./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1141223758 <...> Warning: Permanently added '10.128.1.71' (ED25519) to the list of known hosts. execve("./syz-executor1141223758", ["./syz-executor1141223758"], 0x7fffebaeee20 /* 10 vars */) = 0 brk(NULL) = 0x55555668c000 brk(0x55555668cd00) = 0x55555668cd00 arch_prctl(ARCH_SET_FS, 0x55555668c380) = 0 set_tid_address(0x55555668c650) = 5069 set_robust_list(0x55555668c660, 24) = 0 rseq(0x55555668cca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1141223758", 4096) = 28 getrandom("\x3e\xec\x2b\x52\xce\x16\x1d\x3a", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55555668cd00 brk(0x5555566add00) = 0x5555566add00 brk(0x5555566ae000) = 0x5555566ae000 mprotect(0x7f78d2b96000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5070 attached , child_tidptr=0x55555668c650) = 5070 [pid 5070] set_robust_list(0x55555668c660, 24) = 0 [pid 5070] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5069] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5071 attached [pid 5070] <... clone resumed>, child_tidptr=0x55555668c650) = 5071 [pid 5071] set_robust_list(0x55555668c660, 24./strace-static-x86_64: Process 5072 attached [pid 5069] <... clone resumed>, child_tidptr=0x55555668c650) = 5072 [pid 5071] <... set_robust_list resumed>) = 0 [pid 5069] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5072] set_robust_list(0x55555668c660, 24 [pid 5071] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5072] <... set_robust_list resumed>) = 0 [pid 5071] <... prctl resumed>) = 0 [pid 5072] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5071] setpgid(0, 0./strace-static-x86_64: Process 5073 attached ) = 0 [pid 5069] <... clone resumed>, child_tidptr=0x55555668c650) = 5073 [pid 5073] set_robust_list(0x55555668c660, 24 [pid 5071] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5069] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5073] <... set_robust_list resumed>) = 0 ./strace-static-x86_64: Process 5074 attached [pid 5073] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5074] set_robust_list(0x55555668c660, 24 [pid 5072] <... clone resumed>, child_tidptr=0x55555668c650) = 5074 [pid 5074] <... set_robust_list resumed>) = 0 [pid 5074] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5071] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5075 attached [pid 5069] <... clone resumed>, child_tidptr=0x55555668c650) = 5075 [pid 5069] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5075] set_robust_list(0x55555668c660, 24 [pid 5074] <... prctl resumed>) = 0 [pid 5071] write(3, "1000", 4./strace-static-x86_64: Process 5077 attached ./strace-static-x86_64: Process 5076 attached [pid 5075] <... set_robust_list resumed>) = 0 [pid 5074] setpgid(0, 0 [pid 5071] <... write resumed>) = 4 [pid 5069] <... clone resumed>, child_tidptr=0x55555668c650) = 5077 [pid 5077] set_robust_list(0x55555668c660, 24 [pid 5076] set_robust_list(0x55555668c660, 24 [pid 5075] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5074] <... setpgid resumed>) = 0 [pid 5073] <... clone resumed>, child_tidptr=0x55555668c650) = 5076 [pid 5071] close(3 [pid 5069] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5077] <... set_robust_list resumed>) = 0 [pid 5076] <... set_robust_list resumed>) = 0 [pid 5077] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5071] <... close resumed>) = 0 [pid 5075] <... clone resumed>, child_tidptr=0x55555668c650) = 5078 [pid 5074] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5071] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME./strace-static-x86_64: Process 5080 attached ./strace-static-x86_64: Process 5079 attached ./strace-static-x86_64: Process 5078 attached [pid 5076] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5074] <... openat resumed>) = 3 [pid 5077] <... clone resumed>, child_tidptr=0x55555668c650) = 5080 [pid 5076] <... prctl resumed>) = 0 [pid 5076] setpgid(0, 0 [pid 5080] set_robust_list(0x55555668c660, 24 [pid 5079] set_robust_list(0x55555668c660, 24 [pid 5076] <... setpgid resumed>) = 0 [pid 5069] <... clone resumed>, child_tidptr=0x55555668c650) = 5079 [pid 5080] <... set_robust_list resumed>) = 0 [pid 5079] <... set_robust_list resumed>) = 0 [pid 5078] set_robust_list(0x55555668c660, 24 [pid 5076] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5074] write(3, "1000", 4 [pid 5071] <... openat resumed>) = 3 [pid 5080] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5079] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5078] <... set_robust_list resumed>) = 0 [pid 5076] <... openat resumed>) = 3 [pid 5074] <... write resumed>) = 4 [pid 5071] dup(3 [pid 5074] close(3 [pid 5080] <... prctl resumed>) = 0 [pid 5076] write(3, "1000", 4 [pid 5074] <... close resumed>) = 0 [pid 5080] setpgid(0, 0 [pid 5078] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5076] <... write resumed>) = 4 [pid 5071] <... dup resumed>) = 4 [pid 5076] close(3) = 0 [pid 5076] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME) = 3 [pid 5076] dup(3) = 4 ./strace-static-x86_64: Process 5081 attached [pid 5080] <... setpgid resumed>) = 0 [pid 5078] <... prctl resumed>) = 0 [pid 5074] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME [pid 5071] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 [pid 5080] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5079] <... clone resumed>, child_tidptr=0x55555668c650) = 5081 [pid 5078] setpgid(0, 0 [pid 5076] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 [pid 5074] <... openat resumed>) = 3 [pid 5081] set_robust_list(0x55555668c660, 24 [pid 5078] <... setpgid resumed>) = 0 [pid 5081] <... set_robust_list resumed>) = 0 [pid 5074] dup(3 [pid 5078] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5074] <... dup resumed>) = 4 [pid 5081] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5074] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 [pid 5081] <... prctl resumed>) = 0 [pid 5080] <... openat resumed>) = 3 [pid 5078] <... openat resumed>) = 3 [pid 5081] setpgid(0, 0 [pid 5080] write(3, "1000", 4 [pid 5078] write(3, "1000", 4 [pid 5081] <... setpgid resumed>) = 0 [pid 5080] <... write resumed>) = 4 [pid 5078] <... write resumed>) = 4 [pid 5081] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5080] close(3 [pid 5078] close(3 [pid 5080] <... close resumed>) = 0 [pid 5078] <... close resumed>) = 0 [pid 5078] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME [pid 5081] <... openat resumed>) = 3 [pid 5080] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME [pid 5078] <... openat resumed>) = 3 [pid 5081] write(3, "1000", 4 [pid 5080] <... openat resumed>) = 3 [pid 5078] dup(3 [pid 5081] <... write resumed>) = 4 [pid 5081] close(3 [pid 5080] dup(3 [pid 5078] <... dup resumed>) = 4 [pid 5081] <... close resumed>) = 0 [pid 5081] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME [pid 5080] <... dup resumed>) = 4 [pid 5078] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 [pid 5080] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 [pid 5081] <... openat resumed>) = 3 [pid 5081] dup(3) = 4 [pid 5081] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 [pid 5075] kill(-5078, SIGKILL [pid 5073] kill(-5076, SIGKILL [pid 5072] kill(-5074, SIGKILL [pid 5070] kill(-5071, SIGKILL [pid 5075] <... kill resumed>) = 0 [pid 5073] <... kill resumed>) = 0 [pid 5075] kill(5078, SIGKILL [pid 5073] kill(5076, SIGKILL [pid 5072] <... kill resumed>) = 0 [pid 5070] <... kill resumed>) = 0 [pid 5075] <... kill resumed>) = 0 [pid 5073] <... kill resumed>) = 0 [pid 5072] kill(5074, SIGKILL [pid 5070] kill(5071, SIGKILL [pid 5072] <... kill resumed>) = 0 [pid 5070] <... kill resumed>) = 0 [pid 5077] kill(-5080, SIGKILL) = 0 [pid 5077] kill(5080, SIGKILL) = 0 [pid 5079] kill(-5081, SIGKILL) = 0 [pid 5079] kill(5081, SIGKILL) = 0 [pid 5077] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5075] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5077] <... openat resumed>) = 3 [pid 5077] newfstatat(3, "", [pid 5075] <... openat resumed>) = 3 [pid 5075] newfstatat(3, "", [pid 5077] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5075] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5077] getdents64(3, 0x55555668d6f0 /* 2 entries */, 32768) = 48 [pid 5075] getdents64(3, [pid 5077] getdents64(3, [pid 5075] <... getdents64 resumed>0x55555668d6f0 /* 2 entries */, 32768) = 48 [pid 5077] <... getdents64 resumed>0x55555668d6f0 /* 0 entries */, 32768) = 0 [pid 5075] getdents64(3, [pid 5077] close(3 [pid 5070] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5077] <... close resumed>) = 0 [pid 5075] <... getdents64 resumed>0x55555668d6f0 /* 0 entries */, 32768) = 0 [pid 5070] <... openat resumed>) = 3 [pid 5070] newfstatat(3, "", [pid 5075] close(3 [pid 5079] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5075] <... close resumed>) = 0 [pid 5070] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5079] <... openat resumed>) = 3 [pid 5070] getdents64(3, [pid 5079] newfstatat(3, "", [pid 5070] <... getdents64 resumed>0x55555668d6f0 /* 2 entries */, 32768) = 48 [pid 5079] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5070] getdents64(3, [pid 5079] getdents64(3, [pid 5073] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5070] <... getdents64 resumed>0x55555668d6f0 /* 0 entries */, 32768) = 0 [pid 5079] <... getdents64 resumed>0x55555668d6f0 /* 2 entries */, 32768) = 48 [pid 5070] close(3 [pid 5079] getdents64(3, [pid 5073] <... openat resumed>) = 3 [pid 5070] <... close resumed>) = 0 [pid 5079] <... getdents64 resumed>0x55555668d6f0 /* 0 entries */, 32768) = 0 [pid 5079] close(3 [pid 5073] newfstatat(3, "", [pid 5072] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5079] <... close resumed>) = 0 [pid 5073] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5072] <... openat resumed>) = 3 [pid 5073] getdents64(3, [pid 5072] newfstatat(3, "", [pid 5073] <... getdents64 resumed>0x55555668d6f0 /* 2 entries */, 32768) = 48 [pid 5072] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5073] getdents64(3, [pid 5072] getdents64(3, [pid 5073] <... getdents64 resumed>0x55555668d6f0 /* 0 entries */, 32768) = 0 [pid 5073] close(3) = 0 [pid 5072] <... getdents64 resumed>0x55555668d6f0 /* 2 entries */, 32768) = 48 [pid 5072] getdents64(3, 0x55555668d6f0 /* 0 entries */, 32768) = 0 [pid 5072] close(3) = 0 [ 86.299503][ T9] cfg80211: failed to load regulatory.db [pid 5071] <... fallocate resumed>) = ? [pid 5071] +++ killed by SIGKILL +++ [pid 5070] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5071, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=9209 /* 92.09 s */} --- [pid 5070] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5099 attached , child_tidptr=0x55555668c650) = 5099 [pid 5099] set_robust_list(0x55555668c660, 24) = 0 [pid 5099] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5099] setpgid(0, 0) = 0 [pid 5099] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5099] write(3, "1000", 4) = 4 [pid 5099] close(3) = 0 [pid 5099] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME) = 3 [pid 5099] dup(3) = 4 [pid 5099] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 [pid 5070] kill(-5099, SIGKILL) = 0 [pid 5070] kill(5099, SIGKILL) = 0 [pid 5070] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5070] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5070] getdents64(3, 0x55555668d6f0 /* 2 entries */, 32768) = 48 [pid 5070] getdents64(3, 0x55555668d6f0 /* 0 entries */, 32768) = 0 [pid 5070] close(3) = 0 [ 285.971383][ T29] INFO: task syz-executor114:5074 blocked for more than 143 seconds. [ 285.980115][ T29] Not tainted 6.8.0-rc5-syzkaller-00381-g70ff1fe626a1 #0 [ 285.988156][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 285.997596][ T29] task:syz-executor114 state:D stack:26736 pid:5074 tgid:5074 ppid:5072 flags:0x00004006 [ 286.008249][ T29] Call Trace: [ 286.011624][ T29] [ 286.015470][ T29] __schedule+0x17d1/0x49f0 [ 286.020781][ T29] ? srso_return_thunk+0x5/0x5f [ 286.025968][ T29] ? __pfx___schedule+0x10/0x10 [ 286.030859][ T29] ? __pfx_lock_release+0x10/0x10 [ 286.036420][ T29] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 286.042911][ T29] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 286.049288][ T29] ? _raw_spin_lock_irq+0xdf/0x120 [ 286.054779][ T29] ? schedule+0x8e/0x260 [ 286.059055][ T29] schedule+0x149/0x260 [ 286.063287][ T29] schedule_preempt_disabled+0x13/0x30 [ 286.068784][ T29] rwsem_down_write_slowpath+0xeea/0x13b0 [ 286.075495][ T29] ? rwsem_down_write_slowpath+0xa05/0x13b0 [ 286.081476][ T29] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 286.088146][ T29] ? __pfx_lock_acquire+0x10/0x10 [ 286.093704][ T29] __down_write_common+0x1ae/0x200 [ 286.099273][ T29] ? __pfx___down_write_common+0x10/0x10 [ 286.105407][ T29] ? srso_return_thunk+0x5/0x5f [ 286.110726][ T29] blkdev_fallocate+0x22a/0x580 [ 286.116100][ T29] vfs_fallocate+0x566/0x6c0 [ 286.121162][ T29] __x64_sys_fallocate+0xbd/0x110 [ 286.126929][ T29] do_syscall_64+0xfb/0x240 [ 286.131964][ T29] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 286.137903][ T29] RIP: 0033:0x7f78d2b23b29 [ 286.142379][ T29] RSP: 002b:00007ffc0c9bfa08 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 286.150832][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f78d2b23b29 [ 286.159332][ T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 286.168081][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 286.176571][ T29] R10: 0010000001002000 R11: 0000000000000246 R12: 0000000000000001 [ 286.185278][ T29] R13: 00007ffc0c9bfc28 R14: 00007ffc0c9bfa30 R15: 00007ffc0c9bfa20 [ 286.193742][ T29] [ 286.197227][ T29] INFO: task syz-executor114:5078 blocked for more than 143 seconds. [ 286.205781][ T29] Not tainted 6.8.0-rc5-syzkaller-00381-g70ff1fe626a1 #0 [ 286.213799][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.222520][ T29] task:syz-executor114 state:D stack:26352 pid:5078 tgid:5078 ppid:5075 flags:0x00004006 [ 286.232797][ T29] Call Trace: [ 286.236742][ T29] [ 286.239697][ T29] __schedule+0x17d1/0x49f0 [ 286.244745][ T29] ? srso_return_thunk+0x5/0x5f [ 286.249634][ T29] ? __pfx___schedule+0x10/0x10 [ 286.255016][ T29] ? __pfx_lock_release+0x10/0x10 [ 286.260505][ T29] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 286.267094][ T29] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 286.273946][ T29] ? _raw_spin_lock_irq+0xdf/0x120 [ 286.279505][ T29] ? schedule+0x8e/0x260 [ 286.284250][ T29] schedule+0x149/0x260 [ 286.288452][ T29] schedule_preempt_disabled+0x13/0x30 [ 286.294087][ T29] rwsem_down_write_slowpath+0xeea/0x13b0 [ 286.299844][ T29] ? rwsem_down_write_slowpath+0xa05/0x13b0 [ 286.305830][ T29] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 286.312516][ T29] ? __pfx_lock_acquire+0x10/0x10 [ 286.318022][ T29] __down_write_common+0x1ae/0x200 [ 286.323614][ T29] ? __pfx___down_write_common+0x10/0x10 [ 286.329699][ T29] ? srso_return_thunk+0x5/0x5f [ 286.335071][ T29] blkdev_fallocate+0x22a/0x580 [ 286.340371][ T29] vfs_fallocate+0x566/0x6c0 [ 286.345457][ T29] __x64_sys_fallocate+0xbd/0x110 [ 286.350524][ T29] do_syscall_64+0xfb/0x240 [ 286.355549][ T29] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 286.361520][ T29] RIP: 0033:0x7f78d2b23b29 [ 286.365963][ T29] RSP: 002b:00007ffc0c9bfa08 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 286.374463][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f78d2b23b29 [ 286.382490][ T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 286.390481][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 286.398990][ T29] R10: 0010000001002000 R11: 0000000000000246 R12: 0000000000000001 [ 286.407424][ T29] R13: 00007ffc0c9bfc28 R14: 00007ffc0c9bfa30 R15: 00007ffc0c9bfa20 [ 286.415920][ T29] [ 286.419415][ T29] INFO: task syz-executor114:5080 blocked for more than 143 seconds. [ 286.427955][ T29] Not tainted 6.8.0-rc5-syzkaller-00381-g70ff1fe626a1 #0 [ 286.436012][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.445252][ T29] task:syz-executor114 state:D stack:26296 pid:5080 tgid:5080 ppid:5077 flags:0x00004006 [ 286.455924][ T29] Call Trace: [ 286.459231][ T29] [ 286.462222][ T29] __schedule+0x17d1/0x49f0 [ 286.466791][ T29] ? srso_return_thunk+0x5/0x5f [ 286.471726][ T29] ? __pfx___schedule+0x10/0x10 [ 286.476620][ T29] ? __pfx_lock_release+0x10/0x10 [ 286.481733][ T29] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 286.488177][ T29] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 286.512414][ T29] ? _raw_spin_lock_irq+0xdf/0x120 [ 286.522817][ T29] ? schedule+0x8e/0x260 [ 286.527114][ T29] schedule+0x149/0x260 [ 286.531379][ T29] schedule_preempt_disabled+0x13/0x30 [ 286.537314][ T29] rwsem_down_write_slowpath+0xeea/0x13b0 [ 286.543557][ T29] ? rwsem_down_write_slowpath+0xa05/0x13b0 [ 286.549512][ T29] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 286.556228][ T29] ? __pfx_lock_acquire+0x10/0x10 [ 286.561778][ T29] __down_write_common+0x1ae/0x200 [ 286.567357][ T29] ? __pfx___down_write_common+0x10/0x10 [ 286.573474][ T29] ? srso_return_thunk+0x5/0x5f [ 286.578781][ T29] blkdev_fallocate+0x22a/0x580 [ 286.584154][ T29] vfs_fallocate+0x566/0x6c0 [ 286.589210][ T29] __x64_sys_fallocate+0xbd/0x110 [ 286.594764][ T29] do_syscall_64+0xfb/0x240 [ 286.599749][ T29] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 286.605725][ T29] RIP: 0033:0x7f78d2b23b29 [ 286.610161][ T29] RSP: 002b:00007ffc0c9bfa08 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 286.618745][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f78d2b23b29 [ 286.627214][ T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 286.635720][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 286.644193][ T29] R10: 0010000001002000 R11: 0000000000000246 R12: 0000000000000001 [ 286.652686][ T29] R13: 00007ffc0c9bfc28 R14: 00007ffc0c9bfa30 R15: 00007ffc0c9bfa20 [ 286.661115][ T29] [ 286.664226][ T29] INFO: task syz-executor114:5081 blocked for more than 144 seconds. [ 286.672407][ T29] Not tainted 6.8.0-rc5-syzkaller-00381-g70ff1fe626a1 #0 [ 286.679975][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.688688][ T29] task:syz-executor114 state:D stack:26800 pid:5081 tgid:5081 ppid:5079 flags:0x00004006 [ 286.699359][ T29] Call Trace: [ 286.703133][ T29] [ 286.706482][ T29] __schedule+0x17d1/0x49f0 [ 286.711048][ T29] ? srso_return_thunk+0x5/0x5f [ 286.716001][ T29] ? __pfx___schedule+0x10/0x10 [ 286.720899][ T29] ? __pfx_lock_release+0x10/0x10 [ 286.726019][ T29] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 286.732096][ T29] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 286.738462][ T29] ? _raw_spin_lock_irq+0xdf/0x120 [ 286.743659][ T29] ? schedule+0x8e/0x260 [ 286.747947][ T29] schedule+0x149/0x260 [ 286.752289][ T29] schedule_preempt_disabled+0x13/0x30 [ 286.757787][ T29] rwsem_down_write_slowpath+0xeea/0x13b0 [ 286.763998][ T29] ? rwsem_down_write_slowpath+0xa05/0x13b0 [ 286.770394][ T29] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 286.777103][ T29] ? __pfx_lock_acquire+0x10/0x10 [ 286.782210][ T29] __down_write_common+0x1ae/0x200 [ 286.787760][ T29] ? __pfx___down_write_common+0x10/0x10 [ 286.793909][ T29] ? srso_return_thunk+0x5/0x5f [ 286.799231][ T29] blkdev_fallocate+0x22a/0x580 [ 286.804570][ T29] vfs_fallocate+0x566/0x6c0 [ 286.809208][ T29] __x64_sys_fallocate+0xbd/0x110 [ 286.814324][ T29] do_syscall_64+0xfb/0x240 [ 286.819321][ T29] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 286.825298][ T29] RIP: 0033:0x7f78d2b23b29 [ 286.829749][ T29] RSP: 002b:00007ffc0c9bfa08 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 286.838354][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f78d2b23b29 [ 286.846382][ T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 286.854420][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 286.862455][ T29] R10: 0010000001002000 R11: 0000000000000246 R12: 0000000000000001 [ 286.870904][ T29] R13: 00007ffc0c9bfc28 R14: 00007ffc0c9bfa30 R15: 00007ffc0c9bfa20 [ 286.879436][ T29] [ 286.882935][ T29] [ 286.882935][ T29] Showing all locks held in the system: [ 286.891125][ T29] 1 lock held by khungtaskd/29: [ 286.896111][ T29] #0: ffffffff8e130be0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 286.906118][ T29] 4 locks held by klogd/4507: [ 286.910809][ T29] 2 locks held by getty/4824: [ 286.915555][ T29] #0: ffff88802fff00a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 286.925420][ T29] #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b4/0x1e10 [ 286.935676][ T29] 1 lock held by syz-executor114/5074: [ 286.941145][ T29] #0: ffff88801d150940 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x22a/0x580 [ 286.951965][ T29] 1 lock held by syz-executor114/5076: [ 286.957436][ T29] 1 lock held by syz-executor114/5078: [ 286.963114][ T29] #0: ffff88801d150940 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x22a/0x580 [ 286.973869][ T29] 1 lock held by syz-executor114/5080: [ 286.979337][ T29] #0: ffff88801d150940 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x22a/0x580 [ 286.990626][ T29] 1 lock held by syz-executor114/5081: [ 286.996587][ T29] #0: ffff88801d150940 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x22a/0x580 [ 287.007776][ T29] 1 lock held by syz-executor114/5099: [ 287.013314][ T29] #0: ffff88801d150940 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x22a/0x580 [ 287.024063][ T29] [ 287.026399][ T29] ============================================= [ 287.026399][ T29] [ 287.092402][ T29] NMI backtrace for cpu 1 [ 287.096786][ T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc5-syzkaller-00381-g70ff1fe626a1 #0 [ 287.106608][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 287.116682][ T29] Call Trace: [ 287.119970][ T29] [ 287.122914][ T29] dump_stack_lvl+0x1e7/0x2e0 [ 287.127630][ T29] ? preempt_schedule_thunk+0x1a/0x30 [ 287.133028][ T29] ? __pfx_dump_stack_lvl+0x10/0x10 [ 287.138263][ T29] ? __pfx__printk+0x10/0x10 [ 287.142882][ T29] ? vprintk_emit+0x607/0x720 [ 287.147582][ T29] ? __pfx_vprintk_emit+0x10/0x10 [ 287.152724][ T29] nmi_cpu_backtrace+0x49c/0x4d0 [ 287.157695][ T29] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 287.163261][ T29] ? _printk+0xd5/0x120 [ 287.167446][ T29] ? __pfx__printk+0x10/0x10 [ 287.172067][ T29] ? __wake_up_klogd+0xcc/0x110 [ 287.176943][ T29] ? __pfx__printk+0x10/0x10 [ 287.181564][ T29] ? srso_return_thunk+0x5/0x5f [ 287.186430][ T29] ? __rcu_read_unlock+0xa0/0x110 [ 287.191549][ T29] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 287.197564][ T29] nmi_trigger_cpumask_backtrace+0x198/0x320 [ 287.203577][ T29] watchdog+0xfaf/0xff0 [ 287.207766][ T29] ? watchdog+0x1e9/0xff0 [ 287.212135][ T29] ? __pfx_watchdog+0x10/0x10 [ 287.216845][ T29] kthread+0x2f1/0x390 [ 287.220932][ T29] ? __pfx_watchdog+0x10/0x10 [ 287.225638][ T29] ? __pfx_kthread+0x10/0x10 [ 287.230253][ T29] ret_from_fork+0x4d/0x80 [ 287.234699][ T29] ? __pfx_kthread+0x10/0x10 [ 287.239309][ T29] ret_from_fork_asm+0x1b/0x30 [ 287.244122][ T29] [ 287.250678][ T29] Sending NMI from CPU 1 to CPUs 0: [ 287.259664][ C0] NMI backtrace for cpu 0 [ 287.259676][ C0] CPU: 0 PID: 4507 Comm: klogd Not tainted 6.8.0-rc5-syzkaller-00381-g70ff1fe626a1 #0 [ 287.259697][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 287.259708][ C0] RIP: 0010:kasan_check_range+0x31/0x290 [ 287.259746][ C0] Code: 41 56 41 54 53 b0 01 48 85 f6 0f 84 a0 01 00 00 4c 8d 04 37 49 39 f8 0f 82 56 02 00 00 48 89 fd 48 c1 ed 2f 81 fd fe ff 01 00 <0f> 86 43 02 00 00 48 89 fb 48 c1 eb 03 49 ba 00 00 00 00 00 fc ff [ 287.259763][ C0] RSP: 0018:ffffc9000314f260 EFLAGS: 00000002 [ 287.259780][ C0] RAX: 0000000000000001 RBX: 000000000000002b RCX: ffffffff817121ba [ 287.259794][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff92c8d420 [ 287.259808][ C0] RBP: 000000000001ffff R08: ffffffff92c8d428 R09: 0000000000000001 [ 287.259821][ C0] R10: dffffc0000000000 R11: fffffbfff1f0ad0e R12: 0000000000000000 [ 287.259835][ C0] R13: 000000000000002b R14: 0000000000000005 R15: ffff88807d8fe448 [ 287.259852][ C0] FS: 00007f415e934380(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000 [ 287.259870][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 287.259884][ C0] CR2: 0000562f0143e680 CR3: 000000002c174000 CR4: 0000000000350ef0 [ 287.259900][ C0] Call Trace: [ 287.259907][ C0] [ 287.259914][ C0] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 287.259938][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 287.259979][ C0] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 287.260013][ C0] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 287.260038][ C0] ? nmi_handle+0x151/0x580 [ 287.260058][ C0] ? nmi_handle+0x2a/0x580 [ 287.260078][ C0] ? kasan_check_range+0x31/0x290 [ 287.260111][ C0] ? default_do_nmi+0x63/0x160 [ 287.260136][ C0] ? exc_nmi+0x123/0x1f0 [ 287.260159][ C0] ? end_repeat_nmi+0xf/0x60 [ 287.260184][ C0] ? __lock_acquire+0x4ba/0x1fd0 [ 287.260216][ C0] ? kasan_check_range+0x31/0x290 [ 287.260251][ C0] ? kasan_check_range+0x31/0x290 [ 287.260286][ C0] ? kasan_check_range+0x31/0x290 [ 287.260320][ C0] [ 287.260326][ C0] [ 287.260334][ C0] __lock_acquire+0x4ba/0x1fd0 [ 287.260376][ C0] lock_acquire+0x1e3/0x530 [ 287.260406][ C0] ? __put_partials+0x61/0x130 [ 287.260440][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 287.260481][ C0] ? srso_return_thunk+0x5/0x5f [ 287.260505][ C0] _raw_spin_lock_irqsave+0xd5/0x120 [ 287.260535][ C0] ? __put_partials+0x61/0x130 [ 287.260563][ C0] ? __pfx__raw_spin_lock_irqsave+0x10/0x10 [ 287.260592][ C0] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 287.260625][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 287.260660][ C0] __put_partials+0x61/0x130 [ 287.260690][ C0] put_cpu_partial+0x17b/0x250 [ 287.260720][ C0] ? put_cpu_partial+0x70/0x250 [ 287.260754][ C0] __slab_free+0x302/0x410 [ 287.260787][ C0] ? srso_return_thunk+0x5/0x5f [ 287.260811][ C0] qlist_free_all+0x6d/0xd0 [ 287.260842][ C0] kasan_quarantine_reduce+0x14f/0x170 [ 287.260875][ C0] __kasan_slab_alloc+0x23/0x80 [ 287.260908][ C0] kmem_cache_alloc_node+0x18f/0x380 [ 287.260932][ C0] ? __alloc_skb+0x181/0x420 [ 287.260960][ C0] __alloc_skb+0x181/0x420 [ 287.260987][ C0] ? srso_return_thunk+0x5/0x5f [ 287.261012][ C0] ? __pfx___alloc_skb+0x10/0x10 [ 287.261033][ C0] ? srso_return_thunk+0x5/0x5f [ 287.261060][ C0] alloc_skb_with_frags+0xc3/0x780 [ 287.261096][ C0] sock_alloc_send_pskb+0x919/0xa60 [ 287.261138][ C0] ? __pfx_sock_alloc_send_pskb+0x10/0x10 [ 287.261175][ C0] ? srso_return_thunk+0x5/0x5f [ 287.261197][ C0] ? do_raw_spin_unlock+0x13b/0x8b0 [ 287.261232][ C0] unix_dgram_sendmsg+0x696/0x2200 [ 287.261274][ C0] ? __pfx_unix_dgram_sendmsg+0x10/0x10 [ 287.261302][ C0] ? srso_return_thunk+0x5/0x5f [ 287.261325][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 287.261363][ C0] ? srso_return_thunk+0x5/0x5f [ 287.261385][ C0] ? srso_return_thunk+0x5/0x5f [ 287.261407][ C0] ? security_socket_sendmsg+0x87/0xb0 [ 287.261439][ C0] ? __pfx_unix_dgram_sendmsg+0x10/0x10 [ 287.261464][ C0] __sock_sendmsg+0x223/0x270 [ 287.261502][ C0] __sys_sendto+0x3a4/0x4f0 [ 287.261532][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 287.261574][ C0] ? srso_return_thunk+0x5/0x5f [ 287.261597][ C0] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 287.261633][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 287.261671][ C0] __x64_sys_sendto+0xde/0x100 [ 287.261701][ C0] do_syscall_64+0xfb/0x240 [ 287.261736][ C0] ? srso_return_thunk+0x5/0x5f [ 287.261761][ C0] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 287.261798][ C0] RIP: 0033:0x7f415ea969b5 [ 287.261815][ C0] Code: 8b 44 24 08 48 83 c4 28 48 98 c3 48 98 c3 41 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 26 45 31 c9 45 31 c0 b8 2c 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 7a 48 8b 15 44 c4 0c 00 f7 d8 64 89 02 48 83 [ 287.261833][ C0] RSP: 002b:00007ffd4213c138 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 287.261855][ C0] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f415ea969b5 [ 287.261871][ C0] RDX: 0000000000000056 RSI: 0000562ca2216a40 RDI: 0000000000000003 [ 287.261885][ C0] RBP: 0000562ca2212910 R08: 0000000000000000 R09: 0000000000000000 [ 287.261899][ C0] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000013 [ 287.261913][ C0] R13: 00007f415ec24212 R14: 00007ffd4213c238 R15: 0000000000000000 [ 287.261938][ C0] [ 287.261946][ C0] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 2.282 msecs [ 287.784939][ T29] Kernel panic - not syncing: hung_task: blocked tasks [ 287.791808][ T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc5-syzkaller-00381-g70ff1fe626a1 #0 [ 287.801626][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 287.811687][ T29] Call Trace: [ 287.815055][ T29] [ 287.817989][ T29] dump_stack_lvl+0x1e7/0x2e0 [ 287.822693][ T29] ? __pfx_dump_stack_lvl+0x10/0x10 [ 287.827912][ T29] ? __pfx__printk+0x10/0x10 [ 287.832516][ T29] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 287.838522][ T29] ? srso_return_thunk+0x5/0x5f [ 287.843384][ T29] ? vscnprintf+0x5d/0x90 [ 287.847725][ T29] panic+0x349/0x860 [ 287.851644][ T29] ? srso_return_thunk+0x5/0x5f [ 287.856506][ T29] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 287.862669][ T29] ? __pfx_panic+0x10/0x10 [ 287.867097][ T29] ? tick_nohz_tick_stopped+0x7b/0xc0 [ 287.872483][ T29] ? srso_return_thunk+0x5/0x5f [ 287.877340][ T29] ? __irq_work_queue_local+0x137/0x3e0 [ 287.882898][ T29] ? srso_return_thunk+0x5/0x5f [ 287.887754][ T29] ? preempt_schedule_thunk+0x1a/0x30 [ 287.893133][ T29] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 287.899296][ T29] ? nmi_trigger_cpumask_backtrace+0x2d4/0x320 [ 287.905459][ T29] ? srso_return_thunk+0x5/0x5f [ 287.910319][ T29] ? nmi_trigger_cpumask_backtrace+0x2d9/0x320 [ 287.916496][ T29] watchdog+0xfee/0xff0 [ 287.920680][ T29] ? watchdog+0x1e9/0xff0 [ 287.925033][ T29] ? __pfx_watchdog+0x10/0x10 [ 287.929733][ T29] kthread+0x2f1/0x390 [ 287.933872][ T29] ? __pfx_watchdog+0x10/0x10 [ 287.938564][ T29] ? __pfx_kthread+0x10/0x10 [ 287.943166][ T29] ret_from_fork+0x4d/0x80 [ 287.947598][ T29] ? __pfx_kthread+0x10/0x10 [ 287.952195][ T29] ret_from_fork_asm+0x1b/0x30 [ 287.956991][ T29] [ 287.960311][ T29] Kernel Offset: disabled [ 287.964642][ T29] Rebooting in 86400 seconds..