 [ 184.406798][ C1] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 184.406826][ C1] ? __dev_queue_xmit+0x2c4/0x3b10 [ 184.406845][ C1] ? __dev_queue_xmit+0x15fd/0x3b10 [ 184.406870][ C1] ? __dev_queue_xmit+0x2c4/0x3b10 [ 184.406894][ C1] ? ref_tracker_free+0x643/0x7e0 [ 184.406936][ C1] netlink_rcv_skb+0x1e3/0x430 [ 184.406964][ C1] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 184.406989][ C1] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 184.407027][ C1] ? netlink_deliver_tap+0x2e/0x1b0 [ 184.407054][ C1] netlink_unicast+0x7ea/0x980 [ 184.407083][ C1] ? __pfx_netlink_unicast+0x10/0x10 [ 184.407105][ C1] ? __virt_addr_valid+0x44e/0x520 [ 184.407129][ C1] ? __phys_addr_symbol+0x2f/0x70 [ 184.407155][ C1] ? __check_object_size+0x4bb/0xa00 [ 184.407175][ C1] ? bpf_lsm_netlink_send+0x9/0x10 [ 184.407215][ C1] netlink_sendmsg+0xa3b/0xd70 [ 184.407240][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 184.407258][ C1] ? __import_iovec+0x552/0x890 [ 184.407283][ C1] ? aa_sock_msg_perm+0x91/0x160 [ 184.407311][ C1] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 184.407334][ C1] ? security_socket_sendmsg+0x87/0xb0 [ 184.407357][ C1] ? __pfx_netlink_sendmsg+0x10/0x10 [ 184.407373][ C1] __sock_sendmsg+0x221/0x270 [ 184.407401][ C1] ____sys_sendmsg+0x525/0x7d0 [ 184.407427][ C1] ? __pfx_____sys_sendmsg+0x10/0x10 [ 184.407450][ C1] ? do_raw_spin_lock+0x14e/0x370 [ 184.407482][ C1] __sys_sendmsg+0x2b0/0x3a0 [ 184.407504][ C1] ? __pfx___sys_sendmsg+0x10/0x10 [ 184.407532][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 184.407564][ C1] ? _raw_spin_unlock_irq+0x2e/0x50 [ 184.407585][ C1] ? ptrace_notify+0x278/0x380 [ 184.407616][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 184.407642][ C1] ? do_syscall_64+0x108/0x240 [ 184.407668][ C1] ? syscall_trace_enter+0x5e/0x150 [ 184.407696][ C1] do_syscall_64+0xf9/0x240 [ 184.407722][ C1] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 184.407747][ C1] RIP: 0033:0x7f537aee8c29 [ 184.407769][ C1] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 d1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 184.407783][ C1] RSP: 002b:00007fff81b8a778 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 184.407800][ C1] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f537aee8c29 [ 184.407812][ C1] RDX: 0000000000000000 RSI: 00000000200007c0 RDI: 0000000000000006 [ 184.407823][ C1] RBP: 00000000000f4240 R08: 0000000100000000 R09: 0000000100000000 [ 184.407834][ C1] R10: 0000000100000000 R11: 0000000000000246 R12: 00007fff81b8a7d0 [ 184.407846][ C1] R13: 0000000000000001 R14: 00007fff81b8a7d0 R15: 0000000000000003 [ 184.407866][ C1] [ 184.407874][ C1] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 2.592 msecs