./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1348093487

<...>
Warning: Permanently added '10.128.10.3' (ED25519) to the list of known hosts.
execve("./syz-executor1348093487", ["./syz-executor1348093487"], 0x7ffd41ebae10 /* 10 vars */) = 0
brk(NULL)                               = 0x55557a4d5000
brk(0x55557a4d5e00)                     = 0x55557a4d5e00
arch_prctl(ARCH_SET_FS, 0x55557a4d5480) = 0
set_tid_address(0x55557a4d5750)         = 5870
set_robust_list(0x55557a4d5760, 24)     = 0
rseq(0x55557a4d5da0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor1348093487", 4096) = 28
getrandom("\x8d\x7d\xc1\x12\xcd\x6b\xb9\xab", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x55557a4d5e00
brk(0x55557a4f6e00)                     = 0x55557a4f6e00
brk(0x55557a4f7000)                     = 0x55557a4f7000
mprotect(0x7fddea017000, 16384, PROT_READ) = 0
mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000
mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000
mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000
rt_sigaction(SIGRTMIN, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGRT_1, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGSEGV, {sa_handler=0x7fdde9f72930, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7fdde9f7a640}, NULL, 8) = 0
rt_sigaction(SIGBUS, {sa_handler=0x7fdde9f72930, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7fdde9f7a640}, NULL, 8) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5871 attached
 <unfinished ...>
[pid  5871] set_robust_list(0x55557a4d5760, 24 <unfinished ...>
[pid  5870] <... clone resumed>, child_tidptr=0x55557a4d5750) = 5871
[pid  5871] <... set_robust_list resumed>) = 0
[pid  5871] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5870] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5872 attached
 <unfinished ...>
[pid  5872] set_robust_list(0x55557a4d5760, 24./strace-static-x86_64: Process 5873 attached
 <unfinished ...>
[pid  5871] <... clone resumed>, child_tidptr=0x55557a4d5750) = 5872
[pid  5870] <... clone resumed>, child_tidptr=0x55557a4d5750) = 5873
[pid  5872] <... set_robust_list resumed>) = 0
[pid  5870] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5873] set_robust_list(0x55557a4d5760, 24 <unfinished ...>
[pid  5872] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5873] <... set_robust_list resumed>) = 0
./strace-static-x86_64: Process 5874 attached
[pid  5873] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5872] <... prctl resumed>)        = 0
[pid  5870] <... clone resumed>, child_tidptr=0x55557a4d5750) = 5874
[pid  5874] set_robust_list(0x55557a4d5760, 24 <unfinished ...>
[pid  5872] setpgid(0, 0 <unfinished ...>
[pid  5870] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5874] <... set_robust_list resumed>) = 0
[pid  5874] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5872] <... setpgid resumed>)      = 0
./strace-static-x86_64: Process 5875 attached
./strace-static-x86_64: Process 5876 attached
[pid  5875] set_robust_list(0x55557a4d5760, 24 <unfinished ...>
[pid  5872] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 5877 attached
 <unfinished ...>
[pid  5870] <... clone resumed>, child_tidptr=0x55557a4d5750) = 5876
[pid  5876] set_robust_list(0x55557a4d5760, 24 <unfinished ...>
[pid  5875] <... set_robust_list resumed>) = 0
[pid  5873] <... clone resumed>, child_tidptr=0x55557a4d5750) = 5875
[pid  5877] set_robust_list(0x55557a4d5760, 24 <unfinished ...>
[pid  5876] <... set_robust_list resumed>) = 0
[pid  5875] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5872] <... openat resumed>)       = 3
[pid  5877] <... set_robust_list resumed>) = 0
[pid  5876] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5875] <... prctl resumed>)        = 0
[pid  5874] <... clone resumed>, child_tidptr=0x55557a4d5750) = 5877
[pid  5877] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5875] setpgid(0, 0 <unfinished ...>
[pid  5872] write(3, "1000", 4)         = 4
[pid  5877] <... prctl resumed>)        = 0
[pid  5872] close(3 <unfinished ...>
[pid  5877] setpgid(0, 0 <unfinished ...>
[pid  5872] <... close resumed>)        = 0
[pid  5877] <... setpgid resumed>)      = 0
[pid  5877] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5875] <... setpgid resumed>)      = 0
[pid  5872] write(1, "executing program\n", 18./strace-static-x86_64: Process 5878 attached
executing program
) = 18
[pid  5872] openat(AT_FDCWD, "/dev/comedi3", O_RDONLY|O_APPEND <unfinished ...>
[pid  5878] set_robust_list(0x55557a4d5760, 24 <unfinished ...>
[pid  5877] <... openat resumed>)       = 3
[pid  5876] <... clone resumed>, child_tidptr=0x55557a4d5750) = 5878
[pid  5875] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5878] <... set_robust_list resumed>) = 0
[pid  5872] <... openat resumed>)       = 3
[pid  5878] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5877] write(3, "1000", 4 <unfinished ...>
[pid  5875] <... openat resumed>)       = 3
[pid  5872] ioctl(3, COMEDI_DEVCONFIG <unfinished ...>
[pid  5878] setpgid(0, 0 <unfinished ...>
[pid  5877] <... write resumed>)        = 4
[pid  5877] close(3 <unfinished ...>
[pid  5875] write(3, "1000", 4)         = 4
[pid  5878] <... setpgid resumed>)      = 0
[pid  5877] <... close resumed>)        = 0
executing program
[pid  5878] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5877] write(1, "executing program\n", 18 <unfinished ...>
[pid  5875] close(3 <unfinished ...>
[pid  5877] <... write resumed>)        = 18
[pid  5875] <... close resumed>)        = 0
executing program
[pid  5877] openat(AT_FDCWD, "/dev/comedi3", O_RDONLY|O_APPEND <unfinished ...>
[pid  5875] write(1, "executing program\n", 18 <unfinished ...>
[pid  5878] <... openat resumed>)       = 3
[pid  5875] <... write resumed>)        = 18
[pid  5875] openat(AT_FDCWD, "/dev/comedi3", O_RDONLY|O_APPEND <unfinished ...>
[pid  5878] write(3, "1000", 4)         = 4
[pid  5878] close(3)                    = 0
executing program
[pid  5878] write(1, "executing program\n", 18) = 18
[pid  5878] openat(AT_FDCWD, "/dev/comedi3", O_RDONLY|O_APPEND <unfinished ...>
[pid  5871] kill(-5872, SIGKILL)        = 0
[pid  5871] kill(5872, SIGKILL)         = 0
[pid  5874] kill(-5877, SIGKILL)        = 0
[pid  5874] kill(5877, SIGKILL)         = 0
[pid  5873] kill(-5875, SIGKILL)        = 0
[pid  5873] kill(5875, SIGKILL <unfinished ...>
[pid  5876] kill(-5878, SIGKILL <unfinished ...>
[pid  5873] <... kill resumed>)         = 0
[pid  5876] <... kill resumed>)         = 0
[pid  5876] kill(5878, SIGKILL)         = 0
[pid  5874] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5871] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5874] <... openat resumed>)       = 3
[pid  5876] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5871] <... openat resumed>)       = 3
[pid  5876] <... openat resumed>)       = 3
[pid  5874] newfstatat(3, "",  <unfinished ...>
[pid  5876] newfstatat(3, "",  <unfinished ...>
[pid  5874] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5871] newfstatat(3, "",  <unfinished ...>
[pid  5876] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5871] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5876] getdents64(3,  <unfinished ...>
[pid  5874] getdents64(3,  <unfinished ...>
[pid  5873] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5871] getdents64(3,  <unfinished ...>
[pid  5876] <... getdents64 resumed>0x55557a4d67f0 /* 2 entries */, 32768) = 48
[pid  5873] <... openat resumed>)       = 3
[pid  5874] <... getdents64 resumed>0x55557a4d67f0 /* 2 entries */, 32768) = 48
[pid  5871] <... getdents64 resumed>0x55557a4d67f0 /* 2 entries */, 32768) = 48
[pid  5876] getdents64(3,  <unfinished ...>
[pid  5874] getdents64(3,  <unfinished ...>
[pid  5873] newfstatat(3, "",  <unfinished ...>
[pid  5871] getdents64(3,  <unfinished ...>
[pid  5876] <... getdents64 resumed>0x55557a4d67f0 /* 0 entries */, 32768) = 0
[pid  5874] <... getdents64 resumed>0x55557a4d67f0 /* 0 entries */, 32768) = 0
[pid  5873] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5871] <... getdents64 resumed>0x55557a4d67f0 /* 0 entries */, 32768) = 0
[pid  5876] close(3 <unfinished ...>
[pid  5874] close(3 <unfinished ...>
[pid  5873] getdents64(3,  <unfinished ...>
[pid  5871] close(3 <unfinished ...>
[pid  5876] <... close resumed>)        = 0
[pid  5874] <... close resumed>)        = 0
[pid  5871] <... close resumed>)        = 0
[pid  5873] <... getdents64 resumed>0x55557a4d67f0 /* 2 entries */, 32768) = 48
[pid  5873] getdents64(3, 0x55557a4d67f0 /* 0 entries */, 32768) = 0
[pid  5873] close(3)                    = 0
[  286.742138][   T31] INFO: task syz-executor134:5875 blocked for more than 143 seconds.
[  286.750454][   T31]       Not tainted 6.16.0-next-20250731-syzkaller #0
[  286.757254][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  286.769402][   T31] task:syz-executor134 state:D stack:27432 pid:5875  tgid:5875  ppid:5873   task_flags:0x400040 flags:0x00004006
[  286.783672][   T31] Call Trace:
[  286.787165][   T31]  <TASK>
[  286.790488][   T31]  __schedule+0x1798/0x4cc0
[  286.795196][   T31]  ? __lock_acquire+0xab9/0xd20
[  286.800414][   T31]  ? __lock_acquire+0xab9/0xd20
[  286.806446][   T31]  ? __pfx___schedule+0x10/0x10
[  286.813242][   T31]  ? schedule+0x91/0x360
[  286.817766][   T31]  schedule+0x165/0x360
[  286.822907][   T31]  schedule_preempt_disabled+0x13/0x30
[  286.828534][   T31]  __mutex_lock+0x7e6/0x1360
[  286.833843][   T31]  ? __mutex_lock+0x5b6/0x1360
[  286.838983][   T31]  ? comedi_open+0xc0/0x590
[  286.844306][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  286.849816][   T31]  ? __kasan_kmalloc+0x93/0xb0
[  286.854766][   T31]  ? __kmalloc_cache_noprof+0x230/0x3d0
[  286.860758][   T31]  ? comedi_open+0x8b/0x590
[  286.865334][   T31]  comedi_open+0xc0/0x590
[  286.870618][   T31]  ? do_raw_spin_unlock+0x122/0x240
[  286.875987][   T31]  chrdev_open+0x4c9/0x5e0
[  286.881820][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  286.887731][   T31]  ? fsnotify_open_perm_and_set_mode+0x113/0x610
[  286.895024][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  286.900346][   T31]  do_dentry_open+0x953/0x13f0
[  286.905481][   T31]  vfs_open+0x3b/0x340
[  286.911140][   T31]  ? path_openat+0x2ecd/0x3830
[  286.916102][   T31]  path_openat+0x2ee5/0x3830
[  286.921185][   T31]  ? arch_stack_walk+0xfc/0x150
[  286.926139][   T31]  ? stack_depot_save_flags+0x40/0x860
[  286.932408][   T31]  ? __pfx_path_openat+0x10/0x10
[  286.937414][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  286.943962][   T31]  do_filp_open+0x1fa/0x410
[  286.948536][   T31]  ? __lock_acquire+0xab9/0xd20
[  286.953730][   T31]  ? __pfx_do_filp_open+0x10/0x10
[  286.958913][   T31]  ? _raw_spin_unlock+0x28/0x50
[  286.964297][   T31]  ? alloc_fd+0x64c/0x6c0
[  286.968717][   T31]  do_sys_openat2+0x121/0x1c0
[  286.973792][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[  286.979121][   T31]  __x64_sys_openat+0x138/0x170
[  286.984379][   T31]  do_syscall_64+0xfa/0x3b0
[  286.988941][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  286.994526][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  287.001410][   T31]  ? clear_bhb_loop+0x60/0xb0
[  287.006249][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  287.012804][   T31] RIP: 0033:0x7fdde9fa4969
[  287.017305][   T31] RSP: 002b:00007ffd948445d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  287.026583][   T31] RAX: ffffffffffffffda RBX: 00007ffd94844610 RCX: 00007fdde9fa4969
[  287.035276][   T31] RDX: 0000000000000400 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  287.043889][   T31] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000f4240
[  287.052612][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000f4240
[  287.060948][   T31] R13: 00007ffd94844898 R14: 00007ffd948445fc R15: 00007ffd94844600
[  287.068991][   T31]  </TASK>
[  287.072646][   T31] INFO: task syz-executor134:5877 blocked for more than 143 seconds.
[  287.081588][   T31]       Not tainted 6.16.0-next-20250731-syzkaller #0
[  287.088378][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  287.097595][   T31] task:syz-executor134 state:D stack:28040 pid:5877  tgid:5877  ppid:5874   task_flags:0x400040 flags:0x00004006
[  287.110769][   T31] Call Trace:
[  287.114558][   T31]  <TASK>
[  287.117656][   T31]  __schedule+0x1798/0x4cc0
[  287.123046][   T31]  ? __lock_acquire+0xab9/0xd20
[  287.128072][   T31]  ? __lock_acquire+0xab9/0xd20
[  287.135509][   T31]  ? __pfx___schedule+0x10/0x10
[  287.140932][   T31]  ? schedule+0x91/0x360
[  287.145331][   T31]  schedule+0x165/0x360
[  287.150014][   T31]  schedule_preempt_disabled+0x13/0x30
[  287.155534][   T31]  __mutex_lock+0x7e6/0x1360
[  287.160687][   T31]  ? __mutex_lock+0x5b6/0x1360
[  287.165522][   T31]  ? comedi_open+0xc0/0x590
[  287.170595][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  287.175695][   T31]  ? __kasan_kmalloc+0x93/0xb0
[  287.181015][   T31]  ? __kmalloc_cache_noprof+0x230/0x3d0
[  287.186714][   T31]  ? comedi_open+0x8b/0x590
[  287.191814][   T31]  comedi_open+0xc0/0x590
[  287.196220][   T31]  ? do_raw_spin_unlock+0x122/0x240
[  287.202082][   T31]  chrdev_open+0x4c9/0x5e0
[  287.206669][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  287.212279][   T31]  ? fsnotify_open_perm_and_set_mode+0x113/0x610
[  287.220420][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  287.225549][   T31]  do_dentry_open+0x953/0x13f0
[  287.231316][   T31]  vfs_open+0x3b/0x340
[  287.235510][   T31]  ? path_openat+0x2ecd/0x3830
[  287.240940][   T31]  path_openat+0x2ee5/0x3830
[  287.245696][   T31]  ? arch_stack_walk+0xfc/0x150
[  287.251407][   T31]  ? stack_depot_save_flags+0x40/0x860
[  287.256957][   T31]  ? __pfx_path_openat+0x10/0x10
[  287.262439][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  287.268588][   T31]  do_filp_open+0x1fa/0x410
[  287.273637][   T31]  ? __lock_acquire+0xab9/0xd20
[  287.278541][   T31]  ? __pfx_do_filp_open+0x10/0x10
[  287.284190][   T31]  ? _raw_spin_unlock+0x28/0x50
[  287.289107][   T31]  ? alloc_fd+0x64c/0x6c0
[  287.294047][   T31]  do_sys_openat2+0x121/0x1c0
[  287.298797][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[  287.304714][   T31]  __x64_sys_openat+0x138/0x170
[  287.309992][   T31]  do_syscall_64+0xfa/0x3b0
[  287.314631][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  287.320645][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  287.326810][   T31]  ? clear_bhb_loop+0x60/0xb0
[  287.332887][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  287.338940][   T31] RIP: 0033:0x7fdde9fa4969
[  287.344061][   T31] RSP: 002b:00007ffd948445d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  287.352992][   T31] RAX: ffffffffffffffda RBX: 00007ffd94844610 RCX: 00007fdde9fa4969
[  287.361524][   T31] RDX: 0000000000000400 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  287.370057][   T31] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000f4240
[  287.378098][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000f4240
[  287.386824][   T31] R13: 00007ffd94844898 R14: 00007ffd948445fc R15: 00007ffd94844600
[  287.395269][   T31]  </TASK>
[  287.398481][   T31] INFO: task syz-executor134:5878 blocked for more than 144 seconds.
[  287.407152][   T31]       Not tainted 6.16.0-next-20250731-syzkaller #0
[  287.414414][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  287.423685][   T31] task:syz-executor134 state:D stack:27704 pid:5878  tgid:5878  ppid:5876   task_flags:0x400040 flags:0x00004006
[  287.436187][   T31] Call Trace:
[  287.440234][   T31]  <TASK>
[  287.443319][   T31]  __schedule+0x1798/0x4cc0
[  287.448016][   T31]  ? __lock_acquire+0xab9/0xd20
[  287.454126][   T31]  ? __lock_acquire+0xab9/0xd20
[  287.459061][   T31]  ? __pfx___schedule+0x10/0x10
[  287.464545][   T31]  ? schedule+0x91/0x360
[  287.468856][   T31]  schedule+0x165/0x360
[  287.473649][   T31]  schedule_preempt_disabled+0x13/0x30
[  287.479172][   T31]  __mutex_lock+0x7e6/0x1360
[  287.484257][   T31]  ? __mutex_lock+0x5b6/0x1360
[  287.489095][   T31]  ? comedi_open+0xc0/0x590
[  287.494183][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  287.499632][   T31]  ? __kasan_kmalloc+0x93/0xb0
[  287.504503][   T31]  ? __kmalloc_cache_noprof+0x230/0x3d0
[  287.510786][   T31]  ? comedi_open+0x8b/0x590
[  287.515366][   T31]  comedi_open+0xc0/0x590
[  287.520719][   T31]  ? do_raw_spin_unlock+0x122/0x240
[  287.526081][   T31]  chrdev_open+0x4c9/0x5e0
[  287.531333][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  287.536361][   T31]  ? fsnotify_open_perm_and_set_mode+0x113/0x610
[  287.543453][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  287.548465][   T31]  do_dentry_open+0x953/0x13f0
[  287.553963][   T31]  vfs_open+0x3b/0x340
[  287.558131][   T31]  ? path_openat+0x2ecd/0x3830
[  287.564277][   T31]  path_openat+0x2ee5/0x3830
[  287.569045][   T31]  ? arch_stack_walk+0xfc/0x150
[  287.574842][   T31]  ? stack_depot_save_flags+0x40/0x860
[  287.581292][   T31]  ? __pfx_path_openat+0x10/0x10
[  287.586816][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  287.593679][   T31]  do_filp_open+0x1fa/0x410
[  287.598765][   T31]  ? __lock_acquire+0xab9/0xd20
[  287.604231][   T31]  ? __pfx_do_filp_open+0x10/0x10
[  287.609663][   T31]  ? _raw_spin_unlock+0x28/0x50
[  287.614625][   T31]  ? alloc_fd+0x64c/0x6c0
[  287.619153][   T31]  do_sys_openat2+0x121/0x1c0
[  287.625416][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[  287.630973][   T31]  __x64_sys_openat+0x138/0x170
[  287.636168][   T31]  do_syscall_64+0xfa/0x3b0
[  287.641899][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  287.647222][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  287.654237][   T31]  ? clear_bhb_loop+0x60/0xb0
[  287.659006][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  287.665613][   T31] RIP: 0033:0x7fdde9fa4969
[  287.671163][   T31] RSP: 002b:00007ffd948445d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  287.680038][   T31] RAX: ffffffffffffffda RBX: 00007ffd94844610 RCX: 00007fdde9fa4969
[  287.688158][   T31] RDX: 0000000000000400 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  287.696746][   T31] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000f4240
[  287.705145][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000f4240
[  287.713591][   T31] R13: 00007ffd94844898 R14: 00007ffd948445fc R15: 00007ffd94844600
[  287.721963][   T31]  </TASK>
[  287.725065][   T31] 
[  287.725065][   T31] Showing all locks held in the system:
[  287.733656][   T31] 1 lock held by khungtaskd/31:
[  287.738559][   T31]  #0: ffffffff8e539f20 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[  287.749508][   T31] 2 locks held by getty/5604:
[  287.754267][   T31]  #0: ffff88814ca930a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  287.764801][   T31]  #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400
[  287.775394][   T31] 2 locks held by syz-executor134/5872:
[  287.781977][   T31] 1 lock held by syz-executor134/5875:
[  287.788996][   T31]  #0: ffff88802f62a0f8 (&dev->mutex#4){+.+.}-{4:4}, at: comedi_open+0xc0/0x590
[  287.798781][   T31] 1 lock held by syz-executor134/5877:
[  287.804694][   T31]  #0: ffff88802f62a0f8 (&dev->mutex#4){+.+.}-{4:4}, at: comedi_open+0xc0/0x590
[  287.814241][   T31] 1 lock held by syz-executor134/5878:
[  287.820064][   T31]  #0: ffff88802f62a0f8 (&dev->mutex#4){+.+.}-{4:4}, at: comedi_open+0xc0/0x590
[  287.829771][   T31] 
[  287.832153][   T31] =============================================
[  287.832153][   T31] 
[  287.841589][   T31] NMI backtrace for cpu 0
[  287.841627][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full) 
[  287.841657][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  287.841672][   T31] Call Trace:
[  287.841681][   T31]  <TASK>
[  287.841693][   T31]  dump_stack_lvl+0x189/0x250
[  287.841738][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  287.841772][   T31]  ? __pfx__printk+0x10/0x10
[  287.841821][   T31]  nmi_cpu_backtrace+0x39e/0x3d0
[  287.841856][   T31]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  287.841889][   T31]  ? __pfx__printk+0x10/0x10
[  287.841935][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  287.841967][   T31]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[  287.842002][   T31]  watchdog+0xf93/0xfe0
[  287.842032][   T31]  ? watchdog+0x1de/0xfe0
[  287.842062][   T31]  kthread+0x70e/0x8a0
[  287.842116][   T31]  ? __pfx_watchdog+0x10/0x10
[  287.842136][   T31]  ? __pfx_kthread+0x10/0x10
[  287.842174][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  287.842209][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  287.842242][   T31]  ? __pfx_kthread+0x10/0x10
[  287.842279][   T31]  ret_from_fork+0x3fc/0x770
[  287.842312][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  287.842349][   T31]  ? __switch_to_asm+0x39/0x70
[  287.842385][   T31]  ? __switch_to_asm+0x33/0x70
[  287.842420][   T31]  ? __pfx_kthread+0x10/0x10
[  287.842455][   T31]  ret_from_fork_asm+0x1a/0x30
[  287.842494][   T31]  </TASK>
[  287.842503][   T31] Sending NMI from CPU 0 to CPUs 1:
[  287.993382][    C1] NMI backtrace for cpu 1
[  287.993400][    C1] CPU: 1 UID: 0 PID: 37 Comm: kworker/u8:3 Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full) 
[  287.993422][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  287.993434][    C1] Workqueue: events_unbound toggle_allocation_gate
[  287.993469][    C1] RIP: 0010:trace_hardirqs_on+0xb/0x40
[  287.993499][    C1] Code: 00 ff ff ff 90 0f 0b 90 e9 77 ff ff ff 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 65 8b 05 75 d3 1a 11 <85> c0 74 14 48 8b 3c 24 e8 c8 fe ff ff 65 c7 05 5d d3 1a 11 00 00
[  287.993514][    C1] RSP: 0018:ffffc90000ad76b8 EFLAGS: 00000093
[  287.993528][    C1] RAX: 0000000000000001 RBX: 0000000000000000 RCX: ffff8881432e3c00
[  287.993540][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  287.993551][    C1] RBP: ffffc90000ad7810 R08: 0000000000000001 R09: 0000000000ad7800
[  287.993562][    C1] R10: dffffc0000000000 R11: ffffed100350e0ec R12: dffffc0000000000
[  287.993576][    C1] R13: ffff88801a87c558 R14: 0000000000000200 R15: ffffffff821879e3
[  287.993589][    C1] FS:  0000000000000000(0000) GS:ffff88812590a000(0000) knlGS:0000000000000000
[  287.993604][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  287.993616][    C1] CR2: 0000564ce03c2168 CR3: 000000000e336000 CR4: 00000000003526f0
[  287.993631][    C1] Call Trace:
[  287.993638][    C1]  <TASK>
[  287.993645][    C1]  __text_poke+0x748/0xa10
[  287.993676][    C1]  ? __pfx_text_poke_memcpy+0x10/0x10
[  287.993703][    C1]  ? __kmalloc_cache_noprof+0x83/0x3d0
[  287.993731][    C1]  ? __pfx___text_poke+0x10/0x10
[  287.993755][    C1]  ? rcu_is_watching+0x15/0xb0
[  287.993776][    C1]  ? trace_contention_end+0x39/0x120
[  287.993805][    C1]  smp_text_poke_batch_finish+0xd0f/0x1130
[  287.993839][    C1]  ? __pfx_smp_text_poke_batch_finish+0x10/0x10
[  287.993870][    C1]  ? arch_jump_label_transform_queue+0x97/0x110
[  287.993895][    C1]  arch_jump_label_transform_apply+0x1c/0x30
[  287.993915][    C1]  static_key_disable_cpuslocked+0xc5/0x1b0
[  287.993941][    C1]  static_key_disable+0x1a/0x20
[  287.993958][    C1]  toggle_allocation_gate+0x1a1/0x240
[  287.993986][    C1]  ? __pfx_toggle_allocation_gate+0x10/0x10
[  287.994015][    C1]  ? __pfx_autoremove_wake_function+0x10/0x10
[  287.994044][    C1]  ? process_scheduled_works+0x9ef/0x17b0
[  287.994065][    C1]  ? process_scheduled_works+0x9ef/0x17b0
[  287.994086][    C1]  process_scheduled_works+0xade/0x17b0
[  287.994121][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  287.994150][    C1]  worker_thread+0x8a0/0xda0
[  287.994173][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  287.994204][    C1]  ? __kthread_parkme+0x7b/0x200
[  287.994232][    C1]  kthread+0x70e/0x8a0
[  287.994258][    C1]  ? __pfx_worker_thread+0x10/0x10
[  287.994279][    C1]  ? __pfx_kthread+0x10/0x10
[  287.994304][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  287.994328][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  287.994353][    C1]  ? __pfx_kthread+0x10/0x10
[  287.994379][    C1]  ret_from_fork+0x3fc/0x770
[  287.994401][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  287.994425][    C1]  ? __switch_to_asm+0x39/0x70
[  287.994452][    C1]  ? __switch_to_asm+0x33/0x70
[  287.994477][    C1]  ? __pfx_kthread+0x10/0x10
[  287.994502][    C1]  ret_from_fork_asm+0x1a/0x30
[  287.994526][    C1]  </TASK>
[  287.994534][    C1] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.152 msecs
[  287.995392][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  288.329281][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full) 
[  288.340842][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  288.351055][   T31] Call Trace:
[  288.354359][   T31]  <TASK>
[  288.357305][   T31]  dump_stack_lvl+0x99/0x250
[  288.361924][   T31]  ? __asan_memcpy+0x40/0x70
[  288.366555][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  288.371877][   T31]  ? __pfx__printk+0x10/0x10
[  288.376511][   T31]  vpanic+0x281/0x750
[  288.380516][   T31]  ? __pfx_vpanic+0x10/0x10
[  288.385047][   T31]  ? preempt_schedule+0xae/0xc0
[  288.389932][   T31]  ? preempt_schedule_common+0x83/0xd0
[  288.395412][   T31]  panic+0xb9/0xc0
[  288.399629][   T31]  ? __pfx_panic+0x10/0x10
[  288.404061][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  288.409454][   T31]  ? nmi_trigger_cpumask_backtrace+0x2bb/0x300
[  288.415655][   T31]  watchdog+0xfd2/0xfe0
[  288.419832][   T31]  ? watchdog+0x1de/0xfe0
[  288.424352][   T31]  kthread+0x70e/0x8a0
[  288.428447][   T31]  ? __pfx_watchdog+0x10/0x10
[  288.433219][   T31]  ? __pfx_kthread+0x10/0x10
[  288.438233][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  288.443570][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  288.448815][   T31]  ? __pfx_kthread+0x10/0x10
[  288.453535][   T31]  ret_from_fork+0x3fc/0x770
[  288.458181][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  288.463339][   T31]  ? __switch_to_asm+0x39/0x70
[  288.468182][   T31]  ? __switch_to_asm+0x33/0x70
[  288.472989][   T31]  ? __pfx_kthread+0x10/0x10
[  288.477629][   T31]  ret_from_fork_asm+0x1a/0x30
[  288.482433][   T31]  </TASK>
[  288.485855][   T31] Kernel Offset: disabled
[  288.490280][   T31] Rebooting in 86400 seconds..