./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2927969321 <...> Warning: Permanently added '10.128.10.17' (ECDSA) to the list of known hosts. execve("./syz-executor2927969321", ["./syz-executor2927969321"], 0x7ffd85e81500 /* 10 vars */) = 0 brk(NULL) = 0x555556fbc000 brk(0x555556fbcc40) = 0x555556fbcc40 arch_prctl(ARCH_SET_FS, 0x555556fbc300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor2927969321", 4096) = 28 brk(0x555556fddc40) = 0x555556fddc40 brk(0x555556fde000) = 0x555556fde000 mprotect(0x7f876ea49000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 3609 attached , child_tidptr=0x555556fbc5d0) = 3609 [pid 3609] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3609] setpgid(0, 0) = 0 [pid 3609] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3609] write(3, "1000", 4) = 4 [pid 3609] close(3) = 0 [pid 3609] socketpair(AF_UNIX, SOCK_STREAM, 0, [3, 4]) = 0 [pid 3609] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 5 [pid 3609] ioctl(5, NBD_SET_SOCK, 3) = 0 [pid 3609] ioctl(5, NBD_SET_SIZE, 2048) = 0 [pid 3609] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 6 [ 49.760780][ T3609] nbd0: detected capacity change from 0 to 4 [pid 3609] ioctl(6, NBD_DO_IT [pid 3608] kill(-3609, SIGKILL) = 0 [pid 3608] kill(3609, SIGKILL) = 0 [pid 3609] <... ioctl resumed>) = ? [ 54.717394][ T3609] block nbd0: shutting down sockets [pid 3608] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 3608] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 3608] getdents64(3, 0x555556fbd620 /* 2 entries */, 32768) = 48 [pid 3608] getdents64(3, 0x555556fbd620 /* 0 entries */, 32768) = 0 [pid 3608] close(3) = 0 [ 76.277928][ T15] cfg80211: failed to load regulatory.db [ 80.116252][ T10] block nbd0: Possible stuck request ffff88801ed08000: control (read@0,2048B). Runtime 30 seconds [ 110.196177][ T10] block nbd0: Possible stuck request ffff88801ed08000: control (read@0,2048B). Runtime 60 seconds [ 111.281536][ T2975] udevd[2975]: worker [3611] /devices/virtual/block/nbd0 is taking a long time [ 140.276181][ T10] block nbd0: Possible stuck request ffff88801ed08000: control (read@0,2048B). Runtime 90 seconds [ 170.356181][ T10] block nbd0: Possible stuck request ffff88801ed08000: control (read@0,2048B). Runtime 120 seconds [ 200.436158][ T10] block nbd0: Possible stuck request ffff88801ed08000: control (read@0,2048B). Runtime 150 seconds [ 230.516144][ T10] block nbd0: Possible stuck request ffff88801ed08000: control (read@0,2048B). Runtime 180 seconds [ 231.445788][ T2975] udevd[2975]: worker [3611] /devices/virtual/block/nbd0 timeout; kill it [ 231.454549][ T2975] udevd[2975]: seq 7470 '/devices/virtual/block/nbd0' killed [ 260.596108][ T10] block nbd0: Possible stuck request ffff88801ed08000: control (read@0,2048B). Runtime 210 seconds [ 286.196198][ T29] INFO: task syz-executor292:3609 blocked for more than 143 seconds. [ 286.204469][ T29] Not tainted 6.0.0-syzkaller-06205-gffb39098bf87 #0 [ 286.211815][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.220609][ T29] task:syz-executor292 state:D stack:25984 pid: 3609 ppid: 3608 flags:0x00004006 [ 286.230168][ T29] Call Trace: [ 286.233467][ T29] [ 286.236618][ T29] __schedule+0x957/0xe20 [ 286.241082][ T29] ? release_firmware_map_entry+0x186/0x186 [ 286.247170][ T29] ? __mutex_trylock_common+0x8e/0x2f0 [ 286.252696][ T29] ? do_raw_spin_unlock+0x134/0x8a0 [ 286.258105][ T29] schedule+0xcb/0x190 [ 286.262190][ T29] schedule_preempt_disabled+0xf/0x20 [ 286.267732][ T29] __mutex_lock_common+0xecf/0x26c0 [ 286.272951][ T29] ? blkdev_put+0x100/0x730 [ 286.277702][ T29] ? mutex_lock_io_nested+0x60/0x60 [ 286.282917][ T29] ? __fsnotify_parent+0x4fd/0x710 [ 286.288352][ T29] ? blkdev_open+0x2e0/0x2e0 [ 286.292957][ T29] mutex_lock_nested+0x17/0x20 [ 286.297959][ T29] blkdev_put+0x100/0x730 [ 286.302327][ T29] ? lockdep_hardirqs_on_prepare+0x448/0x7b0 [ 286.308490][ T29] ? blkdev_open+0x2e0/0x2e0 [ 286.313099][ T29] blkdev_close+0x55/0x80 [ 286.317615][ T29] __fput+0x3b9/0x820 [ 286.321692][ T29] task_work_run+0x146/0x1c0 [ 286.326677][ T29] do_exit+0x55e/0x20a0 [ 286.330903][ T29] ? mm_update_next_owner+0x6d0/0x6d0 [ 286.336399][ T29] ? lockdep_hardirqs_on_prepare+0x448/0x7b0 [ 286.342508][ T29] ? print_irqtrace_events+0x220/0x220 [ 286.348199][ T29] ? _raw_spin_lock_irq+0xdb/0x110 [ 286.353327][ T29] do_group_exit+0x23b/0x2f0 [ 286.358101][ T29] ? _raw_spin_unlock_irq+0x1f/0x40 [ 286.363360][ T29] ? lockdep_hardirqs_on+0x95/0x140 [ 286.368772][ T29] get_signal+0x172f/0x1780 [ 286.373293][ T29] ? ptrace_notify+0x340/0x340 [ 286.378422][ T29] ? do_raw_spin_unlock+0x134/0x8a0 [ 286.383642][ T29] arch_do_signal_or_restart+0x8d/0x750 [ 286.389412][ T29] ? _raw_spin_unlock_irq+0x2a/0x40 [ 286.394628][ T29] ? ptrace_notify+0x245/0x340 [ 286.399591][ T29] ? get_sigframe_size+0x10/0x10 [ 286.404551][ T29] ? vtime_user_exit+0x2b2/0x3e0 [ 286.409751][ T29] ? exit_to_user_mode_loop+0x42/0x160 [ 286.415293][ T29] exit_to_user_mode_loop+0x74/0x160 [ 286.420765][ T29] exit_to_user_mode_prepare+0xad/0x110 [ 286.426478][ T29] syscall_exit_to_user_mode+0x2e/0x60 [ 286.431959][ T29] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 286.438126][ T29] RIP: 0033:0x7f876e9dc3a9 [ 286.442546][ T29] RSP: 002b:00007fffb7e37648 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 286.451262][ T29] RAX: fffffffffffffe00 RBX: 0000000000000000 RCX: 00007f876e9dc3a9 [ 286.459369][ T29] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000006 [ 286.467456][ T29] RBP: 0000000000000000 R08: 00007fffb7e377e8 R09: 00007fffb7e377e8 [ 286.475440][ T29] R10: 000000000000ffff R11: 0000000000000246 R12: 00007f876e99b6c0 [ 286.483609][ T29] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 286.491875][ T29] [ 286.494947][ T29] [ 286.494947][ T29] Showing all locks held in the system: [ 286.502728][ T29] 1 lock held by rcu_tasks_kthre/13: [ 286.508042][ T29] #0: ffffffff8cd1f1b0 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x30/0xd00 [ 286.518592][ T29] 1 lock held by rcu_tasks_trace/14: [ 286.523872][ T29] #0: ffffffff8cd1f9b0 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x30/0xd00 [ 286.534897][ T29] 1 lock held by khungtaskd/29: [ 286.539768][ T29] #0: ffffffff8cd1efe0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x0/0x30 [ 286.549149][ T29] 2 locks held by getty/3292: [ 286.553822][ T29] #0: ffff88814a9ec098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70 [ 286.563650][ T29] #1: ffffc900031262f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6e8/0x1e50 [ 286.573789][ T29] 1 lock held by syz-executor292/3609: [ 286.579280][ T29] #0: ffff88801ec414c8 (&disk->open_mutex){+.+.}-{3:3}, at: blkdev_put+0x100/0x730 [ 286.588755][ T29] 1 lock held by udevd/3611: [ 286.593343][ T29] #0: ffff88801ec414c8 (&disk->open_mutex){+.+.}-{3:3}, at: blkdev_get_by_dev+0xfd/0xa40 [ 286.603297][ T29] [ 286.605630][ T29] ============================================= [ 286.605630][ T29] [ 286.614093][ T29] NMI backtrace for cpu 1 [ 286.618419][ T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.0.0-syzkaller-06205-gffb39098bf87 #0 [ 286.627857][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 286.637895][ T29] Call Trace: [ 286.641158][ T29] [ 286.644075][ T29] dump_stack_lvl+0x1e3/0x2cb [ 286.648741][ T29] ? io_alloc_page_table+0x110/0x110 [ 286.654012][ T29] ? panic+0x76b/0x76b [ 286.658112][ T29] ? tick_nohz_tick_stopped+0x76/0xb0 [ 286.663518][ T29] ? nmi_cpu_backtrace+0x248/0x4b0 [ 286.668640][ T29] nmi_cpu_backtrace+0x47c/0x4b0 [ 286.673567][ T29] ? vprintk_emit+0x109/0x1e0 [ 286.678271][ T29] ? nmi_trigger_cpumask_backtrace+0x280/0x280 [ 286.684411][ T29] ? _printk+0xcf/0x10f [ 286.688597][ T29] ? panic+0x76b/0x76b [ 286.692652][ T29] ? __wake_up_klogd+0xcd/0x100 [ 286.697488][ T29] ? panic+0x76b/0x76b [ 286.701547][ T29] ? __rcu_read_unlock+0x8f/0x100 [ 286.706555][ T29] ? arch_trigger_cpumask_backtrace+0x10/0x10 [ 286.712651][ T29] nmi_trigger_cpumask_backtrace+0x169/0x280 [ 286.718630][ T29] watchdog+0xcd5/0xd20 [ 286.722833][ T29] kthread+0x266/0x300 [ 286.726896][ T29] ? hungtask_pm_notify+0x50/0x50 [ 286.731916][ T29] ? kthread_blkcg+0xd0/0xd0 [ 286.736504][ T29] ret_from_fork+0x1f/0x30 [ 286.740938][ T29] [ 286.744042][ T29] Sending NMI from CPU 1 to CPUs 0: [ 286.749301][ C0] NMI backtrace for cpu 0 [ 286.749310][ C0] CPU: 0 PID: 83 Comm: kworker/u4:4 Not tainted 6.0.0-syzkaller-06205-gffb39098bf87 #0 [ 286.749325][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 286.749334][ C0] Workqueue: events_unbound toggle_allocation_gate [ 286.749398][ C0] RIP: 0010:lockdep_hardirqs_on+0x15/0x140 [ 286.749420][ C0] Code: d1 2c 13 f7 0f 0b c3 cc cc cc cc cc cc cc cc cc cc cc cc cc cc 41 56 53 48 83 ec 10 65 48 8b 04 25 28 00 00 00 48 89 44 24 08 <65> 48 8b 1c 25 00 6f 02 00 83 3d df 31 e9 03 00 0f 84 90 00 00 00 [ 286.749431][ C0] RSP: 0018:ffffc900015877b8 EFLAGS: 00000086 [ 286.749442][ C0] RAX: 5cb9812f9d413300 RBX: 00002aaaaaaac000 RCX: ffffffff8168b11a [ 286.749452][ C0] RDX: dffffc0000000000 RSI: ffffffff8aad72c0 RDI: ffffffff81320714 [ 286.749462][ C0] RBP: ffffc900015879b0 R08: dffffc0000000000 R09: fffffbfff1ff6a0b [ 286.749472][ C0] R10: fffffbfff1ff6a0b R11: 1ffffffff1ff6a0a R12: ffff8880122d1558 [ 286.749482][ C0] R13: dffffc0000000000 R14: ffffc90001587900 R15: ffffffff81dc1a07 [ 286.749492][ C0] FS: 0000000000000000(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000 [ 286.749503][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 286.749513][ C0] CR2: 00005622847c2f88 CR3: 000000000ca8e000 CR4: 00000000003506f0 [ 286.749526][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 286.749534][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 286.749542][ C0] Call Trace: [ 286.749546][ C0] [ 286.749553][ C0] __text_poke+0x7c4/0x9d0 [ 286.749590][ C0] ? __kmalloc+0xf7/0x370 [ 286.749608][ C0] ? __text_poke+0x9d0/0x9d0 [ 286.749622][ C0] ? text_poke+0x90/0x90 [ 286.749632][ C0] ? rcu_read_lock_sched_held+0x89/0x130 [ 286.749649][ C0] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 286.749665][ C0] ? trace_raw_output_contention_end+0xd0/0xd0 [ 286.749683][ C0] ? trace_contention_end+0x4d/0x140 [ 286.749703][ C0] ? __kmalloc+0xf7/0x370 [ 286.749718][ C0] text_poke_bp_batch+0x14c/0x850 [ 286.749736][ C0] ? text_poke_loc_init+0x510/0x510 [ 286.749749][ C0] ? arch_jump_label_transform_queue+0x7c/0xd0 [ 286.749769][ C0] ? __jump_label_update+0x38e/0x3b0 [ 286.749814][ C0] text_poke_finish+0x16/0x30 [ 286.749826][ C0] arch_jump_label_transform_apply+0x13/0x20 [ 286.749844][ C0] static_key_disable_cpuslocked+0xc8/0x1b0 [ 286.749865][ C0] static_key_disable+0x16/0x20 [ 286.749884][ C0] toggle_allocation_gate+0x3d8/0x470 [ 286.749902][ C0] ? virt_to_slab+0x2c0/0x2c0 [ 286.749922][ C0] ? rcu_read_lock_sched_held+0x89/0x130 [ 286.749937][ C0] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 286.749952][ C0] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 286.749978][ C0] process_one_work+0x81c/0xd10 [ 286.750010][ C0] ? worker_detach_from_pool+0x260/0x260 [ 286.750031][ C0] ? _raw_spin_lock_irqsave+0x120/0x120 [ 286.750048][ C0] ? kthread_data+0x4d/0xc0 [ 286.750064][ C0] ? wq_worker_running+0x95/0x190 [ 286.750081][ C0] worker_thread+0xb14/0x1330 [ 286.750113][ C0] kthread+0x266/0x300 [ 286.750128][ C0] ? rcu_lock_release+0x20/0x20 [ 286.750144][ C0] ? kthread_blkcg+0xd0/0xd0 [ 286.750160][ C0] ret_from_fork+0x1f/0x30 [ 286.750185][ C0] [ 286.750331][ T29] Kernel panic - not syncing: hung_task: blocked tasks [ 287.070714][ T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.0.0-syzkaller-06205-gffb39098bf87 #0 [ 287.080155][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 287.090193][ T29] Call Trace: [ 287.093461][ T29] [ 287.096381][ T29] dump_stack_lvl+0x1e3/0x2cb [ 287.101049][ T29] ? io_alloc_page_table+0x110/0x110 [ 287.106320][ T29] ? panic+0x76b/0x76b [ 287.110387][ T29] ? vscnprintf+0x59/0x80 [ 287.114706][ T29] panic+0x316/0x76b [ 287.118584][ T29] ? schedule_preempt_disabled+0x20/0x20 [ 287.124203][ T29] ? nmi_trigger_cpumask_backtrace+0x205/0x280 [ 287.130348][ T29] ? fb_is_primary_device+0xcc/0xcc [ 287.135533][ T29] ? arch_trigger_cpumask_backtrace+0x10/0x10 [ 287.141587][ T29] ? nmi_trigger_cpumask_backtrace+0x205/0x280 [ 287.147735][ T29] ? nmi_trigger_cpumask_backtrace+0x265/0x280 [ 287.153877][ T29] watchdog+0xd16/0xd20 [ 287.158023][ T29] kthread+0x266/0x300 [ 287.162079][ T29] ? hungtask_pm_notify+0x50/0x50 [ 287.167088][ T29] ? kthread_blkcg+0xd0/0xd0 [ 287.171665][ T29] ret_from_fork+0x1f/0x30 [ 287.176076][ T29] [ 287.179373][ T29] Kernel Offset: disabled [ 287.183696][ T29] Rebooting in 86400 seconds..