./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor164081202 <...> Warning: Permanently added '10.128.1.20' (ED25519) to the list of known hosts. execve("./syz-executor164081202", ["./syz-executor164081202"], 0x7ffe77494370 /* 10 vars */) = 0 brk(NULL) = 0x5555574c7000 brk(0x5555574c7d00) = 0x5555574c7d00 arch_prctl(ARCH_SET_FS, 0x5555574c7380) = 0 set_tid_address(0x5555574c7650) = 5013 set_robust_list(0x5555574c7660, 24) = 0 rseq(0x5555574c7ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor164081202", 4096) = 27 getrandom("\x8e\xdc\xd0\x7d\xf7\xf3\x7a\x5c", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555574c7d00 brk(0x5555574e8d00) = 0x5555574e8d00 brk(0x5555574e9000) = 0x5555574e9000 mprotect(0x7fc1cb688000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 unshare(CLONE_NEWPID) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5014 attached , child_tidptr=0x5555574c7650) = 5014 [pid 5014] set_robust_list(0x5555574c7660, 24) = 0 [pid 5014] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy) [pid 5014] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5014] setsid() = 1 [pid 5014] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0 [pid 5014] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0 [pid 5014] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0 [pid 5014] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0 [pid 5014] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0 [pid 5014] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0 [pid 5014] unshare(CLONE_NEWNS) = 0 [pid 5014] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0 [pid 5014] unshare(CLONE_NEWIPC) = 0 [pid 5014] unshare(CLONE_NEWCGROUP) = 0 [pid 5014] unshare(CLONE_NEWUTS) = 0 [pid 5014] unshare(CLONE_SYSVSEM) = 0 [pid 5014] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5014] write(3, "16777216", 8) = 8 [pid 5014] close(3) = 0 [pid 5014] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3 [pid 5014] write(3, "536870912", 9) = 9 [pid 5014] close(3) = 0 [pid 5014] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5014] write(3, "1024", 4) = 4 [pid 5014] close(3) = 0 [pid 5014] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5014] write(3, "8192", 4) = 4 [pid 5014] close(3) = 0 [pid 5014] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5014] write(3, "1024", 4) = 4 [pid 5014] close(3) = 0 [pid 5014] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3 [pid 5014] write(3, "1024", 4) = 4 [pid 5014] close(3) = 0 [pid 5014] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3 [pid 5014] write(3, "1024 1048576 500 1024", 21) = 21 [pid 5014] close(3) = 0 [pid 5014] getpid() = 1 [pid 5014] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< 08 48 89 ef e8 39 8e 07 f9 48 69 6d 00 e8 03 00 00 48 89 df be [ 160.133303][ C0] RSP: 0018:ffffc90000007c30 EFLAGS: 00000046 [ 160.133318][ C0] RAX: 1ffff110288f2780 RBX: ffff88801ab532e0 RCX: dffffc0000000000 [ 160.133330][ C0] RDX: 0000000080010002 RSI: 0000000000010000 RDI: 0000000000000000 [ 160.133340][ C0] RBP: ffff888144793c00 R08: ffffffff88dcfbc6 R09: fffff52000000f80 [ 160.133353][ C0] R10: dffffc0000000000 R11: fffff52000000f80 R12: 0000000000000000 [ 160.133364][ C0] R13: ffff888144793c00 R14: ffff888144793c00 R15: 0000000000000000 [ 160.133375][ C0] FS: 00005555574c7380(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 160.133389][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 160.133401][ C0] CR2: 0000000020000600 CR3: 0000000072d43000 CR4: 00000000003506f0 [ 160.133415][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 160.133424][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 160.133434][ C0] Call Trace: [ 160.133439][ C0] [ 160.133446][ C0] ? nmi_cpu_backtrace+0x3be/0x4d0 [ 160.133466][ C0] ? read_lock_is_recursive+0x20/0x20 [ 160.133488][ C0] ? nmi_trigger_cpumask_backtrace+0x300/0x300 [ 160.133507][ C0] ? unknown_nmi_error+0xc0/0xc0 [ 160.133535][ C0] ? nmi_cpu_backtrace_handler+0xc/0x10 [ 160.133556][ C0] ? nmi_handle+0xf7/0x370 [ 160.133577][ C0] ? taprio_set_budgets+0x19d/0x360 [ 160.133598][ C0] ? default_do_nmi+0x62/0x150 [ 160.133616][ C0] ? exc_nmi+0x11e/0x1f0 [ 160.133633][ C0] ? end_repeat_nmi+0x16/0x31 [ 160.133652][ C0] ? taprio_set_budgets+0x166/0x360 [ 160.133675][ C0] ? taprio_set_budgets+0x19d/0x360 [ 160.133696][ C0] ? taprio_set_budgets+0x19d/0x360 [ 160.133718][ C0] ? taprio_set_budgets+0x19d/0x360 [ 160.133739][ C0] [ 160.133744][ C0] [ 160.133752][ C0] advance_sched+0x993/0xc80 [ 160.133780][ C0] ? taprio_dequeue_from_txq+0x920/0x920 [ 160.133802][ C0] __hrtimer_run_queues+0x59f/0xd10 [ 160.133831][ C0] ? hrtimer_interrupt+0x980/0x980 [ 160.133855][ C0] ? ktime_get_update_offsets_now+0x40b/0x420 [ 160.133882][ C0] hrtimer_interrupt+0x396/0x980 [ 160.133912][ C0] __sysvec_apic_timer_interrupt+0x13f/0x480 [ 160.133933][ C0] sysvec_apic_timer_interrupt+0x90/0xb0 [ 160.133952][ C0] [ 160.133957][ C0] [ 160.133962][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 160.133977][ C0] RIP: 0010:_raw_spin_unlock_irqrestore+0xd8/0x140 [ 160.133999][ C0] Code: 9c 8f 44 24 20 42 80 3c 23 00 74 08 4c 89 f7 e8 ee b5 1d f7 f6 44 24 21 02 75 4e 41 f7 c7 00 02 00 00 74 01 fb bf 01 00 00 00 b3 09 98 f6 65 8b 05 d4 e0 3c 75 85 c0 74 3f 48 c7 04 24 0e 36 [ 160.134010][ C0] RSP: 0018:ffffc90003b7f900 EFLAGS: 00000206 [ 160.134023][ C0] RAX: d9a652a42c06e200 RBX: 1ffff9200076ff24 RCX: ffffffff816bdd8a [ 160.134035][ C0] RDX: dffffc0000000000 RSI: ffffffff8b0a97e0 RDI: 0000000000000001 [ 160.134051][ C0] RBP: ffffc90003b7f990 R08: ffffffff907b4307 R09: 1ffffffff20f6860 [ 160.134063][ C0] R10: dffffc0000000000 R11: fffffbfff20f6861 R12: dffffc0000000000 [ 160.134074][ C0] R13: 1ffff9200076ff20 R14: ffffc90003b7f920 R15: 0000000000000246 [ 160.134090][ C0] ? mark_lock+0x9a/0x340 [ 160.134112][ C0] ? _raw_spin_unlock+0x40/0x40 [ 160.134132][ C0] ? ktime_get_update_offsets_now+0x40b/0x420 [ 160.134157][ C0] clock_was_set+0x6a1/0x830 [ 160.134182][ C0] ? destroy_hrtimer_on_stack+0x20/0x20 [ 160.134201][ C0] ? __asan_memcpy+0x40/0x70 [ 160.134222][ C0] ? timekeeping_update+0x3e5/0x450 [ 160.134244][ C0] ? do_adjtimex+0x515/0xab0 [ 160.134264][ C0] timekeeping_inject_offset+0x663/0x710 [ 160.134286][ C0] ? do_adjtimex+0x515/0xab0 [ 160.134308][ C0] ? timekeeping_warp_clock+0x150/0x150 [ 160.134329][ C0] ? add_device_randomness+0xe6/0x130 [ 160.134349][ C0] ? crng_reseed+0x210/0x210 [ 160.134366][ C0] ? security_capable+0x8a/0xb0 [ 160.134385][ C0] do_adjtimex+0x515/0xab0 [ 160.134409][ C0] ? random_get_entropy_fallback+0x70/0x70 [ 160.134431][ C0] ? __might_sleep+0xc0/0xc0 [ 160.134451][ C0] ? __might_fault+0xbe/0x120 [ 160.134470][ C0] ? __lock_acquire+0x7f70/0x7f70 [ 160.134494][ C0] ? __might_fault+0xba/0x120 [ 160.134514][ C0] __x64_sys_clock_adjtime+0x1e0/0x290 [ 160.134533][ C0] ? do_clock_adjtime+0x120/0x120 [ 160.134560][ C0] ? print_irqtrace_events+0x220/0x220 [ 160.134581][ C0] ? syscall_enter_from_user_mode+0x32/0x230 [ 160.134603][ C0] ? syscall_enter_from_user_mode+0x8c/0x230 [ 160.134624][ C0] do_syscall_64+0x41/0xc0 [ 160.134641][ C0] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 160.134663][ C0] RIP: 0033:0x7fc1cb60fee9 [ 160.134681][ C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 d1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 160.134693][ C0] RSP: 002b:00007ffd6c04a108 EFLAGS: 00000246 ORIG_RAX: 0000000000000131 [ 160.134708][ C0] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fc1cb60fee9 [ 160.134719][ C0] RDX: 00007fc1cb60fee9 RSI: 0000000020000040 RDI: 0000000000000000 [ 160.134730][ C0] RBP: 00000000000f4240 R08: 0000000000000000 R09: 0000000100000000 [ 160.134740][ C0] R10: 0000000100000000 R11: 0000000000000246 R12: 00007ffd6c04a160 [ 160.134751][ C0] R13: 0000000000000001 R14: 00007ffd6c04a160 R15: 0000000000000003 [ 160.134769][ C0] [ 160.134775][ C0] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.575 msecs [ 160.135195][ C1] rcu: rcu_preempt kthread starved for 10500 jiffies! g5481 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 160.714824][ C1] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 160.724801][ C1] rcu: RCU grace-period kthread stack dump: [ 160.730693][ C1] task:rcu_preempt state:R running task stack:26952 pid:16 ppid:2 flags:0x00004000 [ 160.741485][ C1] Call Trace: [ 160.744768][ C1] [ 160.747709][ C1] __schedule+0x1873/0x48f0 [ 160.752241][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 160.758165][ C1] ? release_firmware_map_entry+0x190/0x190 [ 160.764072][ C1] ? __asan_memset+0x23/0x40 [ 160.768683][ C1] ? _raw_spin_unlock+0x40/0x40 [ 160.773550][ C1] schedule+0xc3/0x180 [ 160.777627][ C1] schedule_timeout+0x1bd/0x310 [ 160.782489][ C1] ? console_conditional_schedule+0x40/0x40 [ 160.788399][ C1] ? update_process_times+0x1b0/0x1b0 [ 160.793787][ C1] ? prepare_to_swait_event+0x329/0x350 [ 160.799350][ C1] rcu_gp_fqs_loop+0x2c6/0x1010 [ 160.804218][ C1] ? dump_blkd_tasks+0x810/0x810 [ 160.809165][ C1] ? lockdep_hardirqs_on+0x98/0x140 [ 160.814376][ C1] ? rcu_gp_init+0x15d0/0x15d0 [ 160.819149][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 160.825058][ C1] ? finish_swait+0xcd/0x1e0 [ 160.829662][ C1] rcu_gp_kthread+0xa7/0x3b0 [ 160.834268][ C1] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 160.839401][ C1] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0 [ 160.845395][ C1] ? __kthread_parkme+0x164/0x1c0 [ 160.850431][ C1] kthread+0x2b8/0x350 [ 160.854511][ C1] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 160.859627][ C1] ? kthread_blkcg+0xd0/0xd0 [ 160.864322][ C1] ret_from_fork+0x2e/0x60 [ 160.868751][ C1] ? kthread_blkcg+0xd0/0xd0 [ 160.873351][ C1] ret_from_fork_asm+0x11/0x20 [ 160.878148][ C1] [ 160.881259][ C1] rcu: Stack dump where RCU GP kthread last ran: [ 160.887579][ C1] CPU: 1 PID: 47 Comm: kworker/u4:3 Not tainted 6.5.0-rc6-syzkaller-00036-g4853c74bd7ab #0 [ 160.897561][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023 [ 160.907622][ C1] Workqueue: events_unbound toggle_allocation_gate [ 160.914146][ C1] RIP: 0010:__sanitizer_cov_trace_pc+0x5c/0x60 [ 160.920315][ C1] Code: e0 15 00 00 83 fa 02 75 21 48 8b 91 e8 15 00 00 48 8b 32 48 8d 7e 01 8b 89 e4 15 00 00 48 39 cf 73 08 48 89 3a 48 89 44 f2 08 0f 1f 00 f3 0f 1e fa 4c 8b 04 24 65 48 8b 15 a0 fc 77 7e 65 8b [ 160.939926][ C1] RSP: 0018:ffffc90000b87778 EFLAGS: 00000293 [ 160.946000][ C1] RAX: ffffffff8180a437 RBX: 1ffff1101730897d RCX: ffff888015ee5940 [ 160.954246][ C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 160.962221][ C1] RBP: ffffc90000b87980 R08: ffffffff8180a402 R09: 1ffffffff20f6860 [ 160.970205][ C1] R10: dffffc0000000000 R11: fffffbfff20f6861 R12: ffff8880b9844be8 [ 160.978192][ C1] R13: ffff8880b993d0c8 R14: ffff8880b993d0c0 R15: 0000000000000000 [ 160.986169][ C1] FS: 0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 160.995104][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 161.001692][ C1] CR2: 00005555574c7650 CR3: 000000000d130000 CR4: 00000000003506e0 [ 161.009673][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 161.017652][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 161.025628][ C1] Call Trace: [ 161.028910][ C1] [ 161.031759][ C1] ? rcu_check_gp_kthread_starvation+0x1b8/0x220 [ 161.038106][ C1] ? print_other_cpu_stall+0x144b/0x1580 [ 161.043776][ C1] ? rcu_stall_kick_kthreads+0x230/0x230 [ 161.049503][ C1] ? timekeeping_advance+0x7db/0xaa0 [ 161.054818][ C1] ? rcu_sched_clock_irq+0x989/0x17f0 [ 161.060213][ C1] ? rcu_gp_set_torture_wait+0x10/0x10 [ 161.065680][ C1] ? hrtimer_run_queues+0x167/0x450 [ 161.070889][ C1] ? acct_account_cputime+0x203/0x210 [ 161.076279][ C1] ? update_process_times+0x14b/0x1b0 [ 161.081659][ C1] ? tick_sched_timer+0x379/0x550 [ 161.086692][ C1] ? tick_setup_sched_timer+0x2f0/0x2f0 [ 161.092248][ C1] ? __hrtimer_run_queues+0x562/0xd10 [ 161.097646][ C1] ? hrtimer_interrupt+0x980/0x980 [ 161.102796][ C1] ? ktime_get_update_offsets_now+0x40b/0x420 [ 161.108903][ C1] ? hrtimer_interrupt+0x396/0x980 [ 161.114048][ C1] ? __sysvec_apic_timer_interrupt+0x13f/0x480 [ 161.120218][ C1] ? sysvec_apic_timer_interrupt+0x90/0xb0 [ 161.126068][ C1] [ 161.129026][ C1] [ 161.132007][ C1] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 161.138193][ C1] ? smp_call_function_many_cond+0x1842/0x27d0 [ 161.144376][ C1] ? smp_call_function_many_cond+0x1877/0x27d0 [ 161.150573][ C1] ? __sanitizer_cov_trace_pc+0x5c/0x60 [ 161.156235][ C1] smp_call_function_many_cond+0x1877/0x27d0 [ 161.162534][ C1] ? text_poke+0x90/0x90 [ 161.166820][ C1] ? smp_call_function_many+0x40/0x40 [ 161.172294][ C1] ? __might_sleep+0xc0/0xc0 [ 161.176905][ C1] ? rcu_is_watching+0x15/0xb0 [ 161.181697][ C1] ? text_poke_sync+0x20/0x20 [ 161.186401][ C1] on_each_cpu_cond_mask+0x3f/0x80 [ 161.191539][ C1] ? kmem_cache_alloc_bulk+0xe3/0x4b0 [ 161.196936][ C1] text_poke_bp_batch+0x2d7/0x960 [ 161.201976][ C1] ? arch_jump_label_transform_apply+0x12/0x30 [ 161.208151][ C1] ? mutex_lock_io_nested+0x60/0x60 [ 161.213363][ C1] ? text_poke_loc_init+0x680/0x680 [ 161.218678][ C1] ? arch_jump_label_transform_queue+0x81/0xd0 [ 161.224948][ C1] text_poke_finish+0x1a/0x30 [ 161.229642][ C1] arch_jump_label_transform_apply+0x17/0x30 [ 161.235726][ C1] static_key_enable_cpuslocked+0x132/0x250 [ 161.241654][ C1] static_key_enable+0x1a/0x20 [ 161.246432][ C1] toggle_allocation_gate+0xb5/0x250 [ 161.251824][ C1] ? show_object+0xa0/0xa0 [ 161.256255][ C1] ? print_irqtrace_events+0x220/0x220 [ 161.261734][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 161.267662][ C1] process_one_work+0x92c/0x12c0 [ 161.272641][ C1] ? worker_detach_from_pool+0x290/0x290 [ 161.278296][ C1] ? _raw_spin_lock_irqsave+0x120/0x120 [ 161.283873][ C1] ? wq_worker_running+0xa1/0x200 [ 161.288933][ C1] worker_thread+0xa63/0x1210 [ 161.293650][ C1] kthread+0x2b8/0x350 [ 161.297908][ C1] ? pr_cont_work+0x5e0/0x5e0 [ 161.302593][ C1] ? kthread_blkcg+0xd0/0xd0 [ 161.307193][ C1] ret_from_fork+0x2e/0x60 [ 161.311620][ C1] ? kthread_blkcg+0xd0/0xd0 [ 161.316218][ C1] ret_from_fork_asm+0x11/0x20 [ 161.321012][ C1]