./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1029367795 <...> Warning: Permanently added '10.128.0.175' (ED25519) to the list of known hosts. execve("./syz-executor1029367795", ["./syz-executor1029367795"], 0x7ffd15ac8870 /* 10 vars */) = 0 brk(NULL) = 0x55557779b000 brk(0x55557779bd00) = 0x55557779bd00 arch_prctl(ARCH_SET_FS, 0x55557779b380) = 0 set_tid_address(0x55557779b650) = 5849 set_robust_list(0x55557779b660, 24) = 0 rseq(0x55557779bca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1029367795", 4096) = 28 getrandom("\x9d\x37\xc3\x89\x18\x04\xdb\xf6", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55557779bd00 brk(0x5555777bcd00) = 0x5555777bcd00 brk(0x5555777bd000) = 0x5555777bd000 mprotect(0x7f5013c22000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557779b650) = 5850 ./strace-static-x86_64: Process 5850 attached [pid 5849] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5850] set_robust_list(0x55557779b660, 24) = 0 [pid 5850] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5851 attached [pid 5849] <... clone resumed>, child_tidptr=0x55557779b650) = 5851 [pid 5849] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5851] set_robust_list(0x55557779b660, 24./strace-static-x86_64: Process 5852 attached ) = 0 [pid 5852] set_robust_list(0x55557779b660, 24 [pid 5851] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5850] <... clone resumed>, child_tidptr=0x55557779b650) = 5852 ./strace-static-x86_64: Process 5853 attached [pid 5849] <... clone resumed>, child_tidptr=0x55557779b650) = 5853 [pid 5853] set_robust_list(0x55557779b660, 24 [pid 5852] <... set_robust_list resumed>) = 0 [pid 5849] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5852] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5853] <... set_robust_list resumed>) = 0 [pid 5852] <... prctl resumed>) = 0 ./strace-static-x86_64: Process 5854 attached [pid 5853] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5852] setpgid(0, 0 [pid 5854] set_robust_list(0x55557779b660, 24 [pid 5852] <... setpgid resumed>) = 0 [pid 5851] <... clone resumed>, child_tidptr=0x55557779b650) = 5854 ./strace-static-x86_64: Process 5856 attached ./strace-static-x86_64: Process 5855 attached [pid 5849] <... clone resumed>, child_tidptr=0x55557779b650) = 5855 [pid 5854] <... set_robust_list resumed>) = 0 [pid 5852] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5849] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5856] set_robust_list(0x55557779b660, 24 [pid 5855] set_robust_list(0x55557779b660, 24 [pid 5854] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5853] <... clone resumed>, child_tidptr=0x55557779b650) = 5856 [pid 5852] <... openat resumed>) = 3 [pid 5856] <... set_robust_list resumed>) = 0 [pid 5855] <... set_robust_list resumed>) = 0 [pid 5854] <... prctl resumed>) = 0 ./strace-static-x86_64: Process 5857 attached [pid 5856] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5852] write(3, "1000", 4 [pid 5849] <... clone resumed>, child_tidptr=0x55557779b650) = 5857 [pid 5857] set_robust_list(0x55557779b660, 24 [pid 5854] setpgid(0, 0 [pid 5852] <... write resumed>) = 4 [pid 5857] <... set_robust_list resumed>) = 0 [pid 5856] <... prctl resumed>) = 0 executing program [pid 5855] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5854] <... setpgid resumed>) = 0 [pid 5852] close(3 [pid 5857] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5852] <... close resumed>) = 0 [pid 5854] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5852] write(1, "executing program\n", 18 [pid 5856] setpgid(0, 0 [pid 5852] <... write resumed>) = 18 [pid 5852] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC./strace-static-x86_64: Process 5859 attached ./strace-static-x86_64: Process 5858 attached [pid 5859] set_robust_list(0x55557779b660, 24 [pid 5856] <... setpgid resumed>) = 0 [pid 5854] <... openat resumed>) = 3 [pid 5852] <... openat resumed>) = 3 [pid 5859] <... set_robust_list resumed>) = 0 [pid 5858] set_robust_list(0x55557779b660, 24 [pid 5857] <... clone resumed>, child_tidptr=0x55557779b650) = 5859 [pid 5856] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5855] <... clone resumed>, child_tidptr=0x55557779b650) = 5858 [pid 5854] write(3, "1000", 4 [pid 5852] dup(3 [pid 5859] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5858] <... set_robust_list resumed>) = 0 [pid 5856] <... openat resumed>) = 3 [pid 5854] <... write resumed>) = 4 [pid 5852] <... dup resumed>) = 4 [pid 5859] <... prctl resumed>) = 0 [pid 5856] write(3, "1000", 4 [pid 5854] close(3 [pid 5852] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5859] setpgid(0, 0 [pid 5858] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5856] <... write resumed>) = 4 [pid 5854] <... close resumed>) = 0 [pid 5859] <... setpgid resumed>) = 0 [pid 5858] <... prctl resumed>) = 0 executing program [pid 5856] close(3 [pid 5854] write(1, "executing program\n", 18 [pid 5859] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5858] setpgid(0, 0 [pid 5856] <... close resumed>) = 0 [pid 5854] <... write resumed>) = 18 [pid 5858] <... setpgid resumed>) = 0 [pid 5859] <... openat resumed>) = 3 [pid 5858] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5854] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC [pid 5859] write(3, "1000", 4 [pid 5858] <... openat resumed>) = 3 [pid 5856] write(1, "executing program\n", 18 [pid 5854] <... openat resumed>) = 3 [pid 5859] <... write resumed>) = 4 executing program [pid 5859] close(3 [pid 5856] <... write resumed>) = 18 [pid 5854] dup(3 [pid 5859] <... close resumed>) = 0 [pid 5858] write(3, "1000", 4 [pid 5856] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC [pid 5858] <... write resumed>) = 4 [pid 5856] <... openat resumed>) = 3 [pid 5858] close(3) = 0 [pid 5856] dup(3executing program [pid 5858] write(1, "executing program\n", 18 [pid 5856] <... dup resumed>) = 4 [pid 5859] write(1, "executing program\n", 18executing program [pid 5854] <... dup resumed>) = 4 [pid 5859] <... write resumed>) = 18 [pid 5858] <... write resumed>) = 18 [pid 5856] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5854] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5859] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC [pid 5858] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC [pid 5859] <... openat resumed>) = 3 [pid 5859] dup(3) = 4 [pid 5858] <... openat resumed>) = 3 [pid 5859] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5858] dup(3) = 4 [pid 5858] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5850] kill(-5852, SIGKILL) = 0 [pid 5850] kill(5852, SIGKILL) = 0 [pid 5851] kill(-5854, SIGKILL) = 0 [pid 5851] kill(5854, SIGKILL) = 0 [pid 5853] kill(-5856, SIGKILL) = 0 [pid 5853] kill(5856, SIGKILL) = 0 [pid 5857] kill(-5859, SIGKILL [pid 5855] kill(-5858, SIGKILL [pid 5857] <... kill resumed>) = 0 [pid 5855] <... kill resumed>) = 0 [pid 5857] kill(5859, SIGKILL [pid 5855] kill(5858, SIGKILL [pid 5857] <... kill resumed>) = 0 [pid 5855] <... kill resumed>) = 0 [pid 5850] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5850] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5850] getdents64(3, 0x55557779c6f0 /* 2 entries */, 32768) = 48 [pid 5850] getdents64(3, 0x55557779c6f0 /* 0 entries */, 32768) = 0 [pid 5850] close(3) = 0 [pid 5851] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5851] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5851] getdents64(3, 0x55557779c6f0 /* 2 entries */, 32768) = 48 [pid 5851] getdents64(3, 0x55557779c6f0 /* 0 entries */, 32768) = 0 [pid 5851] close(3) = 0 [pid 5853] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5853] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5853] getdents64(3, 0x55557779c6f0 /* 2 entries */, 32768) = 48 [pid 5853] getdents64(3, 0x55557779c6f0 /* 0 entries */, 32768) = 0 [pid 5853] close(3) = 0 [pid 5855] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5857] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5855] <... openat resumed>) = 3 [pid 5857] <... openat resumed>) = 3 [pid 5855] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5855] getdents64(3, [pid 5857] newfstatat(3, "", [pid 5855] <... getdents64 resumed>0x55557779c6f0 /* 2 entries */, 32768) = 48 [pid 5857] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5855] getdents64(3, [pid 5857] getdents64(3, [pid 5855] <... getdents64 resumed>0x55557779c6f0 /* 0 entries */, 32768) = 0 [pid 5857] <... getdents64 resumed>0x55557779c6f0 /* 2 entries */, 32768) = 48 [pid 5855] close(3 [pid 5857] getdents64(3, [pid 5855] <... close resumed>) = 0 [pid 5857] <... getdents64 resumed>0x55557779c6f0 /* 0 entries */, 32768) = 0 [pid 5857] close(3) = 0 [pid 5852] <... fallocate resumed>) = ? [pid 5852] +++ killed by SIGKILL +++ [pid 5850] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5852, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=11651 /* 116.51 s */} --- [pid 5850] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5873 attached , child_tidptr=0x55557779b650) = 5873 [pid 5873] set_robust_list(0x55557779b660, 24) = 0 [pid 5873] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5873] setpgid(0, 0) = 0 [pid 5873] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 executing program [pid 5873] write(3, "1000", 4) = 4 [pid 5873] close(3) = 0 [pid 5873] write(1, "executing program\n", 18) = 18 [pid 5873] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC) = 3 [pid 5873] dup(3) = 4 [pid 5873] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5850] kill(-5873, SIGKILL) = 0 [pid 5850] kill(5873, SIGKILL) = 0 [pid 5850] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5850] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5850] getdents64(3, 0x55557779c6f0 /* 2 entries */, 32768) = 48 [pid 5850] getdents64(3, 0x55557779c6f0 /* 0 entries */, 32768) = 0 [pid 5850] close(3) = 0 [ 286.524206][ T31] INFO: task syz-executor102:5854 blocked for more than 143 seconds. [ 286.532579][ T31] Not tainted 6.15.0-syzkaller-08297-ge0797d3b91de #0 [ 286.547813][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.556568][ T31] task:syz-executor102 state:D stack:28040 pid:5854 tgid:5854 ppid:5851 task_flags:0x400040 flags:0x00004006 [ 286.587776][ T31] Call Trace: [ 286.591128][ T31] [ 286.594091][ T31] __schedule+0x16f5/0x4d00 [ 286.607886][ T31] ? kvm_sched_clock_read+0x11/0x20 [ 286.613176][ T31] ? sched_clock+0x3f/0x60 [ 286.617631][ T31] ? sched_clock_cpu+0x74/0x430 [ 286.632655][ T31] ? __lock_acquire+0xab9/0xd20 [ 286.637617][ T31] ? schedule+0x165/0x360 [ 286.657116][ T31] ? __pfx___schedule+0x10/0x10 [ 286.667810][ T31] ? schedule+0x91/0x360 [ 286.672150][ T31] schedule+0x165/0x360 [ 286.676352][ T31] schedule_preempt_disabled+0x13/0x30 [ 286.697714][ T31] rwsem_down_write_slowpath+0xbec/0x1030 [ 286.703531][ T31] ? rwsem_down_write_slowpath+0x7ec/0x1030 [ 286.717734][ T31] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 286.723980][ T31] ? __lock_acquire+0xab9/0xd20 [ 286.737724][ T31] ? blkdev_fallocate+0x1d8/0x4b0 [ 286.742864][ T31] down_write+0x1ab/0x1f0 [ 286.747240][ T31] ? __pfx_down_write+0x10/0x10 [ 286.767767][ T31] ? end_current_label_crit_section+0x152/0x180 [ 286.774103][ T31] blkdev_fallocate+0x1d8/0x4b0 [ 286.787765][ T31] vfs_fallocate+0x6a0/0x830 [ 286.792446][ T31] ? __pfx_ptrace_notify+0x10/0x10 [ 286.797616][ T31] ? __pfx_vfs_fallocate+0x10/0x10 [ 286.812931][ T31] __x64_sys_fallocate+0xc0/0x110 [ 286.818055][ T31] do_syscall_64+0xfa/0x3b0 [ 286.822601][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 286.827932][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.834027][ T31] ? clear_bhb_loop+0x60/0xb0 [ 286.838771][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.844701][ T31] RIP: 0033:0x7f5013bafb29 [ 286.849257][ T31] RSP: 002b:00007ffe4dec5ca8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 286.857750][ T31] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5013bafb29 [ 286.865758][ T31] RDX: 0000000000000000 RSI: 0000000000000010 RDI: 0000000000000004 [ 286.873873][ T31] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 286.881936][ T31] R10: 0000002000000400 R11: 0000000000000246 R12: 0000000000000001 [ 286.890021][ T31] R13: 00007ffe4dec5ec8 R14: 00007ffe4dec5cd0 R15: 00007ffe4dec5cc0 [ 286.898166][ T31] [ 286.901298][ T31] INFO: task syz-executor102:5858 blocked for more than 143 seconds. [ 286.913372][ T31] Not tainted 6.15.0-syzkaller-08297-ge0797d3b91de #0 [ 286.920798][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.947848][ T31] task:syz-executor102 state:D stack:27272 pid:5858 tgid:5858 ppid:5855 task_flags:0x400040 flags:0x00004006 [ 286.967708][ T31] Call Trace: [ 286.971056][ T31] [ 286.974023][ T31] __schedule+0x16f5/0x4d00 [ 286.983896][ T31] ? xfd_validate_state+0x6d/0x150 [ 286.989114][ T31] ? __pfx_preempt_schedule_notrace+0x10/0x10 [ 286.995238][ T31] ? schedule+0x165/0x360 [ 286.999708][ T31] ? __pfx___schedule+0x10/0x10 [ 287.004620][ T31] ? schedule+0x91/0x360 [ 287.008969][ T31] schedule+0x165/0x360 [ 287.013162][ T31] schedule_preempt_disabled+0x13/0x30 [ 287.027721][ T31] rwsem_down_write_slowpath+0xbec/0x1030 [ 287.033526][ T31] ? rwsem_down_write_slowpath+0x7ec/0x1030 [ 287.047714][ T31] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 287.053952][ T31] ? __lock_acquire+0xab9/0xd20 [ 287.077777][ T31] ? blkdev_fallocate+0x1d8/0x4b0 [ 287.082913][ T31] down_write+0x1ab/0x1f0 [ 287.087292][ T31] ? __pfx_down_write+0x10/0x10 [ 287.107725][ T31] ? aa_file_perm+0x11f/0xed0 [ 287.112680][ T31] blkdev_fallocate+0x1d8/0x4b0 [ 287.117596][ T31] vfs_fallocate+0x6a0/0x830 [ 287.137761][ T31] ? __pfx_ptrace_notify+0x10/0x10 [ 287.142970][ T31] ? __pfx_vfs_fallocate+0x10/0x10 [ 287.157817][ T31] __x64_sys_fallocate+0xc0/0x110 [ 287.162952][ T31] do_syscall_64+0xfa/0x3b0 [ 287.167501][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 287.177980][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.184329][ T31] ? clear_bhb_loop+0x60/0xb0 [ 287.201157][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.207146][ T31] RIP: 0033:0x7f5013bafb29 [ 287.222611][ T31] RSP: 002b:00007ffe4dec5ca8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.239075][ T31] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5013bafb29 [ 287.247121][ T31] RDX: 0000000000000000 RSI: 0000000000000010 RDI: 0000000000000004 [ 287.277720][ T31] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.285776][ T31] R10: 0000002000000400 R11: 0000000000000246 R12: 0000000000000001 [ 287.304296][ T31] R13: 00007ffe4dec5ec8 R14: 00007ffe4dec5cd0 R15: 00007ffe4dec5cc0 [ 287.327721][ T31] [ 287.330893][ T31] INFO: task syz-executor102:5859 blocked for more than 144 seconds. [ 287.347766][ T31] Not tainted 6.15.0-syzkaller-08297-ge0797d3b91de #0 [ 287.355109][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.387735][ T31] task:syz-executor102 state:D stack:27080 pid:5859 tgid:5859 ppid:5857 task_flags:0x400040 flags:0x00004006 [ 287.436973][ T31] Call Trace: [ 287.447697][ T31] [ 287.450705][ T31] __schedule+0x16f5/0x4d00 [ 287.455257][ T31] ? kvm_sched_clock_read+0x11/0x20 [ 287.460578][ T31] ? sched_clock+0x3f/0x60 [ 287.465038][ T31] ? sched_clock_cpu+0x74/0x430 [ 287.469984][ T31] ? __lock_acquire+0xab9/0xd20 [ 287.474876][ T31] ? schedule+0x165/0x360 [ 287.479271][ T31] ? __pfx___schedule+0x10/0x10 [ 287.484173][ T31] ? schedule+0x91/0x360 [ 287.488499][ T31] schedule+0x165/0x360 [ 287.492702][ T31] schedule_preempt_disabled+0x13/0x30 [ 287.507697][ T31] rwsem_down_write_slowpath+0xbec/0x1030 [ 287.513525][ T31] ? rwsem_down_write_slowpath+0x7ec/0x1030 [ 287.527795][ T31] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 287.534035][ T31] ? __lock_acquire+0xab9/0xd20 [ 287.557731][ T31] ? blkdev_fallocate+0x1d8/0x4b0 [ 287.562864][ T31] down_write+0x1ab/0x1f0 [ 287.567233][ T31] ? __pfx_down_write+0x10/0x10 [ 287.577704][ T31] ? end_current_label_crit_section+0x152/0x180 [ 287.584038][ T31] blkdev_fallocate+0x1d8/0x4b0 [ 287.602701][ T31] vfs_fallocate+0x6a0/0x830 [ 287.607468][ T31] ? __pfx_ptrace_notify+0x10/0x10 [ 287.612955][ T31] ? __pfx_vfs_fallocate+0x10/0x10 [ 287.618346][ T31] __x64_sys_fallocate+0xc0/0x110 [ 287.623515][ T31] do_syscall_64+0xfa/0x3b0 [ 287.628315][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 287.633585][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.640000][ T31] ? clear_bhb_loop+0x60/0xb0 [ 287.644742][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.653319][ T31] RIP: 0033:0x7f5013bafb29 [ 287.657988][ T31] RSP: 002b:00007ffe4dec5ca8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.666461][ T31] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5013bafb29 [ 287.674796][ T31] RDX: 0000000000000000 RSI: 0000000000000010 RDI: 0000000000000004 [ 287.683310][ T31] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.691570][ T31] R10: 0000002000000400 R11: 0000000000000246 R12: 0000000000000001 [ 287.699807][ T31] R13: 00007ffe4dec5ec8 R14: 00007ffe4dec5cd0 R15: 00007ffe4dec5cc0 [ 287.708102][ T31] [ 287.711188][ T31] [ 287.711188][ T31] Showing all locks held in the system: [ 287.719310][ T31] 1 lock held by khungtaskd/31: [ 287.724195][ T31] #0: ffffffff8e13ccc0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180 [ 287.734487][ T31] 2 locks held by getty/5590: [ 287.741496][ T31] #0: ffff888030a9b0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 287.751722][ T31] #1: ffffc9000361c2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400 [ 287.762245][ T31] 1 lock held by syz-executor102/5854: [ 287.767964][ T31] #0: ffff888148d535a0 (&sb->s_type->i_mutex_key#8){++++}-{4:4}, at: blkdev_fallocate+0x1d8/0x4b0 [ 287.778989][ T31] 3 locks held by syz-executor102/5856: [ 287.784577][ T31] 1 lock held by syz-executor102/5858: [ 287.790332][ T31] #0: ffff888148d535a0 (&sb->s_type->i_mutex_key#8){++++}-{4:4}, at: blkdev_fallocate+0x1d8/0x4b0 [ 287.801471][ T31] 1 lock held by syz-executor102/5859: [ 287.806978][ T31] #0: ffff888148d535a0 (&sb->s_type->i_mutex_key#8){++++}-{4:4}, at: blkdev_fallocate+0x1d8/0x4b0 [ 287.818153][ T31] 1 lock held by syz-executor102/5873: [ 287.823662][ T31] #0: ffff888148d535a0 (&sb->s_type->i_mutex_key#8){++++}-{4:4}, at: blkdev_fallocate+0x1d8/0x4b0 [ 287.837712][ T31] [ 287.840086][ T31] ============================================= [ 287.840086][ T31] [ 287.878009][ T31] NMI backtrace for cpu 1 [ 287.878045][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-syzkaller-08297-ge0797d3b91de #0 PREEMPT(full) [ 287.878070][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 287.878083][ T31] Call Trace: [ 287.878091][ T31] [ 287.878101][ T31] dump_stack_lvl+0x189/0x250 [ 287.878136][ T31] ? __wake_up_klogd+0xd9/0x110 [ 287.878171][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 287.878204][ T31] ? __pfx__printk+0x10/0x10 [ 287.878238][ T31] nmi_cpu_backtrace+0x39e/0x3d0 [ 287.878272][ T31] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 287.878299][ T31] ? _printk+0xcf/0x120 [ 287.878326][ T31] ? __pfx__printk+0x10/0x10 [ 287.878350][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 287.878376][ T31] nmi_trigger_cpumask_backtrace+0x17a/0x300 [ 287.878410][ T31] watchdog+0xfee/0x1030 [ 287.878443][ T31] ? watchdog+0x1de/0x1030 [ 287.878473][ T31] kthread+0x70e/0x8a0 [ 287.878509][ T31] ? __pfx_watchdog+0x10/0x10 [ 287.878530][ T31] ? __pfx_kthread+0x10/0x10 [ 287.878563][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.878583][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 287.878603][ T31] ? __pfx_kthread+0x10/0x10 [ 287.878635][ T31] ret_from_fork+0x3fc/0x770 [ 287.878662][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 287.878693][ T31] ? __switch_to_asm+0x39/0x70 [ 287.878714][ T31] ? __switch_to_asm+0x33/0x70 [ 287.878733][ T31] ? __pfx_kthread+0x10/0x10 [ 287.878766][ T31] ret_from_fork_asm+0x1a/0x30 [ 287.878804][ T31] [ 287.878812][ T31] Sending NMI from CPU 1 to CPUs 0: [ 288.041333][ C0] NMI backtrace for cpu 0 [ 288.041350][ C0] CPU: 0 UID: 0 PID: 5856 Comm: syz-executor102 Not tainted 6.15.0-syzkaller-08297-ge0797d3b91de #0 PREEMPT(full) [ 288.041372][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 288.041382][ C0] RIP: 0010:__lock_acquire+0xab9/0xd20 [ 288.041407][ C0] Code: 8d e8 cb f4 e5 ff 90 0f 0b 90 90 90 31 c0 48 8b 3c 24 48 83 78 40 00 0f 84 6a 01 00 00 4c 89 f6 89 ea 4c 89 f9 e8 17 38 00 00 <85> c0 0f 84 e4 01 00 00 41 f6 46 22 10 75 2e 48 8b 1c 24 4c 89 bb [ 288.041422][ C0] RSP: 0018:ffffc9000456edc8 EFLAGS: 00000086 [ 288.041438][ C0] RAX: 0000000000000001 RBX: 0000000000000003 RCX: 9adc297080c38e00 [ 288.041456][ C0] RDX: 0000000000000000 RSI: ffff88807eb86568 RDI: ffff88807eb85a00 [ 288.041467][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffffff81727865 [ 288.041478][ C0] R10: ffffc9000456f018 R11: ffffffff81acc920 R12: 0000000056dbb0dc [ 288.041491][ C0] R13: ffff88807eb864f0 R14: ffff88807eb86568 R15: c808c899cd935cb7 [ 288.041504][ C0] FS: 000055557779b380(0000) GS:ffff888125c64000(0000) knlGS:0000000000000000 [ 288.041519][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 288.041531][ C0] CR2: 0000563a3157c168 CR3: 00000000336e8000 CR4: 00000000003526f0 [ 288.041545][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 288.041555][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 288.041566][ C0] Call Trace: [ 288.041572][ C0] [ 288.041583][ C0] ? unwind_next_frame+0xa5/0x2390 [ 288.041606][ C0] lock_acquire+0x120/0x360 [ 288.041624][ C0] ? unwind_next_frame+0xa5/0x2390 [ 288.041650][ C0] ? unwind_next_frame+0xa5/0x2390 [ 288.041671][ C0] ? __submit_bio+0x207/0x5a0 [ 288.041695][ C0] ? unwind_next_frame+0xa5/0x2390 [ 288.041717][ C0] unwind_next_frame+0xc2/0x2390 [ 288.041739][ C0] ? unwind_next_frame+0xa5/0x2390 [ 288.041763][ C0] ? unwind_next_frame+0xa5/0x2390 [ 288.041785][ C0] ? blk_mq_submit_bio+0xbd3/0x22d0 [ 288.041808][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 288.041834][ C0] arch_stack_walk+0x11c/0x150 [ 288.041861][ C0] ? __submit_bio+0x207/0x5a0 [ 288.041885][ C0] stack_trace_save+0x9c/0xe0 [ 288.041910][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 288.041936][ C0] ? kasan_save_track+0x4f/0x80 [ 288.041954][ C0] ? kasan_save_track+0x3e/0x80 [ 288.041971][ C0] ? __kasan_kmalloc+0x93/0xb0 [ 288.041989][ C0] ? __kmalloc_cache_noprof+0x230/0x3d0 [ 288.042011][ C0] ? kmem_cache_free+0x166/0x400 [ 288.042031][ C0] ? bio_endio+0x3f/0x870 [ 288.042049][ C0] ? blk_mq_end_request+0x3e/0x70 [ 288.042065][ C0] ? null_queue_rq+0xbfe/0xe30 [ 288.042085][ C0] kasan_save_stack+0x3e/0x60 [ 288.042103][ C0] ? kasan_save_stack+0x3e/0x60 [ 288.042119][ C0] ? kasan_record_aux_stack+0xbd/0xd0 [ 288.042145][ C0] ? kmem_cache_free+0x2f6/0x400 [ 288.042165][ C0] ? bio_endio+0x3f/0x870 [ 288.042182][ C0] ? blk_update_request+0x5eb/0xe70 [ 288.042197][ C0] ? blk_mq_end_request+0x3e/0x70 [ 288.042213][ C0] ? null_queue_rq+0xbfe/0xe30 [ 288.042231][ C0] ? null_queue_rqs+0x123/0x270 [ 288.042249][ C0] ? blk_mq_dispatch_queue_requests+0x414/0x800 [ 288.042271][ C0] ? blk_mq_flush_plug_list+0x432/0x550 [ 288.042304][ C0] ? blk_add_rq_to_plug+0x175/0x450 [ 288.042321][ C0] ? blk_mq_submit_bio+0xbd3/0x22d0 [ 288.042341][ C0] ? __submit_bio+0x207/0x5a0 [ 288.042380][ C0] ? __phys_addr+0xd3/0x180 [ 288.042405][ C0] ? bio_endio+0x3f/0x870 [ 288.042422][ C0] kasan_record_aux_stack+0xbd/0xd0 [ 288.042453][ C0] kmem_cache_free+0x2f6/0x400 [ 288.042477][ C0] bio_endio+0x3f/0x870 [ 288.042496][ C0] blk_update_request+0x5eb/0xe70 [ 288.042519][ C0] blk_mq_end_request+0x3e/0x70 [ 288.042536][ C0] null_queue_rq+0xbfe/0xe30 [ 288.042561][ C0] null_queue_rqs+0x123/0x270 [ 288.042583][ C0] ? blk_mq_dispatch_queue_requests+0x11a/0x800 [ 288.042605][ C0] blk_mq_dispatch_queue_requests+0x414/0x800 [ 288.042630][ C0] blk_mq_flush_plug_list+0x432/0x550 [ 288.042653][ C0] ? update_io_ticks+0x21f/0x260 [ 288.042675][ C0] ? __pfx_blk_mq_flush_plug_list+0x10/0x10 [ 288.042702][ C0] blk_add_rq_to_plug+0x175/0x450 [ 288.042723][ C0] blk_mq_submit_bio+0xbd3/0x22d0 [ 288.042748][ C0] ? __pfx_blk_mq_submit_bio+0x10/0x10 [ 288.042778][ C0] __submit_bio+0x207/0x5a0 [ 288.042801][ C0] ? __pfx___submit_bio+0x10/0x10 [ 288.042833][ C0] submit_bio_noacct_nocheck+0x505/0xb50 [ 288.042853][ C0] ? pfn_valid+0x125/0x4d0 [ 288.042871][ C0] ? __pfx_submit_bio_noacct_nocheck+0x10/0x10 [ 288.042902][ C0] bio_chain_and_submit+0xeb/0x130 [ 288.042919][ C0] __blkdev_issue_zero_pages+0x24f/0x2c0 [ 288.042948][ C0] blkdev_issue_zeroout+0x56c/0x7c0 [ 288.042974][ C0] ? __mutex_unlock_slowpath+0x1cd/0x700 [ 288.042996][ C0] ? __pfx_blkdev_issue_zeroout+0x10/0x10 [ 288.043026][ C0] ? __pfx_truncate_bdev_range+0x10/0x10 [ 288.043051][ C0] ? truncate_bdev_range+0xed/0x100 [ 288.043072][ C0] blkdev_fallocate+0x3e6/0x4b0 [ 288.043101][ C0] vfs_fallocate+0x6a0/0x830 [ 288.043122][ C0] ? __pfx_ptrace_notify+0x10/0x10 [ 288.043143][ C0] ? __pfx_vfs_fallocate+0x10/0x10 [ 288.043168][ C0] __x64_sys_fallocate+0xc0/0x110 [ 288.043191][ C0] do_syscall_64+0xfa/0x3b0 [ 288.043210][ C0] ? lockdep_hardirqs_on+0x9c/0x150 [ 288.043228][ C0] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 288.043245][ C0] ? clear_bhb_loop+0x60/0xb0 [ 288.043264][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 288.043280][ C0] RIP: 0033:0x7f5013bafb29 [ 288.043295][ C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 288.043309][ C0] RSP: 002b:00007ffe4dec5ca8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 288.043326][ C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5013bafb29 [ 288.043338][ C0] RDX: 0000000000000000 RSI: 0000000000000010 RDI: 0000000000000004 [ 288.043349][ C0] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 288.043360][ C0] R10: 0000002000000400 R11: 0000000000000246 R12: 0000000000000001 [ 288.043371][ C0] R13: 00007ffe4dec5ec8 R14: 00007ffe4dec5cd0 R15: 00007ffe4dec5cc0 [ 288.043391][ C0] [ 288.043398][ C0] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 2.067 msecs [ 288.075589][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 288.075614][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-syzkaller-08297-ge0797d3b91de #0 PREEMPT(full) [ 288.075644][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 288.075659][ T31] Call Trace: [ 288.075669][ T31] [ 288.075680][ T31] dump_stack_lvl+0x99/0x250 [ 288.075736][ T31] ? __asan_memcpy+0x40/0x70 [ 288.075761][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 288.075799][ T31] ? __pfx__printk+0x10/0x10 [ 288.075839][ T31] panic+0x2db/0x790 [ 288.075882][ T31] ? __pfx_panic+0x10/0x10 [ 288.075915][ T31] ? nmi_backtrace_stall_check+0x433/0x440 [ 288.075952][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 288.075984][ T31] ? nmi_trigger_cpumask_backtrace+0x2b6/0x300 [ 288.076029][ T31] watchdog+0x102d/0x1030 [ 288.076056][ T31] ? watchdog+0x1de/0x1030 [ 288.076090][ T31] kthread+0x70e/0x8a0 [ 288.076130][ T31] ? __pfx_watchdog+0x10/0x10 [ 288.076153][ T31] ? __pfx_kthread+0x10/0x10 [ 288.076191][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 288.076214][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 288.076236][ T31] ? __pfx_kthread+0x10/0x10 [ 288.076273][ T31] ret_from_fork+0x3fc/0x770 [ 288.076304][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 288.076338][ T31] ? __switch_to_asm+0x39/0x70 [ 288.076361][ T31] ? __switch_to_asm+0x33/0x70 [ 288.076384][ T31] ? __pfx_kthread+0x10/0x10 [ 288.076421][ T31] ret_from_fork_asm+0x1a/0x30 [ 288.076462][ T31] [ 288.815747][ T31] Kernel Offset: disabled [ 288.820079][ T31] Rebooting in 86400 seconds..