./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1108564089 <...> Warning: Permanently added '10.128.0.7' (ED25519) to the list of known hosts. execve("./syz-executor1108564089", ["./syz-executor1108564089"], 0x7ffc7cdc46d0 /* 10 vars */) = 0 brk(NULL) = 0x5555558d5000 brk(0x5555558d5d00) = 0x5555558d5d00 arch_prctl(ARCH_SET_FS, 0x5555558d5380) = 0 set_tid_address(0x5555558d5650) = 5074 set_robust_list(0x5555558d5660, 24) = 0 rseq(0x5555558d5ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1108564089", 4096) = 28 getrandom("\x9d\xc9\xdc\x2e\x04\xbf\xeb\x9e", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555558d5d00 brk(0x5555558f6d00) = 0x5555558f6d00 brk(0x5555558f7000) = 0x5555558f7000 mprotect(0x7f96f6c66000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5075 attached [pid 5075] set_robust_list(0x5555558d5660, 24 [pid 5074] <... clone resumed>, child_tidptr=0x5555558d5650) = 5075 [pid 5075] <... set_robust_list resumed>) = 0 [pid 5075] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5074] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5076 attached [pid 5075] <... clone resumed>, child_tidptr=0x5555558d5650) = 5076 [pid 5076] set_robust_list(0x5555558d5660, 24./strace-static-x86_64: Process 5077 attached [pid 5074] <... clone resumed>, child_tidptr=0x5555558d5650) = 5077 [pid 5077] set_robust_list(0x5555558d5660, 24 [pid 5074] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5076] <... set_robust_list resumed>) = 0 [pid 5076] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5077] <... set_robust_list resumed>) = 0 [pid 5076] <... prctl resumed>) = 0 [pid 5076] setpgid(0, 0) = 0 ./strace-static-x86_64: Process 5078 attached [pid 5077] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5074] <... clone resumed>, child_tidptr=0x5555558d5650) = 5078 [pid 5074] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5078] set_robust_list(0x5555558d5660, 24 [pid 5076] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5078] <... set_robust_list resumed>) = 0 [pid 5078] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5076] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5079 attached ./strace-static-x86_64: Process 5080 attached [pid 5079] set_robust_list(0x5555558d5660, 24 [pid 5077] <... clone resumed>, child_tidptr=0x5555558d5650) = 5079 [pid 5074] <... clone resumed>, child_tidptr=0x5555558d5650) = 5080 [pid 5079] <... set_robust_list resumed>) = 0 [pid 5076] write(3, "1000", 4 [pid 5080] set_robust_list(0x5555558d5660, 24 [pid 5074] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5079] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5080] <... set_robust_list resumed>) = 0 [pid 5076] <... write resumed>) = 4 [pid 5079] <... prctl resumed>) = 0 ./strace-static-x86_64: Process 5081 attached [pid 5080] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5079] setpgid(0, 0 [pid 5076] close(3./strace-static-x86_64: Process 5082 attached ) = 0 [pid 5074] <... clone resumed>, child_tidptr=0x5555558d5650) = 5082 [pid 5082] set_robust_list(0x5555558d5660, 24 [pid 5081] set_robust_list(0x5555558d5660, 24 [pid 5079] <... setpgid resumed>) = 0 [pid 5078] <... clone resumed>, child_tidptr=0x5555558d5650) = 5081 [pid 5074] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5082] <... set_robust_list resumed>) = 0 [pid 5082] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5081] <... set_robust_list resumed>) = 0 [pid 5079] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5076] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC [pid 5081] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 5085 attached ./strace-static-x86_64: Process 5083 attached ./strace-static-x86_64: Process 5084 attached ) = 0 [pid 5080] <... clone resumed>, child_tidptr=0x5555558d5650) = 5084 [pid 5079] <... openat resumed>) = 3 [pid 5076] <... openat resumed>) = 3 [pid 5074] <... clone resumed>, child_tidptr=0x5555558d5650) = 5083 [pid 5085] set_robust_list(0x5555558d5660, 24 [pid 5083] set_robust_list(0x5555558d5660, 24 [pid 5084] set_robust_list(0x5555558d5660, 24 [pid 5082] <... clone resumed>, child_tidptr=0x5555558d5650) = 5085 [pid 5081] setpgid(0, 0 [pid 5085] <... set_robust_list resumed>) = 0 [pid 5083] <... set_robust_list resumed>) = 0 [pid 5084] <... set_robust_list resumed>) = 0 [pid 5081] <... setpgid resumed>) = 0 [pid 5079] write(3, "1000", 4 [pid 5085] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5083] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5084] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5079] <... write resumed>) = 4 [pid 5076] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5081] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5079] close(3 [pid 5085] <... prctl resumed>) = 0 [pid 5084] <... prctl resumed>) = 0 [pid 5081] <... openat resumed>) = 3 [pid 5079] <... close resumed>) = 0 [pid 5085] setpgid(0, 0 [pid 5084] setpgid(0, 0 [pid 5079] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC [pid 5081] write(3, "1000", 4 [pid 5085] <... setpgid resumed>) = 0 [pid 5084] <... setpgid resumed>) = 0 [pid 5085] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5084] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5081] <... write resumed>) = 4 [pid 5085] <... openat resumed>) = 3 [pid 5079] <... openat resumed>) = 3 [pid 5084] <... openat resumed>) = 3 [pid 5081] close(3) = 0 [pid 5079] ioctl(3, BLKZEROOUT, [0, 137438955520]./strace-static-x86_64: Process 5086 attached [pid 5085] write(3, "1000", 4 [pid 5083] <... clone resumed>, child_tidptr=0x5555558d5650) = 5086 [pid 5084] write(3, "1000", 4 [pid 5085] <... write resumed>) = 4 [pid 5084] <... write resumed>) = 4 [pid 5081] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC [pid 5085] close(3 [pid 5084] close(3 [pid 5085] <... close resumed>) = 0 [pid 5084] <... close resumed>) = 0 [pid 5086] set_robust_list(0x5555558d5660, 24 [pid 5085] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC [pid 5081] <... openat resumed>) = 3 [pid 5086] <... set_robust_list resumed>) = 0 [pid 5085] <... openat resumed>) = 3 [pid 5084] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC [pid 5081] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5086] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5085] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5084] <... openat resumed>) = 3 [pid 5086] setpgid(0, 0) = 0 [pid 5084] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5086] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5086] write(3, "1000", 4) = 4 [pid 5086] close(3) = 0 [pid 5086] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC) = 3 [pid 5086] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5075] kill(-5076, SIGKILL) = 0 [pid 5075] kill(5076, SIGKILL) = 0 [pid 5077] kill(-5079, SIGKILL) = 0 [pid 5077] kill(5079, SIGKILL) = 0 [pid 5078] kill(-5081, SIGKILL) = 0 [pid 5078] kill(5081, SIGKILL) = 0 [pid 5082] kill(-5085, SIGKILL [pid 5080] kill(-5084, SIGKILL) = 0 [pid 5080] kill(5084, SIGKILL [pid 5082] <... kill resumed>) = 0 [pid 5082] kill(5085, SIGKILL) = 0 [pid 5080] <... kill resumed>) = 0 [pid 5083] kill(-5086, SIGKILL) = 0 [pid 5083] kill(5086, SIGKILL) = 0 [pid 5082] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5077] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5083] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5078] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5083] <... openat resumed>) = 3 [pid 5078] <... openat resumed>) = 3 [pid 5083] newfstatat(3, "", [pid 5082] <... openat resumed>) = 3 [pid 5078] newfstatat(3, "", [pid 5080] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5078] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5083] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5083] getdents64(3, [pid 5080] <... openat resumed>) = 3 [pid 5078] getdents64(3, [pid 5083] <... getdents64 resumed>0x5555558d66f0 /* 2 entries */, 32768) = 48 [pid 5082] newfstatat(3, "", [pid 5080] newfstatat(3, "", [pid 5078] <... getdents64 resumed>0x5555558d66f0 /* 2 entries */, 32768) = 48 [pid 5082] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5080] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5078] getdents64(3, [pid 5077] newfstatat(3, "", [pid 5082] getdents64(3, [pid 5080] getdents64(3, [pid 5078] <... getdents64 resumed>0x5555558d66f0 /* 0 entries */, 32768) = 0 [pid 5077] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5083] getdents64(3, [pid 5082] <... getdents64 resumed>0x5555558d66f0 /* 2 entries */, 32768) = 48 [pid 5080] <... getdents64 resumed>0x5555558d66f0 /* 2 entries */, 32768) = 48 [pid 5078] close(3 [pid 5077] getdents64(3, [pid 5083] <... getdents64 resumed>0x5555558d66f0 /* 0 entries */, 32768) = 0 [pid 5082] getdents64(3, [pid 5080] getdents64(3, [pid 5078] <... close resumed>) = 0 [pid 5075] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5083] close(3 [pid 5082] <... getdents64 resumed>0x5555558d66f0 /* 0 entries */, 32768) = 0 [pid 5080] <... getdents64 resumed>0x5555558d66f0 /* 0 entries */, 32768) = 0 [pid 5077] <... getdents64 resumed>0x5555558d66f0 /* 2 entries */, 32768) = 48 [pid 5075] <... openat resumed>) = 3 [pid 5083] <... close resumed>) = 0 [pid 5082] close(3 [pid 5080] close(3 [pid 5077] getdents64(3, [pid 5075] newfstatat(3, "", [pid 5082] <... close resumed>) = 0 [pid 5080] <... close resumed>) = 0 [pid 5077] <... getdents64 resumed>0x5555558d66f0 /* 0 entries */, 32768) = 0 [pid 5075] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5077] close(3 [pid 5075] getdents64(3, [pid 5077] <... close resumed>) = 0 [pid 5075] <... getdents64 resumed>0x5555558d66f0 /* 2 entries */, 32768) = 48 [pid 5075] getdents64(3, 0x5555558d66f0 /* 0 entries */, 32768) = 0 [pid 5075] close(3) = 0 [pid 5076] <... ioctl resumed>) = ? [pid 5076] +++ killed by SIGKILL +++ [pid 5075] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5076, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=7295 /* 72.95 s */} --- [pid 5075] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5101 attached , child_tidptr=0x5555558d5650) = 5101 [pid 5101] set_robust_list(0x5555558d5660, 24) = 0 [pid 5101] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5101] setpgid(0, 0) = 0 [pid 5101] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5101] write(3, "1000", 4) = 4 [pid 5101] close(3) = 0 [pid 5101] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC) = 3 [pid 5101] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5075] kill(-5101, SIGKILL) = 0 [pid 5075] kill(5101, SIGKILL) = 0 [pid 5075] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5075] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5075] getdents64(3, 0x5555558d66f0 /* 2 entries */, 32768) = 48 [pid 5075] getdents64(3, 0x5555558d66f0 /* 0 entries */, 32768) = 0 [pid 5075] close(3) = 0 [ 286.218305][ T29] INFO: task syz-executor110:5081 blocked for more than 143 seconds. [ 286.226623][ T29] Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 286.234936][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.243708][ T29] task:syz-executor110 state:D stack:28208 pid:5081 tgid:5081 ppid:5078 flags:0x00004006 [ 286.254521][ T29] Call Trace: [ 286.257832][ T29] [ 286.260847][ T29] __schedule+0xf12/0x5c60 [ 286.265362][ T29] ? __pfx___lock_acquire+0x10/0x10 [ 286.270716][ T29] ? hlock_class+0x4e/0x130 [ 286.275284][ T29] ? srso_return_thunk+0x5/0x5f [ 286.280248][ T29] ? mark_lock+0xb5/0xc60 [ 286.284650][ T29] ? mark_lock+0xb5/0xc60 [ 286.289130][ T29] ? srso_return_thunk+0x5/0x5f [ 286.294618][ T29] ? __pfx___schedule+0x10/0x10 [ 286.300106][ T29] ? srso_return_thunk+0x5/0x5f [ 286.305573][ T29] ? schedule+0x200/0x280 [ 286.312108][ T29] ? __pfx_lock_release+0x10/0x10 [ 286.317216][ T29] ? __down_write_common+0x89d/0x1410 [ 286.323805][ T29] schedule+0xe9/0x280 [ 286.327947][ T29] schedule_preempt_disabled+0x13/0x30 [ 286.334093][ T29] __down_write_common+0x94c/0x1410 [ 286.340503][ T29] ? __pfx___down_write_common+0x10/0x10 [ 286.346780][ T29] ? __pfx_lock_acquire+0x10/0x10 [ 286.353014][ T29] ? __pfx___might_resched+0x10/0x10 [ 286.358968][ T29] ? srso_return_thunk+0x5/0x5f [ 286.363889][ T29] blkdev_common_ioctl+0x111f/0x1ce0 [ 286.369314][ T29] ? __pfx_blkdev_common_ioctl+0x10/0x10 [ 286.375033][ T29] ? find_held_lock+0x2d/0x110 [ 286.379916][ T29] ? srso_return_thunk+0x5/0x5f [ 286.384832][ T29] blkdev_ioctl+0x247/0x770 [ 286.389461][ T29] ? __pfx_blkdev_ioctl+0x10/0x10 [ 286.394551][ T29] ? srso_return_thunk+0x5/0x5f [ 286.414590][ T29] ? srso_return_thunk+0x5/0x5f [ 286.432644][ T29] ? __pfx_blkdev_ioctl+0x10/0x10 [ 286.437780][ T29] __x64_sys_ioctl+0x196/0x220 [ 286.443714][ T29] do_syscall_64+0xd8/0x270 [ 286.448891][ T29] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 286.454892][ T29] RIP: 0033:0x7f96f6bf3ae9 [ 286.459386][ T29] RSP: 002b:00007ffda0a63188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 286.467867][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f96f6bf3ae9 [ 286.476554][ T29] RDX: 0000000020000040 RSI: 000000000000127f RDI: 0000000000000003 [ 286.484652][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 286.493903][ T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 286.503151][ T29] R13: 00007ffda0a633a8 R14: 00007ffda0a631b0 R15: 00007ffda0a631a0 [ 286.511843][ T29] [ 286.515451][ T29] INFO: task syz-executor110:5084 blocked for more than 143 seconds. [ 286.524189][ T29] Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 286.533394][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.543201][ T29] task:syz-executor110 state:D stack:28208 pid:5084 tgid:5084 ppid:5080 flags:0x00004006 [ 286.554601][ T29] Call Trace: [ 286.557921][ T29] [ 286.561491][ T29] __schedule+0xf12/0x5c60 [ 286.565976][ T29] ? __pfx___lock_acquire+0x10/0x10 [ 286.571308][ T29] ? hlock_class+0x4e/0x130 [ 286.575870][ T29] ? srso_return_thunk+0x5/0x5f [ 286.580821][ T29] ? mark_lock+0xb5/0xc60 [ 286.585216][ T29] ? mark_lock+0xb5/0xc60 [ 286.589679][ T29] ? srso_return_thunk+0x5/0x5f [ 286.595162][ T29] ? __pfx___schedule+0x10/0x10 [ 286.600621][ T29] ? srso_return_thunk+0x5/0x5f [ 286.605527][ T29] ? schedule+0x200/0x280 [ 286.610533][ T29] ? __pfx_lock_release+0x10/0x10 [ 286.616179][ T29] ? __down_write_common+0x89d/0x1410 [ 286.622747][ T29] schedule+0xe9/0x280 [ 286.626892][ T29] schedule_preempt_disabled+0x13/0x30 [ 286.633051][ T29] __down_write_common+0x94c/0x1410 [ 286.639233][ T29] ? __pfx___down_write_common+0x10/0x10 [ 286.645433][ T29] ? __pfx_lock_acquire+0x10/0x10 [ 286.651128][ T29] ? __pfx___might_resched+0x10/0x10 [ 286.656475][ T29] ? srso_return_thunk+0x5/0x5f [ 286.661973][ T29] blkdev_common_ioctl+0x111f/0x1ce0 [ 286.667332][ T29] ? __pfx_blkdev_common_ioctl+0x10/0x10 [ 286.673116][ T29] ? find_held_lock+0x2d/0x110 [ 286.677949][ T29] ? srso_return_thunk+0x5/0x5f [ 286.683914][ T29] blkdev_ioctl+0x247/0x770 [ 286.689670][ T29] ? __pfx_blkdev_ioctl+0x10/0x10 [ 286.694783][ T29] ? srso_return_thunk+0x5/0x5f [ 286.699743][ T29] ? srso_return_thunk+0x5/0x5f [ 286.705201][ T29] ? __pfx_blkdev_ioctl+0x10/0x10 [ 286.711375][ T29] __x64_sys_ioctl+0x196/0x220 [ 286.716781][ T29] do_syscall_64+0xd8/0x270 [ 286.722530][ T29] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 286.729660][ T29] RIP: 0033:0x7f96f6bf3ae9 [ 286.734127][ T29] RSP: 002b:00007ffda0a63188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 286.743219][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f96f6bf3ae9 [ 286.751314][ T29] RDX: 0000000020000040 RSI: 000000000000127f RDI: 0000000000000003 [ 286.759388][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 286.767399][ T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 286.775497][ T29] R13: 00007ffda0a633a8 R14: 00007ffda0a631b0 R15: 00007ffda0a631a0 [ 286.783589][ T29] [ 286.786675][ T29] INFO: task syz-executor110:5085 blocked for more than 143 seconds. [ 286.795428][ T29] Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 286.803582][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.812345][ T29] task:syz-executor110 state:D stack:27424 pid:5085 tgid:5085 ppid:5082 flags:0x00004006 [ 286.823174][ T29] Call Trace: [ 286.827002][ T29] [ 286.830032][ T29] __schedule+0xf12/0x5c60 [ 286.834516][ T29] ? __pfx___lock_acquire+0x10/0x10 [ 286.840391][ T29] ? srso_return_thunk+0x5/0x5f [ 286.845297][ T29] ? preempt_schedule_notrace+0x63/0xe0 [ 286.851562][ T29] ? preempt_schedule_notrace_thunk+0x1a/0x30 [ 286.857743][ T29] ? srso_return_thunk+0x5/0x5f [ 286.863932][ T29] ? __pfx___schedule+0x10/0x10 [ 286.869992][ T29] ? srso_return_thunk+0x5/0x5f [ 286.874907][ T29] ? schedule+0x200/0x280 [ 286.879376][ T29] ? __pfx_lock_release+0x10/0x10 [ 286.885046][ T29] ? __down_write_common+0x89d/0x1410 [ 286.890564][ T29] schedule+0xe9/0x280 [ 286.894712][ T29] schedule_preempt_disabled+0x13/0x30 [ 286.900302][ T29] __down_write_common+0x94c/0x1410 [ 286.905568][ T29] ? __pfx___down_write_common+0x10/0x10 [ 286.911364][ T29] ? __pfx_lock_acquire+0x10/0x10 [ 286.916484][ T29] ? __pfx___might_resched+0x10/0x10 [ 286.921891][ T29] ? srso_return_thunk+0x5/0x5f [ 286.926812][ T29] blkdev_common_ioctl+0x111f/0x1ce0 [ 286.932250][ T29] ? __pfx_blkdev_common_ioctl+0x10/0x10 [ 286.937977][ T29] ? find_held_lock+0x2d/0x110 [ 286.942957][ T29] ? srso_return_thunk+0x5/0x5f [ 286.947880][ T29] blkdev_ioctl+0x247/0x770 [ 286.952511][ T29] ? __pfx_blkdev_ioctl+0x10/0x10 [ 286.957610][ T29] ? srso_return_thunk+0x5/0x5f [ 286.963091][ T29] ? srso_return_thunk+0x5/0x5f [ 286.968006][ T29] ? __pfx_blkdev_ioctl+0x10/0x10 [ 287.005643][ T29] __x64_sys_ioctl+0x196/0x220 [ 287.018153][ T29] do_syscall_64+0xd8/0x270 [ 287.022735][ T29] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 287.038187][ T29] RIP: 0033:0x7f96f6bf3ae9 [ 287.042706][ T29] RSP: 002b:00007ffda0a63188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 287.060356][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f96f6bf3ae9 [ 287.071819][ T29] RDX: 0000000020000040 RSI: 000000000000127f RDI: 0000000000000003 [ 287.081870][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.097805][ T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 287.108984][ T29] R13: 00007ffda0a633a8 R14: 00007ffda0a631b0 R15: 00007ffda0a631a0 [ 287.119780][ T29] [ 287.132139][ T29] INFO: task syz-executor110:5086 blocked for more than 144 seconds. [ 287.161549][ T29] Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 287.180563][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.221529][ T29] task:syz-executor110 state:D stack:27632 pid:5086 tgid:5086 ppid:5083 flags:0x00004006 [ 287.250736][ T29] Call Trace: [ 287.254072][ T29] [ 287.257047][ T29] __schedule+0xf12/0x5c60 [ 287.294330][ T29] ? __pfx___lock_acquire+0x10/0x10 [ 287.302486][ T29] ? hlock_class+0x4e/0x130 [ 287.308493][ T29] ? srso_return_thunk+0x5/0x5f [ 287.313401][ T29] ? mark_lock+0xb5/0xc60 [ 287.317804][ T29] ? mark_lock+0xb5/0xc60 [ 287.329931][ T29] ? srso_return_thunk+0x5/0x5f [ 287.337455][ T29] ? __pfx___schedule+0x10/0x10 [ 287.344303][ T29] ? srso_return_thunk+0x5/0x5f [ 287.351024][ T29] ? schedule+0x200/0x280 [ 287.358033][ T29] ? __pfx_lock_release+0x10/0x10 [ 287.363188][ T29] ? __down_write_common+0x89d/0x1410 [ 287.371064][ T29] schedule+0xe9/0x280 [ 287.377708][ T29] schedule_preempt_disabled+0x13/0x30 [ 287.392116][ T29] __down_write_common+0x94c/0x1410 [ 287.397384][ T29] ? __pfx___down_write_common+0x10/0x10 [ 287.417814][ T29] ? __pfx_lock_acquire+0x10/0x10 [ 287.422986][ T29] ? __pfx___might_resched+0x10/0x10 [ 287.428362][ T29] ? srso_return_thunk+0x5/0x5f [ 287.433273][ T29] blkdev_common_ioctl+0x111f/0x1ce0 [ 287.438668][ T29] ? __pfx_blkdev_common_ioctl+0x10/0x10 [ 287.444390][ T29] ? find_held_lock+0x2d/0x110 [ 287.449301][ T29] ? srso_return_thunk+0x5/0x5f [ 287.454216][ T29] blkdev_ioctl+0x247/0x770 [ 287.458830][ T29] ? __pfx_blkdev_ioctl+0x10/0x10 [ 287.464470][ T29] ? srso_return_thunk+0x5/0x5f [ 287.470411][ T29] ? srso_return_thunk+0x5/0x5f [ 287.475315][ T29] ? __pfx_blkdev_ioctl+0x10/0x10 [ 287.480987][ T29] __x64_sys_ioctl+0x196/0x220 [ 287.486360][ T29] do_syscall_64+0xd8/0x270 [ 287.491442][ T29] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 287.497434][ T29] RIP: 0033:0x7f96f6bf3ae9 [ 287.502519][ T29] RSP: 002b:00007ffda0a63188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 287.511582][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f96f6bf3ae9 [ 287.520193][ T29] RDX: 0000000020000040 RSI: 000000000000127f RDI: 0000000000000003 [ 287.528269][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.536295][ T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 287.544387][ T29] R13: 00007ffda0a633a8 R14: 00007ffda0a631b0 R15: 00007ffda0a631a0 [ 287.552492][ T29] [ 287.555587][ T29] [ 287.555587][ T29] Showing all locks held in the system: [ 287.563902][ T29] 1 lock held by khungtaskd/29: [ 287.568833][ T29] #0: ffffffff8d7b0c60 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x75/0x340 [ 287.578849][ T29] 7 locks held by kworker/u4:2/37: [ 287.584046][ T29] 2 locks held by getty/4823: [ 287.588805][ T29] #0: ffff88802a74c0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 287.599257][ T29] #1: ffffc900031232f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfca/0x1490 [ 287.609536][ T29] 1 lock held by syz-executor110/5079: [ 287.615611][ T29] 1 lock held by syz-executor110/5081: [ 287.621728][ T29] #0: ffff88801d0aa040 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_common_ioctl+0x111f/0x1ce0 [ 287.633500][ T29] 1 lock held by syz-executor110/5084: [ 287.639611][ T29] #0: ffff88801d0aa040 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_common_ioctl+0x111f/0x1ce0 [ 287.651413][ T29] 1 lock held by syz-executor110/5085: [ 287.657417][ T29] #0: ffff88801d0aa040 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_common_ioctl+0x111f/0x1ce0 [ 287.669353][ T29] 1 lock held by syz-executor110/5086: [ 287.674860][ T29] #0: ffff88801d0aa040 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_common_ioctl+0x111f/0x1ce0 [ 287.686113][ T29] 1 lock held by syz-executor110/5101: [ 287.692219][ T29] #0: ffff88801d0aa040 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_common_ioctl+0x111f/0x1ce0 [ 287.704087][ T29] [ 287.706926][ T29] ============================================= [ 287.706926][ T29] [ 287.728196][ T29] NMI backtrace for cpu 0 [ 287.732605][ T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 287.742463][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 287.752549][ T29] Call Trace: [ 287.755845][ T29] [ 287.758802][ T29] dump_stack_lvl+0xd9/0x1b0 [ 287.763489][ T29] nmi_cpu_backtrace+0x27b/0x390 [ 287.768481][ T29] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 287.774524][ T29] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 287.780558][ T29] watchdog+0xf87/0x1210 [ 287.784881][ T29] ? __pfx_watchdog+0x10/0x10 [ 287.789594][ T29] ? lockdep_hardirqs_on+0x7d/0x110 [ 287.794853][ T29] ? srso_return_thunk+0x5/0x5f [ 287.799748][ T29] ? __kthread_parkme+0x14b/0x220 [ 287.804838][ T29] ? srso_return_thunk+0x5/0x5f [ 287.809726][ T29] ? __pfx_watchdog+0x10/0x10 [ 287.814439][ T29] kthread+0x2c9/0x3b0 [ 287.818588][ T29] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.823839][ T29] ? __pfx_kthread+0x10/0x10 [ 287.828489][ T29] ret_from_fork+0x48/0x80 [ 287.832968][ T29] ? __pfx_kthread+0x10/0x10 [ 287.837614][ T29] ret_from_fork_asm+0x1b/0x30 [ 287.842450][ T29] [ 287.845948][ T29] Sending NMI from CPU 0 to CPUs 1: [ 287.851591][ C1] NMI backtrace for cpu 1 [ 287.851630][ C1] CPU: 1 PID: 22 Comm: ksoftirqd/1 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 287.851667][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 287.851685][ C1] RIP: 0010:unwind_next_frame+0x1192/0x2390 [ 287.851749][ C1] Code: 74 08 3c 03 0f 8e 77 11 00 00 44 8b 23 89 ee 44 89 e7 e8 61 06 50 00 41 39 ec 0f 85 b1 00 00 00 e8 33 0c 50 00 48 8b 54 24 10 <48> b8 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 ba 11 [ 287.851781][ C1] RSP: 0018:ffffc900001c78e8 EFLAGS: 00000246 [ 287.851807][ C1] RAX: 0000000000000000 RBX: ffffc900001c7968 RCX: ffffffff813c66df [ 287.851829][ C1] RDX: ffffc900001c79a0 RSI: ffffffff813c66ed RDI: 0000000000000004 [ 287.851852][ C1] RBP: 0000000000000001 R08: 0000000000000004 R09: 0000000000000001 [ 287.851872][ C1] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000001 [ 287.851892][ C1] R13: 0000000000000001 R14: 0000000000000001 R15: 0000000000000001 [ 287.851916][ C1] FS: 0000000000000000(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 [ 287.851947][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 287.851971][ C1] CR2: 000056262b973600 CR3: 000000000d57a000 CR4: 0000000000350ef0 [ 287.851993][ C1] Call Trace: [ 287.852002][ C1] [ 287.852013][ C1] ? show_regs+0x8f/0xa0 [ 287.852068][ C1] ? nmi_cpu_backtrace+0x1d8/0x390 [ 287.852118][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 287.852165][ C1] ? nmi_handle+0x1ac/0x580 [ 287.852196][ C1] ? __pfx_perf_event_nmi_handler+0x10/0x10 [ 287.852241][ C1] ? unwind_next_frame+0x1192/0x2390 [ 287.852305][ C1] ? default_do_nmi+0x6a/0x160 [ 287.852352][ C1] ? exc_nmi+0x170/0x1e0 [ 287.852397][ C1] ? end_repeat_nmi+0xf/0x60 [ 287.852437][ C1] ? unwind_next_frame+0x117f/0x2390 [ 287.852493][ C1] ? unwind_next_frame+0x118d/0x2390 [ 287.852550][ C1] ? unwind_next_frame+0x1192/0x2390 [ 287.852608][ C1] ? unwind_next_frame+0x1192/0x2390 [ 287.852668][ C1] ? unwind_next_frame+0x1192/0x2390 [ 287.852726][ C1] [ 287.852735][ C1] [ 287.852747][ C1] ? free_unref_page+0x33/0x3c0 [ 287.852805][ C1] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 287.852853][ C1] arch_stack_walk+0x100/0x170 [ 287.852897][ C1] ? rcu_core+0x81c/0x1680 [ 287.852953][ C1] stack_trace_save+0x96/0xd0 [ 287.852997][ C1] ? __pfx_stack_trace_save+0x10/0x10 [ 287.853045][ C1] ? srso_return_thunk+0x5/0x5f [ 287.853078][ C1] ? lock_acquire+0x1ae/0x520 [ 287.853136][ C1] save_stack+0x164/0x1f0 [ 287.853182][ C1] ? __pfx_save_stack+0x10/0x10 [ 287.853226][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 287.853285][ C1] ? free_unref_page_prepare+0x527/0xb10 [ 287.853336][ C1] ? free_unref_page+0x33/0x3c0 [ 287.853406][ C1] __reset_page_owner+0x51/0x2e0 [ 287.853455][ C1] ? srso_return_thunk+0x5/0x5f [ 287.853488][ C1] ? rcu_is_watching+0x12/0xc0 [ 287.853545][ C1] free_unref_page_prepare+0x527/0xb10 [ 287.853604][ C1] free_unref_page+0x33/0x3c0 [ 287.853660][ C1] ? srso_return_thunk+0x5/0x5f [ 287.853695][ C1] ? rcu_core+0x817/0x1680 [ 287.853746][ C1] rcu_core+0x81c/0x1680 [ 287.853805][ C1] ? __pfx_rcu_core+0x10/0x10 [ 287.853868][ C1] __do_softirq+0x21f/0x8e7 [ 287.853925][ C1] ? srso_return_thunk+0x5/0x5f [ 287.853960][ C1] ? __pfx___do_softirq+0x10/0x10 [ 287.854016][ C1] ? run_ksoftirqd+0x58/0x60 [ 287.854063][ C1] ? srso_return_thunk+0x5/0x5f [ 287.854098][ C1] ? __pfx_run_ksoftirqd+0x10/0x10 [ 287.854146][ C1] ? smpboot_thread_fn+0x5a4/0xa20 [ 287.854192][ C1] run_ksoftirqd+0x35/0x60 [ 287.854238][ C1] smpboot_thread_fn+0x66c/0xa20 [ 287.854288][ C1] ? __kthread_parkme+0x14b/0x220 [ 287.854338][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 287.854386][ C1] kthread+0x2c9/0x3b0 [ 287.854439][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.854488][ C1] ? __pfx_kthread+0x10/0x10 [ 287.854544][ C1] ret_from_fork+0x48/0x80 [ 287.854598][ C1] ? __pfx_kthread+0x10/0x10 [ 287.854653][ C1] ret_from_fork_asm+0x1b/0x30 [ 287.854718][ C1] [ 287.854729][ C1] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 3.137 msecs [ 287.882627][ T29] Kernel panic - not syncing: hung_task: blocked tasks [ 288.267539][ T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 288.277379][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 288.287453][ T29] Call Trace: [ 288.290754][ T29] [ 288.293706][ T29] dump_stack_lvl+0xd9/0x1b0 [ 288.298365][ T29] panic+0x6ee/0x7a0 [ 288.302309][ T29] ? __pfx_panic+0x10/0x10 [ 288.306757][ T29] ? preempt_schedule_thunk+0x1a/0x30 [ 288.312172][ T29] ? srso_return_thunk+0x5/0x5f [ 288.317059][ T29] ? preempt_schedule_thunk+0x1a/0x30 [ 288.322471][ T29] ? watchdog+0xd3e/0x1210 [ 288.326943][ T29] ? watchdog+0xd31/0x1210 [ 288.331398][ T29] watchdog+0xd4f/0x1210 [ 288.335680][ T29] ? __pfx_watchdog+0x10/0x10 [ 288.340391][ T29] ? lockdep_hardirqs_on+0x7d/0x110 [ 288.345645][ T29] ? srso_return_thunk+0x5/0x5f [ 288.350530][ T29] ? __kthread_parkme+0x14b/0x220 [ 288.355604][ T29] ? srso_return_thunk+0x5/0x5f [ 288.360490][ T29] ? __pfx_watchdog+0x10/0x10 [ 288.365198][ T29] kthread+0x2c9/0x3b0 [ 288.369314][ T29] ? _raw_spin_unlock_irq+0x23/0x50 [ 288.374557][ T29] ? __pfx_kthread+0x10/0x10 [ 288.379202][ T29] ret_from_fork+0x48/0x80 [ 288.383669][ T29] ? __pfx_kthread+0x10/0x10 [ 288.388320][ T29] ret_from_fork_asm+0x1b/0x30 [ 288.393161][ T29] [ 288.396426][ T29] Kernel Offset: disabled [ 288.400761][ T29] Rebooting in 86400 seconds..