./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor294697978 <...> DUID 00:04:ce:8e:a7:1a:d5:92:ad:c3:fd:35:80:c9:2b:13:ab:38 forked to background, child pid 4895 [ 48.179155][ T4896] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.196774][ T4896] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller syzkaller login: [ 87.054630][ T46] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.0.30' (ED25519) to the list of known hosts. execve("./syz-executor294697978", ["./syz-executor294697978"], 0x7ffcab5c4710 /* 10 vars */) = 0 brk(NULL) = 0x555558d83000 brk(0x555558d83d00) = 0x555558d83d00 arch_prctl(ARCH_SET_FS, 0x555558d83380) = 0 set_tid_address(0x555558d83650) = 5248 set_robust_list(0x555558d83660, 24) = 0 rseq(0x555558d83ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor294697978", 4096) = 27 getrandom("\x99\x54\x7b\x5b\xaf\x57\xfe\x8a", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555558d83d00 brk(0x555558da4d00) = 0x555558da4d00 brk(0x555558da5000) = 0x555558da5000 mprotect(0x7fbf2395a000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555558d83650) = 5249 ./strace-static-x86_64: Process 5249 attached [pid 5248] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5249] set_robust_list(0x555558d83660, 24) = 0 ./strace-static-x86_64: Process 5250 attached [pid 5249] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5248] <... clone resumed>, child_tidptr=0x555558d83650) = 5250 [pid 5250] set_robust_list(0x555558d83660, 24) = 0 [pid 5250] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5251 attached [pid 5248] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5252 attached [pid 5252] set_robust_list(0x555558d83660, 24 [pid 5250] <... clone resumed>, child_tidptr=0x555558d83650) = 5252 [pid 5252] <... set_robust_list resumed>) = 0 ./strace-static-x86_64: Process 5253 attached [pid 5252] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5253] set_robust_list(0x555558d83660, 24 [pid 5251] set_robust_list(0x555558d83660, 24 [pid 5248] <... clone resumed>, child_tidptr=0x555558d83650) = 5253 [pid 5253] <... set_robust_list resumed>) = 0 [pid 5252] <... prctl resumed>) = 0 [pid 5251] <... set_robust_list resumed>) = 0 [pid 5249] <... clone resumed>, child_tidptr=0x555558d83650) = 5251 [pid 5248] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5253] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5252] setpgid(0, 0 [pid 5251] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5252] <... setpgid resumed>) = 0 [pid 5251] setpgid(0, 0) = 0 [pid 5252] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5251] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5252] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5255 attached ./strace-static-x86_64: Process 5254 attached [pid 5248] <... clone resumed>, child_tidptr=0x555558d83650) = 5254 [pid 5252] write(3, "1000", 4 [pid 5251] <... openat resumed>) = 3 [pid 5254] set_robust_list(0x555558d83660, 24 [pid 5253] <... clone resumed>, child_tidptr=0x555558d83650) = 5255 [pid 5255] set_robust_list(0x555558d83660, 24 [pid 5248] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5252] <... write resumed>) = 4 [pid 5251] write(3, "1000", 4 [pid 5255] <... set_robust_list resumed>) = 0 [pid 5254] <... set_robust_list resumed>) = 0 [pid 5252] close(3 [pid 5251] <... write resumed>) = 4 ./strace-static-x86_64: Process 5256 attached [pid 5248] <... clone resumed>, child_tidptr=0x555558d83650) = 5256 [pid 5252] <... close resumed>) = 0 [pid 5251] close(3 [pid 5256] set_robust_list(0x555558d83660, 24 [pid 5255] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5254] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLDexecuting program executing program [pid 5256] <... set_robust_list resumed>) = 0 [pid 5252] write(1, "executing program\n", 18 [pid 5251] <... close resumed>) = 0 [pid 5252] <... write resumed>) = 18 [pid 5256] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5251] write(1, "executing program\n", 18 [pid 5252] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5251] <... write resumed>) = 18 ./strace-static-x86_64: Process 5257 attached [pid 5255] <... prctl resumed>) = 0 [pid 5252] <... socket resumed>) = 3 [pid 5257] set_robust_list(0x555558d83660, 24 [pid 5255] setpgid(0, 0 [pid 5257] <... set_robust_list resumed>) = 0 [pid 5255] <... setpgid resumed>) = 0 [pid 5254] <... clone resumed>, child_tidptr=0x555558d83650) = 5257 [pid 5257] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5255] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5252] sendmsg(3, {msg_name=NULL, msg_namelen=2, msg_iov=[{iov_base="\x14\x00\x00\x00\x24\x00\x09\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00", iov_len=20}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0 [pid 5251] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC./strace-static-x86_64: Process 5258 attached [pid 5257] <... prctl resumed>) = 0 [pid 5255] <... openat resumed>) = 3 [pid 5257] setpgid(0, 0 [pid 5255] write(3, "1000", 4 [pid 5251] <... socket resumed>) = 3 [pid 5258] set_robust_list(0x555558d83660, 24 [pid 5257] <... setpgid resumed>) = 0 [pid 5256] <... clone resumed>, child_tidptr=0x555558d83650) = 5258 [pid 5255] <... write resumed>) = 4 [pid 5258] <... set_robust_list resumed>) = 0 [pid 5257] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5255] close(3 [pid 5251] sendmsg(3, {msg_name=NULL, msg_namelen=2, msg_iov=[{iov_base="\x14\x00\x00\x00\x24\x00\x09\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00", iov_len=20}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0 executing program [pid 5255] <... close resumed>) = 0 [pid 5257] <... openat resumed>) = 3 [pid 5255] write(1, "executing program\n", 18) = 18 [pid 5255] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3 [pid 5257] write(3, "1000", 4) = 4 [pid 5255] sendmsg(3, {msg_name=NULL, msg_namelen=2, msg_iov=[{iov_base="\x14\x00\x00\x00\x24\x00\x09\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00", iov_len=20}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0 [pid 5257] close(3) = 0 [pid 5258] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5257] write(1, "executing program\n", 18executing program ) = 18 [pid 5258] <... prctl resumed>) = 0 [pid 5257] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC [pid 5258] setpgid(0, 0) = 0 [pid 5257] <... socket resumed>) = 3 [pid 5258] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5257] sendmsg(3, {msg_name=NULL, msg_namelen=2, msg_iov=[{iov_base="\x14\x00\x00\x00\x24\x00\x09\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00", iov_len=20}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0 [pid 5258] <... openat resumed>) = 3 [pid 5258] write(3, "1000", 4) = 4 [pid 5258] close(3) = 0 [pid 5258] write(1, "executing program\n", 18executing program ) = 18 [pid 5258] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3 [pid 5258] sendmsg(3, {msg_name=NULL, msg_namelen=2, msg_iov=[{iov_base="\x14\x00\x00\x00\x24\x00\x09\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00", iov_len=20}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0 [pid 5252] <... sendmsg resumed>) = 20 [pid 5252] socket(AF_INET, SOCK_STREAM, IPPROTO_IP) = 4 [pid 5252] ioctl(4, SIOCSIFFLAGS, {ifr_name="lo", ifr_flags=0}) = 0 [pid 5252] exit_group(0) = ? [pid 5252] +++ exited with 0 +++ [pid 5250] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5252, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} --- [pid 5250] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5250] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5262 attached [pid 5262] set_robust_list(0x555558d83660, 24 [pid 5250] <... clone resumed>, child_tidptr=0x555558d83650) = 5262 [pid 5262] <... set_robust_list resumed>) = 0 [pid 5262] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5262] setpgid(0, 0) = 0 [pid 5262] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5262] write(3, "1000", 4) = 4 [pid 5262] close(3) = 0 executing program [pid 5262] write(1, "executing program\n", 18) = 18 [pid 5262] socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3 [pid 5262] sendmsg(3, {msg_name=NULL, msg_namelen=2, msg_iov=[{iov_base="\x14\x00\x00\x00\x24\x00\x09\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00", iov_len=20}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0 [pid 5249] kill(-5251, SIGKILL) = 0 [pid 5249] kill(5251, SIGKILL) = 0 [pid 5253] kill(-5255, SIGKILL) = 0 [pid 5253] kill(5255, SIGKILL) = 0 [pid 5254] kill(-5257, SIGKILL [pid 5256] kill(-5258, SIGKILL [pid 5254] <... kill resumed>) = 0 [pid 5254] kill(5257, SIGKILL) = 0 [pid 5256] <... kill resumed>) = 0 [pid 5256] kill(5258, SIGKILL) = 0 [pid 5250] kill(-5262, SIGKILL) = 0 [pid 5250] kill(5262, SIGKILL) = 0 [pid 5256] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5256] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5256] getdents64(3, [pid 5253] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5256] <... getdents64 resumed>0x555558d846f0 /* 2 entries */, 32768) = 48 [pid 5253] <... openat resumed>) = 3 [pid 5256] getdents64(3, [pid 5253] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5253] getdents64(3, 0x555558d846f0 /* 2 entries */, 32768) = 48 [pid 5256] <... getdents64 resumed>0x555558d846f0 /* 0 entries */, 32768) = 0 [pid 5256] close(3 [pid 5253] getdents64(3, [pid 5256] <... close resumed>) = 0 [pid 5253] <... getdents64 resumed>0x555558d846f0 /* 0 entries */, 32768) = 0 [pid 5253] close(3) = 0 [pid 5254] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5254] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5254] getdents64(3, 0x555558d846f0 /* 2 entries */, 32768) = 48 [pid 5254] getdents64(3, 0x555558d846f0 /* 0 entries */, 32768) = 0 [pid 5254] close(3) = 0 [pid 5249] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5249] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5249] getdents64(3, 0x555558d846f0 /* 2 entries */, 32768) = 48 [pid 5249] getdents64(3, 0x555558d846f0 /* 0 entries */, 32768) = 0 [pid 5249] close(3) = 0 [pid 5250] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5250] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5250] getdents64(3, 0x555558d846f0 /* 2 entries */, 32768) = 48 [pid 5250] getdents64(3, 0x555558d846f0 /* 0 entries */, 32768) = 0 [pid 5250] close(3) = 0 [ 430.092728][ T30] INFO: task syz-executor294:5255 blocked for more than 143 seconds. [ 430.101079][ T30] Not tainted 6.11.0-syzkaller-01459-g151ac45348af #0 [ 430.108545][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 430.117331][ T30] task:syz-executor294 state:D stack:26576 pid:5255 tgid:5255 ppid:5253 flags:0x00004006 [ 430.127917][ T30] Call Trace: [ 430.131241][ T30] [ 430.134347][ T30] __schedule+0x1800/0x4a60 [ 430.138977][ T30] ? __pfx___schedule+0x10/0x10 [ 430.143957][ T30] ? __pfx_lock_release+0x10/0x10 [ 430.149073][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 430.154648][ T30] ? schedule+0x90/0x320 [ 430.158975][ T30] schedule+0x14b/0x320 [ 430.163226][ T30] schedule_preempt_disabled+0x13/0x30 [ 430.168744][ T30] __mutex_lock+0x6a4/0xd70 [ 430.173358][ T30] ? __mutex_lock+0x527/0xd70 [ 430.178076][ T30] ? nfsd_nl_listener_set_doit+0x12d/0x1a90 [ 430.184096][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 430.189178][ T30] ? __asan_memset+0x23/0x50 [ 430.193870][ T30] ? netlink_unicast+0x7f6/0x990 [ 430.198862][ T30] ? netlink_sendmsg+0x8e4/0xcb0 [ 430.203885][ T30] ? __sock_sendmsg+0x221/0x270 [ 430.208786][ T30] ? __sys_sendmsg+0x2b0/0x3a0 [ 430.213843][ T30] nfsd_nl_listener_set_doit+0x12d/0x1a90 [ 430.219645][ T30] ? __pfx___nla_validate_parse+0x10/0x10 [ 430.225530][ T30] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 430.231980][ T30] ? genl_family_rcv_msg_attrs_parse+0xa3/0x290 [ 430.238331][ T30] ? __nla_parse+0x40/0x60 [ 430.242892][ T30] ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290 [ 430.249257][ T30] genl_rcv_msg+0xb14/0xec0 [ 430.253932][ T30] ? mark_lock+0x9a/0x350 [ 430.258345][ T30] ? __pfx_genl_rcv_msg+0x10/0x10 [ 430.263482][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 430.268564][ T30] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 430.274975][ T30] ? __pfx___might_resched+0x10/0x10 [ 430.280330][ T30] netlink_rcv_skb+0x1e3/0x430 [ 430.285235][ T30] ? __pfx_genl_rcv_msg+0x10/0x10 [ 430.290409][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 430.295901][ T30] genl_rcv+0x28/0x40 [ 430.300078][ T30] netlink_unicast+0x7f6/0x990 [ 430.304961][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 430.310295][ T30] ? __virt_addr_valid+0x183/0x530 [ 430.315545][ T30] ? __check_object_size+0x49c/0x900 [ 430.320989][ T30] ? bpf_lsm_netlink_send+0x9/0x10 [ 430.326230][ T30] netlink_sendmsg+0x8e4/0xcb0 [ 430.331070][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 430.336645][ T30] ? __import_iovec+0x536/0x820 [ 430.341570][ T30] ? aa_sock_msg_perm+0x91/0x160 [ 430.346657][ T30] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 430.351985][ T30] ? security_socket_sendmsg+0x87/0xb0 [ 430.357655][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 430.363120][ T30] __sock_sendmsg+0x221/0x270 [ 430.368028][ T30] ____sys_sendmsg+0x525/0x7d0 [ 430.372889][ T30] ? __pfx_____sys_sendmsg+0x10/0x10 [ 430.378219][ T30] ? do_raw_spin_lock+0x14f/0x370 [ 430.383388][ T30] __sys_sendmsg+0x2b0/0x3a0 [ 430.388048][ T30] ? __pfx___sys_sendmsg+0x10/0x10 [ 430.393289][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 430.399686][ T30] ? _raw_spin_unlock_irq+0x2e/0x50 [ 430.405020][ T30] ? ptrace_notify+0x279/0x380 [ 430.409868][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 430.416286][ T30] ? exc_page_fault+0x590/0x8c0 [ 430.421188][ T30] do_syscall_64+0xf3/0x230 [ 430.425813][ T30] ? clear_bhb_loop+0x35/0x90 [ 430.430580][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 430.436642][ T30] RIP: 0033:0x7fbf238e7be9 [ 430.441216][ T30] RSP: 002b:00007ffd07027b18 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 430.449735][ T30] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbf238e7be9 [ 430.457823][ T30] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003 [ 430.465897][ T30] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 430.474024][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 430.482512][ T30] R13: 00007ffd07027d38 R14: 00007ffd07027b40 R15: 00007ffd07027b30 [ 430.490615][ T30] [ 430.493720][ T30] INFO: task syz-executor294:5257 blocked for more than 143 seconds. [ 430.501805][ T30] Not tainted 6.11.0-syzkaller-01459-g151ac45348af #0 [ 430.509153][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 430.517884][ T30] task:syz-executor294 state:D stack:26576 pid:5257 tgid:5257 ppid:5254 flags:0x00004006 [ 430.528275][ T30] Call Trace: [ 430.531592][ T30] [ 430.534691][ T30] __schedule+0x1800/0x4a60 [ 430.539282][ T30] ? __pfx___schedule+0x10/0x10 [ 430.544281][ T30] ? __pfx_lock_release+0x10/0x10 [ 430.549366][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 430.554957][ T30] ? schedule+0x90/0x320 [ 430.559237][ T30] schedule+0x14b/0x320 [ 430.563558][ T30] schedule_preempt_disabled+0x13/0x30 [ 430.569064][ T30] __mutex_lock+0x6a4/0xd70 [ 430.573646][ T30] ? __mutex_lock+0x527/0xd70 [ 430.578364][ T30] ? nfsd_nl_listener_set_doit+0x12d/0x1a90 [ 430.584349][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 430.589427][ T30] ? __asan_memset+0x23/0x50 [ 430.594096][ T30] ? netlink_unicast+0x7f6/0x990 [ 430.599165][ T30] ? netlink_sendmsg+0x8e4/0xcb0 [ 430.604178][ T30] ? __sock_sendmsg+0x221/0x270 [ 430.609080][ T30] ? __sys_sendmsg+0x2b0/0x3a0 [ 430.614012][ T30] nfsd_nl_listener_set_doit+0x12d/0x1a90 [ 430.619809][ T30] ? __pfx___nla_validate_parse+0x10/0x10 [ 430.625718][ T30] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 430.631914][ T30] ? genl_family_rcv_msg_attrs_parse+0xa3/0x290 [ 430.638274][ T30] ? __nla_parse+0x40/0x60 [ 430.642877][ T30] ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290 [ 430.649660][ T30] genl_rcv_msg+0xb14/0xec0 [ 430.654336][ T30] ? mark_lock+0x9a/0x350 [ 430.658709][ T30] ? __pfx_genl_rcv_msg+0x10/0x10 [ 430.663861][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 430.668958][ T30] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 430.675288][ T30] ? __pfx___might_resched+0x10/0x10 [ 430.680653][ T30] netlink_rcv_skb+0x1e3/0x430 [ 430.685533][ T30] ? __pfx_genl_rcv_msg+0x10/0x10 [ 430.690613][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 430.696049][ T30] genl_rcv+0x28/0x40 [ 430.700067][ T30] netlink_unicast+0x7f6/0x990 [ 430.705107][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 430.710432][ T30] ? __virt_addr_valid+0x183/0x530 [ 430.716170][ T30] ? __check_object_size+0x49c/0x900 [ 430.721521][ T30] ? bpf_lsm_netlink_send+0x9/0x10 [ 430.726732][ T30] netlink_sendmsg+0x8e4/0xcb0 [ 430.731557][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 430.736925][ T30] ? __import_iovec+0x536/0x820 [ 430.741820][ T30] ? aa_sock_msg_perm+0x91/0x160 [ 430.746846][ T30] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 430.752194][ T30] ? security_socket_sendmsg+0x87/0xb0 [ 430.757769][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 430.763258][ T30] __sock_sendmsg+0x221/0x270 [ 430.767969][ T30] ____sys_sendmsg+0x525/0x7d0 [ 430.772826][ T30] ? __pfx_____sys_sendmsg+0x10/0x10 [ 430.778158][ T30] ? do_raw_spin_lock+0x14f/0x370 [ 430.783276][ T30] __sys_sendmsg+0x2b0/0x3a0 [ 430.787908][ T30] ? __pfx___sys_sendmsg+0x10/0x10 [ 430.793132][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 430.799700][ T30] ? _raw_spin_unlock_irq+0x2e/0x50 [ 430.805454][ T30] ? ptrace_notify+0x279/0x380 [ 430.810264][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 430.816750][ T30] ? exc_page_fault+0x590/0x8c0 [ 430.821694][ T30] do_syscall_64+0xf3/0x230 [ 430.826327][ T30] ? clear_bhb_loop+0x35/0x90 [ 430.831150][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 430.837133][ T30] RIP: 0033:0x7fbf238e7be9 [ 430.841581][ T30] RSP: 002b:00007ffd07027b18 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 430.850160][ T30] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbf238e7be9 [ 430.858205][ T30] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003 [ 430.866270][ T30] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 430.874510][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 430.882566][ T30] R13: 00007ffd07027d38 R14: 00007ffd07027b40 R15: 00007ffd07027b30 [ 430.890587][ T30] [ 430.893778][ T30] INFO: task syz-executor294:5258 blocked for more than 144 seconds. [ 430.901862][ T30] Not tainted 6.11.0-syzkaller-01459-g151ac45348af #0 [ 430.909220][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 430.918236][ T30] task:syz-executor294 state:D stack:26576 pid:5258 tgid:5258 ppid:5256 flags:0x00004006 [ 430.928513][ T30] Call Trace: [ 430.931837][ T30] [ 430.934844][ T30] __schedule+0x1800/0x4a60 [ 430.939563][ T30] ? __pfx___schedule+0x10/0x10 [ 430.944536][ T30] ? __pfx_lock_release+0x10/0x10 [ 430.949691][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 430.955235][ T30] ? schedule+0x90/0x320 [ 430.959514][ T30] schedule+0x14b/0x320 [ 430.963834][ T30] schedule_preempt_disabled+0x13/0x30 [ 430.969334][ T30] __mutex_lock+0x6a4/0xd70 [ 430.973918][ T30] ? __mutex_lock+0x527/0xd70 [ 430.978624][ T30] ? nfsd_nl_listener_set_doit+0x12d/0x1a90 [ 430.984613][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 430.989669][ T30] ? __asan_memset+0x23/0x50 [ 430.994339][ T30] ? netlink_unicast+0x7f6/0x990 [ 430.999316][ T30] ? netlink_sendmsg+0x8e4/0xcb0 [ 431.004337][ T30] ? __sock_sendmsg+0x221/0x270 [ 431.009224][ T30] ? __sys_sendmsg+0x2b0/0x3a0 [ 431.014068][ T30] nfsd_nl_listener_set_doit+0x12d/0x1a90 [ 431.019824][ T30] ? __pfx___nla_validate_parse+0x10/0x10 [ 431.025644][ T30] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 431.031876][ T30] ? genl_family_rcv_msg_attrs_parse+0xa3/0x290 [ 431.038204][ T30] ? __nla_parse+0x40/0x60 [ 431.042731][ T30] ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290 [ 431.049181][ T30] genl_rcv_msg+0xb14/0xec0 [ 431.054131][ T30] ? mark_lock+0x9a/0x350 [ 431.058527][ T30] ? __pfx_genl_rcv_msg+0x10/0x10 [ 431.063672][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 431.068790][ T30] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 431.075062][ T30] ? __pfx___might_resched+0x10/0x10 [ 431.080411][ T30] netlink_rcv_skb+0x1e3/0x430 [ 431.085362][ T30] ? __pfx_genl_rcv_msg+0x10/0x10 [ 431.090438][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 431.096029][ T30] genl_rcv+0x28/0x40 [ 431.100147][ T30] netlink_unicast+0x7f6/0x990 [ 431.105018][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 431.110348][ T30] ? __virt_addr_valid+0x183/0x530 [ 431.115546][ T30] ? __check_object_size+0x49c/0x900 [ 431.121604][ T30] ? bpf_lsm_netlink_send+0x9/0x10 [ 431.126874][ T30] netlink_sendmsg+0x8e4/0xcb0 [ 431.131705][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 431.137149][ T30] ? __import_iovec+0x536/0x820 [ 431.142047][ T30] ? aa_sock_msg_perm+0x91/0x160 [ 431.147090][ T30] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 431.152500][ T30] ? security_socket_sendmsg+0x87/0xb0 [ 431.157991][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 431.163374][ T30] __sock_sendmsg+0x221/0x270 [ 431.168095][ T30] ____sys_sendmsg+0x525/0x7d0 [ 431.173124][ T30] ? __pfx_____sys_sendmsg+0x10/0x10 [ 431.178456][ T30] ? do_raw_spin_lock+0x14f/0x370 [ 431.183610][ T30] __sys_sendmsg+0x2b0/0x3a0 [ 431.188379][ T30] ? __pfx___sys_sendmsg+0x10/0x10 [ 431.193586][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 431.199966][ T30] ? _raw_spin_unlock_irq+0x2e/0x50 [ 431.205280][ T30] ? ptrace_notify+0x279/0x380 [ 431.210125][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 431.216571][ T30] ? exc_page_fault+0x590/0x8c0 [ 431.221490][ T30] do_syscall_64+0xf3/0x230 [ 431.226085][ T30] ? clear_bhb_loop+0x35/0x90 [ 431.230806][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 431.236786][ T30] RIP: 0033:0x7fbf238e7be9 [ 431.241248][ T30] RSP: 002b:00007ffd07027b18 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 431.249748][ T30] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbf238e7be9 [ 431.257905][ T30] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003 [ 431.266031][ T30] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 431.274078][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 431.282128][ T30] R13: 00007ffd07027d38 R14: 00007ffd07027b40 R15: 00007ffd07027b30 [ 431.290221][ T30] [ 431.293326][ T30] INFO: task syz-executor294:5262 blocked for more than 144 seconds. [ 431.301392][ T30] Not tainted 6.11.0-syzkaller-01459-g151ac45348af #0 [ 431.308771][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 431.317660][ T30] task:syz-executor294 state:D stack:25920 pid:5262 tgid:5262 ppid:5250 flags:0x00004006 [ 431.328016][ T30] Call Trace: [ 431.331382][ T30] [ 431.334566][ T30] __schedule+0x1800/0x4a60 [ 431.339142][ T30] ? __pfx___schedule+0x10/0x10 [ 431.344082][ T30] ? __pfx_lock_release+0x10/0x10 [ 431.349150][ T30] ? __mutex_trylock_common+0x92/0x2e0 [ 431.354787][ T30] ? schedule+0x90/0x320 [ 431.359116][ T30] schedule+0x14b/0x320 [ 431.363363][ T30] schedule_preempt_disabled+0x13/0x30 [ 431.368935][ T30] __mutex_lock+0x6a4/0xd70 [ 431.373649][ T30] ? __mutex_lock+0x527/0xd70 [ 431.378364][ T30] ? nfsd_nl_listener_set_doit+0x12d/0x1a90 [ 431.384332][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 431.389389][ T30] ? __asan_memset+0x23/0x50 [ 431.394061][ T30] ? netlink_unicast+0x7f6/0x990 [ 431.399034][ T30] ? netlink_sendmsg+0x8e4/0xcb0 [ 431.404052][ T30] ? __sock_sendmsg+0x221/0x270 [ 431.408942][ T30] ? __sys_sendmsg+0x2b0/0x3a0 [ 431.413797][ T30] nfsd_nl_listener_set_doit+0x12d/0x1a90 [ 431.419558][ T30] ? __pfx___nla_validate_parse+0x10/0x10 [ 431.425429][ T30] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 431.431678][ T30] ? genl_family_rcv_msg_attrs_parse+0xa3/0x290 [ 431.438009][ T30] ? __nla_parse+0x40/0x60 [ 431.442542][ T30] ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290 [ 431.448900][ T30] genl_rcv_msg+0xb14/0xec0 [ 431.453515][ T30] ? mark_lock+0x9a/0x350 [ 431.457920][ T30] ? __pfx_genl_rcv_msg+0x10/0x10 [ 431.463059][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 431.468131][ T30] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 431.474365][ T30] ? __pfx___might_resched+0x10/0x10 [ 431.479701][ T30] netlink_rcv_skb+0x1e3/0x430 [ 431.484560][ T30] ? __pfx_genl_rcv_msg+0x10/0x10 [ 431.489630][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 431.495042][ T30] genl_rcv+0x28/0x40 [ 431.499061][ T30] netlink_unicast+0x7f6/0x990 [ 431.503910][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 431.509239][ T30] ? __virt_addr_valid+0x183/0x530 [ 431.514446][ T30] ? __check_object_size+0x49c/0x900 [ 431.519861][ T30] ? bpf_lsm_netlink_send+0x9/0x10 [ 431.525054][ T30] netlink_sendmsg+0x8e4/0xcb0 [ 431.529983][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 431.535397][ T30] ? __import_iovec+0x536/0x820 [ 431.540290][ T30] ? aa_sock_msg_perm+0x91/0x160 [ 431.545323][ T30] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 431.550650][ T30] ? security_socket_sendmsg+0x87/0xb0 [ 431.556220][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 431.561554][ T30] __sock_sendmsg+0x221/0x270 [ 431.566326][ T30] ____sys_sendmsg+0x525/0x7d0 [ 431.571140][ T30] ? __pfx_____sys_sendmsg+0x10/0x10 [ 431.576519][ T30] ? do_raw_spin_lock+0x14f/0x370 [ 431.581759][ T30] __sys_sendmsg+0x2b0/0x3a0 [ 431.586457][ T30] ? __pfx___sys_sendmsg+0x10/0x10 [ 431.591636][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 431.598110][ T30] ? _raw_spin_unlock_irq+0x2e/0x50 [ 431.603404][ T30] ? ptrace_notify+0x279/0x380 [ 431.608238][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 431.614658][ T30] ? exc_page_fault+0x590/0x8c0 [ 431.619555][ T30] do_syscall_64+0xf3/0x230 [ 431.624152][ T30] ? clear_bhb_loop+0x35/0x90 [ 431.628911][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 431.634915][ T30] RIP: 0033:0x7fbf238e7be9 [ 431.639363][ T30] RSP: 002b:00007ffd07027b18 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 431.647903][ T30] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbf238e7be9 [ 431.655981][ T30] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003 [ 431.664046][ T30] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 431.672140][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000002fbd8 [ 431.680402][ T30] R13: 00007ffd07027b2c R14: 00007ffd07027b40 R15: 00007ffd07027b30 [ 431.688539][ T30] [ 431.691588][ T30] [ 431.691588][ T30] Showing all locks held in the system: [ 431.699368][ T30] 1 lock held by khungtaskd/30: [ 431.704326][ T30] #0: ffffffff8e938320 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 431.714414][ T30] 2 locks held by getty/4983: [ 431.719119][ T30] #0: ffff88823bd3c0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 431.729026][ T30] #1: ffffc900031232f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6ac/0x1e00 [ 431.739297][ T30] 2 locks held by syz-executor294/5251: [ 431.744949][ T30] #0: ffffffff8fcee2b0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 431.753283][ T30] #1: ffffffff8ec0b768 (nfsd_mutex){+.+.}-{3:3}, at: nfsd_nl_listener_set_doit+0x12d/0x1a90 [ 431.763592][ T30] 2 locks held by syz-executor294/5255: [ 431.769152][ T30] #0: ffffffff8fcee2b0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 431.777410][ T30] #1: ffffffff8ec0b768 (nfsd_mutex){+.+.}-{3:3}, at: nfsd_nl_listener_set_doit+0x12d/0x1a90 [ 431.787737][ T30] 2 locks held by syz-executor294/5257: [ 431.793383][ T30] #0: ffffffff8fcee2b0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 431.801682][ T30] #1: ffffffff8ec0b768 (nfsd_mutex){+.+.}-{3:3}, at: nfsd_nl_listener_set_doit+0x12d/0x1a90 [ 431.811970][ T30] 2 locks held by syz-executor294/5258: [ 431.817581][ T30] #0: ffffffff8fcee2b0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 431.825850][ T30] #1: ffffffff8ec0b768 (nfsd_mutex){+.+.}-{3:3}, at: nfsd_nl_listener_set_doit+0x12d/0x1a90 [ 431.836213][ T30] 2 locks held by syz-executor294/5262: [ 431.841789][ T30] #0: ffffffff8fcee2b0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40 [ 431.850168][ T30] #1: ffffffff8ec0b768 (nfsd_mutex){+.+.}-{3:3}, at: nfsd_nl_listener_set_doit+0x12d/0x1a90 [ 431.860498][ T30] [ 431.862939][ T30] ============================================= [ 431.862939][ T30] [ 431.871398][ T30] NMI backtrace for cpu 1 [ 431.875754][ T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-syzkaller-01459-g151ac45348af #0 [ 431.885920][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 431.895983][ T30] Call Trace: [ 431.899271][ T30] [ 431.902213][ T30] dump_stack_lvl+0x241/0x360 [ 431.906920][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 431.912142][ T30] ? __pfx__printk+0x10/0x10 [ 431.916745][ T30] ? vprintk_emit+0x667/0x7c0 [ 431.921444][ T30] ? __pfx_vprintk_emit+0x10/0x10 [ 431.926489][ T30] nmi_cpu_backtrace+0x49c/0x4d0 [ 431.931452][ T30] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 431.936929][ T30] ? _printk+0xd5/0x120 [ 431.941109][ T30] ? __pfx__printk+0x10/0x10 [ 431.945721][ T30] ? __wake_up_klogd+0xcc/0x110 [ 431.950676][ T30] ? __pfx__printk+0x10/0x10 [ 431.955291][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 431.961289][ T30] nmi_trigger_cpumask_backtrace+0x198/0x320 [ 431.967287][ T30] watchdog+0xff4/0x1040 [ 431.971551][ T30] ? watchdog+0x1ea/0x1040 [ 431.976019][ T30] ? __pfx_watchdog+0x10/0x10 [ 431.980714][ T30] kthread+0x2f0/0x390 [ 431.984811][ T30] ? __pfx_watchdog+0x10/0x10 [ 431.989508][ T30] ? __pfx_kthread+0x10/0x10 [ 431.994122][ T30] ret_from_fork+0x4b/0x80 [ 431.998567][ T30] ? __pfx_kthread+0x10/0x10 [ 432.003201][ T30] ret_from_fork_asm+0x1a/0x30 [ 432.008006][ T30] [ 432.011132][ T30] Sending NMI from CPU 1 to CPUs 0: [ 432.016492][ C0] NMI backtrace for cpu 0 skipped: idling at acpi_safe_halt+0x21/0x30 [ 432.017467][ T30] Kernel panic - not syncing: hung_task: blocked tasks [ 432.032595][ T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-syzkaller-01459-g151ac45348af #0 [ 432.042747][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 432.052919][ T30] Call Trace: [ 432.056519][ T30] [ 432.059464][ T30] dump_stack_lvl+0x241/0x360 [ 432.064186][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 432.069405][ T30] ? __pfx__printk+0x10/0x10 [ 432.074029][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 432.080042][ T30] ? vscnprintf+0x5d/0x90 [ 432.084431][ T30] panic+0x349/0x860 [ 432.088373][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 432.094559][ T30] ? __pfx_panic+0x10/0x10 [ 432.099038][ T30] ? irq_work_queue+0xd1/0x150 [ 432.103817][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 432.109807][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 432.115820][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 432.121836][ T30] ? nmi_trigger_cpumask_backtrace+0x251/0x320 [ 432.128113][ T30] watchdog+0x1033/0x1040 [ 432.132553][ T30] ? watchdog+0x1ea/0x1040 [ 432.136983][ T30] ? __pfx_watchdog+0x10/0x10 [ 432.141667][ T30] kthread+0x2f0/0x390 [ 432.145744][ T30] ? __pfx_watchdog+0x10/0x10 [ 432.150436][ T30] ? __pfx_kthread+0x10/0x10 [ 432.155033][ T30] ret_from_fork+0x4b/0x80 [ 432.159459][ T30] ? __pfx_kthread+0x10/0x10 [ 432.164053][ T30] ret_from_fork_asm+0x1a/0x30 [ 432.168861][ T30] [ 432.172198][ T30] Kernel Offset: disabled [ 432.176541][ T30] Rebooting in 86400 seconds..