./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1852148508 <...> Warning: Permanently added '10.128.1.181' (ED25519) to the list of known hosts. execve("./syz-executor1852148508", ["./syz-executor1852148508"], 0x7ffc60fd5c60 /* 10 vars */) = 0 brk(NULL) = 0x55556b65e000 brk(0x55556b65ed00) = 0x55556b65ed00 arch_prctl(ARCH_SET_FS, 0x55556b65e380) = 0 set_tid_address(0x55556b65e650) = 5845 set_robust_list(0x55556b65e660, 24) = 0 rseq(0x55556b65eca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1852148508", 4096) = 28 getrandom("\xc3\xbd\xd3\x10\x93\x31\x23\x2a", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55556b65ed00 brk(0x55556b67fd00) = 0x55556b67fd00 brk(0x55556b680000) = 0x55556b680000 mprotect(0x7efd6a67d000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5846 attached , child_tidptr=0x55556b65e650) = 5846 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5846] set_robust_list(0x55556b65e660, 24) = 0 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5848 attached ./strace-static-x86_64: Process 5847 attached [pid 5845] <... clone resumed>, child_tidptr=0x55556b65e650) = 5847 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5848] set_robust_list(0x55556b65e660, 24 [pid 5846] <... clone resumed>, child_tidptr=0x55556b65e650) = 5848 [pid 5848] <... set_robust_list resumed>) = 0 [pid 5847] set_robust_list(0x55556b65e660, 24) = 0 ./strace-static-x86_64: Process 5849 attached [pid 5845] <... clone resumed>, child_tidptr=0x55556b65e650) = 5849 [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5849] set_robust_list(0x55556b65e660, 24 [pid 5848] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5847] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5850 attached ./strace-static-x86_64: Process 5851 attached [pid 5849] <... set_robust_list resumed>) = 0 [pid 5848] <... prctl resumed>) = 0 [pid 5849] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5845] <... clone resumed>, child_tidptr=0x55556b65e650) = 5850 [pid 5851] set_robust_list(0x55556b65e660, 24 [pid 5850] set_robust_list(0x55556b65e660, 24 [pid 5848] setpgid(0, 0 [pid 5847] <... clone resumed>, child_tidptr=0x55556b65e650) = 5851 [pid 5851] <... set_robust_list resumed>) = 0 ./strace-static-x86_64: Process 5852 attached [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5851] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5850] <... set_robust_list resumed>) = 0 [pid 5848] <... setpgid resumed>) = 0 [pid 5851] <... prctl resumed>) = 0 [pid 5850] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5851] setpgid(0, 0 [pid 5848] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5852] set_robust_list(0x55556b65e660, 24./strace-static-x86_64: Process 5854 attached ./strace-static-x86_64: Process 5853 attached [pid 5851] <... setpgid resumed>) = 0 [pid 5851] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5849] <... clone resumed>, child_tidptr=0x55556b65e650) = 5852 [pid 5854] set_robust_list(0x55556b65e660, 24) = 0 [pid 5853] set_robust_list(0x55556b65e660, 24 [pid 5852] <... set_robust_list resumed>) = 0 [pid 5851] <... openat resumed>) = 3 [pid 5848] <... openat resumed>) = 3 [pid 5853] <... set_robust_list resumed>) = 0 [pid 5854] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5851] write(3, "1000", 4 [pid 5850] <... clone resumed>, child_tidptr=0x55556b65e650) = 5854 [pid 5854] <... prctl resumed>) = 0 [pid 5853] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5852] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5851] <... write resumed>) = 4 [pid 5848] write(3, "1000", 4 [pid 5845] <... clone resumed>, child_tidptr=0x55556b65e650) = 5853 [pid 5854] setpgid(0, 0 [pid 5852] <... prctl resumed>) = 0 executing program ./strace-static-x86_64: Process 5855 attached [pid 5851] close(3 [pid 5852] setpgid(0, 0 [pid 5854] <... setpgid resumed>) = 0 [pid 5848] <... write resumed>) = 4 [pid 5852] <... setpgid resumed>) = 0 [pid 5851] <... close resumed>) = 0 [pid 5855] set_robust_list(0x55556b65e660, 24 [pid 5854] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5851] write(1, "executing program\n", 18 [pid 5855] <... set_robust_list resumed>) = 0 [pid 5853] <... clone resumed>, child_tidptr=0x55556b65e650) = 5855 [pid 5852] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5851] <... write resumed>) = 18 [pid 5848] close(3 [pid 5855] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5851] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_CREAT|O_NOCTTY|O_LARGEFILE, 000 [pid 5854] <... openat resumed>) = 3 [pid 5848] <... close resumed>) = 0 [pid 5855] <... prctl resumed>) = 0 [pid 5855] setpgid(0, 0 [pid 5852] <... openat resumed>) = 3 executing program [pid 5848] write(1, "executing program\n", 18 [pid 5854] write(3, "1000", 4 [pid 5852] write(3, "1000", 4 [pid 5848] <... write resumed>) = 18 [pid 5854] <... write resumed>) = 4 [pid 5855] <... setpgid resumed>) = 0 [pid 5851] <... openat resumed>) = 3 [pid 5855] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5854] close(3 [pid 5852] <... write resumed>) = 4 [pid 5848] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_CREAT|O_NOCTTY|O_LARGEFILE, 000 [pid 5855] <... openat resumed>) = 3 [pid 5854] <... close resumed>) = 0 [pid 5852] close(3executing program [pid 5851] dup(3 [pid 5848] <... openat resumed>) = 3 [pid 5855] write(3, "1000", 4 [pid 5854] write(1, "executing program\n", 18 [pid 5852] <... close resumed>) = 0 [pid 5851] <... dup resumed>) = 4 [pid 5848] dup(3 [pid 5855] <... write resumed>) = 4 [pid 5854] <... write resumed>) = 18 [pid 5851] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592186442240 [pid 5854] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_CREAT|O_NOCTTY|O_LARGEFILE, 000 [pid 5852] write(1, "executing program\n", 18executing program [pid 5848] <... dup resumed>) = 4 [pid 5854] <... openat resumed>) = 3 [pid 5852] <... write resumed>) = 18 [pid 5848] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592186442240 [pid 5854] dup(3 [pid 5852] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_CREAT|O_NOCTTY|O_LARGEFILE, 000) = 3 [pid 5855] close(3 [pid 5854] <... dup resumed>) = 4 [pid 5852] dup(3 [pid 5855] <... close resumed>) = 0 [pid 5854] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592186442240executing program [pid 5852] <... dup resumed>) = 4 [pid 5855] write(1, "executing program\n", 18 [pid 5852] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592186442240 [pid 5855] <... write resumed>) = 18 [pid 5855] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_CREAT|O_NOCTTY|O_LARGEFILE, 000) = 3 [pid 5855] dup(3) = 4 [pid 5855] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592186442240 [pid 5846] kill(-5848, SIGKILL) = 0 [pid 5846] kill(5848, SIGKILL) = 0 [pid 5850] kill(-5854, SIGKILL [pid 5853] kill(-5855, SIGKILL [pid 5849] kill(-5852, SIGKILL [pid 5850] <... kill resumed>) = 0 [pid 5850] kill(5854, SIGKILL) = 0 [pid 5847] kill(-5851, SIGKILL [pid 5853] <... kill resumed>) = 0 [pid 5849] <... kill resumed>) = 0 [pid 5847] <... kill resumed>) = 0 [pid 5853] kill(5855, SIGKILL [pid 5849] kill(5852, SIGKILL [pid 5847] kill(5851, SIGKILL [pid 5849] <... kill resumed>) = 0 [pid 5847] <... kill resumed>) = 0 [pid 5853] <... kill resumed>) = 0 [pid 5850] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5846] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5847] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5850] <... openat resumed>) = 3 [pid 5853] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5850] newfstatat(3, "", [pid 5847] <... openat resumed>) = 3 [pid 5846] <... openat resumed>) = 3 [pid 5853] <... openat resumed>) = 3 [pid 5847] newfstatat(3, "", [pid 5846] newfstatat(3, "", [pid 5853] newfstatat(3, "", [pid 5850] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5847] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5846] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5853] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5850] getdents64(3, [pid 5847] getdents64(3, [pid 5846] getdents64(3, [pid 5853] getdents64(3, [pid 5850] <... getdents64 resumed>0x55556b65f6f0 /* 2 entries */, 32768) = 48 [pid 5846] <... getdents64 resumed>0x55556b65f6f0 /* 2 entries */, 32768) = 48 [pid 5853] <... getdents64 resumed>0x55556b65f6f0 /* 2 entries */, 32768) = 48 [pid 5847] <... getdents64 resumed>0x55556b65f6f0 /* 2 entries */, 32768) = 48 [pid 5846] getdents64(3, [pid 5853] getdents64(3, [pid 5850] getdents64(3, [pid 5847] getdents64(3, [pid 5846] <... getdents64 resumed>0x55556b65f6f0 /* 0 entries */, 32768) = 0 [pid 5853] <... getdents64 resumed>0x55556b65f6f0 /* 0 entries */, 32768) = 0 [pid 5850] <... getdents64 resumed>0x55556b65f6f0 /* 0 entries */, 32768) = 0 [pid 5847] <... getdents64 resumed>0x55556b65f6f0 /* 0 entries */, 32768) = 0 [pid 5846] close(3 [pid 5853] close(3 [pid 5850] close(3 [pid 5847] close(3 [pid 5846] <... close resumed>) = 0 [pid 5853] <... close resumed>) = 0 [pid 5847] <... close resumed>) = 0 [pid 5849] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5849] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5850] <... close resumed>) = 0 [pid 5849] getdents64(3, 0x55556b65f6f0 /* 2 entries */, 32768) = 48 [pid 5849] getdents64(3, 0x55556b65f6f0 /* 0 entries */, 32768) = 0 [pid 5849] close(3) = 0 [ 82.049968][ T46] cfg80211: failed to load regulatory.db [pid 5851] <... fallocate resumed>) = ? [pid 5851] +++ killed by SIGKILL +++ [pid 5847] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5851, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=10034 /* 100.34 s */} --- [pid 5847] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5873 attached [pid 5873] set_robust_list(0x55556b65e660, 24 [pid 5847] <... clone resumed>, child_tidptr=0x55556b65e650) = 5873 [pid 5873] <... set_robust_list resumed>) = 0 [pid 5873] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5873] setpgid(0, 0) = 0 [pid 5873] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5873] write(3, "1000", 4executing program ) = 4 [pid 5873] close(3) = 0 [pid 5873] write(1, "executing program\n", 18) = 18 [pid 5873] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_CREAT|O_NOCTTY|O_LARGEFILE, 000) = 3 [pid 5873] dup(3) = 4 [pid 5873] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592186442240 [pid 5847] kill(-5873, SIGKILL) = 0 [pid 5847] kill(5873, SIGKILL) = 0 [pid 5847] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5847] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(3, 0x55556b65f6f0 /* 2 entries */, 32768) = 48 [pid 5847] getdents64(3, 0x55556b65f6f0 /* 0 entries */, 32768) = 0 [pid 5847] close(3) = 0 [ 286.826644][ T30] INFO: task syz-executor185:5852 blocked for more than 143 seconds. [ 286.837360][ T30] Not tainted 6.12.0-syzkaller-05480-gfcc79e1714e8 #0 [ 286.845045][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.853778][ T30] task:syz-executor185 state:D stack:26784 pid:5852 tgid:5852 ppid:5849 flags:0x00004006 [ 286.865958][ T30] Call Trace: [ 286.869293][ T30] [ 286.872255][ T30] __schedule+0x1850/0x4c30 [ 286.878242][ T30] ? __pfx___schedule+0x10/0x10 [ 286.884897][ T30] ? __pfx_lock_release+0x10/0x10 [ 286.891586][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 286.898981][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 286.925283][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 286.930470][ T30] ? schedule+0x90/0x320 [ 286.936486][ T30] schedule+0x14b/0x320 [ 286.942369][ T30] schedule_preempt_disabled+0x13/0x30 [ 286.949290][ T30] rwsem_down_write_slowpath+0xeee/0x13b0 [ 286.958883][ T30] ? rwsem_down_write_slowpath+0xa09/0x13b0 [ 286.966270][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 286.974237][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 286.988733][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 287.003948][ T30] down_write+0x1d7/0x220 [ 287.010084][ T30] ? __pfx_down_write+0x10/0x10 [ 287.015075][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.020320][ T30] blkdev_fallocate+0x20e/0x490 [ 287.025344][ T30] vfs_fallocate+0x569/0x6e0 [ 287.029976][ T30] __x64_sys_fallocate+0xbc/0x110 [ 287.042963][ T30] do_syscall_64+0xf3/0x230 [ 287.059097][ T30] ? clear_bhb_loop+0x35/0x90 [ 287.063845][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.070310][ T30] RIP: 0033:0x7efd6a60ab29 [ 287.075008][ T30] RSP: 002b:00007ffe9f950da8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.083465][ T30] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efd6a60ab29 [ 287.092468][ T30] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.101522][ T30] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.110640][ T30] R10: 0000100000061200 R11: 0000000000000246 R12: 0000000000000001 [ 287.119623][ T30] R13: 00007ffe9f950fc8 R14: 00007ffe9f950dd0 R15: 00007ffe9f950dc0 [ 287.128644][ T30] [ 287.132818][ T30] INFO: task syz-executor185:5854 blocked for more than 143 seconds. [ 287.142902][ T30] Not tainted 6.12.0-syzkaller-05480-gfcc79e1714e8 #0 [ 287.160057][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.168871][ T30] task:syz-executor185 state:D stack:26680 pid:5854 tgid:5854 ppid:5850 flags:0x00004006 [ 287.179396][ T30] Call Trace: [ 287.182916][ T30] [ 287.185916][ T30] __schedule+0x1850/0x4c30 [ 287.190474][ T30] ? __pfx___schedule+0x10/0x10 [ 287.195443][ T30] ? __pfx_lock_release+0x10/0x10 [ 287.201314][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 287.208150][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 287.215303][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 287.220465][ T30] ? schedule+0x90/0x320 [ 287.224792][ T30] schedule+0x14b/0x320 [ 287.229786][ T30] schedule_preempt_disabled+0x13/0x30 [ 287.236418][ T30] rwsem_down_write_slowpath+0xeee/0x13b0 [ 287.243048][ T30] ? rwsem_down_write_slowpath+0xa09/0x13b0 [ 287.249853][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 287.257062][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 287.262136][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 287.268191][ T30] down_write+0x1d7/0x220 [ 287.272557][ T30] ? __pfx_down_write+0x10/0x10 [ 287.277527][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.282766][ T30] blkdev_fallocate+0x20e/0x490 [ 287.287949][ T30] vfs_fallocate+0x569/0x6e0 [ 287.292804][ T30] __x64_sys_fallocate+0xbc/0x110 [ 287.298730][ T30] do_syscall_64+0xf3/0x230 [ 287.304043][ T30] ? clear_bhb_loop+0x35/0x90 [ 287.309700][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.316451][ T30] RIP: 0033:0x7efd6a60ab29 [ 287.321676][ T30] RSP: 002b:00007ffe9f950da8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.331033][ T30] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efd6a60ab29 [ 287.339948][ T30] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.348842][ T30] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.356935][ T30] R10: 0000100000061200 R11: 0000000000000246 R12: 0000000000000001 [ 287.364985][ T30] R13: 00007ffe9f950fc8 R14: 00007ffe9f950dd0 R15: 00007ffe9f950dc0 [ 287.373006][ T30] [ 287.376135][ T30] INFO: task syz-executor185:5855 blocked for more than 143 seconds. [ 287.384230][ T30] Not tainted 6.12.0-syzkaller-05480-gfcc79e1714e8 #0 [ 287.391720][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.400538][ T30] task:syz-executor185 state:D stack:26784 pid:5855 tgid:5855 ppid:5853 flags:0x00004006 [ 287.411058][ T30] Call Trace: [ 287.414364][ T30] [ 287.417385][ T30] __schedule+0x1850/0x4c30 [ 287.421946][ T30] ? __pfx___schedule+0x10/0x10 [ 287.426878][ T30] ? __pfx_lock_release+0x10/0x10 [ 287.432177][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 287.438283][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 287.444687][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 287.449841][ T30] ? schedule+0x90/0x320 [ 287.454123][ T30] schedule+0x14b/0x320 [ 287.458404][ T30] schedule_preempt_disabled+0x13/0x30 [ 287.463913][ T30] rwsem_down_write_slowpath+0xeee/0x13b0 [ 287.469979][ T30] ? rwsem_down_write_slowpath+0xa09/0x13b0 [ 287.506576][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 287.524573][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 287.529684][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 287.537928][ T30] down_write+0x1d7/0x220 [ 287.545459][ T30] ? __pfx_down_write+0x10/0x10 [ 287.551964][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.557315][ T30] blkdev_fallocate+0x20e/0x490 [ 287.562201][ T30] vfs_fallocate+0x569/0x6e0 [ 287.583036][ T30] __x64_sys_fallocate+0xbc/0x110 [ 287.591730][ T30] do_syscall_64+0xf3/0x230 [ 287.596362][ T30] ? clear_bhb_loop+0x35/0x90 [ 287.601070][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.607058][ T30] RIP: 0033:0x7efd6a60ab29 [ 287.611497][ T30] RSP: 002b:00007ffe9f950da8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.628591][ T30] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efd6a60ab29 [ 287.638559][ T30] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.647069][ T30] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.655149][ T30] R10: 0000100000061200 R11: 0000000000000246 R12: 0000000000000001 [ 287.663157][ T30] R13: 00007ffe9f950fc8 R14: 00007ffe9f950dd0 R15: 00007ffe9f950dc0 [ 287.672113][ T30] [ 287.676228][ T30] [ 287.676228][ T30] Showing all locks held in the system: [ 287.685336][ T30] 1 lock held by khungtaskd/30: [ 287.690237][ T30] #0: ffffffff8e93c860 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x55/0x2a0 [ 287.706680][ T30] 2 locks held by klogd/5210: [ 287.712209][ T30] 2 locks held by getty/5604: [ 287.716994][ T30] #0: ffff8880313c70a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 287.727611][ T30] #1: ffffc900032f32f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x6a6/0x1e00 [ 287.737852][ T30] 1 lock held by syz-executor185/5848: [ 287.744147][ T30] 1 lock held by syz-executor185/5852: [ 287.750433][ T30] #0: ffff8881488a8940 (mapping.invalidate_lock#2){++++}-{4:4}, at: blkdev_fallocate+0x20e/0x490 [ 287.761478][ T30] 1 lock held by syz-executor185/5854: [ 287.767011][ T30] #0: ffff8881488a8940 (mapping.invalidate_lock#2){++++}-{4:4}, at: blkdev_fallocate+0x20e/0x490 [ 287.778024][ T30] 1 lock held by syz-executor185/5855: [ 287.783522][ T30] #0: ffff8881488a8940 (mapping.invalidate_lock#2){++++}-{4:4}, at: blkdev_fallocate+0x20e/0x490 [ 287.794272][ T30] 1 lock held by syz-executor185/5873: [ 287.799807][ T30] #0: ffff8881488a8940 (mapping.invalidate_lock#2){++++}-{4:4}, at: blkdev_fallocate+0x20e/0x490 [ 287.810575][ T30] [ 287.812925][ T30] ============================================= [ 287.812925][ T30] [ 287.838956][ T30] NMI backtrace for cpu 0 [ 287.843368][ T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-syzkaller-05480-gfcc79e1714e8 #0 [ 287.853548][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 287.863715][ T30] Call Trace: [ 287.867014][ T30] [ 287.869960][ T30] dump_stack_lvl+0x241/0x360 [ 287.874668][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 287.879892][ T30] ? __pfx__printk+0x10/0x10 [ 287.884515][ T30] nmi_cpu_backtrace+0x49c/0x4d0 [ 287.889484][ T30] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 287.894972][ T30] ? _printk+0xd5/0x120 [ 287.899150][ T30] ? __pfx__printk+0x10/0x10 [ 287.903776][ T30] ? __wake_up_klogd+0xcc/0x110 [ 287.908654][ T30] ? __pfx__printk+0x10/0x10 [ 287.913272][ T30] ? __rcu_read_unlock+0xa1/0x110 [ 287.918323][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 287.924329][ T30] nmi_trigger_cpumask_backtrace+0x198/0x320 [ 287.930338][ T30] watchdog+0xff4/0x1040 [ 287.934601][ T30] ? watchdog+0x1ea/0x1040 [ 287.939041][ T30] ? __pfx_watchdog+0x10/0x10 [ 287.943740][ T30] kthread+0x2f0/0x390 [ 287.947841][ T30] ? __pfx_watchdog+0x10/0x10 [ 287.952542][ T30] ? __pfx_kthread+0x10/0x10 [ 287.957147][ T30] ret_from_fork+0x4b/0x80 [ 287.961582][ T30] ? __pfx_kthread+0x10/0x10 [ 287.966191][ T30] ret_from_fork_asm+0x1a/0x30 [ 287.970991][ T30] [ 287.974360][ T30] Sending NMI from CPU 0 to CPUs 1: [ 287.979791][ C1] NMI backtrace for cpu 1 [ 287.979804][ C1] CPU: 1 UID: 0 PID: 5210 Comm: klogd Not tainted 6.12.0-syzkaller-05480-gfcc79e1714e8 #0 [ 287.979822][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 287.979831][ C1] RIP: 0010:qlist_free_all+0x4a/0x140 [ 287.979859][ C1] Code: 00 00 00 00 00 ea ff ff 31 ed 4d 89 f4 4c 89 fb 4d 85 ff 75 38 4c 89 e7 e8 c3 5a 43 ff 48 c1 e8 06 48 83 e0 c0 49 8b 4c 05 08 c1 01 0f 85 a8 00 00 00 4c 01 e8 66 90 0f b6 48 33 c1 e1 18 81 [ 287.979877][ C1] RSP: 0018:ffffc900033ff620 EFLAGS: 00000202 [ 287.979892][ C1] RAX: 00000000014a1e80 RBX: 0000000000000000 RCX: ffffea00014a1e01 [ 287.979904][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 287.979919][ C1] RBP: 0000000000000000 R08: ffffffff81431f9c R09: ffffffff81ffc47f [ 287.979930][ C1] R10: dffffc0000000000 R11: fffffbfff2861917 R12: ffff88805287a200 [ 287.979941][ C1] R13: ffffea0000000000 R14: ffff88805287a200 R15: 0000000000000000 [ 287.979953][ C1] FS: 00007f9bfced4380(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 287.979967][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 287.979978][ C1] CR2: 000056466795d600 CR3: 000000002f806000 CR4: 00000000003526f0 [ 287.979992][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 287.980001][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 287.980011][ C1] Call Trace: [ 287.980016][ C1] [ 287.980022][ C1] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 287.980041][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 287.980059][ C1] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 287.980076][ C1] ? nmi_handle+0x2a/0x5a0 [ 287.980099][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 287.980120][ C1] ? nmi_handle+0x14f/0x5a0 [ 287.980136][ C1] ? nmi_handle+0x2a/0x5a0 [ 287.980152][ C1] ? qlist_free_all+0x4a/0x140 [ 287.980173][ C1] ? default_do_nmi+0x63/0x160 [ 287.980191][ C1] ? exc_nmi+0x123/0x1f0 [ 287.980208][ C1] ? end_repeat_nmi+0xf/0x53 [ 287.980227][ C1] ? qlist_free_all+0x8f/0x140 [ 287.980246][ C1] ? __phys_addr+0xac/0x170 [ 287.980263][ C1] ? qlist_free_all+0x4a/0x140 [ 287.980284][ C1] ? qlist_free_all+0x4a/0x140 [ 287.980305][ C1] ? qlist_free_all+0x4a/0x140 [ 287.980326][ C1] [ 287.980331][ C1] [ 287.980338][ C1] kasan_quarantine_reduce+0x14f/0x170 [ 287.980361][ C1] __kasan_kmalloc+0x23/0xb0 [ 287.980376][ C1] __kmalloc_node_track_caller_noprof+0x225/0x440 [ 287.980395][ C1] ? __alloc_skb+0x1f3/0x440 [ 287.980412][ C1] ? __alloc_skb+0x1f3/0x440 [ 287.980428][ C1] kmalloc_reserve+0x111/0x2a0 [ 287.980446][ C1] __alloc_skb+0x1f3/0x440 [ 287.980461][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 287.980485][ C1] ? __pfx___alloc_skb+0x10/0x10 [ 287.980505][ C1] alloc_skb_with_frags+0xc3/0x820 [ 287.980529][ C1] sock_alloc_send_pskb+0x91a/0xa60 [ 287.980556][ C1] ? __pfx_sock_alloc_send_pskb+0x10/0x10 [ 287.980579][ C1] ? do_raw_spin_unlock+0x13c/0x8b0 [ 287.980603][ C1] unix_dgram_sendmsg+0x6d3/0x1f80 [ 287.980628][ C1] ? aa_sk_perm+0x96d/0xab0 [ 287.980650][ C1] ? __pfx_unix_dgram_sendmsg+0x10/0x10 [ 287.980670][ C1] ? aa_sock_msg_perm+0x91/0x160 [ 287.980694][ C1] ? __pfx_unix_dgram_sendmsg+0x10/0x10 [ 287.980711][ C1] __sock_sendmsg+0x221/0x270 [ 287.980734][ C1] __sys_sendto+0x363/0x4c0 [ 287.980752][ C1] ? __pfx___sys_sendto+0x10/0x10 [ 287.980779][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 287.980796][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 287.980814][ C1] __x64_sys_sendto+0xde/0x100 [ 287.980832][ C1] do_syscall_64+0xf3/0x230 [ 287.980846][ C1] ? clear_bhb_loop+0x35/0x90 [ 287.980863][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.980879][ C1] RIP: 0033:0x7f9bfd0369b5 [ 287.980892][ C1] Code: 8b 44 24 08 48 83 c4 28 48 98 c3 48 98 c3 41 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 26 45 31 c9 45 31 c0 b8 2c 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 7a 48 8b 15 44 c4 0c 00 f7 d8 64 89 02 48 83 [ 287.980904][ C1] RSP: 002b:00007ffdd3bd1b08 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 287.980925][ C1] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f9bfd0369b5 [ 287.980935][ C1] RDX: 0000000000000039 RSI: 00005627e9fca910 RDI: 0000000000000003 [ 287.980945][ C1] RBP: 00005627e9fc6910 R08: 0000000000000000 R09: 0000000000000000 [ 287.980955][ C1] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000013 [ 287.980965][ C1] R13: 00007f9bfd1c4212 R14: 00007ffdd3bd1c08 R15: 0000000000000000 [ 287.980982][ C1] [ 287.980989][ C1] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.198 msecs [ 288.431660][ T30] Kernel panic - not syncing: hung_task: blocked tasks [ 288.438546][ T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-syzkaller-05480-gfcc79e1714e8 #0 [ 288.448723][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 288.458801][ T30] Call Trace: [ 288.462104][ T30] [ 288.465053][ T30] dump_stack_lvl+0x241/0x360 [ 288.469751][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 288.474970][ T30] ? __pfx__printk+0x10/0x10 [ 288.479586][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 288.485601][ T30] ? vscnprintf+0x5d/0x90 [ 288.489954][ T30] panic+0x349/0x880 [ 288.493881][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 288.500061][ T30] ? __pfx_panic+0x10/0x10 [ 288.504499][ T30] ? tick_nohz_tick_stopped+0x82/0xb0 [ 288.509894][ T30] ? __irq_work_queue_local+0x137/0x410 [ 288.515467][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 288.520862][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 288.527072][ T30] ? nmi_trigger_cpumask_backtrace+0x2d4/0x320 [ 288.533251][ T30] ? nmi_trigger_cpumask_backtrace+0x2d9/0x320 [ 288.539432][ T30] watchdog+0x1033/0x1040 [ 288.543781][ T30] ? watchdog+0x1ea/0x1040 [ 288.548225][ T30] ? __pfx_watchdog+0x10/0x10 [ 288.552924][ T30] kthread+0x2f0/0x390 [ 288.557016][ T30] ? __pfx_watchdog+0x10/0x10 [ 288.561716][ T30] ? __pfx_kthread+0x10/0x10 [ 288.566324][ T30] ret_from_fork+0x4b/0x80 [ 288.570752][ T30] ? __pfx_kthread+0x10/0x10 [ 288.575358][ T30] ret_from_fork_asm+0x1a/0x30 [ 288.580155][ T30] [ 288.583438][ T30] Kernel Offset: disabled [ 288.587758][ T30] Rebooting in 86400 seconds..